Problem zaczął się dwa dni temu, próba otwarcia jakiegoś linku i już zaczyna się problem, już samo ściągnięcie otl z programosów to problem.
Dwa dni temu zauważyłem dziwne procesy w menadżer zadań, ściagnołem avasta nic nie znalazł,
proszę o pomoc, tak nie da się korzystać z internetu, zaznaczam że jestem noga z informatyki i raczej należny mi tłumaczyć wszystko łopatologocznie jak krowie na rowie...
samo ściągniecie otl z gmerem i wyłączenie wirtualnych napędów to walka przeszło godzinę przez te włączające się reklamy. Także proszę o wyrozumiałość jeśli coś źle zrobiłem
otl
- Kod: Zaznacz wszystko
OTL logfile created on: 2016-03-18 21:21:40 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Avans\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16686)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
2,92 Gb Total Physical Memory | 1,78 Gb Available Physical Memory | 61,15% Memory free
5,83 Gb Paging File | 4,63 Gb Available in Paging File | 79,33% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 211,96 Gb Total Space | 79,68 Gb Free Space | 37,59% Space Free | Partition Type: NTFS
Drive D: | 238,85 Gb Total Space | 139,33 Gb Free Space | 58,33% Space Free | Partition Type: NTFS
Computer Name: AVANS-KOMPUTER | User Name: Avans | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Processes (SafeList) ==========[/color]
PRC - [2016-03-18 21:17:34 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Avans\Downloads\OTL.exe
PRC - [2015-01-16 18:53:16 | 000,243,880 | ---- | M] (Foxit Software Inc.) -- C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
PRC - [2014-08-10 18:33:17 | 000,075,136 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2013-10-14 17:10:01 | 000,151,552 | ---- | M] () -- C:\Windows\KMService.exe
PRC - [2013-10-14 17:10:01 | 000,008,192 | ---- | M] () -- C:\Windows\SysWOW64\srvany.exe
PRC - [2013-02-06 07:10:16 | 000,238,160 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\ProgramData\DatacardService\DCSHelper.exe
PRC - [2012-03-29 21:37:04 | 000,246,112 | ---- | M] () -- C:\ProgramData\PLAY ONLINE\OnlineUpdate\ouc.exe
PRC - [2011-02-15 12:26:42 | 000,013,600 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\Lenovo\Bluetooth Software\BluetoothHeadsetProxy.exe
PRC - [2011-01-18 09:27:48 | 000,200,792 | ---- | M] (Streaming) -- C:\Windows\SysWOW64\AuthorityServer.exe
PRC - [2010-12-24 12:19:36 | 000,136,488 | ---- | M] (CyberLink) -- C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
PRC - [2010-12-14 00:59:28 | 000,703,856 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisService.exe
PRC - [2010-12-14 00:58:32 | 000,650,096 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
PRC - [2009-12-23 22:34:20 | 000,370,688 | ---- | M] (StarWind Software) -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
PRC - [2009-07-14 20:53:00 | 000,185,632 | ---- | M] (Ralink Technology, Corp.) -- C:\Program Files (x86)\Edimax\Common\RaRegistry.exe
PRC - [2007-03-06 09:35:02 | 000,198,168 | ---- | M] (InterVideo Inc.) -- C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe
[color=#E56717]========== Modules (No Company Name) ==========[/color]
[color=#E56717]========== Services (SafeList) ==========[/color]
SRV:[b]64bit:[/b] - [2013-05-27 06:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:[b]64bit:[/b] - [2011-02-15 12:26:42 | 000,956,192 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe -- (btwdins)
SRV:[b]64bit:[/b] - [2010-09-22 19:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV - [2015-01-16 18:53:16 | 000,243,880 | ---- | M] (Foxit Software Inc.) [Auto | Running] -- C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe -- (FoxitCloudUpdateService)
SRV - [2014-08-10 18:33:17 | 000,075,136 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2013-10-14 17:10:01 | 000,008,192 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\srvany.exe -- (KMService)
SRV - [2013-04-18 10:06:42 | 000,737,616 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2013-02-06 07:10:36 | 000,351,824 | ---- | M] () [Auto | Running] -- C:\ProgramData\DatacardService\HWDeviceService64.exe -- (HWDeviceService64.exe)
SRV - [2012-03-29 21:37:04 | 000,246,112 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\PLAY ONLINE\UpdateDog\ouc.exe -- (PLAY ONLINE. RunOuc)
SRV - [2012-01-05 16:42:34 | 000,075,624 | ---- | M] (Alcohol Soft Development Team) [Auto | Stopped] -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe -- (AxAutoMntSrv)
SRV - [2011-03-04 11:38:00 | 002,009,704 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011-01-18 09:27:48 | 000,200,792 | ---- | M] (Streaming) [Auto | Running] -- C:\Windows\SysWOW64\AuthorityServer.exe -- (AuthorityServer)
SRV - [2010-12-20 11:30:38 | 002,656,280 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2010-12-20 11:30:36 | 000,325,656 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2010-12-14 00:59:28 | 000,703,856 | ---- | M] (Egis Technology Inc. ) [Auto | Running] -- C:\Program Files (x86)\EgisTec BioExcess\EgisService.exe -- (EgisTec Service)
SRV - [2010-12-14 00:58:32 | 000,650,096 | ---- | M] (Egis Technology Inc. ) [Auto | Running] -- C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe -- (EgisTec Ticket Service)
SRV - [2010-03-18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009-12-23 22:34:20 | 000,370,688 | ---- | M] (StarWind Software) [Auto | Running] -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2009-07-14 20:53:32 | 000,211,232 | ---- | M] (Ralink Technology, Corp.) [Auto | Running] -- C:\Program Files (x86)\Edimax\Common\RaRegistry64.exe -- (RalinkRegistryWriter64)
SRV - [2009-07-14 20:53:00 | 000,185,632 | ---- | M] (Ralink Technology, Corp.) [Auto | Running] -- C:\Program Files (x86)\Edimax\Common\RaRegistry.exe -- (RalinkRegistryWriter)
SRV - [2009-06-10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2007-05-31 16:11:54 | 000,443,784 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm)
SRV - [2007-05-31 16:11:46 | 000,225,672 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr)
SRV - [2007-03-06 09:35:02 | 000,198,168 | ---- | M] (InterVideo Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe -- (Capture Device Service)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV:[b]64bit:[/b] - [2014-05-14 18:17:53 | 000,165,504 | ---- | M] (ITE ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IT9135BDA.sys -- (IT9135BDA)
DRV:[b]64bit:[/b] - [2014-03-04 21:25:54 | 000,050,976 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtpx64.sys -- (avgtp)
DRV:[b]64bit:[/b] - [2014-02-25 16:19:03 | 000,314,016 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\atksgt.sys -- (atksgt)
DRV:[b]64bit:[/b] - [2014-02-25 16:19:02 | 000,043,680 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\lirsgt.sys -- (lirsgt)
DRV:[b]64bit:[/b] - [2013-11-20 09:56:52 | 000,059,384 | ---- | M] (NetFilterSDK.com) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\networx.sys -- (networx)
DRV:[b]64bit:[/b] - [2013-06-03 05:13:18 | 000,455,680 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ewusbwwan.sys -- (ewusbmbb)
DRV:[b]64bit:[/b] - [2013-03-04 09:32:48 | 000,110,592 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ew_jucdcacm.sys -- (huawei_cdcacm)
DRV:[b]64bit:[/b] - [2013-03-04 09:32:48 | 000,091,648 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ew_jubusenum.sys -- (huawei_enumerator)
DRV:[b]64bit:[/b] - [2013-03-04 09:32:48 | 000,077,312 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ew_jucdcecm.sys -- (huawei_cdcecm)
DRV:[b]64bit:[/b] - [2013-03-04 09:32:48 | 000,030,720 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ew_juextctrl.sys -- (huawei_ext_ctrl)
DRV:[b]64bit:[/b] - [2013-03-04 09:21:02 | 000,226,048 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ewusbmdm.sys -- (hwdatacard)
DRV:[b]64bit:[/b] - [2013-01-25 02:16:40 | 000,109,568 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ew_hwusbdev.sys -- (ew_hwusbdev)
DRV:[b]64bit:[/b] - [2012-12-22 02:46:11 | 000,014,976 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ew_usbenumfilter.sys -- (ew_usbenumfilter)
DRV:[b]64bit:[/b] - [2012-10-17 13:53:46 | 000,026,112 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys -- (pccsmcfd)
DRV:[b]64bit:[/b] - [2012-08-02 01:23:14 | 000,158,944 | ---- | M] (Tonec Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\idmwfp.sys -- (IDMWFP)
DRV:[b]64bit:[/b] - [2012-03-01 07:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2011-08-05 11:33:40 | 000,057,952 | ---- | M] (Lenovo) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\fbfmon.sys -- (fbfmon)
DRV:[b]64bit:[/b] - [2011-08-05 11:33:40 | 000,013,408 | ---- | M] (Lenovo) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BPntDrv.sys -- (BPntDrv)
DRV:[b]64bit:[/b] - [2011-08-05 11:31:34 | 000,039,008 | ---- | M] (Lenovo.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\LhdX64.sys -- (LHDmgr)
DRV:[b]64bit:[/b] - [2011-08-05 11:31:31 | 000,029,792 | ---- | M] (Lenovo Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AcpiVpc.sys -- (ACPIVPC)
DRV:[b]64bit:[/b] - [2011-08-05 11:18:34 | 000,062,584 | ---- | M] (Egis Technology Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\mwlPSDVDisk.sys -- (mwlPSDVDisk)
DRV:[b]64bit:[/b] - [2011-08-05 11:18:34 | 000,022,912 | ---- | M] (Egis Technology Inc.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\mwlPSDFilter.sys -- (mwlPSDFilter)
DRV:[b]64bit:[/b] - [2011-08-05 11:18:34 | 000,020,328 | ---- | M] (Egis Technology Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\mwlPSDNserv.sys -- (mwlPSDNServ)
DRV:[b]64bit:[/b] - [2011-03-25 11:17:48 | 012,262,336 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:[b]64bit:[/b] - [2011-03-11 07:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2011-03-11 07:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2011-03-04 11:38:00 | 000,025,960 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\nvpciflt.sys -- (nvpciflt)
DRV:[b]64bit:[/b] - [2011-02-18 09:11:54 | 000,439,320 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:[b]64bit:[/b] - [2011-02-15 14:45:16 | 000,349,736 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwampfl.sys -- (BTWAMPFL)
DRV:[b]64bit:[/b] - [2011-02-15 14:45:12 | 000,138,280 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwavdt.sys -- (btwavdt)
DRV:[b]64bit:[/b] - [2011-02-15 14:45:12 | 000,107,560 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwaudio.sys -- (btwaudio)
DRV:[b]64bit:[/b] - [2011-02-15 14:45:12 | 000,039,464 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwl2cap.sys -- (btwl2cap)
DRV:[b]64bit:[/b] - [2011-02-15 14:45:12 | 000,021,416 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwrchid.sys -- (btwrchid)
DRV:[b]64bit:[/b] - [2010-12-24 12:19:56 | 000,031,088 | ---- | M] (CyberLink Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\clwvd.sys -- (clwvd)
DRV:[b]64bit:[/b] - [2010-12-23 17:45:58 | 003,293,272 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\S6000KNT.sys -- (S6000KNT)
DRV:[b]64bit:[/b] - [2010-12-22 13:19:58 | 001,407,024 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:[b]64bit:[/b] - [2010-11-30 07:40:04 | 000,307,304 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rtsuvstor.sys -- (RSUSBVSTOR)
DRV:[b]64bit:[/b] - [2010-11-24 12:33:26 | 002,673,664 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:[b]64bit:[/b] - [2010-11-21 04:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2010-11-21 04:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2010-11-21 04:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:[b]64bit:[/b] - [2010-10-31 11:36:56 | 000,035,952 | ---- | M] (Egis Technology Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\FPSensor.sys -- (FPSensor)
DRV:[b]64bit:[/b] - [2010-10-19 09:34:26 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:[b]64bit:[/b] - [2010-10-14 18:28:16 | 000,317,440 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:[b]64bit:[/b] - [2010-06-14 09:32:54 | 000,016,448 | ---- | M] (Teruten Inc) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TFsExDisk.sys -- (TFsExDisk)
DRV:[b]64bit:[/b] - [2010-05-31 04:46:50 | 000,333,928 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:[b]64bit:[/b] - [2009-07-21 15:20:06 | 000,121,840 | ---- | M] (CyberLink) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wsvd.sys -- (wsvd)
DRV:[b]64bit:[/b] - [2009-07-14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2009-07-14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2009-07-14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2009-07-03 16:31:40 | 000,982,016 | ---- | M] (Ralink Technology Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netr28ux.sys -- (netr28ux)
DRV:[b]64bit:[/b] - [2009-06-10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2009-06-10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2009-06-10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:[b]64bit:[/b] - [2009-06-10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:[b]64bit:[/b] - [2009-02-24 18:35:44 | 000,255,552 | ---- | M] (MagicISO, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mcdbus.sys -- (mcdbus)
DRV - [2010-06-14 09:32:54 | 000,016,448 | ---- | M] (Teruten Inc) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\TFsExDisk.Sys -- (TFsExDisk)
DRV - [2009-07-14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2009-02-28 19:40:18 | 000,146,928 | ---- | M] (CyberLink Corp.) [2012/03/01 13:47:58] [Kernel | Auto | Running] -- C:\Program Files (x86)\CyberLink\PowerDVD9\000.fcl -- ({B154377D-700F-42cc-9474-23858FBDF4BD})
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com/ [binary data]
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=LENDF8&pc=MALN&src=IE-SearchBox
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com/ [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-40995747-2143766178-1930525636-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.lenovo.com
IE - HKU\S-1-5-21-40995747-2143766178-1930525636-1000\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-40995747-2143766178-1930525636-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-40995747-2143766178-1930525636-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKU\S-1-5-21-40995747-2143766178-1930525636-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE - HKU\S-1-5-21-40995747-2143766178-1930525636-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-40995747-2143766178-1930525636-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKU\S-1-5-21-40995747-2143766178-1930525636-1001\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKU\S-1-5-21-40995747-2143766178-1930525636-1001\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKU\S-1-5-21-40995747-2143766178-1930525636-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
[color=#E56717]========== FireFox ==========[/color]
FF - user.js - File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: C:\Program Files (x86)\DivX\DivX Player\npDivxPlayerPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf: C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.31.2: C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.31.2: C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nokia.com/EnablerPlugin: C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2321: C:\Program Files (x86)\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1483: C:\Program Files (x86)\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.1: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Avans\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{41ecbc0b-34d5-4cd4-935f-253a30e2cb7e}: C:\Program Files (x86)\EgisTec BioExcess\FFExt [2011-08-05 11:18:26 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\fe_11.0@nokia.com: C:\Program Files (x86)\Nokia\Nokia Suite\Connectors\Bookmarks Connector\FirefoxExtension_11.0
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2015-12-20 13:22:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2015-12-20 13:22:49 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Users\Avans\AppData\Roaming\IDM\idmmzcc5 [2012-08-26 18:39:22 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Users\Avans\AppData\Roaming\IDM\idmmzcc5 [2012-08-26 18:39:22 | 000,000,000 | ---D | M]
[2012-02-25 14:09:11 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Avans\AppData\Roaming\mozilla\Extensions
[2015-12-25 23:36:40 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Avans\AppData\Roaming\mozilla\Firefox\Profiles\i2pvh2ly.default\extensions
[2014-09-04 18:42:47 | 000,000,000 | ---D | M] (EPUBReader) -- C:\Users\Avans\AppData\Roaming\mozilla\Firefox\Profiles\i2pvh2ly.default\extensions\{5384767E-00D9-40E9-B72F-9CC39D655D6F}
[2015-12-03 07:17:11 | 000,000,000 | ---D | M] ("Video AdBlock for Firefox") -- C:\Users\Avans\AppData\Roaming\mozilla\Firefox\Profiles\i2pvh2ly.default\extensions\{a00bef25-f21a-4539-adbb-b179b29e2b92}
[2012-08-03 00:24:25 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Users\Avans\AppData\Roaming\mozilla\Firefox\Profiles\i2pvh2ly.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
[2013-12-31 10:23:19 | 000,000,000 | ---D | M] (Iplex to ALLPlayer) -- C:\Users\Avans\AppData\Roaming\mozilla\Firefox\Profiles\i2pvh2ly.default\extensions\IplextoALL@ALLPlayer.org
[2013-03-29 16:45:07 | 000,000,000 | ---D | M] (ALLYouTubeDownloader) -- C:\Users\Avans\AppData\Roaming\mozilla\Firefox\Profiles\i2pvh2ly.default\extensions\YouTubetoALL@ALLPlayer.org
[2012-03-26 21:33:47 | 000,010,043 | ---- | M] () (No name found) -- C:\Users\Avans\AppData\Roaming\mozilla\firefox\profiles\i2pvh2ly.default\extensions\IplextoALL@ALLPlayer.org.xpi
[2013-03-01 19:10:53 | 000,014,676 | ---- | M] () (No name found) -- C:\Users\Avans\AppData\Roaming\mozilla\firefox\profiles\i2pvh2ly.default\extensions\YouTubetoALL@ALLPlayer.org.xpi
[2015-12-24 06:14:27 | 000,009,043 | ---- | M] () (No name found) -- C:\Users\Avans\AppData\Roaming\mozilla\firefox\profiles\i2pvh2ly.default\extensions\{cc9cc7bc-3731-4e72-b335-25aa427cba0d}.xpi
[2016-01-04 06:25:36 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2012-03-27 12:38:21 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012-02-16 12:12:03 | 000,002,767 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\allegro-pl.xml
[2012-02-16 12:12:03 | 000,001,406 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\fbc-pl.xml
[2012-02-16 12:12:03 | 000,000,917 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\merlin-pl.xml
[2012-02-16 12:12:03 | 000,000,858 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\pwn-pl.xml
[2012-02-16 12:12:03 | 000,001,183 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-pl.xml
[2012-02-16 12:12:03 | 000,001,683 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wp-pl.xml
[color=#E56717]========== Chrome ==========[/color]
CHR - Extension: No name found = C:\Users\Avans\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\
CHR - Extension: No name found = C:\Users\Avans\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_1\
CHR - Extension: No name found = C:\Users\Avans\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_1\
CHR - Extension: No name found = C:\Users\Avans\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_1\
CHR - Extension: No name found = C:\Users\Avans\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk\4.1.0_0\
CHR - Extension: No name found = C:\Users\Avans\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_1\
CHR - Extension: No name found = C:\Users\Avans\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\
CHR - Extension: No name found = C:\Users\Avans\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_0\
CHR - Extension: No name found = C:\Users\Avans\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_1\
CHR - Extension: No name found = C:\Users\Avans\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch\3.7_0\
CHR - Extension: No name found = C:\Users\Avans\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_1\
O1 HOSTS File: ([2009-06-10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:[b]64bit:[/b] - BHO: (IDMIEHlprObj Class) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - D:\Internet Download Manager\IDMIECC64.dll (Internet Download Manager, Tonec Inc.)
O2:[b]64bit:[/b] - BHO: (EgisPBIE Class) - {7B51CCBE-4AF9-44A6-BDAB-D7F7E4C4E6F9} - C:\Program Files (x86)\EgisTec BioExcess\x64\EgisPBIE.dll (Egis Technology Inc.)
O2 - BHO: (IDM integration (IDMIEHlprObj Class)) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - D:\Internet Download Manager\IDMIECC.dll (Internet Download Manager, Tonec Inc.)
O2 - BHO: (ALLYouTubeDownloader) - {61DB16C5-B733-43F4-872E-B20DC9E72740} - C:\Program Files (x86)\ALLYouTubeDownloader\ALLYouTubeDownloader.dll (ALLCinema Ltd.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (EgisPBIE Class) - {7B51CCBE-4AF9-44A6-BDAB-D7F7E4C4E6F9} - C:\Program Files (x86)\EgisTec BioExcess\EgisPBIE.dll (Egis Technology Inc.)
O2 - BHO: (Money Viking) - {c7c5384f-d9e9-4db1-8c72-135ecccbc571} - C:\Program Files (x86)\Money Viking\Extensions\c7c5384f-d9e9-4db1-8c72-135ecccbc571.dll File not found
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (IplexToALLPlayer) - {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - C:\Program Files (x86)\ALLPlayer\Iplex\IplexToALLPlayer.dll (ALLCinema Ltd.)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-40995747-2143766178-1930525636-1001\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKU\.DEFAULT..\Run: [Bitdefender Wallet] "C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe" --hidden --nowizard File not found
O4 - HKU\.DEFAULT..\Run: [Bitdefender Wallet Agent] "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe" File not found
O4 - HKU\.DEFAULT..\Run: [Bitdefender Wallet Application Agent] "C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe" File not found
O4 - HKU\S-1-5-18..\Run: [Bitdefender Wallet] "C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe" --hidden --nowizard File not found
O4 - HKU\S-1-5-18..\Run: [Bitdefender Wallet Agent] "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe" File not found
O4 - HKU\S-1-5-18..\Run: [Bitdefender Wallet Application Agent] "C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe" File not found
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-40995747-2143766178-1930525636-1000..\Run: [FactoryTest] C:\Windows\Test.bat File not found
O4 - HKU\S-1-5-21-40995747-2143766178-1930525636-1000..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-40995747-2143766178-1930525636-1001..\Run: [Codec Pack Update Checker] "C:\windows\system32\Codecs\UpdateChecker.exe" File not found
O4 - HKU\S-1-5-21-40995747-2143766178-1930525636-1001..\Run: [SpybotPostWindows10UpgradeReInstall] C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe (Safer-Networking Ltd.)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-21-40995747-2143766178-1930525636-1000..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 1
O7 - HKU\S-1-5-21-40995747-2143766178-1930525636-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-40995747-2143766178-1930525636-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 0
O8:[b]64bit:[/b] - Extra context menu item: Ściągnij przez IDM - D:\Internet Download Manager\IEExt.htm ()
O8:[b]64bit:[/b] - Extra context menu item: Ściągnij wszystkie linki przez IDM - D:\Internet Download Manager\IEGetAll.htm ()
O8:[b]64bit:[/b] - Extra context menu item: Wyślij obraz do urządzenia &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm ()
O8:[b]64bit:[/b] - Extra context menu item: Wyślij stronę do urządzenia &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O8 - Extra context menu item: Ściągnij przez IDM - D:\Internet Download Manager\IEExt.htm ()
O8 - Extra context menu item: Ściągnij wszystkie linki przez IDM - D:\Internet Download Manager\IEGetAll.htm ()
O8 - Extra context menu item: Wyślij obraz do urządzenia &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Wyślij stronę do urządzenia &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O9:[b]64bit:[/b] - Extra Button: @C:\Program Files\Lenovo\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : @C:\Program Files\Lenovo\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: @C:\windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @C:\windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra Button: Wyślij do interfejsu Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Wyślij do urządzenia &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} http://quickscan.bitdefender.com/qsax/qsax.cab (Bitdefender QuickScan Control)
O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} http://www.mks.com.pl/skaner/SkanerOnline.cab (MksSkanerOnline Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 82.163.142.7 95.211.158.134
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{78FCEFEB-C53D-412C-B819-6A73BF298E4D}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7E66DF53-27B8-4BB5-A4B1-7BC191D020A6}: DhcpNameServer = 192.168.8.1 192.168.8.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{CE4F02D5-DB3B-4806-8B58-69D9BB0B59DE}: DhcpNameServer = 82.163.142.7
O18:[b]64bit:[/b] - Protocol\Handler\livecall - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\msnim - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\wlmailhtml - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\ms-help - No CLSID value found
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\windows\SysNative\igfxdev.dll (Intel Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2015-12-24 22:52:54 | 000,000,000 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2012-10-23 07:42:03 | 000,025,930 | ---- | M] () - C:\AutoMapaSetupLog.txt -- [ NTFS ]
O33 - MountPoints2\{0e5561f3-954e-11e2-89a8-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{0e5561f3-954e-11e2-89a8-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{0e5561f8-954e-11e2-89a8-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{0e5561f8-954e-11e2-89a8-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{11bdee81-7157-11e3-b0fd-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{11bdee81-7157-11e3-b0fd-ec55f9e04c01}\Shell\AutoRun\command - "" = I:\AutoRun.exe
O33 - MountPoints2\{33dda552-cc36-11e2-9643-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{33dda552-cc36-11e2-9643-806e6f6e6963}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{353082e4-e25e-11e1-a70a-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{353082e4-e25e-11e1-a70a-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{353082e7-e25e-11e1-a70a-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{353082e7-e25e-11e1-a70a-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{353082f2-e25e-11e1-a70a-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{353082f2-e25e-11e1-a70a-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{3911e79f-cab2-11e2-907d-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{3911e79f-cab2-11e2-907d-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{3911e7a1-cab2-11e2-907d-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{3911e7a1-cab2-11e2-907d-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{461a2d1e-8775-11e4-a921-f0def16ef6ac}\Shell - "" = AutoRun
O33 - MountPoints2\{461a2d1e-8775-11e4-a921-f0def16ef6ac}\Shell\AutoRun\command - "" = E:\AutoRun.exe
O33 - MountPoints2\{4b263634-8966-11e2-ba52-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{4b263634-8966-11e2-ba52-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{4ca9782d-7c0c-11e1-a194-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{4ca9782d-7c0c-11e1-a194-ec55f9e04c01}\Shell\AutoRun\command - "" = E:\AutoRun.exe
O33 - MountPoints2\{5e329c79-770a-11e3-840d-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{5e329c79-770a-11e3-840d-ec55f9e04c01}\Shell\AutoRun\command - "" = J:\AutoRun.exe
O33 - MountPoints2\{66828af4-930b-11e3-931c-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{66828af4-930b-11e3-931c-ec55f9e04c01}\Shell\AutoRun\command - "" = I:\AutoRun.exe
O33 - MountPoints2\{7bfc4c52-9d07-11e2-bcf0-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{7bfc4c52-9d07-11e2-bcf0-806e6f6e6963}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{7bfc4d6b-9d07-11e2-bcf0-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{7bfc4d6b-9d07-11e2-bcf0-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{80d6ac17-f1cc-11e1-98e7-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{80d6ac17-f1cc-11e1-98e7-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{80d6ac26-f1cc-11e1-98e7-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{80d6ac26-f1cc-11e1-98e7-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{829c8033-f25d-11e1-8636-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{829c8033-f25d-11e1-8636-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{829c8035-f25d-11e1-8636-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{829c8035-f25d-11e1-8636-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{829c8040-f25d-11e1-8636-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{829c8040-f25d-11e1-8636-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{8684c163-117c-11e2-910b-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{8684c163-117c-11e2-910b-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{8eec72bd-79dc-11e1-aba5-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{8eec72bd-79dc-11e1-aba5-ec55f9e04c01}\Shell\AutoRun\command - "" = E:\AutoRun.exe
O33 - MountPoints2\{8eec72cd-79dc-11e1-aba5-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{8eec72cd-79dc-11e1-aba5-ec55f9e04c01}\Shell\AutoRun\command - "" = E:\AutoRun.exe
O33 - MountPoints2\{948bcc3d-4dd8-11e2-ab15-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{948bcc3d-4dd8-11e2-ab15-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{948bcc41-4dd8-11e2-ab15-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{948bcc41-4dd8-11e2-ab15-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{9539637d-d123-11e1-ac82-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{9539637d-d123-11e1-ac82-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{98004bfd-76cf-11e2-8de9-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{98004bfd-76cf-11e2-8de9-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{98475e62-e63e-11e1-9bb5-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{98475e62-e63e-11e1-9bb5-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{a374e1c0-fdd6-11e1-8f06-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{a374e1c0-fdd6-11e1-8f06-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{a374e1c3-fdd6-11e1-8f06-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{a374e1c3-fdd6-11e1-8f06-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{a374e1f3-fdd6-11e1-8f06-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{a374e1f3-fdd6-11e1-8f06-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{a7e3de8c-5291-11e2-a019-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{a7e3de8c-5291-11e2-a019-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{c32da653-6aff-11e3-9e12-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{c32da653-6aff-11e3-9e12-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\setup64.exe
O33 - MountPoints2\{c32da65a-6aff-11e3-9e12-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{c32da65a-6aff-11e3-9e12-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\setup64.exe
O33 - MountPoints2\{c7382319-9b80-11e2-9e94-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{c7382319-9b80-11e2-9e94-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{c738231e-9b80-11e2-9e94-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{c738231e-9b80-11e2-9e94-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{c7aa2c87-7199-11e3-a61b-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{c7aa2c87-7199-11e3-a61b-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{c7aa2c93-7199-11e3-a61b-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{c7aa2c93-7199-11e3-a61b-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{e4d936b2-7752-11e2-a24e-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{e4d936b2-7752-11e2-a24e-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{e4d936b8-7752-11e2-a24e-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{e4d936b8-7752-11e2-a24e-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{e4d936ba-7752-11e2-a24e-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{e4d936ba-7752-11e2-a24e-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{e5039126-e8eb-11e1-b760-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{e5039126-e8eb-11e1-b760-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{ec7d95a1-b2d4-11e2-ad54-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{ec7d95a1-b2d4-11e2-ad54-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{ec7d95a6-b2d4-11e2-ad54-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{ec7d95a6-b2d4-11e2-ad54-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{efc5279d-7cce-11e1-a0ed-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{efc5279d-7cce-11e1-a0ed-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{f1cdf541-b353-11e2-aef2-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{f1cdf541-b353-11e2-aef2-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{f1cdf543-b353-11e2-aef2-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{f1cdf543-b353-11e2-aef2-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{f48d098f-bded-11e1-8855-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{f48d098f-bded-11e1-8855-ec55f9e04c01}\Shell\AutoRun\command - "" = E:\AutoRun.exe
O33 - MountPoints2\{f48d0999-bded-11e1-8855-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{f48d0999-bded-11e1-8855-ec55f9e04c01}\Shell\AutoRun\command - "" = E:\AutoRun.exe
O33 - MountPoints2\{fd19bbc7-c44f-11e1-a4db-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{fd19bbc7-c44f-11e1-a4db-ec55f9e04c01}\Shell\AutoRun\command - "" = E:\AutoRun.exe
O33 - MountPoints2\{fd19bbd4-c44f-11e1-a4db-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{fd19bbd4-c44f-11e1-a4db-ec55f9e04c01}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{fd3542e3-b598-11e1-8696-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{fd3542e3-b598-11e1-8696-ec55f9e04c01}\Shell\AutoRun\command - "" = E:\AutoRun.exe
O33 - MountPoints2\{fd3542eb-b598-11e1-8696-ec55f9e04c01}\Shell - "" = AutoRun
O33 - MountPoints2\{fd3542eb-b598-11e1-8696-ec55f9e04c01}\Shell\AutoRun\command - "" = E:\AutoRun.exe
O33 - MountPoints2\H\Shell - "" = AutoRun
O33 - MountPoints2\H\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\I\Shell - "" = AutoRun
O33 - MountPoints2\I\Shell\AutoRun\command - "" = I:\AutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (sdnclean64.exe)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2016-03-17 19:52:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AdwCleaner
[2016-03-16 21:04:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\AV
[2016-03-07 10:43:56 | 000,000,000 | ---D | C] -- C:\Users\Avans\Desktop\Nowy folder (4)
[2016-03-07 10:26:50 | 000,000,000 | ---D | C] -- C:\Users\Avans\Desktop\PROTOKOŁY
[2016-03-07 10:26:50 | 000,000,000 | ---D | C] -- C:\Users\Avans\Desktop\nowe pouczenia
[2016-03-07 08:30:26 | 000,000,000 | ---D | C] -- C:\Users\Avans\Desktop\Kompania
[2016-03-05 12:17:21 | 000,000,000 | ---D | C] -- C:\Users\Avans\Desktop\10.21.44.17
[2016-03-05 12:16:37 | 000,000,000 | ---D | C] -- C:\Users\Avans\Desktop\Nowy folder (3)
[2016-03-04 21:06:19 | 000,446,464 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wmvdmoe.dll
[2016-03-04 21:06:12 | 000,000,000 | ---D | C] -- C:\Users\Avans\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Argus Surveillance
[2016-03-04 21:06:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Argus Surveillance
[2016-03-04 21:06:04 | 000,000,000 | ---D | C] -- C:\ProgramData\PY_Software
[2016-03-04 21:06:04 | 000,000,000 | ---D | C] -- C:\Program Files\Argus Surveillance DVR
[2016-03-04 21:05:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Smart Professional Surveillance System
[2012-07-29 07:40:39 | 000,082,816 | ---- | C] (VSO Software) -- C:\Users\Avans\AppData\Roaming\pcouffin.sys
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2016-03-18 21:27:44 | 001,663,252 | ---- | M] () -- C:\windows\SysNative\PerfStringBackup.INI
[2016-03-18 21:27:44 | 000,738,154 | ---- | M] () -- C:\windows\SysNative\perfh015.dat
[2016-03-18 21:27:44 | 000,652,322 | ---- | M] () -- C:\windows\SysNative\perfh009.dat
[2016-03-18 21:27:44 | 000,154,810 | ---- | M] () -- C:\windows\SysNative\perfc015.dat
[2016-03-18 21:27:44 | 000,121,254 | ---- | M] () -- C:\windows\SysNative\perfc009.dat
[2016-03-18 21:27:02 | 000,001,048 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
[2016-03-18 21:21:23 | 000,142,887 | ---- | M] () -- C:\windows\SysNative\fastboot.set
[2016-03-18 21:21:00 | 000,001,044 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job
[2016-03-18 21:20:46 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2016-03-18 21:20:42 | 2348,421,120 | -HS- | M] () -- C:\hiberfil.sys
[2016-03-18 20:22:15 | 000,021,280 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2016-03-18 20:22:15 | 000,021,280 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2016-03-07 08:35:33 | 693,862,556 | ---- | M] () -- C:\Users\Avans\Desktop\CD8.nrg
[2016-03-07 08:35:33 | 693,862,556 | ---- | M] () -- C:\Users\Avans\Desktop\CD8 - Kopia.nrg
[2016-03-07 08:32:29 | 786,530,460 | ---- | M] () -- C:\Users\Avans\Desktop\CD7.nrg
[2016-03-07 08:32:29 | 786,530,460 | ---- | M] () -- C:\Users\Avans\Desktop\CD7 - Kopia.nrg
[2016-03-06 19:14:45 | 001,204,570 | ---- | M] () -- C:\Users\Avans\Desktop\2.png
[2016-03-06 19:14:38 | 001,214,601 | ---- | M] () -- C:\Users\Avans\Desktop\1.png
[2016-03-06 19:14:31 | 001,236,509 | ---- | M] () -- C:\Users\Avans\Desktop\3.png
[2016-03-06 12:00:47 | 000,047,586 | ---- | M] () -- C:\Users\Avans\Desktop\2016_02_10_10_10_55.jpg
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2016-03-07 09:48:08 | 786,530,460 | ---- | C] () -- C:\Users\Avans\Desktop\CD7 - Kopia.nrg
[2016-03-07 09:47:16 | 693,862,556 | ---- | C] () -- C:\Users\Avans\Desktop\CD8 - Kopia.nrg
[2016-03-07 08:33:23 | 693,862,556 | ---- | C] () -- C:\Users\Avans\Desktop\CD8.nrg
[2016-03-07 08:30:05 | 786,530,460 | ---- | C] () -- C:\Users\Avans\Desktop\CD7.nrg
[2016-03-06 15:26:41 | 001,236,509 | ---- | C] () -- C:\Users\Avans\Desktop\3.png
[2016-03-06 15:08:36 | 001,204,570 | ---- | C] () -- C:\Users\Avans\Desktop\2.png
[2016-03-06 13:56:13 | 001,214,601 | ---- | C] () -- C:\Users\Avans\Desktop\1.png
[2016-03-06 12:00:47 | 000,047,586 | ---- | C] () -- C:\Users\Avans\Desktop\2016_02_10_10_10_55.jpg
[2016-03-04 18:43:29 | 000,761,856 | ---- | C] () -- C:\windows\SysWow64\xvidcore.dll
[2016-03-04 18:43:29 | 000,180,224 | ---- | C] () -- C:\windows\SysWow64\xvidvfw.dll
[2016-01-14 14:42:07 | 000,364,627 | ---- | C] () -- C:\windows\SysWow64\AuthorityServiceControl.exe
[2016-01-14 14:42:07 | 000,196,608 | ---- | C] () -- C:\windows\SysWow64\nvrfs.dll
[2015-12-25 12:39:28 | 000,000,085 | ---- | C] () -- C:\windows\wininit.ini
[2015-12-25 12:35:10 | 000,000,020 | ---- | C] () -- C:\Users\Avans\defogger_reenable
[2015-12-24 20:17:44 | 000,000,008 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2015-12-24 14:22:20 | 000,120,200 | ---- | C] () -- C:\windows\SysWow64\DLLDEV32i.dll
[2015-12-22 18:09:05 | 000,480,256 | ---- | C] () -- C:\windows\VISCA.dll
[2015-12-22 18:09:05 | 000,253,952 | ---- | C] () -- C:\windows\JxIni.dll
[2015-12-22 18:09:05 | 000,243,200 | ---- | C] () -- C:\windows\GV_GeoPTZini.dll
[2015-12-22 18:09:05 | 000,211,968 | ---- | C] ( ) -- C:\windows\GV_AccessIni_Memory.dll
[2015-12-19 23:17:19 | 000,301,568 | ---- | C] () -- C:\windows\SysWow64\LiveWrapRTSP.dll
[2015-11-05 08:53:50 | 000,696,320 | ---- | C] () -- C:\windows\SysWow64\HEMavcodec.dll
[2015-11-05 08:53:50 | 000,102,400 | ---- | C] () -- C:\windows\SysWow64\HEMmplayer.dll
[2015-10-14 17:35:30 | 000,050,512 | ---- | C] () -- C:\windows\SelfPlayer.exe
[2015-10-14 17:35:30 | 000,001,926 | ---- | C] () -- C:\windows\SelfPlayer.ini
[2015-10-07 23:32:48 | 000,047,080 | ---- | C] () -- C:\windows\SysWow64\DiscHandler.exe
[2015-06-02 18:54:01 | 000,905,290 | R--- | C] () -- C:\windows\SysWow64\libmmd.dll
[2014-06-26 01:06:43 | 000,032,954 | ---- | C] () -- C:\ProgramData\1403741176.bdinstall.bin
[2014-05-14 18:29:27 | 000,000,014 | ---- | C] () -- C:\windows\SysWow64\SysInfo_6_6_s.dll
[2014-04-14 11:49:54 | 000,296,356 | ---- | C] () -- C:\ProgramData\1397472443.bdinstall.bin
[2014-04-14 11:49:49 | 000,049,277 | ---- | C] () -- C:\ProgramData\1397472572.bdinstall.bin
[2014-04-13 13:11:51 | 000,584,687 | ---- | C] () -- C:\ProgramData\1397388635.bdinstall.bin
[2014-04-04 15:02:49 | 000,174,440 | ---- | C] () -- C:\Users\Avans\comcat5.dll
[2012-07-29 07:40:39 | 000,099,384 | ---- | C] () -- C:\Users\Avans\AppData\Roaming\inst.exe
[2012-07-29 07:40:39 | 000,007,859 | ---- | C] () -- C:\Users\Avans\AppData\Roaming\pcouffin.cat
[2012-07-29 07:40:39 | 000,001,167 | ---- | C] () -- C:\Users\Avans\AppData\Roaming\pcouffin.inf
[2012-03-03 00:18:41 | 000,007,605 | ---- | C] () -- C:\Users\Avans\AppData\Local\Resmon.ResmonCfg
[2002-08-08 05:11:30 | 000,319,488 | R--- | C] () -- C:\Users\Avans\AppData\Roaming\MafiaSetup.exe
[color=#E56717]========== ZeroAccess Check ==========[/color]
[2009-07-14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013-07-26 03:24:57 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013-07-26 02:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009-07-14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010-11-21 04:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009-07-14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
[color=#E56717]========== LOP Check ==========[/color]
[2014-06-25 21:25:10 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\Audacity
[2013-09-04 18:56:06 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\BESTplayer
[2016-02-03 12:32:00 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\Bosch
[2016-02-22 17:39:46 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\BSplayer
[2015-12-20 13:10:53 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\BSplayer Pro
[2015-12-07 09:45:31 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\DarkEra
[2013-08-31 18:26:45 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\DMCache
[2014-04-13 11:23:41 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\Foxit Software
[2012-03-14 22:07:04 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\Gadu-Gadu 10
[2016-02-11 12:06:16 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\GG
[2015-12-12 10:42:08 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\GHISLER
[2014-04-13 13:19:18 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\IDM
[2015-06-20 22:35:53 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\ipla
[2012-04-19 17:42:49 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\Leadertech
[2015-12-24 14:24:22 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\MAGIX
[2015-12-20 13:03:13 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\MediaInfo
[2015-01-31 12:55:17 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\Mount&Blade Warband
[2015-08-28 13:26:37 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\MPC-HC
[2012-10-26 19:11:55 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\NapiProjekt
[2013-04-21 07:17:59 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\Nokia
[2012-02-26 10:26:01 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\Nokia Suite
[2014-04-16 21:40:15 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\NUUO
[2012-03-08 11:06:44 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\OpenFM
[2016-03-17 06:37:34 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\Opera Software
[2012-02-26 10:25:51 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\PC Suite
[2013-03-24 15:32:20 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\PunkBuster
[2014-04-13 12:27:55 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\QuickScan
[2012-05-10 19:24:05 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\R-TT
[2013-06-02 16:04:18 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\Rovio
[2013-03-09 20:23:17 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\Samsung
[2015-08-29 11:50:36 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\Shortcut
[2012-03-01 00:05:54 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\SoftGrid Client
[2015-06-02 18:56:56 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\Software Informer
[2015-12-10 14:19:35 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\SPTemp
[2014-11-04 10:07:11 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\Steam
[2012-02-07 18:39:05 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\The Creative Engine Limited
[2015-06-01 13:31:29 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\Thinstall
[2012-02-26 10:10:57 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\TP
[2013-04-13 19:28:34 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\TuneUp Software
[2014-02-25 16:20:20 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\Ubisoft
[2014-06-25 21:00:29 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\Ulead Systems
[2014-01-21 17:33:39 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\Unity
[2012-07-29 07:40:52 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\Vso
[2015-09-20 18:08:59 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\WarThunder
[2014-05-14 18:28:17 | 000,000,000 | ---D | M] -- C:\Users\Avans\AppData\Roaming\WorldofTanks
[2013-05-10 01:05:21 | 000,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\TuneUp Software
[2013-05-10 01:05:21 | 000,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\TuneUp Software
[2015-12-24 14:21:35 | 000,000,000 | ---D | M] -- C:\Users\UpdatusUser\AppData\Roaming\Opera Software
[color=#E56717]========== Purity Check ==========[/color]
[color=#E56717]========== Alternate Data Streams ==========[/color]
@Alternate Data Stream - 148 bytes -> C:\ProgramData\Temp:CB0AACC9
< End of report >
extras
- Kod: Zaznacz wszystko
OTL Extras logfile created on: 2016-03-18 21:21:41 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Avans\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16686)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
2,92 Gb Total Physical Memory | 1,78 Gb Available Physical Memory | 61,15% Memory free
5,83 Gb Paging File | 4,63 Gb Available in Paging File | 79,33% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 211,96 Gb Total Space | 79,68 Gb Free Space | 37,59% Space Free | Partition Type: NTFS
Drive D: | 238,85 Gb Total Space | 139,33 Gb Free Space | 58,33% Space Free | Partition Type: NTFS
Computer Name: AVANS-KOMPUTER | User Name: Avans | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
[color=#E56717]========== File Associations ==========[/color]
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = OperaStable] -- Reg Error: Key error. File not found
.url[@ = InternetShortcut] -- C:\windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = OperaStable] -- Reg Error: Key error. File not found
[HKEY_USERS\S-1-5-21-40995747-2143766178-1930525636-1001\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
[color=#E56717]========== Shell Spawning ==========[/color]
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\Opera\launcher.exe" -noautoupdate -- "%1"
https [open] -- "C:\Program Files (x86)\Opera\launcher.exe" -noautoupdate -- "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [mplayerc64.enqueue] -- "C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64_nvo.exe" /add "%1" (MPC-HC Team)
Directory [mplayerc64.play] -- "C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64_nvo.exe" "%1" (MPC-HC Team)
Directory [napiprojekt] -- "C:\Program Files (x86)\NapiProjekt\napisy.exe" "%1" ()
Directory [napiprojekt0] -- "C:\Program Files (x86)\NapiProjekt\napisy.exe" "%1" -pobierz_ang ()
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\Opera\launcher.exe" -noautoupdate -- "%1"
https [open] -- "C:\Program Files (x86)\Opera\launcher.exe" -noautoupdate -- "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [mplayerc64.enqueue] -- "C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64_nvo.exe" /add "%1" (MPC-HC Team)
Directory [mplayerc64.play] -- "C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64_nvo.exe" "%1" (MPC-HC Team)
Directory [napiprojekt] -- "C:\Program Files (x86)\NapiProjekt\napisy.exe" "%1" ()
Directory [napiprojekt0] -- "C:\Program Files (x86)\NapiProjekt\napisy.exe" "%1" -pobierz_ang ()
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
[color=#E56717]========== Security Center Settings ==========[/color]
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
[color=#E56717]========== Firewall Settings ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[color=#E56717]========== Authorized Applications List ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02ACA516-7DAD-49E3-8353-2C180E4B6F1F}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{0A374F6D-3C9D-44A8-8015-E6FA3CE9E49A}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{150B9D76-6169-4654-B6E2-599C1A933FFB}" = lport=2869 | protocol=6 | dir=in | app=system |
"{29B3AEF5-56A2-4D42-8B40-E86CB48273AF}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{4729493C-2410-448B-BC1D-5857357DE765}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{54490477-248B-4F01-8704-51642E48054C}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{63DA7D2D-A18A-4538-BB91-EB5907B966E9}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{6A9F924E-E50C-4D06-9820-66EA489A07BF}" = lport=139 | protocol=6 | dir=in | app=system |
"{7290B0A8-8FC9-4AEC-97BF-A3641C9A99E4}" = rport=10243 | protocol=6 | dir=out | app=system |
"{9111DF9F-1AE9-45A5-A75F-D67B7565E1C6}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{944F4EA0-CE59-4D1C-BC33-02BE9CD0E69C}" = lport=138 | protocol=17 | dir=in | app=system |
"{9DC4CE48-DE46-4515-A7D4-1BB952D856DD}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{A20AEDA1-DC2C-44FA-83BD-CDB715943BE9}" = lport=10243 | protocol=6 | dir=in | app=system |
"{A29FF1A4-1F25-4128-82A1-002C2C9EAAC4}" = lport=445 | protocol=6 | dir=in | app=system |
"{A7E1757B-9B36-41F8-9725-83A2F920590B}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office14\outlook.exe |
"{B76D76B1-DA51-42DB-9E68-13E3D20B223D}" = rport=138 | protocol=17 | dir=out | app=system |
"{BAEBBFD7-519C-4326-A24D-0ED70E98B23E}" = rport=139 | protocol=6 | dir=out | app=system |
"{BF02CB48-DE41-417B-BC1F-1C8DA81433E5}" = lport=137 | protocol=17 | dir=in | app=system |
"{C91CF474-71C7-4AAE-B8D5-5D64A39B5065}" = rport=137 | protocol=17 | dir=out | app=system |
"{CE675476-FF1A-41EF-89B2-5E3D15E7C0FE}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{CF2B7465-7A43-409D-A41F-C9C8065F3303}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{D0548DBD-D5A9-46CA-B0FE-562546119032}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{D32ADD8F-3830-4127-AB68-BF6672E2476C}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{D3E8F6D0-D748-4F2F-8A92-9863A3E3AA8E}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{F52CF8FF-74E3-4ED0-9D2B-45AEE787A864}" = rport=445 | protocol=6 | dir=out | app=system |
[color=#E56717]========== Vista Active Application Exception List ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{030C1C03-211C-42D8-AE57-0E5858143EB0}" = protocol=6 | dir=in | app=c:\program files (x86)\landwirtschafts simulator 2011\farmingsimulator2011.exe |
"{0420686E-4BBB-4209-AF9B-DA774EABABF7}" = dir=in | app=c:\program files (x86)\nokia\nokia suite\nokiasuite.exe |
"{069DAB0B-C4D0-48B4-BFE4-52E269726064}" = dir=in | app=c:\program files (x86)\cdp games\farming simulator 15\dedicatedserver.exe |
"{0D7CB2B3-57D9-4CFC-B3C1-83A789383C53}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed\assassinscreed_launcher.exe |
"{0DB1DB14-BB8C-4A54-92B6-0040F2B51215}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{0F9E7605-53F4-4914-B684-FA699EECDC5B}" = protocol=17 | dir=in | app=d:\gry\assassin's creed revelations\acrsp.exe |
"{11A55D8A-0E98-4CCA-9175-E2BFF43D204F}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{13043DB8-2A19-4985-863C-7FED8F74AFD9}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{144FDFFC-6C84-49B2-9AA0-4325D0D4B12F}" = protocol=6 | dir=in | app=d:\gry\acbmp.exe |
"{17499DDE-4997-4F66-B96E-8F75BC712203}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{1A7BD475-CDE2-48D5-A2FF-0C6DEBEAB1DA}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{1C3BF7A6-DB98-45B5-9EAA-6B2BBC260746}" = protocol=6 | dir=in | app=d:\gry\assassin's creed revelations\assassinscreedrevelations.exe |
"{2024E2E9-A146-4414-AF7C-4741615CE3A2}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{20AEEF88-88A0-4CFF-AE59-CBCDF640D2B1}" = protocol=6 | dir=in | app=c:\program files (x86)\deskshare\ip camera viewer 2\ip camera viewer.exe |
"{22150482-C042-49DF-AAE7-3EC32B3ECCD9}" = dir=in | app=c:\program files (x86)\nokia\nokia suite\nokiasuite.exe |
"{24552D41-44A2-4A7B-B3BA-0EF07ABF308C}" = protocol=6 | dir=in | app=c:\program files (x86)\landwirtschafts simulator 2011\game.exe |
"{25041B3D-0AA6-4B91-BAEB-0B3A560EC468}" = dir=in | app=c:\program files (x86)\cdp games\farming simulator 15\farmingsimulator2015.exe |
"{2D25DCE3-8A9E-4968-8FD3-D5D84366A590}" = protocol=17 | dir=in | app=c:\program files (x86)\landwirtschafts simulator 2011\farmingsimulator2011.exe |
"{34AE8EC3-5AD2-4C67-9662-57CFA98B118B}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{34B1C89F-7EF8-4A09-B11E-1F31E3E072CB}" = protocol=6 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{35C99D83-42D7-433D-B76E-5666C61F01CA}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\groove.exe |
"{3C295047-D2FF-457A-900D-66705C025177}" = protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{3C9D6FC7-2497-42AC-9266-DDF5AB13C267}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{3F08DB59-B14D-437A-B177-CA16B3254980}" = protocol=6 | dir=in | app=c:\program files (x86)\activision\call of duty - world at war\codwawmp.exe |
"{456CD1CA-B62B-4719-ABE4-842AC06571B5}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed\assassinscreed_dx9.exe |
"{47F0DD5C-EF2D-43D5-8ECA-BD5D9E8BB92F}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed\assassinscreed_launcher.exe |
"{48C08F92-20B7-4B21-869A-CA2AF4B7A7C6}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed ii\assassinscreediigame.exe |
"{4E7723DE-1629-4EBE-AFD6-78ACB3CEE32C}" = dir=in | app=c:\program files (x86)\cyberlink\powerdvd9\powerdvd cinema\powerdvdcinema.exe |
"{50441753-6835-42C6-85D2-E6D12C6AA894}" = protocol=17 | dir=in | app=c:\program files (x86)\activision\call of duty - world at war\codwaw.exe |
"{51E93943-387E-48E4-9EC4-B866598C04F9}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{522F4A63-824C-447A-9696-703C88408FEF}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed\assassinscreed_dx9.exe |
"{54B452FC-0DC9-4EF3-A0C2-86EB4A756932}" = protocol=17 | dir=in | app=c:\program files (x86)\kmpconnect\kmpconnectcore.exe |
"{57E2A335-D40B-42E3-9434-0BD2F4BEA0A2}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{5D0D4FDA-4BE8-4708-8D43-E01175534344}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed ii\assassinscreedii.exe |
"{61C9C931-AAFB-45FD-A2DE-37A555DA4B9E}" = protocol=6 | dir=in | app=c:\program files (x86)\kmpconnect\kmpconnectcore.exe |
"{648A373C-65F0-4204-A7D3-62BB4706EAE5}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{655F1DC9-6D87-4A05-A054-5B00D9FA403F}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{665691C6-BCE2-4622-8A1F-22116C2D708A}" = protocol=17 | dir=in | app=c:\program files (x86)\deskshare\ip camera viewer 2\ip camera viewer.exe |
"{6974FEDB-C16E-4F31-A364-37FB8A3BEEE6}" = dir=in | app=c:\program files\networx\networx.exe |
"{6C5D6757-42BC-48A2-A3D5-19850AB6D5F3}" = protocol=6 | dir=out | app=system |
"{6F8628A0-2597-4CE5-9FC5-EB544A2DBD66}" = protocol=17 | dir=in | app=d:\gry\uplaybrowser.exe |
"{720EF99F-E19C-4C58-84E9-1EF349700DBF}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{74AC4803-F480-4A90-B549-AB8CE9301B21}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{7582156F-9957-414D-BB96-79C37A876D19}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{786029D6-4156-4FC7-9265-A42648BD5AAE}" = protocol=17 | dir=in | app=c:\program files\argus surveillance dvr\webserverforadmin.exe |
"{7F5D8445-1F6A-4693-AD91-6D0953E1D7FB}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{7F6A214D-FEE1-44EB-A3D5-C79CE516EA56}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{88B9243A-E271-47CB-BE87-66B1DE352C77}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{8C91C867-DF04-4418-BBB8-6710234E188C}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed ii\assassinscreedii.exe |
"{8FF55F69-30E2-4DBB-9A64-8098D030717D}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed ii\uplaybrowser.exe |
"{917C5ABB-4D20-45BA-9D72-F06A93719C6E}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{93C68875-769F-4B24-92FB-6CC564A3955E}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed ii\assassinscreediigame.exe |
"{96057FF0-0FC6-418A-8A1B-0D77FD8D75D5}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed\assassinscreed_dx10.exe |
"{98A39351-E197-42E6-A93E-EA232AD95AD0}" = protocol=6 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{9929B82E-86E5-43A0-A6F4-4D33C93A666B}" = protocol=17 | dir=in | app=d:\gry\assassin's creed revelations\assassinscreedrevelations.exe |
"{9B9FB6E8-A47A-48E7-AE76-768FB8FE6520}" = protocol=17 | dir=in | app=d:\gry\assassin's creed revelations\acrmp.exe |
"{9F12E762-F0BB-42C3-A500-0D976D370355}" = protocol=17 | dir=in | app=d:\gry\acbsp.exe |
"{A1CF1B54-880A-4D42-BA3D-81D222CE8006}" = protocol=6 | dir=in | app=c:\program files\argus surveillance dvr\webserverforadmin.exe |
"{A560A25A-CAC1-4D5E-AE7C-58166130791E}" = protocol=6 | dir=in | app=d:\gry\assassin's creed revelations\acrsp.exe |
"{A5FF0258-CE12-47EE-AE5D-FC321C8D7D28}" = protocol=17 | dir=in | app=d:\gry\assassinscreedbrotherhood.exe |
"{B1542F67-1AD2-44C2-8634-B4FE92BB4E73}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{B1B7315E-2698-4F31-8DF4-985089EED040}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{B8FB6FF3-C3C3-48EE-853A-8BB4807F7AA2}" = dir=in | app=c:\program files (x86)\nokia\nokia suite\nokiasuite.exe |
"{B92113F0-F740-4C02-94A1-1B4A42B080D5}" = protocol=6 | dir=in | app=c:\program files (x86)\activision\call of duty - world at war\codwaw.exe |
"{B936DE49-EC04-447B-8969-16C12A79336D}" = dir=in | app=c:\program files (x86)\windows live\mesh\moe.exe |
"{BB543CD0-74D7-4356-B836-375655B9D44D}" = protocol=6 | dir=in | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{C3659613-431E-4704-B65E-6283C9D61275}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{C462E2A2-F184-43B7-BA83-4AFB90964D6D}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{C5310B59-2D06-468B-9F7C-CAF3E39C1B85}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{C7250B66-686C-4892-8D1C-3C13B22BBDAC}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{C8AFF468-6205-44D9-9581-9411E2F426F4}" = protocol=6 | dir=in | app=d:\gry\assassinscreedbrotherhood.exe |
"{CB61529C-317D-47B9-BFF1-10B2DDB7B014}" = protocol=17 | dir=in | app=c:\program files (x86)\landwirtschafts simulator 2011\game.exe |
"{CC35BB63-DA12-425B-A18C-2ED9C59EC6C4}" = dir=in | app=c:\program files (x86)\cyberlink\powerdvd9\powerdvd9.exe |
"{D07BB4C7-ACBB-4185-8083-4145609EE871}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{DF786CE7-331C-4076-9C80-7E09410A360A}" = protocol=17 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{E0C5B1EC-EC1A-4382-B29F-974DF48BFAEC}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed\assassinscreed_dx10.exe |
"{E255F6E3-4621-41DF-803E-6945D782D58D}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{E284FBE0-DE2E-4256-BDE8-EE7DFBED9728}" = protocol=17 | dir=in | app=c:\program files (x86)\activision\call of duty - world at war\codwawmp.exe |
"{E774BC58-BC4E-482E-B28F-C2E5ACE824AE}" = protocol=6 | dir=in | app=d:\gry\uplaybrowser.exe |
"{EA3852F3-91DC-40BC-B210-9E1C189A833F}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed ii\uplaybrowser.exe |
"{EA957721-A07A-4BB3-89B5-43E8498A1E94}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{EFFBD0EA-D16A-4C1F-98CD-04A567EB4A66}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{F0392FFC-4E6E-4CB5-BF06-A68068AAE3F8}" = protocol=6 | dir=in | app=d:\gry\assassin's creed revelations\acrmp.exe |
"{F7E5A6FF-3264-4AFF-8A0D-3F71980B932F}" = protocol=6 | dir=in | app=d:\gry\acbsp.exe |
"{FDBE4714-815C-4A32-8432-3F0695B42D56}" = protocol=17 | dir=in | app=d:\gry\acbmp.exe |
"{FF1637A6-9FA5-4562-A575-3A8D191E3688}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\groove.exe |
"TCP Query User{0C37B4F1-A405-4834-BA4E-1E2D25D43E28}C:\program files (x86)\call of duty\coduomp.exe" = protocol=6 | dir=in | app=c:\program files (x86)\call of duty\coduomp.exe |
"TCP Query User{21943B6F-83A9-4AFD-9B5C-9D0BFBE6399C}D:\gry\assassin's creed revelations\acrsp.exe" = protocol=6 | dir=in | app=d:\gry\assassin's creed revelations\acrsp.exe |
"TCP Query User{38CDFB46-53DB-48D8-AABE-06CB24D951BA}C:\program files (x86)\ubisoft\related designs\anno 1404\tools\anno4web.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\related designs\anno 1404\tools\anno4web.exe |
"TCP Query User{40ED22FD-4164-44C4-BF6A-0F431BDB3725}C:\games\world_of_warships\wowslauncher.exe" = protocol=6 | dir=in | app=c:\games\world_of_warships\wowslauncher.exe |
"TCP Query User{49325266-483F-4691-B1AC-68F9F37DCD82}C:\program files (x86)\stronghold crusader 2\bin\win32_release\crusader2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\stronghold crusader 2\bin\win32_release\crusader2.exe |
"TCP Query User{4FC240B4-CDA6-4788-9283-F8DBBF0CB7F2}C:\program files (x86)\call of duty\codmp.exe" = protocol=6 | dir=in | app=c:\program files (x86)\call of duty\codmp.exe |
"TCP Query User{538BE5D1-A9A0-4BB0-9E63-D2734186860A}C:\windows\syswow64\dplaysvr.exe" = protocol=6 | dir=in | app=c:\windows\syswow64\dplaysvr.exe |
"TCP Query User{726F634D-45A2-4E0E-B420-BCFDEC2C1A43}C:\program files (x86)\mount&blade warband\mb_warband.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mount&blade warband\mb_warband.exe |
"TCP Query User{7F967AA2-1E21-48F2-BD18-CDA87E581DE8}C:\program files (x86)\lucasarts\star wars jk ii jedi outcast\gamedata\jk2mp.exe" = protocol=6 | dir=in | app=c:\program files (x86)\lucasarts\star wars jk ii jedi outcast\gamedata\jk2mp.exe |
"TCP Query User{8294171F-86BE-461F-BF16-17F50772664A}C:\program files (x86)\stronghold crusader 2\bin\win32_release\crusader2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\stronghold crusader 2\bin\win32_release\crusader2.exe |
"TCP Query User{8F9FA850-3527-4365-8E1D-8A077385E99C}C:\program files (x86)\smart professional surveillance system\smartpss\smartpss.exe" = protocol=6 | dir=in | app=c:\program files (x86)\smart professional surveillance system\smartpss\smartpss.exe |
"TCP Query User{90BC5B28-14B2-4C20-8CB7-2E36336D9510}D:\gry\btaelfield\bf1942.exe" = protocol=6 | dir=in | app=d:\gry\btaelfield\bf1942.exe |
"TCP Query User{A9F25CCD-AB8F-4C9F-8336-6DBCA42D8FF3}D:\gry\acbsp.exe" = protocol=6 | dir=in | app=d:\gry\acbsp.exe |
"TCP Query User{B36E8AAA-DF27-4621-919A-6C7C71197E97}C:\program files\argus surveillance dvr\webserverforadmin.exe" = protocol=6 | dir=in | app=c:\program files\argus surveillance dvr\webserverforadmin.exe |
"TCP Query User{BEE2ADD1-7B80-46A6-A7E4-59D50B0302EB}D:\gry\btaelfield\bf1942.exe" = protocol=6 | dir=in | app=d:\gry\btaelfield\bf1942.exe |
"TCP Query User{BFD1EA00-5296-4572-BC4A-91D9416D2814}C:\timhillone\h264webcam\h264webcam.exe" = protocol=6 | dir=in | app=c:\timhillone\h264webcam\h264webcam.exe |
"TCP Query User{C159D4DC-22F5-4CF0-BA75-8055D319A9A8}C:\program files (x86)\activision\call of duty - world at war\codwaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\activision\call of duty - world at war\codwaw.exe |
"TCP Query User{C51D7778-5C89-4D2D-BC7B-BE88E3175F51}C:\gog games\stronghold crusader extreme hd\stronghold crusader.exe" = protocol=6 | dir=in | app=c:\gog games\stronghold crusader extreme hd\stronghold crusader.exe |
"TCP Query User{D2E95927-4996-4991-B600-6C95A42715CB}C:\program files (x86)\smart professional surveillance system\pc-nvr\challenge.exe" = protocol=6 | dir=in | app=c:\program files (x86)\smart professional surveillance system\pc-nvr\challenge.exe |
"TCP Query User{D58BEAA4-A55F-4869-8D7A-34E3C5993CA2}C:\windows\syswow64\dplaysvr.exe" = protocol=6 | dir=in | app=c:\windows\syswow64\dplaysvr.exe |
"TCP Query User{DA282B03-4625-448B-B434-293F74149F58}C:\program files (x86)\ubisoft\assassin's creed ii\assassinscreediigame.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed ii\assassinscreediigame.exe |
"TCP Query User{F0F2DBD1-CC1B-4A26-8483-7E5E8FA72E6A}C:\gog games\stronghold crusader extreme hd\stronghold crusader.exe" = protocol=6 | dir=in | app=c:\gog games\stronghold crusader extreme hd\stronghold crusader.exe |
"UDP Query User{0ABD90A0-02D0-4636-BDEB-97A031DF5A92}C:\program files (x86)\ubisoft\related designs\anno 1404\tools\anno4web.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\related designs\anno 1404\tools\anno4web.exe |
"UDP Query User{0C186D92-ADE0-444D-A0C4-7888EBE48368}C:\gog games\stronghold crusader extreme hd\stronghold crusader.exe" = protocol=17 | dir=in | app=c:\gog games\stronghold crusader extreme hd\stronghold crusader.exe |
"UDP Query User{13EE22DD-5528-4217-8B9F-F4340B11E4E0}D:\gry\assassin's creed revelations\acrsp.exe" = protocol=17 | dir=in | app=d:\gry\assassin's creed revelations\acrsp.exe |
"UDP Query User{203D5046-D1D4-4B64-A241-418879722C89}C:\program files (x86)\call of duty\codmp.exe" = protocol=17 | dir=in | app=c:\program files (x86)\call of duty\codmp.exe |
"UDP Query User{3C126A9C-83FD-4C5A-9746-48590E7F2B6D}C:\program files (x86)\ubisoft\assassin's creed ii\assassinscreediigame.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed ii\assassinscreediigame.exe |
"UDP Query User{3EFCA0A8-4A3A-480A-956C-9BB36213B053}C:\windows\syswow64\dplaysvr.exe" = protocol=17 | dir=in | app=c:\windows\syswow64\dplaysvr.exe |
"UDP Query User{4CF6A503-283B-474F-8B7B-A1D0C1A95E10}C:\program files (x86)\call of duty\coduomp.exe" = protocol=17 | dir=in | app=c:\program files (x86)\call of duty\coduomp.exe |
"UDP Query User{5293494F-61C3-4184-89AF-109F88AB689B}C:\windows\syswow64\dplaysvr.exe" = protocol=17 | dir=in | app=c:\windows\syswow64\dplaysvr.exe |
"UDP Query User{5357AC62-79CE-46BA-8753-0243020EFF80}C:\program files (x86)\smart professional surveillance system\pc-nvr\challenge.exe" = protocol=17 | dir=in | app=c:\program files (x86)\smart professional surveillance system\pc-nvr\challenge.exe |
"UDP Query User{5B8D8FB7-0C86-48F0-95CF-9C6C5403DE1B}D:\gry\btaelfield\bf1942.exe" = protocol=17 | dir=in | app=d:\gry\btaelfield\bf1942.exe |
"UDP Query User{5C24D71A-8DAD-47BE-9C76-0EB281D89BD3}C:\games\world_of_warships\wowslauncher.exe" = protocol=17 | dir=in | app=c:\games\world_of_warships\wowslauncher.exe |
"UDP Query User{5C6EB550-6491-4527-A65C-B5F442ABC7DE}C:\program files (x86)\mount&blade warband\mb_warband.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mount&blade warband\mb_warband.exe |
"UDP Query User{619F7334-9BF2-4380-B0ED-AB0D89210405}C:\program files\argus surveillance dvr\webserverforadmin.exe" = protocol=17 | dir=in | app=c:\program files\argus surveillance dvr\webserverforadmin.exe |
"UDP Query User{65E76BAD-52DC-4B84-9C70-381EBF434EDD}C:\gog games\stronghold crusader extreme hd\stronghold crusader.exe" = protocol=17 | dir=in | app=c:\gog games\stronghold crusader extreme hd\stronghold crusader.exe |
"UDP Query User{75DFF840-939F-4BDB-AFB0-BB56092B663B}C:\program files (x86)\smart professional surveillance system\smartpss\smartpss.exe" = protocol=17 | dir=in | app=c:\program files (x86)\smart professional surveillance system\smartpss\smartpss.exe |
"UDP Query User{7F5E1023-F562-4E03-9D95-3A8ADE31FE3A}D:\gry\acbsp.exe" = protocol=17 | dir=in | app=d:\gry\acbsp.exe |
"UDP Query User{9789B5F1-50F6-4F8E-8EAB-1A30790FDD3F}D:\gry\btaelfield\bf1942.exe" = protocol=17 | dir=in | app=d:\gry\btaelfield\bf1942.exe |
"UDP Query User{9BC00F5B-3408-4E0D-A69E-37DFE67D03B9}C:\program files (x86)\activision\call of duty - world at war\codwaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\activision\call of duty - world at war\codwaw.exe |
"UDP Query User{ADBB6F60-CA47-491F-9237-1B06EE94EA90}C:\program files (x86)\lucasarts\star wars jk ii jedi outcast\gamedata\jk2mp.exe" = protocol=17 | dir=in | app=c:\program files (x86)\lucasarts\star wars jk ii jedi outcast\gamedata\jk2mp.exe |
"UDP Query User{CEC3F0F0-9C7E-464D-A6A4-F22059ED9DDC}C:\program files (x86)\stronghold crusader 2\bin\win32_release\crusader2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\stronghold crusader 2\bin\win32_release\crusader2.exe |
"UDP Query User{DA938ACD-885A-4BBF-B3F7-4AE483306DCC}C:\program files (x86)\stronghold crusader 2\bin\win32_release\crusader2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\stronghold crusader 2\bin\win32_release\crusader2.exe |
"UDP Query User{EADF0BFE-D8F3-4363-86F5-7BE8D150D336}C:\timhillone\h264webcam\h264webcam.exe" = protocol=17 | dir=in | app=c:\timhillone\h264webcam\h264webcam.exe |
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1B8ABA62-74F0-47ED-B18C-A43128E591B8}" = Windows Live ID Sign-in Assistant
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{21B133D6-5979-47F0-BE1C-F6A6B304693F}" = Visual Studio 2010 x64 Redistributables
"{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
"{2426E29F-9E8C-4C0B-97FC-0DB690C1ED98}" = Windows Live Remote Client Resources
"{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}" = Lenovo Bluetooth with Enhanced Data Rate Software
"{46F4D124-20E5-4D12-BE52-EC177A7A4B42}" = Lenovo OneKey Recovery
"{480F28F0-8BCE-404A-A52E-0DBB7D1CE2EF}" = Windows Live Remote Service Resources
"{4D668D4F-FAA2-4726-834C-31F4614F312E}" = MSVC80_x64_v2
"{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}" = Centrum obsługi urządzeń z systemem Windows Mobile
"{680EDA59-9266-44B4-949E-0C24F65DFF82}" = Microsoft_VC100_CRT_SP1_x64
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{8E5DA9A6-7A9F-3A6F-BC5C-D6CBCA6A29C7}" = Microsoft .NET Framework 4 Extended PLK Language Pack
"{90140000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{7BC9B5EB-125A-4E9B-97E1-8D85B5E960B8}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0015-0415-1000-0000000FF1CE}" = Microsoft Office Access MUI (Polish) 2010
"{90140000-0015-0415-1000-0000000FF1CE}_Office14.PROPLUS_{E363E2E9-6AE1-4B10-94B6-015819AE201D}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0415-1000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2010
"{90140000-0016-0415-1000-0000000FF1CE}_Office14.PROPLUS_{E363E2E9-6AE1-4B10-94B6-015819AE201D}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0415-1000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2010
"{90140000-0018-0415-1000-0000000FF1CE}_Office14.PROPLUS_{E363E2E9-6AE1-4B10-94B6-015819AE201D}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-0415-1000-0000000FF1CE}" = Microsoft Office Publisher MUI (Polish) 2010
"{90140000-0019-0415-1000-0000000FF1CE}_Office14.PROPLUS_{E363E2E9-6AE1-4B10-94B6-015819AE201D}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0415-1000-0000000FF1CE}" = Microsoft Office Outlook MUI (Polish) 2010
"{90140000-001A-0415-1000-0000000FF1CE}_Office14.PROPLUS_{E363E2E9-6AE1-4B10-94B6-015819AE201D}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-0415-1000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2010
"{90140000-001B-0415-1000-0000000FF1CE}_Office14.PROPLUS_{E363E2E9-6AE1-4B10-94B6-015819AE201D}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0407-1000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0407-1000-0000000FF1CE}_Office14.PROPLUS_{70A3169E-288F-454F-A08D-20DF66639B50}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-1000-0000000FF1CE}_Office14.PROPLUS_{0242505C-4E90-407F-9299-B5B275F50D86}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0415-1000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2010
"{90140000-001F-0415-1000-0000000FF1CE}_Office14.PROPLUS_{329A3D98-9583-4B84-B18B-498E7AB65C43}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0415-1000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2010
"{90140000-002C-0415-1000-0000000FF1CE}_Office14.PROPLUS_{BFEB53FA-3044-47FD-BB50-9DCBBEED79EF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0043-0000-1000-0000000FF1CE}" = Microsoft Office Office 32-bit Components 2010
"{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{E8B6D35B-0B6F-4DCE-9493-859BF3809A7F}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0043-0415-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (Polish) 2010
"{90140000-0043-0415-1000-0000000FF1CE}_Office14.PROPLUS_{FF5F6090-64DF-4BF6-BADD-71A64FDA70D2}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0044-0415-1000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Polish) 2010
"{90140000-0044-0415-1000-0000000FF1CE}_Office14.PROPLUS_{E363E2E9-6AE1-4B10-94B6-015819AE201D}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0415-1000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2010
"{90140000-006E-0415-1000-0000000FF1CE}_Office14.PROPLUS_{3A96ABFF-5202-47B1-B5A2-DDE76563AF61}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-0415-1000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2010
"{90140000-00A1-0415-1000-0000000FF1CE}_Office14.PROPLUS_{E363E2E9-6AE1-4B10-94B6-015819AE201D}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00BA-0415-1000-0000000FF1CE}" = Microsoft Office Groove MUI (Polish) 2010
"{90140000-00BA-0415-1000-0000000FF1CE}_Office14.PROPLUS_{E363E2E9-6AE1-4B10-94B6-015819AE201D}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{A000F75A-A246-44A7-8079-9E9E7F9054B2}" = BioExcess
"{A49402DD-2781-3782-B0CF-52BDA349E3F3}" = Microsoft .NET Framework 4 Client Profile PLK Language Pack
"{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}" = MSVC90_x64
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panel sterowania NVIDIA 267.53
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Sterownik graficzny 267.53
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus" = NVIDIA Optimus 1.0.21
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{D07A61E5-A59C-433C-BCBD-22025FA2287B}" = Windows Live Language Selector
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client
"{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F" = Pakiet sterowników systemu Windows - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0)
"CCleaner" = CCleaner
"EA12B1FB53CE4E387C31A85236C41EF559B5E392" = Pakiet sterowników systemu Windows - Lenovo (ACPIVPC) System (12/02/2010 6.1.0.1)
"Lenovo EE Boot Optimizer" = Lenovo EE Boot Optimizer
"MediaInfo" = MediaInfo 0.7.80
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile PLK Language Pack" = Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended PLK Language Pack" = Polski pakiet językowy dla programu Microsoft .NET Framework 4 Extended
"NetWorx_is1" = NetWorx 5.2.12
"Office14.PROPLUS" = Microsoft Office Professional Plus 2010
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"VLC media player" = VLC media player 1.3.0-git-20120113-0102
"WinRAR archiver" = Archiwizator WinRAR
"X Codec Pack" = X Codec Pack
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0034859F-8E01-4C1D-BE77-F891C4786FBC}" = Lenovo Security Suite
"{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"{0654EA5D-308A-4196-882B-5C09744A5D81}" = Windows Live Photo Common
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0C1931EB-8339-4837-8BEC-75029BF42734}" = Windows Live UX Platform Language Pack
"{0C808377-8C23-44ED-9016-05F42E6D4900}" = Nokia Suite
"{1111706F-666A-4037-7777-211328764D10}" = JavaFX 2.1.1
"{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}" = Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{26A24AE4-039D-4CA4-87B4-2F83218031F0}" = Java 8 Update 31
"{26E3C07C-7FF7-4362-9E99-9E49E383CF16}" = Windows Live Writer Resources
"{28DA7D8B-F9A4-4F18-8AA0-551B1E084D0D}" = Edimax Wireless LAN Card
"{29373274-977E-413C-A4DE-DC0F8E80C429}" = Nokia Connectivity Cable Driver
"{2C7E8AA1-9C03-4606-BF34-5D99D07964DA}" = Windows Live Messenger
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{33A22B2D-55BA-4508-B767-BF2E9C21A73F}" = Assassin's Creed Revelations
"{370CA4B0-A1D8-4863-A3C5-6879AEE1663A}" = Angry Birds
"{3D9CF3CA-3AB0-4A82-9853-D7C43FD1D775}" = ANNO 1404
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
"{415B2719-AD3A-4944-B404-C472DB6085B3}" = Cisco EAP-FAST Module
"{41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1" = Foxit Cloud
"{46F044A5-CE8B-4196-984E-5BD6525E361D}" = Obsługa programów Apple
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4fcf070a-daac-45e9-a8b0-6850941f7ed8}" = Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
"{505AFDC0-5E72-4928-8368-5DEA385E3647}" = CorelDRAW Graphics Suite 12
"{5151365C-4E96-44D9-9977-E348DHU4728B}_is1" = VSPlayer version 7.0.0
"{521AAD14-5030-44BB-8B0E-5CE65FCE57E0}" = InterVideo DeviceService
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{62BBB2F0-E220-4821-A564-730807D2C34D}" = Realtek USB 2.0 Reader Driver
"{64376910-1860-4CEF-8B34-AA5D205FC5F1}" = Poczta usługi Windows Live
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{65F1CF63-31E0-450B-96F3-4A88BE7361A6}" = AGEIA PhysX v7.07.09
"{669C7BD8-DAA2-49B6-966C-F1E2AAE6B17E}" = Cisco PEAP Module
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{698D7E61-E4BF-4CA6-8A09-CF6BDBFDEF65}" = Battlefield 1942
"{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}" = PC Connectivity Solution
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7A9D47BA-6D50-4087-866F-0800D8B89383}" = Podstawowe programy Windows Live
"{80CEEB1E-0A6C-45B9-A312-37A1D25FDEBC}" = QuickTime 7
"{83770D14-21B9-44B3-8689-F7B523F94560}" = Cisco LEAP Module
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{8570BEE8-0CA3-4977-9AB1-80ED93F0513C}" = Assassin's Creed II
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver For Windows 7
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8CFA9151-6404-409A-AF22-4632D04582FD}" = Assassin's Creed
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{9370105C-71BB-4FF9-A85B-36D79B95457A}_is1" = ALLConverter PRO 1.3
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}" = CyberLink PowerDVD 9
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AC76BA86-7AD7-1045-7B44-A95000000001}" = Adobe Reader 9.5.0 - Polish
"{AE4167B0-F589-4D2A-BF05-E181D543C49F}" = ES603 WDM Driver
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{B04A0E2F-1E4C-4E61-B18E-3B2BD6779CA7}" = Formant ActiveX programu Windows Live Mesh odpowiedzialny za obsługę połączeń zdalnych
"{B297CC4A-A142-40ED-AC9B-B9207851F124}_is1" = Ferro CCTV KS
"{BE4BA698-8533-4F77-9559-C7F3F78C0B05}" = Assassin's Creed Brotherhood
"{BF35168D-F6F9-4202-BA87-86B5E3C9BF7A}" = Windows Live Mesh
"{C124BC7E-1C94-44C7-A8CA-70D10644FB05}" = Intellex Player
"{C1697B05-A03B-4E73-9436-698F04BFBB91}" = Anno 1404
"{CB3F59BB-7858-41A1-A7EA-4B8A6FC7D431}" = Galeria fotografii usługi Windows Live
"{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}" = PlayReady PC Runtime x86
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D0956C11-0F60-43FE-99AD-524E833471BB}" = Energy Management
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D3694B69-6F8C-42D3-8A0A-EB2AB528C02C}" = Atheros Client Installation Program
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D80A6A73-E58A-4673-AFF5-F12D7110661F}" = Call of Duty(R) - World at War(TM)
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E3B64CC5-C011-40C0-92BC-7316CD5E5688}" = Microsoft_VC100_CRT_SP1_x86
"{E55E0C35-AC3C-4683-BA2F-834348577B80}" = Windows Live Writer
"{E6CB67CC-71D2-46b9-8D43-A4641A9EECB2}" = BioExcess
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F80E5450-3EF3-4270-B26C-6AC53BEC5E76}" = Windows Live Movie Maker
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
"{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}" = Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
"{FC9B811E-39BC-4813-9E29-B83CCF700010}" = Lenovo EasyCamera
"{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}" = Visual Studio 2008 x64 Redistributables
"{FE77909E-B782-4554-A92A-4D887CEF0ACC}_is1" = ALLMediaServer
"Adobe Flash Player ActiveX" = Adobe Flash Player 17 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 18 NPAPI
"ALL YouTube Downloader_is1" = ALL YouTube Downloader
"ALLPlayer_is1" = ALLPlayer V5.X
"Audacity_is1" = Audacity 2.0.5
"blueconnect" = blueconnect
"BSPlayerf" = BS.Player FREE
"Call of Duty and United Offensive - Respev Edition_is1" = Call of Duty and United Offensive - Respev Edition
"Codec_264" = GeoVision H264
"Codec_amp4" = GeoVision MPEG4 ASP
"Codec_AVC" = GeoVision MPEG4 AVC
"Codec_jpeg" = GeoVision JPEG
"Codec_MJPG" = GeoVision MJPG
"Codec_MXPG" = GeoVision MXPG
"Codec_X264" = X264
"Codec_XVID" = XVID
"Dziobas Rar Player_is1" = Dziobas Rar Player 0.009.52
"ESET Online Scanner" = ESET Online Scanner v3
"EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.50
"FarmingSimulator2011DE_is1" = Landwirtschafts Simulator 2011
"FarmingSimulator2015PL_is1" = Farming Simulator 15
"Foxit PDF Editor" = Foxit PDF Editor
"Foxit Reader_is1" = Foxit Reader
"GeoADPCM" = GeoVision ADPCM
"GeoAudio" = GeoVision Audio
"GEOXCodec" = GeoVision MPEG4
"GOGPACKSTRONGHOLDCRUSADERHD_is1" = Stronghold Crusader Extreme HD
"GOM Player" = GOM Player
"Google Chrome" = Google Chrome
"H264WebCam_is1" = H264WebCam 4.0
"InstallShield_{0034859F-8E01-4C1D-BE77-F891C4786FBC}" = Lenovo Security Suite
"InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}" = Lenovo OneKey Recovery
"InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}" = CyberLink PowerDVD 9
"InstallShield_{AE4167B0-F589-4D2A-BF05-E181D543C49F}" = EgisTec ES603 WDM Driver
"InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}" = Energy Management
"InstallShield_{D80A6A73-E58A-4673-AFF5-F12D7110661F}" = Call of Duty(R) - World at War(TM)
"InstallShield_{E6CB67CC-71D2-46b9-8D43-A4641A9EECB2}" = BioExcess
"Internet Download Manager" = Internet Download Manager
"IP Camera Viewer_is1" = IP Camera Viewer 2
"ipla" = ipla 2.8.4
"Kantaris_is1" = Kantaris Media Player 0.7.9
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 11.7.5
"MacroscopPlayer_is1" = Odtwarzacz MACROSCOP wersja 1.8.65
"MainApp.exe_is1" = CloneDVD 5.5.0.2
"Mount&Blade Warband" = Mount&Blade Warband
"Mozilla Firefox 11.0 (x86 pl)" = Mozilla Firefox 11.0 (x86 pl)
"NapiProjekt_is1" = NapiProjekt 2.0.0 (build 2151)
"Nero8Lite_is1" = Nero 8 Lite 8.3.6.0
"Niezbędnik CD_is1" = Niezbędnik CD
"Nokia Suite" = Nokia Suite
"PLAY ONLINE" = PLAY ONLINE
"PLAY Web partner" = PLAY Web partner
"Playback_is1" = Playback V2.3.5.2
"PunkBusterSvc" = PunkBuster Services
"RealAlt_is1" = Real Alternative 1.48
"R-Studio 5.4NSIS" = R-Studio 5.4
"Splinter Cell_is1" = Splinter Cell
"Strip Poker Exclusive 4" = Strip Poker Exclusive 4
"The KMPlayer" = KMPlayer (remove only)
"Uplay" = Uplay
"VLC media player" = VLC media player
"Winamp" = Winamp
"WinLiveSuite" = Podstawowe programy Windows Live
[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]
[HKEY_USERS\S-1-5-21-40995747-2143766178-1930525636-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1EAC1D02-C6AC-4FA6-9A44-96258C37C814eu}_is1" = World of Warships
"GG" = GG
"UnityWebPlayer" = Unity Web Player
[color=#E56717]========== Last 20 Event Log Errors ==========[/color]
[ Application Events ]
Error - 2013-04-04 17:47:48 | Computer Name = Avans-Komputer | Source = SideBySide | ID = 16842815
Description = Nie można wygenerować kontekstu aktywacji dla "c:\program files (x86)\WapSter\wapster
aqq\System\DelZip179.dll". Błąd w pliku manifestu lub w pliku zasad "c:\program
files (x86)\WapSter\wapster aqq\System\DelZip179.dll" w wierszu 8. Wartość "*" atrybutu
"language" elementu "assemblyIdentity" jest nieprawidłowa.
Error - 2013-04-04 17:48:15 | Computer Name = Avans-Komputer | Source = SideBySide | ID = 16842832
Description = Nie można wygenerować kontekstu aktywacji dla „c:\program files (x86)\Nero\nero
toolkit\nero discspeed\DiscSpeed.exe”. Błąd w pliku manifestu lub w pliku zasad
„” w wierszu . Wersja składnika wymagana przez aplikację powoduje konflikt z inną
wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik
1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Składnik
2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Error - 2013-04-04 19:24:37 | Computer Name = Avans-Komputer | Source = RasClient | ID = 20227
Description =
Error - 2013-04-04 19:25:35 | Computer Name = Avans-Komputer | Source = RasClient | ID = 20227
Description =
Error - 2013-04-05 04:31:32 | Computer Name = Avans-Komputer | Source = RasClient | ID = 20227
Description =
Error - 2013-04-05 04:41:25 | Computer Name = Avans-Komputer | Source = RasClient | ID = 20227
Description =
Error - 2013-04-05 04:51:04 | Computer Name = Avans-Komputer | Source = RasClient | ID = 20227
Description =
Error - 2013-04-05 06:13:52 | Computer Name = Avans-Komputer | Source = RasClient | ID = 20227
Description =
Error - 2013-04-06 14:53:01 | Computer Name = Avans-Komputer | Source = SideBySide | ID = 16842815
Description = Nie można wygenerować kontekstu aktywacji dla "c:\program files (x86)\WapSter\wapster
aqq\System\DelZip179.dll". Błąd w pliku manifestu lub w pliku zasad "c:\program
files (x86)\WapSter\wapster aqq\System\DelZip179.dll" w wierszu 8. Wartość "*" atrybutu
"language" elementu "assemblyIdentity" jest nieprawidłowa.
Error - 2013-04-06 14:53:33 | Computer Name = Avans-Komputer | Source = SideBySide | ID = 16842832
Description = Nie można wygenerować kontekstu aktywacji dla „c:\program files (x86)\Nero\nero
toolkit\nero discspeed\DiscSpeed.exe”. Błąd w pliku manifestu lub w pliku zasad
„” w wierszu . Wersja składnika wymagana przez aplikację powoduje konflikt z inną
wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik
1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Składnik
2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
[ Media Center Events ]
Error - 2015-07-29 17:48:09 | Computer Name = Avans-Komputer | Source = MCUpdate | ID = 0
Description = 23:48:09 - Błąd podczas nawiązywania połączenia z Internetem. 23:48:09
- Nie można skontaktować się z serwerem..
Error - 2015-08-11 10:11:15 | Computer Name = Avans-Komputer | Source = MCUpdate | ID = 0
Description = 16:11:15 - Błąd podczas nawiązywania połączenia z Internetem. 16:11:15
- Nie można skontaktować się z serwerem..
Error - 2015-08-11 10:11:31 | Computer Name = Avans-Komputer | Source = MCUpdate | ID = 0
Description = 16:11:21 - Błąd podczas nawiązywania połączenia z Internetem. 16:11:21
- Nie można skontaktować się z serwerem..
Error - 2015-12-14 01:14:05 | Computer Name = Avans-Komputer | Source = MCUpdate | ID = 0
Description = 06:14:04 - Błąd podczas nawiązywania połączenia z Internetem. 06:14:04
- Nie można skontaktować się z serwerem..
Error - 2016-03-07 02:22:16 | Computer Name = Avans-Komputer | Source = MCUpdate | ID = 0
Description = 07:22:16 - Błąd podczas nawiązywania połączenia z Internetem. 07:22:16
- Nie można skontaktować się z serwerem..
Error - 2016-03-07 02:22:25 | Computer Name = Avans-Komputer | Source = MCUpdate | ID = 0
Description = 07:22:21 - Błąd podczas nawiązywania połączenia z Internetem. 07:22:21
- Nie można skontaktować się z serwerem..
Error - 2016-03-07 03:22:44 | Computer Name = Avans-Komputer | Source = MCUpdate | ID = 0
Description = 08:22:44 - Błąd podczas nawiązywania połączenia z Internetem. 08:22:44
- Nie można skontaktować się z serwerem..
Error - 2016-03-07 03:22:54 | Computer Name = Avans-Komputer | Source = MCUpdate | ID = 0
Description = 08:22:49 - Błąd podczas nawiązywania połączenia z Internetem. 08:22:49
- Nie można skontaktować się z serwerem..
Error - 2016-03-09 00:28:16 | Computer Name = Avans-Komputer | Source = MCUpdate | ID = 0
Description = 05:28:16 - Błąd podczas nawiązywania połączenia z Internetem. 05:28:16
- Nie można skontaktować się z serwerem..
[ System Events ]
Error - 2016-03-18 15:35:55 | Computer Name = Avans-Komputer | Source = DCOM | ID = 10005
Description =
Error - 2016-03-18 15:35:55 | Computer Name = Avans-Komputer | Source = Service Control Manager | ID = 7026
Description = Nie można załadować następujących sterowników startu rozruchowego
lub systemowego: BPntDrv discache mwlPSDFilter mwlPSDNServ mwlPSDVDisk spldr Wanarpv6
Error - 2016-03-18 15:36:03 | Computer Name = Avans-Komputer | Source = DCOM | ID = 10005
Description =
Error - 2016-03-18 15:36:07 | Computer Name = Avans-Komputer | Source = DCOM | ID = 10005
Description =
Error - 2016-03-18 15:36:07 | Computer Name = Avans-Komputer | Source = DCOM | ID = 10005
Description =
Error - 2016-03-18 15:42:24 | Computer Name = Avans-Komputer | Source = DCOM | ID = 10005
Description =
Error - 2016-03-18 15:49:22 | Computer Name = Avans-Komputer | Source = DCOM | ID = 10005
Description =
Error - 2016-03-18 16:20:56 | Computer Name = Avans-Komputer | Source = Service Control Manager | ID = 7016
Description = Usługa AuthorityServer zaraportowała nieprawidłowy stan bieżący 16.
Error - 2016-03-18 16:21:03 | Computer Name = Avans-Komputer | Source = Service Control Manager | ID = 7009
Description = Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się
z usługą PLAY ONLINE. OUC.
Error - 2016-03-18 16:21:03 | Computer Name = Avans-Komputer | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi PLAY ONLINE. OUC z powodu następującego
błędu: %%1053
< End of report >
gmer
- Kod: Zaznacz wszystko
GMER 2.2.19882 - http://www.gmer.net
Rootkit scan 2016-03-18 21:09:23
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 WDC_WD50 rev.02.0 465,76GB
Running: plri4sv0.exe; Driver: C:\Users\Avans\AppData\Local\Temp\kwddakod.sys
---- Registry - GMER 2.2 ----
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\0c6076fc1a13
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\ec55f9e04c01
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\ec55f9e04c01@78ca04920ac4 0x77 0x88 0xC6 0xE5 ...
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\ec55f9e04c01@38e7d828d9a2 0xE5 0x50 0xB2 0x9D ...
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\ec55f9e04c01@14b4845cb5cb 0x04 0xB5 0x2F 0xBB ...
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0 C:\Program Files (x86)\Alcohol Soft\Alcohol 120\
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0xB9 0x90 0x81 0x59 ...
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@a0 0xA0 0x02 0x00 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@ujdew 0x78 0x4E 0x55 0x60 ...
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40@ujdew 0xDE 0x05 0x4B 0xCD ...
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\0c6076fc1a13 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\ec55f9e04c01 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\ec55f9e04c01@78ca04920ac4 0x77 0x88 0xC6 0xE5 ...
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\ec55f9e04c01@38e7d828d9a2 0xE5 0x50 0xB2 0x9D ...
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\ec55f9e04c01@14b4845cb5cb 0x04 0xB5 0x2F 0xBB ...
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0 C:\Program Files (x86)\Alcohol Soft\Alcohol 120\
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0xB9 0x90 0x81 0x59 ...
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@a0 0xA0 0x02 0x00 0x00 ...
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@ujdew 0x78 0x4E 0x55 0x60 ...
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40@ujdew 0xDE 0x05 0x4B 0xCD ...
---- EOF - GMER 2.2 ----