Skocz do zawartości

  • 👋 Witaj na MPCForum!

    Przeglądasz forum jako gość, co oznacza, że wiele świetnych funkcji jest jeszcze przed Tobą! 😎

    • Pełny dostęp do działów i ukrytych treści
    • Możliwość pisania i odpowiadania w tematach
    • System prywatnych wiadomości
    • Zbieranie reputacji i rozwijanie swojego profilu
    • Członkostwo w jednej z największych społeczności graczy

    👉 Dołączenie zajmie Ci mniej niż minutę – a zyskasz znacznie więcej!

    Zarejestruj się teraz
  • 0

Ciągłe wywalanie do pulpitu

Reiden

Pytanie zadane przez Reiden ,

Pytanie

Reiden Weteran

Reiden

Opublikowano
Weteran

Reiden

Opublikowano

Od pewnego czasu podczas granie cos wywala do pulpitu a poczas pracy w okienku co chwile wyskakuje jakis program ale po niecales sekudzie znika. Ponizej podaje logi z OTL.  Mam nadzieje ze ktos pomoze uporac sie z tym problemem.

 

 

 

OTL.txt

 

OTL logfile created on: 2014-05-30 21:06:22 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Reiy\Downloads
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

4,00 Gb Total Physical Memory | 2,71 Gb Available Physical Memory | 67,71% Memory free
7,99 Gb Paging File | 6,44 Gb Available in Paging File | 80,57% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 297,99 Gb Total Space | 123,34 Gb Free Space | 41,39% Space Free | Partition Type: NTFS
Drive D: | 7,92 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
Drive F: | 100,00 Mb Total Space | 61,35 Mb Free Space | 61,35% Space Free | Partition Type: NTFS

Computer Name: REIY-KOMPUTER | User Name: Reiy | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2014-05-30 21:05:56 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Reiy\Downloads\OTL.exe
PRC - [2014-05-30 20:22:54 | 000,275,568 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2013-09-30 19:13:11 | 000,246,112 | ---- | M] () -- C:\ProgramData\PLAY ONLINE\OnlineUpdate\ouc.exe
PRC - [2013-04-04 15:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe


========== Modules (No Company Name) ==========

MOD - [2014-05-30 20:22:52 | 003,839,088 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll


========== Services (SafeList) ==========

SRV:64bit: - [2009-07-22 04:17:28 | 000,203,264 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2009-07-21 02:33:32 | 000,240,128 | ---- | M] (IDT, Inc.) [Auto | Stopped] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\stacsv64.exe -- (STacSV)
SRV:64bit: - [2009-07-14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009-07-14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2009-03-01 22:42:58 | 000,089,600 | ---- | M] (Andrea Electronics Corporation) [Auto | Stopped] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe -- (AESTFilters)
SRV - [2014-05-30 20:22:52 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013-09-30 19:13:11 | 000,246,112 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\PLAY ONLINE\UpdateDog\ouc.exe -- (PLAY ONLINE. RunOuc)
SRV - [2013-04-04 15:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2013-04-04 15:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2012-07-09 00:40:10 | 000,104,912 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2011-03-14 17:27:34 | 000,346,976 | ---- | M] () [Auto | Stopped] -- C:\ProgramData\DatacardService\HWDeviceService64.exe -- (HWDeviceService64.exe)
SRV - [2009-07-21 02:33:32 | 000,240,128 | ---- | M] (IDT, Inc.) [Auto | Stopped] -- C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe -- (STacSV)
SRV - [2009-06-10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009-03-01 22:42:58 | 000,089,600 | ---- | M] (Andrea Electronics Corporation) [Auto | Stopped] -- C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe -- (AESTFilters)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2013-11-24 17:16:13 | 000,283,064 | ---- | M] (Disc Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2013-09-30 19:13:12 | 000,229,376 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ew_juwwanecm.sys -- (huawei_wwanecm)
DRV:64bit: - [2013-09-30 19:13:12 | 000,117,248 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ew_hwusbdev.sys -- (ew_hwusbdev)
DRV:64bit: - [2013-09-30 19:13:12 | 000,104,448 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ew_jucdcacm.sys -- (huawei_cdcacm)
DRV:64bit: - [2013-09-30 19:13:12 | 000,090,112 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ew_jubusenum.sys -- (huawei_enumerator)
DRV:64bit: - [2013-09-30 19:13:12 | 000,030,720 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ew_juextctrl.sys -- (huawei_ext_ctrl)
DRV:64bit: - [2013-09-30 19:13:12 | 000,013,952 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ew_usbenumfilter.sys -- (ew_usbenumfilter)
DRV:64bit: - [2013-04-04 15:50:32 | 000,025,928 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2012-10-18 15:04:12 | 001,930,240 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athurx.sys -- (athur)
DRV:64bit: - [2010-11-09 16:35:24 | 000,021,992 | ---- | M] (CPUID) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\cpuz135_x64.sys -- (cpuz135)
DRV:64bit: - [2009-07-22 08:05:54 | 006,036,480 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2009-07-21 02:33:32 | 000,487,936 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\stwrt64.sys -- (STHDA)
DRV:64bit: - [2009-07-14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009-07-14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009-07-14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009-07-14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009-07-14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009-07-14 03:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2009-07-14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009-07-14 01:31:10 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2009-06-28 15:00:00 | 000,116,752 | ---- | M] (ATI Research Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV:64bit: - [2009-06-20 04:09:57 | 001,394,688 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2009-06-10 22:35:42 | 000,187,392 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2009-06-10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009-06-10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009-06-10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009-06-10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009-05-04 06:30:28 | 000,016,440 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\AtiPcie.sys -- (AtiPcie)
DRV:64bit: - [2009-04-30 19:01:50 | 000,267,312 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2009-04-29 08:48:32 | 000,018,432 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)
DRV - [2009-07-14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKCU\..\SearchScopes,DefaultScope =
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "https://www.google.pl/"
FF - prefs.js..extensions.enabledAddons: %7Bab91efd4-6975-4081-8552-1b3922ed79e2%7D:1.0.28.1
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:29.0.1
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.450: C:\Program Files (x86)\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448: C:\Program Files (x86)\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 29.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 29.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

[2013-09-25 19:09:28 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Reiy\AppData\Roaming\mozilla\Extensions
[2014-05-06 13:57:51 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Reiy\AppData\Roaming\mozilla\Firefox\Profiles\8xavy2xj.default\extensions
[2013-09-25 19:10:52 | 000,000,000 | ---D | M] (HP Detect) -- C:\Users\Reiy\AppData\Roaming\mozilla\Firefox\Profiles\8xavy2xj.default\extensions\{ab91efd4-6975-4081-8552-1b3922ed79e2}
[2013-09-30 19:17:13 | 000,010,043 | ---- | M] () (No name found) -- C:\Users\Reiy\AppData\Roaming\mozilla\firefox\profiles\8xavy2xj.default\extensions\[email protected]
[2014-05-06 13:57:51 | 000,957,880 | ---- | M] () (No name found) -- C:\Users\Reiy\AppData\Roaming\mozilla\firefox\profiles\8xavy2xj.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2014-05-30 20:22:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\browser\extensions
[2014-05-30 20:22:57 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\mozilla firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

O1 HOSTS File: ([2009-06-10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (IplexToALLPlayer) - {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - C:\PROGRA~2\ALLPLA~1\Iplex\IPLEXT~1.DLL (ALLCinema Ltd.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 87.204.204.204 62.233.233.233
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1437B7CE-4355-418E-AD3D-1EB0832B0BD5}: NameServer = 89.108.202.21 89.108.195.21
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{4B48EDA8-B7C1-4DA1-803A-5A5D2572F69D}: DhcpNameServer = 87.204.204.204 62.233.233.233
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{598EE395-0221-4FDB-8F80-8117601AB4E2}: NameServer = 89.108.195.21 89.108.202.21
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{629B2B70-B317-4D6A-9AC4-D06FF5CC101A}: NameServer = 89.108.195.21 89.108.202.21
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F62DE101-B2DE-4B4C-9F08-E95F57875C0F}: DhcpNameServer = 87.204.204.204 62.233.233.233
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-06-10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2008-03-31 10:08:02 | 000,000,082 | R--- | M] () - D:\Autorun.inf -- [ UDF ]
O33 - MountPoints2\{86935b36-29f1-11e3-94ce-00247e245800}\Shell - "" = AutoRun
O33 - MountPoints2\{86935b36-29f1-11e3-94ce-00247e245800}\Shell\AutoRun\command - "" = E:\AutoRun.exe
O33 - MountPoints2\{86935b43-29f1-11e3-94ce-00247e245800}\Shell - "" = AutoRun
O33 - MountPoints2\{86935b43-29f1-11e3-94ce-00247e245800}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{b6945d43-25ed-11e3-8845-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{b6945d43-25ed-11e3-8845-806e6f6e6963}\Shell\AutoRun\command - "" = D:\cda_menu.exe -- [2010-08-03 14:51:45 | 004,685,312 | R--- | M] ()
O33 - MountPoints2\{dc3b5b82-2f74-11e3-817f-00247e245800}\Shell - "" = AutoRun
O33 - MountPoints2\{dc3b5b82-2f74-11e3-817f-00247e245800}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{e84c5508-5517-11e3-89f1-00238b79788d}\Shell - "" = AutoRun
O33 - MountPoints2\{e84c5508-5517-11e3-89f1-00238b79788d}\Shell\AutoRun\command - "" = E:\setup.exe
O33 - MountPoints2\{eb9f71f4-df66-11e3-9fef-00238b79788d}\Shell - "" = AutoRun
O33 - MountPoints2\{eb9f71f4-df66-11e3-9fef-00238b79788d}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2014-05-30 20:22:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2014-05-27 19:49:56 | 000,000,000 | ---D | C] -- C:\Users\Reiy\Desktop\Nowy folder
[2014-05-27 19:45:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZAR
[2014-05-27 19:45:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ZAR
[2014-05-26 19:43:50 | 000,000,000 | ---D | C] -- C:\Users\Reiy\Desktop\kierownik
[2014-05-22 18:12:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ubisoft
[2014-05-19 19:30:47 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014-05-19 19:18:13 | 000,000,000 | ---D | C] -- C:\Users\Reiy\AppData\Local\ElevatedDiagnostics
[2014-05-06 15:06:26 | 000,000,000 | ---D | C] -- C:\Users\Reiy\AppData\Local\Razer_Inc
[2014-05-06 15:05:10 | 000,000,000 | ---D | C] -- C:\Users\Reiy\Documents\Razer
[2014-05-06 14:59:59 | 000,000,000 | ---D | C] -- C:\Users\Reiy\AppData\Local\Razer
[2014-05-06 14:59:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Razer
[2014-05-06 14:59:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Razer
[2014-05-06 14:50:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET
[2014-05-06 14:11:15 | 001,130,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dfshim.dll
[2014-05-06 14:11:15 | 000,320,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHost.exe
[2014-05-06 14:11:15 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHost.exe
[2014-05-06 14:11:15 | 000,109,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHostProxy.dll
[2014-05-06 14:11:15 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHostProxy.dll
[2014-05-06 14:11:15 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netfxperf.dll
[2014-05-06 14:11:15 | 000,048,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netfxperf.dll
[2014-05-06 14:11:12 | 001,942,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dfshim.dll
[2011-03-30 11:40:32 | 000,095,576 | ---- | C] (Microsoft Corporation) -- C:\Users\Reiy\DSETUP.dll

========== Files - Modified Within 30 Days ==========

[2014-05-30 21:01:30 | 000,007,605 | ---- | M] () -- C:\Users\Reiy\AppData\Local\Resmon.ResmonCfg
[2014-05-30 20:27:43 | 000,005,815 | ---- | M] () -- C:\Users\Reiy\Desktop\2fc4e51b084878062dac0217c83af41e.jpg
[2014-05-30 19:46:23 | 000,010,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014-05-30 19:46:23 | 000,010,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014-05-30 19:43:43 | 001,668,226 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2014-05-30 19:43:43 | 000,739,932 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat
[2014-05-30 19:43:43 | 000,653,724 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2014-05-30 19:43:43 | 000,155,474 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat
[2014-05-30 19:43:43 | 000,121,596 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2014-05-30 19:39:06 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014-05-30 19:38:58 | 3219,521,536 | -HS- | M] () -- C:\hiberfil.sys
[2014-05-27 19:45:42 | 000,000,935 | ---- | M] () -- C:\Users\Reiy\Desktop\Zero Assumption Recovery.lnk
[2014-05-18 22:26:04 | 732,964,864 | ---- | M] () -- C:\Users\Reiy\Desktop\Turbo.avi
[2014-05-17 22:50:25 | 596,947,526 | ---- | M] () -- C:\Users\Reiy\Desktop\Gra Endera_(ALLConverter_1).mp4
[2014-05-14 11:17:46 | 734,891,784 | ---- | M] () -- C:\Users\Reiy\Desktop\Niezgodna.Divergent.2014.PLSUBBED.CAM.XviD-BiDA.avi
[2014-05-07 20:07:40 | 1137,653,296 | ---- | M] () -- C:\Users\Reiy\Desktop\Hobbit Pustkowie Smauga (2013) PLDUB.MD.DVDSCR.XViD-AX_(ALLConverter_1).avi
[2014-05-06 14:52:35 | 001,607,202 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI

========== Files Created - No Company Name ==========

[2014-05-30 21:01:30 | 000,007,605 | ---- | C] () -- C:\Users\Reiy\AppData\Local\Resmon.ResmonCfg
[2014-05-30 20:27:43 | 000,005,815 | ---- | C] () -- C:\Users\Reiy\Desktop\2fc4e51b084878062dac0217c83af41e.jpg
[2014-05-27 19:45:42 | 000,000,935 | ---- | C] () -- C:\Users\Reiy\Desktop\Zero Assumption Recovery.lnk
[2014-05-21 19:50:00 | 720,505,552 | ---- | C] () -- C:\Users\Reiy\Desktop\Krzyzowy.ogien.2011.PL.DVDRip.XviD-www.filmy-lektor-dubbing.pl.avi
[2014-05-20 21:01:17 | 404,534,930 | ---- | C] () -- C:\Users\Reiy\Desktop\Facet pełen uroku.rmvb
[2014-05-20 18:57:31 | 277,140,367 | ---- | C] () -- C:\Users\Reiy\Desktop\Eurotrip PL LEKTOR.rmvb
[2014-05-18 22:17:43 | 732,964,864 | ---- | C] () -- C:\Users\Reiy\Desktop\Turbo.avi
[2014-05-18 22:11:14 | 596,947,526 | ---- | C] () -- C:\Users\Reiy\Desktop\Gra Endera_(ALLConverter_1).mp4
[2014-05-14 11:56:28 | 734,891,784 | ---- | C] () -- C:\Users\Reiy\Desktop\Niezgodna.Divergent.2014.PLSUBBED.CAM.XviD-BiDA.avi
[2014-05-12 18:52:10 | 1137,653,296 | ---- | C] () -- C:\Users\Reiy\Desktop\Hobbit Pustkowie Smauga (2013) PLDUB.MD.DVDSCR.XViD-AX_(ALLConverter_1).avi
[2014-05-06 14:52:35 | 001,607,202 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2014-04-15 12:07:27 | 000,175,616 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2014-04-15 12:07:26 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
[2014-04-15 12:07:25 | 000,243,200 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2014-04-15 12:07:25 | 000,074,752 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2013-09-25 19:43:08 | 000,082,944 | ---- | C] () -- C:\Users\Reiy\infinst.exe
[2013-09-25 19:41:50 | 000,007,479 | ---- | C] () -- C:\Users\Reiy\d3dx9_25_x64.cat
[2013-09-25 19:24:33 | 000,650,752 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2013-09-25 19:24:33 | 000,258,048 | ---- | C] () -- C:\Windows\SysWow64\libFLAC.dll
[2013-09-25 16:25:54 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2011-03-30 11:40:34 | 000,517,976 | ---- | C] () -- C:\Users\Reiy\DXSETUP.exe
[2011-03-30 11:40:32 | 001,566,040 | ---- | C] () -- C:\Users\Reiy\dsetup32.dll
[2011-03-30 11:40:32 | 000,097,152 | ---- | C] () -- C:\Users\Reiy\dxupdate.cab
[2011-03-30 11:40:32 | 000,044,624 | ---- | C] () -- C:\Users\Reiy\dxdllreg_x86.cab
[2010-06-02 05:22:54 | 001,412,902 | ---- | C] () -- C:\Users\Reiy\OCT2006_d3dx9_31_x64.cab
[2010-06-02 05:22:54 | 001,127,217 | ---- | C] () -- C:\Users\Reiy\OCT2006_d3dx9_31_x86.cab
[2010-06-02 05:22:54 | 000,273,960 | ---- | C] () -- C:\Users\Reiy\Nov2008_XAudio_x64.cab
[2010-06-02 05:22:54 | 000,272,611 | ---- | C] () -- C:\Users\Reiy\Nov2008_XAudio_x86.cab
[2010-06-02 05:22:54 | 000,182,361 | ---- | C] () -- C:\Users\Reiy\OCT2006_XACT_x64.cab
[2010-06-02 05:22:54 | 000,138,017 | ---- | C] () -- C:\Users\Reiy\OCT2006_XACT_x86.cab
[2010-06-02 05:22:54 | 000,086,037 | ---- | C] () -- C:\Users\Reiy\Oct2005_xinput_x64.cab
[2010-06-02 05:22:54 | 000,045,359 | ---- | C] () -- C:\Users\Reiy\Oct2005_xinput_x86.cab
[2010-06-02 05:22:52 | 001,906,878 | ---- | C] () -- C:\Users\Reiy\Nov2008_d3dx9_40_x64.cab
[2010-06-02 05:22:52 | 001,550,796 | ---- | C] () -- C:\Users\Reiy\Nov2008_d3dx9_40_x86.cab
[2010-06-02 05:22:52 | 000,965,421 | ---- | C] () -- C:\Users\Reiy\Nov2008_d3dx10_40_x86.cab
[2010-06-02 05:22:52 | 000,121,794 | ---- | C] () -- C:\Users\Reiy\Nov2008_XACT_x64.cab
[2010-06-02 05:22:52 | 000,092,684 | ---- | C] () -- C:\Users\Reiy\Nov2008_XACT_x86.cab
[2010-06-02 05:22:52 | 000,054,522 | ---- | C] () -- C:\Users\Reiy\Nov2008_X3DAudio_x64.cab
[2010-06-02 05:22:52 | 000,021,851 | ---- | C] () -- C:\Users\Reiy\Nov2008_X3DAudio_x86.cab
[2010-06-02 05:22:50 | 000,994,154 | ---- | C] () -- C:\Users\Reiy\Nov2008_d3dx10_40_x64.cab
[2010-06-02 05:22:50 | 000,196,762 | ---- | C] () -- C:\Users\Reiy\NOV2007_XACT_x64.cab
[2010-06-02 05:22:50 | 000,148,264 | ---- | C] () -- C:\Users\Reiy\NOV2007_XACT_x86.cab
[2010-06-02 05:22:50 | 000,046,144 | ---- | C] () -- C:\Users\Reiy\NOV2007_X3DAudio_x64.cab
[2010-06-02 05:22:50 | 000,018,496 | ---- | C] () -- C:\Users\Reiy\NOV2007_X3DAudio_x86.cab
[2010-06-02 05:22:48 | 001,802,058 | ---- | C] () -- C:\Users\Reiy\Nov2007_d3dx9_36_x64.cab
[2010-06-02 05:22:48 | 001,709,360 | ---- | C] () -- C:\Users\Reiy\Nov2007_d3dx9_36_x86.cab
[2010-06-02 05:22:48 | 000,864,600 | ---- | C] () -- C:\Users\Reiy\Nov2007_d3dx10_36_x64.cab
[2010-06-02 05:22:48 | 000,803,884 | ---- | C] () -- C:\Users\Reiy\Nov2007_d3dx10_36_x86.cab
[2010-06-02 05:22:48 | 000,273,018 | ---- | C] () -- C:\Users\Reiy\Mar2009_XAudio_x86.cab
[2010-06-02 05:22:46 | 000,275,044 | ---- | C] () -- C:\Users\Reiy\Mar2009_XAudio_x64.cab
[2010-06-02 05:22:46 | 000,121,506 | ---- | C] () -- C:\Users\Reiy\Mar2009_XACT_x64.cab
[2010-06-02 05:22:46 | 000,092,740 | ---- | C] () -- C:\Users\Reiy\Mar2009_XACT_x86.cab
[2010-06-02 05:22:38 | 000,054,600 | ---- | C] () -- C:\Users\Reiy\Mar2009_X3DAudio_x64.cab
[2010-06-02 05:22:38 | 000,021,298 | ---- | C] () -- C:\Users\Reiy\Mar2009_X3DAudio_x86.cab
[2010-06-02 05:22:36 | 001,973,702 | ---- | C] () -- C:\Users\Reiy\Mar2009_d3dx9_41_x64.cab
[2010-06-02 05:22:36 | 001,612,446 | ---- | C] () -- C:\Users\Reiy\Mar2009_d3dx9_41_x86.cab
[2010-06-02 05:22:36 | 001,067,160 | ---- | C] () -- C:\Users\Reiy\Mar2009_d3dx10_41_x64.cab
[2010-06-02 05:22:36 | 001,040,745 | ---- | C] () -- C:\Users\Reiy\Mar2009_d3dx10_41_x86.cab
[2010-06-02 05:22:36 | 000,251,194 | ---- | C] () -- C:\Users\Reiy\Mar2008_XAudio_x64.cab
[2010-06-02 05:22:36 | 000,226,250 | ---- | C] () -- C:\Users\Reiy\Mar2008_XAudio_x86.cab
[2010-06-02 05:22:36 | 000,122,336 | ---- | C] () -- C:\Users\Reiy\Mar2008_XACT_x64.cab
[2010-06-02 05:22:36 | 000,093,734 | ---- | C] () -- C:\Users\Reiy\Mar2008_XACT_x86.cab
[2010-06-02 05:22:34 | 001,769,862 | ---- | C] () -- C:\Users\Reiy\Mar2008_d3dx9_37_x64.cab
[2010-06-02 05:22:34 | 001,443,282 | ---- | C] () -- C:\Users\Reiy\Mar2008_d3dx9_37_x86.cab
[2010-06-02 05:22:34 | 000,818,260 | ---- | C] () -- C:\Users\Reiy\Mar2008_d3dx10_37_x86.cab
[2010-06-02 05:22:34 | 000,055,058 | ---- | C] () -- C:\Users\Reiy\Mar2008_X3DAudio_x64.cab
[2010-06-02 05:22:34 | 000,021,867 | ---- | C] () -- C:\Users\Reiy\Mar2008_X3DAudio_x86.cab
[2010-06-02 05:22:32 | 000,937,246 | ---- | C] () -- C:\Users\Reiy\Jun2010_d3dx9_43_x64.cab
[2010-06-02 05:22:32 | 000,844,884 | ---- | C] () -- C:\Users\Reiy\Mar2008_d3dx10_37_x64.cab
[2010-06-02 05:22:32 | 000,768,036 | ---- | C] () -- C:\Users\Reiy\Jun2010_d3dx9_43_x86.cab
[2010-06-02 05:22:32 | 000,278,060 | ---- | C] () -- C:\Users\Reiy\Jun2010_XAudio_x86.cab
[2010-06-02 05:22:32 | 000,277,338 | ---- | C] () -- C:\Users\Reiy\Jun2010_XAudio_x64.cab
[2010-06-02 05:22:32 | 000,124,596 | ---- | C] () -- C:\Users\Reiy\Jun2010_XACT_x64.cab
[2010-06-02 05:22:32 | 000,093,686 | ---- | C] () -- C:\Users\Reiy\Jun2010_XACT_x86.cab
[2010-06-02 05:22:30 | 000,762,188 | ---- | C] () -- C:\Users\Reiy\Jun2010_d3dcsx_43_x86.cab
[2010-06-02 05:22:30 | 000,235,955 | ---- | C] () -- C:\Users\Reiy\Jun2010_d3dx10_43_x64.cab
[2010-06-02 05:22:30 | 000,197,283 | ---- | C] () -- C:\Users\Reiy\Jun2010_d3dx10_43_x86.cab
[2010-06-02 05:22:30 | 000,138,205 | ---- | C] () -- C:\Users\Reiy\Jun2010_d3dx11_43_x64.cab
[2010-06-02 05:22:30 | 000,109,445 | ---- | C] () -- C:\Users\Reiy\Jun2010_d3dx11_43_x86.cab
[2010-06-02 05:22:28 | 000,944,460 | ---- | C] () -- C:\Users\Reiy\Jun2010_D3DCompiler_43_x64.cab
[2010-06-02 05:22:28 | 000,931,471 | ---- | C] () -- C:\Users\Reiy\Jun2010_D3DCompiler_43_x86.cab
[2010-06-02 05:22:28 | 000,752,783 | ---- | C] () -- C:\Users\Reiy\Jun2010_d3dcsx_43_x64.cab
[2010-06-02 05:22:20 | 000,269,024 | ---- | C] () -- C:\Users\Reiy\JUN2008_XAudio_x86.cab
[2010-06-02 05:22:18 | 001,792,608 | ---- | C] () -- C:\Users\Reiy\JUN2008_d3dx9_38_x64.cab
[2010-06-02 05:22:18 | 001,463,878 | ---- | C] () -- C:\Users\Reiy\JUN2008_d3dx9_38_x86.cab
[2010-06-02 05:22:18 | 000,867,828 | ---- | C] () -- C:\Users\Reiy\JUN2008_d3dx10_38_x64.cab
[2010-06-02 05:22:18 | 000,849,919 | ---- | C] () -- C:\Users\Reiy\JUN2008_d3dx10_38_x86.cab
[2010-06-02 05:22:18 | 000,269,628 | ---- | C] () -- C:\Users\Reiy\JUN2008_XAudio_x64.cab
[2010-06-02 05:22:18 | 000,152,909 | ---- | C] () -- C:\Users\Reiy\JUN2007_XACT_x86.cab
[2010-06-02 05:22:18 | 000,121,054 | ---- | C] () -- C:\Users\Reiy\JUN2008_XACT_x64.cab
[2010-06-02 05:22:18 | 000,093,128 | ---- | C] () -- C:\Users\Reiy\JUN2008_XACT_x86.cab
[2010-06-02 05:22:18 | 000,055,154 | ---- | C] () -- C:\Users\Reiy\JUN2008_X3DAudio_x64.cab
[2010-06-02 05:22:18 | 000,021,905 | ---- | C] () -- C:\Users\Reiy\JUN2008_X3DAudio_x86.cab
[2010-06-02 05:22:16 | 001,607,774 | ---- | C] () -- C:\Users\Reiy\JUN2007_d3dx9_34_x64.cab
[2010-06-02 05:22:16 | 001,607,286 | ---- | C] () -- C:\Users\Reiy\JUN2007_d3dx9_34_x86.cab
[2010-06-02 05:22:16 | 001,064,925 | ---- | C] () -- C:\Users\Reiy\Jun2005_d3dx9_26_x86.cab
[2010-06-02 05:22:16 | 000,699,044 | ---- | C] () -- C:\Users\Reiy\JUN2007_d3dx10_34_x64.cab
[2010-06-02 05:22:16 | 000,698,472 | ---- | C] () -- C:\Users\Reiy\JUN2007_d3dx10_34_x86.cab
[2010-06-02 05:22:16 | 000,197,122 | ---- | C] () -- C:\Users\Reiy\JUN2007_XACT_x64.cab
[2010-06-02 05:22:16 | 000,180,785 | ---- | C] () -- C:\Users\Reiy\JUN2006_XACT_x64.cab
[2010-06-02 05:22:16 | 000,133,671 | ---- | C] () -- C:\Users\Reiy\JUN2006_XACT_x86.cab
[2010-06-02 05:22:14 | 001,336,002 | ---- | C] () -- C:\Users\Reiy\Jun2005_d3dx9_26_x64.cab
[2010-06-02 05:22:14 | 000,277,191 | ---- | C] () -- C:\Users\Reiy\Feb2010_XAudio_x86.cab
[2010-06-02 05:22:14 | 000,276,960 | ---- | C] () -- C:\Users\Reiy\Feb2010_XAudio_x64.cab
[2010-06-02 05:22:14 | 000,122,446 | ---- | C] () -- C:\Users\Reiy\Feb2010_XACT_x64.cab
[2010-06-02 05:22:14 | 000,093,180 | ---- | C] () -- C:\Users\Reiy\Feb2010_XACT_x86.cab
[2010-06-02 05:22:12 | 000,194,675 | ---- | C] () -- C:\Users\Reiy\FEB2007_XACT_x64.cab
[2010-06-02 05:22:12 | 000,147,983 | ---- | C] () -- C:\Users\Reiy\FEB2007_XACT_x86.cab
[2010-06-02 05:22:12 | 000,054,678 | ---- | C] () -- C:\Users\Reiy\Feb2010_X3DAudio_x64.cab
[2010-06-02 05:22:12 | 000,020,713 | ---- | C] () -- C:\Users\Reiy\Feb2010_X3DAudio_x86.cab
[2010-06-02 05:22:10 | 000,178,359 | ---- | C] () -- C:\Users\Reiy\Feb2006_XACT_x64.cab
[2010-06-02 05:22:10 | 000,132,409 | ---- | C] () -- C:\Users\Reiy\Feb2006_XACT_x86.cab
[2010-06-02 05:22:04 | 001,084,720 | ---- | C] () -- C:\Users\Reiy\Feb2006_d3dx9_29_x86.cab
[2010-06-02 05:22:02 | 001,574,376 | ---- | C] () -- C:\Users\Reiy\DEC2006_d3dx9_32_x86.cab
[2010-06-02 05:22:02 | 001,362,796 | ---- | C] () -- C:\Users\Reiy\Feb2006_d3dx9_29_x64.cab
[2010-06-02 05:22:02 | 001,247,499 | ---- | C] () -- C:\Users\Reiy\Feb2005_d3dx9_24_x64.cab
[2010-06-02 05:22:02 | 001,013,225 | ---- | C] () -- C:\Users\Reiy\Feb2005_d3dx9_24_x86.cab
[2010-06-02 05:22:02 | 000,192,475 | ---- | C] () -- C:\Users\Reiy\DEC2006_XACT_x64.cab
[2010-06-02 05:22:02 | 000,145,599 | ---- | C] () -- C:\Users\Reiy\DEC2006_XACT_x86.cab
[2010-06-02 05:22:00 | 001,571,154 | ---- | C] () -- C:\Users\Reiy\DEC2006_d3dx9_32_x64.cab
[2010-06-02 05:22:00 | 001,357,976 | ---- | C] () -- C:\Users\Reiy\Dec2005_d3dx9_28_x64.cab
[2010-06-02 05:22:00 | 001,079,456 | ---- | C] () -- C:\Users\Reiy\Dec2005_d3dx9_28_x86.cab
[2010-06-02 05:22:00 | 000,273,264 | ---- | C] () -- C:\Users\Reiy\Aug2009_XAudio_x64.cab
[2010-06-02 05:22:00 | 000,272,642 | ---- | C] () -- C:\Users\Reiy\Aug2009_XAudio_x86.cab
[2010-06-02 05:22:00 | 000,212,807 | ---- | C] () -- C:\Users\Reiy\DEC2006_d3dx10_00_x64.cab
[2010-06-02 05:22:00 | 000,191,720 | ---- | C] () -- C:\Users\Reiy\DEC2006_d3dx10_00_x86.cab
[2010-06-02 05:22:00 | 000,122,408 | ---- | C] () -- C:\Users\Reiy\Aug2009_XACT_x64.cab
[2010-06-02 05:22:00 | 000,093,106 | ---- | C] () -- C:\Users\Reiy\Aug2009_XACT_x86.cab
[2010-06-02 05:21:58 | 000,930,116 | ---- | C] () -- C:\Users\Reiy\Aug2009_d3dx9_42_x64.cab
[2010-06-02 05:21:58 | 000,728,456 | ---- | C] () -- C:\Users\Reiy\Aug2009_d3dx9_42_x86.cab
[2010-06-02 05:21:58 | 000,232,635 | ---- | C] () -- C:\Users\Reiy\Aug2009_d3dx10_42_x64.cab
[2010-06-02 05:21:58 | 000,192,131 | ---- | C] () -- C:\Users\Reiy\Aug2009_d3dx10_42_x86.cab
[2010-06-02 05:21:58 | 000,136,301 | ---- | C] () -- C:\Users\Reiy\Aug2009_d3dx11_42_x64.cab
[2010-06-02 05:21:58 | 000,105,044 | ---- | C] () -- C:\Users\Reiy\Aug2009_d3dx11_42_x86.cab
[2010-06-02 05:21:56 | 003,319,740 | ---- | C] () -- C:\Users\Reiy\Aug2009_d3dcsx_42_x86.cab
[2010-06-02 05:21:56 | 003,112,111 | ---- | C] () -- C:\Users\Reiy\Aug2009_d3dcsx_42_x64.cab
[2010-06-02 05:21:56 | 000,900,598 | ---- | C] () -- C:\Users\Reiy\Aug2009_D3DCompiler_42_x86.cab
[2010-06-02 05:21:46 | 000,919,044 | ---- | C] () -- C:\Users\Reiy\Aug2009_D3DCompiler_42_x64.cab
[2010-06-02 05:21:46 | 000,271,412 | ---- | C] () -- C:\Users\Reiy\Aug2008_XAudio_x64.cab
[2010-06-02 05:21:46 | 000,271,038 | ---- | C] () -- C:\Users\Reiy\Aug2008_XAudio_x86.cab
[2010-06-02 05:21:44 | 001,794,084 | ---- | C] () -- C:\Users\Reiy\Aug2008_d3dx9_39_x64.cab
[2010-06-02 05:21:44 | 001,464,672 | ---- | C] () -- C:\Users\Reiy\Aug2008_d3dx9_39_x86.cab
[2010-06-02 05:21:44 | 000,849,167 | ---- | C] () -- C:\Users\Reiy\Aug2008_d3dx10_39_x86.cab
[2010-06-02 05:21:44 | 000,198,096 | ---- | C] () -- C:\Users\Reiy\AUG2007_XACT_x64.cab
[2010-06-02 05:21:44 | 000,153,012 | ---- | C] () -- C:\Users\Reiy\AUG2007_XACT_x86.cab
[2010-06-02 05:21:44 | 000,121,772 | ---- | C] () -- C:\Users\Reiy\Aug2008_XACT_x64.cab
[2010-06-02 05:21:44 | 000,092,996 | ---- | C] () -- C:\Users\Reiy\Aug2008_XACT_x86.cab
[2010-06-02 05:21:42 | 001,800,160 | ---- | C] () -- C:\Users\Reiy\AUG2007_d3dx9_35_x64.cab
[2010-06-02 05:21:42 | 001,708,152 | ---- | C] () -- C:\Users\Reiy\AUG2007_d3dx9_35_x86.cab
[2010-06-02 05:21:42 | 000,867,612 | ---- | C] () -- C:\Users\Reiy\Aug2008_d3dx10_39_x64.cab
[2010-06-02 05:21:42 | 000,852,286 | ---- | C] () -- C:\Users\Reiy\AUG2007_d3dx10_35_x64.cab
[2010-06-02 05:21:42 | 000,796,867 | ---- | C] () -- C:\Users\Reiy\AUG2007_d3dx10_35_x86.cab
[2010-06-02 05:21:40 | 001,350,542 | ---- | C] () -- C:\Users\Reiy\Aug2005_d3dx9_27_x64.cab
[2010-06-02 05:21:40 | 001,077,644 | ---- | C] () -- C:\Users\Reiy\Aug2005_d3dx9_27_x86.cab
[2010-06-02 05:21:40 | 000,182,903 | ---- | C] () -- C:\Users\Reiy\AUG2006_XACT_x64.cab
[2010-06-02 05:21:40 | 000,137,235 | ---- | C] () -- C:\Users\Reiy\AUG2006_XACT_x86.cab
[2010-06-02 05:21:40 | 000,087,142 | ---- | C] () -- C:\Users\Reiy\AUG2006_xinput_x64.cab
[2010-06-02 05:21:40 | 000,053,302 | ---- | C] () -- C:\Users\Reiy\APR2007_xinput_x86.cab
[2010-06-02 05:21:40 | 000,046,058 | ---- | C] () -- C:\Users\Reiy\AUG2006_xinput_x86.cab
[2010-06-02 05:21:38 | 001,606,039 | ---- | C] () -- C:\Users\Reiy\APR2007_d3dx9_33_x86.cab
[2010-06-02 05:21:38 | 000,195,766 | ---- | C] () -- C:\Users\Reiy\APR2007_XACT_x64.cab
[2010-06-02 05:21:38 | 000,151,225 | ---- | C] () -- C:\Users\Reiy\APR2007_XACT_x86.cab
[2010-06-02 05:21:38 | 000,096,817 | ---- | C] () -- C:\Users\Reiy\APR2007_xinput_x64.cab
[2010-06-02 05:21:36 | 001,607,358 | ---- | C] () -- C:\Users\Reiy\APR2007_d3dx9_33_x64.cab
[2010-06-02 05:21:36 | 000,698,612 | ---- | C] () -- C:\Users\Reiy\APR2007_d3dx10_33_x64.cab
[2010-06-02 05:21:36 | 000,695,865 | ---- | C] () -- C:\Users\Reiy\APR2007_d3dx10_33_x86.cab
[2010-06-02 05:21:34 | 000,046,010 | ---- | C] () -- C:\Users\Reiy\Apr2006_xinput_x86.cab
[2010-06-02 05:21:20 | 000,087,101 | ---- | C] () -- C:\Users\Reiy\Apr2006_xinput_x64.cab
[2010-06-02 05:21:18 | 004,162,630 | ---- | C] () -- C:\Users\Reiy\Apr2006_MDX1_x86_Archive.cab
[2010-06-02 05:21:18 | 000,916,430 | ---- | C] () -- C:\Users\Reiy\Apr2006_MDX1_x86.cab
[2010-06-02 05:21:18 | 000,179,133 | ---- | C] () -- C:\Users\Reiy\Apr2006_XACT_x64.cab
[2010-06-02 05:21:18 | 000,133,103 | ---- | C] () -- C:\Users\Reiy\Apr2006_XACT_x86.cab
[2010-06-02 05:21:16 | 001,397,830 | ---- | C] () -- C:\Users\Reiy\Apr2006_d3dx9_30_x64.cab
[2010-06-02 05:21:16 | 001,347,354 | ---- | C] () -- C:\Users\Reiy\Apr2005_d3dx9_25_x64.cab
[2010-06-02 05:21:16 | 001,115,221 | ---- | C] () -- C:\Users\Reiy\Apr2006_d3dx9_30_x86.cab
[2010-06-02 05:21:16 | 001,078,962 | ---- | C] () -- C:\Users\Reiy\Apr2005_d3dx9_25_x86.cab

========== ZeroAccess Check ==========

[2009-07-14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2009-07-14 03:41:54 | 014,161,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2009-07-14 03:16:14 | 012,866,560 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009-07-14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009-07-14 03:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009-07-14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2013-11-17 18:26:55 | 000,000,000 | ---D | M] -- C:\Users\Reiy\AppData\Roaming\.minecraft
[2014-05-08 21:50:36 | 000,000,000 | ---D | M] -- C:\Users\Reiy\AppData\Roaming\AIMP3
[2013-10-07 21:04:55 | 000,000,000 | ---D | M] -- C:\Users\Reiy\AppData\Roaming\AnvSoft
[2014-05-27 00:35:01 | 000,000,000 | ---D | M] -- C:\Users\Reiy\AppData\Roaming\BitTorrent
[2013-12-03 23:24:10 | 000,000,000 | ---D | M] -- C:\Users\Reiy\AppData\Roaming\DAEMON Tools Lite
[2013-10-21 19:49:17 | 000,000,000 | ---D | M] -- C:\Users\Reiy\AppData\Roaming\LolClient
[2013-09-25 19:46:06 | 000,000,000 | ---D | M] -- C:\Users\Reiy\AppData\Roaming\Wargaming.net
[2013-09-27 11:59:19 | 000,000,000 | ---D | M] -- C:\Users\Reiy\AppData\Roaming\Wise Registry Cleaner

========== Purity Check ==========



========== Files - Unicode (All) ==========
[2014-04-19 11:14:32 | 731,098,696 | ---- | C] ()(C:\Users\Reiy\Desktop\????? ???????? (2009) PL.BRRip.XviD-BiDA(1).avi) -- C:\Users\Reiy\Desktop\Книга мастеров (2009) PL.BRRip.XviD-BiDA(1).avi
[2014-04-19 11:13:48 | 731,098,696 | ---- | M] ()(C:\Users\Reiy\Desktop\????? ???????? (2009) PL.BRRip.XviD-BiDA(1).avi) -- C:\Users\Reiy\Desktop\Книга мастеров (2009) PL.BRRip.XviD-BiDA(1).avi

< End of report >

 

extras.txt

 

OTL Extras logfile created on: 2014-05-30 21:06:22 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Reiy\Downloads
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

4,00 Gb Total Physical Memory | 2,71 Gb Available Physical Memory | 67,71% Memory free
7,99 Gb Paging File | 6,44 Gb Available in Paging File | 80,57% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 297,99 Gb Total Space | 123,34 Gb Free Space | 41,39% Space Free | Partition Type: NTFS
Drive D: | 7,92 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
Drive F: | 100,00 Mb Total Space | 61,35 Mb Free Space | 61,35% Space Free | Partition Type: NTFS

Computer Name: REIY-KOMPUTER | User Name: Reiy | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{093FD6FA-427E-4D77-A070-4E9C10DB16AE}" = rport=137 | protocol=17 | dir=out | app=system |
"{0B9C296E-7458-4085-B559-FA151DABAEEE}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{0EB1DB2B-F053-4CC0-88F2-EE7E1F3FD6E3}" = rport=138 | protocol=17 | dir=out | app=system |
"{13B32E64-9380-46B2-8E82-67E65044E652}" = rport=445 | protocol=6 | dir=out | app=system |
"{18712041-4CC3-4B42-AA59-AB8A608E2390}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{21B6EA15-7A1F-41AC-A122-013CB959A5E5}" = lport=137 | protocol=17 | dir=in | app=system |
"{38DD27E1-6DA2-40B7-B45A-2048222379C3}" = lport=445 | protocol=6 | dir=in | app=system |
"{460F5885-14EF-493A-8F7D-3EBE32D0EB87}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{4A6D0A80-A933-47B0-B838-8EEBC452B1B5}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{4C5E47B5-8CC8-43D5-8662-83C96299D1CE}" = rport=139 | protocol=6 | dir=out | app=system |
"{542855ED-E180-4322-8706-BB6196401BA5}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{565EF83B-9E54-41D0-8480-5CEDDC8C3C80}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{60D19218-99CE-4D9F-84C7-164E328B5096}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{648F2C8B-8C55-4A17-980D-0C20A2991F1A}" = lport=10243 | protocol=6 | dir=in | app=system |
"{71AFFC04-0CDF-43B5-8D97-CBFCB9AD55C2}" = rport=10243 | protocol=6 | dir=out | app=system |
"{74595291-B6FF-4D9A-A785-B555503B949F}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{77E911B4-6767-47A5-AFB9-94F5C1B936AB}" = lport=2869 | protocol=6 | dir=in | app=system |
"{8172945B-2CDF-4DDD-90E6-BBB48495D96A}" = lport=138 | protocol=17 | dir=in | app=system |
"{A84C9C0B-0632-4C85-9ECA-89840939E5FC}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{B7FA7EA7-C4C7-4A58-AA65-0F7D26F86715}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{BD5F748F-0E3F-446F-B457-621B1C2BBEF2}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{BEEF2A40-9889-4530-8984-AC5906AF6777}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{C3C9A478-ACBD-4BCA-9C37-FC0DA0C783FB}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{CA54A167-C4F4-4432-9656-B4B0A9109E70}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{DEE4CD2A-45BF-4743-A444-B67A20E54221}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{DF52444E-03A4-475E-8B89-8B1550FFBDA9}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{DFCF7160-E7C2-4D54-89C9-0291549FDF01}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{E5531588-7EC8-4921-A496-C85734233704}" = lport=139 | protocol=6 | dir=in | app=system |
"{F1A04FC9-EAD9-4360-B532-C8613D84DFED}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{F683A7D7-F960-4B3D-918B-9A0F8EAA1434}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{FA0E95C9-707A-458A-92D7-DE19B4298366}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{03DEE0F5-EBE8-41BE-A507-877294F0EA16}" = protocol=58 | dir=out | [email protected],-503 |
"{1289214C-19FF-4720-9D78-EE17435A2492}" = protocol=58 | dir=in | app=system |
"{226B1DDA-75D0-4C53-9A4A-63D7FCC2CABD}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{2397817A-D54F-4410-B5C4-75CC488D4FF4}" = protocol=1 | dir=out | [email protected],-28544 |
"{23E757F3-2474-42B5-8A4A-7890E868070F}" = protocol=58 | dir=in | [email protected],-28545 |
"{37F10A45-713A-4BF2-9878-033D06F1D6CC}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{68AB0100-6E8E-467E-A29E-70D80D4BFA57}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{6B3393D4-626A-4828-A428-967E67C72C8F}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{7ABEEF59-2611-4ADA-976B-398F044AA6B5}" = protocol=1 | dir=in | [email protected],-28543 |
"{7AE38A7A-168A-422C-A972-FA28FA3B5FA8}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{7B92F57E-7F46-4A48-B827-85299D411136}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{8DFF368E-2F19-4677-B996-4372CB0F9938}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{9442D138-34E9-4C36-B451-51A92609CE2D}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{9AA87B78-3D9E-4159-BDCB-6CAE436C4950}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{A3EAA156-9640-464D-98BE-0DCD75AF8D35}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{B4F36FC9-2495-469C-B3CF-486A4D0FEEA7}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{C6227514-D234-456F-8608-44C333224EEB}" = protocol=58 | dir=out | [email protected],-28546 |
"{C905736A-8B7F-4929-9D31-3D37A4BB7DD5}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{D9F1DCA8-277D-4CFA-A2B6-76A0E7EA534B}" = protocol=6 | dir=out | app=system |
"{E1D84DCA-FEE5-44E5-82F1-4577C6314BDD}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{EBA2738D-8620-4B17-8963-ADEBD74D2542}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{F39F84E6-E276-4907-B024-495CA8FF028C}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{F6903F89-D116-41F2-B1FF-D0DE44D765F6}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{F9E4BA5F-2B97-4E5A-BF2B-0A11CE77E61D}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"TCP Query User{31626D29-2B01-4B03-B81A-8FC3CBCE7E2E}C:\games\world_of_tanks\wotlauncher.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe |
"TCP Query User{3E9DD9D6-554E-46D1-925E-84E2187429AE}C:\games\world_of_tanks\worldoftanks.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
"TCP Query User{75E63994-BDA5-4338-938C-58F8BBB4DDBC}C:\games\world_of_tanks\worldoftanks.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
"TCP Query User{9BC781B9-C275-41A1-8E9B-A542060DBDAA}C:\program files (x86)\hp\common\hpdevicedetection3.exe" = protocol=6 | dir=in | app=c:\program files (x86)\hp\common\hpdevicedetection3.exe |
"TCP Query User{D8750F2E-D2F9-4386-A137-40469E663E5D}C:\program files (x86)\bittorrent\bittorrent.exe" = protocol=6 | dir=in | app=c:\program files (x86)\bittorrent\bittorrent.exe |
"TCP Query User{E48BF4B1-9155-4569-8C3C-0200BA405DCC}C:\games\world_of_tanks\wotlauncher.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe |
"UDP Query User{5E1DB30F-6110-493D-9848-D714D2AB7140}C:\program files (x86)\bittorrent\bittorrent.exe" = protocol=17 | dir=in | app=c:\program files (x86)\bittorrent\bittorrent.exe |
"UDP Query User{7CA8F70A-D7CE-48B0-845F-B4461F55667E}C:\program files (x86)\hp\common\hpdevicedetection3.exe" = protocol=17 | dir=in | app=c:\program files (x86)\hp\common\hpdevicedetection3.exe |
"UDP Query User{9E1BB1E6-ECAE-4D66-A6E2-58810DE9EBB5}C:\games\world_of_tanks\worldoftanks.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
"UDP Query User{B1932598-6E15-4E27-B052-2B93B1BA4688}C:\games\world_of_tanks\wotlauncher.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe |
"UDP Query User{CA0250A7-98FC-4867-94EF-E61730773D23}C:\games\world_of_tanks\wotlauncher.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe |
"UDP Query User{F9D182ED-B839-4BE4-BB8A-1DC17951A447}C:\games\world_of_tanks\worldoftanks.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{1AD147D0-BE0E-3D6C-AC11-64F6DC4163F1}" = Microsoft .NET Framework 4.5
"{5F4ED7B4-C4A5-F8B0-8AF2-6F199E172A1B}" = ATI Catalyst Install Manager
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5
"{BC2F48D2-2A95-7710-01A4-8D956FC01311}" = ccc-utility64
"CCleaner" = CCleaner
"CPUID HWMonitor_is1" = CPUID HWMonitor 1.18
"SynTPDeinstKey" = Synaptics Pointing Device Driver

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0B2C5A8E-8CE8-C37F-64D8-B6DCCD842892}" = Catalyst Control Center Graphics Light
"{11245F43-9A8B-0DE3-7766-F2D43E2984A9}" = CCC Help Chinese Standard
"{189C5477-82BA-8E9F-7475-EAC117B14C89}" = ccc-core-static
"{2208BA8A-32D7-79FE-D165-49DB697450B3}" = Catalyst Control Center Localization All
"{25FCB351-8E25-9390-793E-E2C0FE06B275}" = CCC Help Thai
"{266D0EEA-E5A6-4A08-A0EE-5391D4EA44A7}" = Catalyst Control Center - Branding
"{26A24AE4-039D-4CA4-87B4-2F83217045FF}" = Java 7 Update 45
"{3120D045-073F-084A-DE3B-743D39FCB0B2}" = Catalyst Control Center Graphics Full Existing
"{329BD6F7-822F-7508-DBE8-6E4985F75B6C}" = Catalyst Control Center Graphics Previews Vista
"{33AC917C-BD90-1E5B-7847-02934F0FCB89}" = CCC Help Danish
"{34D2AB40-150D-475D-AE32-BD23FB5EE355}" = HP Quick Launch Buttons
"{4209F371-88D4-AB00-ED2B-D6520C84D9D5}_is1" = Ashampoo WinOptimizer 10 v.10.2.5
"{49CCE0DC-BC63-97E5-0D81-B62EF02EC999}" = Catalyst Control Center InstallProxy
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{504364F7-C53C-1AB8-D208-709BE2F2E9A6}" = CCC Help Polish
"{5554ADB8-C30B-B71C-B107-31FC6AA83404}" = CCC Help German
"{5FC3CDFF-2845-50FE-930A-2CF6EF53A40E}" = CCC Help Turkish
"{65F8B49F-CEFC-CD8E-8042-334369D8A87B}" = CCC Help Chinese Traditional
"{67063BCE-172D-A2DD-47C2-9C3ACCD5C6E5}" = CCC Help Russian
"{74D0A966-4C82-F95D-B6EF-94079D99FBCF}" = Catalyst Control Center Core Implementation
"{76A232AF-B7D6-41A4-B795-6B355E6D32B1}" = Tom Clancy's H.A.W.X. 2
"{76B9C7EF-69A4-C368-CE22-130C6F8AFFB9}" = CCC Help Italian
"{7983228D-A566-148E-10FB-CF275B61CF6A}" = CCC Help Greek
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{8A9FC225-75F6-4B5D-911C-0ED230565643}" = HP Product Detection
"{8F9087C6-E07F-430A-059F-7CA26BF875F8}" = CCC Help Portuguese
"{907376DB-2EC5-759B-C518-61C1298AC35A}" = CCC Help Dutch
"{97E186B5-6109-AB21-C20C-64C00D8A58E6}" = CCC Help Japanese
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A511CDA5-D3C5-0F3D-EB55-C85BCB6C0BF9}" = CCC Help Hungarian
"{AA127CE3-6463-373D-04AE-3555D0FE55AD}" = CCC Help Swedish
"{ACDC3A55-5A32-40CE-A558-C20B7C04810B}" = CCC Help Czech
"{ADA7FB64-C42C-A254-C36C-2C0416BDDC81}" = CCC Help French
"{B490539D-177D-F1E4-7DA8-FA9A4E4E18F7}" = CCC Help English
"{C51A6D54-0CE7-137B-C6DD-E5DAEC893E1F}" = Catalyst Control Center Graphics Full New
"{D11C659E-4A9D-798E-F5F9-CAA3C8DE1B6D}" = CCC Help Finnish
"{D7584962-3948-DA87-C1C3-05F712C0859D}" = CCC Help Korean
"{DC24971E-1946-445D-8A82-CE685433FA7D}" = Realtek USB 2.0 Card Reader
"{E11CEE91-9A51-04F8-D160-99E9F63F876E}" = Catalyst Control Center Graphics Previews Common
"{E26D1E33-33AA-3B41-8E18-5C8C994B58A1}" = CCC Help Spanish
"{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}" = IDT Audio
"{F1D7AC58-554A-4A58-B784-B61558B1449A}" = QLBCASL
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"AIMP3" = AIMP3
"ALLPlayer_is1" = ALLPlayer V4.X
"Any Video Converter_is1" = Any Video Converter 5.0.9
"Ashampoo Undeleter_is1" = Ashampoo Undeleter v.1.10
"BitTorrent" = BitTorrent
"Dzielenie i łączenie plików_is1" = Dzielenie i łączenie plików v1.2.2
"KLiteCodecPack_is1" = K-Lite Codec Pack 7.8.4 (Full)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware wersja 1.75.0.1300
"Mozilla Firefox 29.0.1 (x86 pl)" = Mozilla Firefox 29.0.1 (x86 pl)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"PLAY ONLINE" = PLAY ONLINE
"RealAlt_is1" = Real Alternative 2.0.2
"WinRAR archiver" = WinRAR 4.20 (32-bitowy)
"Wise Registry Cleaner_is1" = Wise Registry Cleaner 6.14
"Zero Assumption Recovery_is1" = Zero Assumption Recovery Version 9

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 2014-01-19 07:03:03 | Computer Name = Reiy-Komputer | Source = Windows Search Service | ID = 9000
Description =

Error - 2014-01-19 07:03:03 | Computer Name = Reiy-Komputer | Source = Windows Search Service | ID = 7040
Description =

Error - 2014-01-19 07:03:03 | Computer Name = Reiy-Komputer | Source = Windows Search Service | ID = 7042
Description =

Error - 2014-01-19 07:03:03 | Computer Name = Reiy-Komputer | Source = Windows Search Service | ID = 9002
Description =

Error - 2014-01-19 07:03:03 | Computer Name = Reiy-Komputer | Source = Windows Search Service | ID = 3029
Description =

Error - 2014-01-19 07:03:03 | Computer Name = Reiy-Komputer | Source = Windows Search Service | ID = 3029
Description =

Error - 2014-01-19 07:03:03 | Computer Name = Reiy-Komputer | Source = Windows Search Service | ID = 3028
Description =

Error - 2014-01-19 07:03:03 | Computer Name = Reiy-Komputer | Source = Windows Search Service | ID = 3058
Description =

Error - 2014-01-19 07:03:03 | Computer Name = Reiy-Komputer | Source = Windows Search Service | ID = 7010
Description =

Error - 2014-05-06 08:04:56 | Computer Name = Reiy-Komputer | Source = Application Hang | ID = 1002
Description = Program RazerGameBoosterSetup_4.2.45.0.tmp w wersji 51.1052.0.0 zatrzymał
interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych
więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu
sterowania Centrum akcji. Identyfikator procesu: 3fc Godzina rozpoczęcia: 01cf6922d4860756

Godzina
zakończenia: 0 Ścieżka aplikacji: C:\Users\Reiy\AppData\Local\Temp\is-0M3GV.tmp\RazerGameBoosterSetup_4.2.45.0.tmp

Identyfikator
raportu:

[ System Events ]
Error - 2014-05-27 13:33:46 | Computer Name = Reiy-Komputer | Source = Ntfs | ID = 262199
Description = Struktura systemu plików na dysku jest uszkodzona i nie nadaje się
do użytku. Uruchom narzędzie chkdsk na woluminie I:.

Error - 2014-05-27 13:33:46 | Computer Name = Reiy-Komputer | Source = Ntfs | ID = 262199
Description = Struktura systemu plików na dysku jest uszkodzona i nie nadaje się
do użytku. Uruchom narzędzie chkdsk na woluminie I:.

Error - 2014-05-27 13:33:46 | Computer Name = Reiy-Komputer | Source = Ntfs | ID = 262199
Description = Struktura systemu plików na dysku jest uszkodzona i nie nadaje się
do użytku. Uruchom narzędzie chkdsk na woluminie I:.

Error - 2014-05-27 13:33:46 | Computer Name = Reiy-Komputer | Source = Ntfs | ID = 262199
Description = Struktura systemu plików na dysku jest uszkodzona i nie nadaje się
do użytku. Uruchom narzędzie chkdsk na woluminie I:.

Error - 2014-05-27 13:33:46 | Computer Name = Reiy-Komputer | Source = Ntfs | ID = 262199
Description = Struktura systemu plików na dysku jest uszkodzona i nie nadaje się
do użytku. Uruchom narzędzie chkdsk na woluminie I:.

Error - 2014-05-27 13:55:13 | Computer Name = Reiy-Komputer | Source = EventLog | ID = 6008
Description = Poprzednie zamknięcie systemu przy 19:52:02 na ?2014-?05-?27 było
nieoczekiwane.

Error - 2014-05-27 13:55:19 | Computer Name = Reiy-Komputer | Source = Service Control Manager | ID = 7009
Description = Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się
z usługą PLAY ONLINE. OUC.

Error - 2014-05-27 13:55:19 | Computer Name = Reiy-Komputer | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi PLAY ONLINE. OUC z powodu następującego
błędu: %%1053

Error - 2014-05-30 13:39:15 | Computer Name = Reiy-Komputer | Source = Service Control Manager | ID = 7009
Description = Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się
z usługą PLAY ONLINE. OUC.

Error - 2014-05-30 13:39:15 | Computer Name = Reiy-Komputer | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi PLAY ONLINE. OUC z powodu następującego
błędu: %%1053


< End of report >

 

860331433165800174608.png

12 odpowiedzi na to pytanie

Rekomendowane odpowiedzi

Nezvik Mentor

Nezvik

Opublikowano
Mentor

Nezvik

Opublikowano

 

Struktura systemu plików na dysku jest uszkodzona i nie nadaje się
do użytku. Uruchom narzędzie chkdsk na woluminie I:.

 

Co to jest wolumin I? Pobierz program HDTune i wstaw screena w zakładki health.

Nezvik Mentor

Nezvik

Opublikowano
Mentor

Nezvik

Opublikowano

 

(ATTENTION: ====> FRST version is 102 days old and could be outdated)

 

Pobierz najnowszą wersje programu. Linki masz na górze logu.

Reiden Weteran

Reiden

Opublikowano
Weteran

Reiden

  • Autor
Opublikowano

wolumin I to karta pamieci podlaczana przez adapter usb

218091401632950174608.jpeg

 

 

nowy log z mbam

 

Malwarebytes Anti-Malware 1.75.0.1300

www.malwarebytes.org

 

Wersja bazy: v2014.06.01.04

 

Windows 7 x64 NTFS

Internet Explorer 8.0.7600.16385

Reiy :: REIY-KOMPUTER [administrator]

 

2014-06-01 16:20:07

mbam-log-2014-06-01 (16-20-07).txt

 

Typ skanowania: Pełne skanowanie (C:\|D:\|E:\|F:\|)

Zaznaczone opcje skanowania: Pamięć | Rozruch | Rejestr | System plików | Heurystyka/Dodatkowe | Heuristyka/Shuriken | PUP | PUM | P2P

Odznaczone opcje skanowania:

Przeskanowano obiektów: 328723

Upłynęło: 1 godzin(y), 12 minut(y), 27 sekund(y)

 

Wykrytych procesów w pamięci: 0

(Nie znaleziono zagrożeń)

 

Wykrytych modułów w pamięci: 0

(Nie znaleziono zagrożeń)

 

Wykrytych kluczy rejestru: 0

(Nie znaleziono zagrożeń)

 

Wykrytych wartości rejestru: 0

(Nie znaleziono zagrożeń)

 

Wykryte wpisy rejestru systemowego: 0

(Nie znaleziono zagrożeń)

 

wykrytych folderów: 0

(Nie znaleziono zagrożeń)

 

 

 ref

860331433165800174608.png

Reiden Weteran

Reiden

Opublikowano
Weteran

Reiden

  • Autor
Opublikowano

wolumin I to karta pamieci podlaczana przez adapter usb

218091401632950174608.jpeg

 

 

nowy log z mbam

 

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Wersja bazy: v2014.06.01.04

Windows 7 x64 NTFS
Internet Explorer 8.0.7600.16385
Reiy :: REIY-KOMPUTER [administrator]

2014-06-01 16:20:07
mbam-log-2014-06-01 (16-20-07).txt

Typ skanowania: Pełne skanowanie (C:\|D:\|E:\|F:\|)
Zaznaczone opcje skanowania: Pamięć | Rozruch | Rejestr | System plików | Heurystyka/Dodatkowe | Heuristyka/Shuriken | PUP | PUM | P2P
Odznaczone opcje skanowania:
Przeskanowano obiektów: 328723
Upłynęło: 1 godzin(y), 12 minut(y), 27 sekund(y)

Wykrytych procesów w pamięci: 0
(Nie znaleziono zagrożeń)

Wykrytych modułów w pamięci: 0
(Nie znaleziono zagrożeń)

Wykrytych kluczy rejestru: 0
(Nie znaleziono zagrożeń)

Wykrytych wartości rejestru: 0
(Nie znaleziono zagrożeń)

Wykryte wpisy rejestru systemowego: 0
(Nie znaleziono zagrożeń)

wykrytych folderów: 0
(Nie znaleziono zagrożeń)

 

860331433165800174608.png

Reiden Weteran

Reiden

Opublikowano
Weteran

Reiden

  • Autor
Opublikowano

FRST.txt

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 27-02-2014 02 (ATTENTION: ====> FRST version is 102 days old and could be outdated)
Ran by Reiy (administrator) on REIY-KOMPUTER on 09-06-2014 21:23:52
Running from C:\Users\Reiy\Downloads
Windows 7 Ultimate (X64) OS Language: Polish
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe
() C:\ProgramData\DatacardService\HWDeviceService64.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
() C:\ProgramData\PLAY ONLINE\OnlineUpdate\ouc.exe
(Microsoft Corporation) C:\Windows\system32\UI0Detect.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Advanced Micro Devices Inc.) c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Farbar) C:\Users\Reiy\Downloads\FRST64_www.INSTALKI.pl.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [synTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1794344 2009-04-30] (Synaptics Incorporated)
HKLM\...\Run: [sysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [450048 2009-07-21] (IDT, Inc.)
HKLM-x32\...\Run: [startCCC] - c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-07-22] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [QlbCtrl.exe] - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [321080 2009-07-27] ( Hewlett-Packard Development Company, L.P.)
HKU\S-1-5-21-1610681026-966548452-3964991100-1000\...\MountPoints2: {86935b36-29f1-11e3-94ce-00247e245800} - E:\AutoRun.exe
HKU\S-1-5-21-1610681026-966548452-3964991100-1000\...\MountPoints2: {86935b43-29f1-11e3-94ce-00247e245800} - G:\AutoRun.exe
HKU\S-1-5-21-1610681026-966548452-3964991100-1000\...\MountPoints2: {dc3b5b82-2f74-11e3-817f-00247e245800} - G:\AutoRun.exe
HKU\S-1-5-21-1610681026-966548452-3964991100-1000\...\MountPoints2: {e84c5508-5517-11e3-89f1-00238b79788d} - E:\setup.exe

==================== Internet (Whitelisted) ====================

StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO-x32: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: IplexToALLPlayer - {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - C:\Program Files (x86)\ALLPlayer\Iplex\IplexToALLPlayer.dll (ALLCinema Ltd.)
Tcpip\Parameters: [DhcpNameServer] 10.10.1.2 10.10.1.1
Tcpip\..\Interfaces\{1437B7CE-4355-418E-AD3D-1EB0832B0BD5}: [NameServer]89.108.202.21 89.108.195.21
Tcpip\..\Interfaces\{629B2B70-B317-4D6A-9AC4-D06FF5CC101A}: [NameServer]89.108.202.20 89.108.195.20

FireFox:
========
FF ProfilePath: C:\Users\Reiy\AppData\Roaming\Mozilla\Firefox\Profiles\8xavy2xj.default
FF Homepage: https://www.google.pl/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @real.com/nppl3260;version=6.0.12.450 - C:\Program Files (x86)\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpjplug;version=6.0.12.448 - C:\Program Files (x86)\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF Extension: HP Detect - C:\Users\Reiy\AppData\Roaming\Mozilla\Firefox\Profiles\8xavy2xj.default\Extensions\{ab91efd4-6975-4081-8552-1b3922ed79e2} [2013-09-25]
FF Extension: Iplex to ALLPlayer - C:\Users\Reiy\AppData\Roaming\Mozilla\Firefox\Profiles\8xavy2xj.default\Extensions\[email protected] [2013-09-30]
FF Extension: Adblock Plus - C:\Users\Reiy\AppData\Roaming\Mozilla\Firefox\Profiles\8xavy2xj.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-10-18]

==================== Services (Whitelisted) =================

R2 AESTFilters; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe [89600 2009-03-01] (Andrea Electronics Corporation)
R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [346976 2011-03-14] ()
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S2 PLAY ONLINE. RunOuc; C:\Program Files (x86)\PLAY ONLINE\UpdateDog\ouc.exe [246112 2013-09-30] ()
R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe [240128 2009-07-21] (IDT, Inc.)

==================== Drivers (Whitelisted) ====================

R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-11-24] (Disc Soft Ltd)
S3 huawei_wwanecm; C:\Windows\System32\DRIVERS\ew_juwwanecm.sys [229376 2013-09-30] (Huawei Technologies Co., Ltd.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
U3 DfSdkS;

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-09 21:23 - 2014-06-09 21:23 - 00007169 _____ () C:\Users\Reiy\Downloads\FRST.txt
2014-06-09 21:23 - 2014-06-09 21:23 - 00000000 ____D () C:\FRST
2014-06-09 20:33 - 2014-06-09 20:39 - 02155520 _____ (Farbar) C:\Users\Reiy\Downloads\FRST64_www.INSTALKI.pl.exe
2014-06-08 16:52 - 2014-06-08 16:52 - 302551570 _____ () C:\Windows\MEMORY.DMP
2014-06-08 16:52 - 2014-06-08 16:52 - 00317336 _____ () C:\Windows\Minidump\060814-24414-01.dmp
2014-06-07 11:28 - 2014-06-07 11:29 - 17009768 _____ (Electronic Arts, Inc.) C:\Users\Reiy\Downloads\OriginThinSetup.exe
2014-06-01 18:44 - 2014-06-01 18:46 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-06-01 18:43 - 2014-06-01 22:03 - 00000000 ____D () C:\Users\Reiy\AppData\Roaming\Origin
2014-06-01 18:43 - 2014-06-01 18:44 - 00000000 ____D () C:\Users\Reiy\AppData\Local\Origin
2014-06-01 18:40 - 2014-06-07 11:41 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-06-01 18:40 - 2014-06-01 22:03 - 00000000 ____D () C:\ProgramData\Origin
2014-06-01 18:40 - 2014-06-01 18:40 - 00000000 ____D () C:\ProgramData\Electronic Arts
2014-06-01 16:21 - 2014-06-07 10:23 - 00000000 ____D () C:\Program Files (x86)\HD Tune
2014-06-01 15:25 - 2014-06-01 15:36 - 733605888 _____ () C:\Users\Reiy\Downloads\Galerianki.avi
2014-05-30 21:01 - 2014-05-30 21:01 - 00007605 _____ () C:\Users\Reiy\AppData\Local\Resmon.ResmonCfg
2014-05-27 19:49 - 2014-05-27 19:50 - 00000000 ____D () C:\Users\Reiy\Desktop\Nowy folder
2014-05-27 19:45 - 2014-06-07 10:23 - 00000000 ____D () C:\Program Files (x86)\ZAR
2014-05-26 19:43 - 2014-05-26 21:52 - 00000000 ____D () C:\Users\Reiy\Desktop\kierownik
2014-05-26 19:33 - 2014-05-26 19:42 - 732690432 _____ () C:\Users\Reiy\Downloads\Mortal Kombat 1 (Lektor PL).avi
2014-05-22 18:12 - 2014-05-22 18:37 - 00000000 ____D () C:\Program Files (x86)\Ubisoft
2014-05-21 19:50 - 2011-11-16 17:59 - 720505552 _____ () C:\Users\Reiy\Desktop\Krzyzowy.ogien.2011.PL.DVDRip.XviD-www.filmy-lektor-dubbing.pl.avi
2014-05-20 21:01 - 2014-03-22 21:11 - 404534930 _____ () C:\Users\Reiy\Desktop\Facet pełen uroku.rmvb
2014-05-20 18:57 - 2014-04-13 21:13 - 277140367 _____ () C:\Users\Reiy\Desktop\Eurotrip PL LEKTOR.rmvb
2014-05-19 19:30 - 2014-06-07 10:23 - 00000000 ____D () C:\AdwCleaner
2014-05-18 22:17 - 2014-05-18 22:26 - 732964864 ____N () C:\Users\Reiy\Desktop\Turbo.avi
2014-05-18 22:11 - 2014-05-17 22:50 - 596947526 ____N () C:\Users\Reiy\Desktop\Gra Endera_(ALLConverter_1).mp4
2014-05-14 11:56 - 2014-05-14 11:17 - 734891784 _____ () C:\Users\Reiy\Desktop\Niezgodna.Divergent.2014.PLSUBBED.CAM.XviD-BiDA.avi
2014-05-12 18:52 - 2014-05-07 20:07 - 1137653296 _____ () C:\Users\Reiy\Desktop\Hobbit Pustkowie Smauga (2013) PLDUB.MD.DVDSCR.XViD-AX_(ALLConverter_1).avi

==================== One Month Modified Files and Folders =======

2014-06-09 21:23 - 2014-06-09 21:23 - 00007169 _____ () C:\Users\Reiy\Downloads\FRST.txt
2014-06-09 21:23 - 2014-06-09 21:23 - 00000000 ____D () C:\FRST
2014-06-09 21:22 - 2014-02-25 15:32 - 00001232 _____ () C:\Windows\setupact.log
2014-06-09 21:21 - 2013-09-25 16:25 - 00466505 _____ () C:\Windows\WindowsUpdate.log
2014-06-09 20:58 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-06-09 20:39 - 2014-06-09 20:33 - 02155520 _____ (Farbar) C:\Users\Reiy\Downloads\FRST64_www.INSTALKI.pl.exe
2014-06-09 20:31 - 2009-07-14 06:45 - 00010016 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-09 20:31 - 2009-07-14 06:45 - 00010016 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-09 20:29 - 2009-07-14 19:55 - 00687828 _____ () C:\Windows\system32\perfh015.dat
2014-06-09 20:29 - 2009-07-14 19:55 - 00131382 _____ () C:\Windows\system32\perfc015.dat
2014-06-09 20:29 - 2009-07-14 07:13 - 01523412 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-09 20:24 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-08 16:52 - 2014-06-08 16:52 - 302551570 _____ () C:\Windows\MEMORY.DMP
2014-06-08 16:52 - 2014-06-08 16:52 - 00317336 _____ () C:\Windows\Minidump\060814-24414-01.dmp
2014-06-08 16:52 - 2013-10-01 12:12 - 00000000 ____D () C:\Windows\Minidump
2014-06-08 15:41 - 2012-07-29 08:01 - 00000000 ____D () C:\Games
2014-06-08 15:39 - 2014-02-25 16:20 - 00002548 _____ () C:\Windows\PFRO.log
2014-06-07 11:41 - 2014-06-01 18:40 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-06-07 11:30 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-06-07 11:29 - 2014-06-07 11:28 - 17009768 _____ (Electronic Arts, Inc.) C:\Users\Reiy\Downloads\OriginThinSetup.exe
2014-06-07 10:26 - 2013-09-25 16:44 - 00000000 ____D () C:\Users\Reiy
2014-06-07 10:23 - 2014-06-01 16:21 - 00000000 ____D () C:\Program Files (x86)\HD Tune
2014-06-07 10:23 - 2014-05-27 19:45 - 00000000 ____D () C:\Program Files (x86)\ZAR
2014-06-07 10:23 - 2014-05-19 19:30 - 00000000 ____D () C:\AdwCleaner
2014-06-07 10:23 - 2014-05-06 15:41 - 00000000 ____D () C:\Users\Reiy\Downloads\WOT-TWEAKER-V2.5-FOR-PATCH-0.9.0
2014-06-07 10:23 - 2014-04-15 12:07 - 00000000 ____D () C:\Program Files (x86)\K-Lite Codec Pack
2014-06-07 10:23 - 2014-01-11 10:29 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-07 10:23 - 2013-12-01 14:11 - 00000000 ____D () C:\Program Files (x86)\Snowblind Studios
2014-06-07 10:23 - 2013-10-20 20:16 - 00000000 ____D () C:\Program Files (x86)\Codemasters
2014-06-07 10:23 - 2013-09-30 22:03 - 00000000 ____D () C:\Users\Reiy\AppData\Roaming\BitTorrent
2014-06-07 10:23 - 2013-09-27 11:58 - 00000000 ____D () C:\Users\Reiy\AppData\Roaming\Wise Registry Cleaner
2014-06-07 10:23 - 2013-09-25 19:17 - 00000000 ____D () C:\Users\Reiy\AppData\Roaming\AIMP3
2014-06-07 10:23 - 2013-09-25 19:09 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-07 10:23 - 2013-09-25 19:06 - 00000000 ____D () C:\Users\Reiy\AppData\Roaming\TP-LINK
2014-06-07 10:23 - 2013-09-25 19:06 - 00000000 ____D () C:\Program Files (x86)\TP-LINK
2014-06-07 10:23 - 2013-09-25 19:05 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-06-07 10:23 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\MUI
2014-06-07 10:23 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\MUI
2014-06-07 10:23 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\AppCompat
2014-06-07 10:22 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration
2014-06-03 20:18 - 2013-10-07 21:05 - 00000000 ____D () C:\Users\Reiy\Documents\Any Video Converter
2014-06-01 22:03 - 2014-06-01 18:43 - 00000000 ____D () C:\Users\Reiy\AppData\Roaming\Origin
2014-06-01 22:03 - 2014-06-01 18:40 - 00000000 ____D () C:\ProgramData\Origin
2014-06-01 18:46 - 2014-06-01 18:44 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-06-01 18:44 - 2014-06-01 18:43 - 00000000 ____D () C:\Users\Reiy\AppData\Local\Origin
2014-06-01 18:40 - 2014-06-01 18:40 - 00000000 ____D () C:\ProgramData\Electronic Arts
2014-06-01 15:36 - 2014-06-01 15:25 - 733605888 _____ () C:\Users\Reiy\Downloads\Galerianki.avi
2014-05-30 21:08 - 2014-02-25 16:11 - 00000229 _____ () C:\Users\Reiy\Desktop\Nowy dokument tekstowy.txt
2014-05-30 21:01 - 2014-05-30 21:01 - 00007605 _____ () C:\Users\Reiy\AppData\Local\Resmon.ResmonCfg
2014-05-27 19:50 - 2014-05-27 19:49 - 00000000 ____D () C:\Users\Reiy\Desktop\Nowy folder
2014-05-26 21:52 - 2014-05-26 19:43 - 00000000 ____D () C:\Users\Reiy\Desktop\kierownik
2014-05-26 19:42 - 2014-05-26 19:33 - 732690432 _____ () C:\Users\Reiy\Downloads\Mortal Kombat 1 (Lektor PL).avi
2014-05-25 12:41 - 2014-05-06 14:59 - 00000000 ____D () C:\Users\Reiy\AppData\Local\Razer
2014-05-25 12:41 - 2014-05-06 14:59 - 00000000 ____D () C:\ProgramData\Razer
2014-05-25 12:41 - 2014-05-06 14:59 - 00000000 ____D () C:\Program Files (x86)\Razer
2014-05-22 18:37 - 2014-05-22 18:12 - 00000000 ____D () C:\Program Files (x86)\Ubisoft
2014-05-18 22:26 - 2014-05-18 22:17 - 732964864 ____N () C:\Users\Reiy\Desktop\Turbo.avi
2014-05-17 22:50 - 2014-05-18 22:11 - 596947526 ____N () C:\Users\Reiy\Desktop\Gra Endera_(ALLConverter_1).mp4
2014-05-14 11:17 - 2014-05-14 11:56 - 734891784 _____ () C:\Users\Reiy\Desktop\Niezgodna.Divergent.2014.PLSUBBED.CAM.XviD-BiDA.avi

Files to move or delete:
====================
C:\Users\Reiy\DSETUP.dll
C:\Users\Reiy\dsetup32.dll
C:\Users\Reiy\DXSETUP.exe
C:\Users\Reiy\infinst.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-06-09 21:16

==================== End Of Log ============================

 

 

 

 

Addition

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-02-2014 02
Ran by Reiy at 2014-06-09 21:24:28
Running from C:\Users\Reiy\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

Adobe Flash Player 11 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 11.9.900.117 - Adobe Systems Incorporated)
AIMP3 (HKLM-x32\...\AIMP3) (Version: v3.10.1061, 29.06.2012 - AIMP DevTeam)
ALLPlayer V4.X (HKLM-x32\...\ALLPlayer_is1) (Version: - ALLCinema Ltd.)
Any Video Converter 5.0.9 (HKLM-x32\...\Any Video Converter_is1) (Version: - Any-Video-Converter.com)
Ashampoo WinOptimizer 10 v.10.2.5 (HKLM-x32\...\{4209F371-88D4-AB00-ED2B-D6520C84D9D5}_is1) (Version: 10.02.05 - Ashampoo GmbH & Co. KG)
ATI Catalyst Install Manager (HKLM\...\{5F4ED7B4-C4A5-F8B0-8AF2-6F199E172A1B}) (Version: 3.0.732.0 - ATI Technologies, Inc.)
BitTorrent (HKLM-x32\...\BitTorrent) (Version: 7.2.0 - )
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Core Implementation (x32 Version: 2009.0722.2143.37126 - ATI) Hidden
Catalyst Control Center Graphics Full Existing (x32 Version: 2009.0722.2143.37126 - ATI) Hidden
Catalyst Control Center Graphics Full New (x32 Version: 2009.0722.2143.37126 - ATI) Hidden
Catalyst Control Center Graphics Light (x32 Version: 2009.0722.2143.37126 - ATI) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2009.0722.2143.37126 - ATI) Hidden
Catalyst Control Center Graphics Previews Vista (x32 Version: 2009.0722.2143.37126 - ATI) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2009.0722.2143.37126 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2009.0722.2143.37126 - ATI) Hidden
CCC Help Chinese Standard (x32 Version: 2009.0722.2142.37126 - ATI) Hidden
CCC Help Chinese Traditional (x32 Version: 2009.0722.2142.37126 - ATI) Hidden
CCC Help Czech (x32 Version: 2009.0722.2142.37126 - ATI) Hidden
CCC Help Danish (x32 Version: 2009.0722.2142.37126 - ATI) Hidden
CCC Help Dutch (x32 Version: 2009.0722.2142.37126 - ATI) Hidden
CCC Help English (x32 Version: 2009.0722.2142.37126 - ATI) Hidden
CCC Help Finnish (x32 Version: 2009.0722.2142.37126 - ATI) Hidden
CCC Help French (x32 Version: 2009.0722.2142.37126 - ATI) Hidden
CCC Help German (x32 Version: 2009.0722.2142.37126 - ATI) Hidden
CCC Help Greek (x32 Version: 2009.0722.2142.37126 - ATI) Hidden
CCC Help Hungarian (x32 Version: 2009.0722.2142.37126 - ATI) Hidden
CCC Help Italian (x32 Version: 2009.0722.2142.37126 - ATI) Hidden
CCC Help Japanese (x32 Version: 2009.0722.2142.37126 - ATI) Hidden
CCC Help Korean (x32 Version: 2009.0722.2142.37126 - ATI) Hidden
CCC Help Polish (x32 Version: 2009.0722.2142.37126 - ATI) Hidden
CCC Help Portuguese (x32 Version: 2009.0722.2142.37126 - ATI) Hidden
CCC Help Russian (x32 Version: 2009.0722.2142.37126 - ATI) Hidden
CCC Help Spanish (x32 Version: 2009.0722.2142.37126 - ATI) Hidden
CCC Help Swedish (x32 Version: 2009.0722.2142.37126 - ATI) Hidden
CCC Help Thai (x32 Version: 2009.0722.2142.37126 - ATI) Hidden
CCC Help Turkish (x32 Version: 2009.0722.2142.37126 - ATI) Hidden
ccc-core-static (x32 Version: 2009.0722.2143.37126 - Nazwa firmy) Hidden
ccc-utility64 (Version: 2009.0722.2143.37126 - ATI) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 3.18 - Piriform)
CPUID HWMonitor 1.18 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
Dzielenie i łączenie plików v1.2.2 (HKLM-x32\...\Dzielenie i łączenie plików_is1) (Version: - Michał Bąbik)
HP Product Detection (HKLM-x32\...\{8A9FC225-75F6-4B5D-911C-0ED230565643}) (Version: 11.15.0009 - HP)
HP Quick Launch Buttons (HKLM-x32\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.50.4.2 - Hewlett-Packard)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6225.0 - IDT)
Java 7 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.450 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Lord of the Rings - War in the North (HKLM-x32\...\Lord of the Rings - War in the North_is1) (Version: - )
Malwarebytes Anti-Malware wersja 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 26.0 (x86 pl) (HKLM-x32\...\Mozilla Firefox 26.0 (x86 pl)) (Version: 26.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 26.0 - Mozilla)
Origin (HKLM-x32\...\Origin) (Version: 9.4.7.2799 - Electronic Arts, Inc.)
PLAY ONLINE (HKLM-x32\...\PLAY ONLINE) (Version: 21.005.11.17.264 - Huawei Technologies Co.,Ltd)
QLBCASL (x32 Version: 6.40.17.2 - Hewlett-Packard) Hidden
Real Alternative 2.0.2 (HKLM-x32\...\RealAlt_is1) (Version: 2.0.2 - )
Realtek USB 2.0 Card Reader (HKLM-x32\...\{DC24971E-1946-445D-8A82-CE685433FA7D}) (Version: 3.0.1.3 - Realtek Semiconductor Corp.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 13.0.4.0 - Synaptics Incorporated)
TP-LINK 150Mbps Wireless N USB Adapter Driver (HKLM-x32\...\{38A1E3ED-D913-41D2-9953-A93D5ACE3ADF}) (Version: 1.3.1 - TP-LINK)
TP-LINK Wireless Configuration Utility (HKLM-x32\...\{319D91C6-3D44-436C-9F79-36C0D22372DC}) (Version: 1.3.1 - TP-LINK)
WinRAR 4.20 (32-bitowy) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Wise Registry Cleaner 6.14 (HKLM-x32\...\Wise Registry Cleaner_is1) (Version: - WiseCleaner.com, Inc.)

==================== Restore Points =========================

07-06-2014 08:19:13 Operacja przywracania

==================== Hosts content: ==========================

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {27EF0708-29EE-44D3-ABD5-E3564955F636} - System32\Tasks\{B87F4E80-3B19-4312-9A5A-10ABE75D6604} => C:\Program Files (x86)\Codemasters\Colin McRae Rally 2005\CMR5.EXE
Task: {3B23AC5C-6CA5-43B0-AE3D-D969A1526E98} - System32\Tasks\{DBDBA111-26B1-4B9D-A66B-1CADC223BB84} => C:\Program Files (x86)\Codemasters\Colin McRae Rally 2005\CMR5.EXE
Task: {A79F61CD-A9D2-4B34-81EB-EC2F53657ABA} - System32\Tasks\{CE77E22F-97B2-42AB-AAF3-8461E0DAC0AC} => C:\Program Files (x86)\Codemasters\Colin McRae Rally 2005\CMR5.EXE

==================== Loaded Modules (whitelisted) =============

2011-03-14 17:27 - 2011-03-14 17:27 - 00346976 _____ () C:\ProgramData\DatacardService\HWDeviceService64.exe
2013-09-30 19:14 - 2013-09-30 19:13 - 00246112 _____ () C:\ProgramData\PLAY ONLINE\OnlineUpdate\ouc.exe
2009-07-07 11:56 - 2009-07-07 11:56 - 00016384 ____R () c:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2013-09-25 19:32 - 2013-09-25 19:32 - 00270336 _____ () C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2013-09-30 19:14 - 2013-09-30 19:13 - 00011362 _____ () C:\ProgramData\PLAY ONLINE\OnlineUpdate\mingwm10.dll
2013-09-30 19:14 - 2013-09-30 19:13 - 00043008 _____ () C:\ProgramData\PLAY ONLINE\OnlineUpdate\libgcc_s_dw2-1.dll
2013-09-30 19:14 - 2013-09-30 19:13 - 02415104 _____ () C:\ProgramData\PLAY ONLINE\OnlineUpdate\QtCore4.dll
2013-09-30 19:14 - 2013-09-30 19:13 - 01148416 _____ () C:\ProgramData\PLAY ONLINE\OnlineUpdate\QtNetwork4.dll
2013-09-30 19:14 - 2013-09-30 19:13 - 00384512 _____ () C:\ProgramData\PLAY ONLINE\OnlineUpdate\QueryStrategy.dll
2013-09-30 19:14 - 2013-09-30 19:13 - 00398336 _____ () C:\ProgramData\PLAY ONLINE\OnlineUpdate\QtXml4.dll
2014-01-11 10:29 - 2014-01-11 10:29 - 03559024 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== Disabled items from MSCONFIG ==============

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^TP-LINK Wireless Configuration Utility.lnk => C:\Windows\pss\TP-LINK Wireless Configuration Utility.lnk.CommonStartup
MSCONFIG\startupreg: ALLUpdate => "C:\Program Files (x86)\ALLPlayer\ALLUpdate.exe" "sleep"
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

==================== Faulty Device Manager Devices =============

Name: Podstawowe urządzenie systemowe
Description: Podstawowe urządzenie systemowe
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Podstawowe urządzenie systemowe
Description: Podstawowe urządzenie systemowe
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Podstawowe urządzenie systemowe
Description: Podstawowe urządzenie systemowe
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (06/01/2014 05:31:37 PM) (Source: ATIeRecord) (User: )
Description: ATI EEU Client has failed to start

Error: (05/06/2014 02:04:56 PM) (Source: Application Hang) (User: )
Description: Program RazerGameBoosterSetup_4.2.45.0.tmp w wersji 51.1052.0.0 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji.

Identyfikator procesu: 3fc

Godzina rozpoczęcia: 01cf6922d4860756

Godzina zakończenia: 0

Ścieżka aplikacji: C:\Users\Reiy\AppData\Local\Temp\is-0M3GV.tmp\RazerGameBoosterSetup_4.2.45.0.tmp

Identyfikator raportu:

Error: (01/19/2014 01:03:03 PM) (Source: Windows Search Service) (User: )
Description: Nie można zainicjować indeksu.

Szczegóły:
Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801)

Error: (01/19/2014 01:03:03 PM) (Source: Windows Search Service) (User: )
Description: Nie można zainicjować aplikacji.

Kontekst: aplikacja Windows

Szczegóły:
Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801)

Error: (01/19/2014 01:03:03 PM) (Source: Windows Search Service) (User: )
Description: Nie można zainicjować obiektu programu zbierającego.

Kontekst: aplikacja Windows, wykaz SystemIndex

Szczegóły:
Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801)

Error: (01/19/2014 01:03:03 PM) (Source: Windows Search Service) (User: )
Description: Nie można zainicjować dodatku typu plug-in w .

Kontekst: aplikacja Windows, wykaz SystemIndex

Szczegóły:
Nie można odnaleźć elementu. (HRESULT : 0x80070490) (0x80070490)

Error: (01/19/2014 01:03:03 PM) (Source: Windows Search Service) (User: )
Description: Nie można zainicjować dodatku typu plug-in w .

Kontekst: aplikacja Windows, wykaz SystemIndex

Szczegóły:
Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801)

Error: (01/19/2014 01:03:03 PM) (Source: Windows Search Service) (User: )
Description: Usługa Windows Search nie może załadować informacji z magazynu właściwości.

Kontekst: aplikacja Windows, wykaz SystemIndex

Szczegóły:
Baza danych indeksów zawartości jest uszkodzona. (HRESULT : 0xc0041800) (0xc0041800)

Error: (01/19/2014 01:03:03 PM) (Source: Windows Search Service) (User: )
Description: Usługa Windows Search jest zatrzymywana, ponieważ wystąpił problem z indeksatorem: The catalog is corrupt.

Szczegóły:
Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801)

Error: (01/19/2014 01:03:03 PM) (Source: Windows Search Service) (User: )
Description: Usługa wyszukiwania wykryła uszkodzone pliki danych w indeksie {id=4700}. Usługa podejmie próbę automatycznego rozwiązania tego problemu przez odbudowanie indeksu.

Szczegóły:
Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801)


System errors:
=============
Error: (06/09/2014 08:24:28 PM) (Source: Service Control Manager) (User: )
Description: Nie można uruchomić usługi PLAY ONLINE. OUC z powodu następującego błędu:
%%1053

Error: (06/09/2014 08:24:28 PM) (Source: Service Control Manager) (User: )
Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą PLAY ONLINE. OUC.

Error: (06/08/2014 04:52:49 PM) (Source: Service Control Manager) (User: )
Description: Nie można uruchomić usługi PLAY ONLINE. OUC z powodu następującego błędu:
%%1053

Error: (06/08/2014 04:52:49 PM) (Source: Service Control Manager) (User: )
Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą PLAY ONLINE. OUC.

Error: (06/08/2014 04:52:43 PM) (Source: BugCheck) (User: )
Description: 0x000000d1 (0xfffff88006feb0b8, 0x0000000000000002, 0x0000000000000008, 0xfffff88006feb0b8)C:\Windows\MEMORY.DMP060814-24414-01

Error: (06/08/2014 04:52:38 PM) (Source: EventLog) (User: )
Description: Poprzednie zamknięcie systemu przy 16:51:25 na ‎2014-‎06-‎08 było nieoczekiwane.

Error: (06/08/2014 03:39:41 PM) (Source: Service Control Manager) (User: )
Description: Nie można uruchomić usługi PLAY ONLINE. OUC z powodu następującego błędu:
%%1053

Error: (06/08/2014 03:39:41 PM) (Source: Service Control Manager) (User: )
Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą PLAY ONLINE. OUC.

Error: (06/07/2014 11:45:18 AM) (Source: BROWSER) (User: )
Description: Usługa przeglądarki zbyt wiele razy nie zdołała pobrać listy kopii zapasowych w transporcie \Device\NetBT_Tcpip_{81C56C92-F775-46CB-A212-8E6A41CC5A33}.
Przeglądarka zapasowa jest zatrzymywana.

Error: (06/07/2014 10:25:10 AM) (Source: Service Control Manager) (User: )
Description: Nie można uruchomić usługi PLAY ONLINE. OUC z powodu następującego błędu:
%%1053


Microsoft Office Sessions:
=========================
Error: (06/01/2014 05:31:37 PM) (Source: ATIeRecord)(User: )
Description:

Error: (05/06/2014 02:04:56 PM) (Source: Application Hang)(User: )
Description: RazerGameBoosterSetup_4.2.45.0.tmp51.1052.0.03fc01cf6922d48607560C:\Users\Reiy\AppData\Local\Temp\is-0M3GV.tmp\RazerGameBoosterSetup_4.2.45.0.tmp

Error: (01/19/2014 01:03:03 PM) (Source: Windows Search Service)(User: )
Description: Szczegóły:
Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801)

Error: (01/19/2014 01:03:03 PM) (Source: Windows Search Service)(User: )
Description: Kontekst: aplikacja Windows

Szczegóły:
Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801)

Error: (01/19/2014 01:03:03 PM) (Source: Windows Search Service)(User: )
Description: Kontekst: aplikacja Windows, wykaz SystemIndex

Szczegóły:
Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801)

Error: (01/19/2014 01:03:03 PM) (Source: Windows Search Service)(User: )
Description: Kontekst: aplikacja Windows, wykaz SystemIndex

Szczegóły:
Nie można odnaleźć elementu. (HRESULT : 0x80070490) (0x80070490)
Search.TripoliIndexer

Error: (01/19/2014 01:03:03 PM) (Source: Windows Search Service)(User: )
Description: Kontekst: aplikacja Windows, wykaz SystemIndex

Szczegóły:
Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801)
Search.JetPropStore

Error: (01/19/2014 01:03:03 PM) (Source: Windows Search Service)(User: )
Description: Kontekst: aplikacja Windows, wykaz SystemIndex

Szczegóły:
Baza danych indeksów zawartości jest uszkodzona. (HRESULT : 0xc0041800) (0xc0041800)

Error: (01/19/2014 01:03:03 PM) (Source: Windows Search Service)(User: )
Description: Szczegóły:
Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801)
The catalog is corrupt

Error: (01/19/2014 01:03:03 PM) (Source: Windows Search Service)(User: )
Description: Szczegóły:
Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801)
4700


==================== Memory info ===========================

Percentage of memory in use: 31%
Total physical RAM: 4093.84 MB
Available physical RAM: 2801.26 MB
Total Pagefile: 8185.82 MB
Available Pagefile: 6663.73 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:297.99 GB) (Free:112.69 GB) NTFS
Drive f: (Zastrzeżone przez system) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[system with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: 00083CAD)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=298 GB) - (Type=07 NTFS)

==================== End Of Log ============================

 

860331433165800174608.png

Reiden Weteran

Reiden

Opublikowano
Weteran

Reiden

  • Autor
Opublikowano

log z mbam

 

indows 7 x64 NTFS
Internet Explorer 8.0.7600.16385
Reiy :: REIY-KOMPUTER [administrator]

2014-06-01 15:20:35
mbam-log-2014-06-01 (15-20-35).txt

Typ skanowania: Pełne skanowanie (C:\|D:\|E:\|F:\|)
Zaznaczone opcje skanowania: Pamięć | Rozruch | Rejestr | System plików | Heurystyka/Dodatkowe | Heuristyka/Shuriken | PUP | PUM
Odznaczone opcje skanowania: P2P
Przeskanowano obiektów: 328039
Upłynęło: 42 minut(y), 31 sekund(y)

Wykrytych procesów w pamięci: 0
(Nie znaleziono zagrożeń)

Wykrytych modułów w pamięci: 0
(Nie znaleziono zagrożeń)

Wykrytych kluczy rejestru: 0
(Nie znaleziono zagrożeń)

Wykrytych wartości rejestru: 0
(Nie znaleziono zagrożeń)

Wykryte wpisy rejestru systemowego: 0
(Nie znaleziono zagrożeń)

wykrytych folderów: 0
(Nie znaleziono zagrożeń)

Wykrytych plików: 1
C:\Users\Reiy\Downloads\WinRAR(12398).exe (PUP.Optional.InstallCore) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem.

(zakończone)

 

860331433165800174608.png

Zarchiwizowany

Ten temat przebywa obecnie w archiwum. Dodawanie nowych odpowiedzi zostało zablokowane.

Pytania
×
×
  • Dodaj nową pozycję...