x-kom hosting

[Rozwiązany] Proszę o sprawdzenie logów

burzecg
utworzono
utworzono

Witam
Komputer ma 5 miesięcy a pracuje bardzo wolno, proszę więc o sprawdzenie logów.
OTL
[log]OTL Extras logfile created on: 2011-02-05 12:34:57 - Run 1
OTL by OldTimer - Version 3.2.20.6 Folder = D:\instalki\do usuwania wirusów
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 69,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 88,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 97,56 Gb Total Space | 30,38 Gb Free Space | 31,14% Space Free | Partition Type: NTFS
Drive D: | 292,97 Gb Total Space | 167,07 Gb Free Space | 57,02% Space Free | Partition Type: NTFS
Drive E: | 540,89 Gb Total Space | 251,57 Gb Free Space | 46,51% Space Free | Partition Type: NTFS
Drive K: | 5,04 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: BURZEC-EA2A1002 | User Name: Burzec | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: Off | File Age = 60 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe shdocvw.dll,OpenURL %l

[HKEY_USERS\S-1-5-21-329068152-1214440339-725345543-1003\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

[color=#E56717]========== Shell Spawning ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe shdocvw.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [ACDBrowse] -- "C:\Program Files\ACD Systems\ACDSee\7.0\ACDSee7.exe" "%1" (ACD Systems Ltd.)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[color=#E56717]========== Security Center Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 1
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[color=#E56717]========== System Restore Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

[color=#E56717]========== Authorized Applications List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Gadu-Gadu 10\gg.exe" = C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10 -- (GG Network S.A.)
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\Program Files\Ares\Ares.exe" = C:\Program Files\Ares\Ares.exe:*:Enabled:Ares p2p for windows -- (Ares Development Group)
"C:\Gry\Mafia 2\Steam.exe" = C:\Gry\Mafia 2\Steam.exe:*:Enabled:Steam
"C:\Gry\DiRT2\dirt2_game.exe" = C:\Gry\DiRT2\dirt2_game.exe:*:Enabled:DiRT2 -- (Codemasters)
"C:\Gry\Call of Duty - Black Ops\BlackOps.exe" = C:\Gry\Call of Duty - Black Ops\BlackOps.exe:*:Enabled:BlackOps
"C:\Gry\Need For Speed Hot Pursuit 2\Launcher.exe" = C:\Gry\Need For Speed Hot Pursuit 2\Launcher.exe:*:Enabled:Need for Speed(TM) Hot Pursuit -- (Electronic Arts)
"C:\Gry\Need For Speed Hot Pursuit 2\NFS11.exe" = C:\Gry\Need For Speed Hot Pursuit 2\NFS11.exe:*:Enabled:Need for Speed(TM) Hot Pursuit Application -- (Electronic Arts)
"C:\Gry\Call of Duty - World at War\CoDWaWmp.exe" = C:\Gry\Call of Duty - World at War\CoDWaWmp.exe:*:Enabled:Call of Duty(R) - World at War(TM) -- (Activision Blizzard, Inc.)
"C:\Gry\Call of Duty - World at War\CoDWaW.exe" = C:\Gry\Call of Duty - World at War\CoDWaW.exe:*:Enabled:Call of Duty(R) - World at War(TM) -- (Activision Blizzard, Inc.)
"C:\Gry\GTA 4\Grand Theft Auto IV\LaunchGTAIV.exe" = C:\Gry\GTA 4\Grand Theft Auto IV\LaunchGTAIV.exe:*:Enabled:Grand Theft Auto IV -- ()
"C:\Gry\GTA 4\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe" = C:\Gry\GTA 4\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:*:Enabled:Rockstar Games Social Club -- (Take-Two Interactive Software, Inc.)
"C:\Gry\GTA 4\Grand Theft Auto IV\GTAIV.exe" = C:\Gry\GTA 4\Grand Theft Auto IV\GTAIV.exe:*:Enabled:Grand Theft Auto IV -- (Take-Two Interactive Software, Inc.)
"C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)


[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}" = Microsoft Games for Windows - LIVE Redistributable
"{0297078F-D4C8-4774-B7A3-6BBF2C164C76}_is1" = Dirt 2 Spolszczenie by O22y
"{0468A4CF-069D-86B6-84BD-F8E4F86E2631}" = Catalyst Control Center Graphics Previews Common
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{08B3869E-D282-424C-9AFC-870E04A4BA14}" = Rockstar Games Social Club
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{25B9C7BE-5CFD-6173-D3E1-6E4C9EBD8658}" = Catalyst Control Center Graphics Light
"{26999308-FF96-5FBF-B2DB-12E66346FA3A}" = CCC Help German
"{26A24AE4-039D-4CA4-87B4-2F83216013FF}" = Java(TM) 6 Update 13
"{2927733E-A961-BA53-03C5-03774A081030}" = ccc-core-static
"{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}" = Microsoft Games for Windows - LIVE
"{30148775-0642-7507-58EA-3CDB7E828BA2}" = Catalyst Control Center Core Implementation
"{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{36CDA33B-909B-4719-97D1-C4B99309BDC7}" = ATI Parental Control & Encoder
"{3972209B-4946-9B49-1911-0AC122FB8073}" = CCC Help Russian
"{3DECD372-76A1-4483-BF10-B547790A3261}" = ON_OFF Charge B10.0427.1
"{43165058-0CD3-F336-0B4E-879A03DC8F50}" = Catalyst Control Center Graphics Full Existing
"{43F18082-D8A1-5A37-829D-CF1C4ED9ED2A}" = CCC Help Portuguese
"{4905D4CA-7295-F988-AE8A-B04675295133}" = CCC Help Thai
"{52D1D62C-FEAB-4580-849E-1DB624BADBBD}" = DiRT2
"{55A83F62-4CC7-8A5F-0FB0-FE55B53B3ED1}" = CCC Help Finnish
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{579BA58C-F33D-4970-9953-B94B43768AC3}" = Grand Theft Auto IV
"{5B31B7DD-ED2E-F515-C900-B2E91138A34F}" = ccc-core-preinstall
"{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}" = Skype™ 3.8
"{5DA6F06A-B389-407B-BF8C-1548767914D8}" = ATI Problem Report Wizard
"{5F032DC8-A020-D42E-F2E6-41C748A92A06}" = Catalyst Control Center Graphics Full New
"{618A812B-3099-8DB2-C8E4-95D15A7B7CD5}" = Catalyst Control Center HydraVision Full
"{6A7E75AF-C2C7-4B1E-FE46-E0979833D6D5}" = CCC Help Spanish
"{71AFFCBF-0864-C19D-0C07-5DF67BA0382D}" = CCC Help Turkish
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7748AC8C-18E3-43BB-959B-088FAEA16FB2}" = Nero StartSmart
"{7876AE8D-08D8-3A1C-A1F4-E7F255DDBBEA}" = ccc-utility
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83A606F5-BF6F-42ED-9F33-B9F74297CDED}" = Need for Speed(TM) Hot Pursuit
"{8425081E-FEFF-6E4B-408E-53345859896C}" = CCC Help English
"{8e9e9b88-2ebe-4e63-8456-0f405154a61b}" = Nero 9 Lite
"{90120000-0010-0415-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Polish) 12
"{90120000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2007
"{90120000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2007
"{90120000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2007
"{90120000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2007
"{90120000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2007
"{90120000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2007
"{90FE2C60-A4C3-D61D-790A-9493EE405AEA}" = CCC Help Swedish
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A2F991E7-DDCD-42B7-AFEC-47789A099FDC}" = Browser Configuration Utility
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A8BBAA6B-71BE-4AA2-A9DE-76BF38473E5F}" = ATI AVIVO Codecs
"{AC76BA86-7AD7-1045-7B44-A94000000001}" = Adobe Reader 9.4.1 - Polish
"{ADAA5D11-5D8F-31EC-1992-693239110308}" = CCC Help French
"{B21C00B6-2B53-BB00-B4FE-27316019A9C5}" = CCC Help Chinese Traditional
"{B2EC4A38-B545-4A00-8214-13FE0E915E6D}" = Advertising Center
"{BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}" = Nero ControlCenter
"{BD7CDF5A-315E-A085-CF42-921B37D7A507}" = CCC Help Hungarian
"{BE9269F2-562B-7BC7-9BE9-16EF8B52B403}" = Catalyst Control Center Localization All
"{BF243C52-D0D2-A777-D388-DFCCF00FFC23}" = CCC Help Dutch
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C151CE54-E7EA-4804-854B-F515368B0798}" = AMD Processor Driver
"{C7370250-3AA3-23F8-DE52-21701C911BBD}" = CCC Help Korean
"{C7DA1638-A3B9-0AF6-B1B3-5ACBC08E7204}" = CCC Help Polish
"{C81A2FE0-3574-00A9-CED4-BDAA334CBE8E}" = Nero Online Upgrade
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1" = Rapture3D 2.3.22 Game
"{D3B1C799-CB73-42DE-BA0F-2344793A095C}" = Catalyst Control Center - Branding
"{D472CC91-8FFC-B07C-F755-363498CF7724}" = CCC Help Danish
"{D68E33C8-F508-F069-FF15-59B2BF50B0D3}" = CCC Help Japanese
"{D80A6A73-E58A-4673-AFF5-F12D7110661F}" = Call of Duty(R) - World at War(TM)
"{E236A12C-FE29-49C4-C10C-F9AFF2EE8D39}" = CCC Help Chinese Standard
"{E8A80433-302B-4FF1-815D-FCC8EAC482FF}" = Nero Installer
"{ECE0113B-23D0-4DD8-89E6-D2F026CABF03}" = ACDSee 7.0
"{EFA83B92-06EA-D90D-1342-A7872D97B89F}" = CCC Help Italian
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F9835182-794B-4F24-902A-E2CA9D43380F}" = NVIDIA PhysX
"{FAFD1909-311F-2035-6C97-7151A3B485C5}" = CCC Help Greek
"{FD433CFA-5819-54FC-005C-140926CDBB6F}" = CCC Help Czech
"{FF97034A-E1FE-CC80-E5D4-549796B72E36}" = CCC Help Norwegian
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"All ATI Software" = Narzędzie Software Uninstall Utility firmy ATI
"Ares" = Ares 2.1.4
"ATI Display Driver" = ATI Display Driver
"avast5" = avast! Free Antivirus
"Enable S3 for USB Device" = Enable S3 for USB Device
"Gadu-Gadu 10" = Gadu-Gadu 10
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"InstallShield_{D80A6A73-E58A-4673-AFF5-F12D7110661F}" = Call of Duty(R) - World at War(TM)
"KLiteCodecPack_is1" = K-Lite Codec Pack 5.4.4 (Full)
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"NapiProjekt_is1" = NapiProjekt 1.0.6.9
"NVIDIA Drivers" = NVIDIA Drivers
"OpenAL" = OpenAL
"RealAlt_is1" = Real Alternative 1.8.0
"TotalCopy_1.2_(Luki_Edition)_English" = TotalCopy 1.2 (Luki Edition)
"uTorrent" = µTorrent
"WIC" = Windows Imaging Component
"Winamp" = Winamp
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = Archiwizator WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-21-329068152-1214440339-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"Winamp Detect" = Detektor Winampa

[color=#E56717]========== Last 10 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2011-01-08 12:35:31 | Computer Name = BURZEC-EA2A1002 | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca notepad.exe, wersja 5.1.2600.2180, moduł zawieszenia
hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2011-01-10 14:24:00 | Computer Name = BURZEC-EA2A1002 | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd bestpl~1.exe, wersja 2.1.0.263, moduł powodujący
błąd wmvdmod.dll, wersja 10.0.0.3802, adres błędu 0x00005dd9.

Error - 2011-01-10 14:24:38 | Computer Name = BURZEC-EA2A1002 | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd bestpl~1.exe, wersja 2.1.0.263, moduł powodujący
błąd wmvdmod.dll, wersja 10.0.0.3802, adres błędu 0x00005dd9.

Error - 2011-01-24 18:37:42 | Computer Name = BURZEC-EA2A1002 | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd explorer.exe, wersja 6.0.2900.2180, moduł
powodujący błąd shimgvw.dll, wersja 6.0.2900.5512, adres błędu 0x0000df56.

Error - 2011-01-24 18:37:49 | Computer Name = BURZEC-EA2A1002 | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd drwtsn32.exe, wersja 5.1.2600.0, moduł powodujący
błąd dbghelp.dll, wersja 5.1.2600.2180, adres błędu 0x0001295d.

[ System Events ]
Error - 2011-01-30 15:57:10 | Computer Name = BURZEC-EA2A1002 | Source = nvgts | ID = 262153
Description = Urządzenie \Device\Scsi\nvgts1 nie odpowiedziało w ramach ustalonego
limitu czasu.

Error - 2011-01-30 15:57:10 | Computer Name = BURZEC-EA2A1002 | Source = nvgts | ID = 262149
Description = Na \Device\Scsi\nvgts1 został wykryty błąd parzystości.


< End of report >[/log]

[log]OTL logfile created on: 2011-02-05 12:34:57 - Run 1
OTL by OldTimer - Version 3.2.20.6 Folder = D:\instalki\do usuwania wirusów
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 69,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 88,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 97,56 Gb Total Space | 30,38 Gb Free Space | 31,14% Space Free | Partition Type: NTFS
Drive D: | 292,97 Gb Total Space | 167,07 Gb Free Space | 57,02% Space Free | Partition Type: NTFS
Drive E: | 540,89 Gb Total Space | 251,57 Gb Free Space | 46,51% Space Free | Partition Type: NTFS
Drive K: | 5,04 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: BURZEC-EA2A1002 | User Name: Burzec | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: Off | File Age = 60 Days

[color=#E56717]========== Processes (All) ==========[/color]

PRC - [2011-02-05 12:31:06 | 000,602,624 | ---- | M] (OldTimer Tools) -- D:\instalki\do usuwania wirusów\OTL.exe
PRC - [2011-01-13 09:47:34 | 003,396,624 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2011-01-13 09:47:33 | 000,040,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2011-01-08 04:35:52 | 000,991,800 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Burzec\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
PRC - [2010-12-11 17:06:26 | 000,395,640 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\uTorrent\uTorrent.exe
PRC - [2010-10-22 15:35:28 | 000,152,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2009-10-15 13:06:46 | 000,223,464 | ---- | M] (DeviceVM, Inc.) -- C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
PRC - [2009-10-15 13:06:42 | 000,375,000 | ---- | M] (DeviceVM, Inc.) -- C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe
PRC - [2009-07-02 18:04:08 | 000,602,112 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe
PRC - [2008-04-14 22:51:52 | 000,218,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvse.exe
PRC - [2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe
PRC - [2008-04-14 22:51:50 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapsrv.exe
PRC - [2008-04-14 22:51:44 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe
PRC - [2008-04-14 22:51:44 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH]
PRC - [2008-04-14 22:51:40 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe
PRC - [2008-04-14 22:51:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe
PRC - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008-04-14 22:51:12 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe
PRC - [2008-04-14 22:51:04 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe
PRC - [2007-05-28 17:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe


[color=#E56717]========== Modules (All) ==========[/color]

MOD - [2011-02-05 12:31:06 | 000,602,624 | ---- | M] (OldTimer Tools) -- D:\instalki\do usuwania wirusów\OTL.exe
MOD - [2011-01-13 09:47:35 | 000,189,728 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\snxhk.dll
MOD - [2008-04-14 22:51:58 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv
MOD - [2008-04-14 22:50:58 | 000,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll
MOD - [2008-04-14 22:50:58 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll
MOD - [2008-04-14 22:50:58 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll
MOD - [2008-04-14 22:50:58 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll
MOD - [2008-04-14 22:50:48 | 008,489,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll
MOD - [2008-04-14 22:50:48 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll
MOD - [2008-04-14 22:50:48 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll
MOD - [2008-04-14 22:50:46 | 001,287,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll
MOD - [2008-04-14 22:50:46 | 000,584,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll
MOD - [2008-04-14 22:50:46 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll
MOD - [2008-04-14 22:50:46 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll
MOD - [2008-04-14 22:50:46 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll
MOD - [2008-04-14 22:50:46 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll
MOD - [2008-04-14 22:50:40 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll
MOD - [2008-04-14 22:50:36 | 001,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll
MOD - [2008-04-14 22:50:32 | 000,285,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll
MOD - [2008-04-14 22:50:32 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll
MOD - [2008-04-14 22:50:16 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll
MOD - [2008-04-14 22:50:14 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll
MOD - [2008-04-14 22:50:12 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll
MOD - [2008-04-14 22:50:00 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll
MOD - [2008-04-14 22:49:16 | 000,714,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll
MOD - [2008-04-14 22:46:34 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
MOD - [2008-04-14 22:29:10 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - [2011-01-13 09:47:33 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2010-04-06 15:30:38 | 000,031,272 | ---- | M] () [On_Demand | Stopped] -- C:\WINDOWS\system32\AppleChargerSrv.exe -- (AppleChargerSrv)
SRV - [2009-10-15 13:06:46 | 000,223,464 | ---- | M] (DeviceVM, Inc.) [Auto | Running] -- C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe -- (BCUService)
SRV - [2007-05-28 17:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) [Auto | Running] -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - [2011-01-13 09:41:16 | 000,294,608 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011-01-13 09:40:16 | 000,047,440 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011-01-13 09:40:04 | 000,100,176 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011-01-13 09:37:30 | 000,023,632 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011-01-13 09:37:11 | 000,029,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011-01-13 09:37:09 | 000,017,744 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010-11-28 13:00:04 | 000,685,816 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010-04-30 09:56:24 | 006,032,928 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2010-04-27 10:56:44 | 000,019,496 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AppleCharger.sys -- (AppleCharger)
DRV - [2010-04-08 19:30:10 | 000,168,040 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvgts.sys -- (nvgts)
DRV - [2010-03-04 11:02:10 | 000,013,824 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2010-03-04 11:02:08 | 000,070,912 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2009-11-18 00:17:00 | 001,395,800 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)
DRV - [2009-11-18 00:16:00 | 001,691,480 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)
DRV - [2009-07-02 18:49:32 | 004,125,696 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2008-04-13 22:06:06 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2007-04-16 15:46:34 | 000,033,792 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdPPM.sys -- (AmdPPM)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-329068152-1214440339-725345543-1003\..\URLSearchHook: {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll (DeviceVM, Inc.)
IE - HKU\S-1-5-21-329068152-1214440339-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-329068152-1214440339-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "AutoConfigURL" = http://proxy.ilabs.pl/auto.pac



O1 HOSTS File: ([2001-10-26 16:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [BCU] C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe (DeviceVM, Inc.)
O4 - HKLM..\Run: [Resume copy] C:\WINDOWS\COPYFSTQ.EXE ()
O4 - HKU\S-1-5-21-329068152-1214440339-725345543-1003..\Run: [AlcoholAutomount] C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe (Alcohol Soft Development Team)
O4 - HKU\S-1-5-21-329068152-1214440339-725345543-1003..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-329068152-1214440339-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010-10-22 14:13:04 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2011-01-10 20:52:10 | 000,038,522 | ---- | M] () - C:\AutoMapaSetupLog.txt -- [ NTFS ]
O32 - AutoRun File - [2009-12-31 14:58:42 | 000,000,044 | R--- | M] () - K:\autorun.inf -- [ CDFS ]
O33 - MountPoints2\{eefe3276-ddeb-11df-a018-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{eefe3276-ddeb-11df-a018-806d6172696f}\Shell\AutoRun\command - "" = F:\Run.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

MsConfig - StartUpReg: [b]Adobe ARM[/b] - hkey= - key= - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
MsConfig - StartUpReg: [b]Adobe Reader Speed Launcher[/b] - hkey= - key= - C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
MsConfig - StartUpReg: [b]ares[/b] - hkey= - key= - C:\Program Files\Ares\Ares.exe (Ares Development Group)
MsConfig - StartUpReg: [b]BCU[/b] - hkey= - key= - C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe (DeviceVM, Inc.)
MsConfig - StartUpReg: [b]CTFMON.EXE[/b] - hkey= - key= - File not found
MsConfig - StartUpReg: [b]Google Update[/b] - hkey= - key= - C:\Documents and Settings\Burzec\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe (Google Inc.)
MsConfig - StartUpReg: [b]RTHDCPL[/b] - hkey= - key= - C:\WINDOWS\RTHDCPL.EXE (Realtek Semiconductor Corp.)
MsConfig - StartUpReg: [b]StartCCC[/b] - hkey= - key= - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
MsConfig - StartUpReg: [b]SunJavaUpdateSched[/b] - hkey= - key= - C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
MsConfig - State: "system.ini" - 0
MsConfig - State: "win.ini" - 0
MsConfig - State: "bootini" - 0
MsConfig - State: "services" - 0
MsConfig - State: "startup" - 2

SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vds - Service
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {1a3e09be-1e45-494b-9174-d7385b45bbf5} -
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

[color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color]

[2011-01-30 11:24:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Burzec\Moje dokumenty\Rockstar Games
[2011-01-25 18:08:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Burzec\Moje dokumenty\Alcohol 120%
[2011-01-24 23:40:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2011-01-24 23:34:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl
[2011-01-24 23:34:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2011-01-24 23:34:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl
[2011-01-24 23:33:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2011-01-24 23:31:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2011-01-24 23:29:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2011-01-24 23:24:54 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2011-01-24 17:39:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Rockstar Games
[2011-01-24 17:38:34 | 000,107,888 | ---- | C] (Sony DADC Austria AG.) -- C:\WINDOWS\System32\CmdLineExt.dll
[2011-01-23 13:33:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Burzec\Ustawienia lokalne\Dane aplikacji\Rockstar Games
[2011-01-23 13:30:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles
[2011-01-23 13:30:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\umdf
[2011-01-21 19:32:30 | 000,720,896 | ---- | C] (Indigo Rose Corporation) -- C:\WINDOWS\iun6002.exe
[2011-01-20 22:03:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Burzec\Moje dokumenty\Criterion Games
[2011-01-20 22:03:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Electronic Arts
[2011-01-20 22:03:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\EA Core
[2011-01-20 22:00:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Electronic Arts
[2011-01-20 21:45:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Solidshield
[2011-01-12 19:09:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Burzec\Ustawienia lokalne\Dane aplikacji\Identities
[2011-01-10 21:27:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Burzec\Ustawienia lokalne\Dane aplikacji\Activision
[2011-01-10 21:12:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Burzec\Pulpit\MUZYKA
[2011-01-10 21:01:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Burzec\Pulpit\Teledyski
[2011-01-06 19:00:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Burzec\Moje dokumenty\My Games
[2011-01-06 19:00:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Codemasters
[2011-01-06 19:00:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\microsoft
[2011-01-06 18:55:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Codemasters
[2011-01-06 18:55:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Blue Ripple Sound
[2011-01-06 18:55:50 | 000,872,448 | ---- | C] (Blue Ripple Sound Limited) -- C:\WINDOWS\System32\rapture3d_oal.dll
[2011-01-06 18:55:50 | 000,000,000 | ---D | C] -- C:\Program Files\BRS
[2011-01-06 18:55:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Microsoft Games for Windows - LIVE
[2011-01-06 18:55:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xlive
[2011-01-06 18:55:27 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Games for Windows - LIVE
[2011-01-06 18:55:14 | 000,445,016 | ---- | C] (Creative Labs) -- C:\WINDOWS\System32\wrap_oal.dll
[2011-01-06 18:55:14 | 000,000,000 | ---D | C] -- C:\Program Files\OpenAL
[2011-01-04 13:24:31 | 000,000,000 | ---D | C] -- C:\Gry
[2011-01-03 16:23:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Activision
[2011-01-03 16:06:43 | 000,000,000 | -HSD | C] -- C:\WINDOWS\ftpcache
[2010-12-28 21:24:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Burzec\Pulpit\Justyna
[2010-12-07 18:31:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Burzec\Moje dokumenty\Downloads
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 60 Days ==========[/color]

[2011-02-05 12:32:02 | 000,001,136 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-329068152-1214440339-725345543-1003UA.job
[2011-02-05 12:22:27 | 003,407,872 | -H-- | M] () -- C:\Documents and Settings\Burzec\NTUSER.DAT
[2011-02-05 11:54:32 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2011-02-05 11:54:26 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011-02-05 11:54:23 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011-02-05 11:54:22 | 000,219,120 | ---- | M] () -- C:\WINDOWS\System32\ativvaxx.cap
[2011-02-04 22:48:46 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\Burzec\ntuser.ini
[2011-02-04 21:29:27 | 000,072,192 | ---- | M] () -- C:\Documents and Settings\Burzec\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-02-04 16:32:00 | 000,001,084 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-329068152-1214440339-725345543-1003Core.job
[2011-02-04 12:42:35 | 000,013,813 | ---- | M] () -- C:\Documents and Settings\Burzec\Pulpit\sciaga na procesy.docx
[2011-02-04 12:37:53 | 000,025,528 | ---- | M] () -- C:\Documents and Settings\Burzec\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2011-01-29 19:12:53 | 006,421,146 | -H-- | M] () -- C:\Documents and Settings\Burzec\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2011-01-25 18:13:44 | 000,002,562 | ---- | M] () -- C:\WINDOWS\diagwrn.xml
[2011-01-25 18:13:44 | 000,001,908 | ---- | M] () -- C:\WINDOWS\diagerr.xml
[2011-01-24 23:39:31 | 000,146,016 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011-01-24 23:28:38 | 000,251,152 | RHS- | M] () -- C:\ntldr
[2011-01-24 17:53:07 | 000,107,888 | ---- | M] (Sony DADC Austria AG.) -- C:\WINDOWS\System32\CmdLineExt.dll
[2011-01-24 17:39:52 | 000,001,717 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Rockstar Games Social Club.lnk
[2011-01-24 16:59:26 | 000,002,259 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk
[2011-01-23 13:30:56 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011-01-23 13:30:49 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\umdf\MsftWdf_user_01_00_00.Wdf
[2011-01-23 12:59:06 | 000,001,423 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Call of Duty(R) - World at War(TM) Jeden gracz - Kooperacja.lnk
[2011-01-21 19:32:31 | 000,017,900 | ---- | M] () -- C:\WINDOWS\irunin.ini
[2011-01-21 19:32:23 | 000,720,896 | ---- | M] (Indigo Rose Corporation) -- C:\WINDOWS\iun6002.exe
[2011-01-21 19:32:23 | 000,015,938 | ---- | M] () -- C:\WINDOWS\irunin.lng
[2011-01-21 19:32:23 | 000,009,694 | ---- | M] () -- C:\WINDOWS\irunin.dat
[2011-01-21 19:32:23 | 000,008,134 | ---- | M] () -- C:\WINDOWS\irunin.bmp
[2011-01-20 22:00:50 | 000,001,692 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Need for Speed(TM) Hot Pursuit.lnk
[2011-01-16 13:13:58 | 000,002,658 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011-01-14 12:36:46 | 000,002,317 | ---- | M] () -- C:\Documents and Settings\Burzec\Pulpit\Google Chrome.lnk
[2011-01-13 09:47:35 | 000,038,848 | ---- | M] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011-01-13 09:47:32 | 000,188,216 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011-01-13 09:41:16 | 000,294,608 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011-01-13 09:40:16 | 000,047,440 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011-01-13 09:40:04 | 000,100,176 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011-01-13 09:39:50 | 000,094,544 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011-01-13 09:37:30 | 000,023,632 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011-01-13 09:37:11 | 000,029,392 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011-01-13 09:37:09 | 000,017,744 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011-01-08 16:30:30 | 000,000,636 | ---- | M] () -- C:\Documents and Settings\Burzec\Pulpit\Mafia2.lnk
[2011-01-06 18:55:58 | 000,001,386 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\DiRT2.lnk
[2011-01-06 18:55:14 | 000,445,016 | ---- | M] (Creative Labs) -- C:\WINDOWS\System32\wrap_oal.dll
[2011-01-04 13:35:16 | 000,000,725 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Phoenix.lnk
[2011-01-03 16:23:43 | 000,000,319 | ---- | M] () -- C:\WINDOWS\game.ini
[2010-12-08 18:57:23 | 000,064,065 | ---- | M] () -- C:\Documents and Settings\Burzec\Pulpit\1d94de05875d94fd297d9cb69b63695f.jpg
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2011-02-04 12:42:35 | 000,013,813 | ---- | C] () -- C:\Documents and Settings\Burzec\Pulpit\sciaga na procesy.docx
[2011-01-25 18:05:30 | 000,002,562 | ---- | C] () -- C:\WINDOWS\diagwrn.xml
[2011-01-25 18:05:30 | 000,001,908 | ---- | C] () -- C:\WINDOWS\diagerr.xml
[2011-01-24 23:34:16 | 000,693,932 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.chm
[2011-01-24 23:34:16 | 000,071,460 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.adm
[2011-01-24 23:34:16 | 000,027,965 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplay.chm
[2011-01-24 23:34:16 | 000,010,457 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.hta
[2011-01-24 23:34:16 | 000,001,771 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.css
[2011-01-24 23:34:16 | 000,001,714 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpocm.inf
[2011-01-24 23:34:16 | 000,000,420 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmploc.js
[2011-01-24 23:34:15 | 000,354,468 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud1.wav
[2011-01-24 23:34:15 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud7.wav
[2011-01-24 23:34:15 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud6.wav
[2011-01-24 23:34:15 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud9.wav
[2011-01-24 23:34:15 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud8.wav
[2011-01-24 23:34:15 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud3.wav
[2011-01-24 23:34:15 | 000,086,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud5.wav
[2011-01-24 23:34:15 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud4.wav
[2011-01-24 23:34:15 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud2.wav
[2011-01-24 23:34:15 | 000,058,350 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmp.inf
[2011-01-24 23:34:15 | 000,034,548 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmdm.inf
[2011-01-24 23:34:15 | 000,013,540 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmfsdk.inf
[2011-01-24 23:34:15 | 000,008,677 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm7.gif
[2011-01-24 23:34:15 | 000,007,892 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm9.gif
[2011-01-24 23:34:15 | 000,007,636 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm2.gif
[2011-01-24 23:34:15 | 000,007,369 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm4.gif
[2011-01-24 23:34:15 | 000,006,241 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm3.gif
[2011-01-24 23:34:15 | 000,006,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm6.gif
[2011-01-24 23:34:15 | 000,005,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm1.gif
[2011-01-24 23:34:15 | 000,004,193 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm8.gif
[2011-01-24 23:34:15 | 000,002,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm5.gif
[2011-01-24 23:34:14 | 000,572,557 | ---- | C] () -- C:\WINDOWS\System32\dllcache\rtuner.wmv
[2011-01-24 23:34:14 | 000,375,519 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nuskin.wmv
[2011-01-24 23:34:14 | 000,300,969 | ---- | C] () -- C:\WINDOWS\System32\dllcache\viz.wmv
[2011-01-24 23:34:14 | 000,089,253 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plyr_err.chm
[2011-01-24 23:34:14 | 000,066,160 | ---- | C] () -- C:\WINDOWS\System32\dllcache\revert.wmz
[2011-01-24 23:34:14 | 000,023,829 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tourbg.gif
[2011-01-24 23:34:14 | 000,022,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npds.zip
[2011-01-24 23:34:14 | 000,017,489 | ---- | C] () -- C:\WINDOWS\System32\dllcache\videobg.gif
[2011-01-24 23:34:14 | 000,005,290 | ---- | C] () -- C:\WINDOWS\System32\dllcache\vidsamp.gif
[2011-01-24 23:34:14 | 000,003,187 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tour.js
[2011-01-24 23:34:14 | 000,002,778 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogoh.gif
[2011-01-24 23:34:14 | 000,002,469 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplay.gif
[2011-01-24 23:34:14 | 000,002,450 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpause.gif
[2011-01-24 23:34:14 | 000,002,375 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplayh.gif
[2011-01-24 23:34:14 | 000,002,371 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpauseh.gif
[2011-01-24 23:34:14 | 000,001,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\skins.inf
[2011-01-24 23:34:14 | 000,001,482 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst6.wpl
[2011-01-24 23:34:14 | 000,001,479 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst5.wpl
[2011-01-24 23:34:14 | 000,001,474 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst3.wpl
[2011-01-24 23:34:14 | 000,001,471 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst12.wpl
[2011-01-24 23:34:14 | 000,001,463 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst4.wpl
[2011-01-24 23:34:14 | 000,001,398 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taon.gif
[2011-01-24 23:34:14 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taonh.gif
[2011-01-24 23:34:14 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoff.gif
[2011-01-24 23:34:14 | 000,001,367 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoffh.gif
[2011-01-24 23:34:14 | 000,001,262 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst1.wpl
[2011-01-24 23:34:14 | 000,001,148 | ---- | C] () -- C:\WINDOWS\System32\dllcache\snd.htm
[2011-01-24 23:34:14 | 000,001,046 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst7.wpl
[2011-01-24 23:34:14 | 000,001,046 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst2.wpl
[2011-01-24 23:34:14 | 000,001,041 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst8.wpl
[2011-01-24 23:34:14 | 000,000,825 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst11.wpl
[2011-01-24 23:34:14 | 000,000,822 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst10.wpl
[2011-01-24 23:34:14 | 000,000,808 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst13.wpl
[2011-01-24 23:34:14 | 000,000,792 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst14.wpl
[2011-01-24 23:34:14 | 000,000,786 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst9.wpl
[2011-01-24 23:34:14 | 000,000,738 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst15.wpl
[2011-01-24 23:34:14 | 000,000,403 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npdrmv2.zip
[2011-01-24 23:34:13 | 000,457,607 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mdlib.wmv
[2011-01-24 23:34:13 | 000,381,425 | ---- | C] () -- C:\WINDOWS\System32\dllcache\copycd.wmv
[2011-01-24 23:34:13 | 000,184,137 | ---- | C] () -- C:\WINDOWS\System32\dllcache\compact.wmz
[2011-01-24 23:34:13 | 000,097,117 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.hlp
[2011-01-24 23:34:13 | 000,036,644 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.inf
[2011-01-24 23:34:13 | 000,009,585 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.css
[2011-01-24 23:34:13 | 000,008,298 | ---- | C] () -- C:\WINDOWS\System32\dllcache\contents.htm
[2011-01-24 23:34:13 | 000,006,878 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.js
[2011-01-24 23:34:13 | 000,005,971 | ---- | C] () -- C:\WINDOWS\System32\dllcache\events.js
[2011-01-24 23:34:13 | 000,002,545 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogo.gif
[2011-01-24 23:34:13 | 000,001,885 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.cnt
[2011-01-24 23:34:13 | 000,000,999 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bktrh.gif
[2011-01-24 23:34:13 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnth.gif
[2011-01-24 23:34:13 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnt.gif
[2011-01-24 23:34:13 | 000,000,772 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cntd.gif
[2011-01-24 23:34:13 | 000,000,760 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapph.gif
[2011-01-24 23:34:13 | 000,000,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapp.gif
[2011-01-24 23:29:04 | 000,129,045 | ---- | C] () -- C:\WINDOWS\System32\drivers\cxthsfs2.cty
[2011-01-24 23:29:04 | 000,064,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\ativmc20.cod
[2011-01-24 23:29:02 | 000,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img
[2011-01-24 17:39:52 | 000,001,717 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Rockstar Games Social Club.lnk
[2011-01-23 13:30:49 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\umdf\MsftWdf_user_01_00_00.Wdf
[2011-01-23 12:59:06 | 000,001,423 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Call of Duty(R) - World at War(TM) Jeden gracz - Kooperacja.lnk
[2011-01-21 19:32:30 | 000,017,900 | ---- | C] () -- C:\WINDOWS\irunin.ini
[2011-01-21 19:32:30 | 000,015,938 | ---- | C] () -- C:\WINDOWS\irunin.lng
[2011-01-21 19:32:30 | 000,009,694 | ---- | C] () -- C:\WINDOWS\irunin.dat
[2011-01-21 19:32:30 | 000,008,134 | ---- | C] () -- C:\WINDOWS\irunin.bmp
[2011-01-20 22:00:50 | 000,001,692 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Need for Speed(TM) Hot Pursuit.lnk
[2011-01-08 16:30:30 | 000,000,636 | ---- | C] () -- C:\Documents and Settings\Burzec\Pulpit\Mafia2.lnk
[2011-01-06 18:55:58 | 000,001,386 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\DiRT2.lnk
[2011-01-04 13:31:29 | 000,000,725 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Phoenix.lnk
[2011-01-03 16:23:43 | 000,000,319 | ---- | C] () -- C:\WINDOWS\game.ini
[2010-12-08 18:57:27 | 000,064,065 | ---- | C] () -- C:\Documents and Settings\Burzec\Pulpit\1d94de05875d94fd297d9cb69b63695f.jpg
[2010-11-28 13:00:04 | 000,685,816 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010-10-22 15:59:49 | 001,087,636 | ---- | C] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-10-22 15:59:48 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010-10-22 15:59:18 | 000,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini
[2010-10-22 15:16:15 | 000,178,176 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010-10-22 15:16:14 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2010-10-22 15:16:10 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010-10-22 15:16:10 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010-10-22 15:16:09 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010-10-22 15:16:09 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2010-10-22 14:47:41 | 000,019,496 | ---- | C] () -- C:\WINDOWS\System32\drivers\AppleCharger.sys
[2010-10-22 14:37:14 | 000,231,864 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2010-10-22 14:30:31 | 000,000,010 | ---- | C] () -- C:\WINDOWS\GSetup.ini
[2010-10-22 14:29:26 | 006,421,146 | -H-- | C] () -- C:\Documents and Settings\Burzec\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2010-10-22 14:24:25 | 000,072,192 | ---- | C] () -- C:\Documents and Settings\Burzec\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-10-22 14:23:38 | 000,025,528 | ---- | C] () -- C:\Documents and Settings\Burzec\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2010-10-22 14:21:51 | 000,000,062 | -HS- | C] () -- C:\Documents and Settings\Burzec\Dane aplikacji\desktop.ini
[2010-10-22 14:13:04 | 000,000,000 | ---- | C] () -- C:\WINDOWS\control.ini
[2010-10-22 14:10:06 | 000,000,037 | ---- | C] () -- C:\WINDOWS\vbaddin.ini
[2010-10-22 14:10:06 | 000,000,036 | ---- | C] () -- C:\WINDOWS\vb.ini
[2010-10-22 14:09:23 | 000,026,717 | ---- | C] () -- C:\WINDOWS\System32\tslabels.ini
[2010-10-22 14:09:22 | 000,003,813 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.ini
[2009-11-06 10:58:04 | 000,178,975 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2004-08-03 23:44:10 | 000,270,848 | ---- | C] () -- C:\WINDOWS\System32\sbe.dll
[2004-08-03 23:44:04 | 000,014,336 | ---- | C] () -- C:\WINDOWS\System32\msdmo.dll
[2004-08-03 23:43:58 | 000,186,880 | ---- | C] () -- C:\WINDOWS\System32\encdec.dll
[2004-08-03 23:43:56 | 000,253,440 | ---- | C] () -- C:\WINDOWS\System32\compatui.dll
[2004-08-03 23:43:54 | 000,070,656 | ---- | C] () -- C:\WINDOWS\System32\amstream.dll
[2004-08-03 23:43:16 | 000,733,696 | ---- | C] () -- C:\WINDOWS\System32\qedwipes.dll
[2004-08-03 21:46:56 | 000,042,537 | ---- | C] () -- C:\WINDOWS\System32\keyboard.sys
[2004-08-03 21:45:34 | 000,033,936 | ---- | C] () -- C:\WINDOWS\System32\ntio.sys
[2004-08-03 21:45:16 | 000,035,424 | ---- | C] () -- C:\WINDOWS\System32\ntio412.sys
[2004-08-03 21:45:16 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio404.sys
[2004-08-03 21:45:14 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio804.sys
[2004-08-03 21:45:12 | 000,035,648 | ---- | C] () -- C:\WINDOWS\System32\ntio411.sys
[2004-07-17 10:46:14 | 000,053,478 | ---- | C] () -- C:\WINDOWS\System32\tcpmon.ini
[2004-07-17 10:34:48 | 000,355,112 | ---- | C] () -- C:\WINDOWS\System32\msjetoledb40.dll
[2002-05-04 12:04:45 | 000,094,636 | ---- | C] () -- C:\WINDOWS\dropcpyr.dll
[2001-10-26 18:29:42 | 000,157,696 | ---- | C] () -- C:\WINDOWS\System32\paqsp.dll
[2001-10-26 18:29:40 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\scriptpw.dll
[2001-10-26 18:29:32 | 000,199,168 | ---- | C] () -- C:\WINDOWS\System32\ir32_32.dll
[2001-10-26 18:28:34 | 000,094,282 | ---- | C] () -- C:\WINDOWS\System32\msencode.dll
[2001-10-26 18:27:02 | 000,015,360 | ---- | C] () -- C:\WINDOWS\System32\tsd32.dll
[2001-10-26 17:15:04 | 000,027,898 | ---- | C] () -- C:\WINDOWS\System32\ntdos.sys
[2001-10-26 17:14:52 | 000,004,976 | ---- | C] () -- C:\WINDOWS\System32\himem.sys
[2001-10-26 17:14:32 | 000,009,043 | ---- | C] () -- C:\WINDOWS\System32\ansi.sys
[2001-10-26 17:12:52 | 000,000,359 | ---- | C] () -- C:\WINDOWS\System32\prodspec.ini
[2001-10-26 16:45:26 | 000,016,024 | ---- | C] () -- C:\WINDOWS\System32\rsvp.ini
[2001-10-26 16:45:26 | 000,006,074 | ---- | C] () -- C:\WINDOWS\System32\rasctrs.ini
[2001-10-26 16:45:24 | 000,013,819 | ---- | C] () -- C:\WINDOWS\System32\pschdprf.ini
[2001-10-26 16:42:08 | 000,020,629 | ---- | C] () -- C:\WINDOWS\System32\mqperf.ini
[2001-10-26 16:42:08 | 000,002,992 | ---- | C] () -- C:\WINDOWS\System32\perfci.ini
[2001-10-26 16:42:08 | 000,002,890 | ---- | C] () -- C:\WINDOWS\System32\perfwci.ini
[2001-10-26 16:42:08 | 000,001,295 | ---- | C] () -- C:\WINDOWS\System32\perffilt.ini
[2001-08-17 22:31:56 | 000,042,809 | ---- | C] () -- C:\WINDOWS\System32\key01.sys
[2001-08-17 22:31:56 | 000,027,097 | ---- | C] () -- C:\WINDOWS\System32\country.sys
[2001-08-17 22:31:50 | 000,029,274 | ---- | C] () -- C:\WINDOWS\System32\ntdos412.sys
[2001-08-17 22:31:46 | 000,029,370 | ---- | C] () -- C:\WINDOWS\System32\ntdos411.sys
[2001-08-17 22:31:46 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos404.sys
[2001-08-17 22:31:44 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos804.sys
[2001-08-17 22:13:24 | 000,002,656 | ---- | C] () -- C:\WINDOWS\System32\netware.drv
[2001-08-17 20:55:06 | 001,015,477 | ---- | C] () -- C:\WINDOWS\System32\esentprf.ini
[2001-07-22 03:25:18 | 000,001,405 | ---- | C] () -- C:\WINDOWS\msdfmap.ini
[2001-07-21 23:16:20 | 000,000,477 | ---- | C] () -- C:\WINDOWS\win.ini
[2001-07-21 23:15:52 | 000,000,227 | ---- | C] () -- C:\WINDOWS\system.ini
[2001-07-21 23:15:50 | 000,013,312 | ---- | C] () -- C:\WINDOWS\System32\win87em.dll

[color=#E56717]========== LOP Check ==========[/color]

[2010-12-01 19:03:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ACD Systems
[2010-10-22 14:58:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software
[2011-01-06 19:00:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Codemasters
[2011-01-20 22:03:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\EA Core
[2011-01-20 22:03:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Electronic Arts
[2010-10-22 15:05:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2011-01-20 21:45:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Solidshield
[2010-12-01 19:04:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Burzec\Dane aplikacji\ACD Systems
[2010-10-22 15:37:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Burzec\Dane aplikacji\BESTplayer
[2011-02-01 22:30:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Burzec\Dane aplikacji\Gadu-Gadu 10
[2011-02-05 12:36:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Burzec\Dane aplikacji\uTorrent

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Custom Scans ==========[/color]


[color=#A23BEC]< %systemdrive%\*.* >[/color]
[2010-10-22 14:13:04 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2011-01-10 20:52:10 | 000,038,522 | ---- | M] () -- C:\AutoMapaSetupLog.txt
[2010-10-22 15:42:10 | 000,000,223 | RHS- | M] () -- C:\boot.ini
[2001-07-21 23:13:54 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin
[2010-10-22 14:13:04 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010-10-22 14:47:44 | 000,000,180 | ---- | M] () -- C:\csb.log
[2010-10-22 14:38:44 | 000,000,086 | ---- | M] () -- C:\Install.log
[2010-10-22 14:13:04 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010-10-22 14:13:04 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2004-08-03 21:38:34 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2011-01-24 23:28:38 | 000,251,152 | RHS- | M] () -- C:\ntldr
[2011-02-05 11:54:19 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys
[2010-10-22 14:40:05 | 000,002,076 | ---- | M] () -- C:\RHDSetup.log


[color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
[2004-08-03 23:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:agp440.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:agp440.sys
[2008-04-14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008-04-14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys

[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2004-08-03 23:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004-08-03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2004-08-03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0000\DriverFiles\i386\atapi.sys

[color=#A23BEC]< MD5 for: BEEP.SYS >[/color]
[2001-08-17 22:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys
[2001-08-17 22:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys

[color=#A23BEC]< MD5 for: CDROM.SYS >[/color]
[2004-08-03 23:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008-04-14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008-04-14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2004-08-03 21:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys

[color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color]
[2004-08-03 23:43:58 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=05684DE2DA55A04C8AAAB5911AFE7643 -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll
[2008-04-14 22:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008-04-14 22:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\eventlog.dll

[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]
[2008-04-14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008-04-14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2004-08-03 22:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2004-08-03 23:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\winlogon.exe

< End of report >[/log]
RSIT

[log]info.txt logfile of random's system information tool 1.08 2011-02-05 12:50:01

======Uninstall list======

-->MsiExec /X{F9835182-794B-4F24-902A-E2CA9D43380F}
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
µTorrent-->"C:\Program Files\uTorrent\uTorrent.exe" /UNINSTALL
ACDSee 7.0-->MsiExec.exe /I{ECE0113B-23D0-4DD8-89E6-D2F026CABF03}
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10l_Plugin.exe -maintain plugin
Adobe Reader 9.4.1 - Polish-->MsiExec.exe /I{AC76BA86-7AD7-1045-7B44-A94000000001}
Advertising Center-->MsiExec.exe /X{B2EC4A38-B545-4A00-8214-13FE0E915E6D}
AMD Processor Driver-->C:\Program Files\InstallShield Installation Information\{C151CE54-E7EA-4804-854B-F515368B0798}\setup.exe -runfromtemp -l0x0015 -removeonly
Archiwizator WinRAR-->C:\Program Files\WinRAR\uninstall.exe
Ares 2.1.4-->"C:\Program Files\Ares\uninstall.exe"
ATI AVIVO Codecs-->MsiExec.exe /I{A8BBAA6B-71BE-4AA2-A9DE-76BF38473E5F}
ATI Catalyst Control Center-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{055EE59D-217B-43A7-ABFF-507B966405D8}\setup.exe" -l0x0
ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
ATI Parental Control & Encoder-->MsiExec.exe /I{36CDA33B-909B-4719-97D1-C4B99309BDC7}
ATI Problem Report Wizard-->MsiExec.exe /X{5DA6F06A-B389-407B-BF8C-1548767914D8}
avast! Free Antivirus-->C:\Program Files\Alwil Software\Avast5\aswRunDll.exe "C:\Program Files\Alwil Software\Avast5\Setup\setiface.dll" RunSetup
Browser Configuration Utility-->MsiExec.exe /X{A2F991E7-DDCD-42B7-AFEC-47789A099FDC}
Call of Duty(R) - World at War(TM)-->C:\Program Files\InstallShield Installation Information\{D80A6A73-E58A-4673-AFF5-F12D7110661F}\setup.exe -runfromtemp -l0x0415
Catalyst Control Center - Branding-->MsiExec.exe /I{D3B1C799-CB73-42DE-BA0F-2344793A095C}
Dirt 2 Spolszczenie by O22y-->"C:\Gry\DiRT2\unins000.exe"
DiRT2-->"C:\Program Files\InstallShield Installation Information\{52D1D62C-FEAB-4580-849E-1DB624BADBBD}\setup.exe" -runfromtemp -l0x0009 -removeonly
Enable S3 for USB Device-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Gigabyte\Enable S3 for USB Device\Uninst.isu"
Gadu-Gadu 10-->C:\Program Files\Gadu-Gadu 10\Uninstall.exe
Grand Theft Auto IV-->"C:\Program Files\InstallShield Installation Information\{579BA58C-F33D-4970-9953-B94B43768AC3}\setup.exe" -runfromtemp -l0x0009 -removeonly
High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Java(TM) 6 Update 13-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216013FF}
K-Lite Codec Pack 5.4.4 (Full)-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Games for Windows - LIVE Redistributable-->MsiExec.exe /X{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}
Microsoft Games for Windows - LIVE-->MsiExec.exe /X{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}
Microsoft Office Excel MUI (Polish) 2007-->MsiExec.exe /X{90120000-0016-0415-0000-0000000FF1CE}
Microsoft Office Home and Student 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall HOMESTUDENTR /dll OSETUP.DLL
Microsoft Office Home and Student 2007-->MsiExec.exe /X{91120000-002F-0000-0000-0000000FF1CE}
Microsoft Office OneNote MUI (Polish) 2007-->MsiExec.exe /X{90120000-00A1-0415-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (Polish) 2007-->MsiExec.exe /X{90120000-0018-0415-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Polish) 2007-->MsiExec.exe /X{90120000-001F-0415-0000-0000000FF1CE}
Microsoft Office Proofing (Polish) 2007-->MsiExec.exe /X{90120000-002C-0415-0000-0000000FF1CE}
Microsoft Office Shared MUI (Polish) 2007-->MsiExec.exe /X{90120000-006E-0415-0000-0000000FF1CE}
Microsoft Office Word MUI (Polish) 2007-->MsiExec.exe /X{90120000-001B-0415-0000-0000000FF1CE}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
MSXML 6.0 Parser (KB933579)-->MsiExec.exe /I{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}
NapiProjekt 1.0.6.9-->"C:\Program Files\NAPI-PROJEKT\unins000.exe"
Narzędzie Software Uninstall Utility firmy ATI-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe
Need for Speed(TM) Hot Pursuit-->MsiExec.exe /X{83A606F5-BF6F-42ED-9F33-B9F74297CDED}
Nero 9 Lite-->C:\Program Files\Common Files\Nero\Nero ProductInstaller 4\SetupX.exe REMOVESERIALNUMBER="XM2C-50A9-HH4M-0ZM8-4X06-9P25-5A46-618P-AH19-6647"
Nero ControlCenter-->MsiExec.exe /X{BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}
Nero Installer-->MsiExec.exe /X{E8A80433-302B-4FF1-815D-FCC8EAC482FF}
Nero Online Upgrade-->MsiExec.exe /X{C81A2FE0-3574-00A9-CED4-BDAA334CBE8E}
Nero StartSmart-->MsiExec.exe /X{7748AC8C-18E3-43BB-959B-088FAEA16FB2}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
NVIDIA Drivers-->C:\Program Files\NVIDIA Corporation\Uninstall\nvuninst.exe UninstallGUI
NVIDIA PhysX-->MsiExec.exe /X{F9835182-794B-4F24-902A-E2CA9D43380F}
ON_OFF Charge B10.0427.1-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3DECD372-76A1-4483-BF10-B547790A3261}\setup.exe" -l0x9 -removeonly
OpenAL-->"C:\Program Files\OpenAL\OpenALwEAX.exe" /U
Rapture3D 2.3.22 Game-->"C:\Program Files\BRS\unins000.exe"
Real Alternative 1.8.0-->"C:\Program Files\Real Alternative\unins000.exe"
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\SETUP.EXE" -l0x15 -removeonly
Rockstar Games Social Club-->"C:\Program Files\InstallShield Installation Information\{08B3869E-D282-424C-9AFC-870E04A4BA14}\setup.exe" -runfromtemp -l0x0009 -removeonly
Skype™ 3.8-->MsiExec.exe /X{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}
TotalCopy 1.2 (Luki Edition)-->C:\WINDOWS\iun6002.exe "C:\WINDOWS\irunin.ini"
Winamp-->"C:\Program Files\Winamp\UninstWA.exe"
Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"

======System event log======

Computer Name: BURZEC-EA2A1002
Event Code: 7036
Message: Usługa Przeglądarka komputera weszła w stan zatrzymania.

Record Number: 3035
Source Name: Service Control Manager
Time Written: 20101223175936.000000+060
Event Type: informacje
User:

Computer Name: BURZEC-EA2A1002
Event Code: 7036
Message: Usługa Karta wydajności WMI weszła w stan uruchomienia.

Record Number: 3034
Source Name: Service Control Manager
Time Written: 20101223175936.000000+060
Event Type: informacje
User:

Computer Name: BURZEC-EA2A1002
Event Code: 7035
Message: Do usługi Karta wydajności WMI został pomyślnie wysłany kod sterowania uruchom.

Record Number: 3033
Source Name: Service Control Manager
Time Written: 20101223175936.000000+060
Event Type: informacje
User: ZARZĄDZANIE NT\SYSTEM

Computer Name: BURZEC-EA2A1002
Event Code: 7036
Message: Usługa Usługa bramy warstwy aplikacji weszła w stan uruchomienia.

Record Number: 3032
Source Name: Service Control Manager
Time Written: 20101223175936.000000+060
Event Type: informacje
User:

Computer Name: BURZEC-EA2A1002
Event Code: 7035
Message: Do usługi Usługa bramy warstwy aplikacji został pomyślnie wysłany kod sterowania uruchom.

Record Number: 3031
Source Name: Service Control Manager
Time Written: 20101223175936.000000+060
Event Type: informacje
User: ZARZĄDZANIE NT\SYSTEM

=====Application event log=====

Computer Name: BURZEC-EA2A1002
Event Code: 100
Message: wuauclt (3132) Aparat bazy danych 5.01.2600.2180 został uruchomiony.

Record Number: 790
Source Name: ESENT
Time Written: 20101231085350.000000+060
Event Type: informacje
User:

Computer Name: BURZEC-EA2A1002
Event Code: 1800
Message: Usługa Centrum zabezpieczeń systemu Windows została uruchomiona.

Record Number: 789
Source Name: SecurityCenter
Time Written: 20101231085308.000000+060
Event Type: informacje
User:

Computer Name: BURZEC-EA2A1002
Event Code: 105
Message: The service was started.

Record Number: 788
Source Name: ATI Smart
Time Written: 20101231085256.000000+060
Event Type: informacje
User:

Computer Name: BURZEC-EA2A1002
Event Code: 1517
Message: System Windows zapisał rejestr użytkownika BURZEC-EA2A1002\Burzec, kiedy aplikacja lub usługa nadal użytkowała rejestr podczas wylogowania. Pamięć używana przez rejestr użytkownika nie została zwolniona. Rejestr zostanie zwolniony, kiedy nie będzie używany.


Najczęstszą tego przyczyną są usługi uruchamiane z konta użytkownika. Próbuj skonfigurować te usługi, aby były uruchamiane z konta LocalService lub NetworkService.

Record Number: 787
Source Name: Userenv
Time Written: 20101230215435.000000+060
Event Type: ostrzeżenie
User: ZARZĄDZANIE NT\SYSTEM

Computer Name: BURZEC-EA2A1002
Event Code: 101
Message: wuauclt (3100) Aparat bazy danych został zatrzymany.

Record Number: 786
Source Name: ESENT
Time Written: 20101230112414.000000+060
Event Type: informacje
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=C:\Program Files\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=16
"PROCESSOR_IDENTIFIER"=x86 Family 16 Model 6 Stepping 3, AuthenticAMD
"PROCESSOR_REVISION"=0603
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"RGSCLauncher"=C:\Gry\GTA 4\Rockstar Games\Rockstar Games Social Club
"RGSC"=C:\Gry\GTA 4\Rockstar Games\Rockstar Games Social Club\1_0_0_0

-----------------EOF-----------------
[/log]

[log]Logfile of random's system information tool 1.08 (written by random/random)
Run by Burzec at 2011-02-05 12:49:12
Microsoft Windows XP Professional Dodatek Service Pack 3
System drive C: has 31 GB (31%) free of 100 GB
Total RAM: 2046 MB (65% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:50:00, on 2011-02-05
Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Documents and Settings\Burzec\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Burzec\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Burzec\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Burzec\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
D:\instalki\do usuwania wirusów\OTL.exe
C:\WINDOWS\notepad.exe
C:\WINDOWS\notepad.exe
D:\instalki\do usuwania wirusów\RSIT.exe
C:\Program Files\trend micro\Burzec.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://proxy.ilabs.pl/auto.pac
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
R3 - URLSearchHook: SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [BCU] "C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Resume copy] copyfstq.exe /startup
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA LOKALNA')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA SIECIOWA')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{75764F4D-64B2-4F3A-A8E5-64B84C7FDAE0}: NameServer = 212.244.142.10,212.244.142.9
O17 - HKLM\System\CS1\Services\Tcpip\..\{75764F4D-64B2-4F3A-A8E5-64B84C7FDAE0}: NameServer = 212.244.142.10,212.244.142.9
O17 - HKLM\System\CS2\Services\Tcpip\..\{75764F4D-64B2-4F3A-A8E5-64B84C7FDAE0}: NameServer = 212.244.142.10,212.244.142.9
O17 - HKLM\System\CS3\Services\Tcpip\..\{75764F4D-64B2-4F3A-A8E5-64B84C7FDAE0}: NameServer = 212.244.142.10,212.244.142.9
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: AppleChargerSrv - Unknown owner - C:\WINDOWS\system32\AppleChargerSrv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Browser Configuration Utility Service (BCUService) - DeviceVM, Inc. - C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

--
End of file - 6039 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-329068152-1214440339-725345543-1003Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-329068152-1214440339-725345543-1003UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2008-06-03 1404928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-10-22 35840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-10-22 73728]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2011-01-13 3396624]
"BCU"=C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe [2009-10-15 375000]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288]
"Resume copy"=copyfstq.exe /startup []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2010-12-11 395640]
"AlcoholAutomount"=C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe [2007-08-01 222592]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ares]
C:\Program Files\Ares\Ares.exe [2010-01-22 1011712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCU]
C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe [2009-10-15 375000]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Documents and Settings\Burzec\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe [2010-10-22 133104]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
C:\WINDOWS\RTHDCPL.EXE [2010-04-30 19523616]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-07-02 98304]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\jre6\bin\jusched.exe [2010-10-22 148888]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2009-07-02 155648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Gadu-Gadu 10\gg.exe"="C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Ares\Ares.exe"="C:\Program Files\Ares\Ares.exe:*:Enabled:Ares p2p for windows"
"C:\Gry\Mafia 2\Steam.exe"="C:\Gry\Mafia 2\Steam.exe:*:Enabled:Steam"
"C:\Gry\DiRT2\dirt2_game.exe"="C:\Gry\DiRT2\dirt2_game.exe:*:Enabled:DiRT2"
"C:\Gry\Call of Duty - Black Ops\BlackOps.exe"="C:\Gry\Call of Duty - Black Ops\BlackOps.exe:*:Enabled:BlackOps"
"C:\Gry\Need For Speed Hot Pursuit 2\Launcher.exe"="C:\Gry\Need For Speed Hot Pursuit 2\Launcher.exe:*:Enabled:Need for Speed(TM) Hot Pursuit"
"C:\Gry\Need For Speed Hot Pursuit 2\NFS11.exe"="C:\Gry\Need For Speed Hot Pursuit 2\NFS11.exe:*:Enabled:Need for Speed(TM) Hot Pursuit Application"
"C:\Gry\Call of Duty - World at War\CoDWaWmp.exe"="C:\Gry\Call of Duty - World at War\CoDWaWmp.exe:*:Enabled:Call of Duty(R) - World at War(TM)"
"C:\Gry\Call of Duty - World at War\CoDWaW.exe"="C:\Gry\Call of Duty - World at War\CoDWaW.exe:*:Enabled:Call of Duty(R) - World at War(TM)"
"C:\Gry\GTA 4\Grand Theft Auto IV\LaunchGTAIV.exe"="C:\Gry\GTA 4\Grand Theft Auto IV\LaunchGTAIV.exe:*:Enabled:Grand Theft Auto IV"
"C:\Gry\GTA 4\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe"="C:\Gry\GTA 4\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:*:Enabled:Rockstar Games Social Club"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Gry\GTA 4\Grand Theft Auto IV\GTAIV.exe"="C:\Gry\GTA 4\Grand Theft Auto IV\GTAIV.exe:*:Enabled:Grand Theft Auto IV"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Uruchamia plik DLL jako aplikację"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2011-02-05 12:49:12 ----D---- C:\rsit
2011-02-05 12:49:12 ----D---- C:\Program Files\trend micro
2011-01-24 23:40:05 ----D---- C:\WINDOWS\Prefetch
2011-01-24 23:34:10 ----N---- C:\WINDOWS\system32\smtpapi.dll
2011-01-24 23:34:10 ----N---- C:\WINDOWS\system32\rwnh.dll
2011-01-24 23:34:10 ----N---- C:\WINDOWS\system32\drivers\irbus.sys
2011-01-24 23:34:10 ----N---- C:\WINDOWS\system32\comsdupd.exe
2011-01-24 23:34:08 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2011-01-24 23:34:08 ----N---- C:\WINDOWS\system32\azroles.dll
2011-01-24 23:34:08 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2011-01-24 23:34:08 ----N---- C:\WINDOWS\system32\ati3d1ag.dll
2011-01-24 23:34:08 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2011-01-24 23:34:08 ----N---- C:\WINDOWS\system32\aaclient.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\eapsvc.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\eapqec.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\eappprxy.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\eapphost.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\eappgnui.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\eappcfg.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\eapolqec.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\dot3ui.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\dot3svc.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\dot3msm.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\dot3api.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\dimsroam.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\credssp.dll
2011-01-24 23:34:06 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2011-01-24 23:34:06 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2011-01-24 23:34:06 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2011-01-24 23:34:06 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2011-01-24 23:34:05 ----N---- C:\WINDOWS\system32\napstat.exe
2011-01-24 23:34:05 ----N---- C:\WINDOWS\system32\napmontr.dll
2011-01-24 23:34:05 ----N---- C:\WINDOWS\system32\napipsec.dll
2011-01-24 23:34:05 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2011-01-24 23:34:05 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2011-01-24 23:34:05 ----N---- C:\WINDOWS\system32\mssha.dll
2011-01-24 23:34:05 ----N---- C:\WINDOWS\system32\mmcperf.exe
2011-01-24 23:34:05 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2011-01-24 23:34:05 ----N---- C:\WINDOWS\system32\mmcex.dll
2011-01-24 23:34:05 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2011-01-24 23:34:05 ----N---- C:\WINDOWS\system32\mdmxsdk.dll
2011-01-24 23:34:05 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2011-01-24 23:34:05 ----N---- C:\WINDOWS\system32\kmsvc.dll
2011-01-24 23:34:05 ----N---- C:\WINDOWS\system32\kbdpash.dll
2011-01-24 23:34:04 ----N---- C:\WINDOWS\system32\slserv.exe
2011-01-24 23:34:04 ----N---- C:\WINDOWS\system32\slrundll.exe
2011-01-24 23:34:04 ----N---- C:\WINDOWS\system32\slgen.dll
2011-01-24 23:34:04 ----N---- C:\WINDOWS\system32\slextspk.dll
2011-01-24 23:34:04 ----N---- C:\WINDOWS\system32\slcoinst.dll
2011-01-24 23:34:04 ----N---- C:\WINDOWS\system32\setupn.exe
2011-01-24 23:34:04 ----N---- C:\WINDOWS\system32\s3gnb.dll
2011-01-24 23:34:04 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2011-01-24 23:34:04 ----N---- C:\WINDOWS\system32\rasqec.dll
2011-01-24 23:34:04 ----N---- C:\WINDOWS\system32\qutil.dll
2011-01-24 23:34:04 ----N---- C:\WINDOWS\system32\qcliprov.dll
2011-01-24 23:34:04 ----N---- C:\WINDOWS\system32\qagentrt.dll
2011-01-24 23:34:04 ----N---- C:\WINDOWS\system32\qagent.dll
2011-01-24 23:34:04 ----N---- C:\WINDOWS\system32\onex.dll
2011-01-24 23:34:04 ----N---- C:\WINDOWS\system32\nv4_disp.dll
2011-01-24 23:34:03 ----N---- C:\WINDOWS\system32\xpsp3res.dll
2011-01-24 23:34:03 ----N---- C:\WINDOWS\system32\verclsid.exe
2011-01-24 23:34:03 ----N---- C:\WINDOWS\system32\tzchange.exe
2011-01-24 23:34:03 ----N---- C:\WINDOWS\system32\tspkg.dll
2011-01-24 23:34:03 ----N---- C:\WINDOWS\system32\tsgqec.dll
2011-01-24 23:34:02 ----N---- C:\WINDOWS\system32\wlanapi.dll
2011-01-24 23:34:01 ----N---- C:\WINDOWS\system32\xmllite.dll
2011-01-24 23:34:01 ----N---- C:\WINDOWS\slrundll.exe
2011-01-24 23:34:01 ----D---- C:\WINDOWS\system32\pl-pl
2011-01-24 23:34:01 ----D---- C:\WINDOWS\l2schemas
2011-01-24 23:34:00 ----D---- C:\WINDOWS\system32\pl
2011-01-24 23:33:59 ----D---- C:\WINDOWS\system32\bits
2011-01-24 23:31:39 ----D---- C:\WINDOWS\ServicePackFiles
2011-01-24 23:29:06 ----N---- C:\WINDOWS\system32\drivers\amdagp.sys
2011-01-24 23:29:06 ----N---- C:\WINDOWS\system32\drivers\alim1541.sys
2011-01-24 23:29:06 ----N---- C:\WINDOWS\system32\drivers\agpcpq.sys
2011-01-24 23:29:06 ----N---- C:\WINDOWS\system32\drivers\agp440.sys
2011-01-24 23:29:06 ----N---- C:\WINDOWS\system32\drivers\adv11nt5.dll
2011-01-24 23:29:06 ----N---- C:\WINDOWS\system32\drivers\adv09nt5.dll
2011-01-24 23:29:06 ----N---- C:\WINDOWS\system32\drivers\adv08nt5.dll
2011-01-24 23:29:06 ----N---- C:\WINDOWS\system32\drivers\adv07nt5.dll
2011-01-24 23:29:06 ----N---- C:\WINDOWS\system32\drivers\adv05nt5.dll
2011-01-24 23:29:06 ----N---- C:\WINDOWS\system32\drivers\adv02nt5.dll
2011-01-24 23:29:06 ----N---- C:\WINDOWS\system32\drivers\adv01nt5.dll
2011-01-24 23:29:06 ----D---- C:\WINDOWS\network diagnostic
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\atinttxx.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\atinsnxx.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\atinrvxx.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\atinraxx.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\atinpdxx.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\atinmdxx.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\atinbtxx.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\ati2mtaa.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\ati1xsxx.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\ati1xbxx.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\ati1tuxx.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\ati1ttxx.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\ati1snxx.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\ati1rvxx.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\ati1raxx.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\ati1pdxx.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\ati1mdxx.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\ati1btxx.sys
2011-01-24 23:29:04 ----N---- C:\WINDOWS\system32\drivers\gagp30kx.sys
2011-01-24 23:29:04 ----N---- C:\WINDOWS\system32\drivers\ch7xxnt5.dll
2011-01-24 23:29:04 ----N---- C:\WINDOWS\system32\drivers\bthusb.sys
2011-01-24 23:29:04 ----N---- C:\WINDOWS\system32\drivers\bthprint.sys
2011-01-24 23:29:04 ----N---- C:\WINDOWS\system32\drivers\bthport.sys
2011-01-24 23:29:04 ----N---- C:\WINDOWS\system32\drivers\bthpan.sys
2011-01-24 23:29:04 ----N---- C:\WINDOWS\system32\drivers\bthmodem.sys
2011-01-24 23:29:04 ----N---- C:\WINDOWS\system32\drivers\bthenum.sys
2011-01-24 23:29:04 ----N---- C:\WINDOWS\system32\drivers\atv10nt5.dll
2011-01-24 23:29:04 ----N---- C:\WINDOWS\system32\drivers\atv06nt5.dll
2011-01-24 23:29:04 ----N---- C:\WINDOWS\system32\drivers\atv04nt5.dll
2011-01-24 23:29:04 ----N---- C:\WINDOWS\system32\drivers\atv02nt5.dll
2011-01-24 23:29:04 ----N---- C:\WINDOWS\system32\drivers\atv01nt5.dll
2011-01-24 23:29:04 ----N---- C:\WINDOWS\system32\drivers\atinxsxx.sys
2011-01-24 23:29:04 ----N---- C:\WINDOWS\system32\drivers\atinxbxx.sys
2011-01-24 23:29:04 ----N---- C:\WINDOWS\system32\drivers\atintuxx.sys
2011-01-24 23:29:03 ----N---- C:\WINDOWS\system32\drivers\hsfdpsp2.sys
2011-01-24 23:29:03 ----N---- C:\WINDOWS\system32\drivers\hsfcxts2.sys
2011-01-24 23:29:03 ----N---- C:\WINDOWS\system32\drivers\hsfbs2s2.sys
2011-01-24 23:29:03 ----N---- C:\WINDOWS\system32\drivers\hidir.sys
2011-01-24 23:29:03 ----N---- C:\WINDOWS\system32\drivers\hidbth.sys
2011-01-24 23:29:02 ----N---- C:\WINDOWS\system32\drivers\recagent.sys
2011-01-24 23:29:02 ----N---- C:\WINDOWS\system32\drivers\nv4_mini.sys
2011-01-24 23:29:02 ----N---- C:\WINDOWS\system32\drivers\ntmtlfax.sys
2011-01-24 23:29:02 ----N---- C:\WINDOWS\system32\drivers\mutohpen.sys
2011-01-24 23:29:02 ----N---- C:\WINDOWS\system32\drivers\mtxparhm.sys
2011-01-24 23:29:02 ----N---- C:\WINDOWS\system32\drivers\mtlstrm.sys
2011-01-24 23:29:02 ----N---- C:\WINDOWS\system32\drivers\mtlmnt5.sys
2011-01-24 23:29:02 ----N---- C:\WINDOWS\system32\drivers\mdmxsdk.sys
2011-01-24 23:29:01 ----N---- C:\WINDOWS\system32\drivers\smbali.sys
2011-01-24 23:29:01 ----N---- C:\WINDOWS\system32\drivers\slwdmsup.sys
2011-01-24 23:29:01 ----N---- C:\WINDOWS\system32\drivers\slnthal.sys
2011-01-24 23:29:01 ----N---- C:\WINDOWS\system32\drivers\slntamr.sys
2011-01-24 23:29:01 ----N---- C:\WINDOWS\system32\drivers\slnt7554.sys
2011-01-24 23:29:01 ----N---- C:\WINDOWS\system32\drivers\sisagp.sys
2011-01-24 23:29:01 ----N---- C:\WINDOWS\system32\drivers\siint5.dll
2011-01-24 23:29:01 ----N---- C:\WINDOWS\system32\drivers\sffp_mmc.sys
2011-01-24 23:29:01 ----N---- C:\WINDOWS\system32\drivers\s3gnbm.sys
2011-01-24 23:29:01 ----N---- C:\WINDOWS\system32\drivers\rndismpx.sys
2011-01-24 23:29:01 ----N---- C:\WINDOWS\system32\drivers\rfcomm.sys
2011-01-24 23:29:00 ----N---- C:\WINDOWS\system32\drivers\watv10nt.sys
2011-01-24 23:29:00 ----N---- C:\WINDOWS\system32\drivers\watv06nt.sys
2011-01-24 23:29:00 ----N---- C:\WINDOWS\system32\drivers\wadv11nt.sys
2011-01-24 23:29:00 ----N---- C:\WINDOWS\system32\drivers\wadv09nt.sys
2011-01-24 23:29:00 ----N---- C:\WINDOWS\system32\drivers\wadv08nt.sys
2011-01-24 23:29:00 ----N---- C:\WINDOWS\system32\drivers\wadv07nt.sys
2011-01-24 23:29:00 ----N---- C:\WINDOWS\system32\drivers\wacompen.sys
2011-01-24 23:29:00 ----N---- C:\WINDOWS\system32\drivers\viaagp.sys
2011-01-24 23:29:00 ----N---- C:\WINDOWS\system32\drivers\vchnt5.dll
2011-01-24 23:29:00 ----N---- C:\WINDOWS\system32\drivers\usbvideo.sys
2011-01-24 23:29:00 ----N---- C:\WINDOWS\system32\drivers\usb8023x.sys
2011-01-24 23:29:00 ----N---- C:\WINDOWS\system32\drivers\uagp35.sys
2011-01-24 23:27:32 ----A---- C:\WINDOWS\002918_.tmp
2011-01-24 23:24:54 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2011-01-24 17:38:34 ----A---- C:\WINDOWS\system32\CmdLineExt.dll
2011-01-24 17:37:12 ----N---- C:\WINDOWS\system32\spmsg.dll
2011-01-23 13:30:53 ----HDC---- C:\WINDOWS\$NtUninstallKB926239$
2011-01-23 13:30:49 ----D---- C:\WINDOWS\system32\LogFiles
2011-01-23 13:30:44 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$
2011-01-23 13:30:17 ----D---- C:\WINDOWS\system32\drivers\umdf
2011-01-23 13:30:04 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2011-01-21 19:32:30 ----A---- C:\WINDOWS\iun6002.exe
2011-01-21 19:32:30 ----A---- C:\WINDOWS\irunin.ini
2011-01-21 19:32:24 ----A---- C:\WINDOWS\TotalCopy Setup Log.txt
2011-01-20 22:03:11 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Electronic Arts
2011-01-20 22:03:11 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\EA Core
2011-01-20 21:45:47 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Solidshield
2011-01-10 21:23:32 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2011-01-10 21:23:32 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2011-01-10 21:23:31 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2011-01-10 21:23:31 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2011-01-10 21:23:30 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2011-01-10 21:23:30 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2011-01-10 21:23:29 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2011-01-10 21:23:29 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2011-01-10 21:23:29 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2011-01-10 21:23:29 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2011-01-10 21:23:28 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2011-01-10 21:23:28 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2011-01-08 17:41:36 ----A---- C:\AutoMapaSetupLog.txt
2011-01-06 19:00:01 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Codemasters
2011-01-06 18:55:51 ----A---- C:\WINDOWS\system32\mkl_vml_p4.dll
2011-01-06 18:55:51 ----A---- C:\WINDOWS\system32\mkl_vml_p3.dll
2011-01-06 18:55:51 ----A---- C:\WINDOWS\system32\mkl_vml_def.dll
2011-01-06 18:55:51 ----A---- C:\WINDOWS\system32\mkl_p4.dll
2011-01-06 18:55:51 ----A---- C:\WINDOWS\system32\mkl_p3.dll
2011-01-06 18:55:51 ----A---- C:\WINDOWS\system32\mkl_lapack64.dll
2011-01-06 18:55:51 ----A---- C:\WINDOWS\system32\mkl_lapack32.dll
2011-01-06 18:55:50 ----D---- C:\Program Files\BRS
2011-01-06 18:55:50 ----A---- C:\WINDOWS\system32\rapture3d_oal.dll
2011-01-06 18:55:50 ----A---- C:\WINDOWS\system32\mkl_def.dll
2011-01-06 18:55:50 ----A---- C:\WINDOWS\system32\libguide40.dll
2011-01-06 18:55:28 ----D---- C:\WINDOWS\system32\xlive
2011-01-06 18:55:27 ----D---- C:\Program Files\Microsoft Games for Windows - LIVE
2011-01-06 18:55:14 ----RA---- C:\WINDOWS\system32\tmpD5.tmp
2011-01-06 18:55:14 ----RA---- C:\WINDOWS\system32\tmpD4.tmp
2011-01-06 18:55:14 ----D---- C:\Program Files\OpenAL
2011-01-06 18:55:14 ----A---- C:\WINDOWS\system32\wrap_oal.dll
2011-01-06 18:55:14 ----A---- C:\WINDOWS\system32\OpenAL32.dll
2011-01-06 18:55:11 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2011-01-06 18:55:11 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2011-01-06 18:55:10 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2011-01-06 18:55:06 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2011-01-06 18:55:06 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2011-01-06 18:55:05 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2011-01-06 18:55:04 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2011-01-06 18:55:04 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2011-01-06 18:55:03 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2011-01-06 18:55:03 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2011-01-06 18:55:03 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2011-01-06 18:55:02 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2011-01-06 18:55:01 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2011-01-06 18:55:01 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2011-01-06 18:55:01 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2011-01-06 18:55:00 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2011-01-06 18:55:00 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2011-01-06 18:55:00 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2011-01-06 18:54:59 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2011-01-06 18:54:59 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2011-01-06 18:54:58 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2011-01-06 18:54:58 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2011-01-06 18:54:58 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2011-01-06 18:54:58 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2011-01-06 18:54:58 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2011-01-06 18:54:57 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2011-01-06 18:54:57 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2011-01-06 18:54:57 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2011-01-06 18:54:56 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2011-01-06 18:54:55 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2011-01-06 18:54:55 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2011-01-06 18:54:55 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2011-01-06 18:54:54 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2011-01-06 18:54:54 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2011-01-06 18:54:54 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2011-01-06 18:54:53 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2011-01-06 18:54:53 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2011-01-06 18:54:52 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2011-01-06 18:54:52 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2011-01-06 18:54:52 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2011-01-06 18:54:51 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2011-01-06 18:54:51 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2011-01-06 18:54:50 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2011-01-06 18:54:49 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2011-01-06 18:54:49 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2011-01-06 18:54:49 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2011-01-06 18:54:48 ----A---- C:\WINDOWS\system32\d3dx9_35.dll

======List of files/folders modified in the last 1 months======

2011-02-05 12:49:45 ----D---- C:\Documents and Settings\Burzec\Dane aplikacji\uTorrent
2011-02-05 12:49:12 ----RD---- C:\Program Files
2011-02-05 12:09:31 ----D---- C:\WINDOWS\Temp
2011-02-04 22:48:49 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-02-04 16:46:39 ----D---- C:\Gry
2011-02-02 21:43:02 ----D---- C:\Documents and Settings\Burzec\Dane aplikacji\Skype
2011-02-02 19:39:55 ----D---- C:\WINDOWS\system32
2011-02-02 19:36:42 ----D---- C:\Documents and Settings\Burzec\Dane aplikacji\skypePM
2011-02-01 22:30:16 ----D---- C:\Documents and Settings\Burzec\Dane aplikacji\Gadu-Gadu 10
2011-01-30 11:22:56 ----D---- C:\WINDOWS\system32\CatRoot2
2011-01-25 18:05:30 ----D---- C:\WINDOWS
2011-01-24 23:41:03 ----SHD---- C:\WINDOWS\Installer
2011-01-24 23:40:26 ----AC---- C:\WINDOWS\setuplog.txt
2011-01-24 23:39:25 ----D---- C:\WINDOWS\system32\wbem
2011-01-24 23:39:25 ----D---- C:\WINDOWS\system32\Setup
2011-01-24 23:39:25 ----D---- C:\WINDOWS\AppPatch
2011-01-24 23:39:24 ----RSD---- C:\WINDOWS\Fonts
2011-01-24 23:39:19 ----D---- C:\WINDOWS\system32\drivers
2011-01-24 23:38:16 ----AC---- C:\WINDOWS\OEWABLog.txt
2011-01-24 23:36:28 ----HD---- C:\WINDOWS\inf
2011-01-24 23:36:28 ----D---- C:\WINDOWS\system32\CatRoot
2011-01-24 23:36:21 ----D---- C:\WINDOWS\security
2011-01-24 23:34:23 ----D---- C:\WINDOWS\WinSxS
2011-01-24 23:34:19 ----D---- C:\Program Files\Messenger
2011-01-24 23:34:18 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-01-24 23:34:17 ----D---- C:\WINDOWS\Help
2011-01-24 23:34:17 ----D---- C:\Program Files\Windows Media Player
2011-01-24 23:34:11 ----D---- C:\WINDOWS\ehome
2011-01-24 23:34:09 ----D---- C:\WINDOWS\system32\inetsrv
2011-01-24 23:34:09 ----D---- C:\WINDOWS\ime
2011-01-24 23:34:01 ----D---- C:\WINDOWS\system32\usmt
2011-01-24 23:34:01 ----D---- C:\Program Files\Internet Explorer
2011-01-24 23:33:59 ----D---- C:\WINDOWS\PeerNet
2011-01-24 23:33:59 ----D---- C:\Program Files\Movie Maker
2011-01-24 23:31:27 ----D---- C:\WINDOWS\system32\Restore
2011-01-24 23:31:27 ----D---- C:\WINDOWS\system32\npp
2011-01-24 23:31:25 ----D---- C:\WINDOWS\msagent
2011-01-24 23:31:23 ----D---- C:\WINDOWS\srchasst
2011-01-24 23:31:22 ----D---- C:\Program Files\NetMeeting
2011-01-24 23:31:21 ----D---- C:\WINDOWS\system32\Com
2011-01-24 23:31:17 ----D---- C:\Program Files\Windows NT
2011-01-24 23:31:17 ----D---- C:\Program Files\Outlook Express
2011-01-24 23:31:13 ----D---- C:\Program Files\Common Files\System
2011-01-24 23:30:51 ----D---- C:\WINDOWS\system32\oobe
2011-01-24 23:30:49 ----D---- C:\WINDOWS\system
2011-01-24 23:27:30 ----D---- C:\WINDOWS\system32\ReinstallBackups
2011-01-24 23:22:57 ----D---- C:\WINDOWS\Debug
2011-01-24 17:39:51 ----HD---- C:\Program Files\InstallShield Installation Information
2011-01-24 17:37:46 ----D---- C:\WINDOWS\system32\DirectX
2011-01-24 17:37:34 ----RSD---- C:\WINDOWS\assembly
2011-01-23 13:30:56 ----A---- C:\WINDOWS\imsins.BAK
2011-01-23 12:37:05 ----D---- C:\Program Files\NAPI-PROJEKT
2011-01-13 09:47:32 ----A---- C:\WINDOWS\system32\aswBoot.exe
2011-01-12 19:09:14 ----SD---- C:\Documents and Settings\Burzec\Dane aplikacji\Microsoft
2011-01-10 21:22:13 ----D---- C:\WINDOWS\Logs
2011-01-06 18:55:27 ----SD---- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 nvgts;nvgts; C:\WINDOWS\system32\DRIVERS\nvgts.sys [2010-04-08 168040]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-11-28 685816]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2011-01-13 29392]
R1 AmdPPM;Sterownik procesora AMD HwPState; C:\WINDOWS\system32\DRIVERS\AmdPPM.sys [2007-04-16 33792]
R1 AppleCharger;AppleCharger; C:\WINDOWS\system32\DRIVERS\AppleCharger.sys [2010-04-27 19496]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2011-01-13 23632]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2011-01-13 294608]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2011-01-13 47440]
R1 kbdhid;Sterownik klawiatury HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2011-01-13 17744]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2011-01-13 100176]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2009-07-02 4125696]
R3 HDAudBus;Sterownik magistrali Microsoft UAA dla High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2010-04-30 6032928]
R3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-26 12160]
R3 NVENETFD;NVIDIA nForce 10/100 Mbps Ethernet ; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2010-03-04 70912]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2010-03-04 13824]
R3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 usbprint;Klasa PRINTER USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
R3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2009-11-18 1691480]
S3 at8z82eb;at8z82eb; C:\WINDOWS\system32\drivers\at8z82eb.sys []
S3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2009-11-18 1395800]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2009-07-02 602112]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-01-13 40384]
R2 BCUService;Browser Configuration Utility Service; C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe [2009-10-15 223464]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-10-22 152984]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2009-07-02 593920]
S3 AppleChargerSrv;AppleChargerSrv; C:\WINDOWS\system32\AppleChargerSrv.exe [2010-04-06 31272]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------
[/log]

Tomek01
komentarz
komentarz

Zastosuj [b][color=#0000CD][url=http://download.bleepingcomputer.com//sUBs/Flash_Disinfector.exe]Flash Disinfector[/url][/color][/b], najlepiej z podpiętym pendrive'm czy innymi pamięciami USB.


W OTL, w oknie Custom scan/fixes wklej:

[code]:OTL
IE - HKU\S-1-5-21-329068152-1214440339-725345543-1003\..\URLSearchHook: {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll (DeviceVM, Inc.)
O32 - AutoRun File - [2009-12-31 14:58:42 | 000,000,044 | R--- | M] () - K:\autorun.inf -- [ CDFS ]
O33 - MountPoints2\{eefe3276-ddeb-11df-a018-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{eefe3276-ddeb-11df-a018-806d6172696f}\Shell\AutoRun\command - "" = F:\Run.exe

:Files
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-329068152-1214440339-725345543-1003UA.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-329068152-1214440339-725345543-1003Core.job
C:\WINDOWS\002918_.tmp

:Commands
[emptytemp][/code]

Klikasz run fix, komputer uruchamia się ponownie.
Wrzuć log z usuwania oraz nowe logi: OTL i RSIT

burzecg
komentarz
komentarz

Zastosowałem flash disinfector log po usunięciu:

[log]All processes killed
========== OTL ==========
Registry value HKEY_USERS\S-1-5-21-329068152-1214440339-725345543-1003\Software\Microsoft\Internet Explorer\URLSearchHooks\\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A}\ deleted successfully.
C:\Program Files\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll moved successfully.
File K:\autorun.inf not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{eefe3276-ddeb-11df-a018-806d6172696f}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{eefe3276-ddeb-11df-a018-806d6172696f}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{eefe3276-ddeb-11df-a018-806d6172696f}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{eefe3276-ddeb-11df-a018-806d6172696f}\ not found.
File F:\Run.exe not found.
========== FILES ==========
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-329068152-1214440339-725345543-1003UA.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-329068152-1214440339-725345543-1003Core.job moved successfully.
C:\WINDOWS\002918_.tmp moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Burzec
->Temp folder emptied: 1094019 bytes
->Temporary Internet Files folder emptied: 198784 bytes
->Java cache emptied: 506549 bytes
->Google Chrome cache emptied: 347276513 bytes
->Flash cache emptied: 1679 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes

User: LocalService
->Temp folder emptied: 65984 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2114584 bytes
%systemroot%\System32 .tmp files removed: 2577620 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 32768 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 338,00 mb


OTL by OldTimer - Version 3.2.20.6 log created on 02072011_184148

Files\Folders moved on Reboot...
File move failed. C:\WINDOWS\temp\_avast5_\Webshlock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...
[/log]

nowe logi OTL

[log]OTL logfile created on: 2011-02-07 18:52:01 - Run 2
OTL by OldTimer - Version 3.2.20.6 Folder = D:\instalki\do usuwania wirusów
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 76,00% Memory free
4,00 Gb Paging File | 4,00 Gb Available in Paging File | 91,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 97,56 Gb Total Space | 43,38 Gb Free Space | 44,47% Space Free | Partition Type: NTFS
Drive D: | 292,97 Gb Total Space | 164,35 Gb Free Space | 56,10% Space Free | Partition Type: NTFS
Drive E: | 540,89 Gb Total Space | 253,44 Gb Free Space | 46,86% Space Free | Partition Type: NTFS
Drive L: | 14,90 Gb Total Space | 12,57 Gb Free Space | 84,33% Space Free | Partition Type: FAT32

Computer Name: BURZEC-EA2A1002 | User Name: Burzec | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days

[color=#E56717]========== Processes (All) ==========[/color]

PRC - [2011-02-05 12:31:06 | 000,602,624 | ---- | M] (OldTimer Tools) -- D:\instalki\do usuwania wirusów\OTL.exe
PRC - [2011-01-29 07:57:06 | 000,995,896 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Burzec\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
PRC - [2011-01-13 09:47:34 | 003,396,624 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2011-01-13 09:47:33 | 000,040,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2010-12-11 17:06:26 | 000,395,640 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\uTorrent\uTorrent.exe
PRC - [2010-10-22 15:35:28 | 000,152,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2009-10-15 13:06:46 | 000,223,464 | ---- | M] (DeviceVM, Inc.) -- C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
PRC - [2009-10-15 13:06:42 | 000,375,000 | ---- | M] (DeviceVM, Inc.) -- C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe
PRC - [2009-07-02 18:04:08 | 000,602,112 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe
PRC - [2008-04-14 22:51:52 | 000,218,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvse.exe
PRC - [2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe
PRC - [2008-04-14 22:51:50 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapsrv.exe
PRC - [2008-04-14 22:51:44 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe
PRC - [2008-04-14 22:51:44 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH]
PRC - [2008-04-14 22:51:40 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe
PRC - [2008-04-14 22:51:32 | 000,070,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\notepad.exe
PRC - [2008-04-14 22:51:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe
PRC - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008-04-14 22:51:12 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe
PRC - [2008-04-14 22:51:04 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe
PRC - [2007-05-28 17:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe


[color=#E56717]========== Modules (All) ==========[/color]

MOD - [2011-02-05 12:31:06 | 000,602,624 | ---- | M] (OldTimer Tools) -- D:\instalki\do usuwania wirusów\OTL.exe
MOD - [2011-01-13 09:47:35 | 000,189,728 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\snxhk.dll
MOD - [2008-04-14 22:51:58 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv
MOD - [2008-04-14 22:50:58 | 000,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll
MOD - [2008-04-14 22:50:58 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll
MOD - [2008-04-14 22:50:58 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll
MOD - [2008-04-14 22:50:58 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll
MOD - [2008-04-14 22:50:48 | 008,489,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll
MOD - [2008-04-14 22:50:48 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll
MOD - [2008-04-14 22:50:48 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll
MOD - [2008-04-14 22:50:46 | 001,287,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll
MOD - [2008-04-14 22:50:46 | 000,584,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll
MOD - [2008-04-14 22:50:46 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll
MOD - [2008-04-14 22:50:46 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll
MOD - [2008-04-14 22:50:46 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll
MOD - [2008-04-14 22:50:46 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll
MOD - [2008-04-14 22:50:40 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll
MOD - [2008-04-14 22:50:36 | 001,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll
MOD - [2008-04-14 22:50:32 | 000,285,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll
MOD - [2008-04-14 22:50:32 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll
MOD - [2008-04-14 22:50:16 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll
MOD - [2008-04-14 22:50:14 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll
MOD - [2008-04-14 22:50:12 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll
MOD - [2008-04-14 22:50:00 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll
MOD - [2008-04-14 22:49:16 | 000,714,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll
MOD - [2008-04-14 22:46:34 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
MOD - [2008-04-14 22:29:10 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - [2011-01-13 09:47:33 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2010-04-06 15:30:38 | 000,031,272 | ---- | M] () [On_Demand | Stopped] -- C:\WINDOWS\system32\AppleChargerSrv.exe -- (AppleChargerSrv)
SRV - [2009-10-15 13:06:46 | 000,223,464 | ---- | M] (DeviceVM, Inc.) [Auto | Running] -- C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe -- (BCUService)
SRV - [2007-05-28 17:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) [Auto | Running] -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - [2011-01-13 09:41:16 | 000,294,608 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011-01-13 09:40:16 | 000,047,440 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011-01-13 09:40:04 | 000,100,176 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011-01-13 09:37:30 | 000,023,632 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011-01-13 09:37:11 | 000,029,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011-01-13 09:37:09 | 000,017,744 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010-11-28 13:00:04 | 000,685,816 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010-04-30 09:56:24 | 006,032,928 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2010-04-27 10:56:44 | 000,019,496 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AppleCharger.sys -- (AppleCharger)
DRV - [2010-04-08 19:30:10 | 000,168,040 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvgts.sys -- (nvgts)
DRV - [2010-03-04 11:02:10 | 000,013,824 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2010-03-04 11:02:08 | 000,070,912 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2009-11-18 00:17:00 | 001,395,800 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)
DRV - [2009-11-18 00:16:00 | 001,691,480 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)
DRV - [2009-07-02 18:49:32 | 004,125,696 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2008-04-13 22:06:06 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2007-04-16 15:46:34 | 000,033,792 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdPPM.sys -- (AmdPPM)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-329068152-1214440339-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-329068152-1214440339-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "AutoConfigURL" = http://proxy.ilabs.pl/auto.pac



O1 HOSTS File: ([2001-10-26 16:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [BCU] C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe (DeviceVM, Inc.)
O4 - HKU\S-1-5-21-329068152-1214440339-725345543-1003..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-329068152-1214440339-725345543-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-329068152-1214440339-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 36
O7 - HKU\S-1-5-21-329068152-1214440339-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = FF FF FF FF [binary data]
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010-10-22 14:13:04 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2011-01-10 20:52:10 | 000,038,522 | ---- | M] () - C:\AutoMapaSetupLog.txt -- [ NTFS ]
O32 - AutoRun File - [2011-02-07 18:33:52 | 000,000,000 | RHSD | M] - C:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2011-02-07 18:33:52 | 000,000,000 | RHSD | M] - D:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2011-02-07 18:33:52 | 000,000,000 | RHSD | M] - E:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2011-02-07 18:33:54 | 000,000,000 | RHSD | M] - L:\autorun.inf -- [ FAT32 ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

MsConfig - StartUpReg: [b]Adobe ARM[/b] - hkey= - key= - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
MsConfig - StartUpReg: [b]Adobe Reader Speed Launcher[/b] - hkey= - key= - C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
MsConfig - StartUpReg: [b]AlcoholAutomount[/b] - hkey= - key= - C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe (Alcohol Soft Development Team)
MsConfig - StartUpReg: [b]ares[/b] - hkey= - key= - C:\Program Files\Ares\Ares.exe (Ares Development Group)
MsConfig - StartUpReg: [b]BCU[/b] - hkey= - key= - C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe (DeviceVM, Inc.)
MsConfig - StartUpReg: [b]CTFMON.EXE[/b] - hkey= - key= - File not found
MsConfig - StartUpReg: [b]Google Update[/b] - hkey= - key= - C:\Documents and Settings\Burzec\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe (Google Inc.)
MsConfig - StartUpReg: [b]Resume copy[/b] - hkey= - key= - C:\WINDOWS\COPYFSTQ.EXE ()
MsConfig - StartUpReg: [b]RTHDCPL[/b] - hkey= - key= - C:\WINDOWS\RTHDCPL.EXE (Realtek Semiconductor Corp.)
MsConfig - StartUpReg: [b]StartCCC[/b] - hkey= - key= - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
MsConfig - StartUpReg: [b]SunJavaUpdateSched[/b] - hkey= - key= - C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
MsConfig - State: "system.ini" - 0
MsConfig - State: "win.ini" - 1
MsConfig - State: "bootini" - 0
MsConfig - State: "services" - 0
MsConfig - State: "startup" - 2

SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vds - Service
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {1a3e09be-1e45-494b-9174-d7385b45bbf5} -
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

[color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color]

[2011-02-07 18:33:52 | 000,000,000 | RHSD | C] -- C:\autorun.inf
[2011-02-07 18:22:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Burzec\Pulpit\zizdicia
[2011-02-05 20:31:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Burzec\Pulpit\Nowy folder (2)
[2011-02-05 18:23:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Burzec\Pulpit\Nowy folder
[2011-02-05 15:34:24 | 000,000,000 | ---D | C] -- C:\Program Files\jv16 PowerTools 2011
[2011-02-05 15:16:47 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Burzec\Menu Start\Programy\Narzędzia administracyjne
[2011-02-05 14:16:17 | 000,025,992 | ---- | C] (Sysinternals - www.sysinternals.com) -- C:\WINDOWS\System32\pgdfgsvc.exe
[2011-02-05 12:49:12 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011-02-05 12:49:12 | 000,000,000 | ---D | C] -- C:\rsit
[2011-01-30 11:24:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Burzec\Moje dokumenty\Rockstar Games
[2011-01-25 18:08:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Burzec\Moje dokumenty\Alcohol 120%
[2011-01-24 23:40:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2011-01-24 23:34:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl
[2011-01-24 23:34:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2011-01-24 23:34:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl
[2011-01-24 23:33:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2011-01-24 23:31:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2011-01-24 23:29:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2011-01-24 17:39:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Rockstar Games
[2011-01-24 17:38:34 | 000,107,888 | ---- | C] (Sony DADC Austria AG.) -- C:\WINDOWS\System32\CmdLineExt.dll
[2011-01-23 13:33:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Burzec\Ustawienia lokalne\Dane aplikacji\Rockstar Games
[2011-01-23 13:30:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles
[2011-01-23 13:30:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\umdf
[2011-01-21 19:32:30 | 000,720,896 | ---- | C] (Indigo Rose Corporation) -- C:\WINDOWS\iun6002.exe
[2011-01-20 22:03:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Burzec\Moje dokumenty\Criterion Games
[2011-01-20 22:03:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Electronic Arts
[2011-01-20 22:03:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\EA Core
[2011-01-20 22:00:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Electronic Arts
[2011-01-20 21:45:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Solidshield
[2011-01-12 19:09:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Burzec\Ustawienia lokalne\Dane aplikacji\Identities
[2011-01-10 21:27:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Burzec\Ustawienia lokalne\Dane aplikacji\Activision
[2011-01-06 19:00:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Burzec\Moje dokumenty\My Games
[2011-01-06 19:00:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Codemasters
[2011-01-06 19:00:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\microsoft
[2011-01-06 18:55:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Codemasters
[2011-01-06 18:55:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Blue Ripple Sound
[2011-01-06 18:55:50 | 000,872,448 | ---- | C] (Blue Ripple Sound Limited) -- C:\WINDOWS\System32\rapture3d_oal.dll
[2011-01-06 18:55:50 | 000,000,000 | ---D | C] -- C:\Program Files\BRS
[2011-01-06 18:55:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Microsoft Games for Windows - LIVE
[2011-01-06 18:55:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xlive
[2011-01-06 18:55:27 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Games for Windows - LIVE
[2011-01-06 18:55:14 | 000,445,016 | ---- | C] (Creative Labs) -- C:\WINDOWS\System32\wrap_oal.dll
[2011-01-06 18:55:14 | 000,000,000 | ---D | C] -- C:\Program Files\OpenAL
[2011-01-04 13:24:31 | 000,000,000 | ---D | C] -- C:\Gry
[2011-01-03 16:23:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Activision
[2011-01-03 16:06:43 | 000,000,000 | -HSD | C] -- C:\WINDOWS\ftpcache
[2010-12-28 21:24:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Burzec\Pulpit\Justyna

[color=#E56717]========== Files - Modified Within 60 Days ==========[/color]

[2011-02-07 18:42:34 | 000,219,120 | ---- | M] () -- C:\WINDOWS\System32\ativvaxx.cap
[2011-02-07 18:42:34 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011-02-07 18:41:50 | 000,490,614 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2011-02-07 18:41:50 | 000,432,492 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011-02-07 18:41:50 | 000,083,864 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2011-02-07 18:41:50 | 000,067,448 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011-02-06 20:27:50 | 000,074,240 | ---- | M] () -- C:\Documents and Settings\Burzec\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-02-05 18:34:08 | 000,049,456 | ---- | M] () -- C:\Documents and Settings\Burzec\Pulpit\7.jpg
[2011-02-05 18:31:43 | 000,050,813 | ---- | M] () -- C:\Documents and Settings\Burzec\Pulpit\6.JPG
[2011-02-05 18:11:16 | 000,042,346 | ---- | M] () -- C:\Documents and Settings\Burzec\Pulpit\5.JPG
[2011-02-05 18:10:08 | 000,049,551 | ---- | M] () -- C:\Documents and Settings\Burzec\Pulpit\4.JPG
[2011-02-05 17:44:37 | 000,029,465 | ---- | M] () -- C:\Documents and Settings\Burzec\Pulpit\1.jpg
[2011-02-05 17:34:56 | 000,002,317 | ---- | M] () -- C:\Documents and Settings\Burzec\Pulpit\Google Chrome.lnk
[2011-02-05 17:26:55 | 000,014,599 | ---- | M] () -- C:\Documents and Settings\Burzec\Pulpit\3.JPG
[2011-02-05 17:23:46 | 000,032,608 | ---- | M] () -- C:\Documents and Settings\Burzec\Pulpit\2.JPG
[2011-02-05 15:37:37 | 000,000,020 | -HS- | M] () -- C:\Documents and Settings\Burzec\Dane aplikacji\System7777DataCollection
[2011-02-05 15:37:37 | 000,000,020 | -HS- | M] () -- C:\WINDOWS\Sys6547SettingsDB.sys
[2011-02-05 14:16:17 | 000,025,992 | ---- | M] (Sysinternals - www.sysinternals.com) -- C:\WINDOWS\System32\pgdfgsvc.exe
[2011-02-05 13:26:59 | 000,000,223 | RHS- | M] () -- C:\boot.ini
[2011-02-05 11:54:26 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011-01-25 18:13:44 | 000,002,562 | ---- | M] () -- C:\WINDOWS\diagwrn.xml
[2011-01-25 18:13:44 | 000,001,908 | ---- | M] () -- C:\WINDOWS\diagerr.xml
[2011-01-24 23:39:31 | 000,146,016 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011-01-24 23:28:38 | 000,251,152 | RHS- | M] () -- C:\ntldr
[2011-01-24 17:53:07 | 000,107,888 | ---- | M] (Sony DADC Austria AG.) -- C:\WINDOWS\System32\CmdLineExt.dll
[2011-01-24 17:39:52 | 000,001,717 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Rockstar Games Social Club.lnk
[2011-01-24 16:59:26 | 000,002,259 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk
[2011-01-23 13:30:49 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\umdf\MsftWdf_user_01_00_00.Wdf
[2011-01-23 12:59:06 | 000,001,423 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Call of Duty(R) - World at War(TM) Jeden gracz - Kooperacja.lnk
[2011-01-21 19:32:31 | 000,017,900 | ---- | M] () -- C:\WINDOWS\irunin.ini
[2011-01-21 19:32:23 | 000,720,896 | ---- | M] (Indigo Rose Corporation) -- C:\WINDOWS\iun6002.exe
[2011-01-21 19:32:23 | 000,015,938 | ---- | M] () -- C:\WINDOWS\irunin.lng
[2011-01-21 19:32:23 | 000,009,694 | ---- | M] () -- C:\WINDOWS\irunin.dat
[2011-01-21 19:32:23 | 000,008,134 | ---- | M] () -- C:\WINDOWS\irunin.bmp
[2011-01-20 22:00:50 | 000,001,692 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Need for Speed(TM) Hot Pursuit.lnk
[2011-01-16 13:13:58 | 000,002,658 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011-01-13 09:47:35 | 000,038,848 | ---- | M] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011-01-13 09:47:32 | 000,188,216 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011-01-13 09:41:16 | 000,294,608 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011-01-13 09:40:16 | 000,047,440 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011-01-13 09:40:04 | 000,100,176 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011-01-13 09:39:50 | 000,094,544 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011-01-13 09:37:30 | 000,023,632 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011-01-13 09:37:11 | 000,029,392 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011-01-13 09:37:09 | 000,017,744 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011-01-08 16:30:30 | 000,000,636 | ---- | M] () -- C:\Documents and Settings\Burzec\Pulpit\Mafia2.lnk
[2011-01-06 18:55:58 | 000,001,386 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\DiRT2.lnk
[2011-01-06 18:55:14 | 000,445,016 | ---- | M] (Creative Labs) -- C:\WINDOWS\System32\wrap_oal.dll
[2011-01-04 13:35:16 | 000,000,725 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Phoenix.lnk
[2011-01-03 16:23:43 | 000,000,319 | ---- | M] () -- C:\WINDOWS\game.ini

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2011-02-05 18:32:49 | 000,049,456 | ---- | C] () -- C:\Documents and Settings\Burzec\Pulpit\7.jpg
[2011-02-05 18:29:19 | 000,050,813 | ---- | C] () -- C:\Documents and Settings\Burzec\Pulpit\6.JPG
[2011-02-05 18:11:16 | 000,042,346 | ---- | C] () -- C:\Documents and Settings\Burzec\Pulpit\5.JPG
[2011-02-05 18:08:14 | 000,049,551 | ---- | C] () -- C:\Documents and Settings\Burzec\Pulpit\4.JPG
[2011-02-05 17:26:55 | 000,014,599 | ---- | C] () -- C:\Documents and Settings\Burzec\Pulpit\3.JPG
[2011-02-05 17:23:46 | 000,032,608 | ---- | C] () -- C:\Documents and Settings\Burzec\Pulpit\2.JPG
[2011-02-05 17:20:23 | 000,029,465 | ---- | C] () -- C:\Documents and Settings\Burzec\Pulpit\1.jpg
[2011-02-05 15:37:37 | 000,000,020 | -HS- | C] () -- C:\Documents and Settings\Burzec\Dane aplikacji\System7777DataCollection
[2011-02-05 15:37:37 | 000,000,020 | -HS- | C] () -- C:\WINDOWS\Sys6547SettingsDB.sys
[2011-01-25 18:05:30 | 000,002,562 | ---- | C] () -- C:\WINDOWS\diagwrn.xml
[2011-01-25 18:05:30 | 000,001,908 | ---- | C] () -- C:\WINDOWS\diagerr.xml
[2011-01-24 23:29:04 | 000,129,045 | ---- | C] () -- C:\WINDOWS\System32\drivers\cxthsfs2.cty
[2011-01-24 23:29:04 | 000,064,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\ativmc20.cod
[2011-01-24 23:29:02 | 000,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img
[2011-01-24 17:39:52 | 000,001,717 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Rockstar Games Social Club.lnk
[2011-01-23 13:30:49 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\umdf\MsftWdf_user_01_00_00.Wdf
[2011-01-23 12:59:06 | 000,001,423 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Call of Duty(R) - World at War(TM) Jeden gracz - Kooperacja.lnk
[2011-01-21 19:32:30 | 000,017,900 | ---- | C] () -- C:\WINDOWS\irunin.ini
[2011-01-21 19:32:30 | 000,015,938 | ---- | C] () -- C:\WINDOWS\irunin.lng
[2011-01-21 19:32:30 | 000,009,694 | ---- | C] () -- C:\WINDOWS\irunin.dat
[2011-01-21 19:32:30 | 000,008,134 | ---- | C] () -- C:\WINDOWS\irunin.bmp
[2011-01-20 22:00:50 | 000,001,692 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Need for Speed(TM) Hot Pursuit.lnk
[2011-01-08 16:30:30 | 000,000,636 | ---- | C] () -- C:\Documents and Settings\Burzec\Pulpit\Mafia2.lnk
[2011-01-06 18:55:58 | 000,001,386 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\DiRT2.lnk
[2011-01-04 13:31:29 | 000,000,725 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Phoenix.lnk
[2011-01-03 16:23:43 | 000,000,319 | ---- | C] () -- C:\WINDOWS\game.ini
[2010-11-28 13:00:04 | 000,685,816 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010-10-22 15:59:48 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010-10-22 15:16:15 | 000,178,176 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010-10-22 15:16:14 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2010-10-22 15:16:10 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010-10-22 15:16:10 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010-10-22 15:16:09 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010-10-22 14:47:41 | 000,019,496 | ---- | C] () -- C:\WINDOWS\System32\drivers\AppleCharger.sys
[2010-10-22 14:37:14 | 000,231,864 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2010-10-22 14:30:31 | 000,000,010 | ---- | C] () -- C:\WINDOWS\GSetup.ini
[2010-10-22 14:24:25 | 000,074,240 | ---- | C] () -- C:\Documents and Settings\Burzec\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-11-06 10:58:04 | 000,178,975 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2002-05-04 12:04:45 | 000,094,636 | ---- | C] () -- C:\WINDOWS\dropcpyr.dll

[color=#E56717]========== LOP Check ==========[/color]

[2010-12-01 19:03:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ACD Systems
[2010-10-22 14:58:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software
[2011-01-06 19:00:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Codemasters
[2011-01-20 22:03:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\EA Core
[2011-01-20 22:03:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Electronic Arts
[2010-10-22 15:05:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2011-01-20 21:45:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Solidshield
[2010-12-01 19:04:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Burzec\Dane aplikacji\ACD Systems
[2010-10-22 15:37:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Burzec\Dane aplikacji\BESTplayer
[2011-02-01 22:30:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Burzec\Dane aplikacji\Gadu-Gadu 10
[2011-02-07 18:53:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Burzec\Dane aplikacji\uTorrent

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Custom Scans ==========[/color]


[color=#A23BEC]< %systemdrive%\*.* >[/color]
[2010-10-22 14:13:04 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2011-01-10 20:52:10 | 000,038,522 | ---- | M] () -- C:\AutoMapaSetupLog.txt
[2011-02-05 13:26:59 | 000,000,223 | RHS- | M] () -- C:\boot.ini
[2001-07-21 23:13:54 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin
[2010-10-22 14:13:04 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010-10-22 14:47:44 | 000,000,180 | ---- | M] () -- C:\csb.log
[2010-10-22 14:38:44 | 000,000,086 | ---- | M] () -- C:\Install.log
[2010-10-22 14:13:04 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010-10-22 14:13:04 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2004-08-03 21:38:34 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2011-01-24 23:28:38 | 000,251,152 | RHS- | M] () -- C:\ntldr
[2011-02-07 18:42:29 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys
[2010-10-22 14:40:05 | 000,002,076 | ---- | M] () -- C:\RHDSetup.log


[color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
[2004-08-03 23:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:agp440.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:agp440.sys
[2008-04-14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008-04-14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys

[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2004-08-03 23:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2004-08-03 21:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0000\DriverFiles\i386\atapi.sys

[color=#A23BEC]< MD5 for: BEEP.SYS >[/color]
[2001-08-17 22:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys

[color=#A23BEC]< MD5 for: CDROM.SYS >[/color]
[2004-08-03 23:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008-04-14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008-04-14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys

[color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color]
[2008-04-14 22:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008-04-14 22:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\eventlog.dll

[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]
[2008-04-14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008-04-14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\winlogon.exe

< End of report >
[/log]
[log]OTL Extras logfile created on: 2011-02-07 18:52:01 - Run 2
OTL by OldTimer - Version 3.2.20.6 Folder = D:\instalki\do usuwania wirusów
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 76,00% Memory free
4,00 Gb Paging File | 4,00 Gb Available in Paging File | 91,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 97,56 Gb Total Space | 43,38 Gb Free Space | 44,47% Space Free | Partition Type: NTFS
Drive D: | 292,97 Gb Total Space | 164,35 Gb Free Space | 56,10% Space Free | Partition Type: NTFS
Drive E: | 540,89 Gb Total Space | 253,44 Gb Free Space | 46,86% Space Free | Partition Type: NTFS
Drive L: | 14,90 Gb Total Space | 12,57 Gb Free Space | 84,33% Space Free | Partition Type: FAT32

Computer Name: BURZEC-EA2A1002 | User Name: Burzec | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe shdocvw.dll,OpenURL %l

[HKEY_USERS\S-1-5-21-329068152-1214440339-725345543-1003\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

[color=#E56717]========== Shell Spawning ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe shdocvw.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [ACDBrowse] -- "C:\Program Files\ACD Systems\ACDSee\7.0\ACDSee7.exe" "%1" (ACD Systems Ltd.)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[color=#E56717]========== Security Center Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 1
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[color=#E56717]========== System Restore Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

[color=#E56717]========== Authorized Applications List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Gadu-Gadu 10\gg.exe" = C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10 -- (GG Network S.A.)
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\Program Files\Ares\Ares.exe" = C:\Program Files\Ares\Ares.exe:*:Enabled:Ares p2p for windows -- (Ares Development Group)
"C:\Gry\Mafia 2\Steam.exe" = C:\Gry\Mafia 2\Steam.exe:*:Enabled:Steam
"C:\Gry\DiRT2\dirt2_game.exe" = C:\Gry\DiRT2\dirt2_game.exe:*:Enabled:DiRT2 -- (Codemasters)
"C:\Gry\Call of Duty - Black Ops\BlackOps.exe" = C:\Gry\Call of Duty - Black Ops\BlackOps.exe:*:Enabled:BlackOps
"C:\Gry\Need For Speed Hot Pursuit 2\Launcher.exe" = C:\Gry\Need For Speed Hot Pursuit 2\Launcher.exe:*:Enabled:Need for Speed(TM) Hot Pursuit -- (Electronic Arts)
"C:\Gry\Need For Speed Hot Pursuit 2\NFS11.exe" = C:\Gry\Need For Speed Hot Pursuit 2\NFS11.exe:*:Enabled:Need for Speed(TM) Hot Pursuit Application -- (Electronic Arts)
"C:\Gry\Call of Duty - World at War\CoDWaWmp.exe" = C:\Gry\Call of Duty - World at War\CoDWaWmp.exe:*:Enabled:Call of Duty(R) - World at War(TM) -- (Activision Blizzard, Inc.)
"C:\Gry\Call of Duty - World at War\CoDWaW.exe" = C:\Gry\Call of Duty - World at War\CoDWaW.exe:*:Enabled:Call of Duty(R) - World at War(TM) -- (Activision Blizzard, Inc.)
"C:\Gry\GTA 4\Grand Theft Auto IV\LaunchGTAIV.exe" = C:\Gry\GTA 4\Grand Theft Auto IV\LaunchGTAIV.exe:*:Enabled:Grand Theft Auto IV -- ()
"C:\Gry\GTA 4\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe" = C:\Gry\GTA 4\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:*:Enabled:Rockstar Games Social Club -- (Take-Two Interactive Software, Inc.)
"C:\Gry\GTA 4\Grand Theft Auto IV\GTAIV.exe" = C:\Gry\GTA 4\Grand Theft Auto IV\GTAIV.exe:*:Enabled:Grand Theft Auto IV -- (Take-Two Interactive Software, Inc.)
"C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)


[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}" = Microsoft Games for Windows - LIVE Redistributable
"{0297078F-D4C8-4774-B7A3-6BBF2C164C76}_is1" = Dirt 2 Spolszczenie by O22y
"{0468A4CF-069D-86B6-84BD-F8E4F86E2631}" = Catalyst Control Center Graphics Previews Common
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{08B3869E-D282-424C-9AFC-870E04A4BA14}" = Rockstar Games Social Club
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{25B9C7BE-5CFD-6173-D3E1-6E4C9EBD8658}" = Catalyst Control Center Graphics Light
"{26999308-FF96-5FBF-B2DB-12E66346FA3A}" = CCC Help German
"{26A24AE4-039D-4CA4-87B4-2F83216013FF}" = Java(TM) 6 Update 13
"{2927733E-A961-BA53-03C5-03774A081030}" = ccc-core-static
"{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}" = Microsoft Games for Windows - LIVE
"{30148775-0642-7507-58EA-3CDB7E828BA2}" = Catalyst Control Center Core Implementation
"{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{36CDA33B-909B-4719-97D1-C4B99309BDC7}" = ATI Parental Control & Encoder
"{3972209B-4946-9B49-1911-0AC122FB8073}" = CCC Help Russian
"{3DECD372-76A1-4483-BF10-B547790A3261}" = ON_OFF Charge B10.0427.1
"{43165058-0CD3-F336-0B4E-879A03DC8F50}" = Catalyst Control Center Graphics Full Existing
"{43F18082-D8A1-5A37-829D-CF1C4ED9ED2A}" = CCC Help Portuguese
"{4905D4CA-7295-F988-AE8A-B04675295133}" = CCC Help Thai
"{52D1D62C-FEAB-4580-849E-1DB624BADBBD}" = DiRT2
"{55A83F62-4CC7-8A5F-0FB0-FE55B53B3ED1}" = CCC Help Finnish
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{579BA58C-F33D-4970-9953-B94B43768AC3}" = Grand Theft Auto IV
"{5B31B7DD-ED2E-F515-C900-B2E91138A34F}" = ccc-core-preinstall
"{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}" = Skype™ 3.8
"{5DA6F06A-B389-407B-BF8C-1548767914D8}" = ATI Problem Report Wizard
"{5F032DC8-A020-D42E-F2E6-41C748A92A06}" = Catalyst Control Center Graphics Full New
"{618A812B-3099-8DB2-C8E4-95D15A7B7CD5}" = Catalyst Control Center HydraVision Full
"{6A7E75AF-C2C7-4B1E-FE46-E0979833D6D5}" = CCC Help Spanish
"{71AFFCBF-0864-C19D-0C07-5DF67BA0382D}" = CCC Help Turkish
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7748AC8C-18E3-43BB-959B-088FAEA16FB2}" = Nero StartSmart
"{7876AE8D-08D8-3A1C-A1F4-E7F255DDBBEA}" = ccc-utility
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83A606F5-BF6F-42ED-9F33-B9F74297CDED}" = Need for Speed(TM) Hot Pursuit
"{8425081E-FEFF-6E4B-408E-53345859896C}" = CCC Help English
"{8e9e9b88-2ebe-4e63-8456-0f405154a61b}" = Nero 9 Lite
"{90120000-0010-0415-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Polish) 12
"{90120000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2007
"{90120000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2007
"{90120000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2007
"{90120000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2007
"{90120000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2007
"{90120000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2007
"{90FE2C60-A4C3-D61D-790A-9493EE405AEA}" = CCC Help Swedish
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A2F991E7-DDCD-42B7-AFEC-47789A099FDC}" = Browser Configuration Utility
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A8BBAA6B-71BE-4AA2-A9DE-76BF38473E5F}" = ATI AVIVO Codecs
"{AC76BA86-7AD7-1045-7B44-A94000000001}" = Adobe Reader 9.4.1 - Polish
"{ADAA5D11-5D8F-31EC-1992-693239110308}" = CCC Help French
"{B21C00B6-2B53-BB00-B4FE-27316019A9C5}" = CCC Help Chinese Traditional
"{B2EC4A38-B545-4A00-8214-13FE0E915E6D}" = Advertising Center
"{BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}" = Nero ControlCenter
"{BD7CDF5A-315E-A085-CF42-921B37D7A507}" = CCC Help Hungarian
"{BE9269F2-562B-7BC7-9BE9-16EF8B52B403}" = Catalyst Control Center Localization All
"{BF243C52-D0D2-A777-D388-DFCCF00FFC23}" = CCC Help Dutch
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C151CE54-E7EA-4804-854B-F515368B0798}" = AMD Processor Driver
"{C7370250-3AA3-23F8-DE52-21701C911BBD}" = CCC Help Korean
"{C7DA1638-A3B9-0AF6-B1B3-5ACBC08E7204}" = CCC Help Polish
"{C81A2FE0-3574-00A9-CED4-BDAA334CBE8E}" = Nero Online Upgrade
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1" = Rapture3D 2.3.22 Game
"{D3B1C799-CB73-42DE-BA0F-2344793A095C}" = Catalyst Control Center - Branding
"{D472CC91-8FFC-B07C-F755-363498CF7724}" = CCC Help Danish
"{D68E33C8-F508-F069-FF15-59B2BF50B0D3}" = CCC Help Japanese
"{D80A6A73-E58A-4673-AFF5-F12D7110661F}" = Call of Duty(R) - World at War(TM)
"{E236A12C-FE29-49C4-C10C-F9AFF2EE8D39}" = CCC Help Chinese Standard
"{E8A80433-302B-4FF1-815D-FCC8EAC482FF}" = Nero Installer
"{ECE0113B-23D0-4DD8-89E6-D2F026CABF03}" = ACDSee 7.0
"{EFA83B92-06EA-D90D-1342-A7872D97B89F}" = CCC Help Italian
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F9835182-794B-4F24-902A-E2CA9D43380F}" = NVIDIA PhysX
"{FAFD1909-311F-2035-6C97-7151A3B485C5}" = CCC Help Greek
"{FD433CFA-5819-54FC-005C-140926CDBB6F}" = CCC Help Czech
"{FF97034A-E1FE-CC80-E5D4-549796B72E36}" = CCC Help Norwegian
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"All ATI Software" = Narzędzie Software Uninstall Utility firmy ATI
"Ares" = Ares 2.1.4
"ATI Display Driver" = ATI Display Driver
"avast5" = avast! Free Antivirus
"Enable S3 for USB Device" = Enable S3 for USB Device
"Gadu-Gadu 10" = Gadu-Gadu 10
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"InstallShield_{D80A6A73-E58A-4673-AFF5-F12D7110661F}" = Call of Duty(R) - World at War(TM)
"KLiteCodecPack_is1" = K-Lite Codec Pack 5.4.4 (Full)
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"NapiProjekt_is1" = NapiProjekt 1.0.6.9
"NVIDIA Drivers" = NVIDIA Drivers
"OpenAL" = OpenAL
"RealAlt_is1" = Real Alternative 1.8.0
"TotalCopy_1.2_(Luki_Edition)_English" = TotalCopy 1.2 (Luki Edition)
"uTorrent" = µTorrent
"WIC" = Windows Imaging Component
"Winamp" = Winamp
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = Archiwizator WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-21-329068152-1214440339-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome

[color=#E56717]========== Last 10 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2011-01-10 14:24:38 | Computer Name = BURZEC-EA2A1002 | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd bestpl~1.exe, wersja 2.1.0.263, moduł powodujący
błąd wmvdmod.dll, wersja 10.0.0.3802, adres błędu 0x00005dd9.

Error - 2011-01-24 18:37:42 | Computer Name = BURZEC-EA2A1002 | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd explorer.exe, wersja 6.0.2900.2180, moduł
powodujący błąd shimgvw.dll, wersja 6.0.2900.5512, adres błędu 0x0000df56.

Error - 2011-01-24 18:37:49 | Computer Name = BURZEC-EA2A1002 | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd drwtsn32.exe, wersja 5.1.2600.0, moduł powodujący
błąd dbghelp.dll, wersja 5.1.2600.2180, adres błędu 0x0001295d.

Error - 2011-02-05 10:40:06 | Computer Name = BURZEC-EA2A1002 | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd uninstall.exe, wersja 8.1.1009.0, moduł
powodujący błąd uninstall.exe, wersja 8.1.1009.0, adres błędu 0x00001cb4.

[ System Events ]
Error - 2011-01-30 15:57:10 | Computer Name = BURZEC-EA2A1002 | Source = nvgts | ID = 262153
Description = Urządzenie \Device\Scsi\nvgts1 nie odpowiedziało w ramach ustalonego
limitu czasu.

Error - 2011-01-30 15:57:10 | Computer Name = BURZEC-EA2A1002 | Source = nvgts | ID = 262149
Description = Na \Device\Scsi\nvgts1 został wykryty błąd parzystości.

Error - 2011-02-07 13:41:48 | Computer Name = BURZEC-EA2A1002 | Source = Service Control Manager | ID = 7034
Description = Usługa Ati HotKey Poller niespodziewanie zakończyła pracę. Wystąpiło
to razy: 1.

Error - 2011-02-07 13:41:49 | Computer Name = BURZEC-EA2A1002 | Source = Service Control Manager | ID = 7034
Description = Usługa Browser Configuration Utility Service niespodziewanie zakończyła
pracę. Wystąpiło to razy: 1.

Error - 2011-02-07 13:41:49 | Computer Name = BURZEC-EA2A1002 | Source = Service Control Manager | ID = 7034
Description = Usługa Java Quick Starter niespodziewanie zakończyła pracę. Wystąpiło
to razy: 1.

Error - 2011-02-07 13:41:49 | Computer Name = BURZEC-EA2A1002 | Source = Service Control Manager | ID = 7034
Description = Usługa StarWind AE Service niespodziewanie zakończyła pracę. Wystąpiło
to razy: 1.


< End of report >
[/log]
RSIT
[log]info.txt logfile of random's system information tool 1.08 2011-02-07 18:56:39

======Uninstall list======

-->MsiExec /X{F9835182-794B-4F24-902A-E2CA9D43380F}
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
µTorrent-->"C:\Program Files\uTorrent\uTorrent.exe" /UNINSTALL
ACDSee 7.0-->MsiExec.exe /I{ECE0113B-23D0-4DD8-89E6-D2F026CABF03}
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10l_Plugin.exe -maintain plugin
Adobe Reader 9.4.1 - Polish-->MsiExec.exe /I{AC76BA86-7AD7-1045-7B44-A94000000001}
Advertising Center-->MsiExec.exe /X{B2EC4A38-B545-4A00-8214-13FE0E915E6D}
AMD Processor Driver-->C:\Program Files\InstallShield Installation Information\{C151CE54-E7EA-4804-854B-F515368B0798}\setup.exe -runfromtemp -l0x0015 -removeonly
Archiwizator WinRAR-->C:\Program Files\WinRAR\uninstall.exe
Ares 2.1.4-->"C:\Program Files\Ares\uninstall.exe"
ATI AVIVO Codecs-->MsiExec.exe /I{A8BBAA6B-71BE-4AA2-A9DE-76BF38473E5F}
ATI Catalyst Control Center-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{055EE59D-217B-43A7-ABFF-507B966405D8}\setup.exe" -l0x0
ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
ATI Parental Control & Encoder-->MsiExec.exe /I{36CDA33B-909B-4719-97D1-C4B99309BDC7}
ATI Problem Report Wizard-->MsiExec.exe /X{5DA6F06A-B389-407B-BF8C-1548767914D8}
avast! Free Antivirus-->C:\Program Files\Alwil Software\Avast5\aswRunDll.exe "C:\Program Files\Alwil Software\Avast5\Setup\setiface.dll" RunSetup
Browser Configuration Utility-->MsiExec.exe /X{A2F991E7-DDCD-42B7-AFEC-47789A099FDC}
Call of Duty(R) - World at War(TM)-->C:\Program Files\InstallShield Installation Information\{D80A6A73-E58A-4673-AFF5-F12D7110661F}\setup.exe -runfromtemp -l0x0415
Catalyst Control Center - Branding-->MsiExec.exe /I{D3B1C799-CB73-42DE-BA0F-2344793A095C}
Dirt 2 Spolszczenie by O22y-->"C:\Gry\DiRT2\unins000.exe"
DiRT2-->"C:\Program Files\InstallShield Installation Information\{52D1D62C-FEAB-4580-849E-1DB624BADBBD}\setup.exe" -runfromtemp -l0x0009 -removeonly
Enable S3 for USB Device-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Gigabyte\Enable S3 for USB Device\Uninst.isu"
Gadu-Gadu 10-->C:\Program Files\Gadu-Gadu 10\Uninstall.exe
Grand Theft Auto IV-->"C:\Program Files\InstallShield Installation Information\{579BA58C-F33D-4970-9953-B94B43768AC3}\setup.exe" -runfromtemp -l0x0009 -removeonly
High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Java(TM) 6 Update 13-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216013FF}
K-Lite Codec Pack 5.4.4 (Full)-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Games for Windows - LIVE Redistributable-->MsiExec.exe /X{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}
Microsoft Games for Windows - LIVE-->MsiExec.exe /X{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}
Microsoft Office Excel MUI (Polish) 2007-->MsiExec.exe /X{90120000-0016-0415-0000-0000000FF1CE}
Microsoft Office Home and Student 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall HOMESTUDENTR /dll OSETUP.DLL
Microsoft Office Home and Student 2007-->MsiExec.exe /X{91120000-002F-0000-0000-0000000FF1CE}
Microsoft Office OneNote MUI (Polish) 2007-->MsiExec.exe /X{90120000-00A1-0415-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (Polish) 2007-->MsiExec.exe /X{90120000-0018-0415-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Polish) 2007-->MsiExec.exe /X{90120000-001F-0415-0000-0000000FF1CE}
Microsoft Office Proofing (Polish) 2007-->MsiExec.exe /X{90120000-002C-0415-0000-0000000FF1CE}
Microsoft Office Shared MUI (Polish) 2007-->MsiExec.exe /X{90120000-006E-0415-0000-0000000FF1CE}
Microsoft Office Word MUI (Polish) 2007-->MsiExec.exe /X{90120000-001B-0415-0000-0000000FF1CE}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
MSXML 6.0 Parser (KB933579)-->MsiExec.exe /I{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}
NapiProjekt 1.0.6.9-->"C:\Program Files\NAPI-PROJEKT\unins000.exe"
Narzędzie Software Uninstall Utility firmy ATI-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe
Need for Speed(TM) Hot Pursuit-->MsiExec.exe /X{83A606F5-BF6F-42ED-9F33-B9F74297CDED}
Nero 9 Lite-->C:\Program Files\Common Files\Nero\Nero ProductInstaller 4\SetupX.exe REMOVESERIALNUMBER="XM2C-50A9-HH4M-0ZM8-4X06-9P25-5A46-618P-AH19-6647"
Nero ControlCenter-->MsiExec.exe /X{BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}
Nero Installer-->MsiExec.exe /X{E8A80433-302B-4FF1-815D-FCC8EAC482FF}
Nero Online Upgrade-->MsiExec.exe /X{C81A2FE0-3574-00A9-CED4-BDAA334CBE8E}
Nero StartSmart-->MsiExec.exe /X{7748AC8C-18E3-43BB-959B-088FAEA16FB2}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
NVIDIA Drivers-->C:\Program Files\NVIDIA Corporation\Uninstall\nvuninst.exe UninstallGUI
NVIDIA PhysX-->MsiExec.exe /X{F9835182-794B-4F24-902A-E2CA9D43380F}
ON_OFF Charge B10.0427.1-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3DECD372-76A1-4483-BF10-B547790A3261}\setup.exe" -l0x9 -removeonly
OpenAL-->"C:\Program Files\OpenAL\OpenALwEAX.exe" /U
Rapture3D 2.3.22 Game-->"C:\Program Files\BRS\unins000.exe"
Real Alternative 1.8.0-->"C:\Program Files\Real Alternative\unins000.exe"
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\SETUP.EXE" -l0x15 -removeonly
Rockstar Games Social Club-->"C:\Program Files\InstallShield Installation Information\{08B3869E-D282-424C-9AFC-870E04A4BA14}\setup.exe" -runfromtemp -l0x0009 -removeonly
Skype™ 3.8-->MsiExec.exe /X{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}
TotalCopy 1.2 (Luki Edition)-->C:\WINDOWS\iun6002.exe "C:\WINDOWS\irunin.ini"
Winamp-->"C:\Program Files\Winamp\UninstWA.exe"
Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"

======System event log======

Computer Name: BURZEC-EA2A1002
Event Code: 7035
Message: Do usługi Usługa bramy warstwy aplikacji został pomyślnie wysłany kod sterowania uruchom.

Record Number: 3145
Source Name: Service Control Manager
Time Written: 20101228165308.000000+060
Event Type: informacje
User: ZARZĄDZANIE NT\SYSTEM

Computer Name: BURZEC-EA2A1002
Event Code: 7036
Message: Usługa Karta wydajności WMI weszła w stan uruchomienia.

Record Number: 3144
Source Name: Service Control Manager
Time Written: 20101228165308.000000+060
Event Type: informacje
User:

Computer Name: BURZEC-EA2A1002
Event Code: 7035
Message: Do usługi Karta wydajności WMI został pomyślnie wysłany kod sterowania uruchom.

Record Number: 3143
Source Name: Service Control Manager
Time Written: 20101228165308.000000+060
Event Type: informacje
User: ZARZĄDZANIE NT\SYSTEM

Computer Name: BURZEC-EA2A1002
Event Code: 7036
Message: Usługa Usługa odnajdywania SSDP weszła w stan uruchomienia.

Record Number: 3142
Source Name: Service Control Manager
Time Written: 20101228165308.000000+060
Event Type: informacje
User:

Computer Name: BURZEC-EA2A1002
Event Code: 7036
Message: Usługa avast! Mail Scanner weszła w stan uruchomienia.

Record Number: 3141
Source Name: Service Control Manager
Time Written: 20101228165308.000000+060
Event Type: informacje
User:

=====Application event log=====

Computer Name: BURZEC-EA2A1002
Event Code: 1800
Message: Usługa Centrum zabezpieczeń systemu Windows została uruchomiona.

Record Number: 881
Source Name: SecurityCenter
Time Written: 20110110204919.000000+060
Event Type: informacje
User:

Computer Name: BURZEC-EA2A1002
Event Code: 105
Message: The service was started.

Record Number: 880
Source Name: ATI Smart
Time Written: 20110110204910.000000+060
Event Type: informacje
User:

Computer Name: BURZEC-EA2A1002
Event Code: 1517
Message: System Windows zapisał rejestr użytkownika BURZEC-EA2A1002\Burzec, kiedy aplikacja lub usługa nadal użytkowała rejestr podczas wylogowania. Pamięć używana przez rejestr użytkownika nie została zwolniona. Rejestr zostanie zwolniony, kiedy nie będzie używany.


Najczęstszą tego przyczyną są usługi uruchamiane z konta użytkownika. Próbuj skonfigurować te usługi, aby były uruchamiane z konta LocalService lub NetworkService.

Record Number: 879
Source Name: Userenv
Time Written: 20110110204816.000000+060
Event Type: ostrzeżenie
User: ZARZĄDZANIE NT\SYSTEM

Computer Name: BURZEC-EA2A1002
Event Code: 4097
Message: Aplikacja C:\DOCUME~1\Burzec\Pulpit\BESTPL~1.EXE wygenerowała błąd aplikacji.
Błąd wystąpił na 01/10/2011 @ 19:24:41.625.
Wygenerowany wyjątek to c0000005 pod adresem 03935DD9 (wmvdmod).

Record Number: 878
Source Name: DrWatson
Time Written: 20110110192441.000000+060
Event Type: informacje
User:

Computer Name: BURZEC-EA2A1002
Event Code: 1000
Message: Aplikacja powodująca błąd bestpl~1.exe, wersja 2.1.0.263, moduł powodujący błąd wmvdmod.dll, wersja 10.0.0.3802, adres błędu 0x00005dd9.

Record Number: 877
Source Name: Application Error
Time Written: 20110110192438.000000+060
Event Type: błąd
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=C:\Program Files\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=16
"PROCESSOR_IDENTIFIER"=x86 Family 16 Model 6 Stepping 3, AuthenticAMD
"PROCESSOR_REVISION"=0603
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"RGSCLauncher"=C:\Gry\GTA 4\Rockstar Games\Rockstar Games Social Club
"RGSC"=C:\Gry\GTA 4\Rockstar Games\Rockstar Games Social Club\1_0_0_0

-----------------EOF-----------------
[/log]
[log]Logfile of random's system information tool 1.08 (written by random/random)
Run by Burzec at 2011-02-07 18:56:37
Microsoft Windows XP Professional Dodatek Service Pack 3
System drive C: has 44 GB (44%) free of 100 GB
Total RAM: 2046 MB (74% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:56:38, on 2011-02-07
Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\notepad.exe
C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Documents and Settings\Burzec\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Burzec\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Burzec\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Burzec\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Burzec\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
C:\WINDOWS\notepad.exe
C:\WINDOWS\notepad.exe
D:\instalki\do usuwania wirusów\RSIT.exe
C:\Program Files\trend micro\Burzec.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://proxy.ilabs.pl/auto.pac
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [BCU] "C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe"
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA LOKALNA')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA SIECIOWA')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{75764F4D-64B2-4F3A-A8E5-64B84C7FDAE0}: NameServer = 212.244.142.10,212.244.142.9
O17 - HKLM\System\CS1\Services\Tcpip\..\{75764F4D-64B2-4F3A-A8E5-64B84C7FDAE0}: NameServer = 212.244.142.10,212.244.142.9
O17 - HKLM\System\CS2\Services\Tcpip\..\{75764F4D-64B2-4F3A-A8E5-64B84C7FDAE0}: NameServer = 212.244.142.10,212.244.142.9
O17 - HKLM\System\CS3\Services\Tcpip\..\{75764F4D-64B2-4F3A-A8E5-64B84C7FDAE0}: NameServer = 212.244.142.10,212.244.142.9
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: AppleChargerSrv - Unknown owner - C:\WINDOWS\system32\AppleChargerSrv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Browser Configuration Utility Service (BCUService) - DeviceVM, Inc. - C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

--
End of file - 5615 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2008-06-03 1404928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-10-22 35840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-10-22 73728]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2011-01-13 3396624]
"BCU"=C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe [2009-10-15 375000]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2010-12-11 395640]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe [2007-08-01 222592]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ares]
C:\Program Files\Ares\Ares.exe [2010-01-22 1011712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCU]
C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe [2009-10-15 375000]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Documents and Settings\Burzec\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe [2010-10-22 133104]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Resume copy]
copyfstq.exe /startup []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
C:\WINDOWS\RTHDCPL.EXE [2010-04-30 19523616]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-07-02 98304]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\jre6\bin\jusched.exe [2010-10-22 148888]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2009-07-02 155648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=36
"NoDriveAutoRun"=0xFFFFFFFF

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Gadu-Gadu 10\gg.exe"="C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Ares\Ares.exe"="C:\Program Files\Ares\Ares.exe:*:Enabled:Ares p2p for windows"
"C:\Gry\Mafia 2\Steam.exe"="C:\Gry\Mafia 2\Steam.exe:*:Enabled:Steam"
"C:\Gry\DiRT2\dirt2_game.exe"="C:\Gry\DiRT2\dirt2_game.exe:*:Enabled:DiRT2"
"C:\Gry\Call of Duty - Black Ops\BlackOps.exe"="C:\Gry\Call of Duty - Black Ops\BlackOps.exe:*:Enabled:BlackOps"
"C:\Gry\Need For Speed Hot Pursuit 2\Launcher.exe"="C:\Gry\Need For Speed Hot Pursuit 2\Launcher.exe:*:Enabled:Need for Speed(TM) Hot Pursuit"
"C:\Gry\Need For Speed Hot Pursuit 2\NFS11.exe"="C:\Gry\Need For Speed Hot Pursuit 2\NFS11.exe:*:Enabled:Need for Speed(TM) Hot Pursuit Application"
"C:\Gry\Call of Duty - World at War\CoDWaWmp.exe"="C:\Gry\Call of Duty - World at War\CoDWaWmp.exe:*:Enabled:Call of Duty(R) - World at War(TM)"
"C:\Gry\Call of Duty - World at War\CoDWaW.exe"="C:\Gry\Call of Duty - World at War\CoDWaW.exe:*:Enabled:Call of Duty(R) - World at War(TM)"
"C:\Gry\GTA 4\Grand Theft Auto IV\LaunchGTAIV.exe"="C:\Gry\GTA 4\Grand Theft Auto IV\LaunchGTAIV.exe:*:Enabled:Grand Theft Auto IV"
"C:\Gry\GTA 4\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe"="C:\Gry\GTA 4\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:*:Enabled:Rockstar Games Social Club"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Gry\GTA 4\Grand Theft Auto IV\GTAIV.exe"="C:\Gry\GTA 4\Grand Theft Auto IV\GTAIV.exe:*:Enabled:Grand Theft Auto IV"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Uruchamia plik DLL jako aplikację"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2011-02-07 18:56:37 ----D---- C:\rsit
2011-02-07 18:33:52 ----RASHD---- C:\autorun.inf
2011-02-05 15:37:37 ----ASH---- C:\WINDOWS\Sys6547SettingsDB.sys
2011-02-05 15:34:24 ----D---- C:\Program Files\jv16 PowerTools 2011
2011-02-05 14:16:17 ----A---- C:\WINDOWS\system32\pgdfgsvc.exe
2011-02-05 12:49:12 ----D---- C:\Program Files\trend micro
2011-01-24 23:40:05 ----D---- C:\WINDOWS\Prefetch
2011-01-24 23:34:10 ----N---- C:\WINDOWS\system32\smtpapi.dll
2011-01-24 23:34:10 ----N---- C:\WINDOWS\system32\rwnh.dll
2011-01-24 23:34:10 ----N---- C:\WINDOWS\system32\drivers\irbus.sys
2011-01-24 23:34:10 ----N---- C:\WINDOWS\system32\comsdupd.exe
2011-01-24 23:34:08 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2011-01-24 23:34:08 ----N---- C:\WINDOWS\system32\azroles.dll
2011-01-24 23:34:08 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2011-01-24 23:34:08 ----N---- C:\WINDOWS\system32\ati3d1ag.dll
2011-01-24 23:34:08 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2011-01-24 23:34:08 ----N---- C:\WINDOWS\system32\aaclient.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\eapsvc.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\eapqec.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\eappprxy.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\eapphost.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\eappgnui.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\eappcfg.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\eapolqec.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\dot3ui.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\dot3svc.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\dot3msm.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\dot3api.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\dimsroam.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2011-01-24 23:34:07 ----N---- C:\WINDOWS\system32\credssp.dll
2011-01-24 23:34:06 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2011-01-24 23:34:06 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2011-01-24 23:34:06 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2011-01-24 23:34:06 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2011-01-24 23:34:05 ----N---- C:\WINDOWS\system32\napstat.exe
2011-01-24 23:34:05 ----N---- C:\WINDOWS\system32\napmontr.dll
2011-01-24 23:34:05 ----N---- C:\WINDOWS\system32\napipsec.dll
2011-01-24 23:34:05 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2011-01-24 23:34:05 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2011-01-24 23:34:05 ----N---- C:\WINDOWS\system32\mssha.dll
2011-01-24 23:34:05 ----N---- C:\WINDOWS\system32\mmcperf.exe
2011-01-24 23:34:05 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2011-01-24 23:34:05 ----N---- C:\WINDOWS\system32\mmcex.dll
2011-01-24 23:34:05 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2011-01-24 23:34:05 ----N---- C:\WINDOWS\system32\mdmxsdk.dll
2011-01-24 23:34:05 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2011-01-24 23:34:05 ----N---- C:\WINDOWS\system32\kmsvc.dll
2011-01-24 23:34:05 ----N---- C:\WINDOWS\system32\kbdpash.dll
2011-01-24 23:34:04 ----N---- C:\WINDOWS\system32\slserv.exe
2011-01-24 23:34:04 ----N---- C:\WINDOWS\system32\slrundll.exe
2011-01-24 23:34:04 ----N---- C:\WINDOWS\system32\slgen.dll
2011-01-24 23:34:04 ----N---- C:\WINDOWS\system32\slextspk.dll
2011-01-24 23:34:04 ----N---- C:\WINDOWS\system32\slcoinst.dll
2011-01-24 23:34:04 ----N---- C:\WINDOWS\system32\setupn.exe
2011-01-24 23:34:04 ----N---- C:\WINDOWS\system32\s3gnb.dll
2011-01-24 23:34:04 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2011-01-24 23:34:04 ----N---- C:\WINDOWS\system32\rasqec.dll
2011-01-24 23:34:04 ----N---- C:\WINDOWS\system32\qutil.dll
2011-01-24 23:34:04 ----N---- C:\WINDOWS\system32\qcliprov.dll
2011-01-24 23:34:04 ----N---- C:\WINDOWS\system32\qagentrt.dll
2011-01-24 23:34:04 ----N---- C:\WINDOWS\system32\qagent.dll
2011-01-24 23:34:04 ----N---- C:\WINDOWS\system32\onex.dll
2011-01-24 23:34:04 ----N---- C:\WINDOWS\system32\nv4_disp.dll
2011-01-24 23:34:03 ----N---- C:\WINDOWS\system32\xpsp3res.dll
2011-01-24 23:34:03 ----N---- C:\WINDOWS\system32\verclsid.exe
2011-01-24 23:34:03 ----N---- C:\WINDOWS\system32\tzchange.exe
2011-01-24 23:34:03 ----N---- C:\WINDOWS\system32\tspkg.dll
2011-01-24 23:34:03 ----N---- C:\WINDOWS\system32\tsgqec.dll
2011-01-24 23:34:02 ----N---- C:\WINDOWS\system32\wlanapi.dll
2011-01-24 23:34:01 ----N---- C:\WINDOWS\system32\xmllite.dll
2011-01-24 23:34:01 ----N---- C:\WINDOWS\slrundll.exe
2011-01-24 23:34:01 ----D---- C:\WINDOWS\system32\pl-pl
2011-01-24 23:34:01 ----D---- C:\WINDOWS\l2schemas
2011-01-24 23:34:00 ----D---- C:\WINDOWS\system32\pl
2011-01-24 23:33:59 ----D---- C:\WINDOWS\system32\bits
2011-01-24 23:31:39 ----D---- C:\WINDOWS\ServicePackFiles
2011-01-24 23:29:06 ----N---- C:\WINDOWS\system32\drivers\amdagp.sys
2011-01-24 23:29:06 ----N---- C:\WINDOWS\system32\drivers\alim1541.sys
2011-01-24 23:29:06 ----N---- C:\WINDOWS\system32\drivers\agpcpq.sys
2011-01-24 23:29:06 ----N---- C:\WINDOWS\system32\drivers\agp440.sys
2011-01-24 23:29:06 ----N---- C:\WINDOWS\system32\drivers\adv11nt5.dll
2011-01-24 23:29:06 ----N---- C:\WINDOWS\system32\drivers\adv09nt5.dll
2011-01-24 23:29:06 ----N---- C:\WINDOWS\system32\drivers\adv08nt5.dll
2011-01-24 23:29:06 ----N---- C:\WINDOWS\system32\drivers\adv07nt5.dll
2011-01-24 23:29:06 ----N---- C:\WINDOWS\system32\drivers\adv05nt5.dll
2011-01-24 23:29:06 ----N---- C:\WINDOWS\system32\drivers\adv02nt5.dll
2011-01-24 23:29:06 ----N---- C:\WINDOWS\system32\drivers\adv01nt5.dll
2011-01-24 23:29:06 ----D---- C:\WINDOWS\network diagnostic
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\atinttxx.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\atinsnxx.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\atinrvxx.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\atinraxx.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\atinpdxx.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\atinmdxx.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\atinbtxx.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\ati2mtaa.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\ati1xsxx.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\ati1xbxx.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\ati1tuxx.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\ati1ttxx.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\ati1snxx.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\ati1rvxx.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\ati1raxx.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\ati1pdxx.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\ati1mdxx.sys
2011-01-24 23:29:05 ----N---- C:\WINDOWS\system32\drivers\ati1btxx.sys
2011-01-24 23:29:04 ----N---- C:\WINDOWS\system32\drivers\gagp30kx.sys
2011-01-24 23:29:04 ----N---- C:\WINDOWS\system32\drivers\ch7xxnt5.dll
2011-01-24 23:29:04 ----N---- C:\WINDOWS\system32\drivers\bthusb.sys
2011-01-24 23:29:04 ----N---- C:\WINDOWS\system32\drivers\bthprint.sys
2011-01-24 23:29:04 ----N---- C:\WINDOWS\system32\drivers\bthport.sys
2011-01-24 23:29:04 ----N---- C:\WINDOWS\system32\drivers\bthpan.sys
2011-01-24 23:29:04 ----N---- C:\WINDOWS\system32\drivers\bthmodem.sys
2011-01-24 23:29:04 ----N---- C:\WINDOWS\system32\drivers\bthenum.sys
2011-01-24 23:29:04 ----N---- C:\WINDOWS\system32\drivers\atv10nt5.dll
2011-01-24 23:29:04 ----N---- C:\WINDOWS\system32\drivers\atv06nt5.dll
2011-01-24 23:29:04 ----N---- C:\WINDOWS\system32\drivers\atv04nt5.dll
2011-01-24 23:29:04 ----N---- C:\WINDOWS\system32\drivers\atv02nt5.dll
2011-01-24 23:29:04 ----N---- C:\WINDOWS\system32\drivers\atv01nt5.dll
2011-01-24 23:29:04 ----N---- C:\WINDOWS\system32\drivers\atinxsxx.sys
2011-01-24 23:29:04 ----N---- C:\WINDOWS\system32\drivers\atinxbxx.sys
2011-01-24 23:29:04 ----N---- C:\WINDOWS\system32\drivers\atintuxx.sys
2011-01-24 23:29:03 ----N---- C:\WINDOWS\system32\drivers\hsfdpsp2.sys
2011-01-24 23:29:03 ----N---- C:\WINDOWS\system32\drivers\hsfcxts2.sys
2011-01-24 23:29:03 ----N---- C:\WINDOWS\system32\drivers\hsfbs2s2.sys
2011-01-24 23:29:03 ----N---- C:\WINDOWS\system32\drivers\hidir.sys
2011-01-24 23:29:03 ----N---- C:\WINDOWS\system32\drivers\hidbth.sys
2011-01-24 23:29:02 ----N---- C:\WINDOWS\system32\drivers\recagent.sys
2011-01-24 23:29:02 ----N---- C:\WINDOWS\system32\drivers\nv4_mini.sys
2011-01-24 23:29:02 ----N---- C:\WINDOWS\system32\drivers\ntmtlfax.sys
2011-01-24 23:29:02 ----N---- C:\WINDOWS\system32\drivers\mutohpen.sys
2011-01-24 23:29:02 ----N---- C:\WINDOWS\system32\drivers\mtxparhm.sys
2011-01-24 23:29:02 ----N---- C:\WINDOWS\system32\drivers\mtlstrm.sys
2011-01-24 23:29:02 ----N---- C:\WINDOWS\system32\drivers\mtlmnt5.sys
2011-01-24 23:29:02 ----N---- C:\WINDOWS\system32\drivers\mdmxsdk.sys
2011-01-24 23:29:01 ----N---- C:\WINDOWS\system32\drivers\smbali.sys
2011-01-24 23:29:01 ----N---- C:\WINDOWS\system32\drivers\slwdmsup.sys
2011-01-24 23:29:01 ----N---- C:\WINDOWS\system32\drivers\slnthal.sys
2011-01-24 23:29:01 ----N---- C:\WINDOWS\system32\drivers\slntamr.sys
2011-01-24 23:29:01 ----N---- C:\WINDOWS\system32\drivers\slnt7554.sys
2011-01-24 23:29:01 ----N---- C:\WINDOWS\system32\drivers\sisagp.sys
2011-01-24 23:29:01 ----N---- C:\WINDOWS\system32\drivers\siint5.dll
2011-01-24 23:29:01 ----N---- C:\WINDOWS\system32\drivers\sffp_mmc.sys
2011-01-24 23:29:01 ----N---- C:\WINDOWS\system32\drivers\s3gnbm.sys
2011-01-24 23:29:01 ----N---- C:\WINDOWS\system32\drivers\rndismpx.sys
2011-01-24 23:29:01 ----N---- C:\WINDOWS\system32\drivers\rfcomm.sys
2011-01-24 23:29:00 ----N---- C:\WINDOWS\system32\drivers\watv10nt.sys
2011-01-24 23:29:00 ----N---- C:\WINDOWS\system32\drivers\watv06nt.sys
2011-01-24 23:29:00 ----N---- C:\WINDOWS\system32\drivers\wadv11nt.sys
2011-01-24 23:29:00 ----N---- C:\WINDOWS\system32\drivers\wadv09nt.sys
2011-01-24 23:29:00 ----N---- C:\WINDOWS\system32\drivers\wadv08nt.sys
2011-01-24 23:29:00 ----N---- C:\WINDOWS\system32\drivers\wadv07nt.sys
2011-01-24 23:29:00 ----N---- C:\WINDOWS\system32\drivers\wacompen.sys
2011-01-24 23:29:00 ----N---- C:\WINDOWS\system32\drivers\viaagp.sys
2011-01-24 23:29:00 ----N---- C:\WINDOWS\system32\drivers\vchnt5.dll
2011-01-24 23:29:00 ----N---- C:\WINDOWS\system32\drivers\usbvideo.sys
2011-01-24 23:29:00 ----N---- C:\WINDOWS\system32\drivers\usb8023x.sys
2011-01-24 23:29:00 ----N---- C:\WINDOWS\system32\drivers\uagp35.sys
2011-01-24 17:38:34 ----A---- C:\WINDOWS\system32\CmdLineExt.dll
2011-01-24 17:37:12 ----N---- C:\WINDOWS\system32\spmsg.dll
2011-01-23 13:30:49 ----D---- C:\WINDOWS\system32\LogFiles
2011-01-23 13:30:17 ----D---- C:\WINDOWS\system32\drivers\umdf
2011-01-21 19:32:30 ----A---- C:\WINDOWS\iun6002.exe
2011-01-21 19:32:30 ----A---- C:\WINDOWS\irunin.ini
2011-01-20 22:03:11 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Electronic Arts
2011-01-20 22:03:11 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\EA Core
2011-01-20 21:45:47 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Solidshield
2011-01-10 21:23:32 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2011-01-10 21:23:32 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2011-01-10 21:23:31 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2011-01-10 21:23:31 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2011-01-10 21:23:30 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2011-01-10 21:23:30 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2011-01-10 21:23:29 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2011-01-10 21:23:29 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2011-01-10 21:23:29 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2011-01-10 21:23:29 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2011-01-10 21:23:28 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2011-01-10 21:23:28 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2011-01-08 17:41:36 ----A---- C:\AutoMapaSetupLog.txt

======List of files/folders modified in the last 1 months======

2011-02-07 18:56:25 ----D---- C:\Documents and Settings\Burzec\Dane aplikacji\uTorrent
2011-02-07 18:45:34 ----D---- C:\WINDOWS\Temp
2011-02-07 18:42:13 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-02-07 18:42:03 ----D---- C:\WINDOWS\system32
2011-02-07 18:42:03 ----D---- C:\WINDOWS
2011-02-07 18:41:51 ----SD---- C:\WINDOWS\Tasks
2011-02-07 18:41:50 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2011-02-06 00:45:17 ----D---- C:\WINDOWS\system32\CatRoot2
2011-02-05 18:23:09 ----HD---- C:\WINDOWS\inf
2011-02-05 15:34:24 ----RD---- C:\Program Files
2011-02-05 14:15:27 ----D---- C:\WINDOWS\system32\drivers
2011-02-05 14:11:29 ----D---- C:\Documents and Settings\Burzec\Dane aplikacji\Winamp
2011-02-05 14:08:15 ----D---- C:\WINDOWS\Debug
2011-02-05 13:33:48 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-02-05 13:26:59 ----RSH---- C:\boot.ini
2011-02-05 13:26:59 ----A---- C:\WINDOWS\win.ini
2011-02-05 13:26:59 ----A---- C:\WINDOWS\system.ini
2011-02-04 16:46:39 ----D---- C:\Gry
2011-02-02 21:43:02 ----D---- C:\Documents and Settings\Burzec\Dane aplikacji\Skype
2011-02-02 19:36:42 ----D---- C:\Documents and Settings\Burzec\Dane aplikacji\skypePM
2011-02-01 22:30:16 ----D---- C:\Documents and Settings\Burzec\Dane aplikacji\Gadu-Gadu 10
2011-01-24 23:41:03 ----SHD---- C:\WINDOWS\Installer
2011-01-24 23:39:25 ----D---- C:\WINDOWS\system32\wbem
2011-01-24 23:39:25 ----D---- C:\WINDOWS\system32\Setup
2011-01-24 23:39:25 ----D---- C:\WINDOWS\AppPatch
2011-01-24 23:39:24 ----RSD---- C:\WINDOWS\Fonts
2011-01-24 23:36:28 ----D---- C:\WINDOWS\system32\CatRoot
2011-01-24 23:36:21 ----D---- C:\WINDOWS\security
2011-01-24 23:34:23 ----D---- C:\WINDOWS\WinSxS
2011-01-24 23:34:19 ----D---- C:\Program Files\Messenger
2011-01-24 23:34:17 ----D---- C:\WINDOWS\Help
2011-01-24 23:34:17 ----D---- C:\Program Files\Windows Media Player
2011-01-24 23:34:11 ----D---- C:\WINDOWS\ehome
2011-01-24 23:34:09 ----D---- C:\WINDOWS\system32\inetsrv
2011-01-24 23:34:09 ----D---- C:\WINDOWS\ime
2011-01-24 23:34:01 ----D---- C:\WINDOWS\system32\usmt
2011-01-24 23:34:01 ----D---- C:\Program Files\Internet Explorer
2011-01-24 23:33:59 ----D---- C:\WINDOWS\PeerNet
2011-01-24 23:33:59 ----D---- C:\Program Files\Movie Maker
2011-01-24 23:31:27 ----D---- C:\WINDOWS\system32\Restore
2011-01-24 23:31:27 ----D---- C:\WINDOWS\system32\npp
2011-01-24 23:31:25 ----D---- C:\WINDOWS\msagent
2011-01-24 23:31:23 ----D---- C:\WINDOWS\srchasst
2011-01-24 23:31:22 ----D---- C:\Program Files\NetMeeting
2011-01-24 23:31:21 ----D---- C:\WINDOWS\system32\Com
2011-01-24 23:31:17 ----D---- C:\Program Files\Windows NT
2011-01-24 23:31:17 ----D---- C:\Program Files\Outlook Express
2011-01-24 23:31:13 ----D---- C:\Program Files\Common Files\System
2011-01-24 23:30:51 ----D---- C:\WINDOWS\system32\oobe
2011-01-24 23:30:49 ----D---- C:\WINDOWS\system
2011-01-24 23:27:30 ----D---- C:\WINDOWS\system32\ReinstallBackups
2011-01-24 17:39:51 ----HD---- C:\Program Files\InstallShield Installation Information
2011-01-24 17:37:46 ----D---- C:\WINDOWS\system32\DirectX
2011-01-24 17:37:34 ----RSD---- C:\WINDOWS\assembly
2011-01-23 12:37:05 ----D---- C:\Program Files\NAPI-PROJEKT
2011-01-13 09:47:32 ----A---- C:\WINDOWS\system32\aswBoot.exe
2011-01-12 19:09:14 ----SD---- C:\Documents and Settings\Burzec\Dane aplikacji\Microsoft
2011-01-10 21:22:13 ----D---- C:\WINDOWS\Logs

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 nvgts;nvgts; C:\WINDOWS\system32\DRIVERS\nvgts.sys [2010-04-08 168040]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-11-28 685816]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2011-01-13 29392]
R1 AmdPPM;Sterownik procesora AMD HwPState; C:\WINDOWS\system32\DRIVERS\AmdPPM.sys [2007-04-16 33792]
R1 AppleCharger;AppleCharger; C:\WINDOWS\system32\DRIVERS\AppleCharger.sys [2010-04-27 19496]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2011-01-13 23632]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2011-01-13 294608]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2011-01-13 47440]
R1 kbdhid;Sterownik klawiatury HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2011-01-13 17744]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2011-01-13 100176]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2009-07-02 4125696]
R3 HDAudBus;Sterownik magistrali Microsoft UAA dla High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2010-04-30 6032928]
R3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-26 12160]
R3 NVENETFD;NVIDIA nForce 10/100 Mbps Ethernet ; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2010-03-04 70912]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2010-03-04 13824]
R3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 usbprint;Klasa PRINTER USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
R3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2009-11-18 1691480]
S3 ax5nsi6h;ax5nsi6h; C:\WINDOWS\system32\drivers\ax5nsi6h.sys []
S3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2009-11-18 1395800]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2009-07-02 602112]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-01-13 40384]
R2 BCUService;Browser Configuration Utility Service; C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe [2009-10-15 223464]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-10-22 152984]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2009-07-02 593920]
S3 AppleChargerSrv;AppleChargerSrv; C:\WINDOWS\system32\AppleChargerSrv.exe [2010-04-06 31272]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------
[/log]
Na dysku d utworzył się folder OTL z przeniesionymi plikami czy mogę go usunąć ?

Tomek01
komentarz
komentarz

Jest czysto. W OTL wciśnij CleanUp.
Możesz usunąć kwarantannę OTL.

Propopnuję zmienić Avasta na innego darmowego AV.

burzecg
komentarz
komentarz

Wielkie dzięki za pomoc!
Czy mógłbyś jeszcze napisać na jakiego antywirusa zmienić avasta bo nie chce eksperymentować.

Tomek01
komentarz
komentarz

Polecam Ci Avirę, sprawdzone ;)

burzecg
komentarz
komentarz

Więc zmieniam natychmiast jeszcze raz wielkie dzięki za pomoc.

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.