Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

CS:GO Problem maps not work


  • This topic is locked This topic is locked
4 replies to this topic

#1 klaudi30i

klaudi30i

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:07:34 PM

Posted 17 July 2015 - 04:27 PM

FRST.txt
http://wklej.org/id/1758761/

Addition.txt
http://wklej.org/id/1758762/

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 12-07-2015
Ran by Klaudiusz (administrator) on KLAUDI-KOM on 17-07-2015 13:11:50
Running from C:\Users\Klaudiusz\Downloads
Loaded Profiles: Klaudiusz (Available Profiles: Klaudiusz)
Platform: Microsoft Windows 8.1 Pro (X86) OS Language: Angielski (Stany Zjednoczone)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(LogMeIn, Inc.) C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(LogMeIn Inc.) C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
Failed to access process -> Diablo III.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Advanced Micro Devices Inc.) C:\Program Files\AMD\ATI.ACE\Core-Static\MOM.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
() C:\Program Files\Bloody5\Bloody5\Bloody5.exe
(Valve Corporation) C:\Program Files\Steam\Steam.exe
(Electronic Arts) C:\Program Files\Origin\Origin.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Raptr, Inc) C:\Program Files\Raptr\raptr.exe
(Opera Software) C:\Program Files\Opera\30.0.1835.125\opera.exe
(Opera Software) C:\Program Files\Opera\30.0.1835.125\opera_crashreporter.exe
(Opera Software) C:\Program Files\Opera\30.0.1835.125\opera.exe
(Opera Software) C:\Program Files\Opera\30.0.1835.125\opera.exe
(Opera Software) C:\Program Files\Opera\30.0.1835.125\opera.exe
(Opera Software) C:\Program Files\Opera\30.0.1835.125\opera.exe
(Opera Software) C:\Program Files\Opera\30.0.1835.125\opera.exe
(Opera Software) C:\Program Files\Opera\30.0.1835.125\opera.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Raptr, Inc) C:\Program Files\Raptr\raptr_im.exe
(Valve Corporation) C:\Program Files\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files\Common Files\Steam\SteamService.exe
(ATI Technologies Inc.) C:\Program Files\AMD\ATI.ACE\Core-Static\CCC.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\CSISYNCCLIENT.EXE
(Opera Software) C:\Program Files\Opera\30.0.1835.125\opera.exe
(Valve Corporation) C:\Program Files\Steam\bin\steamwebhelper.exe
(Opera Software) C:\Program Files\Opera\30.0.1835.125\opera.exe
(Opera Software) C:\Program Files\Opera\30.0.1835.125\opera.exe
(Opera Software) C:\Program Files\Opera\30.0.1835.125\opera.exe
(Opera Software) C:\Program Files\Opera\30.0.1835.125\opera.exe
(Opera Software) C:\Program Files\Opera\30.0.1835.125\opera.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [StartCCC] => C:\Program Files\AMD\ATI.ACE\Core-Static\x86\CLIStart.exe [748232 2014-11-20] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [Raptr] => C:\Program Files\Raptr\raptrstub.exe [55568 2015-07-09] (Raptr, Inc)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12021464 2014-05-09] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [499608 2011-03-15] (Adobe Systems Incorporated)
HKLM\...\Run: [SwitchBoard] => C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeCS5.5ServiceManager] => C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated)
HKLM\...\Run: [EaseUS EPM tray] => C:\Program Files\EaseUS\EaseUS Partition Master 10.5\bin\EpmNews.exe [2089056 2015-04-14] (CHENGDU YIWO Tech Development Co., Ltd)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKLM\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [3978600 2015-03-30] (LogMeIn Inc.)
HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM\...\Run: [] => [X]
HKU\S-1-5-21-579367427-368484338-2413521296-1002\...\Run: [uTorrent] => C:\Users\Klaudiusz\AppData\Roaming\uTorrent\uTorrent.exe [1694560 2015-04-18] (BitTorrent Inc.)
HKU\S-1-5-21-579367427-368484338-2413521296-1002\...\Run: [Bloody2] => C:\Program Files\Bloody5\Bloody5\Bloody5.exe [18911232 2015-03-19] ()
HKU\S-1-5-21-579367427-368484338-2413521296-1002\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [28787840 2015-06-02] (Skype Technologies S.A.)
HKU\S-1-5-21-579367427-368484338-2413521296-1002\...\Run: [Steam] => C:\Program Files\Steam\steam.exe [2892992 2015-06-04] (Valve Corporation)
HKU\S-1-5-21-579367427-368484338-2413521296-1002\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [4557552 2015-03-31] (Disc Soft Ltd)
HKU\S-1-5-21-579367427-368484338-2413521296-1002\...\Run: [download.ninja] => C:\Program Files\Ninja Download Manager\download.ninja.exe
HKU\S-1-5-21-579367427-368484338-2413521296-1002\...\Run: [GoogleChromeAutoLaunch_7181A1CBE15D3139AEFEEBB34908BA8F] => C:\Program Files\Google\Chrome\Application\chrome.exe [813896 2015-07-13] (Google Inc.)
HKU\S-1-5-21-579367427-368484338-2413521296-1002\...\Run: [EADM] => C:\Program Files\Origin\Origin.exe [3632112 2015-07-14] (Electronic Arts)
HKU\S-1-5-21-579367427-368484338-2413521296-1002\...\MountPoints2: {0d23d6ba-054a-11e5-9732-001d92273c3b} - "K:\Setup.exe"
HKU\S-1-5-21-579367427-368484338-2413521296-1002\...\MountPoints2: {6d005b7e-dd50-11e4-972a-001b10002ca2} - "E:\SETUP.EXE" -autorun
HKU\S-1-5-21-579367427-368484338-2413521296-1002\...\MountPoints2: {6d005e31-dd50-11e4-972a-001b10002ca2} - "E:\autorun.bat"
HKU\S-1-5-21-579367427-368484338-2413521296-1002\...\MountPoints2: {c6ff4992-e2b1-11e4-972d-001b10002ca2} - "E:\setup.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2015-07-06]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-579367427-368484338-2413521296-1002\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/pl-pl/?ocid=iehp
BHO: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-05-21] (Hewlett-Packard Co.)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-06-23] (Oracle Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-06-23] (Oracle Corporation)
BHO: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-05-21] (Hewlett-Packard Co.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2015-07-15] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2015-07-15] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2015-07-15] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2015-07-15] (Microsoft Corporation)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{57DAF781-5828-41E4-BA49-5FC5D349557B}: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-06-23] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-06-23] (Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2015-07-15] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-14] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-14] (Google Inc.)
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2015-07-06]
FF HKU\S-1-5-21-579367427-368484338-2413521296-1002\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

Chrome:
=======
CHR Profile: C:\Users\Klaudiusz\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Torrent Search) - C:\Users\Klaudiusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\afbpdhiclgghnffhkinjikglgmolhpee [2015-04-02]
CHR Extension: (Angry Birds) - C:\Users\Klaudiusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj [2015-04-02]
CHR Extension: (Google Drive) - C:\Users\Klaudiusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-04-02]
CHR Extension: (YouTube) - C:\Users\Klaudiusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-04-02]
CHR Extension: (Adblock Plus) - C:\Users\Klaudiusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-04-02]
CHR Extension: (SHU) - C:\Users\Klaudiusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjmglcaoiaihbnjkjjgnddklfommnako [2015-05-27]
CHR Extension: (Google Search) - C:\Users\Klaudiusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-02]
CHR Extension: (Full Page Screen Capture) - C:\Users\Klaudiusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdpohaocaechififmbbbbbknoalclacl [2015-05-27]
CHR Extension: (Grand Theft Auto V Theme) - C:\Users\Klaudiusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\fifpefgiomhnkmkkcldjopjcfadhmhhn [2015-04-02]
CHR Extension: (Stylish) - C:\Users\Klaudiusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe [2015-06-25]
CHR Extension: (The QR Code Generator) - C:\Users\Klaudiusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcmhlmapohffdglflokbgknlknnmogbb [2015-04-02]
CHR Extension: (DriveTunes) - C:\Users\Klaudiusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\labgcacinobdnkfndodfkfeabbjckbnj [2015-04-02]
CHR Extension: (FVD Video Downloader) - C:\Users\Klaudiusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp [2015-04-08]
CHR Extension: (Google Mail Checker) - C:\Users\Klaudiusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2015-04-02]
CHR Extension: (Google Wallet) - C:\Users\Klaudiusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-04-02]
CHR Extension: (Gmail) - C:\Users\Klaudiusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-02]

Opera:
=======
OPR Extension: (Lazare INEPOLOGLOU) - C:\Users\Klaudiusz\AppData\Roaming\Opera Software\Opera Stable\Extensions\locmldbgfijjdphdbnjkggllhlcdngam [2015-07-13]
OPR Extension: (media-download) - C:\Users\Klaudiusz\AppData\Roaming\Opera Software\Opera Stable\Extensions\nnhkggkobeighhgbleinanphfihjjdap [2015-07-13]
OPR Extension: (Adblock Plus) - C:\Users\Klaudiusz\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2015-07-13]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [250880 2014-10-29] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [1811128 2015-07-12] (Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1023728 2015-03-31] (Disc Soft Ltd)
R2 Hamachi2Svc; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [1848168 2015-03-30] (LogMeIn Inc.)
R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-05-21] (Hewlett-Packard Co.) [File not signed]
R2 HPSLPSVC; C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL [660992 2009-05-21] (Hewlett-Packard Co.) [File not signed]
R2 LMIGuardianSvc; C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe [411920 2015-03-30] (LogMeIn, Inc.)
S2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44544 2008-12-03] (Hewlett-Packard) [File not signed]
S3 Origin Client Service; C:\Program Files\Origin\OriginClientService.exe [2004488 2015-07-14] (Electronic Arts)
S2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2008-12-03] (Hewlett-Packard) [File not signed]
S3 ScDeviceEnum; C:\Windows\System32\ScDeviceEnum.dll [103936 2014-10-29] (Microsoft Corporation)
S3 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [284488 2015-02-04] (Microsoft Corporation)
S3 WEPHOSTSVC; C:\Windows\system32\wephostsvc.dll [20992 2014-10-29] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [22200 2015-02-04] (Microsoft Corporation)
S3 workfolderssvc; C:\Windows\system32\workfolderssvc.dll [1269248 2014-10-29] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [15528 2012-09-23] (Advanced Micro Devices, Inc.)
R3 athur; C:\Windows\system32\DRIVERS\athuwb.sys [2022400 2013-11-20] (Qualcomm Atheros Communications, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB3.sys [200704 2014-06-21] (Advanced Micro Devices)
R1 BasicRender; C:\Windows\System32\drivers\BasicRender.sys [25600 2014-03-18] (Microsoft Corporation)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [25104 2015-04-07] (Disc Soft Ltd)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [15968 2014-11-18] ()
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [10208 2014-11-18] ()
S3 GPIO; C:\Windows\System32\drivers\iaiogpio.sys [22016 2013-07-23] (Intel Corporation)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [37128 2015-03-30] (LogMeIn Inc.)
R1 MpKslfddc2c38; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{356FC4FB-D3C8-4E33-BE3B-3141B79B9078}\MpKslfddc2c38.sys [39168 2015-07-17] (Microsoft Corporation)
S3 NTIOLib_1_0_6; C:\Program Files\Setup Files\Ms7309v1C0\NTIOLib.sys [7680 2011-01-06] (MSI) [File not signed]
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [84800 2015-02-04] (Microsoft Corporation)
R0 Wof; C:\Windows\system32\Drivers\Wof.sys [138584 2014-03-13] (Microsoft Corporation)
S3 WUDFSensorLP; C:\Windows\System32\drivers\WUDFRd.sys [190976 2014-10-29] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\Windows\System32\drivers\WUDFRd.sys [190976 2014-10-29] (Microsoft Corporation)
S3 xb1usb; C:\Windows\System32\drivers\xb1usb.sys [29408 2014-05-27] (Microsoft Corporation)
R3 xusb22; C:\Windows\System32\drivers\xusb22.sys [69632 2014-03-18] (Microsoft Corporation)
S3 NTIOLib_1_0_3; \??\C:\Program Files\MSI\Super Charger\NTIOLib.sys [X]
S3 NTIOLib_1_0_4; \??\C:\Program Files\MSI\Live Update\NTIOLib.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-17 13:11 - 2015-07-17 13:12 - 00017794 _____ C:\Users\Klaudiusz\Downloads\FRST.txt
2015-07-17 13:11 - 2015-07-17 13:11 - 00000000 ____D C:\FRST
2015-07-17 13:10 - 2015-07-17 13:10 - 01636864 _____ (Farbar) C:\Users\Klaudiusz\Downloads\FRST.exe
2015-07-16 19:08 - 2015-07-16 19:08 - 00000213 _____ C:\Users\Klaudiusz\Desktop\Counter-Strike Global Offensive.url
2015-07-16 18:44 - 2015-07-16 18:44 - 01835345 _____ C:\Users\Klaudiusz\Desktop\gdfgdf.pdn
2015-07-16 18:34 - 2015-07-16 18:34 - 02796424 _____ C:\Users\Klaudiusz\Desktop\iotyuduyfujh.vtf
2015-07-16 17:20 - 2015-07-16 17:20 - 00086170 _____ C:\Users\Klaudiusz\Downloads\div--div class=
2015-07-16 16:59 - 2015-07-16 16:59 - 05592640 _____ C:\Users\Klaudiusz\Desktop\gdghdfgfgfd.vtf
2015-07-16 16:45 - 2015-07-16 16:45 - 05592640 _____ C:\Users\Klaudiusz\Desktop\rtyhrtyty.vtf
2015-07-16 16:39 - 2015-07-16 16:39 - 05592640 _____ C:\Users\Klaudiusz\Desktop\fgfhfg.vtf
2015-07-16 15:44 - 2015-07-16 15:44 - 05592640 _____ C:\Users\Klaudiusz\Desktop\vdfvdfdfd.vtf
2015-07-16 15:12 - 2015-07-16 15:12 - 05592640 _____ C:\Users\Klaudiusz\Desktop\gfjhfjhgfjh.vtf
2015-07-16 15:04 - 2015-07-16 15:04 - 05592640 _____ C:\Users\Klaudiusz\Desktop\ffdfgfgfg.vtf
2015-07-16 13:58 - 2015-07-16 15:12 - 05592640 _____ C:\Users\Klaudiusz\Desktop\khbkhg.vtf
2015-07-16 13:57 - 2015-07-16 13:57 - 00000000 ____D C:\Users\Klaudiusz\AppData\Local\Nem's Tools
2015-07-16 13:56 - 2015-07-16 13:57 - 02439473 _____ C:\Users\Klaudiusz\Downloads\vtfedit133.zip
2015-07-16 13:53 - 2015-07-16 13:53 - 00548535 _____ C:\Users\Klaudiusz\Downloads\pdnvtfplugin111.zip
2015-07-16 13:49 - 2013-09-27 02:44 - 00908821 _____ C:\Users\Klaudiusz\Desktop\scar-20.tga
2015-07-16 13:32 - 2015-07-16 13:32 - 00000000 ____D C:\Users\Klaudiusz\Desktop\workbench_materials
2015-07-16 13:28 - 2015-07-16 13:28 - 11455283 _____ C:\Users\Klaudiusz\Downloads\workbench_materials.zip
2015-07-15 19:15 - 2012-05-25 19:46 - 00040976 _____ C:\Users\Klaudiusz\Desktop\Super Mario Bros pl.nes
2015-07-15 19:05 - 2015-07-15 19:05 - 00000000 ____D C:\Users\Klaudiusz\Desktop\NES
2015-07-15 19:04 - 2015-07-15 19:04 - 00122880 _____ C:\Users\Klaudiusz\Downloads\kailleraclient.dll
2015-07-15 18:38 - 2015-07-15 18:38 - 01249640 _____ C:\Users\Klaudiusz\Downloads\Nestopia140bin.zip
2015-07-15 18:38 - 2015-07-15 18:38 - 00031533 _____ C:\Users\Klaudiusz\Downloads\Super Mario Bros PL.zip
2015-07-15 16:13 - 2015-05-07 17:05 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\GeofenceMonitorService.dll
2015-07-15 16:13 - 2015-05-03 16:57 - 05264384 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2015-07-15 16:13 - 2015-05-02 01:33 - 00410739 _____ C:\Windows\system32\ApnDatabase.xml
2015-07-15 13:45 - 2015-07-15 13:45 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2015-07-15 13:22 - 2015-07-15 13:22 - 00000000 ___RD C:\Users\Klaudiusz\Desktop\HAJSOWNICY PACK v.2.0
2015-07-15 00:05 - 2015-07-15 00:06 - 00007605 _____ C:\Users\Klaudiusz\AppData\Local\Resmon.ResmonCfg
2015-07-14 20:40 - 2015-07-14 20:48 - 00000000 ____D C:\Users\Klaudiusz\Downloads\[R.G. Mechanics] Max Payne 3
2015-07-14 18:04 - 2015-07-14 18:04 - 00001507 _____ C:\Users\Public\Desktop\Theme Hospital.lnk
2015-07-14 18:04 - 2015-07-14 18:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Theme Hospital
2015-07-14 17:59 - 2015-07-14 18:00 - 00000000 ____D C:\Program Files\Origin Games
2015-07-14 17:58 - 2015-07-14 21:32 - 00000000 ____D C:\Users\Klaudiusz\AppData\Roaming\Origin
2015-07-14 17:58 - 2015-07-14 17:59 - 00000000 ____D C:\Users\Klaudiusz\AppData\Local\Origin
2015-07-14 17:55 - 2015-07-17 12:13 - 00000000 ____D C:\ProgramData\Origin
2015-07-14 17:55 - 2015-07-14 17:55 - 00000949 _____ C:\Users\Public\Desktop\Origin.lnk
2015-07-14 17:54 - 2015-07-14 19:53 - 00000000 ____D C:\ProgramData\Electronic Arts
2015-07-14 17:54 - 2015-07-14 17:58 - 00000000 ____D C:\Program Files\Origin
2015-07-14 17:54 - 2015-07-14 17:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2015-07-14 17:53 - 2015-07-14 17:54 - 17116168 _____ (Electronic Arts, Inc.) C:\Users\Klaudiusz\Downloads\OriginThinSetup.exe
2015-07-14 16:18 - 2015-07-14 16:18 - 00000000 ____D C:\Users\Klaudiusz\Documents\My Cheat Tables
2015-07-14 16:17 - 2015-07-14 16:17 - 04171264 _____ C:\Users\Klaudiusz\Downloads\Gimper-Simulator Trainer32bit.EXE
2015-07-14 02:21 - 2015-07-14 02:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-07-14 02:15 - 2015-07-14 02:15 - 00931408 _____ (Google Inc.) C:\Users\Klaudiusz\Downloads\ChromeSetup.exe
2015-07-14 01:26 - 2015-07-14 01:27 - 1524563968 _____ C:\Users\Klaudiusz\Downloads\BR2.iso
2015-07-13 22:38 - 2015-07-14 12:21 - 00000000 ____D C:\Users\Klaudiusz\AppData\Roaming\HpUpdate
2015-07-13 22:38 - 2015-07-13 22:38 - 00000000 ____D C:\Windows\Hewlett-Packard
2015-07-13 20:38 - 2015-07-15 00:06 - 00000000 ____D C:\Users\Klaudiusz\Documents\Diablo III
2015-07-13 20:36 - 2015-07-13 20:36 - 00001096 _____ C:\Users\Public\Desktop\Diablo III.lnk
2015-07-13 20:36 - 2015-07-13 20:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III
2015-07-13 19:14 - 2015-07-13 20:38 - 00000000 ____D C:\Program Files\Diablo III
2015-07-13 18:58 - 2015-07-15 03:06 - 00000000 ____D C:\Users\Klaudiusz\AppData\Local\Battle.net
2015-07-13 18:58 - 2015-07-15 03:02 - 00000000 ____D C:\Users\Klaudiusz\AppData\Roaming\Battle.net
2015-07-13 18:58 - 2015-07-13 18:58 - 00001114 _____ C:\Users\Public\Desktop\Battle.net.lnk
2015-07-13 18:58 - 2015-07-13 18:58 - 00000000 ____D C:\Users\Klaudiusz\AppData\Local\Blizzard Entertainment
2015-07-13 18:56 - 2015-07-13 18:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2015-07-13 18:56 - 2015-07-13 18:58 - 00000000 ____D C:\ProgramData\Blizzard Entertainment
2015-07-13 18:56 - 2015-07-13 18:58 - 00000000 ____D C:\Program Files\Battle.net
2015-07-13 18:48 - 2015-07-13 18:50 - 00000000 ____D C:\ProgramData\Battle.net
2015-07-13 17:20 - 2015-07-13 17:20 - 00000992 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2015-07-13 15:35 - 2015-07-13 15:35 - 00000000 ____D C:\Program Files\Epic Games
2015-07-13 15:27 - 2015-07-13 18:42 - 00000000 ____D C:\Users\Klaudiusz\Downloads\Diablo III[PCDVD][Multi9][2012][www.zonatorrent.com]
2015-07-12 23:25 - 2015-07-12 23:25 - 00002731 _____ C:\Users\Public\Desktop\Windows Phone Recovery Tool.lnk
2015-07-12 23:25 - 2015-07-12 23:25 - 00000000 ____D C:\ProgramData\HTC
2015-07-12 23:25 - 2015-07-12 23:25 - 00000000 ____D C:\Program Files\Microsoft Care Suite
2015-07-12 23:24 - 2015-07-12 23:25 - 00035412 _____ C:\Windows\DPINST.LOG
2015-07-12 23:24 - 2015-07-12 23:24 - 00000000 ____D C:\Program Files\Common Files\Nokia
2015-07-12 21:27 - 2015-07-12 21:28 - 00000000 ____D C:\Users\Klaudiusz\AppData\Roaming\MMFApplications
2015-07-12 20:14 - 2015-07-12 20:47 - 134588693 _____ ( ) C:\Users\Klaudiusz\Downloads\Gimper-Simulator-1.2.exe
2015-07-09 20:28 - 2015-07-09 20:28 - 00000000 ____D C:\Users\Klaudiusz\Documents\GameMaker
2015-07-09 20:15 - 2015-07-13 17:34 - 00000000 ____D C:\Program Files\Resource Hacker
2015-07-09 20:15 - 2015-07-10 14:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Resource Hacker
2015-07-09 19:08 - 2015-07-09 20:26 - 00000000 ____D C:\Users\Klaudiusz\AppData\Local\GameMakerPlayer
2015-07-09 19:08 - 2015-07-09 20:10 - 00000000 ____D C:\Users\Klaudiusz\AppData\Roaming\CodeBlocks
2015-07-09 17:46 - 2015-07-09 17:46 - 00000000 ____D C:\Users\Klaudiusz\AppData\Local\YoYo_Games_Ltd
2015-07-09 17:45 - 2015-07-09 20:28 - 00000000 ____D C:\Users\Klaudiusz\AppData\Roaming\GameMaker-Studio
2015-07-09 17:43 - 2015-07-09 20:28 - 00000000 ____D C:\Users\Klaudiusz\AppData\Local\GameMaker-Studio
2015-07-09 17:43 - 2015-07-09 20:24 - 00000946 _____ C:\Users\Public\Desktop\GameMaker Player.lnk
2015-07-09 17:43 - 2015-07-09 17:43 - 00000000 ____D C:\Users\Klaudiusz\GameMaker-Studio 1.4
2015-07-09 17:43 - 2015-07-09 17:43 - 00000000 ____D C:\Users\Klaudiusz\GameMakerPlayer
2015-07-09 17:43 - 2015-07-09 17:43 - 00000000 ____D C:\Users\Klaudiusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameMaker-Studio 1.4
2015-07-09 17:43 - 2015-07-09 17:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameMaker Player
2015-07-09 17:23 - 2015-07-09 17:25 - 00000000 ____D C:\Users\Klaudiusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CodeBlocks
2015-07-09 17:23 - 2015-07-09 17:25 - 00000000 ____D C:\Program Files\CodeBlocks
2015-07-09 17:23 - 2015-07-09 17:23 - 00001073 _____ C:\Users\Klaudiusz\Desktop\CodeBlocks.lnk
2015-07-09 17:23 - 2015-07-09 17:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeBlocks
2015-07-09 17:02 - 2015-07-09 17:02 - 00000218 _____ C:\Users\Klaudiusz\AppData\Local\recently-used.xbel
2015-07-09 16:55 - 2015-07-09 16:55 - 00000000 ____D C:\Users\Klaudiusz\AppData\Roaming\inkscape
2015-07-09 16:54 - 2015-07-09 16:54 - 00001021 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inkscape.lnk
2015-07-09 16:53 - 2015-07-09 16:53 - 00000977 _____ C:\Users\Public\Desktop\Inkscape.lnk
2015-07-09 16:43 - 2015-07-09 16:55 - 00000000 ____D C:\Program Files\Inkscape
2015-07-09 15:33 - 2015-07-09 15:35 - 00000403 ____H C:\Users\Klaudiusz\.swfinfo
2015-07-09 15:09 - 2015-07-09 16:30 - 00000000 ____D C:\Users\Klaudiusz\AppData\Roaming\Kodi
2015-07-09 15:01 - 2015-07-09 15:22 - 00000000 ____D C:\Users\Klaudiusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kodi
2015-07-09 15:01 - 2015-07-09 15:01 - 00001831 _____ C:\Users\Klaudiusz\Desktop\Kodi.lnk
2015-07-09 15:00 - 2015-07-09 15:01 - 00000000 ____D C:\Program Files\Kodi
2015-07-09 01:29 - 2015-06-04 15:26 - 00883712 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2015-07-09 01:29 - 2015-06-04 15:26 - 00064352 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2015-07-09 01:29 - 2015-06-04 15:26 - 00022368 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2015-07-09 01:29 - 2015-06-04 15:26 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-07-09 01:29 - 2015-06-04 15:26 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2015-07-09 01:29 - 2015-06-04 15:26 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-07-09 01:29 - 2015-06-04 15:26 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-07-09 01:29 - 2015-06-04 15:26 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-07-09 01:29 - 2015-06-04 15:26 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2015-07-09 01:29 - 2015-06-04 15:26 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-07-09 01:29 - 2015-06-04 15:26 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2015-07-09 01:29 - 2015-06-04 15:26 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-07-09 01:29 - 2015-06-04 15:26 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-07-09 01:29 - 2015-06-04 15:26 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-07-09 01:29 - 2015-06-04 15:26 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-07-09 01:29 - 2015-06-04 15:26 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-07-09 01:22 - 2015-07-09 01:22 - 00002414 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2015-07-09 01:22 - 2015-07-09 01:22 - 00002402 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2015-07-09 01:22 - 2015-07-09 01:22 - 00002387 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2015-07-09 01:22 - 2015-07-09 01:22 - 00002384 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2015-07-09 01:22 - 2015-07-09 01:22 - 00002381 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2015-07-09 01:22 - 2015-07-09 01:22 - 00002348 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2015-07-09 01:22 - 2015-07-09 01:22 - 00002338 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2015-07-09 01:22 - 2015-07-09 01:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Narzędzia pakietu Microsoft Office 2016
2015-07-08 18:32 - 2015-07-12 18:11 - 00000000 ____D C:\Users\Klaudiusz\AppData\Local\LogMeIn Hamachi
2015-07-08 18:32 - 2015-07-08 18:32 - 00000000 ____D C:\Users\Klaudiusz\AppData\Local\LogMeIn
2015-07-08 18:32 - 2015-07-08 18:32 - 00000000 ____D C:\ProgramData\LogMeIn
2015-07-08 18:31 - 2015-07-08 18:31 - 00000908 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2015-07-08 18:31 - 2015-07-08 18:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2015-07-08 18:31 - 2015-07-08 18:31 - 00000000 ____D C:\Program Files\LogMeIn Hamachi
2015-07-06 22:11 - 2015-07-06 22:11 - 00000000 ____D C:\Users\Klaudiusz\AppData\Roaming\HP
2015-07-06 21:45 - 2015-07-06 21:45 - 00001373 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Centrum obsługi HP.lnk
2015-07-06 21:45 - 2015-07-06 21:45 - 00001367 _____ C:\Users\Public\Desktop\Centrum obsługi HP.lnk
2015-07-06 21:45 - 2015-07-06 21:45 - 00000000 ____D C:\ProgramData\HP Product Assistant
2015-07-06 17:34 - 2015-07-06 17:34 - 00000110 _____ C:\Windows\wininit.ini
2015-07-06 17:33 - 2015-07-06 17:33 - 00000000 ____D C:\Program Files\Common Files\HP
2015-07-06 17:33 - 2015-07-06 17:33 - 00000000 ____D C:\Program Files\Common Files\Hewlett-Packard
2015-07-06 17:32 - 2015-07-13 22:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2015-07-06 17:30 - 2015-07-13 22:39 - 00000000 ____D C:\Program Files\HP
2015-07-06 17:28 - 2015-07-06 22:10 - 00201405 _____ C:\Windows\hpoins46.dat
2015-07-06 17:28 - 2015-07-06 22:10 - 00000317 _____ C:\ProgramData\hpzinstall.log
2015-07-06 17:28 - 2009-06-11 05:02 - 00000606 ____N C:\Windows\hpomdl46.dat
2015-07-06 17:27 - 2015-07-06 21:45 - 00000000 ____D C:\ProgramData\HP
2015-07-06 14:52 - 2015-07-06 14:52 - 00001636 _____ C:\Users\Public\Desktop\Terraria.lnk
2015-07-06 14:52 - 2015-07-06 14:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Terraria [GOG.com]
2015-07-06 14:52 - 2015-07-06 14:52 - 00000000 ____D C:\Program Files\Microsoft XNA
2015-07-06 14:49 - 2015-07-06 14:49 - 00000000 ____D C:\GOG Games
2015-07-05 22:49 - 2015-07-06 12:56 - 00000000 ____D C:\Program Files\Ninja Download Manager
2015-07-05 22:49 - 2015-07-06 12:52 - 00000000 ____D C:\Users\Klaudiusz\AppData\Roaming\DownloadNinja
2015-07-04 23:41 - 2015-07-04 23:41 - 00429752 _____ (Microsoft Corporation) C:\Windows\system32\msvcp140.dll
2015-07-04 23:41 - 2015-07-04 23:41 - 00255176 _____ (Microsoft Corporation) C:\Windows\system32\vccorlib140.dll
2015-07-04 23:41 - 2015-07-04 23:41 - 00232656 _____ (Microsoft Corporation) C:\Windows\system32\concrt140.dll
2015-07-04 23:41 - 2015-07-04 23:41 - 00075448 _____ (Microsoft Corporation) C:\Windows\system32\vcruntime140.dll
2015-07-04 23:40 - 2015-07-04 23:40 - 00000000 ____D C:\Program Files\PlayReady
2015-07-04 23:38 - 2015-07-12 17:55 - 00000000 ____D C:\Users\Klaudiusz\AppData\Roaming\ipla
2015-07-04 23:38 - 2015-07-06 01:05 - 00000000 ____D C:\ProgramData\ipla
2015-07-04 23:38 - 2015-07-04 23:38 - 01060864 _____ (Microsoft Corporation) C:\Windows\system32\mfc71.dll
2015-07-04 23:38 - 2015-07-04 23:38 - 00348160 _____ (Microsoft Corporation) C:\Windows\system32\msvcr71.dll
2015-07-04 23:38 - 2015-07-04 23:38 - 00000921 _____ C:\Users\Public\Desktop\ipla.lnk
2015-07-04 23:38 - 2015-07-04 23:38 - 00000000 ____D C:\ProgramData\RDRM
2015-07-04 23:38 - 2015-07-04 23:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ipla
2015-07-04 23:38 - 2015-07-04 23:38 - 00000000 ____D C:\Program Files\ipla
2015-06-26 15:16 - 2015-06-26 15:16 - 00001375 _____ C:\Users\Public\Desktop\Saints Row The Third - The Full Package.lnk
2015-06-26 15:16 - 2015-06-26 15:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Deep Silver
2015-06-26 14:46 - 2015-06-26 14:46 - 00000000 ____D C:\Program Files\Deep Silver
2015-06-26 14:33 - 2015-07-13 16:18 - 00000026 _____ C:\Users\Klaudiusz\AppData\Local\isoworkshop.ini
2015-06-26 14:33 - 2015-06-26 14:33 - 00001169 _____ C:\Users\Public\Desktop\ISO Workshop.lnk
2015-06-26 14:33 - 2015-06-26 14:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glorylogic
2015-06-26 14:33 - 2015-06-26 14:33 - 00000000 ____D C:\Program Files\Glorylogic
2015-06-26 14:06 - 2015-06-26 14:06 - 00000887 _____ C:\Users\Public\Desktop\AIMP3.lnk
2015-06-26 14:06 - 2015-06-26 14:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP3
2015-06-26 14:05 - 2015-07-15 14:08 - 00000000 ____D C:\Users\Klaudiusz\AppData\Roaming\AIMP3
2015-06-26 14:05 - 2015-06-26 14:05 - 00000000 ____D C:\Program Files\AIMP3
2015-06-25 22:54 - 2015-06-25 22:54 - 00001216 _____ C:\Users\Public\Desktop\Update Garrys Mod.lnk
2015-06-25 22:54 - 2015-06-25 22:54 - 00001206 _____ C:\Users\Public\Desktop\Garrys Mod.lnk
2015-06-25 22:54 - 2015-06-25 22:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Strogino CS Portal
2015-06-25 22:37 - 2015-06-25 22:37 - 00000000 ____D C:\Program Files\Strogino CS Portal
2015-06-25 21:50 - 2015-06-25 21:50 - 00000000 ____D C:\Users\Klaudiusz\AppData\Roaming\Rockstar Games
2015-06-25 21:50 - 2015-06-25 21:50 - 00000000 ____D C:\Users\Klaudiusz\AppData\Local\Rockstar Games
2015-06-25 21:50 - 2015-06-25 21:50 - 00000000 ____D C:\ProgramData\Rockstar Games
2015-06-25 17:02 - 2015-06-25 17:02 - 00000000 ____D C:\R.G. Catalyst
2015-06-24 15:43 - 2015-06-24 21:39 - 00000000 ____D C:\Program Files\R.G. Mechanics
2015-06-23 19:21 - 2015-06-23 21:31 - 00000000 ____D C:\Users\Klaudiusz\Documents\FIFA 12
2015-06-23 19:09 - 2015-06-23 19:09 - 00000000 ____D C:\Program Files\EA Sports
2015-06-23 15:19 - 2015-06-23 15:19 - 00000000 ____D C:\ProgramData\Sun
2015-06-23 15:19 - 2015-06-23 15:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-06-23 15:19 - 2015-06-23 15:19 - 00000000 ____D C:\Program Files\Common Files\Java
2015-06-23 15:19 - 2015-06-23 15:18 - 00096352 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2015-06-23 15:18 - 2015-06-23 15:18 - 00000000 ____D C:\ProgramData\Oracle
2015-06-23 15:17 - 2015-06-23 15:17 - 00000000 ____D C:\Program Files\Java
2015-06-23 14:58 - 2015-06-23 14:58 - 00000000 ____D C:\Users\Klaudiusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NIEOFICJALNE SPOLSZCZENIE PES2013 v.1.1
2015-06-23 11:44 - 2015-06-23 11:44 - 00000000 ____D C:\ProgramData\KONAMI
2015-06-23 11:42 - 2015-06-23 11:42 - 00000000 ____D C:\Users\Klaudiusz\Documents\KONAMI
2015-06-23 10:52 - 2015-06-23 10:52 - 00000884 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pro Evolution Soccer 2015.lnk
2015-06-23 10:00 - 2015-07-12 18:17 - 00006353 _____ C:\Windows\setupact.log
2015-06-23 10:00 - 2015-06-23 10:00 - 00000000 _____ C:\Windows\setuperr.log
2015-06-22 19:46 - 2015-07-13 15:05 - 00000000 ____D C:\Users\Klaudiusz\Downloads\AUTODESK.3DSMAX.V2013.MULTI.WIN32-ISO
2015-06-21 22:24 - 2015-06-21 22:24 - 00000000 ____D C:\Users\Klaudiusz\AppData\Roaming\Warner Bros. Interactive Entertainment
2015-06-17 14:51 - 2015-04-14 00:34 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\authz.dll
2015-06-17 14:51 - 2015-04-09 00:41 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\rgb9rast.dll
2015-06-17 14:50 - 2015-05-27 16:08 - 19607040 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-06-17 14:50 - 2015-05-25 15:22 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-06-17 14:50 - 2015-05-25 15:07 - 00977920 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-06-17 14:50 - 2015-05-23 05:15 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-06-17 14:50 - 2015-05-23 05:14 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-06-17 14:50 - 2015-05-23 05:10 - 02278912 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-06-17 14:50 - 2015-05-23 05:05 - 00664064 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-06-17 14:50 - 2015-05-23 05:04 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-06-17 14:50 - 2015-05-23 04:48 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-06-17 14:50 - 2015-05-23 04:47 - 04305920 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-06-17 14:50 - 2015-05-23 04:47 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-06-17 14:50 - 2015-05-23 04:47 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-06-17 14:50 - 2015-05-23 04:43 - 00880128 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-06-17 14:50 - 2015-05-23 04:38 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-06-17 14:50 - 2015-05-23 04:38 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-06-17 14:50 - 2015-05-23 04:37 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-06-17 14:50 - 2015-05-23 04:28 - 12829696 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-06-17 14:50 - 2015-05-23 04:28 - 01042944 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2015-06-17 14:50 - 2015-05-23 04:20 - 01950720 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-06-17 14:50 - 2015-05-23 04:16 - 01309696 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-06-17 14:50 - 2015-05-23 04:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-06-17 14:50 - 2015-05-22 15:08 - 00571392 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-06-17 14:50 - 2015-05-21 18:04 - 03532288 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-06-17 14:50 - 2015-05-21 15:07 - 00901120 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-06-17 14:50 - 2015-05-21 15:07 - 00878592 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-06-17 14:50 - 2015-05-21 15:07 - 00621056 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-06-17 14:50 - 2015-05-21 15:07 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-06-17 14:50 - 2015-05-21 15:07 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-06-17 14:50 - 2015-05-21 15:07 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-06-17 14:50 - 2015-04-25 04:33 - 00549888 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2015-06-17 14:50 - 2015-04-17 00:07 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-06-17 14:50 - 2015-04-16 08:22 - 00259928 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2015-06-17 14:50 - 2015-04-10 02:17 - 01018880 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2015-06-17 14:50 - 2015-04-02 00:30 - 02483712 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2015-06-17 14:50 - 2015-04-01 04:53 - 00391680 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2015-06-17 14:50 - 2015-04-01 04:53 - 00272896 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2015-06-17 14:50 - 2015-04-01 04:45 - 02749952 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2015-06-17 14:50 - 2015-04-01 04:45 - 00699392 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2015-06-17 14:50 - 2015-04-01 04:14 - 01920000 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2015-06-17 14:50 - 2015-04-01 04:12 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2015-06-17 14:50 - 2015-03-20 04:37 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2015-06-17 14:50 - 2015-03-20 03:57 - 00873984 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2015-06-17 14:50 - 2015-03-02 03:21 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-17 13:00 - 2013-08-22 10:17 - 00000000 ____D C:\Windows\system32\sru
2015-07-17 12:58 - 2015-04-02 15:49 - 01810556 _____ C:\Windows\WindowsUpdate.log
2015-07-17 12:58 - 2013-08-22 10:05 - 00000000 ____D C:\Windows\CbsTemp
2015-07-17 12:27 - 2013-08-22 10:17 - 00000000 ____D C:\Windows\Microsoft.NET
2015-07-17 12:22 - 2015-04-02 16:20 - 00001064 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-07-17 12:17 - 2015-04-02 18:15 - 00000000 ____D C:\Users\Klaudiusz\OneDrive
2015-07-17 12:15 - 2015-04-02 16:33 - 00000000 ____D C:\Users\Klaudiusz\AppData\Roaming\Raptr
2015-07-17 12:12 - 2015-04-04 00:29 - 00000000 ____D C:\Program Files\Steam
2015-07-17 12:12 - 2015-04-02 16:20 - 00001060 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-07-16 20:59 - 2014-09-16 18:38 - 00000000 ____D C:\Windows\system32\MRT
2015-07-16 19:08 - 2015-04-04 00:38 - 00000000 ____D C:\Users\Klaudiusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-07-16 18:55 - 2015-04-03 17:14 - 00000000 ____D C:\Users\Klaudiusz\AppData\Local\CrashDumps
2015-07-16 13:54 - 2015-04-03 12:24 - 00000000 ____D C:\Program Files\paint.net
2015-07-15 18:10 - 2015-04-02 16:35 - 00805892 _____ C:\Windows\system32\perfh015.dat
2015-07-15 18:10 - 2015-04-02 16:35 - 00163272 _____ C:\Windows\system32\perfc015.dat
2015-07-15 18:10 - 2014-03-18 09:59 - 01825074 _____ C:\Windows\system32\PerfStringBackup.INI
2015-07-15 13:45 - 2013-08-22 10:17 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-07-15 13:43 - 2015-06-02 21:03 - 00000000 ____D C:\Program Files\Microsoft Office
2015-07-15 12:41 - 2015-04-18 21:19 - 00001021 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-07-15 12:41 - 2015-04-18 21:17 - 00000000 ____D C:\Program Files\Opera
2015-07-14 22:43 - 2015-04-02 16:16 - 00000000 ____D C:\Users\Klaudiusz\AppData\Roaming\uTorrent
2015-07-14 17:26 - 2013-08-22 10:17 - 00000000 ____D C:\Windows\AppReadiness
2015-07-14 16:37 - 2015-04-04 21:33 - 00000000 ___SD C:\Windows\system32\GWX
2015-07-14 02:20 - 2015-04-02 16:20 - 00000000 ____D C:\Program Files\Google
2015-07-13 17:33 - 2015-04-07 18:28 - 00000000 ____D C:\Users\Klaudiusz\AppData\Local\Adobe
2015-07-13 16:10 - 2015-04-07 21:38 - 00000000 ____D C:\Users\Klaudiusz\Documents\My Games
2015-07-12 23:24 - 2015-04-02 16:17 - 00000000 ____D C:\ProgramData\Package Cache
2015-07-12 19:55 - 2015-04-02 17:23 - 00000000 ___RD C:\Users\Klaudiusz\Desktop\Galeria
2015-07-12 18:17 - 2013-08-22 09:23 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-07-12 17:53 - 2013-08-22 09:22 - 03842648 _____ C:\Windows\system32\FNTCACHE.DAT
2015-07-12 17:50 - 2015-04-02 15:55 - 00000000 ____D C:\Users\Klaudiusz
2015-07-11 01:37 - 2015-04-02 17:33 - 00000000 ____D C:\Users\Klaudiusz\AppData\Roaming\Skype
2015-07-10 14:13 - 2015-04-05 23:46 - 00000000 ____D C:\Users\Klaudiusz\Documents\SART
2015-07-10 14:10 - 2015-04-02 16:33 - 00000000 ____D C:\Program Files\Raptr
2015-07-10 12:28 - 2014-03-18 09:48 - 00015518 _____ C:\Windows\PFRO.log
2015-07-10 12:28 - 2013-08-22 08:13 - 00524288 ___SH C:\Windows\system32\config\BBI
2015-07-09 20:25 - 2015-04-04 13:34 - 00000000 ____D C:\Windows\system32\directx
2015-07-09 20:24 - 2015-04-04 13:34 - 00000000 ___HD C:\Windows\msdownld.tmp
2015-07-09 01:27 - 2013-08-22 10:17 - 00000000 ____D C:\Program Files\Microsoft.NET
2015-07-08 00:21 - 2013-08-22 10:17 - 00000000 ____D C:\Windows\system32\NDF
2015-07-06 23:24 - 2015-05-31 15:54 - 00792568 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-07-06 23:24 - 2015-05-31 15:54 - 00178168 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-07-06 17:33 - 2013-08-22 10:17 - 00000000 ____D C:\Windows\twain_32
2015-07-04 16:23 - 2013-08-22 10:17 - 00000000 ____D C:\Windows\rescache
2015-07-03 08:49 - 2014-09-16 18:38 - 127070192 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-06-27 10:34 - 2015-04-02 17:32 - 00000000 ____D C:\ProgramData\Skype
2015-06-25 14:51 - 2015-02-26 22:29 - 00000000 ____D C:\Users\Klaudiusz\Desktop\ppsspp
2015-06-25 14:11 - 2015-04-05 23:44 - 00000000 __SHD C:\Users\Klaudiusz\AppData\Local\EmieBrowserModeList
2015-06-25 14:11 - 2015-04-02 16:02 - 00000000 __SHD C:\Users\Klaudiusz\AppData\Local\EmieUserList
2015-06-25 14:11 - 2015-04-02 16:02 - 00000000 __SHD C:\Users\Klaudiusz\AppData\Local\EmieSiteList
2015-06-25 10:24 - 2015-04-17 22:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2015-06-25 10:24 - 2015-04-17 21:44 - 00000000 ____D C:\Program Files\MSI
2015-06-25 10:23 - 2015-04-17 21:34 - 00000000 ____D C:\MSI
2015-06-24 15:43 - 2015-04-15 20:53 - 00000000 ____D C:\Program Files\Dead Island Riptide
2015-06-23 10:44 - 2015-06-06 21:09 - 00001011 ____H C:\Windows\EPMBatch.ept
2015-06-23 10:07 - 2013-08-22 10:17 - 00000000 ___RD C:\Windows\ToastData
2015-06-23 09:59 - 2015-04-03 20:42 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-06-23 09:59 - 2015-04-03 20:42 - 00000000 ____D C:\Windows\system32\appraiser
2015-06-23 09:59 - 2013-08-22 10:17 - 00000000 ____D C:\Windows\system32\pl-PL
2015-06-22 16:32 - 2015-04-04 01:26 - 00000000 ____D C:\Users\Klaudiusz\AppData\Local\Game Dev Tycoon - Steam

==================== Files in the root of some directories =======

2015-06-26 14:33 - 2015-07-13 16:18 - 0000026 _____ () C:\Users\Klaudiusz\AppData\Local\isoworkshop.ini
2015-07-09 17:02 - 2015-07-09 17:02 - 0000218 _____ () C:\Users\Klaudiusz\AppData\Local\recently-used.xbel
2015-07-15 00:05 - 2015-07-15 00:06 - 0007605 _____ () C:\Users\Klaudiusz\AppData\Local\Resmon.ResmonCfg
2015-04-02 16:42 - 2015-04-02 16:42 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-07-06 17:28 - 2015-07-06 22:10 - 0000317 _____ () C:\ProgramData\hpzinstall.log

Some files in TEMP:
====================
C:\Users\Klaudiusz\AppData\Local\Temp\i4jdel0.exe
C:\Users\Klaudiusz\AppData\Local\Temp\ICReinstall_CR_Downloader_dla_cxbx.exe
C:\Users\Klaudiusz\AppData\Local\Temp\Uninstall.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-07-15 15:18

==================== End of log ============================
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 12-07-2015
Ran by Klaudiusz at 2015-07-17 13:13:31
Running from C:\Users\Klaudiusz\Downloads
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-579367427-368484338-2413521296-500 - Administrator - Disabled)
Guest (S-1-5-21-579367427-368484338-2413521296-501 - Limited - Disabled)
Klaudiusz (S-1-5-21-579367427-368484338-2413521296-1002 - Administrator - Enabled) => C:\Users\Klaudiusz

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-579367427-368484338-2413521296-1002\...\uTorrent) (Version: 3.4.3.40298 - BitTorrent Inc.)
32 Bit HP CIO Components Installer (Version: 6.1.1 - Hewlett-Packard) Hidden
Adobe AIR (HKLM\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe Community Help (HKLM\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.980 - Adobe Systems Incorporated.)
Adobe Flash Player 18 PPAPI (HKLM\...\Adobe Flash Player PPAPI) (Version: 18.0.0.203 - Adobe Systems Incorporated)
Adobe Photoshop CS5.1 (HKLM\...\{9158FF30-78D7-40EF-B83E-451AC5334640}) (Version: 12.1 - Adobe Systems Incorporated)
AIMP3 (HKLM\...\AIMP3) (Version: v3.60.1495, 03.06.2015 - AIMP DevTeam)
AMD Catalyst Install Manager (HKLM\...\{DE7D695C-2EC7-AFDF-F786-6E938DE83175}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMD VISION Engine Control Center (HKLM\...\WUCCCApp) (Version: 1.00.0000 - AMD)
Aplikacja Wyświetl mój ekran (HKLM\...\{A8FA30C7-9EFA-468C-89AE-B8B21CB605D8}) (Version: 8.0.12349 - Microsoft Corporation)
Astroburn Lite (HKLM\...\Astroburn Lite) (Version: 1.8.0.0183 - Disc Soft Ltd)
Audacity 2.1.0 (HKLM\...\Audacity_is1) (Version: 2.1.0 - Audacity Team)
Bandicam (HKLM\...\Bandicam) (Version: 2.0.2.655 - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM\...\BandiMPEG1) (Version: - Bandisoft.com)
Battle.net (HKLM\...\Battle.net) (Version: - Blizzard Entertainment)
Bloody5 (HKLM\...\Bloody3) (Version: 15.03.0012 - Bloody)
BufferChm (Version: 130.0.331.000 - Hewlett-Packard) Hidden
Camtasia Studio 8 (HKLM\...\{474DFABF-E55B-4905-ABAA-40791A6AC77F}) (Version: 8.4.4.1859 - TechSmith Corporation)
CodeBlocks (HKU\S-1-5-21-579367427-368484338-2413521296-1002\...\CodeBlocks) (Version: 13.12 - The Code::Blocks Team)
Copy (Version: 130.0.366.000 - Hewlett-Packard) Hidden
Counter-Strike: Global Offensive - SDK (HKLM\...\Steam App 745) (Version: - )
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
CPUID CPU-Z 1.72 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 5.0.1.0407 - Disc Soft Ltd)
Destinations (Version: 130.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (Version: 130.0.372.000 - Hewlett-Packard) Hidden
Diablo III (HKLM\...\Diablo III) (Version: - Blizzard Entertainment)
Direct Show Ogg Vorbis Filter (remove only) (HKLM\...\OggDS) (Version: - )
DJ_AIO_06_F4500_SW_MIN (Version: 130.0.406.000 - Hewlett-Packard) Hidden
DuckTales Remastered (HKLM\...\DuckTales Remastered_RePack by SeregA_Lus_is1) (Version: 1.3 - SeregA_Lus)
DuckTales Remastered PL [BDIP] wersja 1.0 (HKLM\...\{A62548E0-1441-445C-809C-7A642FAB053F}_is1) (Version: 1.0 - BartleDooInPolish)
EaseUS Partition Master 10.5 (HKLM\...\EaseUS Partition Master_is1) (Version: - EaseUS)
Emergency Download Driver (HKLM\...\{05DBF996-83D0-4C40-8D3A-A6850800BC88}) (Version: 1.1.7.1439 - Nokia)
F4500 (Version: 130.0.406.000 - Hewlett-Packard) Hidden
Game Dev Tycoon (HKLM\...\Steam App 239820) (Version: - Greenheart Games)
GameMaker: Player (HKLM\...\GameMakerPlayer) (Version: 1.4.552.36800 - YoYo Games Ltd.)
GameMaker-Studio 1.4 (HKU\S-1-5-21-579367427-368484338-2413521296-1002\...\GameMaker-Studio14) (Version: - YoYo Games Ltd.)
Garden-Simulator 2010 version 1.0 (HKLM\...\{96E4E419-5C58-48B1-B2B1-F187893A79F6}_is1) (Version: 1.0 - astragon software gmbh)
Garrys Mod version 14.04.19 (HKLM\...\{C8F834F5-46EA-4933-8AA9-F6CD7D29EED0}_is1) (Version: 14.04.19 - Strogino CS Portal)
Google Chrome (HKLM\...\Google Chrome) (Version: 43.0.2357.134 - Google Inc.)
Google Earth Plug-in (HKLM\...\{57BB4801-61C8-4E74-9672-2160728A461E}) (Version: 7.1.5.1557 - Google)
Google Update Helper (Version: 1.3.28.1 - Google Inc.) Hidden
GPBaseService2 (Version: 130.0.371.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP)
HP Deskjet F4500 Printer Driver Software 13.0 Rel .6 (HKLM\...\{7F08A772-2816-4F46-84F1-49578502AD28}) (Version: 13.0 - HP)
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HP Print Projects 1.0 (HKLM\...\HP Print Projects) (Version: 1.0 - HP)
HP Smart Web Printing 4.5 (HKLM\...\HP Smart Web Printing) (Version: 4.5 - HP)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Update (HKLM\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPPhotoGadget (Version: 130.0.282.000 - Hewlett-Packard) Hidden
hpPrintProjects (Version: 130.0.303.000 - Hewlett-Packard) Hidden
HPProductAssistant (Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (Version: 130.0.371.000 - Hewlett-Packard) Hidden
hpWLPGInstaller (Version: 130.0.303.000 - Hewlett-Packard) Hidden
Inkscape 0.91 (HKLM\...\Inkscape) (Version: 0.91 - )
ipla 2.8.4 (HKLM\...\ipla) (Version: 2.8.4 - Redefine Sp z o.o.)
ISO Workshop 5.9 (HKLM\...\ISO Workshop_is1) (Version: - Glorylogic)
Java 8 Update 45 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
K-Lite Codec Pack 11.0.5 Full (HKLM\...\KLiteCodecPack_is1) (Version: 11.0.5 - )
Kodi (HKU\S-1-5-21-579367427-368484338-2413521296-1002\...\Kodi) (Version: - XBMC-Foundation)
LogMeIn Hamachi (HKLM\...\LogMeIn Hamachi) (Version: 2.2.0.328 - LogMeIn, Inc.)
LogMeIn Hamachi (Version: 2.2.0.328 - LogMeIn, Inc.) Hidden
Lumia UEFI Blue Driver (HKLM\...\{D6EEB835-5BBF-4F6B-8382-1681148D7771}) (Version: 1.1.8.1448 - Nokia)
MarketResearch (Version: 130.0.374.000 - Hewlett-Packard) Hidden
Microsoft Office Professional 2016 - pl-pl (HKLM\...\ProfessionalRetail - pl-pl) (Version: 16.0.4229.1004 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-579367427-368484338-2413521296-1002\...\OneDriveSetup.exe) (Version: 17.3.5860.0512 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Xbox One Controller for Windows (HKLM\...\{3052016F-D1AE-481C-80FF-196021C9892B}) (Version: 1.0.2 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Network (Version: 130.0.374.000 - Hewlett-Packard) Hidden
Office 16 Click-to-Run Extensibility Component (Version: 16.0.4229.1004 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.4229.1004 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (Version: 16.0.4229.1004 - Microsoft Corporation) Hidden
Open Broadcaster Software (HKLM\...\Open Broadcaster Software) (Version: - )
Opera Stable 30.0.1835.125 (HKLM\...\Opera 30.0.1835.125) (Version: 30.0.1835.125 - Opera Software)
Origin (HKLM\...\Origin) (Version: 9.5.20.5318 - Electronic Arts, Inc.)
Otchlan 1.3 v72 (HKLM\...\{E6BE8B1B-4F19-4EB9-9D16-BE6FCC875121}_is1) (Version: - Otchlan Sp. zoo)
paint.net (HKLM\...\{19BD2C33-16A8-4ED1-B9EA-D9E35B21EC41}) (Version: 4.0.5 - dotPDN LLC)
PDF Settings CS5 (Version: 10.0 - Adobe Systems Incorporated) Hidden
PlayReady PC Runtime x86 (HKLM\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation)
Raptr (HKLM\...\Raptr) (Version: - )
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7246 - Realtek Semiconductor Corp.)
Resource Hacker Version 4.2.4 (HKLM\...\ResourceHacker_is1) (Version: - )
Roll (HKLM\...\RollerCoaster Tycoon Setup) (Version: - )
RPG Maker VX (HKLM\...\RPG Maker VX) (Version: - )
Saints Row The Third - The Full Package (HKLM\...\Saints Row The Third - The Full Package_is1) (Version: - )
Scan (Version: 13.0.0.0 - Hewlett-Packard) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 13.0 - HP)
Skype™ 7.5 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.5.102 - Skype Technologies S.A.)
SmartWebPrinting (Version: 130.0.373.000 - Hewlett-Packard) Hidden
SolutionCenter (Version: 130.0.373.000 - Hewlett-Packard) Hidden
Sonic & All-Stars Racing Transformed (HKLM\...\Steam App 212480) (Version: - Sumo Digital)
Status (Version: 130.0.373.000 - Hewlett-Packard) Hidden
Steam (HKLM\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Terraria (HKLM\...\1207665503_is1) (Version: 2.1.0.2 - GOG.com)
The Games Factory 2 Demo (HKLM\...\The Games Factory 2 Demo) (Version: - )
Theme Hospital (HKLM\...\{5118A4C2-C8A4-4CE5-AC37-F3E51C25402F}) (Version: 3.0.0.2 - Electronic Arts)
Tomb Raider: Underworld 1.0 (HKLM\...\Tomb Raider: Underworld) (Version: - )
Toolbox (Version: 130.0.648.000 - Hewlett-Packard) Hidden
TrayApp (Version: 130.0.376.000 - Hewlett-Packard) Hidden
WebReg (Version: 130.0.132.017 - Hewlett-Packard) Hidden
Windows Phone Recovery Tool 2.1.1 (HKLM\...\{461efced-58d4-4470-9b4b-5f2fc83704d4}) (Version: 2.1.1 - Microsoft)
WinRAR 5.21 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
WinUsb CoInstallers (HKLM\...\{B7D4B08A-9D89-4369-B51C-92CF8C03D2F8}) (Version: 1.1.8.1406 - Nokia)
WinUSB Compatible ID Drivers (HKLM\...\{316ED84C-ACDA-4F1F-8E64-52B7AFF8677D}) (Version: 1.1.9.1439 - Nokia)
WinUSB Drivers ext (HKLM\...\{238EAE31-4E9E-43CF-B244-C4879279E6AF}) (Version: 1.1.12.1439 - Nokia)
XSplit Broadcaster (HKLM\...\{19F00CA3-338D-497C-BA31-0507101F2BBB}) (Version: 1.3.1403.1202 - SplitmediaLabs)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-579367427-368484338-2413521296-1002_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Klaudiusz\AppData\Local\Microsoft\OneDrive\17.3.5860.0512\FileSyncApi.dll (Microsoft Corporation)

==================== Restore Points =========================

15-07-2015 02:39:44 Zainstalowany program DirectX
16-07-2015 13:07:17 Zainstalowany program DirectX

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 08:13 - 2015-04-03 21:09 - 00000913 ___RA C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 bandicam.com
127.0.0.1 ssl.bandisoft.com


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0163423D-D6C2-42F1-A0C2-27907784D4BE} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2015-07-12] (Microsoft Corporation)
Task: {064447C0-EBB8-44DC-B6EB-6AA72464F79B} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2015-07-12] (Microsoft Corporation)
Task: {0A07F677-B790-4522-9FDD-748C5B033642} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\system32\Macromed\Flash\FlashUtil32_18_0_0_203_pepper.exe [2015-07-13] (Adobe Systems Incorporated)
Task: {3F1D3E25-9E52-42A2-9CA0-4E9AB3199540} - \Optimize Start Menu Cache Files-S-1-5-21-579367427-368484338-2413521296-1001 No Task File <==== ATTENTION
Task: {41B81DD9-6008-4BBB-B5C3-B75819C278E2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-04-02] (Google Inc.)
Task: {5C7AFA2D-69CB-43D0-8535-302337299C73} - System32\Tasks\{8D2EEA21-7AEE-433B-BC6E-F296136ED1DA} => pcalua.exe -a C:\Users\Klaudiusz\Downloads\rpgme.exe -d C:\Users\Klaudiusz\Downloads
Task: {7F7AFBDF-1DE3-4558-8342-1DF0DF99BBAC} - System32\Tasks\Opera scheduled Autoupdate 1429384758 => C:\Program Files\Opera\launcher.exe [2015-07-10] (Opera Software)
Task: {8AB8816B-0134-42B0-8E0C-D0CAD59EFE15} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-04-02] (Google Inc.)
Task: {ABA2BC1E-269D-49DE-A89B-9019CD4B94BA} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-579367427-368484338-2413521296-1002 => %localappdata%\Microsoft\OneDrive\OneDrive.exe
Task: {B37C5587-2712-41DD-93F9-230436D5BE19} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-07-03] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\system32\Macromed\Flash\FlashUtil32_18_0_0_203_pepper.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2015-06-02 21:03 - 2015-07-12 08:51 - 00132264 _____ () C:\Program Files\Common Files\Microsoft Shared\ClickToRun\ApiClient.dll
2015-04-02 17:14 - 2015-03-19 15:39 - 18911232 _____ () C:\Program Files\Bloody5\Bloody5\Bloody5.exe
2013-08-22 01:55 - 2013-06-18 14:17 - 00364544 _____ () C:\Windows\System32\msjetoledb40.dll
2015-04-02 17:15 - 2013-04-03 18:29 - 00085504 _____ () C:\Program Files\Bloody5\Bloody5\DLL\DLL_ZoomControl.dll
2015-04-02 17:15 - 2014-01-10 17:48 - 04260352 _____ () C:\Program Files\Bloody5\Bloody5\Data\RES\Forms\Internet_Advertisement\Internet_Advertisement_DLL.dll
2015-04-04 00:35 - 2015-04-16 19:40 - 00776192 _____ () C:\Program Files\Steam\SDL2.dll
2015-04-04 00:35 - 2015-04-23 04:16 - 04962816 _____ () C:\Program Files\Steam\v8.dll
2015-04-04 00:35 - 2015-06-04 20:56 - 02407104 _____ () C:\Program Files\Steam\video.dll
2015-04-04 00:35 - 2015-04-23 04:16 - 01556992 _____ () C:\Program Files\Steam\icui18n.dll
2015-04-04 00:35 - 2015-04-23 04:16 - 01187840 _____ () C:\Program Files\Steam\icuuc.dll
2015-04-04 00:35 - 2014-12-01 23:31 - 02396672 _____ () C:\Program Files\Steam\libavcodec-56.dll
2015-04-04 00:35 - 2014-12-01 23:31 - 00479744 _____ () C:\Program Files\Steam\libavformat-56.dll
2015-04-04 00:35 - 2014-12-01 23:31 - 00332800 _____ () C:\Program Files\Steam\libavresample-2.dll
2015-04-04 00:35 - 2014-12-01 23:31 - 00442880 _____ () C:\Program Files\Steam\libavutil-54.dll
2015-04-04 00:35 - 2014-12-01 23:31 - 00485888 _____ () C:\Program Files\Steam\libswscale-3.dll
2015-04-04 00:35 - 2015-06-04 20:56 - 00703168 _____ () C:\Program Files\Steam\bin\chromehtml.DLL
2015-07-14 17:57 - 2015-07-14 17:57 - 01007104 _____ () C:\Program Files\Origin\platforms\qwindows.dll
2015-07-14 17:57 - 2015-07-14 17:56 - 00023552 _____ () C:\Program Files\Origin\imageformats\qgif.dll
2015-07-14 17:57 - 2015-07-14 17:56 - 00024576 _____ () C:\Program Files\Origin\imageformats\qico.dll
2015-07-14 17:57 - 2015-07-14 17:56 - 00216576 _____ () C:\Program Files\Origin\imageformats\qjpeg.dll
2015-07-14 17:57 - 2015-07-14 17:56 - 00261120 _____ () C:\Program Files\Origin\imageformats\qmng.dll
2015-07-14 17:57 - 2015-07-14 17:56 - 00019456 _____ () C:\Program Files\Origin\imageformats\qtga.dll
2015-07-14 17:57 - 2015-07-14 17:56 - 00337408 _____ () C:\Program Files\Origin\imageformats\qtiff.dll
2015-07-14 17:57 - 2015-07-14 17:56 - 00018944 _____ () C:\Program Files\Origin\imageformats\qwbmp.dll
2010-11-23 00:56 - 2010-11-23 00:56 - 00087040 _____ () C:\Program Files\Raptr\_ctypes.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00043008 _____ () C:\Program Files\Raptr\_socket.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00805376 _____ () C:\Program Files\Raptr\_ssl.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 05812736 _____ () C:\Program Files\Raptr\PyQt4.QtGui.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 00067584 _____ () C:\Program Files\Raptr\sip.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 01662464 _____ () C:\Program Files\Raptr\PyQt4.QtCore.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 00494592 _____ () C:\Program Files\Raptr\PyQt4.QtNetwork.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00096256 _____ () C:\Program Files\Raptr\win32api.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00110592 _____ () C:\Program Files\Raptr\pywintypes26.dll
2010-11-23 00:56 - 2010-11-23 00:56 - 00010240 _____ () C:\Program Files\Raptr\select.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00356864 _____ () C:\Program Files\Raptr\_hashlib.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00036352 _____ () C:\Program Files\Raptr\win32process.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00111104 _____ () C:\Program Files\Raptr\win32file.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00044544 _____ () C:\Program Files\Raptr\_sqlite3.pyd
2011-02-15 20:17 - 2011-02-15 20:17 - 00417501 _____ () C:\Program Files\Raptr\sqlite3.dll
2010-11-23 00:57 - 2010-11-23 00:57 - 00167936 _____ () C:\Program Files\Raptr\win32gui.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 00313856 _____ () C:\Program Files\Raptr\PyQt4.QtWebKit.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00127488 _____ () C:\Program Files\Raptr\pyexpat.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00009216 _____ () C:\Program Files\Raptr\winsound.pyd
2014-08-14 02:37 - 2014-08-14 02:37 - 00113171 _____ () C:\Program Files\Raptr\libvlc.dll
2014-08-14 02:37 - 2014-08-14 02:37 - 02396691 _____ () C:\Program Files\Raptr\libvlccore.dll
2010-11-23 00:56 - 2010-11-23 00:56 - 00583680 _____ () C:\Program Files\Raptr\unicodedata.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00354304 _____ () C:\Program Files\Raptr\pythoncom26.dll
2010-11-23 00:57 - 2010-11-23 00:57 - 00263168 _____ () C:\Program Files\Raptr\win32com.shell.shell.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00324608 _____ () C:\Program Files\Raptr\PIL._imaging.pyd
2013-11-21 02:05 - 2013-11-21 02:05 - 00256000 _____ () C:\Program Files\Raptr\amd_ags.dll
2015-07-15 12:41 - 2015-07-15 12:40 - 00157304 _____ () C:\Program Files\Opera\30.0.1835.125\message_center_win8.dll
2014-01-03 13:03 - 2014-01-03 13:03 - 07816192 _____ () C:\Program Files\SplitmediaLabs\XSplit\avcodec-54.dll
2014-01-03 13:03 - 2014-01-03 13:03 - 01425920 _____ () C:\Program Files\SplitmediaLabs\XSplit\avformat-54.dll
2014-01-03 13:03 - 2014-01-03 13:03 - 00188416 _____ () C:\Program Files\SplitmediaLabs\XSplit\avutil-52.dll
2014-01-03 13:03 - 2014-01-03 13:03 - 00336896 _____ () C:\Program Files\SplitmediaLabs\XSplit\swscale-2.dll
2014-01-03 13:03 - 2014-01-03 13:03 - 00096256 _____ () C:\Program Files\SplitmediaLabs\XSplit\swresample-0.dll
2015-07-15 12:41 - 2015-07-15 12:40 - 01649272 _____ () C:\Program Files\Opera\30.0.1835.125\libglesv2.dll
2015-07-15 12:41 - 2015-07-15 12:40 - 00081016 _____ () C:\Program Files\Opera\30.0.1835.125\libegl.dll
2010-11-23 00:57 - 2010-11-23 00:57 - 00141312 _____ () C:\Program Files\Raptr\gobject._gobject.pyd
2014-06-18 02:56 - 2014-06-18 02:56 - 02717595 _____ () C:\Program Files\Raptr\heliotrope._purple.pyd
2011-02-15 20:17 - 2011-02-15 20:17 - 01213633 _____ () C:\Program Files\Raptr\libxml2-2.dll
2010-11-23 01:06 - 2010-11-23 01:06 - 00055808 _____ () C:\Program Files\Raptr\zlib1.dll
2013-05-10 01:52 - 2013-05-10 01:52 - 00495680 _____ () C:\Program Files\Raptr\plugins\libaim.dll
2013-05-10 01:52 - 2013-05-10 01:52 - 01183699 _____ () C:\Program Files\Raptr\liboscar.dll
2013-05-10 01:52 - 2013-05-10 01:52 - 00483306 _____ () C:\Program Files\Raptr\plugins\libicq.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00655356 _____ () C:\Program Files\Raptr\plugins\libirc.dll
2013-05-03 20:56 - 2013-05-03 20:56 - 01306387 _____ () C:\Program Files\Raptr\plugins\libmsn.dll
2013-05-03 20:56 - 2013-05-03 20:56 - 00565461 _____ () C:\Program Files\Raptr\plugins\libxmpp.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 01640221 _____ () C:\Program Files\Raptr\libjabber.dll
2013-05-03 20:56 - 2013-05-03 20:56 - 00506276 _____ () C:\Program Files\Raptr\plugins\libyahoo.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 01053730 _____ () C:\Program Files\Raptr\libymsg.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00497782 _____ () C:\Program Files\Raptr\plugins\libyahoojp.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00603326 _____ () C:\Program Files\Raptr\plugins\ssl-nss.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00474199 _____ () C:\Program Files\Raptr\plugins\ssl.dll
2015-04-04 00:35 - 2015-05-11 21:01 - 36302728 _____ () C:\Program Files\Steam\bin\libcef.dll
2015-06-06 12:50 - 2015-05-11 21:01 - 08958344 _____ () C:\Program Files\Steam\bin\pdf.dll
2015-07-13 17:20 - 2015-07-13 17:20 - 16285360 _____ () C:\Windows\system32\Macromed\Flash\pepflashplayer32_18_0_0_203.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Klaudiusz\OneDrive:ms-properties

==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-579367427-368484338-2413521296-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Klaudiusz\Desktop\Galeria\Jakieś tam coś tam\kapitan_legii_warszawa_w_polsce.JPG
DNS Servers: 192.168.1.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\StartupFolder: => "HP Digital Imaging Monitor.lnk"
HKLM\...\StartupApproved\Run: => "AdobeCS5.5ServiceManager"
HKLM\...\StartupApproved\Run: => "EaseUS EPM tray"
HKLM\...\StartupApproved\Run: => "LogMeIn Hamachi Ui"
HKU\S-1-5-21-579367427-368484338-2413521296-1002\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-579367427-368484338-2413521296-1002\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_7181A1CBE15D3139AEFEEBB34908BA8F"
HKU\S-1-5-21-579367427-368484338-2413521296-1002\...\StartupApproved\Run: => "Skype"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [{57A78BE1-E78A-4898-B74D-4A42A9EA0B16}] => (Allow) C:\Users\Klaudiusz\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{2D149F70-7463-4A7A-9BF9-BC89F683B83E}] => (Allow) C:\Users\Klaudiusz\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{EA642F9B-5F05-4C23-91B0-A3908511B7D0}C:\program files\skype\phone\skype.exe] => (Allow) C:\program files\skype\phone\skype.exe
FirewallRules: [UDP Query User{EAF9A8A1-7FEE-4E2D-A8CE-77283A0532F7}C:\program files\skype\phone\skype.exe] => (Allow) C:\program files\skype\phone\skype.exe
FirewallRules: [{D12007D2-4A62-45E6-B21A-6BC5168C3A02}] => (Allow) LPort=8317
FirewallRules: [{B8F4CE35-379F-40A8-B8A4-C027FCE38940}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [{8E59A9AF-16C4-4CD7-A49E-9D7AB65307C4}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [{63FD8C7D-F178-43C8-AB57-A94EF3366C5C}] => (Allow) C:\Program Files\Steam\bin\steamwebhelper.exe
FirewallRules: [{01D0A57E-F0C9-422E-9AF9-510BBB38BE58}] => (Allow) C:\Program Files\Steam\bin\steamwebhelper.exe
FirewallRules: [{E8BEAC46-5F61-423E-9BBC-42890DC02DB1}] => (Allow) C:\Program Files\Steam\steamapps\common\Game Dev Tycoon\nw.exe
FirewallRules: [{EC5E14E5-2333-42D8-98BE-C1F1DA1B0E3F}] => (Allow) C:\Program Files\Steam\steamapps\common\Game Dev Tycoon\nw.exe
FirewallRules: [{4C73E1F6-FD18-4214-8907-887D17230778}] => (Allow) C:\Program Files\Steam\steamapps\common\Sonic & All-Stars Racing Transformed\ASN_App_PcDx9_Final.exe
FirewallRules: [{AFB7507B-DFDD-408D-BBCF-AAB9FF6F94F9}] => (Allow) C:\Program Files\Steam\steamapps\common\Sonic & All-Stars Racing Transformed\ASN_App_PcDx9_Final.exe
FirewallRules: [{87C14019-5DC0-4820-A149-85DF3FDF2781}] => (Allow) C:\Program Files\Steam\steamapps\common\Sonic & All-Stars Racing Transformed\Launcher.exe
FirewallRules: [{13DCC6D3-C062-4072-BECA-74C118789A0F}] => (Allow) C:\Program Files\Steam\steamapps\common\Sonic & All-Stars Racing Transformed\Launcher.exe
FirewallRules: [TCP Query User{2882EA74-86F1-4E9D-8677-0E727EE56D5A}C:\program files\dead island riptide\deadislandgame_x86_rwdi.exe] => (Allow) C:\program files\dead island riptide\deadislandgame_x86_rwdi.exe
FirewallRules: [UDP Query User{2655920C-7773-4A3F-97A2-39A0920CFA0E}C:\program files\dead island riptide\deadislandgame_x86_rwdi.exe] => (Allow) C:\program files\dead island riptide\deadislandgame_x86_rwdi.exe
FirewallRules: [{D6F6EED7-636A-473D-B46D-E589DE5671BE}] => (Allow) C:\Users\Klaudiusz\AppData\Local\Microsoft\OneDrive\OneDrive.exe
FirewallRules: [TCP Query User{D9E035A8-692D-41AB-A04F-00AC9DADED8D}C:\program files\hasbro interactive\rollercoaster tycoon\rct.exe] => (Allow) C:\program files\hasbro interactive\rollercoaster tycoon\rct.exe
FirewallRules: [UDP Query User{185A04D9-0A90-4445-AD30-3128260AC70B}C:\program files\hasbro interactive\rollercoaster tycoon\rct.exe] => (Allow) C:\program files\hasbro interactive\rollercoaster tycoon\rct.exe
FirewallRules: [TCP Query User{DF73247E-F004-40C7-9CBA-5A82DD1189B4}C:\program files\pro evolution soccer 2015\pes2015.exe] => (Allow) C:\program files\pro evolution soccer 2015\pes2015.exe
FirewallRules: [UDP Query User{F64CE003-8C16-4F9F-820E-0B8B912298EA}C:\program files\pro evolution soccer 2015\pes2015.exe] => (Allow) C:\program files\pro evolution soccer 2015\pes2015.exe
FirewallRules: [TCP Query User{081AA3A3-F060-4A73-AAA5-1EEC2AB27A26}C:\program files\strogino cs portal\garrys mod\hl2.exe] => (Allow) C:\program files\strogino cs portal\garrys mod\hl2.exe
FirewallRules: [UDP Query User{02EF0C30-E09F-4D8A-81DA-3CBBE3F9B8A6}C:\program files\strogino cs portal\garrys mod\hl2.exe] => (Allow) C:\program files\strogino cs portal\garrys mod\hl2.exe
FirewallRules: [TCP Query User{C44B9C09-3BD3-455E-8728-F091370045EB}C:\program files\deep silver\saints row the third - the full package\saintsrowthethird_dx11.exe] => (Allow) C:\program files\deep silver\saints row the third - the full package\saintsrowthethird_dx11.exe
FirewallRules: [UDP Query User{226C867B-EFE5-4A6C-A0DA-76942628E70D}C:\program files\deep silver\saints row the third - the full package\saintsrowthethird_dx11.exe] => (Allow) C:\program files\deep silver\saints row the third - the full package\saintsrowthethird_dx11.exe
FirewallRules: [TCP Query User{4CAD1347-DCC3-4A65-AE33-A9F32E341B85}C:\program files\deep silver\saints row the third - the full package\saintsrowthethird.exe] => (Allow) C:\program files\deep silver\saints row the third - the full package\saintsrowthethird.exe
FirewallRules: [UDP Query User{B1BC129C-48B8-45E4-A982-D85DAE49B336}C:\program files\deep silver\saints row the third - the full package\saintsrowthethird.exe] => (Allow) C:\program files\deep silver\saints row the third - the full package\saintsrowthethird.exe
FirewallRules: [TCP Query User{C9E1DB70-6D19-4BE3-B707-C14BA3B02D4B}C:\gog games\terraria\terrariaserver.exe] => (Allow) C:\gog games\terraria\terrariaserver.exe
FirewallRules: [UDP Query User{A6C48F99-4FDC-4BDB-9318-98E0DDD6EBC8}C:\gog games\terraria\terrariaserver.exe] => (Allow) C:\gog games\terraria\terrariaserver.exe
FirewallRules: [{1B234603-22DE-4029-AA3C-EE849D4C1326}] => (Allow) H:\setup\hpznui01.exe
FirewallRules: [{09DCD82A-85AF-4381-A1F0-FF0543A5EF74}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{DA4E9E71-66C2-4F3C-9B34-AD27137E0C19}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{248A7117-6029-45BA-B4C3-F02421B63FBB}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{B64E51F5-A5B5-4A3D-9A1D-501B5B0AE5AB}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{D55E883B-DC22-495F-A809-FAFF32CE71C7}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqcopy2.exe
FirewallRules: [{7B6F7BCD-B2A2-4E5F-942E-1F85F6B4B3CF}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{BA2E9C38-718F-4C06-86B4-AC9E0CE3F884}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{BB16795B-D273-480F-B2EE-3EC88EC0E527}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{698E8B0E-1772-4BCE-846E-62FC4052287F}] => (Allow) C:\Program Files\common files\hp\digital imaging\bin\hpqphotocrm.exe
FirewallRules: [{91122EDC-3733-4653-BD1A-0ECB995F4BE0}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{BAD74B99-E60C-4CFD-9837-889895AA0D5F}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{43F470E1-AB84-411D-9225-B647D00EBB83}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{4E8F55F8-54E2-4D50-B825-A31F337E6260}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{4A0FBC00-8908-4D5C-AB07-2FA3EEE5C7CC}] => (Allow) C:\Program Files\HP\hp software update\hpwucli.exe
FirewallRules: [{B9C31F5D-0634-416C-9AFF-2C58AC0B7188}] => (Allow) C:\Program Files\HP\digital imaging\smart web printing\smartwebprintexe.exe
FirewallRules: [{B873DF6F-F5AC-4CF0-8F46-2F9C386887FA}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [TCP Query User{0DCB5FEF-0291-4F57-A967-A1C0AF252B0F}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe
FirewallRules: [UDP Query User{CB0D85E5-8CF1-4660-BA50-F915947ABCA8}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe
FirewallRules: [{9E3231ED-473A-4196-9508-F84BBCCFFFDB}] => (Allow) C:\Program Files\Raptr\raptr.exe
FirewallRules: [{2876FA73-F5A1-480F-B9C0-47217B325CFB}] => (Allow) C:\Program Files\Raptr\raptr.exe
FirewallRules: [{A86307B2-ADF0-46F3-B8E8-9FE0A3EB46EE}] => (Allow) C:\Program Files\Raptr\raptr_im.exe
FirewallRules: [{74E4FBFD-7DC3-40F7-8716-5FFC28B8B99B}] => (Allow) C:\Program Files\Raptr\raptr_im.exe
FirewallRules: [TCP Query User{60BA004A-489A-4CE0-A984-AB57954BEA49}C:\program files\epic games\unreal tournament 3 black edition\binaries\ut3.exe] => (Allow) C:\program files\epic games\unreal tournament 3 black edition\binaries\ut3.exe
FirewallRules: [UDP Query User{306FB0A7-AD6E-4E97-B568-400F517FAC76}C:\program files\epic games\unreal tournament 3 black edition\binaries\ut3.exe] => (Allow) C:\program files\epic games\unreal tournament 3 black edition\binaries\ut3.exe
FirewallRules: [{17C4C590-2CD7-48FE-8479-0DA9AAB8AD65}] => (Allow) C:\Program Files\Battle.net\Battle.net.exe
FirewallRules: [{0D3F4A66-682E-48FB-BA71-7CE6E7CA5FDE}] => (Allow) C:\Program Files\Battle.net\Battle.net.exe
FirewallRules: [TCP Query User{91A42E5B-1E0C-42EB-BF38-D35C2B5B3472}C:\program files\diablo iii\diablo iii.exe] => (Allow) C:\program files\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{A9178F48-4349-4494-BB45-B435F4740441}C:\program files\diablo iii\diablo iii.exe] => (Allow) C:\program files\diablo iii\diablo iii.exe
FirewallRules: [{C92D4286-E3B6-4DC5-B26E-A146C7C54A41}] => (Allow) C:\Program Files\Origin Games\Theme Hospital\data\Game\DOSBox\LAUNCHER.exe
FirewallRules: [{EF5E9B8B-0FEC-41F7-85BC-A436800565FB}] => (Allow) C:\Program Files\Origin Games\Theme Hospital\data\Game\DOSBox\LAUNCHER.exe
FirewallRules: [{52AF403E-AAF0-4B99-90DC-880D9F0B0012}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [{E33D8481-329B-4E95-9DA5-0E1E77E6E296}] => (Allow) C:\Program Files\Steam\steamapps\common\Counter-Strike Global Offensive\bin\SDKLauncher.exe
FirewallRules: [{8704993B-ACB6-4F0D-B5EB-1C6927686A40}] => (Allow) C:\Program Files\Steam\steamapps\common\Counter-Strike Global Offensive\bin\SDKLauncher.exe
FirewallRules: [{D5C6EBFA-952C-4EF7-882E-B0FCCF0A2938}] => (Allow) C:\Program Files\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{688D56F7-5D11-4C2E-BF3B-E330934054C1}] => (Allow) C:\Program Files\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe

==================== Faulty Device Manager Devices =============

Name: Mysz Microsoft PS/2
Description: Mysz Microsoft PS/2
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Standardowa klawiatura PS/2
Description: Standardowa klawiatura PS/2
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Klawiatury standardowe)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (07/17/2015 12:16:21 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktywacja licencji (slui.exe) nie powiodła się, kod błędu:
hr=0xC004F074
Argumenty wiersza polecenia:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (07/17/2015 12:16:21 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktywacja licencji (slui.exe) nie powiodła się, kod błędu:
hr=0xC004F074
Argumenty wiersza polecenia:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (07/17/2015 12:12:55 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktywacja licencji (slui.exe) nie powiodła się, kod błędu:
hr=0xC004F074
Argumenty wiersza polecenia:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (07/17/2015 12:12:42 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktywacja licencji (slui.exe) nie powiodła się, kod błędu:
hr=0xC004F074
Argumenty wiersza polecenia:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (07/17/2015 12:12:37 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktywacja licencji (slui.exe) nie powiodła się, kod błędu:
hr=0xC004F074
Argumenty wiersza polecenia:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (07/17/2015 12:12:33 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktywacja licencji (slui.exe) nie powiodła się, kod błędu:
hr=0xC004F074
Argumenty wiersza polecenia:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=UserLogon;SessionId=5

Error: (07/17/2015 12:11:45 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktywacja licencji (slui.exe) nie powiodła się, kod błędu:
hr=0xC004F074
Argumenty wiersza polecenia:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (07/16/2015 11:04:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: csgo.exe, wersja: 0.0.0.0, sygnatura czasowa: 0x555e4277
Nazwa modułu powodującego błąd: tier0.dll, wersja: 0.0.0.0, sygnatura czasowa: 0x5589bb4b
Kod wyjątku: 0xc0000409
Przesunięcie błędu: 0x00020fbe
Identyfikator procesu powodującego błąd: 0x28d4
Godzina uruchomienia aplikacji powodującej błąd: 0xcsgo.exe0
Ścieżka aplikacji powodującej błąd: csgo.exe1
Ścieżka modułu powodującego błąd: csgo.exe2
Identyfikator raportu: csgo.exe3
Pełna nazwa pakietu powodującego błąd: csgo.exe4
Identyfikator aplikacji względem pakietu powodującego błąd: csgo.exe5

Error: (07/16/2015 06:54:54 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: csgo.exe, wersja: 0.0.0.0, sygnatura czasowa: 0x555e4277
Nazwa modułu powodującego błąd: tier0.dll, wersja: 0.0.0.0, sygnatura czasowa: 0x5589bb4b
Kod wyjątku: 0xc0000409
Przesunięcie błędu: 0x00020fbe
Identyfikator procesu powodującego błąd: 0x1fa8
Godzina uruchomienia aplikacji powodującej błąd: 0xcsgo.exe0
Ścieżka aplikacji powodującej błąd: csgo.exe1
Ścieżka modułu powodującego błąd: csgo.exe2
Identyfikator raportu: csgo.exe3
Pełna nazwa pakietu powodującego błąd: csgo.exe4
Identyfikator aplikacji względem pakietu powodującego błąd: csgo.exe5

Error: (07/16/2015 01:56:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: PaintDotNet.exe, wersja: 4.5.5454.39504, sygnatura czasowa: 0x5484cd44
Nazwa modułu powodującego błąd: ntdll.dll, wersja: 6.3.9600.17736, sygnatura czasowa: 0x550f42bd
Kod wyjątku: 0xc0000374
Przesunięcie błędu: 0x000d0982
Identyfikator procesu powodującego błąd: 0x23d8
Godzina uruchomienia aplikacji powodującej błąd: 0xPaintDotNet.exe0
Ścieżka aplikacji powodującej błąd: PaintDotNet.exe1
Ścieżka modułu powodującego błąd: PaintDotNet.exe2
Identyfikator raportu: PaintDotNet.exe3
Pełna nazwa pakietu powodującego błąd: PaintDotNet.exe4
Identyfikator aplikacji względem pakietu powodującego błąd: PaintDotNet.exe5


System errors:
=============
Error: (07/17/2015 12:58:37 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalacja nie powiodła się: system Windows nie mógł zainstalować następującej aktualizacji, ponieważ wystąpił błąd 0x800736b3: Update for Windows 8.1 (KB3000850).

Error: (07/17/2015 12:32:48 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalacja nie powiodła się: system Windows nie mógł zainstalować następującej aktualizacji, ponieważ wystąpił błąd 0x800736b3: Update for Windows 8.1 (KB3000850).

Error: (07/16/2015 09:00:21 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalacja nie powiodła się: system Windows nie mógł zainstalować następującej aktualizacji, ponieważ wystąpił błąd 0x800736b3: Update for Windows 8.1 (KB3000850).

Error: (07/16/2015 12:22:34 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalacja nie powiodła się: system Windows nie mógł zainstalować następującej aktualizacji, ponieważ wystąpił błąd 0x800736b3: Update for Windows 8.1 (KB3000850).

Error: (07/15/2015 04:12:47 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalacja nie powiodła się: system Windows nie mógł zainstalować następującej aktualizacji, ponieważ wystąpił błąd 0x800736b3: Update for Windows 8.1 (KB3000850).

Error: (07/14/2015 11:35:00 PM) (Source: bowser) (EventID: 8003) (User: )
Description: Przeglądarka główna odebrała anons serwera z komputera LENOVO-PC.
Komputer ten zachowuje się tak, jakby był przeglądarką główną dla domeny w transporcie NetBT_Tcpip_{AF7F4F53-6A92-49D9-983A-119E386D.
Przeglądarka główna właśnie jest zatrzymywana albo wymuszany jest wybór.

Error: (07/14/2015 07:34:48 PM) (Source: bowser) (EventID: 8003) (User: )
Description: Przeglądarka główna odebrała anons serwera z komputera LENOVO-PC.
Komputer ten zachowuje się tak, jakby był przeglądarką główną dla domeny w transporcie NetBT_Tcpip_{AF7F4F53-6A92-49D9-983A-119E386D.
Przeglądarka główna właśnie jest zatrzymywana albo wymuszany jest wybór.

Error: (07/14/2015 06:33:04 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalacja nie powiodła się: system Windows nie mógł zainstalować następującej aktualizacji, ponieważ wystąpił błąd 0x800736b3: Update for Windows 8.1 (KB3000850).

Error: (07/14/2015 05:24:29 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalacja nie powiodła się: system Windows nie mógł zainstalować następującej aktualizacji, ponieważ wystąpił błąd 0x800736b3: Update for Windows 8.1 (KB3000850).

Error: (07/14/2015 05:04:48 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalacja nie powiodła się: system Windows nie mógł zainstalować następującej aktualizacji, ponieważ wystąpił błąd 0x800736b3: Update for Windows 8.1 (KB3000850).


Microsoft Office:
=========================
Error: (07/17/2015 12:16:21 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (07/17/2015 12:16:21 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (07/17/2015 12:12:55 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (07/17/2015 12:12:42 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (07/17/2015 12:12:37 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (07/17/2015 12:12:33 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=UserLogon;SessionId=5

Error: (07/17/2015 12:11:45 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (07/16/2015 11:04:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: csgo.exe0.0.0.0555e4277tier0.dll0.0.0.05589bb4bc000040900020fbe28d401d0c00aa2160399C:\Program Files\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exeC:\Program Files\Steam\steamapps\common\Counter-Strike Global Offensive\bin\tier0.dll4b59f3de-2bfe-11e5-974c-c04a002b0683

Error: (07/16/2015 06:54:54 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: csgo.exe0.0.0.0555e4277tier0.dll0.0.0.05589bb4bc000040900020fbe1fa801d0bfbd127ba67aC:\Program Files\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exeC:\Program Files\Steam\steamapps\common\Counter-Strike Global Offensive\bin\tier0.dll6145c226-2bdb-11e5-974c-c04a002b0683

Error: (07/16/2015 01:56:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: PaintDotNet.exe4.5.5454.395045484cd44ntdll.dll6.3.9600.17736550f42bdc0000374000d098223d801d0bfbe69c71a7bC:\Program Files\paint.net\PaintDotNet.exeC:\Windows\SYSTEM32\ntdll.dllb632461a-2bb1-11e5-974c-c04a002b0683


CodeIntegrity Errors:
===================================
Date: 2015-04-02 18:43:44.313
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\l3codeca.acm because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: AMD Athlon™ 64 X2 Dual Core Processor 4200+
Percentage of memory in use: 63%
Total physical RAM: 3071.43 MB
Available physical RAM: 1131.18 MB
Total Virtual: 5630.92 MB
Available Virtual: 2833.56 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:148.95 GB) (Free:5.74 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149.1 GB) (Disk ID: 329D329D)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=149 GB) - (Type=OF Extended)

==================== End of log ============================

Edited by Oh My!, 21 July 2015 - 09:12 AM.
Moved from Win 8 to 'Virus, trojan, etc. logs'


BC AdBot (Login to Remove)

 


m

#2 Chris Cosgrove

Chris Cosgrove

  • Moderator
  • 5,965 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Scotland
  • Local time:05:34 PM

Posted 17 July 2015 - 04:45 PM

Note to anyone looking at this topic, the above links are FRST log files. I have sent a PM to the OP.

 

Chris Cosgrove



#3 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 35,580 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:09:34 AM

Posted 21 July 2015 - 09:33 AM

Greetings klaudi30i and :welcome: to BleepingComputer's Virus/Trojan/Spyware/Malware Removal forum.

My name is Oh My! and I am here to help you! Now that we are "friends" please call me Gary.

If you would allow me to call you by your first name I would prefer to do that. :thumbup2:

===================================================

Ground Rules:
  • First, I would like to inform you that most of us here at Bleeping Computer offer our expert assistance out of the goodness of our hearts. Please try to match our commitment to you with your patience toward us. If this was easy we would never have met. :)
  • Please do not run any tools or take any steps other than those I will provide for you while we work on your computer together. I need to be certain about the state of your computer in order to provide appropriate and effective steps for you to take. Most often "well intentioned" (and usually panic driven!) independent efforts can make things much worse for both of us. If at any point you would prefer to take your own steps please let me know, I will not be offended. I would be happy to focus on the many others who are waiting in line for assistance.
  • Please perform all steps in the order they are listed in each set of instructions. Some steps may be a bit complicated. If things are not clear, be sure to stop and let me know. We need to work on this together with confidence.
  • Please copy and paste all logs into your post unless directed otherwise. Please do not re-run any programs I suggest. If you encounter problems simply stop and tell me.
  • When you post your reply, use the Replytopic.jpg button instead.
  • In the upper right hand corner of the topic you will see the Followtopic.jpg button. Click on this then choose Immediate E-Mail notification and then Proceed and you will be sent an email once I have posted a response.
  • If you do not reply to your topic after 5 days we assume it has been abandoned and I will close it.
  • When your computer is clean I will alert you of such. I will also provide for you detailed information about how you can combat future infections.
  • I would like to remind you to make no further changes to your computer unless I direct you to do so.
  • Now let's get started :thumbup2:
===================================================

Now that I am assisting you, you can expect that I will be very responsive to your situation. If you are able, I would request you check this thread at least once per day so that we can try to resolve your issues effectively and efficiently. If you are going to be delayed please be considerate and post that information so that I know you are still with me. Unfortunately, there are many people waiting to be assisted and not enough of us at BleepingComputer to go around. I appreciate your understanding and diligence.

Thank you for your patience thus far.

There is evidence of illegal software on your computer. I will ask you to remove all of it before we take any steps to clean your computer. If you are willing to do so please rerun FRST.exe making sure to check Addition.txt and copy and paste both logs in your reply. Do no provide a link or attachment.

Please explain what issues you are having with your computer. The subject line does not tell me what is wrong in a way that I can understand.
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#4 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 35,580 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:09:34 AM

Posted 24 July 2015 - 10:03 AM

Greetings,

===================================================

3 Day Bump

It has been more than 3 days since my last post.
  • Do you still need help with this?
  • If after 48hrs you have not replied to this thread then it will have to be closed.

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#5 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 35,580 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:09:34 AM

Posted 04 November 2015 - 01:20 PM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users