Hello!
I wont write now much , because my last post came to trash with login button
Cmd is turning on without reason for not even a secound.
I have programs that dont want to dissapear in system
Also internet speed slowed a lot + can dissconect
Well ive heard that turning on cmd is a bad written virus but i dont have experience with it.
Can i download systems with english language verssion, not harming the system? Because ive had blocked keyboard after few days changing it into other language
Some story of visuses i had so far.I would like to delete anything that left from it:
-Undead Blueastacks program, <- unistalling and Microsoft didnt helped. There is still something wandering around
-Blocked keyboard by Mozzilla Firefox + SiteAdvistor( McAfee Program) <- Unistalled Mozilla Firefox.
-Slowed procesess to infinity by Core Temp <- repaired by turning on computer again , and uninstalling Core Temp
-Not possible to uninstall programs, and run most of the program (for exmple FRST.exe). <-This was repaired by Windows Update ....
Heres the Logs , However theyre not wroten in English
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:08-06-2015
Ran by Gundalf (administrator) on AGULI on 13-06-2015 12:04:28
Running from C:\Users\Gundalf\Downloads\FRST-OlderVersion
Loaded Profiles: Gundalf (Available Profiles: Gundalf)
Platform: Windows 8.1 (X64) OS Language: Polski (Polska)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Windows ® Win 7 DDK provider) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AdminService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Dell Inc.) C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(McAfee, Inc.) C:\Program Files\mcafee\msc\McAPExe.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\AMCore\mcshield.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Dell Inc.) C:\Program Files (x86)\Dell\My Dell Client Framework\Dell.ClientFramework.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\CSP\1.3.374.0\McCSPServiceHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVault.exe
(Avanquest Software) C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Atheros Communications) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Waves Audio Ltd.) C:\Program Files\Realtek\Audio\HDA\WavesSvc64.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Sony) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
() C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\saUI.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell Backup and Recovery\Components\DBRUpdate\DBRUpd.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell Backup and Recovery\Toaster.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBRSync.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Qualcomm Atheros) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtTray.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\Google\Update\Install\{206736CB-0835-4B60-AC7A-ED0289B33F04}\43.0.2357.124_43.0.2357.81_chrome_updater.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\Installer\setup.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\platform\McUICnt.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(McAfee, Inc.) C:\Program Files\mcafee\virusscan\mcods.exe
(Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssist\uaclauncher.exe
(McAfee, Inc.) C:\Program Files\mcafee.com\agent\mcupdate.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7510232 2014-01-18] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1374936 2014-01-14] (Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Realtek\Audio\HDA\WavesSvc64.exe [285272 2013-12-31] (Waves Audio Ltd.)
HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [3777696 2014-01-16] (Dell Inc.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2531472 2014-12-13] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [mcpltui_exe] => C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe [643064 2015-02-09] (McAfee, Inc.)
HKLM-x32\...\Run: [DropboxOEM] => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [462160 2014-09-02] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe [133760 2014-01-08] (Atheros Communications)
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-1756320144-211604295-3851700641-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7404312 2015-01-20] (Piriform Ltd)
HKU\S-1-5-21-1756320144-211604295-3851700641-1001\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [455392 2015-04-10] (Sony)
HKU\S-1-5-21-1756320144-211604295-3851700641-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\System32\scrnsave.scr [11776 2014-10-29] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2015-03-23]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)
ShellIconOverlayIdentifiers: [DBARFileBackuped] -> {831cebdd-6baf-4432-be76-9e0989c14aef} => C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBROverlayIconBackuped.dll [2014-12-30] (Softthinks SAS)
ShellIconOverlayIdentifiers: [DBARFileNotBackuped] -> {275e4fd7-21ef-45cf-a836-832e5d2cc1b3} => C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBROverlayIconNotBackuped.dll [2014-12-30] (Softthinks SAS)
ShellIconOverlayIdentifiers: [DBRShellOverlayBackupFile] -> {831CEBDD-6BAF-4432-BE76-9E0989C14AEF} => C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBROverlayIconBackuped.dll [2014-12-30] (Softthinks SAS)
ShellIconOverlayIdentifiers: [DBRShellOverlayModifiedBackupFile] -> {275E4FD7-21EF-45CF-A836-832E5D2CC1B3} => C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBROverlayIconNotBackuped.dll [2014-12-30] (Softthinks SAS)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKU\S-1-5-21-1756320144-211604295-3851700641-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09] (McAfee, Inc.)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2015-04-17] (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2015-04-17] (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2015-04-17] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2015-04-17] (McAfee, Inc.)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2015-02-27] (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2015-02-27] (McAfee, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Gundalf\AppData\Roaming\Mozilla\Firefox\Profiles\swsh7ehd.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_188.dll [2015-06-10] ()
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2015-02-27] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_188.dll [2015-06-10] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-10] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-10] (Intel Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2015-02-27] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF Extension: McAfee SiteAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor [2015-02-03]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [not found]
Chrome:
=======
CHR Profile: C:\Users\Gundalf\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Gundalf\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-18]
CHR Extension: (Google Docs) - C:\Users\Gundalf\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-18]
CHR Extension: (Google Drive) - C:\Users\Gundalf\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-02-18]
CHR Extension: (YouTube) - C:\Users\Gundalf\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-02-18]
CHR Extension: (Google Sheets) - C:\Users\Gundalf\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-18]
CHR Extension: (SiteAdvisor) - C:\Users\Gundalf\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2015-02-18]
CHR Extension: (AdBlock) - C:\Users\Gundalf\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-04-01]
CHR Extension: (Bookmark Manager) - C:\Users\Gundalf\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-04-16]
CHR Extension: (Google Wallet) - C:\Users\Gundalf\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-02-18]
CHR Extension: (Gmail) - C:\Users\Gundalf\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-02-18]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2015-05-07]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2015-05-07]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 0089171432146823mcinstcleanup; C:\Windows\TEMP\008917~1.EXE [883024 2015-04-06] (McAfee, Inc.)
R2 AtherosSvc; C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe [318592 2014-01-08] (Windows ® Win 7 DDK provider) [File not signed]
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
R2 DellDataVault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2557136 2015-02-26] (Dell Inc.)
R2 DellDataVaultWiz; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [201936 2015-02-26] (Dell Inc.)
S3 DellProdRegManager; C:\Program Files (x86)\Dell Product Registration\regmgrsvc.exe [278568 2014-10-31] (Aviata, Inc.)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148560 2014-12-13] (NVIDIA Corporation)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [335064 2014-10-31] (McAfee, Inc.)
R2 Intel® Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel® Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-12-10] (Intel Corporation)
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [154856 2015-04-17] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [562200 2015-02-27] (McAfee, Inc.)
S3 McAWFwk; c:\Program Files\Common Files\mcafee\ActWiz\McAWFwk.exe [334608 2013-07-24] (McAfee, Inc.)
R2 mcbootdelaystartsvc; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [335064 2014-10-31] (McAfee, Inc.)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.3.374.0\McCSPServiceHost.exe [422632 2015-01-22] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [335064 2014-10-31] (McAfee, Inc.)
R3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [601864 2015-02-27] (McAfee, Inc.)
S4 McOobeSv2; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [335064 2014-10-31] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [335064 2014-10-31] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [335064 2014-10-31] (McAfee, Inc.)
R2 mfecore; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [1050952 2014-11-06] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [221832 2014-10-01] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [189920 2014-10-01] (McAfee, Inc.)
R2 My Dell Client Framework; C:\Program Files (x86)\Dell\My Dell Client Framework\Dell.ClientFramework.exe [168960 2014-01-10] (Dell Inc.) [File not signed]
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3542000 2015-01-21] (INCA Internet Co., Ltd.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1701520 2014-12-13] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19823248 2014-12-13] (NVIDIA Corporation)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [253776 2013-07-30] (CyberLink)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [290520 2014-01-09] (Realtek Semiconductor)
R2 SftService; C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe [2005392 2015-02-12] (SoftThinks SAS)
R2 SupportAssistAgent; C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [19288 2015-04-10] (Dell Inc.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5426448 2014-12-15] (TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
S2 BstHdAndroidSvc; "C:\Program Files (x86)\BlueStacks\HD-Service.exe" BstHdAndroidSvc Android [X]
S2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [X]
S2 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3881472 2013-12-13] (Qualcomm Atheros Communications, Inc.)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2014-01-08] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [72136 2014-10-01] (McAfee, Inc.)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink)
R3 DDDriver; C:\Windows\system32\drivers\DDDriver64Dcsa.sys [23760 2015-01-31] (Dell Computer Corporation)
R3 DellProf; C:\Windows\system32\drivers\DellProf.sys [23312 2015-01-31] (Dell Computer Corporation)
R3 DellRbtn; C:\Windows\System32\drivers\DellRbtn.sys [10752 2013-01-25] (OSR Open Systems Resources, Inc.)
S3 GENERICDRV; C:\Users\Gundalf\AppData\Roaming\PCDr\Downloads\amifldrv64.sys [15400 2015-04-07] ()
S3 ggsomc; C:\Windows\System32\drivers\ggsomc.sys [30424 2015-05-17] (Sony Mobile Communications)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverx64.sys [100312 2013-12-10] (Intel Corporation)
R3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [181584 2014-10-01] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [313680 2014-10-01] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [70608 2014-10-01] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [526360 2014-10-01] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [786304 2014-10-01] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\system32\DRIVERS\mfencbdc.sys [447440 2014-09-19] (McAfee, Inc.)
S3 mfencrk; C:\Windows\system32\DRIVERS\mfencrk.sys [96600 2014-09-19] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [348560 2014-10-01] (McAfee, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2014-12-13] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
R3 SynRMIHID; C:\Windows\system32\DRIVERS\SynRMIHID.sys [41200 2014-01-15] (Synaptics Incorporated)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
S3 XSplit_Dummy; C:\Windows\system32\drivers\xspltspk.sys [26200 2014-07-02] (SplitmediaLabs Limited)
S3 <NtDriverName>; \SystemRoot\System32\Drivers\<NtDriverName>.sys [X]
S2 BstHdDrv; \??\C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [X]
U2 McMPFSvc; No ImagePath
U5 SNTIE; C:\Windows\SysWOW64\Drivers\SNTIE.sys [172032 2004-05-28] (Siemens AG)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-06-11 20:12 - 2015-06-11 20:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2015-06-11 19:49 - 2015-06-11 19:49 - 00000000 ___RD C:\Users\Gundalf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2015-06-02 04:58 - 2015-06-02 04:58 - 00000000 ____D C:\Users\Gundalf\AppData\Local\GWX
2015-06-01 06:13 - 2015-06-01 06:13 - 00000000 ____D C:\Users\Gundalf\Downloads\sukces-zawodowy-podcast-MP3
2015-06-01 06:10 - 2015-06-01 06:13 - 102566697 _____ C:\Users\Gundalf\Downloads\sukces-zawodowy-podcast-MP3 (1).zip
2015-06-01 05:52 - 2015-06-01 05:56 - 102566697 _____ C:\Users\Gundalf\Downloads\sukces-zawodowy-podcast-MP3.zip
2015-05-30 18:00 - 2015-05-30 18:00 - 00075096 _____ C:\Users\Gundalf\Downloads\Extras.Txt
2015-05-30 17:59 - 2015-05-30 17:59 - 00148114 _____ C:\Users\Gundalf\Downloads\OTL.Txt
2015-05-30 17:29 - 2015-05-30 17:29 - 00602112 _____ (OldTimer Tools) C:\Users\Gundalf\Downloads\OTL (1).exe
2015-05-29 17:34 - 2015-05-29 17:34 - 00000000 ____D C:\Users\Gundalf\AppData\Local\Overwolf
2015-05-21 20:25 - 2015-05-21 20:25 - 00362854 _____ C:\Users\Gundalf\Downloads\pobrane (1).htm
2015-05-18 16:38 - 2015-05-18 16:38 - 00009763 _____ C:\Users\Gundalf\Downloads\lair.htm
2015-05-17 16:45 - 2015-05-17 16:58 - 00000000 ____D C:\Users\Gundalf\Desktop\manga jaka czytalem
2015-05-17 16:37 - 2015-05-17 16:37 - 00000000 ____D C:\Users\Gundalf\AppData\Local\Intel_Corporation
2015-05-17 16:16 - 2015-05-17 16:16 - 00030424 _____ (Sony Mobile Communications) C:\Windows\system32\Drivers\ggsomc.sys
2015-05-17 16:16 - 2015-05-17 16:16 - 00016088 _____ (Sony Mobile Communications) C:\Windows\system32\Drivers\ggflt.sys
2015-05-17 16:15 - 2015-05-17 16:15 - 00000000 ____D C:\ProgramData\Sony Mobile
2015-05-17 16:15 - 2015-05-17 16:15 - 00000000 ____D C:\Program Files (x86)\Sony Mobile
2015-05-17 16:07 - 2015-05-17 16:09 - 89374063 _____ C:\Users\Gundalf\Downloads\Flash_tool_for_Xperia_6.zip
2015-05-17 16:01 - 2015-05-17 17:59 - 00000000 ____D C:\Users\Gundalf\Desktop\1000ANDRO
2015-05-17 15:54 - 2015-05-17 15:55 - 00128822 _____ C:\Windows\DPINST.LOG
2015-05-17 15:54 - 2015-05-17 15:54 - 00002116 _____ C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk
2015-05-17 15:54 - 2015-05-17 15:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2015-05-17 15:53 - 2015-05-17 15:53 - 00000000 ____D C:\ProgramData\Sony
2015-05-17 15:53 - 2015-05-17 15:53 - 00000000 ____D C:\Program Files (x86)\Sony
2015-05-17 15:41 - 2015-05-17 15:41 - 02209792 _____ C:\Users\Gundalf\Downloads\adwcleaner_4.204.exe
2015-05-17 15:41 - 2015-05-17 15:41 - 02209792 _____ C:\Users\Gundalf\Downloads\adwcleaner_4.204 (1).exe
2015-05-17 15:37 - 2015-05-17 15:39 - 28684424 _____ (Sony Mobile Communications ) C:\Users\Gundalf\Downloads\Sony PC Companion_Web.exe
2015-05-16 16:17 - 2015-05-05 19:59 - 00792568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-05-16 16:17 - 2015-05-05 19:59 - 00178168 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-05-16 09:20 - 2015-06-01 05:31 - 00000000 ____D C:\Users\Gundalf\Desktop\Im stoned
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-06-13 12:04 - 2015-02-26 16:54 - 00000000 ____D C:\FRST
2015-06-13 12:03 - 2015-02-26 16:56 - 00000000 ____D C:\Users\Gundalf\Downloads\FRST-OlderVersion
2015-06-13 12:00 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sru
2015-06-13 11:59 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2015-06-12 20:43 - 2015-02-18 07:32 - 00001068 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-06-12 20:27 - 2015-01-18 17:37 - 00000930 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-06-12 20:08 - 2015-04-12 23:20 - 00000000 ____D C:\Users\Gundalf\AppData\Local\Battle.net
2015-06-12 19:48 - 2015-02-18 07:38 - 00001068 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d04b3d189d5fcb.job
2015-06-12 19:44 - 2015-03-04 18:17 - 00000000 ____D C:\Users\Gundalf\AppData\Local\Warframe
2015-06-12 19:41 - 2015-02-26 21:29 - 01263111 _____ C:\Windows\WindowsUpdate.log
2015-06-12 19:05 - 2015-03-24 22:16 - 00029228 _____ C:\Windows\setupact.log
2015-06-12 16:46 - 2015-01-02 19:33 - 00000000 ____D C:\Users\Gundalf\AppData\Local\CrashDumps
2015-06-12 16:28 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2015-06-12 16:26 - 2014-12-31 16:42 - 00000000 ____D C:\Windows\system32\MRT
2015-06-12 06:03 - 2014-12-31 16:42 - 140135120 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-06-12 03:46 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\ELAM
2015-06-11 20:17 - 2014-12-29 17:04 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1756320144-211604295-3851700641-1001
2015-06-11 19:49 - 2014-12-29 17:00 - 00000000 ____D C:\Users\Gundalf\Documents\Bluetooth Folder
2015-06-11 19:46 - 2015-02-18 07:34 - 00002211 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-06-10 21:48 - 2015-02-18 07:32 - 00001064 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-06-10 17:29 - 2015-01-18 17:37 - 00003818 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-06-08 20:51 - 2015-01-01 17:36 - 00948224 ___SH C:\Users\Gundalf\Desktop\Thumbs.db
2015-06-08 18:01 - 2015-02-24 19:03 - 00000000 ____D C:\ProgramData\SupportAssistAgent
2015-06-06 11:18 - 2014-10-25 21:55 - 00000000 ____D C:\Program Files (x86)\Dell Backup and Recovery
2015-06-05 13:37 - 2015-01-04 11:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gameforge Live
2015-06-05 13:37 - 2014-12-29 18:34 - 00000000 ____D C:\Users\Gundalf\Downloads\Gameforge Live
2015-06-05 13:37 - 2014-12-29 18:34 - 00000000 ____D C:\Program Files (x86)\GameforgeLive
2015-06-03 06:32 - 2015-04-12 23:20 - 00000000 ____D C:\Program Files (x86)\Battle.net
2015-05-29 20:16 - 2015-03-31 20:07 - 00003020 _____ C:\Windows\System32\Tasks\MSIAfterburner
2015-05-29 20:15 - 2015-02-20 19:47 - 00000000 ____D C:\Users\Gundalf\OneDrive
2015-05-27 17:13 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2015-05-23 10:03 - 2014-03-18 11:52 - 01825074 _____ C:\Windows\system32\PerfStringBackup.INI
2015-05-23 10:03 - 2014-03-18 11:25 - 00807160 _____ C:\Windows\system32\perfh015.dat
2015-05-23 10:03 - 2014-03-18 11:25 - 00163478 _____ C:\Windows\system32\perfc015.dat
2015-05-21 18:39 - 2015-04-07 15:50 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2015-05-21 18:39 - 2015-04-07 15:50 - 00000000 ___SD C:\Windows\system32\GWX
2015-05-20 20:33 - 2014-10-25 21:51 - 00000000 ____D C:\Program Files (x86)\McAfee
2015-05-17 16:00 - 2015-03-16 07:07 - 00000000 ____D C:\Users\Gundalf\Desktop\100ANDRO
2015-05-17 15:53 - 2014-10-25 21:39 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-05-17 15:47 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-05-17 15:46 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2015-05-17 15:45 - 2015-02-23 17:04 - 00000000 ____D C:\AdwCleaner
2015-05-16 21:43 - 2015-02-18 07:38 - 00004040 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1d04b3d189d5fcb
2015-05-16 21:43 - 2015-02-18 07:32 - 00003804 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-05-16 16:15 - 2015-03-28 19:12 - 00018274 _____ C:\Windows\PFRO.log
2015-05-16 16:15 - 2013-08-22 16:44 - 00373120 _____ C:\Windows\system32\FNTCACHE.DAT
2015-05-16 16:11 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2015-05-16 16:11 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2015-05-16 09:23 - 2015-05-01 16:29 - 00000000 ____D C:\Program Files (x86)\Hearthstone
==================== Files in the root of some directories =======
2014-10-25 21:23 - 2014-10-25 21:23 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-10-25 21:43 - 2014-10-25 21:44 - 0000121 _____ () C:\ProgramData\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}.log
2014-10-25 21:40 - 2014-10-25 21:41 - 0000106 _____ () C:\ProgramData\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}.log
2014-10-25 21:41 - 2014-10-25 21:42 - 0000111 _____ () C:\ProgramData\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}.log
2014-10-25 21:42 - 2014-10-25 21:43 - 0000108 _____ () C:\ProgramData\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}.log
2014-10-25 21:39 - 2014-10-25 21:40 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
Some files in TEMP:
====================
C:\Users\Gundalf\AppData\Local\Temp\InstallGenieo.exe
C:\Users\Gundalf\AppData\Local\Temp\pyl90B5.tmp.exe
C:\Users\Gundalf\AppData\Local\Temp\Quarantine.exe
C:\Users\Gundalf\AppData\Local\Temp\smt_istartsurf.exe
C:\Users\Gundalf\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-05-27 05:32
==================== End of log ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version:08-06-2015
Ran by Gundalf at 2015-06-13 12:06:39
Running from C:\Users\Gundalf\Downloads\FRST-OlderVersion
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1756320144-211604295-3851700641-500 - Administrator - Disabled)
Gość (S-1-5-21-1756320144-211604295-3851700641-501 - Limited - Disabled)
Gundalf (S-1-5-21-1756320144-211604295-3851700641-1001 - Administrator - Enabled) => C:\Users\Gundalf
HomeGroupUser$ (S-1-5-21-1756320144-211604295-3851700641-1003 - Limited - Enabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: McAfee — ochrona antywirusowa i przed oprogramowaniem szpiegującym (Enabled - Up to date) {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556}
"anti-virus protection and antispyware"
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee — ochrona antywirusowa i przed oprogramowaniem szpiegującym (Enabled - Up to date) {61FE6F34-F6E4-3642-CFEA-6AD93746FFEB}
"anti-virus protection and antispyware"
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.188 - Adobe Systems Incorporated)
Aktualizacje NVIDIA 16.18.9 (Version: 16.18.9 - NVIDIA Corporation) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BlueStacks App Player (HKLM-x32\...\BlueStacks App Player) (Version: 0.9.14.4604 - BlueStack Systems, Inc.)
BlueStacks Notification Center (HKLM-x32\...\{E78B4959-B348-4913-874B-FF982378E035}) (Version: 0.9.11.4119 - BlueStack Systems, Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.02 - Piriform)
CodeBlocks (HKU\S-1-5-21-1756320144-211604295-3851700641-1001\...\CodeBlocks) (Version: 13.12 - The Code::Blocks Team)
CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.8.1.70 - Dell Inc.)
Dell Data Vault (Version: 4.2.2.0 - Dell Inc.) Hidden
Dell Digital Delivery (HKLM-x32\...\{D850CB7E-72BC-4510-BA4F-48932BFAB295}) (Version: 2.9.901.0 - Dell Products, LP)
Dell Product Registration (HKLM-x32\...\{24F2AD94-CC1B-4294-B184-D4D31A3186A7}) (Version: 2.42.0012 - Aviata Inc.)
Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.0.6584.81 - Dell)
Dell SupportAssistAgent (HKLM-x32\...\{287348C8-8B47-4C36-AF28-441A3B7D8722}) (Version: 1.0.3.60494 - Dell)
Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 18.0.7.1 - Synaptics Incorporated)
Dell Update (HKLM-x32\...\{D9D0E75C-F791-402A-98E2-A2F43E7B0CE3}) (Version: 1.1.1054.0 - Dell Inc.)
Dell WLAN and Bluetooth Client Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Dell Inc.)
Dropbox 20 GB (HKLM-x32\...\{597A58EC-42D6-4940-8739-FB94491B013C}) (Version: 0.9.0 - Dropbox, Inc.)
Elsword (HKLM-x32\...\Elsword_pl_is1) (Version: - )
Etherlords II (HKLM-x32\...\{76A40BFF-4998-4562-8593-117EC74807EC}) (Version: 1.0 - )
Gameforge Live 2.0.8 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.8 - Gameforge)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.124 - Google Inc.)
Google Update Helper (x32 Version: 1.3.21.169 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3412 - Intel Corporation)
Katawa Shoujo (HKLM-x32\...\Katawa Shoujo) (Version: - )
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
McAfee Internet Security (HKLM-x32\...\MSC) (Version: 13.6.1599 - McAfee, Inc.)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)
McAfee SiteAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 3.7.214 - McAfee, Inc.)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
MSI Afterburner 4.1.0 (HKLM-x32\...\Afterburner) (Version: 4.1.0 - MSI Co., LTD)
My Dell Client Framework (HKLM-x32\...\InstallShield_{05F1B866-2372-4E82-9AA8-C64FB11CEF8B}) (Version: 1.0.0.3 - Dell)
My Dell Client Framework (x32 Version: 1.0.0.3 - Dell) Hidden
Nostale(PL) (HKLM-x32\...\NosTale(PL)_is1) (Version: - Gameforge 4D GmbH)
NVIDIA GeForce Experience 2.1.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.5 - NVIDIA Corporation)
NVIDIA Oprogramowanie systemu PhysX 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
NVIDIA Sterownik graficzny 347.25 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.25 - NVIDIA Corporation)
OpenOffice 4.1.1 (HKLM-x32\...\{B5373BA3-BAD7-4EAC-A9D2-B66B41B82C57}) (Version: 4.11.9775 - Apache Software Foundation)
osu! (HKLM-x32\...\{9105f69b-176d-4f4c-9b30-040ba6dc8c4a}) (Version: latest - ppy Pty Ltd)
Otchlan 1.3 Beta v69 (HKLM-x32\...\{E6BE8B1B-4F19-4EB9-9D16-BE6FCC875121}_is1) (Version: - Otchlan Sp. zoo)
Panel sterowania NVIDIA 347.25 (Version: 347.25 - NVIDIA Corporation) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.314 - Qualcomm Atheros Communications)
Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 11.1.18 - Dell Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.39054 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7161 - Realtek Semiconductor Corp.)
RGSS-RTP Standard (HKLM-x32\...\RGSS-RTP Standard_is1) (Version: 1.04 - Enterbrain)
RivaTuner Statistics Server 6.3.0 (HKLM-x32\...\RTSS) (Version: 6.3.0 - Unwinder)
SHIELD Streaming (Version: 3.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 16.18.9 - NVIDIA Corporation) Hidden
SIMATIC Device Drivers (x32 Version: 5.9 - Siemens AG) Hidden
SIMATIC Industrial Ethernet PG (x32 Version: 06.02.0000 - Siemens AG) Hidden
SIMATIC STEP 7-Micro/WIN V4.0.0.81E (HKLM-x32\...\{49844738-872E-4348-88DD-63B3C39548C2}) (Version: - )
Sony Mobile Update Engine (HKLM-x32\...\Update Engine) (Version: 2.15.6.201504291043 - Sony Mobile Communications Inc.)
Sony PC Companion 2.10.259 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.259 - Sony)
TeamSpeak 3 Client (HKU\S-1-5-21-1756320144-211604295-3851700641-1001\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.36897 - TeamViewer)
TmNationsForever (HKLM-x32\...\TmNationsForever_is1) (Version: - Nadeo)
Update for Japanese Microsoft IME Postal Code Dictionary (HKLM-x32\...\{15015752-9990-4516-A2B1-93823281FB8E}) (Version: 15.0.1759 - Microsoft Corporation)
Update for Japanese Microsoft IME Standard Dictionary (HKLM-x32\...\{7DB71278-9AD7-4480-AB08-8649C5010B17}) (Version: 15.0.1215 - Microsoft Corporation)
Update for Japanese Microsoft IME Standard Extended Dictionary (HKLM-x32\...\{78CE66A9-85AF-4BD8-8FB7-35B5F3846C00}) (Version: 15.0.1215 - Microsoft Corporation)
Warframe (HKLM-x32\...\{3D12F438-4B19-4091-8AEE-B59111C824AF}) (Version: 1.0.0 - Digital Extremes)
Wiedźmin 2 Edycja Rozszerzona (HKLM-x32\...\{D7556F86-8878-4AAD-8755-6146D4500EB0}_is1) (Version: 3.4 - CD Projekt RED)
WinRAR 5.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1756320144-211604295-3851700641-1001_Classes\CLSID\{087B3AE3-E237-4467-B8DB-5A38AB959AC9}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-1756320144-211604295-3851700641-1001_Classes\CLSID\{3B092F0C-7696-40E3-A80F-68D74DA84210}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-1756320144-211604295-3851700641-1001_Classes\CLSID\{63542C48-9552-494A-84F7-73AA6A7C99C1}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-1756320144-211604295-3851700641-1001_Classes\CLSID\{7BC0E710-5703-45BE-A29D-5D46D8B39262}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\ooofilt_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-1756320144-211604295-3851700641-1001_Classes\CLSID\{AE424E85-F6DF-4910-A6A9-438797986431}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\propertyhdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-1756320144-211604295-3851700641-1001_Classes\CLSID\{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-1756320144-211604295-3851700641-1001_Classes\CLSID\{E68D0A55-3C40-4712-B90D-DCFA93FF2534}\InprocServer32 -> C:\Users\Gundalf\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll No File
==================== Restore Points =========================
17-05-2015 15:54:14 Sony PC Companion
21-05-2015 18:36:29 Windows Update
12-06-2015 05:59:30 Windows Update
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {03F1C637-5A28-49EC-920D-E3F98E86F52B} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-06-12] (Microsoft Corporation)
Task: {08B28D45-FC48-4E5E-8B65-F78DF04E0AAA} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-06-10] (Adobe Systems Incorporated)
Task: {1023EA8B-C325-4EE7-9774-1803FA61545D} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {1567500C-2014-4E4F-809F-0C93483A9694} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-01-20] (Piriform Ltd)
Task: {443E2F6E-6572-4840-B619-976C55483AD7} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2013-03-22] (CyberLink Corp.)
Task: {46B28F38-C23E-42F2-9C31-EC1AFDECFBB6} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2014-01-15] (Synaptics Incorporated)
Task: {48B3AB16-FD03-4298-B0B7-C5C62B0EB42A} - System32\Tasks\Dell\Dell Product Registration Update => C:\Program Files (x86)\Dell Product Registration\prodreg.exe [2014-10-31] (Aviata Inc)
Task: {4E10E25F-0B8C-4E52-813F-CFBB280AB7C7} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => schtasks
Task: {50404450-942A-494F-839E-4F9A7910213B} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [2014-12-06] ()
Task: {5114F9DF-14B1-4878-9162-9FC0210B7941} - System32\Tasks\GoogleUpdateTaskMachineUA1d04b3d189d5fcb => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-18] (Google Inc.)
Task: {5346B563-F466-4B0B-B974-ED99EFE07B41} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [2015-03-20] (PC-Doctor, Inc.)
Task: {6C282C82-06CD-44D4-AC0D-BD922D7FF075} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-03-05] (CyberLink)
Task: {7C8A61E7-6E26-4925-89C4-F6EF7D34AECF} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-1756320144-211604295-3851700641-1001
Task: {91CBF9CF-6505-4A34-9231-64F62062453C} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssist.exe [2015-04-10] (Dell Inc.)
Task: {96396A72-A028-4664-89C3-E73AF8F3AC88} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-18] (Google Inc.)
Task: {AB8B6655-7BB6-413F-A4DD-E57F214B5FAB} - System32\Tasks\Dell\Dell Product Registration => C:\Program Files (x86)\Dell Product Registration\prodreg.exe [2014-10-31] (Aviata Inc)
Task: {ACB3A650-E4E8-4332-B223-131988309369} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Logon => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)
Task: {CBA0A8E5-30A6-493E-B6FB-9F8A8BEB2E36} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-18] (Google Inc.)
Task: {D299E31A-EE3D-4EF3-A6CD-8BE4C444079C} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-05-06] (Microsoft Corporation)
Task: {DCD69EC1-2E62-4BD6-BC02-2C863B0ECB7E} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe [2015-03-20] (PC-Doctor, Inc.)
Task: {F570DBD0-5D66-4272-9F0C-89F05D8A46F6} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)
Task: {F953AA04-FAE7-4F6A-9324-CB5C96B996E0} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d04b3d189d5fcb.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (Whitelisted) ==============
2014-01-10 14:53 - 2014-01-10 14:53 - 00016384 _____ () C:\Program Files (x86)\Dell\My Dell Client Framework\Dell.ClientFramework.Interfaces.dll
2014-01-10 14:53 - 2014-01-10 14:53 - 00081408 _____ () C:\Program Files (x86)\Dell\My Dell Client Framework\Dell.ClientFramework.Objects.dll
2014-01-10 14:53 - 2014-01-10 14:53 - 00815616 _____ () C:\Program Files (x86)\Dell\My Dell Client Framework\Dell.ClientFramework.Resources.dll
2014-01-10 15:24 - 2014-01-10 15:24 - 00052736 _____ () C:\Program Files (x86)\Dell\My Dell Client Framework\Dell.Client.Pulse.Agent.Plugins.SelfUpdate.dll
2014-01-10 15:24 - 2014-01-10 15:24 - 00019968 _____ () C:\Program Files (x86)\Dell\My Dell Client Framework\Dell.Client.Pulse.Agent.Common.dll
2014-10-25 21:51 - 2015-01-10 01:29 - 00117392 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-01-08 01:00 - 2014-01-08 01:00 - 00011264 _____ () C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2014-01-08 00:58 - 2014-01-08 00:58 - 00086016 _____ () C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Modules\Map\MAP.dll
2015-05-17 15:53 - 2014-06-23 09:07 - 00113376 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
2014-01-08 01:04 - 2014-01-08 01:04 - 00384128 _____ () C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\ContactsApi.dll
2014-01-08 00:53 - 2014-01-08 00:53 - 00020992 _____ () C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\L10n\pl-PL\BtTray.pl-PL.dll
2015-06-10 17:44 - 2015-06-10 17:44 - 02212944 _____ () C:\Program Files (x86)\Google\Update\Install\{206736CB-0835-4B60-AC7A-ED0289B33F04}\43.0.2357.124_43.0.2357.81_chrome_updater.exe
2014-10-25 21:44 - 2013-12-10 17:27 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll
2015-05-17 15:53 - 2012-04-30 11:57 - 00039936 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\TMonitorAPI.dll
2015-05-17 15:53 - 2014-12-04 15:18 - 00241152 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\MExplorer.dll
2011-07-07 14:54 - 2011-07-07 14:54 - 00233984 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\Report.dll
2015-05-17 15:53 - 2013-05-20 12:58 - 00620718 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\sqlite3.dll
2015-03-23 19:19 - 2015-03-23 19:19 - 02620416 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\libxt.dll
2015-05-17 15:53 - 2010-01-11 16:44 - 00053248 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\VObject.dll
2015-04-10 11:26 - 2015-04-10 11:26 - 00669696 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\PhoneUpdate.dll
2015-05-26 15:44 - 2015-05-22 22:22 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\libglesv2.dll
2015-05-26 15:44 - 2015-05-22 22:22 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\libegl.dll
2015-02-26 18:07 - 2015-02-09 17:14 - 01905904 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Restore\STRestoreAPI.dll
2014-10-25 21:56 - 2012-11-25 23:19 - 01153384 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Restore\libxml2.dll
2015-02-26 18:07 - 2014-02-18 20:12 - 00117568 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Restore\zlib1.dll
2015-05-26 15:44 - 2015-05-22 22:22 - 14982472 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\PepperFlash\pepflashplayer.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\Gundalf\OneDrive:ms-properties
==================== Safe Mode (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1756320144-211604295-3851700641-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Gundalf\AppData\Roaming\Mozilla\Firefox\Tapeta pulpitu.bmp
DNS Servers: 192.168.1.1
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1756320144-211604295-3851700641-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{E741D9E8-2EE2-488E-9469-567741A5DBF9}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{9599D312-59B9-4901-A727-92B169A64276}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD Cinema\PowerDVDCinema12.exe
FirewallRules: [{B7DE9CAE-2C6F-4E91-9C5B-FB5952071FC7}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{6FC3020F-619F-4AF8-B1AD-C70EA3FE49BA}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{58EA7500-01CB-42D9-A5B2-83B862D7D35C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{360151F5-D279-45F5-BEA0-F44B77CA37F8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{B2746050-BA29-4C05-BB8E-F5DA207F58CF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{4F164D50-855D-4410-B841-F545D4987DB4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{76A77FBB-1059-4ADF-A2B8-C0495471D723}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{8B45CA63-8DBF-43A3-9D7F-1710643411B5}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{BF4DD167-1310-41BC-B86A-DA64CBE40D53}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{F1252D3A-58FC-48D0-A425-0EC2857378C2}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{6F53DB82-FB7E-49A4-B0B2-8EEDC5A134FA}] => (Allow) C:\Program Files (x86)\CDP Games\The Witcher 2 Enhanced Edition\Launcher.exe
FirewallRules: [{F6EB9FA9-C648-4684-A6AE-8199AC64E1F6}] => (Allow) C:\Program Files (x86)\CDP Games\The Witcher 2 Enhanced Edition\bin\witcher2.exe
FirewallRules: [TCP Query User{CFF29C2F-0D52-4862-B74B-DFC5DF430E94}C:\program files (x86)\digipen\nitronic rush\nitronicrush.exe] => (Block) C:\program files (x86)\digipen\nitronic rush\nitronicrush.exe
FirewallRules: [UDP Query User{C19B93CE-0FAF-4763-8F37-C7EF65C2FBA7}C:\program files (x86)\digipen\nitronic rush\nitronicrush.exe] => (Block) C:\program files (x86)\digipen\nitronic rush\nitronicrush.exe
FirewallRules: [{748A9A28-C4F0-490A-8543-D8745A882261}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{BDB18FD6-8451-4908-A99D-625685C18E9A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{90C2DCAE-D456-489E-B447-65C911A6CC89}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{AD1B0060-5B28-4837-A520-F8A827B8B83E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [TCP Query User{919904BD-87E0-4304-B6AE-5342AF936659}C:\program files (x86)\nival interactive\etherlords ii\etherlords2.exe] => (Block) C:\program files (x86)\nival interactive\etherlords ii\etherlords2.exe
FirewallRules: [UDP Query User{1810D1C2-514E-4775-87A6-A9AF275C7E3B}C:\program files (x86)\nival interactive\etherlords ii\etherlords2.exe] => (Block) C:\program files (x86)\nival interactive\etherlords ii\etherlords2.exe
FirewallRules: [TCP Query User{3CC5C37D-487D-4475-B95D-C9AADD08E5BE}C:\users\gundalf\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\gundalf\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{E49F709D-00C0-4E83-A218-254D5F197FFF}C:\users\gundalf\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\gundalf\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{17B8253C-8B49-4DED-B975-7B0A324F5467}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{276737E0-8E19-43C1-B5F0-74499434EDAE}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{D2F3EBFC-9FD1-4426-B26B-234211FFF7B8}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{F0E430B5-0B68-4A56-AD26-D02AD64F11AD}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [TCP Query User{AFE3517B-A310-4B10-989E-21DCF37CA500}C:\program files (x86)\tmnationsforever\tmforever.exe] => (Allow) C:\program files (x86)\tmnationsforever\tmforever.exe
FirewallRules: [UDP Query User{664C26C8-EF65-4896-812A-53D3657352DC}C:\program files (x86)\tmnationsforever\tmforever.exe] => (Allow) C:\program files (x86)\tmnationsforever\tmforever.exe
FirewallRules: [{8B3CA2A8-CF5C-446A-94F9-9D3CA9941910}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{8AB74E80-CD98-4D8F-BC98-8DD216583F78}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{2211D2E8-EA91-4A63-8AD7-259047191E2B}] => (Allow) C:\Program Files (x86)\GameforgeLive\Games\POL_pol\Elsword\data\x2.exe
FirewallRules: [{EB52CFD8-E366-473F-8037-59EF38DF2EFA}] => (Allow) C:\Program Files (x86)\GameforgeLive\Games\POL_pol\Elsword\data\x2.exe
FirewallRules: [{836DD496-8F15-4CE6-B426-2B061D258560}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{AAAF44FF-6406-4302-8CA4-B33F7561649F}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{78282A08-9A94-4E9E-B2D3-A9BB95A3E124}] => (Allow) C:\Program Files (x86)\GameforgeLive\gfl_client.exe
FirewallRules: [{235A42F6-2731-4AF8-AC1B-C448AB7477D0}] => (Allow) C:\Users\Gundalf\AppData\Local\Warframe\Downloaded\Public\Warframe.exe
FirewallRules: [{2C356FA8-2EC8-4EE2-A6C1-A5CFC5B80FDD}] => (Allow) C:\Users\Gundalf\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe
FirewallRules: [{26076EA7-51CA-4448-A0EE-9B6AE469C543}] => (Allow) C:\Users\Gundalf\AppData\Local\Warframe\Downloaded\Public\Warframe.exe
FirewallRules: [{DA29BB32-CE4D-4309-8898-C6FEC0C96F6D}] => (Allow) C:\Users\Gundalf\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe
FirewallRules: [{DAD970A6-9FB7-4C01-8D53-3281CF794924}] => (Allow) C:\Users\Gundalf\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe
FirewallRules: [{6DF16AB7-E82B-4324-9BDC-7E4A837096E2}] => (Allow) C:\Users\Gundalf\AppData\Local\Warframe\Downloaded\Public\Tools\RemoteCrashSender.exe
FirewallRules: [{AE48C065-F70E-4AA7-B689-99171577DCC4}] => (Allow) C:\Users\Gundalf\AppData\Local\Warframe\Downloaded\Public\Warframe.exe
FirewallRules: [{A3DB0D19-DAD1-4DD1-A79F-A45171126B31}] => (Allow) C:\Users\Gundalf\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe
FirewallRules: [{5A59D631-B2FA-427A-B23C-BD30724AD083}] => (Allow) C:\Users\Gundalf\AppData\Local\Warframe\Downloaded\Public\Warframe.exe
FirewallRules: [{57CEDDF2-474D-4167-B3CD-B8B27D5BFA60}] => (Allow) C:\Users\Gundalf\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe
FirewallRules: [{55DD6D1A-C44C-4124-BE31-6EEAB3FB625C}] => (Allow) C:\Users\Gundalf\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe
FirewallRules: [{D41D9C5D-0E2C-4AE3-8070-FECFDF81669C}] => (Allow) C:\Users\Gundalf\AppData\Local\Warframe\Downloaded\Public\Tools\RemoteCrashSender.exe
FirewallRules: [{15376DBF-300F-4846-9022-88B4AEE6EF8A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (06/12/2015 08:43:01 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program Hearthstone.exe w wersji 2.6.0.8834 przestał współpracować z systemem Windows i został zamknięty. Aby sprawdzić, czy jest dostępnych więcej informacji na temat tego problemu, sprawdź historię problemu w aplecie Centrum akcji w Panelu sterowania.
Identyfikator procesu: 1270
Godzina rozpoczęcia: 01d0a53adce93384
Godzina zakończenia: 4294967295
Ścieżka aplikacji: C:\Program Files (x86)\Hearthstone\Hearthstone.exe
Identyfikator raportu: d85394ce-1132-11e5-8272-4cbb5836a653
Pełna nazwa pakietu powodującego błąd:
Identyfikator aplikacji względem pakietu powodującego błąd:
Error: (06/12/2015 04:46:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: wwahost.exe, wersja: 6.3.9600.17415, sygnatura czasowa: 0x5450355f
Nazwa modułu powodującego błąd: LibWrap.dll, wersja: 3.1.0.1007, sygnatura czasowa: 0x54582519
Kod wyjątku: 0xc0000005
Przesunięcie błędu: 0x009a4912
Identyfikator procesu powodującego błąd: 0x1378
Godzina uruchomienia aplikacji powodującej błąd: 0xwwahost.exe0
Ścieżka aplikacji powodującej błąd: wwahost.exe1
Ścieżka modułu powodującego błąd: wwahost.exe2
Identyfikator raportu: wwahost.exe3
Pełna nazwa pakietu powodującego błąd: wwahost.exe4
Identyfikator aplikacji względem pakietu powodującego błąd: wwahost.exe5
Error: (06/12/2015 03:40:29 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: AGULI)
Description: Aktywacja aplikacji microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 nie powiodła się. Błąd: -2147023170. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa.
Error: (06/12/2015 03:40:29 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: AGULI)
Description: Aktywacja aplikacji microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 nie powiodła się. Błąd: -2147023170. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa.
Error: (06/12/2015 03:40:23 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe w wersji 17.5.9600.20856 przestał współpracować z systemem Windows i został zamknięty. Aby sprawdzić, czy jest dostępnych więcej informacji na temat tego problemu, sprawdź historię problemu w aplecie Centrum akcji w Panelu sterowania.
Identyfikator procesu: 12e0
Godzina rozpoczęcia: 01d0a47cdf7fc805
Godzina zakończenia: 4294967295
Ścieżka aplikacji: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exe
Identyfikator raportu: f901a901-10a3-11e5-8272-4cbb5836a653
Pełna nazwa pakietu powodującego błąd: microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe
Identyfikator aplikacji względem pakietu powodującego błąd: ppleae38af2e007f4358a809ac99a64a67c1
Error: (06/12/2015 03:40:12 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe w wersji 17.5.9600.20856 przestał współpracować z systemem Windows i został zamknięty. Aby sprawdzić, czy jest dostępnych więcej informacji na temat tego problemu, sprawdź historię problemu w aplecie Centrum akcji w Panelu sterowania.
Identyfikator procesu: 12e0
Godzina rozpoczęcia: 01d0a47cdf7fc805
Godzina zakończenia: 4294967295
Ścieżka aplikacji: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exe
Identyfikator raportu: 4a214e45-1089-11e5-8272-4cbb5836a653
Pełna nazwa pakietu powodującego błąd: microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe
Identyfikator aplikacji względem pakietu powodującego błąd: ppleae38af2e007f4358a809ac99a64a67c1
Error: (06/08/2015 06:58:45 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: AGULI)
Description: Aktywacja aplikacji microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 nie powiodła się. Błąd: -2147417836. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa.
Error: (06/08/2015 04:31:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: SystemSettings.exe, wersja: 6.3.9600.17489, sygnatura czasowa: 0x5465bbd5
Nazwa modułu powodującego błąd: Windows.UI.Xaml.dll, wersja: 6.3.9600.17415, sygnatura czasowa: 0x54504b1a
Kod wyjątku: 0xc000027b
Przesunięcie błędu: 0x00000000006d663b
Identyfikator procesu powodującego błąd: 0x3170
Godzina uruchomienia aplikacji powodującej błąd: 0xSystemSettings.exe0
Ścieżka aplikacji powodującej błąd: SystemSettings.exe1
Ścieżka modułu powodującego błąd: SystemSettings.exe2
Identyfikator raportu: SystemSettings.exe3
Pełna nazwa pakietu powodującego błąd: SystemSettings.exe4
Identyfikator aplikacji względem pakietu powodującego błąd: SystemSettings.exe5
Error: (06/06/2015 03:16:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: LiveComm.exe, wersja: 17.5.9600.20856, sygnatura czasowa: 0x554b9667
Nazwa modułu powodującego błąd: npggNT64.des_unloaded, wersja: 2014.12.4.1, sygnatura czasowa: 0x548016ce
Kod wyjątku: 0xc0000005
Przesunięcie błędu: 0x000000000000679f
Identyfikator procesu powodującego błąd: 0x1bbc
Godzina uruchomienia aplikacji powodującej błąd: 0xLiveComm.exe0
Ścieżka aplikacji powodującej błąd: LiveComm.exe1
Ścieżka modułu powodującego błąd: LiveComm.exe2
Identyfikator raportu: LiveComm.exe3
Pełna nazwa pakietu powodującego błąd: LiveComm.exe4
Identyfikator aplikacji względem pakietu powodującego błąd: LiveComm.exe5
Error: (06/06/2015 02:26:33 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe w wersji 17.5.9600.20856 przestał współpracować z systemem Windows i został zamknięty. Aby sprawdzić, czy jest dostępnych więcej informacji na temat tego problemu, sprawdź historię problemu w aplecie Centrum akcji w Panelu sterowania.
Identyfikator procesu: 25ec
Godzina rozpoczęcia: 01d0a04545063515
Godzina zakończenia: 4294967295
Ścieżka aplikacji: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exe
Identyfikator raportu: 424c2668-0c47-11e5-8272-4cbb5836a653
Pełna nazwa pakietu powodującego błąd: microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe
Identyfikator aplikacji względem pakietu powodującego błąd: ppleae38af2e007f4358a809ac99a64a67c1
System errors:
=============
Error: (06/07/2015 08:30:28 PM) (Source: BTHUSB) (EventID: 16) (User: )
Description: Uwierzytelnianie wzajemne między lokalnym adapterem Bluetooth a urządzeniem o adresie adaptera Bluetooth (00:1d:43:d0:f2:a3) nie powiodło się.
Error: (06/07/2015 08:06:39 AM) (Source: BTHUSB) (EventID: 16) (User: )
Description: Uwierzytelnianie wzajemne między lokalnym adapterem Bluetooth a urządzeniem o adresie adaptera Bluetooth (00:1d:43:d0:f2:a3) nie powiodło się.
Error: (06/05/2015 03:15:11 PM) (Source: DCOM) (EventID: 10010) (User: AGULI)
Description: {C58CA859-80BC-48DF-8F06-FFA94A405BFF}
Error: (06/05/2015 02:06:36 PM) (Source: DCOM) (EventID: 10010) (User: AGULI)
Description: Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mca
Error: (06/05/2015 01:46:26 PM) (Source: DCOM) (EventID: 10010) (User: ZARZĄDZANIE NT)
Description: {0823B6F8-F499-4D5E-B885-EA9CB4F43B24}
Error: (05/29/2015 05:20:38 PM) (Source: DCOM) (EventID: 10010) (User: AGULI)
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
Error: (05/29/2015 05:20:33 PM) (Source: DCOM) (EventID: 10010) (User: AGULI)
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
Error: (05/29/2015 05:20:33 PM) (Source: DCOM) (EventID: 10010) (User: AGULI)
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
Error: (05/29/2015 05:20:33 PM) (Source: DCOM) (EventID: 10010) (User: AGULI)
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
Error: (05/29/2015 05:20:33 PM) (Source: DCOM) (EventID: 10010) (User: AGULI)
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
Microsoft Office:
=========================
Error: (06/12/2015 08:43:01 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Hearthstone.exe2.6.0.8834127001d0a53adce933844294967295C:\Program Files (x86)\Hearthstone\Hearthstone.exed85394ce-1132-11e5-8272-4cbb5836a653
Error: (06/12/2015 04:46:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: wwahost.exe6.3.9600.174155450355fLibWrap.dll3.1.0.100754582519c0000005009a4912137801d09f91a3b0be06C:\Windows\syswow64\wwahost.exeC:\Program Files\WindowsApps\Microsoft.SkypeApp_3.1.0.1007_x86__kzf8qxf38zg5c\LibWrap.dllcd97fb4d-1111-11e5-8272-4cbb5836a653Microsoft.SkypeApp_3.1.0.1007_x86__kzf8qxf38zg5cApp
Error: (06/12/2015 03:40:29 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: AGULI)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1-2147023170
Error: (06/12/2015 03:40:29 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: AGULI)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1-2147023170
Error: (06/12/2015 03:40:23 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.2085612e001d0a47cdf7fc8054294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exef901a901-10a3-11e5-8272-4cbb5836a653microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1
Error: (06/12/2015 03:40:12 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.2085612e001d0a47cdf7fc8054294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exe4a214e45-1089-11e5-8272-4cbb5836a653microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1
Error: (06/08/2015 06:58:45 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: AGULI)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1-2147417836
Error: (06/08/2015 04:31:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: SystemSettings.exe6.3.9600.174895465bbd5Windows.UI.Xaml.dll6.3.9600.1741554504b1ac000027b00000000006d663b317001d0a084ef492fd9C:\Windows\ImmersiveControlPanel\SystemSettings.exeC:\Windows\System32\Windows.UI.Xaml.dll1e1eb234-0deb-11e5-8272-4cbb5836a653windows.immersivecontrolpanel_6.2.0.0_neutral_neutral_cw5n1h2txyewymicrosoft.windows.immersivecontrolpanel
Error: (06/06/2015 03:16:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: LiveComm.exe17.5.9600.20856554b9667npggNT64.des_unloaded2014.12.4.1548016cec0000005000000000000679f1bbc01d0a056088dace9C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exenpggNT64.des4348b62b-0c4e-11e5-8272-4cbb5836a653microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1
Error: (06/06/2015 02:26:33 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.2085625ec01d0a045450635154294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exe424c2668-0c47-11e5-8272-4cbb5836a653microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1
CodeIntegrity Errors:
===================================
Date: 2015-03-29 16:22:23.498
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
Processor: Intel® Core i5-4210U CPU @ 1.70GHz
Percentage of memory in use: 60%
Total physical RAM: 8095.82 MB
Available physical RAM: 3160.21 MB
Total Pagefile: 10397.23 MB
Available Pagefile: 3138.86 MB
Total Virtual: 131072 MB
Available Virtual: 131071.85 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:922.7 GB) (Free:804.83 GB) NTFS
Drive e: (ESP) (Fixed) (Total:0.48 GB) (Free:0.43 GB) FAT32
Drive x: (WINRETOOLS) (Fixed) (Total:0.73 GB) (Free:0.31 GB) NTFS
Drive y: (PBR Image) (Fixed) (Total:7.42 GB) (Free:0.73 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 50454DA7)
Partition: GPT Partition Type.
==================== End of log ============================
Edited by Hudferi, 13 June 2015 - 12:33 PM.