x-kom hosting

qooqlle zamiast google

batonxd
utworzono
utworzono

witam. jestem całkiem lewy co do tego typu problemów więc proszę o wyrozumiałość :D mam problem mianowicie od paru miesięcy próbuje uporać się z problemem qooqlle.com który powraca zawsze po restarcie komputera do tego żadne ustawienia wyszukiwarki (google chrome) nie zapisują się próbowałem już wszystkiego bez skutku proszę o odpowiedź i z góry dziękuje :help:

[log]OTL logfile created on: 2011-02-09 09:59:42 - Run 1
OTL by OldTimer - Version 3.2.20.6 Folder = C:\Documents and Settings\User\Pulpit
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

1 015,00 Mb Total Physical Memory | 406,00 Mb Available Physical Memory | 40,00% Memory free
2,00 Gb Paging File | 1,00 Gb Available in Paging File | 65,00% Paging File free
Paging file location(s): C:\pagefile.sys 756 1512 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 37,27 Gb Total Space | 5,82 Gb Free Space | 15,61% Space Free | Partition Type: NTFS

Computer Name: USER-FCC60EA01E | User Name: User | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days

[color=#E56717]========== Processes (All) ==========[/color]

PRC - [2011-02-09 00:12:40 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe
PRC - [2011-02-07 10:29:02 | 000,994,872 | ---- | M] (Google Inc.) -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
PRC - [2011-01-07 01:22:54 | 002,747,744 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgtray.exe
PRC - [2011-01-07 01:22:44 | 001,084,256 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgnsx.exe
PRC - [2011-01-07 01:22:12 | 001,052,512 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgemcx.exe
PRC - [2011-01-06 15:23:20 | 000,737,872 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe
PRC - [2011-01-06 15:23:18 | 006,128,720 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
PRC - [2011-01-02 19:29:52 | 000,396,152 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\uTorrent\uTorrent.exe
PRC - [2010-12-05 16:26:40 | 000,654,176 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgrsx.exe
PRC - [2010-12-05 16:26:12 | 000,650,592 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgchsvx.exe
PRC - [2010-11-22 04:48:46 | 003,226,632 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgfws.exe
PRC - [2010-11-12 18:53:22 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2010-10-22 04:58:18 | 000,265,400 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgwdsvc.exe
PRC - [2010-10-22 04:56:58 | 000,845,664 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgcsrvx.exe
PRC - [2010-10-22 04:56:48 | 000,745,824 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgam.exe
PRC - [2010-08-17 14:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe
PRC - [2010-05-14 10:44:46 | 000,248,552 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
PRC - [2010-04-14 15:08:12 | 000,598,696 | ---- | M] ( ) -- C:\WINDOWS\system32\lxeccoms.exe
PRC - [2009-08-06 18:24:06 | 000,053,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe
PRC - [2009-02-09 12:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe
PRC - [2008-04-15 13:00:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008-04-15 13:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe
PRC - [2008-04-15 13:00:00 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapsrv.exe
PRC - [2008-04-15 13:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe
PRC - [2008-04-15 13:00:00 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe
PRC - [2008-04-15 13:00:00 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe
PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS]
PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE]
PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS]
PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [IMGSVC]
PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH]
PRC - [2008-04-15 13:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe
PRC - [2008-04-15 13:00:00 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe
PRC - [2007-07-25 15:50:26 | 000,079,136 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe
PRC - [2007-05-28 17:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
PRC - [2007-04-16 15:28:22 | 000,577,536 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE
PRC - [2005-05-11 22:12:54 | 000,049,152 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
PRC - [2004-09-29 11:14:36 | 000,069,632 | ---- | M] (HP) -- C:\WINDOWS\system32\HPZipm12.exe
PRC - [2003-05-08 11:34:32 | 000,069,632 | ---- | M] (adi) -- C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe
PRC - [2003-05-05 08:57:30 | 000,143,360 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
PRC - [2002-09-20 16:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe


[color=#E56717]========== Modules (All) ==========[/color]

MOD - [2011-02-09 00:12:40 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe
MOD - [2010-12-29 16:17:15 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll
MOD - [2010-08-23 17:12:53 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2010-08-16 09:45:09 | 000,590,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll
MOD - [2010-07-27 07:30:34 | 008,491,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll
MOD - [2010-07-16 13:00:50 | 001,287,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll
MOD - [2009-12-08 10:25:45 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll
MOD - [2009-06-25 09:27:54 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll
MOD - [2009-03-21 15:08:59 | 001,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll
MOD - [2009-02-09 11:53:44 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll
MOD - [2009-02-09 11:53:43 | 000,722,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll
MOD - [2008-10-23 13:42:41 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll
MOD - [2008-04-15 13:00:00 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll
MOD - [2008-04-15 13:00:00 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll
MOD - [2008-04-15 13:00:00 | 000,732,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\userenv.dll
MOD - [2008-04-15 13:00:00 | 000,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll
MOD - [2008-04-15 13:00:00 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll
MOD - [2008-04-15 13:00:00 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll
MOD - [2008-04-15 13:00:00 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll
MOD - [2008-04-15 13:00:00 | 000,297,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTF.dll
MOD - [2008-04-15 13:00:00 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll
MOD - [2008-04-15 13:00:00 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll
MOD - [2008-04-15 13:00:00 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTFIME.IME
MOD - [2008-04-15 13:00:00 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv
MOD - [2008-04-15 13:00:00 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
MOD - [2008-04-15 13:00:00 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imm32.dll
MOD - [2008-04-15 13:00:00 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll
MOD - [2008-04-15 13:00:00 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll
MOD - [2008-04-15 13:00:00 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll
MOD - [2008-04-15 13:00:00 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - File not found [On_Demand | Stopped] -- -- (NMIndexingService)
SRV - [2011-01-06 15:23:18 | 006,128,720 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe -- (AVGIDSAgent)
SRV - [2010-11-22 04:48:46 | 003,226,632 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgfws.exe -- (avgfws)
SRV - [2010-10-22 04:58:18 | 000,265,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgwdsvc.exe -- (avgwd)
SRV - [2010-10-06 11:31:48 | 000,517,448 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe -- (AVG Security Toolbar Service)
SRV - [2010-06-14 15:07:14 | 000,615,936 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2010-04-14 15:08:12 | 000,598,696 | ---- | M] ( ) [Auto | Running] -- C:\WINDOWS\System32\lxeccoms.exe -- (lxec_device)
SRV - [2010-04-14 15:08:05 | 000,193,192 | ---- | M] () [Auto | Stopped] -- C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxecserv.exe -- (lxecCATSCustConnectService)
SRV - [2007-05-28 17:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) [Auto | Running] -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2004-09-29 11:14:36 | 000,069,632 | ---- | M] (HP) [Auto | Running] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)
SRV - [2002-09-20 16:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) [Auto | Running] -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe -- (SoundMAX Agent Service (default))


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - [2010-12-08 04:12:38 | 000,251,728 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2010-11-12 13:19:38 | 000,299,984 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2010-09-16 14:44:07 | 000,436,792 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010-09-13 16:27:24 | 000,025,680 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys -- (AVGIDSEH)
DRV - [2010-09-07 03:48:56 | 000,034,384 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2010-09-07 03:48:50 | 000,026,064 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\avgrkx86.sys -- (Avgrkx86)
DRV - [2010-08-19 21:42:38 | 000,030,288 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSFilter.sys -- (AVGIDSFilter)
DRV - [2010-08-19 21:42:36 | 000,123,472 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSDriver.sys -- (AVGIDSDriver)
DRV - [2010-08-19 21:42:34 | 000,026,192 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSShim.sys -- (AVGIDSShim)
DRV - [2010-07-30 14:16:46 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2010-07-30 14:16:44 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2010-07-30 14:16:42 | 000,023,040 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2010-07-30 14:16:38 | 000,018,048 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2010-07-12 03:33:54 | 000,030,432 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\avgfwdx.sys -- (Avgfwfd)
DRV - [2010-07-12 03:33:54 | 000,030,432 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\avgfwdx.sys -- (Avgfwdx)
DRV - [2008-12-26 11:56:04 | 000,017,792 | ---- | M] (Avnex) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\vcsvad.sys -- (VCSVADHWSer) Avnex Virtual Audio Device (WDM)
DRV - [2008-09-24 10:40:22 | 004,122,368 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2008-08-26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008-07-25 00:18:32 | 000,176,640 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\b57xp32.sys -- (b57w2k)
DRV - [2006-09-24 14:28:46 | 000,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan)
DRV - [2002-09-16 16:14:32 | 000,004,228 | ---- | M] (PowerQuest Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\PQNTDRV.sys -- (PQNTDrv)
DRV - [1998-10-06 13:36:26 | 000,001,984 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\papycpu.sys -- (papycpu)
DRV - [1998-10-06 13:36:26 | 000,001,888 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\papyjoy.sys -- (papyjoy)
DRV - [1996-04-03 20:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.bearshare.com/sidebar.html?src=ssb


IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.qooqlle.com/
IE - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
IE - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF - HKLM\software\mozilla\Firefox\extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG10\Firefox\
FF - HKLM\software\mozilla\Firefox\extensions\\avg@igeared: C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared


O1 HOSTS File: ([2008-04-15 13:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (no name) - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - No CLSID value found.
O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.4.8.11.dll (BitComet)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (no name) - {74322BF9-DF26-493f-B0DA-6D2FC5E6429E} - No CLSID value found.
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - File not found
O3 - HKLM\..\Toolbar: (no name) - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - No CLSID value found.
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
O3 - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [DrvLsnr] C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe (adi)
O4 - HKLM..\Run: [GProton] C:\Documents and Settings\All Users\GProton.exe ()
O4 - HKLM..\Run: [smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKU\S-1-5-21-2052111302-492894223-1606980848-1003..\Run: [ALLUpdate] C:\Program Files\ALLPlayer\ALLUpdate.exe ()
O4 - HKU\S-1-5-21-2052111302-492894223-1606980848-1003..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - C:\Program Files\BitComet\tools\BitCometBHO_1.4.8.11.dll (BitComet)
O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} http://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab (IWinAmpActiveX Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.174.8.1 157.25.5.18
O18 - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (EXPLORER.EXE) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O20 - Winlogon\Notify\qoMgddAT: DllName - qoMgddAT.dll - File not found
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O28 - HKLM ShellExecuteHooks: {6D794CB4-C7CD-4c6f-BFDC-9B77AFBDC02C} - Reg Error: Key error. File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010-08-23 13:02:05 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{0cd3c4c6-cd65-11df-983e-000e7ffb134f}\Shell\AutoRun\command - "" = F:\fi.cmd
O33 - MountPoints2\{0cd3c4c6-cd65-11df-983e-000e7ffb134f}\Shell\explore\Command - "" = F:\fi.cmd
O33 - MountPoints2\{0cd3c4c6-cd65-11df-983e-000e7ffb134f}\Shell\open\Command - "" = F:\fi.cmd
O33 - MountPoints2\{8cfa4cd8-bfbc-11df-88fb-000e7ffb134f}\Shell\AutoRun\command - "" = G:\RECYCLER32\dmgr.exe
O33 - MountPoints2\{8cfa4cd8-bfbc-11df-88fb-000e7ffb134f}\Shell\open\command - "" = G:\RECYCLER32\dmgr.exe
O33 - MountPoints2\{aefde5a0-bda6-11df-88ea-000e7ffb134f}\Shell\AutoRun\command - "" = E:\RECYCLER32\dmgr.exe
O33 - MountPoints2\{aefde5a0-bda6-11df-88ea-000e7ffb134f}\Shell\open\command - "" = E:\RECYCLER32\dmgr.exe
O34 - HKLM BootExecute: (autocheck autochk /p \??\F:) - File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgchsvx.exe /sync) - C:\Program Files\AVG\AVG10\avgchsvx.exe (AVG Technologies CZ, s.r.o.)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgrsx.exe /sync /restart) - C:\Program Files\AVG\AVG10\avgrsx.exe (AVG Technologies CZ, s.r.o.)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2011-02-09 09:12:55 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011-02-09 09:12:54 | 000,000,000 | ---D | C] -- C:\rsit
[2011-02-09 08:18:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood
[2011-02-09 00:12:35 | 000,602,624 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe
[2011-02-08 23:59:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Google
[2011-02-08 23:52:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\Google Chrome
[2011-02-08 22:06:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Pulpit\tapety
[2011-02-08 21:41:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Pulpit\programy i gry
[2011-02-06 23:47:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\ChomikBox
[2011-02-06 23:44:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\Chomikuj.pl
[2011-02-06 23:28:00 | 000,000,000 | ---D | C] -- C:\Program Files\ChomikBox
[2011-02-02 15:57:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\Virtual DJ
[2011-02-02 15:57:34 | 000,000,000 | ---D | C] -- C:\Program Files\VirtualDJ
[2011-02-02 15:57:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\VirtualDJ
[2011-01-29 13:22:01 | 000,016,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll
[2011-01-29 13:20:47 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2011-01-29 13:16:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2011-01-29 13:16:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles
[2011-01-29 13:05:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\BS.Player
[2011-01-29 13:02:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\BSplayer Pro
[2011-01-29 13:02:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\BSplayer
[2011-01-29 13:02:38 | 000,000,000 | ---D | C] -- C:\Program Files\Webteh
[2011-01-29 12:54:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\ALLPlayer
[2011-01-29 12:54:14 | 000,000,000 | ---D | C] -- C:\Program Files\NAPI-PROJEKT
[2011-01-29 12:54:05 | 000,000,000 | ---D | C] -- C:\Program Files\ALLPlayer
[2011-01-29 12:52:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\Vplayer
[2011-01-29 12:52:23 | 000,000,000 | ---D | C] -- C:\Program Files\Vplayer
[2011-01-26 17:07:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Real
[2011-01-25 23:05:44 | 000,000,000 | ---D | C] -- C:\Program Files\Real
[2011-01-25 23:05:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Real
[2011-01-25 23:05:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Real
[2011-01-25 11:21:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\JoWood
[2011-01-25 08:28:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Gothic II
[2011-01-24 19:22:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\JLC's Software
[2011-01-24 19:21:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\JLC's Software
[2011-01-24 19:21:53 | 000,000,000 | ---D | C] -- C:\Program Files\JLC's Software
[2011-01-24 15:42:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\JoWooD
[2011-01-24 15:25:40 | 000,000,000 | ---D | C] -- C:\Program Files\JoWooD
[2011-01-23 16:32:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Pulpit\jakieś obrazy
[2011-01-15 19:50:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\GTA San Andreas User Files
[2011-01-12 23:52:17 | 000,000,000 | ---D | C] -- C:\f392cca3e8185c93e16f64fd
[2010-09-07 15:37:08 | 000,442,368 | ---- | C] ( ) -- C:\WINDOWS\System32\lxeccoin.dll
[2010-09-07 15:35:35 | 000,364,544 | ---- | C] ( ) -- C:\WINDOWS\System32\lxecinpa.dll
[2010-09-07 15:35:35 | 000,356,352 | ---- | C] ( ) -- C:\WINDOWS\System32\LXEChcp.dll
[2010-09-07 15:35:34 | 001,048,576 | ---- | C] ( ) -- C:\WINDOWS\System32\lxecserv.dll
[2010-09-07 15:35:34 | 000,847,872 | ---- | C] ( ) -- C:\WINDOWS\System32\lxecusb1.dll
[2010-09-07 15:35:34 | 000,643,072 | ---- | C] ( ) -- C:\WINDOWS\System32\lxecpmui.dll
[2010-09-07 15:35:34 | 000,344,064 | ---- | C] ( ) -- C:\WINDOWS\System32\lxeciesc.dll
[2010-09-07 15:35:33 | 000,577,536 | ---- | C] ( ) -- C:\WINDOWS\System32\lxeclmpm.dll
[2010-09-07 15:35:32 | 000,802,816 | ---- | C] ( ) -- C:\WINDOWS\System32\lxeccomc.dll
[2010-09-07 15:35:32 | 000,688,128 | ---- | C] ( ) -- C:\WINDOWS\System32\lxechbn3.dll
[2010-09-07 15:35:32 | 000,372,736 | ---- | C] ( ) -- C:\WINDOWS\System32\lxeccomm.dll
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\System32\drivers\*.tmp files -> C:\WINDOWS\System32\drivers\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2011-02-09 09:52:00 | 000,001,128 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2052111302-492894223-1606980848-1003UA.job
[2011-02-09 09:31:05 | 000,339,991 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\unconfirmed 32398.exe
[2011-02-09 08:17:46 | 000,000,414 | ---- | M] () -- C:\WINDOWS\tasks\AVG PC Tuneup 2011 Integrator Start On Windows Logon.job
[2011-02-09 08:17:17 | 105,726,431 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm
[2011-02-09 08:12:35 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2011-02-09 08:12:30 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011-02-09 00:21:21 | 006,815,744 | -H-- | M] () -- C:\Documents and Settings\User\NTUSER.DAT
[2011-02-09 00:21:21 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\User\ntuser.ini
[2011-02-09 00:12:40 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe
[2011-02-08 23:52:42 | 000,002,295 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Google Chrome.lnk
[2011-02-08 23:52:01 | 000,001,076 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2052111302-492894223-1606980848-1003Core.job
[2011-02-08 09:34:46 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011-02-07 07:15:16 | 003,706,738 | -H-- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2011-02-06 23:44:17 | 000,000,830 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\ChomikBox.lnk
[2011-02-05 10:21:31 | 000,002,359 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Counter Strike NS.lnk
[2011-02-04 20:37:25 | 000,644,929 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\iavifw.avm
[2011-02-04 17:59:18 | 000,026,960 | ---- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2011-02-04 10:58:28 | 000,000,797 | ---- | M] () -- C:\WINDOWS\VPlayer.INI
[2011-02-04 10:58:27 | 000,000,021 | ---- | M] () -- C:\WINDOWS\VplayerINI.vpl
[2011-02-03 05:14:36 | 000,147,608 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011-02-02 15:57:42 | 000,000,694 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Virtual DJ.lnk
[2011-01-29 13:21:35 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011-01-29 13:21:27 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2011-01-29 13:21:27 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2011-01-29 13:21:14 | 000,000,592 | ---- | M] () -- C:\WINDOWS\win.ini
[2011-01-29 13:16:35 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2011-01-29 12:55:26 | 000,000,797 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\SubEdit-Player.lnk
[2011-01-28 13:31:02 | 000,008,786 | ---- | M] () -- C:\Program1.RPT
[2011-01-28 09:30:30 | 000,000,720 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\AVG 2011.lnk
[2011-01-25 11:39:36 | 000,001,843 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gothic II Złota Edycja.lnk
[2011-01-24 19:21:58 | 000,001,777 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\JLC's Internet TV.lnk
[2011-01-24 16:02:00 | 000,004,096 | ---- | M] () -- C:\WINDOWS\d3dx.dat
[2011-01-23 22:19:43 | 000,000,000 | ---- | M] () -- C:\WINDOWS\Irremote.ini
[2011-01-16 15:10:58 | 000,002,267 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk
[2011-01-16 14:05:21 | 000,000,654 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\System32\drivers\*.tmp files -> C:\WINDOWS\System32\drivers\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2011-02-09 09:31:04 | 000,339,991 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\unconfirmed 32398.exe
[2011-02-08 23:52:42 | 000,002,295 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\Google Chrome.lnk
[2011-02-08 23:47:06 | 000,001,128 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2052111302-492894223-1606980848-1003UA.job
[2011-02-08 23:47:05 | 000,001,076 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2052111302-492894223-1606980848-1003Core.job
[2011-02-06 23:44:16 | 000,000,830 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\ChomikBox.lnk
[2011-02-04 10:58:27 | 000,000,797 | ---- | C] () -- C:\WINDOWS\VPlayer.INI
[2011-02-04 10:58:27 | 000,000,021 | ---- | C] () -- C:\WINDOWS\VplayerINI.vpl
[2011-02-02 15:57:42 | 000,000,694 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\Virtual DJ.lnk
[2011-01-29 13:16:35 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2011-01-29 12:55:26 | 000,000,797 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\SubEdit-Player.lnk
[2011-01-29 12:54:17 | 000,797,184 | ---- | C] () -- C:\WINDOWS\System32\ac3filter.ax
[2011-01-29 12:54:17 | 000,790,528 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2011-01-29 12:54:17 | 000,258,048 | ---- | C] () -- C:\WINDOWS\System32\libFLAC.dll
[2011-01-28 13:31:00 | 000,008,786 | ---- | C] () -- C:\Program1.RPT
[2011-01-27 19:18:21 | 003,706,738 | -H-- | C] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2011-01-25 11:39:36 | 000,001,843 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Gothic II Złota Edycja.lnk
[2011-01-24 19:21:58 | 000,001,777 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\JLC's Internet TV.lnk
[2011-01-24 16:02:00 | 000,004,096 | ---- | C] () -- C:\WINDOWS\d3dx.dat
[2011-01-23 22:19:43 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Irremote.ini
[2010-11-15 15:04:44 | 000,000,311 | ---- | C] () -- C:\Documents and Settings\User\Dane aplikacji\scgdfgasfbh.bat
[2010-11-12 19:40:41 | 000,000,056 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2010-11-05 07:47:52 | 000,004,608 | ---- | C] () -- C:\WINDOWS\cocowawa.dll
[2010-10-13 15:51:10 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010-10-07 22:41:21 | 000,004,305 | ---- | C] () -- C:\WINDOWS\jdncfw-f48.ini
[2010-10-07 22:41:21 | 000,001,441 | ---- | C] () -- C:\WINDOWS\cbvmqg_x64.ini
[2010-10-03 18:15:09 | 000,000,122 | ---- | C] () -- C:\WINDOWS\System32\ttbup222.dll
[2010-10-03 15:58:32 | 000,029,696 | ---- | C] () -- C:\WINDOWS\System32\pthread.dll
[2010-09-28 23:15:29 | 001,970,176 | ---- | C] () -- C:\WINDOWS\System32\d3dx9.dll
[2010-09-23 08:51:56 | 000,000,095 | ---- | C] () -- C:\WINDOWS\mta.ini
[2010-09-22 23:00:52 | 000,001,157 | ---- | C] () -- C:\WINDOWS\System32\urqOIbAq.dll
[2010-09-22 22:59:33 | 000,465,832 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2010-09-20 13:11:30 | 000,001,153 | ---- | C] () -- C:\WINDOWS\System32\opnLfFWp.dll
[2010-09-20 06:48:51 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2010-09-16 14:44:07 | 000,436,792 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010-09-13 22:07:51 | 000,000,127 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI
[2010-09-12 10:44:05 | 000,000,000 | ---- | C] () -- C:\WINDOWS\PROTOCOL.INI
[2010-09-11 20:25:19 | 000,001,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\papycpu.sys
[2010-09-11 20:25:19 | 000,001,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\papyjoy.sys
[2010-09-11 20:25:09 | 000,000,130 | ---- | C] () -- C:\WINDOWS\SIERRA.INI
[2010-09-11 16:37:21 | 000,000,682 | ---- | C] () -- C:\WINDOWS\bestplayer.ini
[2010-09-11 14:39:23 | 000,024,576 | ---- | C] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-09-11 11:32:02 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
[2010-09-11 11:20:31 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2010-09-10 15:38:29 | 000,014,574 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\hpzinstall.log
[2010-09-10 14:53:13 | 000,026,960 | ---- | C] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2010-09-07 15:37:10 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\lxecvs.dll
[2010-09-07 15:37:02 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\lxecgcfg.dll
[2010-09-07 15:37:01 | 000,294,912 | ---- | C] () -- C:\WINDOWS\System32\lxeccui.dll
[2010-09-07 15:37:01 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\lxeccuir.dll
[2010-09-07 15:35:35 | 000,331,776 | ---- | C] () -- C:\WINDOWS\System32\LXECinst.dll
[2010-09-07 15:35:33 | 000,323,584 | ---- | C] () -- C:\WINDOWS\System32\lxecins.dll
[2010-09-07 15:35:33 | 000,262,144 | ---- | C] () -- C:\WINDOWS\System32\lxecinsb.dll
[2010-09-07 15:35:33 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\lxecinsr.dll
[2010-09-07 15:35:33 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\lxecjswr.dll
[2010-09-07 15:35:32 | 000,253,952 | ---- | C] () -- C:\WINDOWS\System32\lxeccu.dll
[2010-09-07 15:35:32 | 000,208,896 | ---- | C] () -- C:\WINDOWS\System32\lxecgrd.dll
[2010-09-07 15:35:32 | 000,090,112 | ---- | C] () -- C:\WINDOWS\System32\lxeccub.dll
[2010-09-07 15:35:32 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\lxeccur.dll
[2010-09-07 15:35:27 | 000,299,008 | ---- | C] () -- C:\WINDOWS\System32\LXECsm.dll
[2010-09-07 15:35:27 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\LXECsmr.dll
[2010-08-24 08:17:37 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010-08-24 08:09:34 | 000,000,044 | ---- | C] () -- C:\WINDOWS\System32\msssc.dll
[2010-08-23 14:49:24 | 001,114,842 | ---- | C] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-08-23 14:49:23 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010-08-23 14:48:46 | 000,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini
[2010-08-23 13:09:15 | 000,000,062 | -HS- | C] () -- C:\Documents and Settings\User\Dane aplikacji\desktop.ini
[2010-08-23 13:02:05 | 000,000,000 | ---- | C] () -- C:\WINDOWS\control.ini
[2010-08-23 12:57:32 | 000,000,037 | ---- | C] () -- C:\WINDOWS\vbaddin.ini
[2010-08-23 12:57:32 | 000,000,036 | ---- | C] () -- C:\WINDOWS\vb.ini
[2010-08-23 12:56:42 | 000,026,717 | ---- | C] () -- C:\WINDOWS\System32\tslabels.ini
[2010-08-23 12:56:40 | 000,003,813 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.ini
[2010-01-27 17:54:13 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2010-01-26 17:23:27 | 000,000,022 | ---- | C] () -- C:\WINDOWS\clofghls.dll
[2010-01-26 17:09:41 | 000,000,052 | ---- | C] () -- C:\WINDOWS\mafosav.INI
[2010-01-26 12:45:08 | 000,000,044 | ---- | C] () -- C:\WINDOWS\SMWizard.INI
[2008-04-15 13:00:00 | 001,015,477 | ---- | C] () -- C:\WINDOWS\System32\esentprf.ini
[2008-04-15 13:00:00 | 000,733,696 | ---- | C] () -- C:\WINDOWS\System32\qedwipes.dll
[2008-04-15 13:00:00 | 000,355,112 | ---- | C] () -- C:\WINDOWS\System32\msjetoledb40.dll
[2008-04-15 13:00:00 | 000,270,848 | ---- | C] () -- C:\WINDOWS\System32\sbe.dll
[2008-04-15 13:00:00 | 000,253,440 | ---- | C] () -- C:\WINDOWS\System32\compatUI.dll
[2008-04-15 13:00:00 | 000,199,168 | ---- | C] () -- C:\WINDOWS\System32\ir32_32.dll
[2008-04-15 13:00:00 | 000,186,880 | ---- | C] () -- C:\WINDOWS\System32\encdec.dll
[2008-04-15 13:00:00 | 000,094,282 | ---- | C] () -- C:\WINDOWS\System32\msencode.dll
[2008-04-15 13:00:00 | 000,070,656 | ---- | C] () -- C:\WINDOWS\System32\amstream.dll
[2008-04-15 13:00:00 | 000,053,478 | ---- | C] () -- C:\WINDOWS\System32\tcpmon.ini
[2008-04-15 13:00:00 | 000,042,809 | ---- | C] () -- C:\WINDOWS\System32\key01.sys
[2008-04-15 13:00:00 | 000,042,537 | ---- | C] () -- C:\WINDOWS\System32\keyboard.sys
[2008-04-15 13:00:00 | 000,035,648 | ---- | C] () -- C:\WINDOWS\System32\ntio411.sys
[2008-04-15 13:00:00 | 000,035,424 | ---- | C] () -- C:\WINDOWS\System32\ntio412.sys
[2008-04-15 13:00:00 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio804.sys
[2008-04-15 13:00:00 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio404.sys
[2008-04-15 13:00:00 | 000,033,936 | ---- | C] () -- C:\WINDOWS\System32\ntio.sys
[2008-04-15 13:00:00 | 000,029,370 | ---- | C] () -- C:\WINDOWS\System32\ntdos411.sys
[2008-04-15 13:00:00 | 000,029,274 | ---- | C] () -- C:\WINDOWS\System32\ntdos412.sys
[2008-04-15 13:00:00 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos804.sys
[2008-04-15 13:00:00 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos404.sys
[2008-04-15 13:00:00 | 000,027,898 | ---- | C] () -- C:\WINDOWS\System32\ntdos.sys
[2008-04-15 13:00:00 | 000,027,097 | ---- | C] () -- C:\WINDOWS\System32\country.sys
[2008-04-15 13:00:00 | 000,020,629 | ---- | C] () -- C:\WINDOWS\System32\mqperf.ini
[2008-04-15 13:00:00 | 000,016,024 | ---- | C] () -- C:\WINDOWS\System32\rsvp.ini
[2008-04-15 13:00:00 | 000,015,360 | ---- | C] () -- C:\WINDOWS\System32\tsd32.dll
[2008-04-15 13:00:00 | 000,014,336 | ---- | C] () -- C:\WINDOWS\System32\msdmo.dll
[2008-04-15 13:00:00 | 000,013,819 | ---- | C] () -- C:\WINDOWS\System32\pschdprf.ini
[2008-04-15 13:00:00 | 000,013,312 | ---- | C] () -- C:\WINDOWS\System32\win87em.dll
[2008-04-15 13:00:00 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\scriptpw.dll
[2008-04-15 13:00:00 | 000,009,043 | ---- | C] () -- C:\WINDOWS\System32\ansi.sys
[2008-04-15 13:00:00 | 000,006,074 | ---- | C] () -- C:\WINDOWS\System32\rasctrs.ini
[2008-04-15 13:00:00 | 000,004,976 | ---- | C] () -- C:\WINDOWS\System32\himem.sys
[2008-04-15 13:00:00 | 000,002,992 | ---- | C] () -- C:\WINDOWS\System32\perfci.ini
[2008-04-15 13:00:00 | 000,002,890 | ---- | C] () -- C:\WINDOWS\System32\perfwci.ini
[2008-04-15 13:00:00 | 000,002,656 | ---- | C] () -- C:\WINDOWS\System32\netware.drv
[2008-04-15 13:00:00 | 000,001,405 | ---- | C] () -- C:\WINDOWS\msdfmap.ini
[2008-04-15 13:00:00 | 000,001,295 | ---- | C] () -- C:\WINDOWS\System32\perffilt.ini
[2008-04-15 13:00:00 | 000,000,592 | ---- | C] () -- C:\WINDOWS\win.ini
[2008-04-15 13:00:00 | 000,000,359 | ---- | C] () -- C:\WINDOWS\System32\prodspec.ini
[2008-04-15 13:00:00 | 000,000,259 | ---- | C] () -- C:\WINDOWS\system.ini
[2004-06-24 23:00:00 | 000,771,584 | ---- | C] () -- C:\WINDOWS\System32\RGSS100J.dll
[2001-10-26 18:29:42 | 000,157,696 | ---- | C] () -- C:\WINDOWS\System32\paqsp.dll
[2001-07-06 14:30:02 | 000,003,234 | ---- | C] () -- C:\WINDOWS\System32\HPTCPMON.INI
[1996-04-03 20:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys

[color=#E56717]========== LOP Check ==========[/color]

[2010-09-16 19:12:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\35BB
[2010-09-13 23:59:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software
[2010-11-13 17:38:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG Security Toolbar
[2010-12-16 16:21:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG10
[2010-12-08 21:40:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Bluetooth
[2010-11-13 12:23:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\boost_interprocess
[2010-09-30 22:55:33 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files
[2010-01-28 01:36:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Easy Driver Pro
[2010-09-22 22:49:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Fighters
[2010-09-13 17:12:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2010-12-05 23:39:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations
[2010-09-19 18:44:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla
[2010-02-04 13:38:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\LightScribe
[2010-10-25 22:19:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\MFAData
[2011-01-15 16:21:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM
[2010-01-28 01:25:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Drivers HeadQuarters
[2010-12-05 23:46:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite
[2010-09-10 15:27:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PDF Writer
[2011-02-09 08:17:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2010-12-27 13:30:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\.ZMatrix
[2011-02-08 21:52:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\AVG
[2010-09-30 23:06:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\AVG10
[2010-10-06 18:32:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Avnex
[2010-09-16 19:06:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\bearsharemediabartb
[2010-09-24 06:19:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\BitComet
[2010-10-01 11:24:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\BonkEnc
[2011-02-05 15:55:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\BSplayer
[2011-01-29 13:02:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\BSplayer Pro
[2011-02-08 23:42:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\ChomikBox
[2010-10-03 16:48:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\CometPlayer
[2010-09-13 23:40:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\facemoods.com
[2010-02-04 16:48:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Gadu-Gadu 10
[2010-11-12 19:41:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\GetRight
[2010-11-07 03:02:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\GetRightToGo
[2010-09-30 13:32:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Image Zone Express
[2010-09-26 23:51:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\ipla
[2011-01-24 19:22:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\JLC's Software
[2010-09-07 14:05:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Mikrotik
[2010-11-13 14:35:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\NoiseCradle
[2010-12-05 23:57:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Nokia
[2010-10-05 21:08:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Nowe Gadu-Gadu
[2010-09-13 23:47:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\OpenFM
[2010-09-07 15:07:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\OpenOffice.org
[2010-12-12 12:46:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Opera
[2010-12-05 23:48:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\PC Suite
[2010-09-10 15:27:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\PDF Writer
[2011-01-24 19:22:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\QuickStoresToolbar
[2010-11-18 18:41:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\SecondLife
[2010-09-13 23:38:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\TeamViewer
[2010-09-28 20:53:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\tigerplayer
[2011-02-09 10:13:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\uTorrent
[2010-12-29 16:17:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\ViGlance
[2010-12-29 16:26:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\ViStart
[2011-02-09 08:17:46 | 000,000,414 | ---- | M] () -- C:\WINDOWS\Tasks\AVG PC Tuneup 2011 Integrator Start On Windows Logon.job

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Custom Scans ==========[/color]


[color=#A23BEC]< %systemdrive%\*.* >[/color]
[2010-08-23 13:02:05 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010-08-23 12:55:13 | 000,000,211 | -HS- | M] () -- C:\BOOT.BKK
[2010-12-29 14:36:55 | 000,000,354 | -HS- | M] () -- C:\boot.ini
[2008-04-15 13:00:00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin
[2010-08-23 13:02:05 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010-08-23 13:02:05 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010-08-23 13:02:05 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2008-04-15 13:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2008-04-15 13:00:00 | 000,251,152 | RHS- | M] () -- C:\ntldr
[2011-02-09 08:12:28 | 792,723,456 | -HS- | M] () -- C:\pagefile.sys
[2011-01-28 13:31:02 | 000,008,786 | ---- | M] () -- C:\Program1.RPT

[color=#E56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:0B4227B4

< End of report >
[/log]

lolplo
komentarz
komentarz

ahhh.... takich tematów było ...... ale skoro już pisze tego posta to masz:
[url="http://www.forumpc.pl/index.php?showtopic=195504&st=0&p=1187119&hl=qooqle&fromsearch=1&#entry1187119"]>>1<<[/url]
[url="http://www.forumpc.pl/index.php?showtopic=195744&st=0&p=1188229&hl=qooqle&fromsearch=1&#entry1188229"]>>2<<[/url]
[url="http://www.forumpc.pl/index.php?showtopic=196253&st=0&p=1190980&hl=qooqle&fromsearch=1&#entry1190980"]>>3<<[/url]
[url="http://www.forumpc.pl/index.php?showtopic=196609&st=0&p=1192778&hl=qooqle&fromsearch=1&#entry1192778"]>>4<<[/url]
[url="http://www.forumpc.pl/index.php?showtopic=196773&st=0&p=1193825&hl=qooqle&fromsearch=1&#entry1193825"]>>5<<[/url]

sewer19
komentarz
komentarz

[quote name='lolplo' date='09 luty 2011 - 16:51' timestamp='1297266820' post='1195077']
ahhh.... takich tematów było ...... ale skoro już pisze tego posta to masz:
[/quote]
Tak były tylko do każdego trzeba podchodzić indywidualnie tu nie ma gotowych recept

batonxd
komentarz
komentarz (edytowane)

czyli mam się zastosować do odpowiedzi lolpo ? :niepewny:

sewer19
komentarz
komentarz

Nie,masz poczekać aż ktoś kompetentny przejrzy logi i poda rozwiązanie

batonxd
komentarz
komentarz

ok, czekam z niecierpliwością

Tomek01
komentarz
komentarz

Tu jest jeszcze infekcja z mediów przenośnych.

Odinstaluj: AVG Security Toolbar, QuickStoresToolbar.

Użyj z podpiętym pen’em [url="http://www.instalki.pl/programy/download/Windows/antywirusy/UsbFix.html"][color="#0000FF"][b]USBFix[/b][/color][/url], z opcją * Vaccinate.


W OTL, w oknie Custom scan/fixes wklej:

[code]:OTL
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.bearsh...ar.html?src=ssb
IE - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.qooqlle.com/
O33 - MountPoints2\{0cd3c4c6-cd65-11df-983e-000e7ffb134f}\Shell\AutoRun\command - "" = F:\fi.cmd
O33 - MountPoints2\{0cd3c4c6-cd65-11df-983e-000e7ffb134f}\Shell\explore\Command - "" = F:\fi.cmd
O33 - MountPoints2\{0cd3c4c6-cd65-11df-983e-000e7ffb134f}\Shell\open\Command - "" = F:\fi.cmd
O33 - MountPoints2\{8cfa4cd8-bfbc-11df-88fb-000e7ffb134f}\Shell\AutoRun\command - "" = G:\RECYCLER32\dmgr.exe
O33 - MountPoints2\{8cfa4cd8-bfbc-11df-88fb-000e7ffb134f}\Shell\open\command - "" = G:\RECYCLER32\dmgr.exe
O33 - MountPoints2\{aefde5a0-bda6-11df-88ea-000e7ffb134f}\Shell\AutoRun\command - "" = E:\RECYCLER32\dmgr.exe
O33 - MountPoints2\{aefde5a0-bda6-11df-88ea-000e7ffb134f}\Shell\open\command - "" = E:\RECYCLER32\dmgr.exe
@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:0B4227B4

:Files
C:\WINDOWS\Tasks\AVG PC Tuneup 2011 Integrator Start On Windows Logon.job

:Commands
[emptytemp][/code]

Klikasz run fix, komputer uruchamia się ponownie.
Wrzuć log z usuwania oraz nowe logi: OTL i RSIT

batonxd
komentarz
komentarz

niestety nie wiem czemu ale USBFix nie chce się uruchomić zaraz wrzuce logi

czym mogę zastąpić USBFix ?

nie wiem co zrobić po czyszczeniu program OTL usunął się a problem nie zniknął :help:

Tomek01
komentarz
komentarz

Zamiast USBFix zastosuj [b][color=#0000CD][url=http://download.bleepingcomputer.com//sUBs/Flash_Disinfector.exe]Flash Disinfector[/url][/color][/b], najlepiej z podpiętym pendrive'm czy innymi pamięciami USB.

OTL się usunął ?! Tzn, że wcisnąłeś Czyszczenie (CleanUp) zamiast wykonaj skrypt(RunFix). Po tej komendzie OTL się usuwa. Dlatego też nie został wygenerowany log z usuwania. Wykonaj wszystko jeszcze raz.

batonxd
komentarz
komentarz

logi z usuwania wrzucam w dwóch dokumentach tekstowych

daje nowe logi

problem nie zniknął

Tomek01
komentarz
komentarz

Tyle logów wrzuconych jako załączniki ! Wstaw je w odpowiednim formacie. Wg poniższego info:

batonxd
komentarz
komentarz

[log] OTL logfile created on: 2011-02-11 11:13:13 - Run 1
OTL by OldTimer - Version 3.2.20.6 Folder = C:\Documents and Settings\User\Pulpit
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

1 015,00 Mb Total Physical Memory | 275,00 Mb Available Physical Memory | 27,00% Memory free
2,00 Gb Paging File | 1,00 Gb Available in Paging File | 59,00% Paging File free
Paging file location(s): C:\pagefile.sys 756 1512 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 37,27 Gb Total Space | 0,41 Gb Free Space | 1,10% Space Free | Partition Type: NTFS

Computer Name: USER-FCC60EA01E | User Name: User | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2011-02-11 08:07:23 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe
PRC - [2011-02-07 10:29:02 | 000,994,872 | ---- | M] (Google Inc.) -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
PRC - [2011-01-07 01:22:54 | 002,747,744 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgtray.exe
PRC - [2011-01-07 01:22:44 | 001,084,256 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgnsx.exe
PRC - [2011-01-07 01:22:12 | 001,052,512 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgemcx.exe
PRC - [2011-01-06 15:23:20 | 000,737,872 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe
PRC - [2011-01-06 15:23:18 | 006,128,720 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
PRC - [2011-01-02 19:29:52 | 000,396,152 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\uTorrent\uTorrent.exe
PRC - [2010-12-22 16:58:13 | 012,984,928 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe
PRC - [2010-12-05 16:26:40 | 000,654,176 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgrsx.exe
PRC - [2010-12-05 16:26:12 | 000,650,592 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgchsvx.exe
PRC - [2010-11-22 04:48:46 | 003,226,632 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgfws.exe
PRC - [2010-10-22 04:58:18 | 000,265,400 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgwdsvc.exe
PRC - [2010-10-22 04:56:58 | 000,845,664 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgcsrvx.exe
PRC - [2010-10-22 04:56:48 | 000,745,824 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgam.exe
PRC - [2010-04-14 15:08:12 | 000,598,696 | ---- | M] ( ) -- C:\WINDOWS\system32\lxeccoms.exe
PRC - [2008-04-15 13:00:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007-05-28 17:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
PRC - [2007-04-16 15:28:22 | 000,577,536 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE
PRC - [2004-12-28 22:38:38 | 000,853,504 | ---- | M] () -- C:\Program Files\WinRAR\WinRAR.exe
PRC - [2004-09-29 11:14:36 | 000,069,632 | ---- | M] (HP) -- C:\WINDOWS\system32\HPZipm12.exe
PRC - [2003-05-08 11:34:32 | 000,069,632 | ---- | M] (adi) -- C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe
PRC - [2003-05-05 08:57:30 | 000,143,360 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
PRC - [2002-09-20 16:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe


[color=#E56717]========== Modules (SafeList) ==========[/color]

MOD - [2011-02-11 08:07:23 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe
MOD - [2010-08-23 17:12:53 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - File not found [On_Demand | Stopped] -- -- (NMIndexingService)
SRV - [2011-01-06 15:23:18 | 006,128,720 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe -- (AVGIDSAgent)
SRV - [2010-11-22 04:48:46 | 003,226,632 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgfws.exe -- (avgfws)
SRV - [2010-10-22 04:58:18 | 000,265,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgwdsvc.exe -- (avgwd)
SRV - [2010-10-06 11:31:48 | 000,517,448 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe -- (AVG Security Toolbar Service)
SRV - [2010-06-14 15:07:14 | 000,615,936 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2010-04-14 15:08:12 | 000,598,696 | ---- | M] ( ) [Auto | Running] -- C:\WINDOWS\System32\lxeccoms.exe -- (lxec_device)
SRV - [2010-04-14 15:08:05 | 000,193,192 | ---- | M] () [Auto | Stopped] -- C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxecserv.exe -- (lxecCATSCustConnectService)
SRV - [2007-05-28 17:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) [Auto | Running] -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2004-09-29 11:14:36 | 000,069,632 | ---- | M] (HP) [Auto | Running] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)
SRV - [2002-09-20 16:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) [Auto | Running] -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe -- (SoundMAX Agent Service (default))


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - [2010-12-08 04:12:38 | 000,251,728 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2010-11-12 13:19:38 | 000,299,984 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2010-09-16 14:44:07 | 000,436,792 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010-09-13 16:27:24 | 000,025,680 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys -- (AVGIDSEH)
DRV - [2010-09-07 03:48:56 | 000,034,384 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2010-09-07 03:48:50 | 000,026,064 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\avgrkx86.sys -- (Avgrkx86)
DRV - [2010-08-19 21:42:38 | 000,030,288 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSFilter.sys -- (AVGIDSFilter)
DRV - [2010-08-19 21:42:36 | 000,123,472 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSDriver.sys -- (AVGIDSDriver)
DRV - [2010-08-19 21:42:34 | 000,026,192 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSShim.sys -- (AVGIDSShim)
DRV - [2010-07-30 14:16:46 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2010-07-30 14:16:44 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2010-07-30 14:16:42 | 000,023,040 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2010-07-30 14:16:38 | 000,018,048 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2010-07-12 03:33:54 | 000,030,432 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\avgfwdx.sys -- (Avgfwfd)
DRV - [2010-07-12 03:33:54 | 000,030,432 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\avgfwdx.sys -- (Avgfwdx)
DRV - [2008-12-26 11:56:04 | 000,017,792 | ---- | M] (Avnex) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\vcsvad.sys -- (VCSVADHWSer) Avnex Virtual Audio Device (WDM)
DRV - [2008-09-24 10:40:22 | 004,122,368 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2008-08-26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008-07-25 00:18:32 | 000,176,640 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\b57xp32.sys -- (b57w2k)
DRV - [2006-09-24 14:28:46 | 000,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan)
DRV - [2002-09-16 16:14:32 | 000,004,228 | ---- | M] (PowerQuest Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\PQNTDRV.sys -- (PQNTDrv)
DRV - [1998-10-06 13:36:26 | 000,001,984 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\papycpu.sys -- (papycpu)
DRV - [1998-10-06 13:36:26 | 000,001,888 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\papyjoy.sys -- (papyjoy)
DRV - [1996-04-03 20:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =


IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.qooqlle.com/
IE - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
IE - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF - HKLM\software\mozilla\Firefox\extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG10\Firefox\
FF - HKLM\software\mozilla\Firefox\extensions\\avg@igeared: C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared

[2011-02-09 11:50:41 | 000,002,045 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fcmdSrch.xml

O1 HOSTS File: ([2008-04-15 13:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (no name) - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - No CLSID value found.
O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.4.8.11.dll (BitComet)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (no name) - {74322BF9-DF26-493f-B0DA-6D2FC5E6429E} - No CLSID value found.
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - File not found
O3 - HKLM\..\Toolbar: (no name) - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - No CLSID value found.
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
O3 - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [DrvLsnr] C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe (adi)
O4 - HKLM..\Run: [GProton] C:\Documents and Settings\All Users\GProton.exe ()
O4 - HKLM..\Run: [smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKU\S-1-5-21-2052111302-492894223-1606980848-1003..\Run: [ALLUpdate] C:\Program Files\ALLPlayer\ALLUpdate.exe ()
O4 - HKU\S-1-5-21-2052111302-492894223-1606980848-1003..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O7 - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 3
O9 - Extra Button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - C:\Program Files\BitComet\tools\BitCometBHO_1.4.8.11.dll (BitComet)
O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} http://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab (IWinAmpActiveX Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.174.8.1 157.25.5.18
O18 - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (EXPLORER.EXE) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O20 - Winlogon\Notify\qoMgddAT: DllName - qoMgddAT.dll - File not found
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O28 - HKLM ShellExecuteHooks: {6D794CB4-C7CD-4c6f-BFDC-9B77AFBDC02C} - Reg Error: Key error. File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010-08-23 13:02:05 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2011-02-11 08:18:47 | 000,000,000 | RHSD | M] - C:\Autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk /p \??\F:) - File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgchsvx.exe /sync) - C:\Program Files\AVG\AVG10\avgchsvx.exe (AVG Technologies CZ, s.r.o.)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgrsx.exe /sync /restart) - C:\Program Files\AVG\AVG10\avgrsx.exe (AVG Technologies CZ, s.r.o.)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found


SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vds - Service
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2011-02-11 08:18:47 | 000,000,000 | RHSD | C] -- C:\Autorun.inf
[2011-02-11 08:11:09 | 000,000,000 | ---D | C] -- C:\_OTL
[2011-02-11 08:07:12 | 000,602,624 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe
[2011-02-10 18:00:10 | 000,000,000 | ---D | C] -- C:\Program Files\Everest Poker
[2011-02-10 16:38:26 | 001,219,736 | ---- | C] (El Desaparecido & C_XX) -- C:\Documents and Settings\User\Pulpit\UsbFix (1).exe
[2011-02-10 15:57:17 | 000,000,000 | ---D | C] -- C:\UsbFix
[2011-02-10 13:58:31 | 000,000,000 | ---D | C] -- C:\Program Files\Szkola na miare klasa 1b
[2011-02-09 15:36:14 | 000,000,000 | ---D | C] -- C:\Program Files\WinISO
[2011-02-09 15:36:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\WinISO
[2011-02-09 13:59:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\7-Zip
[2011-02-09 13:59:28 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2011-02-09 13:07:54 | 000,327,168 | ---- | C] (InstallShield Software Corporation) -- C:\WINDOWS\IsUn0415.exe
[2011-02-09 11:50:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\InstallMate
[2011-02-09 11:50:27 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2011-02-09 09:12:55 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011-02-08 23:59:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Google
[2011-02-08 23:52:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\Google Chrome
[2011-02-08 22:06:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Pulpit\tapety
[2011-02-08 21:41:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Pulpit\programy i gry
[2011-02-06 23:47:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\ChomikBox
[2011-02-06 23:44:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\Chomikuj.pl
[2011-02-06 23:28:00 | 000,000,000 | ---D | C] -- C:\Program Files\ChomikBox
[2011-02-02 15:57:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\Virtual DJ
[2011-02-02 15:57:34 | 000,000,000 | ---D | C] -- C:\Program Files\VirtualDJ
[2011-02-02 15:57:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\VirtualDJ
[2011-01-29 13:22:01 | 000,019,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll
[2011-01-29 13:20:47 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2011-01-29 13:16:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2011-01-29 13:16:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles
[2011-01-29 13:05:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\BS.Player
[2011-01-29 13:02:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\BSplayer Pro
[2011-01-29 13:02:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\BSplayer
[2011-01-29 13:02:38 | 000,000,000 | ---D | C] -- C:\Program Files\Webteh
[2011-01-29 12:54:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\ALLPlayer
[2011-01-29 12:54:14 | 000,000,000 | ---D | C] -- C:\Program Files\NAPI-PROJEKT
[2011-01-29 12:54:05 | 000,000,000 | ---D | C] -- C:\Program Files\ALLPlayer
[2011-01-29 12:52:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\Vplayer
[2011-01-29 12:52:23 | 000,000,000 | ---D | C] -- C:\Program Files\Vplayer
[2011-01-26 17:07:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Real
[2011-01-25 23:05:44 | 000,000,000 | ---D | C] -- C:\Program Files\Real
[2011-01-25 23:05:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Real
[2011-01-25 23:05:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Real
[2011-01-25 11:21:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\JoWood
[2011-01-25 08:28:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Gothic II
[2011-01-24 19:22:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\JLC's Software
[2011-01-24 19:21:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\JLC's Software
[2011-01-24 19:21:53 | 000,000,000 | ---D | C] -- C:\Program Files\JLC's Software
[2011-01-24 15:42:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\JoWooD
[2011-01-24 15:25:40 | 000,000,000 | ---D | C] -- C:\Program Files\JoWooD
[2011-01-23 16:32:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Pulpit\jakieś obrazy
[2011-01-15 19:50:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\GTA San Andreas User Files
[2011-01-12 23:52:17 | 000,000,000 | ---D | C] -- C:\f392cca3e8185c93e16f64fd
[2010-09-07 15:37:08 | 000,442,368 | ---- | C] ( ) -- C:\WINDOWS\System32\lxeccoin.dll
[2010-09-07 15:35:35 | 000,364,544 | ---- | C] ( ) -- C:\WINDOWS\System32\lxecinpa.dll
[2010-09-07 15:35:35 | 000,356,352 | ---- | C] ( ) -- C:\WINDOWS\System32\LXEChcp.dll
[2010-09-07 15:35:34 | 001,048,576 | ---- | C] ( ) -- C:\WINDOWS\System32\lxecserv.dll
[2010-09-07 15:35:34 | 000,847,872 | ---- | C] ( ) -- C:\WINDOWS\System32\lxecusb1.dll
[2010-09-07 15:35:34 | 000,643,072 | ---- | C] ( ) -- C:\WINDOWS\System32\lxecpmui.dll
[2010-09-07 15:35:34 | 000,344,064 | ---- | C] ( ) -- C:\WINDOWS\System32\lxeciesc.dll
[2010-09-07 15:35:33 | 000,577,536 | ---- | C] ( ) -- C:\WINDOWS\System32\lxeclmpm.dll
[2010-09-07 15:35:32 | 000,802,816 | ---- | C] ( ) -- C:\WINDOWS\System32\lxeccomc.dll
[2010-09-07 15:35:32 | 000,688,128 | ---- | C] ( ) -- C:\WINDOWS\System32\lxechbn3.dll
[2010-09-07 15:35:32 | 000,372,736 | ---- | C] ( ) -- C:\WINDOWS\System32\lxeccomm.dll

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2011-02-11 10:56:04 | 000,001,128 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2052111302-492894223-1606980848-1003UA.job
[2011-02-11 10:55:58 | 000,002,295 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Google Chrome.lnk
[2011-02-11 10:22:27 | 000,000,008 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\82 1020 1954 0000 7802 0084 2336.rtf
[2011-02-11 08:23:10 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011-02-11 08:07:23 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe
[2011-02-11 00:36:58 | 105,890,045 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm
[2011-02-10 23:52:01 | 000,001,076 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2052111302-492894223-1606980848-1003Core.job
[2011-02-10 17:10:57 | 000,147,608 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011-02-10 16:38:28 | 001,219,736 | ---- | M] (El Desaparecido & C_XX) -- C:\Documents and Settings\User\Pulpit\UsbFix (1).exe
[2011-02-10 13:58:35 | 000,001,302 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Szkoła na miarę, klasa 1, semestr 2.lnk
[2011-02-10 00:15:22 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011-02-09 20:35:29 | 000,645,082 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\iavifw.avm
[2011-02-09 15:58:20 | 000,000,606 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\WinISO.lnk
[2011-02-09 12:25:32 | 000,001,724 | -H-- | M] () -- C:\Documents and Settings\User\Moje dokumenty\Default.rdp
[2011-02-09 09:31:05 | 000,339,991 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\unconfirmed 32398.exe
[2011-02-08 09:34:46 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011-02-06 23:44:17 | 000,000,830 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\ChomikBox.lnk
[2011-02-05 10:21:31 | 000,002,359 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Counter Strike NS.lnk
[2011-02-04 10:58:28 | 000,000,797 | ---- | M] () -- C:\WINDOWS\VPlayer.INI
[2011-02-04 10:58:27 | 000,000,021 | ---- | M] () -- C:\WINDOWS\VplayerINI.vpl
[2011-02-02 15:57:42 | 000,000,694 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Virtual DJ.lnk
[2011-01-29 13:21:27 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2011-01-29 13:21:27 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2011-01-29 13:16:35 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2011-01-29 12:55:26 | 000,000,797 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\SubEdit-Player.lnk
[2011-01-28 13:31:02 | 000,008,786 | ---- | M] () -- C:\Program1.RPT
[2011-01-28 09:30:30 | 000,000,720 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\AVG 2011.lnk
[2011-01-25 11:39:36 | 000,001,843 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gothic II Złota Edycja.lnk
[2011-01-24 19:21:58 | 000,001,777 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\JLC's Internet TV.lnk
[2011-01-24 16:02:00 | 000,004,096 | ---- | M] () -- C:\WINDOWS\d3dx.dat
[2011-01-23 22:19:43 | 000,000,000 | ---- | M] () -- C:\WINDOWS\Irremote.ini
[2011-01-21 15:44:11 | 008,491,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shell32.dll
[2011-01-21 15:44:11 | 000,440,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shimgvw.dll
[2011-01-16 15:10:58 | 000,002,267 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk
[2011-01-16 14:05:21 | 000,000,654 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2011-02-11 10:22:27 | 000,000,008 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\82 1020 1954 0000 7802 0084 2336.rtf
[2011-02-10 13:58:35 | 000,001,302 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Szkoła na miarę, klasa 1, semestr 2.lnk
[2011-02-09 15:36:20 | 000,000,606 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\WinISO.lnk
[2011-02-09 12:24:18 | 000,001,724 | -H-- | C] () -- C:\Documents and Settings\User\Moje dokumenty\Default.rdp
[2011-02-09 09:31:04 | 000,339,991 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\unconfirmed 32398.exe
[2011-02-08 23:52:42 | 000,002,295 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\Google Chrome.lnk
[2011-02-08 23:47:06 | 000,001,128 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2052111302-492894223-1606980848-1003UA.job
[2011-02-08 23:47:05 | 000,001,076 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2052111302-492894223-1606980848-1003Core.job
[2011-02-06 23:44:16 | 000,000,830 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\ChomikBox.lnk
[2011-02-04 10:58:27 | 000,000,797 | ---- | C] () -- C:\WINDOWS\VPlayer.INI
[2011-02-04 10:58:27 | 000,000,021 | ---- | C] () -- C:\WINDOWS\VplayerINI.vpl
[2011-02-02 15:57:42 | 000,000,694 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\Virtual DJ.lnk
[2011-01-29 13:16:35 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2011-01-29 12:55:26 | 000,000,797 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\SubEdit-Player.lnk
[2011-01-29 12:54:17 | 000,797,184 | ---- | C] () -- C:\WINDOWS\System32\ac3filter.ax
[2011-01-29 12:54:17 | 000,790,528 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2011-01-29 12:54:17 | 000,258,048 | ---- | C] () -- C:\WINDOWS\System32\libFLAC.dll
[2011-01-28 13:31:00 | 000,008,786 | ---- | C] () -- C:\Program1.RPT
[2011-01-25 11:39:36 | 000,001,843 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Gothic II Złota Edycja.lnk
[2011-01-24 19:21:58 | 000,001,777 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\JLC's Internet TV.lnk
[2011-01-24 16:02:00 | 000,004,096 | ---- | C] () -- C:\WINDOWS\d3dx.dat
[2011-01-23 22:19:43 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Irremote.ini
[2010-11-15 15:04:44 | 000,000,311 | ---- | C] () -- C:\Documents and Settings\User\Dane aplikacji\scgdfgasfbh.bat
[2010-11-12 19:40:41 | 000,000,056 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2010-11-05 07:47:52 | 000,004,608 | ---- | C] () -- C:\WINDOWS\cocowawa.dll
[2010-10-13 15:51:10 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010-10-07 22:41:21 | 000,004,305 | ---- | C] () -- C:\WINDOWS\jdncfw-f48.ini
[2010-10-07 22:41:21 | 000,001,441 | ---- | C] () -- C:\WINDOWS\cbvmqg_x64.ini
[2010-10-03 18:15:09 | 000,000,122 | ---- | C] () -- C:\WINDOWS\System32\ttbup222.dll
[2010-10-03 15:58:32 | 000,029,696 | ---- | C] () -- C:\WINDOWS\System32\pthread.dll
[2010-09-28 23:15:29 | 001,970,176 | ---- | C] () -- C:\WINDOWS\System32\d3dx9.dll
[2010-09-23 08:51:56 | 000,000,095 | ---- | C] () -- C:\WINDOWS\mta.ini
[2010-09-22 23:00:52 | 000,001,157 | ---- | C] () -- C:\WINDOWS\System32\urqOIbAq.dll
[2010-09-22 22:59:33 | 000,465,832 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2010-09-20 13:11:30 | 000,001,153 | ---- | C] () -- C:\WINDOWS\System32\opnLfFWp.dll
[2010-09-20 06:48:51 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2010-09-16 14:44:07 | 000,436,792 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010-09-13 22:07:51 | 000,000,127 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI
[2010-09-12 10:44:05 | 000,000,000 | ---- | C] () -- C:\WINDOWS\PROTOCOL.INI
[2010-09-11 20:25:19 | 000,001,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\papycpu.sys
[2010-09-11 20:25:19 | 000,001,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\papyjoy.sys
[2010-09-11 20:25:09 | 000,000,130 | ---- | C] () -- C:\WINDOWS\SIERRA.INI
[2010-09-11 16:37:21 | 000,000,682 | ---- | C] () -- C:\WINDOWS\bestplayer.ini
[2010-09-11 14:39:23 | 000,024,576 | ---- | C] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-09-11 11:32:02 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
[2010-09-11 11:20:31 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2010-09-10 15:38:29 | 000,014,574 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\hpzinstall.log
[2010-09-07 15:37:10 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\lxecvs.dll
[2010-09-07 15:37:02 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\lxecgcfg.dll
[2010-09-07 15:37:01 | 000,294,912 | ---- | C] () -- C:\WINDOWS\System32\lxeccui.dll
[2010-09-07 15:37:01 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\lxeccuir.dll
[2010-09-07 15:35:35 | 000,331,776 | ---- | C] () -- C:\WINDOWS\System32\LXECinst.dll
[2010-09-07 15:35:33 | 000,323,584 | ---- | C] () -- C:\WINDOWS\System32\lxecins.dll
[2010-09-07 15:35:33 | 000,262,144 | ---- | C] () -- C:\WINDOWS\System32\lxecinsb.dll
[2010-09-07 15:35:33 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\lxecinsr.dll
[2010-09-07 15:35:33 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\lxecjswr.dll
[2010-09-07 15:35:32 | 000,253,952 | ---- | C] () -- C:\WINDOWS\System32\lxeccu.dll
[2010-09-07 15:35:32 | 000,208,896 | ---- | C] () -- C:\WINDOWS\System32\lxecgrd.dll
[2010-09-07 15:35:32 | 000,090,112 | ---- | C] () -- C:\WINDOWS\System32\lxeccub.dll
[2010-09-07 15:35:32 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\lxeccur.dll
[2010-09-07 15:35:27 | 000,299,008 | ---- | C] () -- C:\WINDOWS\System32\LXECsm.dll
[2010-09-07 15:35:27 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\LXECsmr.dll
[2010-08-24 08:17:37 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010-08-24 08:09:34 | 000,000,044 | ---- | C] () -- C:\WINDOWS\System32\msssc.dll
[2010-08-23 14:49:23 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010-01-27 17:54:13 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2010-01-26 17:23:27 | 000,000,022 | ---- | C] () -- C:\WINDOWS\clofghls.dll
[2010-01-26 17:09:41 | 000,000,052 | ---- | C] () -- C:\WINDOWS\mafosav.INI
[2010-01-26 12:45:08 | 000,000,044 | ---- | C] () -- C:\WINDOWS\SMWizard.INI
[2004-06-24 23:00:00 | 000,771,584 | ---- | C] () -- C:\WINDOWS\System32\RGSS100J.dll
[2001-07-06 14:30:02 | 000,003,234 | ---- | C] () -- C:\WINDOWS\System32\HPTCPMON.INI
[1996-04-03 20:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys

[color=#E56717]========== LOP Check ==========[/color]

[2010-09-16 19:12:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\35BB
[2010-09-13 23:59:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software
[2010-11-13 17:38:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG Security Toolbar
[2010-12-16 16:21:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG10
[2010-12-08 21:40:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Bluetooth
[2010-11-13 12:23:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\boost_interprocess
[2010-09-30 22:55:33 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files
[2010-01-28 01:36:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Easy Driver Pro
[2010-09-22 22:49:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Fighters
[2010-09-13 17:12:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2010-12-05 23:39:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations
[2011-02-09 11:50:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\InstallMate
[2010-09-19 18:44:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla
[2010-02-04 13:38:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\LightScribe
[2010-10-25 22:19:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\MFAData
[2011-01-15 16:21:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM
[2010-01-28 01:25:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Drivers HeadQuarters
[2010-12-05 23:46:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite
[2010-09-10 15:27:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PDF Writer
[2011-02-10 17:27:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2010-12-27 13:30:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\.ZMatrix
[2011-02-08 21:52:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\AVG
[2010-09-30 23:06:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\AVG10
[2010-10-06 18:32:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Avnex
[2010-09-16 19:06:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\bearsharemediabartb
[2010-09-24 06:19:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\BitComet
[2010-10-01 11:24:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\BonkEnc
[2011-02-05 15:55:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\BSplayer
[2011-01-29 13:02:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\BSplayer Pro
[2011-02-08 23:42:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\ChomikBox
[2010-10-03 16:48:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\CometPlayer
[2010-09-13 23:40:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\facemoods.com
[2010-02-04 16:48:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Gadu-Gadu 10
[2010-11-12 19:41:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\GetRight
[2010-11-07 03:02:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\GetRightToGo
[2010-09-30 13:32:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Image Zone Express
[2010-09-26 23:51:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\ipla
[2011-01-24 19:22:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\JLC's Software
[2010-09-07 14:05:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Mikrotik
[2010-11-13 14:35:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\NoiseCradle
[2010-12-05 23:57:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Nokia
[2010-10-05 21:08:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Nowe Gadu-Gadu
[2010-09-13 23:47:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\OpenFM
[2010-09-07 15:07:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\OpenOffice.org
[2010-12-12 12:46:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Opera
[2010-12-05 23:48:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\PC Suite
[2010-09-10 15:27:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\PDF Writer
[2010-11-18 18:41:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\SecondLife
[2010-09-13 23:38:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\TeamViewer
[2010-09-28 20:53:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\tigerplayer
[2011-02-11 11:40:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\uTorrent
[2010-12-29 16:17:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\ViGlance
[2010-12-29 16:26:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\ViStart

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Custom Scans ==========[/color]


[color=#A23BEC]< %systemdrive%\*.* >[/color]
[2010-08-23 13:02:05 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010-08-23 12:55:13 | 000,000,211 | ---- | M] () -- C:\BOOT.BKK
[2010-12-29 14:36:55 | 000,000,354 | ---- | M] () -- C:\boot.ini
[2008-04-15 13:00:00 | 000,004,952 | ---- | M] () -- C:\Bootfont.bin
[2010-08-23 13:02:05 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010-08-23 13:02:05 | 000,000,000 | ---- | M] () -- C:\IO.SYS
[2010-08-23 13:02:05 | 000,000,000 | ---- | M] () -- C:\MSDOS.SYS
[2008-04-15 13:00:00 | 000,047,564 | ---- | M] () -- C:\NTDETECT.COM
[2008-04-15 13:00:00 | 000,251,152 | ---- | M] () -- C:\ntldr
[2011-02-11 08:23:07 | 792,723,456 | -HS- | M] () -- C:\pagefile.sys
[2011-01-28 13:31:02 | 000,008,786 | ---- | M] () -- C:\Program1.RPT
[2011-02-11 08:19:27 | 000,000,000 | ---- | M] () -- C:\UsbFix.txt


[color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
[2008-04-15 13:00:00 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:agp440.sys
[2008-04-14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008-04-14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys

[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2008-04-15 13:00:00 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\dllcache\atapi.sys
[2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2008-04-15 13:00:00 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0001\DriverFiles\i386\atapi.sys
[2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0005\DriverFiles\i386\atapi.sys

[color=#A23BEC]< MD5 for: BEEP.SYS >[/color]
[2008-04-15 13:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys
[2008-04-15 13:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys

[color=#A23BEC]< MD5 for: CDROM.SYS >[/color]
[2008-04-15 13:00:00 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008-04-14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008-04-13 23:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys

[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]
[2008-04-14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008-04-15 13:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\dllcache\ndis.sys
[2008-04-15 13:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys

[color=#A23BEC]< MD5 for: USERINIT.EXE >[/color]
[2008-04-14 22:51:46 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=2A5B37D520508BE6570A3EA79695F5B5 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe
[2008-04-15 13:00:00 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=2A5B37D520508BE6570A3EA79695F5B5 -- C:\WINDOWS\system32\dllcache\userinit.exe
[2008-04-15 13:00:00 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=2A5B37D520508BE6570A3EA79695F5B5 -- C:\WINDOWS\system32\userinit.exe

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008-04-15 13:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\dllcache\winlogon.exe
[2008-04-15 13:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\winlogon.exe

< End of report >
[/log]

[log] OTL Extras logfile created on: 2011-02-11 11:13:14 - Run 1
OTL by OldTimer - Version 3.2.20.6 Folder = C:\Documents and Settings\User\Pulpit
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

1 015,00 Mb Total Physical Memory | 275,00 Mb Available Physical Memory | 27,00% Memory free
2,00 Gb Paging File | 1,00 Gb Available in Paging File | 59,00% Paging File free
Paging file location(s): C:\pagefile.sys 756 1512 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 37,27 Gb Total Space | 0,41 Gb Free Space | 1,10% Space Free | Partition Type: NTFS

Computer Name: USER-FCC60EA01E | User Name: User | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = ChromeHTML] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe (Google Inc.)

[HKEY_USERS\S-1-5-21-2052111302-492894223-1606980848-1003\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

[color=#E56717]========== Shell Spawning ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1"
https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1"
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[color=#E56717]========== Security Center Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 1
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[color=#E56717]========== System Restore Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"18178:TCP" = 18178:TCP:*:Enabled:BitComet 18178 TCP
"18178:UDP" = 18178:UDP:*:Enabled:BitComet 18178 UDP
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008

[color=#E56717]========== Authorized Applications List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\WINDOWS\system32\lxeccoms.exe" = C:\WINDOWS\system32\lxeccoms.exe:*:Enabled:Pro800-Pro900 Series Server -- ( )
"C:\Program Files\Gadu-Gadu 10\gg.exe" = C:\Program Files\Gadu-Gadu 10\gg.exe:*:Disabled:Gadu-Gadu 10 -- (GG Network S.A.)
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe" = C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe" = C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe" = C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe" = C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\valve\hl.exe" = C:\Program Files\valve\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
"C:\Program Files\valve\hlds.exe" = C:\Program Files\valve\hlds.exe:*:Enabled:HLDS Launcher -- (Valve)
"C:\Program Files\AVG\AVG10\avgmfapx.exe" = C:\Program Files\AVG\AVG10\avgmfapx.exe:*:Enabled:Instalator AVG -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\Opera\opera.exe" = C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software)
"C:\Program Files\AVG\AVG10\avgdiagex.exe" = C:\Program Files\AVG\AVG10\avgdiagex.exe:*:Enabled:Diagnostyka AVG 2011 -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG10\avgnsx.exe" = C:\Program Files\AVG\AVG10\avgnsx.exe:*:Enabled:Ochrona Sieci -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG10\avgam.exe" = C:\Program Files\AVG\AVG10\avgam.exe:*:Enabled:Menedżer alarmów systemu AVG -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG10\avgemcx.exe" = C:\Program Files\AVG\AVG10\avgemcx.exe:*:Enabled:Uniwersalny skaner poczty e-mail -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)


[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{03B1B42B-F6DE-41d9-8CFF-DC44E895C7A7}" = PhotoGallery
"{0611BD4E-4FE4-4a62-B0C0-18A4CC463428}" = CP_Package_Variety1
"{089DD780-DB3F-4CDB-A0C2-111360247298}" = PC Connectivity Solution
"{09984AEC-6B9F-4ca7-B78D-CB44D4771DA3}" = Destinations
"{0B33B738-AD79-4E32-90C5-E67BFB10BBFF}" = AiO_Scan
"{15EE79F4-4ED1-4267-9B0F-351009325D7D}" = HP Software Update
"{172975EB-9465-4861-95B5-C7BB6D3DE62A}" = DocumentViewer
"{193DB24F-9A66-4896-8404-22D53EA89075}" = 1400_Help
"{1C139D7D-9FEA-468d-A9C8-2A6E3BDE564A}" = CP_Package_Variety3
"{1EE88B84-7BE5-4FB5-8DEA-B81D5409D62E}" = Opera 11.00
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{21DB3D90-D816-4092-A260-CA3F6B55A6DD}" = Sonic_PrimoSDK
"{23A7B376-BBEC-4e76-BBD7-0F155E70D74B}" = CP_Panorama1Config
"{266959FA-0AEE-41D0-A88E-F1EAC10A7C14}" = 1400
"{26A24AE4-039D-4CA4-87B4-2F83216020F0}" = Java(TM) 6 Update 20
"{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 23
"{2CADCEAB-D5DA-44D6-B5FC-7DEE87AB3C0C}" = Unload
"{30C19FF2-7FBA-4d09-B9DE-1659977F64F6}" = TrayApp
"{32BDCCB8-9DC8-496d-9DB1-F77510775BDB}" = InstantShareDevices
"{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{36E47DA1-10E1-45d9-8B19-14D19607CDCF}" = CP_CalendarTemplates1
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{50316C0A-CC2A-460A-9EA5-F486E54AC17D}_is1" = AVG PC Tuneup 2011
"{53EE9E42-CECB-4C92-BF76-9CA65DAF8F1C}" = FullDPAppQFolder
"{54E3707F-808E-4fd4-95C9-15D1AB077E5D}" = NewCopy
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{56EE8B17-8274-418d-89AC-C057C5DB251E}" = RandMap
"{56F8AFC3-FA98-4ff1-9673-8A026CBF85BE}" = WebReg
"{5A01C58E-B0EC-49b9-AD71-7C0468688087}" = CP_Package_Basic1
"{5A9FE525-8B8F-4701-A937-7F6745A4E9C7}" = RGSS-RTP Standard
"{5B622B7A-60FB-4630-B11D-F121D20BCCD6}" = MarketResearch
"{5B79CFD1-6845-4158-9D7D-6BE89DF2C135}" = HP PSC & OfficeJet 5.3.B
"{5F26311C-B135-4F7F-B11E-8E650F83651E}" = DeviceFunctionQFolder
"{64CB2553-C109-4132-AA51-1F421B515FD1}" = Microsoft .NET Framework 1.1 Polish Language Pack
"{66BA8C26-AFE4-4408-807B-43E76B57EF53}" = SkinsHP1
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{6BB6627C-694F-4FDC-A3E5-C7F4BED4C724}" = DocProc
"{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}" = PartitionMagic
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
"{6FB6D550-DDC4-4996-9CDF-91C34F0A4C4A}" = Gothic II Złota Edycja
"{7850A6D2-CBEA-4728-9877-F1BEDEA9F619}" = AiOSoftware
"{7C03270C-4FAB-4F5C-B10D-52FEDA190790}" = DocumentViewerQFolder
"{7C9B95B7-B598-4398-B30F-7F6827192E6C}" = ProductContext
"{7E27304E-BAA2-4d90-A34E-76641FAFABB4}" = CP_AtenaShokunin1Config
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8727531E-6C58-4852-A90B-39CF45E269A9}" = OpenOffice.org 3.2
"{8A708DD8-A5E6-11D4-A706-000629E95E20}" = Intel(R) Extreme Graphics 2 Driver
"{923A7F5A-1E8C-4FBE-8DF6-85940A60A79F}" = Readme
"{A05BE20E-6510-44BC-95ED-6E6D730407D3}" = Vplayer
"{A195B13E-A5E3-4BAF-A995-7F70F445CD06}" = ScannerCopy
"{A276502A-8979-44FB-8090-90CF72F22ABC}" = AVG 2011
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A483F88A-41E9-45B2-AAC9-A823DD9B4873}" = PS TO PC CONVERTER
"{A5BB5365-EFB4-44c3-A7E2-EB59B7EFD23D}" = CueTour
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AC76BA86-7AD7-1045-7B44-A94000000001}" = Adobe Reader 9.4.1 - Polish
"{B395BC1D-CC06-425E-9049-4CD985EFF004}" = LightScribe 1.8.15.1
"{B4D279F1-4309-49cc-A4B5-3A0D2E59C7B5}" = PanoStandAlone
"{B824B5C9-849F-4b9e-9EA7-6FD8CD8116DA}" = CP_Package_Variety2
"{B996AE66-10DB-4ac5-B151-E8B4BFBC42FC}" = BufferChm
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C506A18C-1469-4678-B094-F4EC9DAE6DB7}" = Scan
"{C510CA36-98D6-4F07-8AFF-81E7399A075B}" = 1400Trb
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE24344F-DFD8-40C8-8FD8-C9740B5F25AC}" = Fax
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D22AFEDF-6A5B-459D-A9EA-D16E422E4C18}" = Nokia Connectivity Cable Driver
"{D642E38E-0D24-486C-9A2D-E316DD696F4B}" = Microsoft XML Parser
"{E3F90083-80D4-4b5a-87C7-E97E12F5516D}" = HPProductAssistant
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.0
"{E8870D92-54F6-4AC7-82D0-7DCDFB1F00AE}" = Cs Non Steam
"{E9846102-5AEE-488E-8DE1-05316D1D3E47}" = HP WIRELESS LAN PCI CARD 802.11B WL220 Driver
"{EA103B64-C0E4-4C0E-A506-751590E1653D}" = SolutionCenter
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F4C2E5F5-2970-45f4-ABD3-C180C4D961C4}" = Status
"{F4C68898-EBA5-46A9-82B3-2D30426086BF}" = AVG 2011
"{F870B987-18BC-45FC-9BE8-35C02DCDA10F}" = Broadcom NetXtreme Ethernet Controller
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"{FE64AE29-0883-4C70-8388-DC026019C900}" = HP Image Zone Express
"504244733D18C8F63FF584AEB290E3904E791693" = Pakiet sterowników systemu Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"7-Zip" = 7-Zip 9.20
"Adobe Shockwave Player" = Adobe Shockwave Player
"ALLPlayer_is1" = ALLPlayer V4.X
"AVG" = AVG 2011
"BitComet" = BitComet 1.23
"BSPlayerf" = BS.Player FREE
"Bullzip PDF Printer_is1" = Bullzip PDF Printer 7.1.0.1195
"ChomikBox" = ChomikBox
"ffdshow_is1" = ffdshow [rev 1723] [2007-12-24]
"Gadu-Gadu 10" = Gadu-Gadu 10
"GPL Ghostscript Lite_is1" = GPL Ghostscript Lite 8.70
"HID Plugin_is1" = DeepSoftware HID Plugin for Winamp Player v1.5.3.4
"InstallShield_{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}" = PowerQuest PartitionMagic 8.0 Demo
"JLC's Internet TV" = JLC's Internet TV
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"Native Instruments Service Center" = Native Instruments Service Center
"NVIDIA Drivers" = NVIDIA Drivers
"SpeedFan" = SpeedFan (remove only)
"SubEdit-Player_is1" = SubEdit-Player
"Super Mario 3 : Mario Forever" = Super Mario 3 : Mario Forever
"Szkoła na miarę, klasa 1, semestr 2" = Szkoła na miarę, klasa 1, semestr 2
"Usbfix" = UsbFix By El Desaparecido & C_XX
"uTorrent" = µTorrent
"Virtual DJ - Atomix Productions" = Virtual DJ - Atomix Productions
"VLC media player" = VLC media player 1.1.5
"Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
"Wdf01009" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
"Winamp" = Winamp
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"WinISO_is1" = WinISO 5.3
"WinRAR archiver" = Archiwizator WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"WrzutaMediaDownloader" = Wrzuta Media Downloader
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-21-2052111302-492894223-1606980848-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"Winamp Detect" = Detektor Winampa

[color=#E56717]========== Last 10 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2011-02-09 04:13:26 | Computer Name = USER-FCC60EA01E | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca RSIT.exe, wersja 3.3.2.0, moduł zawieszenia
hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2011-02-09 04:25:45 | Computer Name = USER-FCC60EA01E | Source = crypt32 | ID = 131083
Description = Nie można wyodrębnić głównej listy innych firm z pliku cab automatycznej
aktualizacji z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>,
wystąpił błąd: Wystąpił wewnętrzny błąd obsługi łańcucha certyfikatów.

Error - 2011-02-09 07:25:00 | Computer Name = USER-FCC60EA01E | Source = crypt32 | ID = 131083
Description = Nie można wyodrębnić głównej listy innych firm z pliku cab automatycznej
aktualizacji z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>,
wystąpił błąd: Wystąpił wewnętrzny błąd obsługi łańcucha certyfikatów.

Error - 2011-02-09 08:50:11 | Computer Name = USER-FCC60EA01E | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca notepad.exe, wersja 5.1.2600.5512, moduł zawieszenia
hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2011-02-09 08:51:39 | Computer Name = USER-FCC60EA01E | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca bsplayer.exe, wersja 2.5.7.1051, moduł zawieszenia
hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2011-02-10 11:06:56 | Computer Name = USER-FCC60EA01E | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd start.exe, wersja 0.0.0.0, moduł powodujący
błąd start.exe, wersja 0.0.0.0, adres błędu 0x00032e80.

Error - 2011-02-11 03:13:15 | Computer Name = USER-FCC60EA01E | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca OTL.exe, wersja 3.2.20.6, moduł zawieszenia
hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2011-02-11 03:13:19 | Computer Name = USER-FCC60EA01E | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca OTL.exe, wersja 3.2.20.6, moduł zawieszenia
hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2011-02-11 03:13:20 | Computer Name = USER-FCC60EA01E | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca OTL.exe, wersja 3.2.20.6, moduł zawieszenia
hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

[ System Events ]
Error - 2011-02-11 05:07:19 | Computer Name = USER-FCC60EA01E | Source = DCOM | ID = 10000
Description = Nie można uruchomić serwera DCOM: {C2BFE331-6739-4270-86C9-493D9A04CD38}.
Błąd:
„%2”
wystąpił
podczas uruchamiania tego polecenia: C:\WINDOWS\system32\igfxsrvc.exe -Embedding

Error - 2011-02-11 05:07:19 | Computer Name = USER-FCC60EA01E | Source = DCOM | ID = 10000
Description = Nie można uruchomić serwera DCOM: {078AEF33-C48A-49F7-AFF3-A0EE810BFE7C}.
Błąd:
„%2”
wystąpił
podczas uruchamiania tego polecenia: C:\WINDOWS\system32\igfxsrvc.exe -Embedding

Error - 2011-02-11 05:07:34 | Computer Name = USER-FCC60EA01E | Source = DCOM | ID = 10000
Description = Nie można uruchomić serwera DCOM: {C2BFE331-6739-4270-86C9-493D9A04CD38}.
Błąd:
„%2”
wystąpił
podczas uruchamiania tego polecenia: C:\WINDOWS\system32\igfxsrvc.exe -Embedding

Error - 2011-02-11 05:07:34 | Computer Name = USER-FCC60EA01E | Source = DCOM | ID = 10000
Description = Nie można uruchomić serwera DCOM: {078AEF33-C48A-49F7-AFF3-A0EE810BFE7C}.
Błąd:
„%2”
wystąpił
podczas uruchamiania tego polecenia: C:\WINDOWS\system32\igfxsrvc.exe -Embedding

Error - 2011-02-11 05:22:25 | Computer Name = USER-FCC60EA01E | Source = DCOM | ID = 10000
Description = Nie można uruchomić serwera DCOM: {C2BFE331-6739-4270-86C9-493D9A04CD38}.
Błąd:
„%2”
wystąpił
podczas uruchamiania tego polecenia: C:\WINDOWS\system32\igfxsrvc.exe -Embedding

Error - 2011-02-11 05:22:25 | Computer Name = USER-FCC60EA01E | Source = DCOM | ID = 10000
Description = Nie można uruchomić serwera DCOM: {078AEF33-C48A-49F7-AFF3-A0EE810BFE7C}.
Błąd:
„%2”
wystąpił
podczas uruchamiania tego polecenia: C:\WINDOWS\system32\igfxsrvc.exe -Embedding

Error - 2011-02-11 05:53:50 | Computer Name = USER-FCC60EA01E | Source = DCOM | ID = 10000
Description = Nie można uruchomić serwera DCOM: {C2BFE331-6739-4270-86C9-493D9A04CD38}.
Błąd:
„%2”
wystąpił
podczas uruchamiania tego polecenia: C:\WINDOWS\system32\igfxsrvc.exe -Embedding

Error - 2011-02-11 05:53:50 | Computer Name = USER-FCC60EA01E | Source = DCOM | ID = 10000
Description = Nie można uruchomić serwera DCOM: {078AEF33-C48A-49F7-AFF3-A0EE810BFE7C}.
Błąd:
„%2”
wystąpił
podczas uruchamiania tego polecenia: C:\WINDOWS\system32\igfxsrvc.exe -Embedding

Error - 2011-02-11 06:05:14 | Computer Name = USER-FCC60EA01E | Source = DCOM | ID = 10000
Description = Nie można uruchomić serwera DCOM: {C2BFE331-6739-4270-86C9-493D9A04CD38}.
Błąd:
„%2”
wystąpił
podczas uruchamiania tego polecenia: C:\WINDOWS\system32\igfxsrvc.exe -Embedding

Error - 2011-02-11 06:05:14 | Computer Name = USER-FCC60EA01E | Source = DCOM | ID = 10000
Description = Nie można uruchomić serwera DCOM: {078AEF33-C48A-49F7-AFF3-A0EE810BFE7C}.
Błąd:
„%2”
wystąpił
podczas uruchamiania tego polecenia: C:\WINDOWS\system32\igfxsrvc.exe -Embedding


< End of report >
[/log]

[log] All processes killed
========== OTL ==========
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully!
HKU\S-1-5-21-2052111302-492894223-1606980848-1003\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0cd3c4c6-cd65-11df-983e-000e7ffb134f}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0cd3c4c6-cd65-11df-983e-000e7ffb134f}\ not found.
File F:\fi.cmd not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0cd3c4c6-cd65-11df-983e-000e7ffb134f}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0cd3c4c6-cd65-11df-983e-000e7ffb134f}\ not found.
File F:\fi.cmd not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0cd3c4c6-cd65-11df-983e-000e7ffb134f}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0cd3c4c6-cd65-11df-983e-000e7ffb134f}\ not found.
File F:\fi.cmd not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8cfa4cd8-bfbc-11df-88fb-000e7ffb134f}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8cfa4cd8-bfbc-11df-88fb-000e7ffb134f}\ not found.
File G:\RECYCLER32\dmgr.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8cfa4cd8-bfbc-11df-88fb-000e7ffb134f}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8cfa4cd8-bfbc-11df-88fb-000e7ffb134f}\ not found.
File G:\RECYCLER32\dmgr.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{aefde5a0-bda6-11df-88ea-000e7ffb134f}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{aefde5a0-bda6-11df-88ea-000e7ffb134f}\ not found.
File E:\RECYCLER32\dmgr.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{aefde5a0-bda6-11df-88ea-000e7ffb134f}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{aefde5a0-bda6-11df-88ea-000e7ffb134f}\ not found.
File E:\RECYCLER32\dmgr.exe not found.
Unable to delete ADS C:\Documents and Settings\All Users\Dane aplikacji\TEMP:0B4227B4 .
========== FILES ==========
File\Folder C:\WINDOWS\Tasks\AVG PC Tuneup 2011 Integrator Start On Windows Logon.job not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Administrator.USER-FCC60EA01E
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Administrator.USER-FCC60EA01E.000
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32768 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: User
->Temp folder emptied: 72258 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 6918927 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 6393 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2469895 bytes
%systemroot%\System32 .tmp files removed: 2206244 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 49408 bytes
Windows Temp folder emptied: 17371 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 11,00 mb


OTL by OldTimer - Version 3.2.20.6 log created on 02112011_082027

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...
[/log]

ok ?

[log] info.txt logfile of random's system information tool 1.08 2011-02-11 15:54:02

======Uninstall list======

-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
µTorrent-->"C:\Program Files\uTorrent\uTorrent.exe" /UNINSTALL
7-Zip 9.20-->"C:\Program Files\7-Zip\Uninstall.exe"
Adobe Reader 9.4.1 - Polish-->MsiExec.exe /I{AC76BA86-7AD7-1045-7B44-A94000000001}
Adobe Shockwave Player-->C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
Aktualizacja zabezpieczeń dla systemu Windows Internet Explorer 8 (KB2360131)-->"C:\WINDOWS\ie8updates\KB2360131-IE8\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows Internet Explorer 8 (KB2416400)-->"C:\WINDOWS\ie8updates\KB2416400-IE8\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows Internet Explorer 8 (KB2482017)-->"C:\WINDOWS\ie8updates\KB2482017-IE8\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2393802)-->"C:\WINDOWS\$NtUninstallKB2393802$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2476687)-->"C:\WINDOWS\$NtUninstallKB2476687$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2478960)-->"C:\WINDOWS\$NtUninstallKB2478960$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2478971)-->"C:\WINDOWS\$NtUninstallKB2478971$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2479628)-->"C:\WINDOWS\$NtUninstallKB2479628$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2483185)-->"C:\WINDOWS\$NtUninstallKB2483185$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2485376)-->"C:\WINDOWS\$NtUninstallKB2485376$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf
ALLPlayer V4.X-->"C:\Program Files\ALLPlayer\unins000.exe"
Archiwizator WinRAR-->C:\Program Files\WinRAR\uninstall.exe
AVG 2011-->"C:\Program Files\AVG\AVG10\avgmfapx.exe" /AppMode=SETUP /Uninstall
AVG 2011-->MsiExec.exe /I{A276502A-8979-44FB-8090-90CF72F22ABC}
AVG 2011-->MsiExec.exe /I{F4C68898-EBA5-46A9-82B3-2D30426086BF}
AVG PC Tuneup 2011-->"C:\Program Files\AVG\AVG PC Tuneup 2011\unins000.exe"
Broadcom NetXtreme Ethernet Controller-->MsiExec.exe /X{F870B987-18BC-45FC-9BE8-35C02DCDA10F}
BS.Player FREE-->"C:\Program Files\Webteh\BSplayer\uninstall.exe"
ChomikBox-->"C:\Program Files\ChomikBox\ChomikBoxSetup.exe" /uninstall
Cs Non Steam-->MsiExec.exe /I{E8870D92-54F6-4AC7-82D0-7DCDFB1F00AE}
DeepSoftware HID Plugin for Winamp Player v1.5.3.4-->"C:\Program Files\HID Plugin\unins000.exe"
ffdshow [rev 1723] [2007-12-24]-->"C:\Program Files\MpcStar\Codecs\ffdshow\unins000.exe"
Gadu-Gadu 10-->C:\Program Files\Gadu-Gadu 10\Uninstall.exe
Gothic II Złota Edycja-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6FB6D550-DDC4-4996-9CDF-91C34F0A4C4A}\setup.exe" -l0x15 -removeonly
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
HP Image Zone Express-->MsiExec.exe /X{FE64AE29-0883-4C70-8388-DC026019C900}
HP PSC & OfficeJet 5.3.B-->"C:\Program Files\HP\Digital Imaging\{5B79CFD1-6845-4158-9D7D-6BE89DF2C135}\setup\hpzscr01.exe" -datfile hposcr07.dat
HP Software Update-->MsiExec.exe /X{15EE79F4-4ED1-4267-9B0F-351009325D7D}
HP WIRELESS LAN PCI CARD 802.11B WL220 Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E9846102-5AEE-488E-8DE1-05316D1D3E47}\WIN2K\Setup.exe"
Java(TM) 6 Update 20-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216020F0}
Java(TM) 6 Update 23-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216021FF}
JLC's Internet TV-->"C:\Program Files\JLC's Software\Internet TV\Uninstall.exe"
Microsoft .NET Framework 1.1 Polish Language Pack-->MsiExec.exe /X{64CB2553-C109-4132-AA51-1F421B515FD1}
Microsoft .NET Framework 1.1 Security Update (KB2416447)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M2416447\M2416447Uninstall.msp"
Microsoft .NET Framework 1.1 Security Update (KB979906)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M979906\M979906Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5-->"C:\WINDOWS\$NtUninstallWdf01005$\spuninst\spuninst.exe"
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9-->"C:\WINDOWS\$NtUninstallWdf01009$\spuninst\spuninst.exe"
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
MSVC80_x86_v2-->MsiExec.exe /I{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
Native Instruments Service Center-->C:\PROGRA~1\NATIVE~1\SERVIC~1\UNWISE.EXE C:\PROGRA~1\NATIVE~1\SERVIC~1\INSTALL.LOG
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
Nokia Connectivity Cable Driver-->MsiExec.exe /I{D22AFEDF-6A5B-459D-A9EA-D16E422E4C18}
OpenOffice.org 3.2-->MsiExec.exe /I{8727531E-6C58-4852-A90B-39CF45E269A9}
Opera 11.00-->MsiExec.exe /X{1EE88B84-7BE5-4FB5-8DEA-B81D5409D62E}
Pakiet sterowników systemu Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)-->C:\PROGRA~1\DIFX\B4723E9A0713E5B1\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\pccsmcfd_A3B3916E5D8138F59EE218321B27B044D3B18294\pccsmcfd.inf
PC Connectivity Solution-->MsiExec.exe /I{089DD780-DB3F-4CDB-A0C2-111360247298}
PS TO PC CONVERTER-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0700\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A483F88A-41E9-45B2-AAC9-A823DD9B4873}\setup.exe" -l0x9
Realtek AC'97 Audio-->Alcrmv.exe -r -m
RGSS-RTP Standard-->MsiExec.exe /I{5A9FE525-8B8F-4701-A937-7F6745A4E9C7}
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A8894F19-59C8-38D2-8A75-36C0CCE56A5B} /qb+ REBOOTPROMPT=""
Skype™ 5.0-->MsiExec.exe /X{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}
SoundMAX-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F0A37341-D692-11D4-A984-009027EC0A9C}\Setup.exe"
SpeedFan (remove only)-->"C:\Program Files\SpeedFan\uninstall.exe"
SubEdit-Player-->"C:\Program Files\SubEdit-Player\unins000.exe"
Super Mario 3 : Mario Forever-->C:\Program Files\softendo.com\Mario Forever\Uninstal.exe
Szkoła na miarę, klasa 1, semestr 2-->C:\WINDOWS\IsUn0415.exe -f"C:\Program Files\Szkola na miare klasa 1b\Uninst.isu" -c"C:\Program Files\Szkola na miare klasa 1b\UninstallProject.dll"
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
UsbFix By El Desaparecido & C_XX-->"C:\UsbFix\Un-UsbFix.exe"
VCRedistSetup-->MsiExec.exe /I{3921A67A-5AB1-4E48-9444-C71814CF3027}
Virtual DJ - Atomix Productions-->C:\PROGRA~1\VIRTUA~1\UNWISE.EXE C:\PROGRA~1\VIRTUA~1\INSTALL.LOG
VLC media player 1.1.5-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Vplayer-->MsiExec.exe /I{A05BE20E-6510-44BC-95ED-6E6D730407D3}
Winamp-->"C:\Program Files\Winamp\UninstWA.exe"
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
WinISO 5.3-->"C:\Program Files\WinISO\unins000.exe"
Wrzuta Media Downloader-->"C:\Program Files\Dragonshorn Studios\WMD\uninstall.exe"

======System event log======

Computer Name: USER-FCC60EA01E
Event Code: 10000
Message: Nie można uruchomić serwera DCOM: {078AEF33-C48A-49F7-AFF3-A0EE810BFE7C}.
Błąd:
„%2”
wystąpił podczas uruchamiania tego polecenia:
C:\WINDOWS\system32\igfxsrvc.exe -Embedding

Record Number: 5
Source Name: DCOM
Time Written: 20110208230414.000000+060
Event Type: błąd
User: USER-FCC60EA01E\User

Computer Name: USER-FCC60EA01E
Event Code: 10000
Message: Nie można uruchomić serwera DCOM: {C2BFE331-6739-4270-86C9-493D9A04CD38}.
Błąd:
„%2”
wystąpił podczas uruchamiania tego polecenia:
C:\WINDOWS\system32\igfxsrvc.exe -Embedding

Record Number: 4
Source Name: DCOM
Time Written: 20110208230414.000000+060
Event Type: błąd
User: USER-FCC60EA01E\User

Computer Name: USER-FCC60EA01E
Event Code: 4226
Message: Protokół TCP/IP osiągnął limit zabezpieczeń ustalony dla liczby równoczesnych prób połączeń TCP.

Record Number: 3
Source Name: Tcpip
Time Written: 20110208225408.000000+060
Event Type: ostrzeżenie
User:

Computer Name: USER-FCC60EA01E
Event Code: 10000
Message: Nie można uruchomić serwera DCOM: {078AEF33-C48A-49F7-AFF3-A0EE810BFE7C}.
Błąd:
„%2”
wystąpił podczas uruchamiania tego polecenia:
C:\WINDOWS\system32\igfxsrvc.exe -Embedding

Record Number: 2
Source Name: DCOM
Time Written: 20110208223900.000000+060
Event Type: błąd
User: USER-FCC60EA01E\User

Computer Name: USER-FCC60EA01E
Event Code: 10000
Message: Nie można uruchomić serwera DCOM: {C2BFE331-6739-4270-86C9-493D9A04CD38}.
Błąd:
„%2”
wystąpił podczas uruchamiania tego polecenia:
C:\WINDOWS\system32\igfxsrvc.exe -Embedding

Record Number: 1
Source Name: DCOM
Time Written: 20110208223900.000000+060
Event Type: błąd
User: USER-FCC60EA01E\User

=====Application event log=====

Computer Name: USER-FCC60EA01E
Event Code: 1800
Message: Usługa Centrum zabezpieczeń systemu Windows została uruchomiona.

Record Number: 5
Source Name: SecurityCenter
Time Written: 20110209081256.000000+060
Event Type: informacje
User:

Computer Name: USER-FCC60EA01E
Event Code: 4
Message: The LightScribe Service started successfully.

Record Number: 4
Source Name: LightScribeService
Time Written: 20110209081248.000000+060
Event Type: informacje
User:

Computer Name: USER-FCC60EA01E
Event Code: 11724
Message: Product: Google Update Helper -- Removal completed successfully.

Record Number: 3
Source Name: MsiInstaller
Time Written: 20110208235907.000000+060
Event Type: informacje
User: ZARZĄDZANIE NT\SYSTEM

Computer Name: USER-FCC60EA01E
Event Code: 2
Message: Pomyślnie wykonano automatyczne pobranie aktualizacji listy głównej plików cab innych firm z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>

Record Number: 2
Source Name: crypt32
Time Written: 20110208234715.000000+060
Event Type: informacje
User:

Computer Name: USER-FCC60EA01E
Event Code: 7
Message: Pomyślnie wykonano automatyczne pobranie aktualizacji numeru sekwencji listy głównej innych firm z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>

Record Number: 1
Source Name: crypt32
Time Written: 20110208234714.000000+060
Event Type: informacje
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=C:\Program Files\PC Connectivity Solution\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 2 Stepping 9, GenuineIntel
"PROCESSOR_REVISION"=0209
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP

-----------------EOF-----------------
[/log]

[log] Logfile of random's system information tool 1.08 (written by random/random)
Run by User at 2011-02-11 15:53:14
Microsoft Windows XP Professional Dodatek Service Pack 3
System drive C: has 5 GB (13%) free of 38 GB
Total RAM: 1015 MB (35% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:53:51, on 2011-02-11
Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\PROGRA~1\AVG\AVG10\avgchsvx.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\EXPLORER.EXE
C:\Program Files\AVG\AVG10\avgfws.exe
C:\Program Files\AVG\AVG10\avgwdsvc.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\lxeccoms.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
C:\Program Files\AVG\AVG10\avgam.exe
C:\Program Files\AVG\AVG10\avgnsx.exe
C:\Program Files\AVG\AVG10\avgemcx.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\AVG\AVG10\avgtray.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe
C:\Program Files\AVG\AVG10\avgcsrvx.exe
C:\PROGRA~1\AVG\AVG10\avgrsx.exe
C:\Program Files\AVG\AVG10\avgcsrvx.exe
C:\Program Files\Gadu-Gadu 10\gg.exe
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZSTC12.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZENG12.exe
C:\Documents and Settings\User\Pulpit\unconfirmed 32398.exe
C:\Program Files\trend micro\User.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.bearshare.com/sidebar.html?src=ssb
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.qooqlle.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,EXPLORER.EXE
O2 - BHO: MediaBar - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.4.8.11.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll
O2 - BHO: UrlHelper Class - {74322BF9-DF26-493f-B0DA-6D2FC5E6429E} - (no file)
O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: IEPluginBHO - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\User\Dane aplikacji\Nowe Gadu-Gadu\_userdata\ggbho.1.dll (file missing)
O3 - Toolbar: MediaBar - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - (no file)
O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll
O3 - Toolbar: (no name) - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - (no file)
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
O4 - HKLM\..\Run: [DrvLsnr] C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe
O4 - HKLM\..\Run: [GProton] %ALLUSERSPROFILE%\GProton.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ALLUpdate] "C:\Program Files\ALLPlayer\ALLUpdate.exe" "sleep"
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA LOKALNA')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA SIECIOWA')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Pobierz wszystko za pomocą BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Pobierz za pomocą BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.4.8.11.dll/206 (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) - http://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab
O18 - Protocol: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs:
O20 - Winlogon Notify: qoMgddAT - qoMgddAT.dll (file missing)
O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe
O23 - Service: Zapora AVG (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\avgfws.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\avgwdsvc.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: lxecCATSCustConnectService - Lexmark International, Inc. - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxecserv.exe
O23 - Service: lxec_device - - C:\WINDOWS\system32\lxeccoms.exe
O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe (file missing)
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

--
End of file - 9847 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2052111302-492894223-1606980848-1003Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2052111302-492894223-1606980848-1003UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0974BA1E-64EC-11DE-B2A5-E43756D89593}]
MediaBar

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
BitComet Helper - C:\Program Files\BitComet\tools\BitCometBHO_1.4.8.11.dll [2010-08-11 735024]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG10\avgssie.dll [2011-01-07 2731872]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{74322BF9-DF26-493f-B0DA-6D2FC5E6429E}]
UrlHelper Class

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}]
AVG Security Toolbar BHO - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll [2010-10-06 2475336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-11-24 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-11-24 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D}]
IEPluginBHO Class - C:\Documents and Settings\User\Dane aplikacji\Nowe Gadu-Gadu\_userdata\ggbho.1.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0974BA1E-64EC-11DE-B2A5-E43756D89593} -
{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - AVG Security Toolbar - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll [2010-10-06 2475336]
{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2005-05-11 49152]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288]
"AVG_TRAY"=C:\Program Files\AVG\AVG10\avgtray.exe [2011-01-07 2747744]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2007-04-16 577536]
"smapp"=C:\Program Files\Analog Devices\SoundMAX\SMTray.exe [2003-05-05 143360]
"DrvLsnr"=C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe [2003-05-08 69632]
"GProton"=C:\Documents and Settings\All Users\GProton.exe [2011-01-07 7793152]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-15 15360]
"uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2011-01-02 396152]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"ALLUpdate"=C:\Program Files\ALLPlayer\ALLUpdate.exe [2010-11-02 1432064]
"Google Update"=C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe [2011-01-23 136176]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2005-09-20 135168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\qoMgddAT]
qoMgddAT.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2009-01-30 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{6D794CB4-C7CD-4c6f-BFDC-9B77AFBDC02C}"= []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=0
"NoDriveAutoRun"=3

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=3
"NoDriveTypeAutoRun"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\system32\lxeccoms.exe"="C:\WINDOWS\system32\lxeccoms.exe:*:Enabled:Pro800-Pro900 Series Server"
"C:\Program Files\Gadu-Gadu 10\gg.exe"="C:\Program Files\Gadu-Gadu 10\gg.exe:*:Disabled:Gadu-Gadu 10"
"C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe"="C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe"
"C:\Program Files\valve\hl.exe"="C:\Program Files\valve\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\valve\hlds.exe"="C:\Program Files\valve\hlds.exe:*:Enabled:HLDS Launcher"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\AVG\AVG10\avgmfapx.exe"="C:\Program Files\AVG\AVG10\avgmfapx.exe:*:Enabled:Instalator AVG"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\AVG\AVG10\avgdiagex.exe"="C:\Program Files\AVG\AVG10\avgdiagex.exe:*:Enabled:Diagnostyka AVG 2011"
"C:\Program Files\AVG\AVG10\avgnsx.exe"="C:\Program Files\AVG\AVG10\avgnsx.exe:*:Enabled:Ochrona Sieci"
"C:\Program Files\AVG\AVG10\avgam.exe"="C:\Program Files\AVG\AVG10\avgam.exe:*:Enabled:Menedżer alarmów systemu AVG"
"C:\Program Files\AVG\AVG10\avgemcx.exe"="C:\Program Files\AVG\AVG10\avgemcx.exe:*:Enabled:Uniwersalny skaner poczty e-mail"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2011-02-11 12:01:18 ----D---- C:\rsit
2011-02-11 08:18:47 ----RASHD---- C:\Autorun.inf
2011-02-11 08:11:09 ----D---- C:\_OTL
2011-02-10 18:00:10 ----D---- C:\Program Files\Everest Poker
2011-02-10 17:19:51 ----A---- C:\UsbFix.txt
2011-02-10 15:57:17 ----D---- C:\UsbFix
2011-02-10 13:58:31 ----D---- C:\Program Files\Szkola na miare klasa 1b
2011-02-10 00:15:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2478971$
2011-02-10 00:15:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2485376$
2011-02-10 00:15:00 ----HDC---- C:\WINDOWS\$NtUninstallKB2479628$
2011-02-10 00:14:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2483185$
2011-02-10 00:09:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2476687$
2011-02-10 00:08:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2478960$
2011-02-10 00:08:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2393802$
2011-02-09 15:36:14 ----D---- C:\Program Files\WinISO
2011-02-09 13:59:28 ----D---- C:\Program Files\7-Zip
2011-02-09 13:07:54 ----A---- C:\WINDOWS\IsUn0415.exe
2011-02-09 11:50:46 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\InstallMate
2011-02-09 11:50:27 ----D---- C:\Program Files\Mozilla Firefox
2011-02-09 09:12:55 ----D---- C:\Program Files\trend micro
2011-02-08 23:59:09 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Google
2011-02-06 23:47:26 ----D---- C:\Documents and Settings\User\Dane aplikacji\ChomikBox
2011-02-06 23:28:00 ----D---- C:\Program Files\ChomikBox
2011-02-04 10:58:27 ----A---- C:\WINDOWS\VPlayer.INI
2011-02-02 15:57:34 ----D---- C:\Program Files\VirtualDJ
2011-01-29 13:22:01 ----N---- C:\WINDOWS\system32\spmsg.dll
2011-01-29 13:21:42 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$
2011-01-29 13:20:47 ----D---- C:\Program Files\Windows Media Connect 2
2011-01-29 13:20:09 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
2011-01-29 13:17:44 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2011-01-29 13:16:22 ----D---- C:\WINDOWS\system32\LogFiles
2011-01-29 13:16:22 ----D---- C:\WINDOWS\system32\drivers\UMDF
2011-01-29 13:16:05 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$
2011-01-29 13:02:39 ----D---- C:\Documents and Settings\User\Dane aplikacji\BSplayer Pro
2011-01-29 13:02:39 ----D---- C:\Documents and Settings\User\Dane aplikacji\BSplayer
2011-01-29 13:02:38 ----D---- C:\Program Files\Webteh
2011-01-29 12:54:17 ----A---- C:\WINDOWS\system32\xvidcore.dll
2011-01-29 12:54:17 ----A---- C:\WINDOWS\system32\libFLAC.dll
2011-01-29 12:54:14 ----D---- C:\Program Files\NAPI-PROJEKT
2011-01-29 12:54:05 ----D---- C:\Program Files\ALLPlayer
2011-01-29 12:52:23 ----D---- C:\Program Files\Vplayer
2011-01-26 17:07:34 ----D---- C:\Program Files\Common Files\Real
2011-01-25 23:05:44 ----D---- C:\Program Files\Real
2011-01-25 23:05:38 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Real
2011-01-25 23:05:29 ----D---- C:\Documents and Settings\User\Dane aplikacji\Real
2011-01-24 19:22:08 ----D---- C:\Documents and Settings\User\Dane aplikacji\JLC's Software
2011-01-24 19:21:53 ----D---- C:\Program Files\JLC's Software
2011-01-24 15:25:40 ----D---- C:\Program Files\JoWooD
2011-01-23 22:19:43 ----A---- C:\WINDOWS\Irremote.ini
2011-01-12 23:52:17 ----D---- C:\f392cca3e8185c93e16f64fd

======List of files/folders modified in the last 1 months======

2011-02-11 15:53:32 ----D---- C:\Documents and Settings\User\Dane aplikacji\uTorrent
2011-02-11 15:52:33 ----D---- C:\WINDOWS\Temp
2011-02-11 14:07:24 ----D---- C:\WINDOWS\Prefetch
2011-02-11 12:37:43 ----D---- C:\WINDOWS\system32\drivers\AVG
2011-02-11 08:24:31 ----D---- C:\WINDOWS\system32\CatRoot2
2011-02-11 08:24:04 ----D---- C:\WINDOWS\system32
2011-02-11 08:21:36 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-02-11 08:21:15 ----D---- C:\WINDOWS\system32\drivers
2011-02-11 08:21:15 ----D---- C:\WINDOWS
2011-02-11 08:11:29 ----SD---- C:\WINDOWS\Tasks
2011-02-10 18:00:10 ----D---- C:\Program Files
2011-02-10 17:27:19 ----AD---- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
2011-02-10 15:44:08 ----RSD---- C:\WINDOWS\assembly
2011-02-10 13:58:31 ----RSD---- C:\WINDOWS\Fonts
2011-02-10 00:15:38 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-02-10 00:15:35 ----HD---- C:\WINDOWS\inf
2011-02-10 00:15:22 ----A---- C:\WINDOWS\imsins.BAK
2011-02-10 00:11:10 ----D---- C:\WINDOWS\Debug
2011-02-10 00:10:53 ----A---- C:\WINDOWS\system32\MRT.exe
2011-02-10 00:10:10 ----D---- C:\Program Files\Internet Explorer
2011-02-10 00:09:37 ----D---- C:\WINDOWS\ie8updates
2011-02-10 00:09:30 ----HD---- C:\WINDOWS\$hf_mig$
2011-02-08 23:59:07 ----SHD---- C:\WINDOWS\Installer
2011-02-08 23:26:12 ----D---- C:\Program Files\Google
2011-02-08 22:38:45 ----D---- C:\WINDOWS\system32\config
2011-02-08 22:00:39 ----D---- C:\WINDOWS\Minidump
2011-02-08 21:58:34 ----SD---- C:\WINDOWS\Downloaded Program Files
2011-02-08 21:52:03 ----D---- C:\Documents and Settings\User\Dane aplikacji\AVG
2011-02-08 21:39:38 ----DC---- C:\Config.Msi
2011-02-08 21:39:37 ----RD---- C:\Program Files\Skype
2011-02-08 21:38:48 ----HD---- C:\Program Files\InstallShield Installation Information
2011-01-31 14:12:30 ----D---- C:\WINDOWS\system32\CatRoot
2011-01-29 13:21:14 ----A---- C:\WINDOWS\win.ini
2011-01-29 13:20:41 ----D---- C:\Program Files\Windows Media Player
2011-01-29 13:20:21 ----D---- C:\WINDOWS\Help
2011-01-29 12:55:18 ----D---- C:\Program Files\SubEdit-Player
2011-01-27 10:40:07 ----A---- C:\WINDOWS\system32\msvcr71.dll
2011-01-27 10:40:07 ----A---- C:\WINDOWS\system32\msvcp71.dll
2011-01-26 17:07:34 ----D---- C:\Program Files\Common Files
2011-01-26 17:06:01 ----D---- C:\WINDOWS\WinSxS
2011-01-23 22:23:35 ----D---- C:\Program Files\Common Files\Ahead
2011-01-23 22:23:31 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Nero
2011-01-23 22:13:03 ----D---- C:\Program Files\Counter-Strike 1.6
2011-01-23 16:16:48 ----DC---- C:\Documents and Settings
2011-01-21 15:44:11 ----A---- C:\WINDOWS\system32\shimgvw.dll
2011-01-21 15:44:11 ----A---- C:\WINDOWS\system32\shell32.dll
2011-01-16 16:55:17 ----D---- C:\Documents and Settings\User\Dane aplikacji\Skype
2011-01-16 14:59:07 ----D---- C:\Documents and Settings\User\Dane aplikacji\skypePM
2011-01-16 14:06:36 ----D---- C:\Program Files\Winamp
2011-01-16 14:05:16 ----D---- C:\Program Files\Winamp Detect
2011-01-15 16:21:52 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSEH;AVGIDSEH; C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys [2010-09-13 25680]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\WINDOWS\system32\DRIVERS\avgrkx86.sys [2010-09-07 26064]
R0 giveio;giveio; C:\WINDOWS\system32\giveio.sys [1996-04-03 5248]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2009-04-28 44944]
R0 speedfan;speedfan; C:\WINDOWS\system32\speedfan.sys [2006-09-24 5248]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-09-16 436792]
R0x01000000 papycpu;papycpu; C:\WINDOWS\system32\drivers\papycpu.sys [1998-10-06 1984]
R0x01000000 papyjoy;papyjoy; C:\WINDOWS\system32\drivers\papyjoy.sys [1998-10-06 1888]
R1 Avgldx86;AVG AVI Loader Driver; C:\WINDOWS\system32\DRIVERS\avgldx86.sys [2010-12-08 251728]
R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\WINDOWS\system32\DRIVERS\avgmfx86.sys [2010-09-07 34384]
R1 Avgtdix;AVG TDI Driver; C:\WINDOWS\system32\DRIVERS\avgtdix.sys [2010-11-12 299984]
R1 intelppm;Sterownik procesora Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-15 40448]
R1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2002-09-16 4228]
R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2003-03-13 100224]
R3 Avgfwdx;Avgfwdx; C:\WINDOWS\system32\DRIVERS\avgfwdx.sys [2010-07-12 30432]
R3 AVGIDSDriver;AVGIDSDriver; C:\WINDOWS\system32\DRIVERS\AVGIDSDriver.Sys [2010-08-19 123472]
R3 AVGIDSFilter;AVGIDSFilter; C:\WINDOWS\system32\DRIVERS\AVGIDSFilter.Sys [2010-08-19 30288]
R3 AVGIDSShim;AVGIDSShim; C:\WINDOWS\system32\DRIVERS\AVGIDSShim.Sys [2010-08-19 26192]
R3 b57w2k;Broadcom NetXtreme Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2008-07-25 176640]
R3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2005-03-08 51120]
R3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2005-03-08 16496]
R3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2005-03-08 21744]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2005-09-20 1302332]
R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2003-05-27 578304]
R3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbprint;Klasa PRINTER USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 usbscan;Sterownik skanera USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
R3 usbuhci;Sterownik Miniport uniwersalnego kontrolera hosta USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 VCSVADHWSer;Avnex Virtual Audio Device (WDM); C:\WINDOWS\system32\DRIVERS\vcsvad.sys [2008-12-26 17792]
S0 BTHidMgr;Bluetooth HID Manager Service; C:\WINDOWS\System32\Drivers\BTHidMgr.sys []
S1 kbdhid;Sterownik klawiatury HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
S3 aiid1ioq;aiid1ioq; C:\WINDOWS\system32\drivers\aiid1ioq.sys []
S3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2008-09-24 4122368]
S3 Avgfwfd;AVG network filter service; C:\WINDOWS\system32\DRIVERS\avgfwdx.sys [2010-07-12 30432]
S3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys []
S3 BlueletSCOAudio;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys []
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys []
S3 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\system32\DRIVERS\vbtenum.sys []
S3 CCDECODE;Dekoder napisów; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 EagleNT;EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys []
S3 HidUsb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-26 12160]
S3 MSTEE;Konwerter strumieni Tee/Sink-to-Sink Microsoft Streaming; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;Koder-dekoder NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Połączenie TV/wideo firmy Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\WINDOWS\system32\drivers\ccdcmb.sys [2010-07-30 18048]
S3 nmwcdc;Nokia USB Communication Driver; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2010-07-30 23040]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2008-04-15 5888]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2010-07-30 8192]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-14 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2010-07-30 8192]
S3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys []
S3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys []
S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2009-07-14 444136]
S3 WSTCODEC;Kodery-dekodery teletekstu w standardzie światowym; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avgfws;Zapora AVG; C:\Program Files\AVG\AVG10\avgfws.exe [2010-11-22 3226632]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe [2011-01-06 6128720]
R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG10\avgwdsvc.exe [2010-10-22 265400]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-11-12 153376]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-07-25 79136]
R2 lxec_device;lxec_device; C:\WINDOWS\system32\lxeccoms.exe [2010-04-14 598696]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2004-09-29 69632]
R2 SoundMAX Agent Service (default);SoundMAX Agent Service; C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [2002-09-20 45056]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
S2 lxecCATSCustConnectService;lxecCATSCustConnectService; C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxecserv.exe [2010-04-14 193192]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 AVG Security Toolbar Service;AVG Security Toolbar Service; C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe [2010-10-06 517448]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe []
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-06-14 615936]
S3 WMPNetworkSvc;Usługa udostępniania w sieci programu Windows Media Player; C:\Program Files\Windows Media Player\WMPNetwk.exe [2009-02-04 918016]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-15 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------
[/log]

Tomek01
komentarz
komentarz

[code]
:Files

C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2052111302-492894223-1606980848-1003UA.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2052111302-492894223-1606980848-1003Core.job
C:\Documents and Settings\User\Dane aplikacji\scgdfgasfbh.bat
C:\Documents and Settings\All Users\Dane aplikacji\35BB

:Reg
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0974BA1E-64EC-11DE-B2A5-E43756D89593}]

:Commands
[emptytemp][/code]

Klikasz run fix, komputer uruchamia się ponownie.
Wrzuć log z usuwania oraz nowe logi: OTL i RSIT.

batonxd
komentarz
komentarz (edytowane)

[log] All processes killed
========== FILES ==========
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2052111302-492894223-1606980848-1003UA.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2052111302-492894223-1606980848-1003Core.job moved successfully.
C:\Documents and Settings\User\Dane aplikacji\scgdfgasfbh.bat moved successfully.
C:\Documents and Settings\All Users\Dane aplikacji\35BB folder moved successfully.
========== REGISTRY ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Administrator.USER-FCC60EA01E
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Administrator.USER-FCC60EA01E.000
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: User
->Temp folder emptied: 4394839 bytes
->Temporary Internet Files folder emptied: 2119032 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 122176366 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 1078 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 144500 bytes
RecycleBin emptied: 143898 bytes

Total Files Cleaned = 123,00 mb


OTL by OldTimer - Version 3.2.20.6 log created on 02112011_205907

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...
[/log]

[log] OTL logfile created on: 2011-02-11 21:12:11 - Run 2
OTL by OldTimer - Version 3.2.20.6 Folder = C:\Documents and Settings\User\Pulpit
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

1 015,00 Mb Total Physical Memory | 476,00 Mb Available Physical Memory | 47,00% Memory free
2,00 Gb Paging File | 1,00 Gb Available in Paging File | 72,00% Paging File free
Paging file location(s): C:\pagefile.sys 756 1512 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 37,27 Gb Total Space | 10,99 Gb Free Space | 29,48% Space Free | Partition Type: NTFS

Computer Name: USER-FCC60EA01E | User Name: User | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: On | No Company Name Whitelist: Off | File Age = 60 Days

[color=#E56717]========== Processes (All) ==========[/color]

PRC - [2011-02-11 08:07:23 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe
PRC - [2011-02-10 04:14:59 | 000,994,872 | ---- | M] (Google Inc.) -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
PRC - [2011-01-23 22:54:27 | 000,136,176 | ---- | M] (Google Inc.) -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe
PRC - [2011-01-07 01:22:54 | 002,747,744 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgtray.exe
PRC - [2011-01-07 01:22:44 | 001,084,256 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgnsx.exe
PRC - [2011-01-07 01:22:12 | 001,052,512 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgemcx.exe
PRC - [2011-01-06 15:23:20 | 000,737,872 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe
PRC - [2011-01-06 15:23:18 | 006,128,720 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
PRC - [2011-01-02 19:29:52 | 000,396,152 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\uTorrent\uTorrent.exe
PRC - [2010-12-05 16:26:40 | 000,654,176 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgrsx.exe
PRC - [2010-12-05 16:26:12 | 000,650,592 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgchsvx.exe
PRC - [2010-11-22 04:48:46 | 003,226,632 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgfws.exe
PRC - [2010-11-12 18:53:22 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2010-10-22 04:58:18 | 000,265,400 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgwdsvc.exe
PRC - [2010-10-22 04:56:58 | 000,845,664 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgcsrvx.exe
PRC - [2010-10-22 04:56:48 | 000,745,824 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgam.exe
PRC - [2010-08-17 14:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe
PRC - [2010-05-14 10:44:46 | 000,248,552 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
PRC - [2010-04-14 15:08:12 | 000,598,696 | ---- | M] ( ) -- C:\WINDOWS\system32\lxeccoms.exe
PRC - [2009-02-09 12:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe
PRC - [2008-04-15 13:00:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008-04-15 13:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe
PRC - [2008-04-15 13:00:00 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapsrv.exe
PRC - [2008-04-15 13:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe
PRC - [2008-04-15 13:00:00 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe
PRC - [2008-04-15 13:00:00 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe
PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS]
PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE]
PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS]
PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [IMGSVC]
PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH]
PRC - [2008-04-15 13:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe
PRC - [2008-04-15 13:00:00 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe
PRC - [2007-07-25 15:50:26 | 000,079,136 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe
PRC - [2007-05-28 17:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
PRC - [2007-04-16 15:28:22 | 000,577,536 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE
PRC - [2005-05-11 22:12:54 | 000,049,152 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
PRC - [2004-09-29 11:14:36 | 000,069,632 | ---- | M] (HP) -- C:\WINDOWS\system32\HPZipm12.exe
PRC - [2003-05-08 11:34:32 | 000,069,632 | ---- | M] (adi) -- C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe
PRC - [2003-05-05 08:57:30 | 000,143,360 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
PRC - [2002-09-20 16:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe


[color=#E56717]========== Modules (All) ==========[/color]

MOD - [2011-02-11 08:07:23 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe
MOD - [2011-01-21 15:44:11 | 008,491,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll
MOD - [2010-12-29 16:17:15 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll
MOD - [2010-12-09 16:15:25 | 000,726,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll
MOD - [2010-08-23 17:12:53 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2010-08-16 09:45:09 | 000,590,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll
MOD - [2010-07-16 13:00:50 | 001,287,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll
MOD - [2009-12-08 10:25:45 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll
MOD - [2009-06-25 09:27:54 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll
MOD - [2009-03-21 15:08:59 | 001,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll
MOD - [2009-02-09 11:53:44 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll
MOD - [2008-10-23 13:42:41 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll
MOD - [2008-04-15 13:00:00 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll
MOD - [2008-04-15 13:00:00 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll
MOD - [2008-04-15 13:00:00 | 000,732,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\userenv.dll
MOD - [2008-04-15 13:00:00 | 000,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll
MOD - [2008-04-15 13:00:00 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll
MOD - [2008-04-15 13:00:00 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll
MOD - [2008-04-15 13:00:00 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll
MOD - [2008-04-15 13:00:00 | 000,297,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTF.dll
MOD - [2008-04-15 13:00:00 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll
MOD - [2008-04-15 13:00:00 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll
MOD - [2008-04-15 13:00:00 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTFIME.IME
MOD - [2008-04-15 13:00:00 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv
MOD - [2008-04-15 13:00:00 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
MOD - [2008-04-15 13:00:00 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imm32.dll
MOD - [2008-04-15 13:00:00 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll
MOD - [2008-04-15 13:00:00 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll
MOD - [2008-04-15 13:00:00 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll
MOD - [2008-04-15 13:00:00 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - File not found [On_Demand | Stopped] -- -- (NMIndexingService)
SRV - [2011-01-06 15:23:18 | 006,128,720 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe -- (AVGIDSAgent)
SRV - [2010-11-22 04:48:46 | 003,226,632 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgfws.exe -- (avgfws)
SRV - [2010-10-22 04:58:18 | 000,265,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgwdsvc.exe -- (avgwd)
SRV - [2010-10-06 11:31:48 | 000,517,448 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe -- (AVG Security Toolbar Service)
SRV - [2010-06-14 15:07:14 | 000,615,936 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2010-04-14 15:08:12 | 000,598,696 | ---- | M] ( ) [Auto | Running] -- C:\WINDOWS\System32\lxeccoms.exe -- (lxec_device)
SRV - [2010-04-14 15:08:05 | 000,193,192 | ---- | M] () [Auto | Stopped] -- C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxecserv.exe -- (lxecCATSCustConnectService)
SRV - [2007-05-28 17:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) [Auto | Running] -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2004-09-29 11:14:36 | 000,069,632 | ---- | M] (HP) [Auto | Running] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)
SRV - [2002-09-20 16:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) [Auto | Running] -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe -- (SoundMAX Agent Service (default))


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - [2010-12-08 04:12:38 | 000,251,728 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2010-11-12 13:19:38 | 000,299,984 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2010-09-16 14:44:07 | 000,436,792 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010-09-13 16:27:24 | 000,025,680 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys -- (AVGIDSEH)
DRV - [2010-09-07 03:48:56 | 000,034,384 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2010-09-07 03:48:50 | 000,026,064 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\avgrkx86.sys -- (Avgrkx86)
DRV - [2010-08-19 21:42:38 | 000,030,288 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSFilter.sys -- (AVGIDSFilter)
DRV - [2010-08-19 21:42:36 | 000,123,472 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSDriver.sys -- (AVGIDSDriver)
DRV - [2010-08-19 21:42:34 | 000,026,192 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSShim.sys -- (AVGIDSShim)
DRV - [2010-07-30 14:16:46 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2010-07-30 14:16:44 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2010-07-30 14:16:42 | 000,023,040 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2010-07-30 14:16:38 | 000,018,048 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2010-07-12 03:33:54 | 000,030,432 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\avgfwdx.sys -- (Avgfwfd)
DRV - [2010-07-12 03:33:54 | 000,030,432 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\avgfwdx.sys -- (Avgfwdx)
DRV - [2008-12-26 11:56:04 | 000,017,792 | ---- | M] (Avnex) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\vcsvad.sys -- (VCSVADHWSer) Avnex Virtual Audio Device (WDM)
DRV - [2008-09-24 10:40:22 | 004,122,368 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2008-08-26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008-07-25 00:18:32 | 000,176,640 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\b57xp32.sys -- (b57w2k)
DRV - [2006-09-24 14:28:46 | 000,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan)
DRV - [2002-09-16 16:14:32 | 000,004,228 | ---- | M] (PowerQuest Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\PQNTDRV.sys -- (PQNTDrv)
DRV - [1998-10-06 13:36:26 | 000,001,984 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\papycpu.sys -- (papycpu)
DRV - [1998-10-06 13:36:26 | 000,001,888 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\papyjoy.sys -- (papyjoy)
DRV - [1996-04-03 20:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =


IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.qooqlle.com/
IE - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
IE - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF - HKLM\software\mozilla\Firefox\extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG10\Firefox\
FF - HKLM\software\mozilla\Firefox\extensions\\avg@igeared: C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared

[2011-02-09 11:50:41 | 000,002,045 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fcmdSrch.xml

O1 HOSTS File: ([2008-04-15 13:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (no name) - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - No CLSID value found.
O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.4.8.11.dll (BitComet)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (no name) - {74322BF9-DF26-493f-B0DA-6D2FC5E6429E} - No CLSID value found.
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - File not found
O3 - HKLM\..\Toolbar: (no name) - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - No CLSID value found.
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
O3 - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [DrvLsnr] C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe (adi)
O4 - HKLM..\Run: [GProton] C:\Documents and Settings\All Users\GProton.exe ()
O4 - HKLM..\Run: [smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [TaskTray] File not found
O4 - HKU\S-1-5-21-2052111302-492894223-1606980848-1003..\Run: [ALLUpdate] C:\Program Files\ALLPlayer\ALLUpdate.exe ()
O4 - HKU\S-1-5-21-2052111302-492894223-1606980848-1003..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O7 - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 3
O9 - Extra Button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - C:\Program Files\BitComet\tools\BitCometBHO_1.4.8.11.dll (BitComet)
O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} http://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab (IWinAmpActiveX Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.174.8.1 157.25.5.18
O18 - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (EXPLORER.EXE) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O20 - Winlogon\Notify\qoMgddAT: DllName - qoMgddAT.dll - File not found
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O28 - HKLM ShellExecuteHooks: {6D794CB4-C7CD-4c6f-BFDC-9B77AFBDC02C} - Reg Error: Key error. File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010-08-23 13:02:05 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2011-02-11 08:18:47 | 000,000,000 | RHSD | M] - C:\Autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk /p \??\F:) - File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgchsvx.exe /sync) - C:\Program Files\AVG\AVG10\avgchsvx.exe (AVG Technologies CZ, s.r.o.)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgrsx.exe /sync /restart) - C:\Program Files\AVG\AVG10\avgrsx.exe (AVG Technologies CZ, s.r.o.)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found


SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vds - Service
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

[color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color]

[2011-02-11 21:17:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood
[2011-02-11 19:16:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\SuperSterownik
[2011-02-11 19:11:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Super Sterownik
[2011-02-11 19:11:33 | 000,000,000 | ---D | C] -- C:\Program Files\Driver-Soft
[2011-02-11 12:01:18 | 000,000,000 | ---D | C] -- C:\rsit
[2011-02-11 08:18:47 | 000,000,000 | RHSD | C] -- C:\Autorun.inf
[2011-02-11 08:11:09 | 000,000,000 | ---D | C] -- C:\_OTL
[2011-02-11 08:07:12 | 000,602,624 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe
[2011-02-10 18:00:10 | 000,000,000 | ---D | C] -- C:\Program Files\Everest Poker
[2011-02-10 15:57:17 | 000,000,000 | ---D | C] -- C:\UsbFix
[2011-02-10 13:58:31 | 000,000,000 | ---D | C] -- C:\Program Files\Szkola na miare klasa 1b
[2011-02-09 15:36:14 | 000,000,000 | ---D | C] -- C:\Program Files\WinISO
[2011-02-09 15:36:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\WinISO
[2011-02-09 13:59:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\7-Zip
[2011-02-09 13:59:28 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2011-02-09 13:07:54 | 000,327,168 | ---- | C] (InstallShield Software Corporation) -- C:\WINDOWS\IsUn0415.exe
[2011-02-09 11:50:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\InstallMate
[2011-02-09 11:50:27 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2011-02-09 09:12:55 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011-02-08 23:59:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Google
[2011-02-08 23:52:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\Google Chrome
[2011-02-08 22:06:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Pulpit\tapety
[2011-02-08 21:41:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Pulpit\programy i gry
[2011-02-06 23:47:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\ChomikBox
[2011-02-06 23:44:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\Chomikuj.pl
[2011-02-06 23:28:00 | 000,000,000 | ---D | C] -- C:\Program Files\ChomikBox
[2011-02-02 15:57:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\Virtual DJ
[2011-02-02 15:57:34 | 000,000,000 | ---D | C] -- C:\Program Files\VirtualDJ
[2011-02-02 15:57:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\VirtualDJ
[2011-01-29 13:20:47 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2011-01-29 13:16:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2011-01-29 13:16:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles
[2011-01-29 13:05:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\BS.Player
[2011-01-29 13:02:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\BSplayer Pro
[2011-01-29 13:02:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\BSplayer
[2011-01-29 13:02:38 | 000,000,000 | ---D | C] -- C:\Program Files\Webteh
[2011-01-29 12:54:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\ALLPlayer
[2011-01-29 12:54:14 | 000,000,000 | ---D | C] -- C:\Program Files\NAPI-PROJEKT
[2011-01-29 12:54:05 | 000,000,000 | ---D | C] -- C:\Program Files\ALLPlayer
[2011-01-29 12:52:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\Vplayer
[2011-01-29 12:52:23 | 000,000,000 | ---D | C] -- C:\Program Files\Vplayer
[2011-01-26 17:07:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Real
[2011-01-25 23:05:44 | 000,000,000 | ---D | C] -- C:\Program Files\Real
[2011-01-25 23:05:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Real
[2011-01-25 23:05:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Real
[2011-01-25 11:21:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\JoWood
[2011-01-25 08:28:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Gothic II
[2011-01-24 19:22:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\JLC's Software
[2011-01-24 19:21:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\JLC's Software
[2011-01-24 19:21:53 | 000,000,000 | ---D | C] -- C:\Program Files\JLC's Software
[2011-01-24 15:42:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\JoWooD
[2011-01-24 15:25:40 | 000,000,000 | ---D | C] -- C:\Program Files\JoWooD
[2011-01-23 16:32:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Pulpit\jakieś obrazy
[2011-01-15 19:50:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\GTA San Andreas User Files
[2011-01-12 23:52:17 | 000,000,000 | ---D | C] -- C:\f392cca3e8185c93e16f64fd
[2011-01-09 01:58:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\Max Payne Savegames
[2011-01-08 12:24:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\Alcohol 120%
[2011-01-08 11:30:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\searchplugins
[2010-12-29 16:23:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\ViStart
[2010-12-29 16:17:50 | 000,000,000 | ---D | C] -- C:\Program Files\TrueTransparency
[2010-12-29 16:17:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\ViGlance
[2010-12-29 16:08:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\VITrans
[2010-12-29 14:21:46 | 000,000,000 | ---D | C] -- C:\Program Files\TGTSoft
[2010-12-28 14:57:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\TechSmith
[2010-12-27 13:30:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\.ZMatrix
[2010-12-27 13:05:50 | 000,000,000 | ---D | C] -- C:\Program Files\pcwDreamScreen
[2010-12-22 16:56:51 | 000,015,360 | ---- | C] (www.bk2.prv.pl) -- C:\Documents and Settings\User\Pulpit\ggbkiller2v2_98.exe
[2010-12-20 12:33:52 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2010-12-20 12:33:52 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2010-12-20 12:33:52 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2010-12-17 14:51:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Ventrilo
[2010-12-16 16:18:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\Winbooterr
[2010-12-16 05:09:56 | 000,000,000 | ---D | C] -- C:\9cb0916458dc5818aa9c381484
[2010-09-07 15:37:08 | 000,442,368 | ---- | C] ( ) -- C:\WINDOWS\System32\lxeccoin.dll
[2010-09-07 15:35:35 | 000,364,544 | ---- | C] ( ) -- C:\WINDOWS\System32\lxecinpa.dll
[2010-09-07 15:35:35 | 000,356,352 | ---- | C] ( ) -- C:\WINDOWS\System32\LXEChcp.dll
[2010-09-07 15:35:34 | 001,048,576 | ---- | C] ( ) -- C:\WINDOWS\System32\lxecserv.dll
[2010-09-07 15:35:34 | 000,847,872 | ---- | C] ( ) -- C:\WINDOWS\System32\lxecusb1.dll
[2010-09-07 15:35:34 | 000,643,072 | ---- | C] ( ) -- C:\WINDOWS\System32\lxecpmui.dll
[2010-09-07 15:35:34 | 000,344,064 | ---- | C] ( ) -- C:\WINDOWS\System32\lxeciesc.dll
[2010-09-07 15:35:33 | 000,577,536 | ---- | C] ( ) -- C:\WINDOWS\System32\lxeclmpm.dll
[2010-09-07 15:35:32 | 000,802,816 | ---- | C] ( ) -- C:\WINDOWS\System32\lxeccomc.dll
[2010-09-07 15:35:32 | 000,688,128 | ---- | C] ( ) -- C:\WINDOWS\System32\lxechbn3.dll
[2010-09-07 15:35:32 | 000,372,736 | ---- | C] ( ) -- C:\WINDOWS\System32\lxeccomm.dll

[color=#E56717]========== Files - Modified Within 60 Days ==========[/color]

[2011-02-11 21:03:17 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2011-02-11 21:03:12 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011-02-11 21:01:27 | 006,815,744 | -H-- | M] () -- C:\Documents and Settings\User\NTUSER.DAT
[2011-02-11 21:01:27 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\User\ntuser.ini
[2011-02-11 19:11:37 | 000,000,884 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Super Sterownik Professional Edition.lnk
[2011-02-11 16:36:48 | 000,645,397 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\iavifw.avm
[2011-02-11 12:37:33 | 105,939,812 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm
[2011-02-11 10:55:58 | 000,002,295 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Google Chrome.lnk
[2011-02-11 08:07:23 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe
[2011-02-10 19:49:06 | 000,026,960 | ---- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2011-02-10 17:10:57 | 000,147,608 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011-02-10 13:58:35 | 000,001,302 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Szkoła na miarę, klasa 1, semestr 2.lnk
[2011-02-10 00:15:22 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011-02-09 15:58:20 | 000,000,606 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\WinISO.lnk
[2011-02-09 12:25:32 | 000,001,724 | -H-- | M] () -- C:\Documents and Settings\User\Moje dokumenty\Default.rdp
[2011-02-09 09:31:05 | 000,339,991 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\unconfirmed 32398.exe
[2011-02-08 09:34:46 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011-02-07 07:15:16 | 003,706,738 | -H-- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2011-02-06 23:44:17 | 000,000,830 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\ChomikBox.lnk
[2011-02-05 10:21:31 | 000,002,359 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Counter Strike NS.lnk
[2011-02-04 10:58:28 | 000,000,797 | ---- | M] () -- C:\WINDOWS\VPlayer.INI
[2011-02-04 10:58:27 | 000,000,021 | ---- | M] () -- C:\WINDOWS\VplayerINI.vpl
[2011-02-02 15:57:42 | 000,000,694 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Virtual DJ.lnk
[2011-01-29 13:21:27 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2011-01-29 13:21:27 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2011-01-29 13:21:14 | 000,000,592 | ---- | M] () -- C:\WINDOWS\win.ini
[2011-01-29 13:16:35 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2011-01-29 12:55:26 | 000,000,797 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\SubEdit-Player.lnk
[2011-01-28 13:31:02 | 000,008,786 | ---- | M] () -- C:\Program1.RPT
[2011-01-28 09:30:30 | 000,000,720 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\AVG 2011.lnk
[2011-01-25 11:39:36 | 000,001,843 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gothic II Złota Edycja.lnk
[2011-01-24 19:21:58 | 000,001,777 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\JLC's Internet TV.lnk
[2011-01-24 16:02:00 | 000,004,096 | ---- | M] () -- C:\WINDOWS\d3dx.dat
[2011-01-23 22:19:43 | 000,000,000 | ---- | M] () -- C:\WINDOWS\Irremote.ini
[2011-01-16 15:10:58 | 000,002,267 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk
[2011-01-16 14:05:21 | 000,000,654 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk
[2011-01-07 15:09:02 | 000,290,048 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\dllcache\atmfd.dll
[2011-01-07 15:09:02 | 000,290,048 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\atmfd.dll
[2011-01-07 10:21:02 | 007,793,152 | RHS- | M] () -- C:\Documents and Settings\All Users\GProton.exe
[2011-01-02 18:39:40 | 002,797,846 | ---- | M] () -- C:\Documents and Settings\User\Moje dokumenty\Fotka 036.jpg
[2011-01-02 18:39:16 | 002,721,306 | ---- | M] () -- C:\Documents and Settings\User\Moje dokumenty\Fotka 033.jpg
[2011-01-01 21:16:31 | 000,000,032 | ---- | M] () -- C:\WINDOWS\go
[2010-12-29 16:41:45 | 000,001,503 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Paint.lnk
[2010-12-29 16:18:03 | 006,912,054 | ---- | M] () -- C:\WINDOWS\clwcp.bmp
[2010-12-29 16:08:35 | 000,078,942 | ---- | M] () -- C:\WINDOWS\Icon_1.ico
[2010-12-29 15:50:45 | 000,000,592 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Opera.lnk
[2010-12-29 15:47:16 | 000,001,702 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Wrzuta Media Downloader.lnk
[2010-12-29 14:36:55 | 000,000,354 | ---- | M] () -- C:\boot.ini
[2010-12-28 19:04:40 | 000,000,022 | ---- | M] () -- C:\WINDOWS\clofghls.dll
[2010-12-27 19:01:19 | 000,000,412 | ---- | M] () -- C:\Documents and Settings\User\Moje dokumenty\spider.sav
[2010-12-26 16:42:14 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010-12-24 20:53:57 | 005,122,810 | ---- | M] () -- C:\Documents and Settings\User\Moje dokumenty\SDC10508.JPG
[2010-12-22 16:56:54 | 000,015,360 | ---- | M] (www.bk2.prv.pl) -- C:\Documents and Settings\User\Pulpit\ggbkiller2v2_98.exe
[2010-12-16 23:56:03 | 000,074,578 | ---- | M] () -- C:\WINDOWS\System32\winupd
[2010-12-14 22:48:55 | 001,114,842 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-12-14 22:48:55 | 000,499,854 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2010-12-14 22:48:55 | 000,440,820 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-12-14 22:48:55 | 000,089,036 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2010-12-14 22:48:55 | 000,071,138 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-12-14 22:35:33 | 000,000,259 | ---- | M] () -- C:\WINDOWS\system.ini
[9 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2011-02-11 19:11:37 | 000,000,884 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\Super Sterownik Professional Edition.lnk
[2011-02-10 13:58:35 | 000,001,302 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Szkoła na miarę, klasa 1, semestr 2.lnk
[2011-02-09 15:36:20 | 000,000,606 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\WinISO.lnk
[2011-02-09 12:24:18 | 000,001,724 | -H-- | C] () -- C:\Documents and Settings\User\Moje dokumenty\Default.rdp
[2011-02-09 09:31:04 | 000,339,991 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\unconfirmed 32398.exe
[2011-02-08 23:52:42 | 000,002,295 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\Google Chrome.lnk
[2011-02-06 23:44:16 | 000,000,830 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\ChomikBox.lnk
[2011-02-04 10:58:27 | 000,000,797 | ---- | C] () -- C:\WINDOWS\VPlayer.INI
[2011-02-04 10:58:27 | 000,000,021 | ---- | C] () -- C:\WINDOWS\VplayerINI.vpl
[2011-02-02 15:57:42 | 000,000,694 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\Virtual DJ.lnk
[2011-01-29 13:16:35 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2011-01-29 12:55:26 | 000,000,797 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\SubEdit-Player.lnk
[2011-01-29 12:54:17 | 000,797,184 | ---- | C] () -- C:\WINDOWS\System32\ac3filter.ax
[2011-01-29 12:54:17 | 000,790,528 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2011-01-29 12:54:17 | 000,258,048 | ---- | C] () -- C:\WINDOWS\System32\libFLAC.dll
[2011-01-28 13:31:00 | 000,008,786 | ---- | C] () -- C:\Program1.RPT
[2011-01-27 19:18:21 | 003,706,738 | -H-- | C] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2011-01-25 11:39:36 | 000,001,843 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Gothic II Złota Edycja.lnk
[2011-01-24 19:21:58 | 000,001,777 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\JLC's Internet TV.lnk
[2011-01-24 16:02:00 | 000,004,096 | ---- | C] () -- C:\WINDOWS\d3dx.dat
[2011-01-23 22:19:43 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Irremote.ini
[2011-01-07 10:21:08 | 007,793,152 | RHS- | C] () -- C:\Documents and Settings\All Users\GProton.exe
[2011-01-02 18:36:20 | 002,797,846 | ---- | C] () -- C:\Documents and Settings\User\Moje dokumenty\Fotka 036.jpg
[2011-01-02 18:35:53 | 002,721,306 | ---- | C] () -- C:\Documents and Settings\User\Moje dokumenty\Fotka 033.jpg
[2011-01-01 21:16:31 | 000,000,032 | ---- | C] () -- C:\WINDOWS\go
[2010-12-29 16:18:03 | 006,912,054 | ---- | C] () -- C:\WINDOWS\clwcp.bmp
[2010-12-29 16:08:35 | 000,078,942 | ---- | C] () -- C:\WINDOWS\Icon_1.ico
[2010-12-29 16:08:29 | 000,517,120 | ---- | C] () -- C:\WINDOWS\System32\CLWCP.exe
[2010-12-29 16:08:29 | 000,111,104 | ---- | C] () -- C:\WINDOWS\System32\Uharc.exe
[2010-12-29 16:08:29 | 000,008,636 | ---- | C] () -- C:\WINDOWS\System32\modifype.exe
[2010-12-29 14:30:40 | 000,000,211 | ---- | C] () -- C:\BOOT.BKK
[2010-12-27 19:01:19 | 000,000,412 | ---- | C] () -- C:\Documents and Settings\User\Moje dokumenty\spider.sav
[2010-12-24 20:51:11 | 005,122,810 | ---- | C] () -- C:\Documents and Settings\User\Moje dokumenty\SDC10508.JPG
[2010-12-16 16:35:42 | 000,074,578 | ---- | C] () -- C:\WINDOWS\System32\winupd
[2010-11-12 19:40:41 | 000,000,056 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2010-11-05 07:47:52 | 000,004,608 | ---- | C] () -- C:\WINDOWS\cocowawa.dll
[2010-10-13 15:51:10 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010-10-07 22:41:21 | 000,004,305 | ---- | C] () -- C:\WINDOWS\jdncfw-f48.ini
[2010-10-07 22:41:21 | 000,001,441 | ---- | C] () -- C:\WINDOWS\cbvmqg_x64.ini
[2010-10-03 18:15:09 | 000,000,122 | ---- | C] () -- C:\WINDOWS\System32\ttbup222.dll
[2010-10-03 15:58:32 | 000,029,696 | ---- | C] () -- C:\WINDOWS\System32\pthread.dll
[2010-09-28 23:15:29 | 001,970,176 | ---- | C] () -- C:\WINDOWS\System32\d3dx9.dll
[2010-09-23 08:51:56 | 000,000,095 | ---- | C] () -- C:\WINDOWS\mta.ini
[2010-09-22 23:00:52 | 000,001,157 | ---- | C] () -- C:\WINDOWS\System32\urqOIbAq.dll
[2010-09-22 22:59:33 | 000,465,832 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2010-09-20 13:11:30 | 000,001,153 | ---- | C] () -- C:\WINDOWS\System32\opnLfFWp.dll
[2010-09-20 06:48:51 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2010-09-16 14:44:07 | 000,436,792 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010-09-13 22:07:51 | 000,000,127 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI
[2010-09-12 10:44:05 | 000,000,000 | ---- | C] () -- C:\WINDOWS\PROTOCOL.INI
[2010-09-11 20:25:19 | 000,001,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\papycpu.sys
[2010-09-11 20:25:19 | 000,001,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\papyjoy.sys
[2010-09-11 20:25:09 | 000,000,130 | ---- | C] () -- C:\WINDOWS\SIERRA.INI
[2010-09-11 16:37:21 | 000,000,682 | ---- | C] () -- C:\WINDOWS\bestplayer.ini
[2010-09-11 14:39:23 | 000,024,576 | ---- | C] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-09-11 11:32:02 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
[2010-09-11 11:20:31 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2010-09-10 15:38:29 | 000,015,757 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\hpzinstall.log
[2010-09-10 14:53:13 | 000,026,960 | ---- | C] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2010-09-07 15:37:10 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\lxecvs.dll
[2010-09-07 15:37:02 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\lxecgcfg.dll
[2010-09-07 15:37:01 | 000,294,912 | ---- | C] () -- C:\WINDOWS\System32\lxeccui.dll
[2010-09-07 15:37:01 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\lxeccuir.dll
[2010-09-07 15:35:35 | 000,331,776 | ---- | C] () -- C:\WINDOWS\System32\LXECinst.dll
[2010-09-07 15:35:33 | 000,323,584 | ---- | C] () -- C:\WINDOWS\System32\lxecins.dll
[2010-09-07 15:35:33 | 000,262,144 | ---- | C] () -- C:\WINDOWS\System32\lxecinsb.dll
[2010-09-07 15:35:33 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\lxecinsr.dll
[2010-09-07 15:35:33 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\lxecjswr.dll
[2010-09-07 15:35:32 | 000,253,952 | ---- | C] () -- C:\WINDOWS\System32\lxeccu.dll
[2010-09-07 15:35:32 | 000,208,896 | ---- | C] () -- C:\WINDOWS\System32\lxecgrd.dll
[2010-09-07 15:35:32 | 000,090,112 | ---- | C] () -- C:\WINDOWS\System32\lxeccub.dll
[2010-09-07 15:35:32 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\lxeccur.dll
[2010-09-07 15:35:27 | 000,299,008 | ---- | C] () -- C:\WINDOWS\System32\LXECsm.dll
[2010-09-07 15:35:27 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\LXECsmr.dll
[2010-08-24 08:17:37 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010-08-24 08:09:34 | 000,000,044 | ---- | C] () -- C:\WINDOWS\System32\msssc.dll
[2010-08-23 14:49:24 | 001,114,842 | ---- | C] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-08-23 14:49:23 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010-08-23 14:48:46 | 000,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini
[2010-08-23 13:09:15 | 000,000,062 | -HS- | C] () -- C:\Documents and Settings\User\Dane aplikacji\desktop.ini
[2010-08-23 13:02:05 | 000,000,000 | ---- | C] () -- C:\WINDOWS\control.ini
[2010-08-23 12:57:32 | 000,000,037 | ---- | C] () -- C:\WINDOWS\vbaddin.ini
[2010-08-23 12:57:32 | 000,000,036 | ---- | C] () -- C:\WINDOWS\vb.ini
[2010-08-23 12:56:42 | 000,026,717 | ---- | C] () -- C:\WINDOWS\System32\tslabels.ini
[2010-08-23 12:56:40 | 000,003,813 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.ini
[2010-01-27 17:54:13 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2010-01-26 17:23:27 | 000,000,022 | ---- | C] () -- C:\WINDOWS\clofghls.dll
[2010-01-26 17:09:41 | 000,000,052 | ---- | C] () -- C:\WINDOWS\mafosav.INI
[2010-01-26 12:45:08 | 000,000,044 | ---- | C] () -- C:\WINDOWS\SMWizard.INI
[2008-04-15 13:00:00 | 001,015,477 | ---- | C] () -- C:\WINDOWS\System32\esentprf.ini
[2008-04-15 13:00:00 | 000,733,696 | ---- | C] () -- C:\WINDOWS\System32\qedwipes.dll
[2008-04-15 13:00:00 | 000,355,112 | ---- | C] () -- C:\WINDOWS\System32\msjetoledb40.dll
[2008-04-15 13:00:00 | 000,270,848 | ---- | C] () -- C:\WINDOWS\System32\sbe.dll
[2008-04-15 13:00:00 | 000,253,440 | ---- | C] () -- C:\WINDOWS\System32\compatUI.dll
[2008-04-15 13:00:00 | 000,199,168 | ---- | C] () -- C:\WINDOWS\System32\ir32_32.dll
[2008-04-15 13:00:00 | 000,186,880 | ---- | C] () -- C:\WINDOWS\System32\encdec.dll
[2008-04-15 13:00:00 | 000,094,282 | ---- | C] () -- C:\WINDOWS\System32\msencode.dll
[2008-04-15 13:00:00 | 000,070,656 | ---- | C] () -- C:\WINDOWS\System32\amstream.dll
[2008-04-15 13:00:00 | 000,053,478 | ---- | C] () -- C:\WINDOWS\System32\tcpmon.ini
[2008-04-15 13:00:00 | 000,042,809 | ---- | C] () -- C:\WINDOWS\System32\key01.sys
[2008-04-15 13:00:00 | 000,042,537 | ---- | C] () -- C:\WINDOWS\System32\keyboard.sys
[2008-04-15 13:00:00 | 000,035,648 | ---- | C] () -- C:\WINDOWS\System32\ntio411.sys
[2008-04-15 13:00:00 | 000,035,424 | ---- | C] () -- C:\WINDOWS\System32\ntio412.sys
[2008-04-15 13:00:00 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio804.sys
[2008-04-15 13:00:00 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio404.sys
[2008-04-15 13:00:00 | 000,033,936 | ---- | C] () -- C:\WINDOWS\System32\ntio.sys
[2008-04-15 13:00:00 | 000,029,370 | ---- | C] () -- C:\WINDOWS\System32\ntdos411.sys
[2008-04-15 13:00:00 | 000,029,274 | ---- | C] () -- C:\WINDOWS\System32\ntdos412.sys
[2008-04-15 13:00:00 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos804.sys
[2008-04-15 13:00:00 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos404.sys
[2008-04-15 13:00:00 | 000,027,898 | ---- | C] () -- C:\WINDOWS\System32\ntdos.sys
[2008-04-15 13:00:00 | 000,027,097 | ---- | C] () -- C:\WINDOWS\System32\country.sys
[2008-04-15 13:00:00 | 000,020,629 | ---- | C] () -- C:\WINDOWS\System32\mqperf.ini
[2008-04-15 13:00:00 | 000,016,024 | ---- | C] () -- C:\WINDOWS\System32\rsvp.ini
[2008-04-15 13:00:00 | 000,015,360 | ---- | C] () -- C:\WINDOWS\System32\tsd32.dll
[2008-04-15 13:00:00 | 000,014,336 | ---- | C] () -- C:\WINDOWS\System32\msdmo.dll
[2008-04-15 13:00:00 | 000,013,819 | ---- | C] () -- C:\WINDOWS\System32\pschdprf.ini
[2008-04-15 13:00:00 | 000,013,312 | ---- | C] () -- C:\WINDOWS\System32\win87em.dll
[2008-04-15 13:00:00 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\scriptpw.dll
[2008-04-15 13:00:00 | 000,009,043 | ---- | C] () -- C:\WINDOWS\System32\ansi.sys
[2008-04-15 13:00:00 | 000,006,074 | ---- | C] () -- C:\WINDOWS\System32\rasctrs.ini
[2008-04-15 13:00:00 | 000,004,976 | ---- | C] () -- C:\WINDOWS\System32\himem.sys
[2008-04-15 13:00:00 | 000,002,992 | ---- | C] () -- C:\WINDOWS\System32\perfci.ini
[2008-04-15 13:00:00 | 000,002,890 | ---- | C] () -- C:\WINDOWS\System32\perfwci.ini
[2008-04-15 13:00:00 | 000,002,656 | ---- | C] () -- C:\WINDOWS\System32\netware.drv
[2008-04-15 13:00:00 | 000,001,405 | ---- | C] () -- C:\WINDOWS\msdfmap.ini
[2008-04-15 13:00:00 | 000,001,295 | ---- | C] () -- C:\WINDOWS\System32\perffilt.ini
[2008-04-15 13:00:00 | 000,000,592 | ---- | C] () -- C:\WINDOWS\win.ini
[2008-04-15 13:00:00 | 000,000,359 | ---- | C] () -- C:\WINDOWS\System32\prodspec.ini
[2008-04-15 13:00:00 | 000,000,259 | ---- | C] () -- C:\WINDOWS\system.ini
[2004-06-24 23:00:00 | 000,771,584 | ---- | C] () -- C:\WINDOWS\System32\RGSS100J.dll
[2001-10-26 18:29:42 | 000,157,696 | ---- | C] () -- C:\WINDOWS\System32\paqsp.dll
[2001-07-06 14:30:02 | 000,003,234 | ---- | C] () -- C:\WINDOWS\System32\HPTCPMON.INI
[1996-04-03 20:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys

[color=#E56717]========== LOP Check ==========[/color]

[2010-09-13 23:59:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software
[2010-11-13 17:38:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG Security Toolbar
[2010-12-16 16:21:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG10
[2010-12-08 21:40:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Bluetooth
[2010-11-13 12:23:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\boost_interprocess
[2010-09-30 22:55:33 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files
[2010-01-28 01:36:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Easy Driver Pro
[2010-09-22 22:49:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Fighters
[2010-09-13 17:12:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2010-12-05 23:39:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations
[2011-02-09 11:50:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\InstallMate
[2010-09-19 18:44:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla
[2010-02-04 13:38:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\LightScribe
[2010-10-25 22:19:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\MFAData
[2011-01-15 16:21:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM
[2010-01-28 01:25:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Drivers HeadQuarters
[2010-12-05 23:46:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite
[2010-09-10 15:27:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PDF Writer
[2011-02-10 17:27:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2010-12-27 13:30:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\.ZMatrix
[2011-02-08 21:52:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\AVG
[2010-09-30 23:06:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\AVG10
[2010-10-06 18:32:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Avnex
[2010-09-16 19:06:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\bearsharemediabartb
[2010-09-24 06:19:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\BitComet
[2010-10-01 11:24:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\BonkEnc
[2011-02-05 15:55:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\BSplayer
[2011-01-29 13:02:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\BSplayer Pro
[2011-02-08 23:42:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\ChomikBox
[2010-10-03 16:48:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\CometPlayer
[2010-09-13 23:40:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\facemoods.com
[2010-02-04 16:48:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Gadu-Gadu 10
[2010-11-12 19:41:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\GetRight
[2010-11-07 03:02:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\GetRightToGo
[2010-09-30 13:32:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Image Zone Express
[2010-09-26 23:51:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\ipla
[2011-01-24 19:22:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\JLC's Software
[2010-09-07 14:05:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Mikrotik
[2010-11-13 14:35:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\NoiseCradle
[2010-12-05 23:57:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Nokia
[2010-10-05 21:08:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Nowe Gadu-Gadu
[2010-09-13 23:47:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\OpenFM
[2010-09-07 15:07:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\OpenOffice.org
[2010-12-12 12:46:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Opera
[2010-12-05 23:48:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\PC Suite
[2010-09-10 15:27:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\PDF Writer
[2010-11-18 18:41:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\SecondLife
[2010-09-13 23:38:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\TeamViewer
[2010-09-28 20:53:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\tigerplayer
[2011-02-11 21:26:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\uTorrent
[2010-12-29 16:17:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\ViGlance
[2010-12-29 16:26:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\ViStart

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Custom Scans ==========[/color]


[color=#A23BEC]< %systemdrive%\*.* >[/color]
[2010-08-23 13:02:05 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010-08-23 12:55:13 | 000,000,211 | ---- | M] () -- C:\BOOT.BKK
[2010-12-29 14:36:55 | 000,000,354 | ---- | M] () -- C:\boot.ini
[2008-04-15 13:00:00 | 000,004,952 | ---- | M] () -- C:\Bootfont.bin
[2010-08-23 13:02:05 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010-08-23 13:02:05 | 000,000,000 | ---- | M] () -- C:\IO.SYS
[2010-08-23 13:02:05 | 000,000,000 | ---- | M] () -- C:\MSDOS.SYS
[2008-04-15 13:00:00 | 000,047,564 | ---- | M] () -- C:\NTDETECT.COM
[2008-04-15 13:00:00 | 000,251,152 | ---- | M] () -- C:\ntldr
[2011-02-11 21:03:10 | 792,723,456 | -HS- | M] () -- C:\pagefile.sys
[2011-01-28 13:31:02 | 000,008,786 | ---- | M] () -- C:\Program1.RPT
[2011-02-11 08:19:27 | 000,000,000 | ---- | M] () -- C:\UsbFix.txt


[color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
[2008-04-15 13:00:00 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:agp440.sys
[2008-04-14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008-04-14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys

[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2008-04-15 13:00:00 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\Documents and Settings\User\Moje dokumenty\SuperSterownik\Backup\Driver Backup 2-11-2011-195719\Intel(R) 82801EB Ultra ATA Storage Controllers#1\atapi.sys
[2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\Documents and Settings\User\Moje dokumenty\SuperSterownik\Backup\Driver Backup 2-11-2011-195719\Intel(R) 82801EB Ultra ATA Storage Controllers\atapi.sys
[2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\Documents and Settings\User\Moje dokumenty\SuperSterownik\Backup\Driver Backup 2-11-2011-195719\Podstawowy kanał IDE#1\atapi.sys
[2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\Documents and Settings\User\Moje dokumenty\SuperSterownik\Backup\Driver Backup 2-11-2011-195719\Podstawowy kanał IDE\atapi.sys
[2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\Documents and Settings\User\Moje dokumenty\SuperSterownik\Backup\Driver Backup 2-11-2011-195719\Pomocniczy kanał IDE#1\atapi.sys
[2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\Documents and Settings\User\Moje dokumenty\SuperSterownik\Backup\Driver Backup 2-11-2011-195719\Pomocniczy kanał IDE\atapi.sys
[2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\dllcache\atapi.sys
[2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2008-04-15 13:00:00 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0001\DriverFiles\i386\atapi.sys
[2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0005\DriverFiles\i386\atapi.sys

[color=#A23BEC]< MD5 for: BEEP.SYS >[/color]
[2008-04-15 13:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys
[2008-04-15 13:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys

[color=#A23BEC]< MD5 for: CDROM.SYS >[/color]
[2008-04-15 13:00:00 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008-04-13 23:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\Documents and Settings\User\Moje dokumenty\SuperSterownik\Backup\Driver Backup 2-11-2011-195719\Stacja dysków CD-ROM#1\cdrom.sys
[2008-04-13 23:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\Documents and Settings\User\Moje dokumenty\SuperSterownik\Backup\Driver Backup 2-11-2011-195719\Stacja dysków CD-ROM\cdrom.sys
[2008-04-14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008-04-13 23:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys

[color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color]
[2008-04-14 22:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008-04-15 13:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\dllcache\eventlog.dll
[2008-04-15 13:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\eventlog.dll

[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]
[2008-04-14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008-04-15 13:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\dllcache\ndis.sys
[2008-04-15 13:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008-04-15 13:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\dllcache\winlogon.exe
[2008-04-15 13:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\winlogon.exe

< End of report >
[/log]

[log] Logfile of random's system information tool 1.08 (written by random/random)
Run by User at 2011-02-11 21:31:22
Microsoft Windows XP Professional Dodatek Service Pack 3
System drive C: has 11 GB (29%) free of 38 GB
Total RAM: 1015 MB (42% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:31:40, on 2011-02-11
Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\PROGRA~1\AVG\AVG10\avgchsvx.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\EXPLORER.EXE
C:\Program Files\AVG\AVG10\avgfws.exe
C:\Program Files\AVG\AVG10\avgwdsvc.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\lxeccoms.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
C:\Program Files\AVG\AVG10\avgam.exe
C:\Program Files\AVG\AVG10\avgnsx.exe
C:\Program Files\AVG\AVG10\avgemcx.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\AVG\AVG10\avgtray.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe
C:\Program Files\AVG\AVG10\avgcsrvx.exe
C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
C:\PROGRA~1\AVG\AVG10\avgrsx.exe
C:\Program Files\AVG\AVG10\avgcsrvx.exe
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
C:\Program Files\Winamp\winamp.exe
C:\Documents and Settings\User\Pulpit\unconfirmed 32398.exe
C:\Program Files\trend micro\User.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.bearshare.com/sidebar.html?src=ssb
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.qooqlle.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,EXPLORER.EXE
O2 - BHO: MediaBar - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.4.8.11.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll
O2 - BHO: UrlHelper Class - {74322BF9-DF26-493f-B0DA-6D2FC5E6429E} - (no file)
O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: IEPluginBHO - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\User\Dane aplikacji\Nowe Gadu-Gadu\_userdata\ggbho.1.dll (file missing)
O3 - Toolbar: MediaBar - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - (no file)
O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll
O3 - Toolbar: (no name) - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - (no file)
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
O4 - HKLM\..\Run: [DrvLsnr] C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe
O4 - HKLM\..\Run: [GProton] %ALLUSERSPROFILE%\GProton.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ALLUpdate] "C:\Program Files\ALLPlayer\ALLUpdate.exe" "sleep"
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA LOKALNA')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA SIECIOWA')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Pobierz wszystko za pomocą BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Pobierz za pomocą BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.4.8.11.dll/206 (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) - http://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab
O18 - Protocol: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs:
O20 - Winlogon Notify: qoMgddAT - qoMgddAT.dll (file missing)
O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe
O23 - Service: Zapora AVG (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\avgfws.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\avgwdsvc.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: lxecCATSCustConnectService - Lexmark International, Inc. - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxecserv.exe
O23 - Service: lxec_device - - C:\WINDOWS\system32\lxeccoms.exe
O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe (file missing)
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

--
End of file - 9834 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0974BA1E-64EC-11DE-B2A5-E43756D89593}]
MediaBar

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
BitComet Helper - C:\Program Files\BitComet\tools\BitCometBHO_1.4.8.11.dll [2010-08-11 735024]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG10\avgssie.dll [2011-01-07 2731872]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{74322BF9-DF26-493f-B0DA-6D2FC5E6429E}]
UrlHelper Class

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}]
AVG Security Toolbar BHO - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll [2010-10-06 2475336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-11-24 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-11-24 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D}]
IEPluginBHO Class - C:\Documents and Settings\User\Dane aplikacji\Nowe Gadu-Gadu\_userdata\ggbho.1.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0974BA1E-64EC-11DE-B2A5-E43756D89593} -
{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - AVG Security Toolbar - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll [2010-10-06 2475336]
{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2005-05-11 49152]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288]
"AVG_TRAY"=C:\Program Files\AVG\AVG10\avgtray.exe [2011-01-07 2747744]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2007-04-16 577536]
"smapp"=C:\Program Files\Analog Devices\SoundMAX\SMTray.exe [2003-05-05 143360]
"DrvLsnr"=C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe [2003-05-08 69632]
"GProton"=C:\Documents and Settings\All Users\GProton.exe [2011-01-07 7793152]
"TaskTray"= []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-15 15360]
"uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2011-01-02 396152]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"ALLUpdate"=C:\Program Files\ALLPlayer\ALLUpdate.exe [2010-11-02 1432064]
"Google Update"=C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe [2011-01-23 136176]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2005-09-20 135168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\qoMgddAT]
qoMgddAT.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2009-01-30 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{6D794CB4-C7CD-4c6f-BFDC-9B77AFBDC02C}"= []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=0
"NoDriveAutoRun"=3

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=3
"NoDriveTypeAutoRun"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\system32\lxeccoms.exe"="C:\WINDOWS\system32\lxeccoms.exe:*:Enabled:Pro800-Pro900 Series Server"
"C:\Program Files\Gadu-Gadu 10\gg.exe"="C:\Program Files\Gadu-Gadu 10\gg.exe:*:Disabled:Gadu-Gadu 10"
"C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe"="C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe"
"C:\Program Files\valve\hl.exe"="C:\Program Files\valve\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\valve\hlds.exe"="C:\Program Files\valve\hlds.exe:*:Enabled:HLDS Launcher"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\AVG\AVG10\avgmfapx.exe"="C:\Program Files\AVG\AVG10\avgmfapx.exe:*:Enabled:Instalator AVG"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\AVG\AVG10\avgdiagex.exe"="C:\Program Files\AVG\AVG10\avgdiagex.exe:*:Enabled:Diagnostyka AVG 2011"
"C:\Program Files\AVG\AVG10\avgnsx.exe"="C:\Program Files\AVG\AVG10\avgnsx.exe:*:Enabled:Ochrona Sieci"
"C:\Program Files\AVG\AVG10\avgam.exe"="C:\Program Files\AVG\AVG10\avgam.exe:*:Enabled:Menedżer alarmów systemu AVG"
"C:\Program Files\AVG\AVG10\avgemcx.exe"="C:\Program Files\AVG\AVG10\avgemcx.exe:*:Enabled:Uniwersalny skaner poczty e-mail"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2011-02-11 21:22:06 ----A---- C:\WINDOWS\system32\OLDB4.tmp
2011-02-11 21:22:06 ----A---- C:\WINDOWS\system32\OLDB3.tmp
2011-02-11 21:22:05 ----A---- C:\WINDOWS\system32\OLDB2.tmp
2011-02-11 21:22:05 ----A---- C:\WINDOWS\system32\OLDB1.tmp
2011-02-11 21:22:04 ----A---- C:\WINDOWS\system32\OLDB0.tmp
2011-02-11 21:22:03 ----A---- C:\WINDOWS\system32\OLDAF.tmp
2011-02-11 21:22:03 ----A---- C:\WINDOWS\system32\OLDAE.tmp
2011-02-11 21:22:02 ----A---- C:\WINDOWS\system32\OLDAD.tmp
2011-02-11 21:21:59 ----A---- C:\WINDOWS\system32\OLDAC.tmp
2011-02-11 21:17:28 ----D---- C:\WINDOWS\LastGood
2011-02-11 19:11:33 ----D---- C:\Program Files\Driver-Soft
2011-02-11 12:01:18 ----D---- C:\rsit
2011-02-11 08:18:47 ----RASHD---- C:\Autorun.inf
2011-02-11 08:11:09 ----D---- C:\_OTL
2011-02-10 18:00:10 ----D---- C:\Program Files\Everest Poker
2011-02-10 17:19:51 ----A---- C:\UsbFix.txt
2011-02-10 15:57:17 ----D---- C:\UsbFix
2011-02-10 13:58:31 ----D---- C:\Program Files\Szkola na miare klasa 1b
2011-02-10 00:15:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2478971$
2011-02-10 00:15:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2485376$
2011-02-10 00:15:00 ----HDC---- C:\WINDOWS\$NtUninstallKB2479628$
2011-02-10 00:14:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2483185$
2011-02-10 00:09:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2476687$
2011-02-10 00:08:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2478960$
2011-02-10 00:08:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2393802$
2011-02-09 15:36:14 ----D---- C:\Program Files\WinISO
2011-02-09 13:59:28 ----D---- C:\Program Files\7-Zip
2011-02-09 13:07:54 ----A---- C:\WINDOWS\IsUn0415.exe
2011-02-09 11:50:46 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\InstallMate
2011-02-09 11:50:27 ----D---- C:\Program Files\Mozilla Firefox
2011-02-09 09:12:55 ----D---- C:\Program Files\trend micro
2011-02-08 23:59:09 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Google
2011-02-06 23:47:26 ----D---- C:\Documents and Settings\User\Dane aplikacji\ChomikBox
2011-02-06 23:28:00 ----D---- C:\Program Files\ChomikBox
2011-02-04 10:58:27 ----A---- C:\WINDOWS\VPlayer.INI
2011-02-02 15:57:34 ----D---- C:\Program Files\VirtualDJ
2011-01-29 13:22:01 ----N---- C:\WINDOWS\system32\spmsg.dll
2011-01-29 13:21:42 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$
2011-01-29 13:20:47 ----D---- C:\Program Files\Windows Media Connect 2
2011-01-29 13:20:09 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
2011-01-29 13:17:44 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2011-01-29 13:16:22 ----D---- C:\WINDOWS\system32\LogFiles
2011-01-29 13:16:22 ----D---- C:\WINDOWS\system32\drivers\UMDF
2011-01-29 13:16:05 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$
2011-01-29 13:02:39 ----D---- C:\Documents and Settings\User\Dane aplikacji\BSplayer Pro
2011-01-29 13:02:39 ----D---- C:\Documents and Settings\User\Dane aplikacji\BSplayer
2011-01-29 13:02:38 ----D---- C:\Program Files\Webteh
2011-01-29 12:54:17 ----A---- C:\WINDOWS\system32\xvidcore.dll
2011-01-29 12:54:17 ----A---- C:\WINDOWS\system32\libFLAC.dll
2011-01-29 12:54:14 ----D---- C:\Program Files\NAPI-PROJEKT
2011-01-29 12:54:05 ----D---- C:\Program Files\ALLPlayer
2011-01-29 12:52:23 ----D---- C:\Program Files\Vplayer
2011-01-26 17:07:34 ----D---- C:\Program Files\Common Files\Real
2011-01-25 23:05:44 ----D---- C:\Program Files\Real
2011-01-25 23:05:38 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Real
2011-01-25 23:05:29 ----D---- C:\Documents and Settings\User\Dane aplikacji\Real
2011-01-24 19:22:08 ----D---- C:\Documents and Settings\User\Dane aplikacji\JLC's Software
2011-01-24 19:21:53 ----D---- C:\Program Files\JLC's Software
2011-01-24 15:25:40 ----D---- C:\Program Files\JoWooD
2011-01-23 22:19:43 ----A---- C:\WINDOWS\Irremote.ini
2011-01-12 23:52:17 ----D---- C:\f392cca3e8185c93e16f64fd

======List of files/folders modified in the last 1 months======

2011-02-11 21:31:34 ----D---- C:\Documents and Settings\User\Dane aplikacji\uTorrent
2011-02-11 21:29:17 ----D---- C:\WINDOWS\Temp
2011-02-11 21:22:28 ----D---- C:\WINDOWS\system32\ReinstallBackups
2011-02-11 21:22:19 ----HD---- C:\WINDOWS\inf
2011-02-11 21:22:06 ----D---- C:\WINDOWS\system32
2011-02-11 21:20:48 ----D---- C:\WINDOWS\system32\drivers
2011-02-11 21:17:55 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-02-11 21:17:28 ----D---- C:\WINDOWS
2011-02-11 21:16:09 ----D---- C:\WINDOWS\Prefetch
2011-02-11 21:04:03 ----D---- C:\WINDOWS\system32\CatRoot2
2011-02-11 21:01:37 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-02-11 20:59:32 ----SD---- C:\WINDOWS\Tasks
2011-02-11 19:11:33 ----D---- C:\Program Files
2011-02-11 16:36:53 ----D---- C:\WINDOWS\system32\drivers\AVG
2011-02-11 16:10:38 ----SHD---- C:\WINDOWS\Installer
2011-02-10 17:27:19 ----AD---- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
2011-02-10 15:44:08 ----RSD---- C:\WINDOWS\assembly
2011-02-10 13:58:31 ----RSD---- C:\WINDOWS\Fonts
2011-02-10 00:15:22 ----A---- C:\WINDOWS\imsins.BAK
2011-02-10 00:11:10 ----D---- C:\WINDOWS\Debug
2011-02-10 00:10:53 ----A---- C:\WINDOWS\system32\MRT.exe
2011-02-10 00:10:10 ----D---- C:\Program Files\Internet Explorer
2011-02-10 00:09:37 ----D---- C:\WINDOWS\ie8updates
2011-02-10 00:09:30 ----HD---- C:\WINDOWS\$hf_mig$
2011-02-08 23:26:12 ----D---- C:\Program Files\Google
2011-02-08 22:38:45 ----D---- C:\WINDOWS\system32\config
2011-02-08 22:00:39 ----D---- C:\WINDOWS\Minidump
2011-02-08 21:58:34 ----SD---- C:\WINDOWS\Downloaded Program Files
2011-02-08 21:52:03 ----D---- C:\Documents and Settings\User\Dane aplikacji\AVG
2011-02-08 21:39:38 ----DC---- C:\Config.Msi
2011-02-08 21:39:37 ----RD---- C:\Program Files\Skype
2011-02-08 21:38:48 ----HD---- C:\Program Files\InstallShield Installation Information
2011-01-31 14:12:30 ----D---- C:\WINDOWS\system32\CatRoot
2011-01-29 13:21:14 ----A---- C:\WINDOWS\win.ini
2011-01-29 13:20:41 ----D---- C:\Program Files\Windows Media Player
2011-01-29 13:20:21 ----D---- C:\WINDOWS\Help
2011-01-29 12:55:18 ----D---- C:\Program Files\SubEdit-Player
2011-01-27 10:40:07 ----A---- C:\WINDOWS\system32\msvcr71.dll
2011-01-27 10:40:07 ----A---- C:\WINDOWS\system32\msvcp71.dll
2011-01-26 17:07:34 ----D---- C:\Program Files\Common Files
2011-01-26 17:06:01 ----D---- C:\WINDOWS\WinSxS
2011-01-23 22:23:35 ----D---- C:\Program Files\Common Files\Ahead
2011-01-23 22:23:31 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Nero
2011-01-23 22:13:03 ----D---- C:\Program Files\Counter-Strike 1.6
2011-01-23 16:16:48 ----DC---- C:\Documents and Settings
2011-01-21 15:44:11 ----A---- C:\WINDOWS\system32\shimgvw.dll
2011-01-21 15:44:11 ----A---- C:\WINDOWS\system32\shell32.dll
2011-01-16 16:55:17 ----D---- C:\Documents and Settings\User\Dane aplikacji\Skype
2011-01-16 14:59:07 ----D---- C:\Documents and Settings\User\Dane aplikacji\skypePM
2011-01-16 14:06:36 ----D---- C:\Program Files\Winamp
2011-01-16 14:05:16 ----D---- C:\Program Files\Winamp Detect
2011-01-15 16:21:52 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSEH;AVGIDSEH; C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys [2010-09-13 25680]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\WINDOWS\system32\DRIVERS\avgrkx86.sys [2010-09-07 26064]
R0 giveio;giveio; C:\WINDOWS\system32\giveio.sys [1996-04-03 5248]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2009-04-28 44944]
R0 speedfan;speedfan; C:\WINDOWS\system32\speedfan.sys [2006-09-24 5248]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-09-16 436792]
R0x01000000 papycpu;papycpu; C:\WINDOWS\system32\drivers\papycpu.sys [1998-10-06 1984]
R0x01000000 papyjoy;papyjoy; C:\WINDOWS\system32\drivers\papyjoy.sys [1998-10-06 1888]
R1 Avgldx86;AVG AVI Loader Driver; C:\WINDOWS\system32\DRIVERS\avgldx86.sys [2010-12-08 251728]
R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\WINDOWS\system32\DRIVERS\avgmfx86.sys [2010-09-07 34384]
R1 Avgtdix;AVG TDI Driver; C:\WINDOWS\system32\DRIVERS\avgtdix.sys [2010-11-12 299984]
R1 intelppm;Sterownik procesora Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-15 40448]
R1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2002-09-16 4228]
R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2003-03-13 100224]
R3 Avgfwdx;Avgfwdx; C:\WINDOWS\system32\DRIVERS\avgfwdx.sys [2010-07-12 30432]
R3 AVGIDSDriver;AVGIDSDriver; C:\WINDOWS\system32\DRIVERS\AVGIDSDriver.Sys [2010-08-19 123472]
R3 AVGIDSFilter;AVGIDSFilter; C:\WINDOWS\system32\DRIVERS\AVGIDSFilter.Sys [2010-08-19 30288]
R3 AVGIDSShim;AVGIDSShim; C:\WINDOWS\system32\DRIVERS\AVGIDSShim.Sys [2010-08-19 26192]
R3 b57w2k;Broadcom NetXtreme Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2008-07-25 176640]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2005-09-20 1302332]
R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2003-05-27 578304]
R3 usbuhci;Sterownik Miniport uniwersalnego kontrolera hosta USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 VCSVADHWSer;Avnex Virtual Audio Device (WDM); C:\WINDOWS\system32\DRIVERS\vcsvad.sys [2008-12-26 17792]
S0 BTHidMgr;Bluetooth HID Manager Service; C:\WINDOWS\System32\Drivers\BTHidMgr.sys []
S1 kbdhid;Sterownik klawiatury HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
S3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2008-09-24 4122368]
S3 aux67s46;aux67s46; C:\WINDOWS\system32\drivers\aux67s46.sys []
S3 Avgfwfd;AVG network filter service; C:\WINDOWS\system32\DRIVERS\avgfwdx.sys [2010-07-12 30432]
S3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys []
S3 BlueletSCOAudio;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys []
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys []
S3 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\system32\DRIVERS\vbtenum.sys []
S3 CCDECODE;Dekoder napisów; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 EagleNT;EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys []
S3 HidUsb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2005-03-08 51120]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2005-03-08 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2005-03-08 21744]
S3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-26 12160]
S3 MSTEE;Konwerter strumieni Tee/Sink-to-Sink Microsoft Streaming; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;Koder-dekoder NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Połączenie TV/wideo firmy Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\WINDOWS\system32\drivers\ccdcmb.sys [2010-07-30 18048]
S3 nmwcdc;Nokia USB Communication Driver; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2010-07-30 23040]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2008-04-15 5888]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2010-07-30 8192]
S3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Klasa PRINTER USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Sterownik skanera USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-14 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2010-07-30 8192]
S3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys []
S3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys []
S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2009-07-14 444136]
S3 WSTCODEC;Kodery-dekodery teletekstu w standardzie światowym; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avgfws;Zapora AVG; C:\Program Files\AVG\AVG10\avgfws.exe [2010-11-22 3226632]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe [2011-01-06 6128720]
R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG10\avgwdsvc.exe [2010-10-22 265400]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-11-12 153376]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-07-25 79136]
R2 lxec_device;lxec_device; C:\WINDOWS\system32\lxeccoms.exe [2010-04-14 598696]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2004-09-29 69632]
R2 SoundMAX Agent Service (default);SoundMAX Agent Service; C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [2002-09-20 45056]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
S2 lxecCATSCustConnectService;lxecCATSCustConnectService; C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxecserv.exe [2010-04-14 193192]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 AVG Security Toolbar Service;AVG Security Toolbar Service; C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe [2010-10-06 517448]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe []
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-06-14 615936]
S3 WMPNetworkSvc;Usługa udostępniania w sieci programu Windows Media Player; C:\Program Files\Windows Media Player\WMPNetwk.exe [2009-02-04 918016]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-15 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------
[/log]

nie wiem dlaczego ale nie było extras i w dodatku zniknęła mi ikonka głośności i sterownika głośności ale z dźwiękiem dam sobie rade

czy użycie super sterownika to dobry pomysł ? podejrzewam że brak dźwięku jest spowodowany jego użyciem

dźwięk naprawiony ale qooqlle nie zniknęły

Tomek01
komentarz
komentarz

To jeszcze tylko to wklej do OTL:
[code]:OTL
IE - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.qooqlle.com/

:Commands
[emptytemp]
[/code]


W OTL użyj funkcji Clean Up.
Wyłącz a następnie włącz przywracanie systemu na wszystkich partycjach.
Użyj ATF Cleaner, zaznacz trzy pierwsze fajki i empty selected.

Wykonaj pełny skan [url=http://www.instalki.pl/programy/download_c/14/155.html][color=#0000CD][b]DrWebCureIt[/b][/color][/url] oraz [url=http://www.instalki.pl/programy/download_c/13/96.html][color=#0000CD][b]Malwarebytes Anti-Malware[/b][/color][/url] i jakby coś wykryły raporty pokaż na forum.

  • 2 tygodnie później...
batonxd
komentarz
komentarz

zrobiłem formata i jak pewnie wiadomo problemu już nie ma :D dzięki za poświęcony czas i cierpliwość :P

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.