batonxd utworzono 9 lutego 2011 utworzono 9 lutego 2011 witam. jestem całkiem lewy co do tego typu problemów więc proszę o wyrozumiałość mam problem mianowicie od paru miesięcy próbuje uporać się z problemem qooqlle.com który powraca zawsze po restarcie komputera do tego żadne ustawienia wyszukiwarki (google chrome) nie zapisują się próbowałem już wszystkiego bez skutku proszę o odpowiedź i z góry dziękuje [log]OTL logfile created on: 2011-02-09 09:59:42 - Run 1 OTL by OldTimer - Version 3.2.20.6 Folder = C:\Documents and Settings\User\Pulpit Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1 015,00 Mb Total Physical Memory | 406,00 Mb Available Physical Memory | 40,00% Memory free 2,00 Gb Paging File | 1,00 Gb Available in Paging File | 65,00% Paging File free Paging file location(s): C:\pagefile.sys 756 1512 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 37,27 Gb Total Space | 5,82 Gb Free Space | 15,61% Space Free | Partition Type: NTFS Computer Name: USER-FCC60EA01E | User Name: User | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days [color=#E56717]========== Processes (All) ==========[/color] PRC - [2011-02-09 00:12:40 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe PRC - [2011-02-07 10:29:02 | 000,994,872 | ---- | M] (Google Inc.) -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe PRC - [2011-01-07 01:22:54 | 002,747,744 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgtray.exe PRC - [2011-01-07 01:22:44 | 001,084,256 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgnsx.exe PRC - [2011-01-07 01:22:12 | 001,052,512 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgemcx.exe PRC - [2011-01-06 15:23:20 | 000,737,872 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe PRC - [2011-01-06 15:23:18 | 006,128,720 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe PRC - [2011-01-02 19:29:52 | 000,396,152 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\uTorrent\uTorrent.exe PRC - [2010-12-05 16:26:40 | 000,654,176 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgrsx.exe PRC - [2010-12-05 16:26:12 | 000,650,592 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgchsvx.exe PRC - [2010-11-22 04:48:46 | 003,226,632 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgfws.exe PRC - [2010-11-12 18:53:22 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe PRC - [2010-10-22 04:58:18 | 000,265,400 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgwdsvc.exe PRC - [2010-10-22 04:56:58 | 000,845,664 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgcsrvx.exe PRC - [2010-10-22 04:56:48 | 000,745,824 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgam.exe PRC - [2010-08-17 14:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe PRC - [2010-05-14 10:44:46 | 000,248,552 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe PRC - [2010-04-14 15:08:12 | 000,598,696 | ---- | M] ( ) -- C:\WINDOWS\system32\lxeccoms.exe PRC - [2009-08-06 18:24:06 | 000,053,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe PRC - [2009-02-09 12:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe PRC - [2008-04-15 13:00:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2008-04-15 13:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe PRC - [2008-04-15 13:00:00 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapsrv.exe PRC - [2008-04-15 13:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe PRC - [2008-04-15 13:00:00 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe PRC - [2008-04-15 13:00:00 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS] PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE] PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS] PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [IMGSVC] PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH] PRC - [2008-04-15 13:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe PRC - [2008-04-15 13:00:00 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe PRC - [2007-07-25 15:50:26 | 000,079,136 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe PRC - [2007-05-28 17:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe PRC - [2007-04-16 15:28:22 | 000,577,536 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE PRC - [2005-05-11 22:12:54 | 000,049,152 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\HP Software Update\hpwuSchd2.exe PRC - [2004-09-29 11:14:36 | 000,069,632 | ---- | M] (HP) -- C:\WINDOWS\system32\HPZipm12.exe PRC - [2003-05-08 11:34:32 | 000,069,632 | ---- | M] (adi) -- C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe PRC - [2003-05-05 08:57:30 | 000,143,360 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMTray.exe PRC - [2002-09-20 16:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2011-02-09 00:12:40 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe MOD - [2010-12-29 16:17:15 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll MOD - [2010-08-23 17:12:53 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll MOD - [2010-08-16 09:45:09 | 000,590,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll MOD - [2010-07-27 07:30:34 | 008,491,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll MOD - [2010-07-16 13:00:50 | 001,287,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll MOD - [2009-12-08 10:25:45 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll MOD - [2009-06-25 09:27:54 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll MOD - [2009-03-21 15:08:59 | 001,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll MOD - [2009-02-09 11:53:44 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll MOD - [2009-02-09 11:53:43 | 000,722,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll MOD - [2008-10-23 13:42:41 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll MOD - [2008-04-15 13:00:00 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll MOD - [2008-04-15 13:00:00 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll MOD - [2008-04-15 13:00:00 | 000,732,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\userenv.dll MOD - [2008-04-15 13:00:00 | 000,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll MOD - [2008-04-15 13:00:00 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll MOD - [2008-04-15 13:00:00 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll MOD - [2008-04-15 13:00:00 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll MOD - [2008-04-15 13:00:00 | 000,297,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTF.dll MOD - [2008-04-15 13:00:00 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll MOD - [2008-04-15 13:00:00 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll MOD - [2008-04-15 13:00:00 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTFIME.IME MOD - [2008-04-15 13:00:00 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv MOD - [2008-04-15 13:00:00 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx MOD - [2008-04-15 13:00:00 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imm32.dll MOD - [2008-04-15 13:00:00 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll MOD - [2008-04-15 13:00:00 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll MOD - [2008-04-15 13:00:00 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll MOD - [2008-04-15 13:00:00 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [On_Demand | Stopped] -- -- (NMIndexingService) SRV - [2011-01-06 15:23:18 | 006,128,720 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe -- (AVGIDSAgent) SRV - [2010-11-22 04:48:46 | 003,226,632 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgfws.exe -- (avgfws) SRV - [2010-10-22 04:58:18 | 000,265,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgwdsvc.exe -- (avgwd) SRV - [2010-10-06 11:31:48 | 000,517,448 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe -- (AVG Security Toolbar Service) SRV - [2010-06-14 15:07:14 | 000,615,936 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2010-04-14 15:08:12 | 000,598,696 | ---- | M] ( ) [Auto | Running] -- C:\WINDOWS\System32\lxeccoms.exe -- (lxec_device) SRV - [2010-04-14 15:08:05 | 000,193,192 | ---- | M] () [Auto | Stopped] -- C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxecserv.exe -- (lxecCATSCustConnectService) SRV - [2007-05-28 17:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) [Auto | Running] -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE) SRV - [2004-09-29 11:14:36 | 000,069,632 | ---- | M] (HP) [Auto | Running] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12) SRV - [2002-09-20 16:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) [Auto | Running] -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe -- (SoundMAX Agent Service (default)) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2010-12-08 04:12:38 | 000,251,728 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (Avgldx86) DRV - [2010-11-12 13:19:38 | 000,299,984 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (Avgtdix) DRV - [2010-09-16 14:44:07 | 000,436,792 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2010-09-13 16:27:24 | 000,025,680 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys -- (AVGIDSEH) DRV - [2010-09-07 03:48:56 | 000,034,384 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (Avgmfx86) DRV - [2010-09-07 03:48:50 | 000,026,064 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\avgrkx86.sys -- (Avgrkx86) DRV - [2010-08-19 21:42:38 | 000,030,288 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSFilter.sys -- (AVGIDSFilter) DRV - [2010-08-19 21:42:36 | 000,123,472 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSDriver.sys -- (AVGIDSDriver) DRV - [2010-08-19 21:42:34 | 000,026,192 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSShim.sys -- (AVGIDSShim) DRV - [2010-07-30 14:16:46 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt) DRV - [2010-07-30 14:16:44 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev) DRV - [2010-07-30 14:16:42 | 000,023,040 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc) DRV - [2010-07-30 14:16:38 | 000,018,048 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd) DRV - [2010-07-12 03:33:54 | 000,030,432 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\avgfwdx.sys -- (Avgfwfd) DRV - [2010-07-12 03:33:54 | 000,030,432 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\avgfwdx.sys -- (Avgfwdx) DRV - [2008-12-26 11:56:04 | 000,017,792 | ---- | M] (Avnex) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\vcsvad.sys -- (VCSVADHWSer) Avnex Virtual Audio Device (WDM) DRV - [2008-09-24 10:40:22 | 004,122,368 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM) DRV - [2008-08-26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd) DRV - [2008-07-25 00:18:32 | 000,176,640 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\b57xp32.sys -- (b57w2k) DRV - [2006-09-24 14:28:46 | 000,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan) DRV - [2002-09-16 16:14:32 | 000,004,228 | ---- | M] (PowerQuest Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\PQNTDRV.sys -- (PQNTDrv) DRV - [1998-10-06 13:36:26 | 000,001,984 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\papycpu.sys -- (papycpu) DRV - [1998-10-06 13:36:26 | 000,001,888 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\papyjoy.sys -- (papyjoy) DRV - [1996-04-03 20:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.bearshare.com/sidebar.html?src=ssb IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll () IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll () IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.qooqlle.com/ IE - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll () IE - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 FF - HKLM\software\mozilla\Firefox\extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG10\Firefox\ FF - HKLM\software\mozilla\Firefox\extensions\\avg@igeared: C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared O1 HOSTS File: ([2008-04-15 13:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (no name) - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - No CLSID value found. O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.4.8.11.dll (BitComet) O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll (AVG Technologies CZ, s.r.o.) O2 - BHO: (no name) - {74322BF9-DF26-493f-B0DA-6D2FC5E6429E} - No CLSID value found. O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll () O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - File not found O3 - HKLM\..\Toolbar: (no name) - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - No CLSID value found. O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll () O3 - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll () O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe (AVG Technologies CZ, s.r.o.) O4 - HKLM..\Run: [DrvLsnr] C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe (adi) O4 - HKLM..\Run: [GProton] C:\Documents and Settings\All Users\GProton.exe () O4 - HKLM..\Run: [smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe (Analog Devices, Inc.) O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.) O4 - HKU\S-1-5-21-2052111302-492894223-1606980848-1003..\Run: [ALLUpdate] C:\Program Files\ALLPlayer\ALLUpdate.exe () O4 - HKU\S-1-5-21-2052111302-492894223-1606980848-1003..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O9 - Extra Button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - C:\Program Files\BitComet\tools\BitCometBHO_1.4.8.11.dll (BitComet) O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab (Reg Error: Key error.) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23) O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} http://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab (IWinAmpActiveX Class) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.174.8.1 157.25.5.18 O18 - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll () O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll (AVG Technologies CZ, s.r.o.) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (EXPLORER.EXE) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation) O20 - Winlogon\Notify\qoMgddAT: DllName - qoMgddAT.dll - File not found O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O28 - HKLM ShellExecuteHooks: {6D794CB4-C7CD-4c6f-BFDC-9B77AFBDC02C} - Reg Error: Key error. File not found O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010-08-23 13:02:05 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O33 - MountPoints2\{0cd3c4c6-cd65-11df-983e-000e7ffb134f}\Shell\AutoRun\command - "" = F:\fi.cmd O33 - MountPoints2\{0cd3c4c6-cd65-11df-983e-000e7ffb134f}\Shell\explore\Command - "" = F:\fi.cmd O33 - MountPoints2\{0cd3c4c6-cd65-11df-983e-000e7ffb134f}\Shell\open\Command - "" = F:\fi.cmd O33 - MountPoints2\{8cfa4cd8-bfbc-11df-88fb-000e7ffb134f}\Shell\AutoRun\command - "" = G:\RECYCLER32\dmgr.exe O33 - MountPoints2\{8cfa4cd8-bfbc-11df-88fb-000e7ffb134f}\Shell\open\command - "" = G:\RECYCLER32\dmgr.exe O33 - MountPoints2\{aefde5a0-bda6-11df-88ea-000e7ffb134f}\Shell\AutoRun\command - "" = E:\RECYCLER32\dmgr.exe O33 - MountPoints2\{aefde5a0-bda6-11df-88ea-000e7ffb134f}\Shell\open\command - "" = E:\RECYCLER32\dmgr.exe O34 - HKLM BootExecute: (autocheck autochk /p \??\F:) - File not found O34 - HKLM BootExecute: (autocheck autochk *) - File not found O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgchsvx.exe /sync) - C:\Program Files\AVG\AVG10\avgchsvx.exe (AVG Technologies CZ, s.r.o.) O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgrsx.exe /sync /restart) - C:\Program Files\AVG\AVG10\avgrsx.exe (AVG Technologies CZ, s.r.o.) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2011-02-09 09:12:55 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro [2011-02-09 09:12:54 | 000,000,000 | ---D | C] -- C:\rsit [2011-02-09 08:18:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood [2011-02-09 00:12:35 | 000,602,624 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe [2011-02-08 23:59:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Google [2011-02-08 23:52:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\Google Chrome [2011-02-08 22:06:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Pulpit\tapety [2011-02-08 21:41:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Pulpit\programy i gry [2011-02-06 23:47:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\ChomikBox [2011-02-06 23:44:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\Chomikuj.pl [2011-02-06 23:28:00 | 000,000,000 | ---D | C] -- C:\Program Files\ChomikBox [2011-02-02 15:57:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\Virtual DJ [2011-02-02 15:57:34 | 000,000,000 | ---D | C] -- C:\Program Files\VirtualDJ [2011-02-02 15:57:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\VirtualDJ [2011-01-29 13:22:01 | 000,016,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll [2011-01-29 13:20:47 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2 [2011-01-29 13:16:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF [2011-01-29 13:16:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles [2011-01-29 13:05:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\BS.Player [2011-01-29 13:02:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\BSplayer Pro [2011-01-29 13:02:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\BSplayer [2011-01-29 13:02:38 | 000,000,000 | ---D | C] -- C:\Program Files\Webteh [2011-01-29 12:54:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\ALLPlayer [2011-01-29 12:54:14 | 000,000,000 | ---D | C] -- C:\Program Files\NAPI-PROJEKT [2011-01-29 12:54:05 | 000,000,000 | ---D | C] -- C:\Program Files\ALLPlayer [2011-01-29 12:52:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\Vplayer [2011-01-29 12:52:23 | 000,000,000 | ---D | C] -- C:\Program Files\Vplayer [2011-01-26 17:07:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Real [2011-01-25 23:05:44 | 000,000,000 | ---D | C] -- C:\Program Files\Real [2011-01-25 23:05:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Real [2011-01-25 23:05:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Real [2011-01-25 11:21:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\JoWood [2011-01-25 08:28:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Gothic II [2011-01-24 19:22:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\JLC's Software [2011-01-24 19:21:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\JLC's Software [2011-01-24 19:21:53 | 000,000,000 | ---D | C] -- C:\Program Files\JLC's Software [2011-01-24 15:42:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\JoWooD [2011-01-24 15:25:40 | 000,000,000 | ---D | C] -- C:\Program Files\JoWooD [2011-01-23 16:32:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Pulpit\jakieś obrazy [2011-01-15 19:50:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\GTA San Andreas User Files [2011-01-12 23:52:17 | 000,000,000 | ---D | C] -- C:\f392cca3e8185c93e16f64fd [2010-09-07 15:37:08 | 000,442,368 | ---- | C] ( ) -- C:\WINDOWS\System32\lxeccoin.dll [2010-09-07 15:35:35 | 000,364,544 | ---- | C] ( ) -- C:\WINDOWS\System32\lxecinpa.dll [2010-09-07 15:35:35 | 000,356,352 | ---- | C] ( ) -- C:\WINDOWS\System32\LXEChcp.dll [2010-09-07 15:35:34 | 001,048,576 | ---- | C] ( ) -- C:\WINDOWS\System32\lxecserv.dll [2010-09-07 15:35:34 | 000,847,872 | ---- | C] ( ) -- C:\WINDOWS\System32\lxecusb1.dll [2010-09-07 15:35:34 | 000,643,072 | ---- | C] ( ) -- C:\WINDOWS\System32\lxecpmui.dll [2010-09-07 15:35:34 | 000,344,064 | ---- | C] ( ) -- C:\WINDOWS\System32\lxeciesc.dll [2010-09-07 15:35:33 | 000,577,536 | ---- | C] ( ) -- C:\WINDOWS\System32\lxeclmpm.dll [2010-09-07 15:35:32 | 000,802,816 | ---- | C] ( ) -- C:\WINDOWS\System32\lxeccomc.dll [2010-09-07 15:35:32 | 000,688,128 | ---- | C] ( ) -- C:\WINDOWS\System32\lxechbn3.dll [2010-09-07 15:35:32 | 000,372,736 | ---- | C] ( ) -- C:\WINDOWS\System32\lxeccomm.dll [6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [1 C:\WINDOWS\System32\drivers\*.tmp files -> C:\WINDOWS\System32\drivers\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2011-02-09 09:52:00 | 000,001,128 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2052111302-492894223-1606980848-1003UA.job [2011-02-09 09:31:05 | 000,339,991 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\unconfirmed 32398.exe [2011-02-09 08:17:46 | 000,000,414 | ---- | M] () -- C:\WINDOWS\tasks\AVG PC Tuneup 2011 Integrator Start On Windows Logon.job [2011-02-09 08:17:17 | 105,726,431 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm [2011-02-09 08:12:35 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2011-02-09 08:12:30 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2011-02-09 00:21:21 | 006,815,744 | -H-- | M] () -- C:\Documents and Settings\User\NTUSER.DAT [2011-02-09 00:21:21 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\User\ntuser.ini [2011-02-09 00:12:40 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe [2011-02-08 23:52:42 | 000,002,295 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Google Chrome.lnk [2011-02-08 23:52:01 | 000,001,076 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2052111302-492894223-1606980848-1003Core.job [2011-02-08 09:34:46 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2011-02-07 07:15:16 | 003,706,738 | -H-- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\IconCache.db [2011-02-06 23:44:17 | 000,000,830 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\ChomikBox.lnk [2011-02-05 10:21:31 | 000,002,359 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Counter Strike NS.lnk [2011-02-04 20:37:25 | 000,644,929 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\iavifw.avm [2011-02-04 17:59:18 | 000,026,960 | ---- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2011-02-04 10:58:28 | 000,000,797 | ---- | M] () -- C:\WINDOWS\VPlayer.INI [2011-02-04 10:58:27 | 000,000,021 | ---- | M] () -- C:\WINDOWS\VplayerINI.vpl [2011-02-03 05:14:36 | 000,147,608 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2011-02-02 15:57:42 | 000,000,694 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Virtual DJ.lnk [2011-01-29 13:21:35 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2011-01-29 13:21:27 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2011-01-29 13:21:27 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2011-01-29 13:21:14 | 000,000,592 | ---- | M] () -- C:\WINDOWS\win.ini [2011-01-29 13:16:35 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf [2011-01-29 12:55:26 | 000,000,797 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\SubEdit-Player.lnk [2011-01-28 13:31:02 | 000,008,786 | ---- | M] () -- C:\Program1.RPT [2011-01-28 09:30:30 | 000,000,720 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\AVG 2011.lnk [2011-01-25 11:39:36 | 000,001,843 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gothic II Złota Edycja.lnk [2011-01-24 19:21:58 | 000,001,777 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\JLC's Internet TV.lnk [2011-01-24 16:02:00 | 000,004,096 | ---- | M] () -- C:\WINDOWS\d3dx.dat [2011-01-23 22:19:43 | 000,000,000 | ---- | M] () -- C:\WINDOWS\Irremote.ini [2011-01-16 15:10:58 | 000,002,267 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2011-01-16 14:05:21 | 000,000,654 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk [6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [1 C:\WINDOWS\System32\drivers\*.tmp files -> C:\WINDOWS\System32\drivers\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2011-02-09 09:31:04 | 000,339,991 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\unconfirmed 32398.exe [2011-02-08 23:52:42 | 000,002,295 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\Google Chrome.lnk [2011-02-08 23:47:06 | 000,001,128 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2052111302-492894223-1606980848-1003UA.job [2011-02-08 23:47:05 | 000,001,076 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2052111302-492894223-1606980848-1003Core.job [2011-02-06 23:44:16 | 000,000,830 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\ChomikBox.lnk [2011-02-04 10:58:27 | 000,000,797 | ---- | C] () -- C:\WINDOWS\VPlayer.INI [2011-02-04 10:58:27 | 000,000,021 | ---- | C] () -- C:\WINDOWS\VplayerINI.vpl [2011-02-02 15:57:42 | 000,000,694 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\Virtual DJ.lnk [2011-01-29 13:16:35 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf [2011-01-29 12:55:26 | 000,000,797 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\SubEdit-Player.lnk [2011-01-29 12:54:17 | 000,797,184 | ---- | C] () -- C:\WINDOWS\System32\ac3filter.ax [2011-01-29 12:54:17 | 000,790,528 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2011-01-29 12:54:17 | 000,258,048 | ---- | C] () -- C:\WINDOWS\System32\libFLAC.dll [2011-01-28 13:31:00 | 000,008,786 | ---- | C] () -- C:\Program1.RPT [2011-01-27 19:18:21 | 003,706,738 | -H-- | C] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\IconCache.db [2011-01-25 11:39:36 | 000,001,843 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Gothic II Złota Edycja.lnk [2011-01-24 19:21:58 | 000,001,777 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\JLC's Internet TV.lnk [2011-01-24 16:02:00 | 000,004,096 | ---- | C] () -- C:\WINDOWS\d3dx.dat [2011-01-23 22:19:43 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Irremote.ini [2010-11-15 15:04:44 | 000,000,311 | ---- | C] () -- C:\Documents and Settings\User\Dane aplikacji\scgdfgasfbh.bat [2010-11-12 19:40:41 | 000,000,056 | ---- | C] () -- C:\WINDOWS\wininit.ini [2010-11-05 07:47:52 | 000,004,608 | ---- | C] () -- C:\WINDOWS\cocowawa.dll [2010-10-13 15:51:10 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2010-10-07 22:41:21 | 000,004,305 | ---- | C] () -- C:\WINDOWS\jdncfw-f48.ini [2010-10-07 22:41:21 | 000,001,441 | ---- | C] () -- C:\WINDOWS\cbvmqg_x64.ini [2010-10-03 18:15:09 | 000,000,122 | ---- | C] () -- C:\WINDOWS\System32\ttbup222.dll [2010-10-03 15:58:32 | 000,029,696 | ---- | C] () -- C:\WINDOWS\System32\pthread.dll [2010-09-28 23:15:29 | 001,970,176 | ---- | C] () -- C:\WINDOWS\System32\d3dx9.dll [2010-09-23 08:51:56 | 000,000,095 | ---- | C] () -- C:\WINDOWS\mta.ini [2010-09-22 23:00:52 | 000,001,157 | ---- | C] () -- C:\WINDOWS\System32\urqOIbAq.dll [2010-09-22 22:59:33 | 000,465,832 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat [2010-09-20 13:11:30 | 000,001,153 | ---- | C] () -- C:\WINDOWS\System32\opnLfFWp.dll [2010-09-20 06:48:51 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\fusioncache.dat [2010-09-16 14:44:07 | 000,436,792 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys [2010-09-13 22:07:51 | 000,000,127 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI [2010-09-12 10:44:05 | 000,000,000 | ---- | C] () -- C:\WINDOWS\PROTOCOL.INI [2010-09-11 20:25:19 | 000,001,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\papycpu.sys [2010-09-11 20:25:19 | 000,001,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\papyjoy.sys [2010-09-11 20:25:09 | 000,000,130 | ---- | C] () -- C:\WINDOWS\SIERRA.INI [2010-09-11 16:37:21 | 000,000,682 | ---- | C] () -- C:\WINDOWS\bestplayer.ini [2010-09-11 14:39:23 | 000,024,576 | ---- | C] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-09-11 11:32:02 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll [2010-09-11 11:20:31 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI [2010-09-10 15:38:29 | 000,014,574 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\hpzinstall.log [2010-09-10 14:53:13 | 000,026,960 | ---- | C] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2010-09-07 15:37:10 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\lxecvs.dll [2010-09-07 15:37:02 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\lxecgcfg.dll [2010-09-07 15:37:01 | 000,294,912 | ---- | C] () -- C:\WINDOWS\System32\lxeccui.dll [2010-09-07 15:37:01 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\lxeccuir.dll [2010-09-07 15:35:35 | 000,331,776 | ---- | C] () -- C:\WINDOWS\System32\LXECinst.dll [2010-09-07 15:35:33 | 000,323,584 | ---- | C] () -- C:\WINDOWS\System32\lxecins.dll [2010-09-07 15:35:33 | 000,262,144 | ---- | C] () -- C:\WINDOWS\System32\lxecinsb.dll [2010-09-07 15:35:33 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\lxecinsr.dll [2010-09-07 15:35:33 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\lxecjswr.dll [2010-09-07 15:35:32 | 000,253,952 | ---- | C] () -- C:\WINDOWS\System32\lxeccu.dll [2010-09-07 15:35:32 | 000,208,896 | ---- | C] () -- C:\WINDOWS\System32\lxecgrd.dll [2010-09-07 15:35:32 | 000,090,112 | ---- | C] () -- C:\WINDOWS\System32\lxeccub.dll [2010-09-07 15:35:32 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\lxeccur.dll [2010-09-07 15:35:27 | 000,299,008 | ---- | C] () -- C:\WINDOWS\System32\LXECsm.dll [2010-09-07 15:35:27 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\LXECsmr.dll [2010-08-24 08:17:37 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2010-08-24 08:09:34 | 000,000,044 | ---- | C] () -- C:\WINDOWS\System32\msssc.dll [2010-08-23 14:49:24 | 001,114,842 | ---- | C] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010-08-23 14:49:23 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2010-08-23 14:48:46 | 000,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini [2010-08-23 13:09:15 | 000,000,062 | -HS- | C] () -- C:\Documents and Settings\User\Dane aplikacji\desktop.ini [2010-08-23 13:02:05 | 000,000,000 | ---- | C] () -- C:\WINDOWS\control.ini [2010-08-23 12:57:32 | 000,000,037 | ---- | C] () -- C:\WINDOWS\vbaddin.ini [2010-08-23 12:57:32 | 000,000,036 | ---- | C] () -- C:\WINDOWS\vb.ini [2010-08-23 12:56:42 | 000,026,717 | ---- | C] () -- C:\WINDOWS\System32\tslabels.ini [2010-08-23 12:56:40 | 000,003,813 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.ini [2010-01-27 17:54:13 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll [2010-01-26 17:23:27 | 000,000,022 | ---- | C] () -- C:\WINDOWS\clofghls.dll [2010-01-26 17:09:41 | 000,000,052 | ---- | C] () -- C:\WINDOWS\mafosav.INI [2010-01-26 12:45:08 | 000,000,044 | ---- | C] () -- C:\WINDOWS\SMWizard.INI [2008-04-15 13:00:00 | 001,015,477 | ---- | C] () -- C:\WINDOWS\System32\esentprf.ini [2008-04-15 13:00:00 | 000,733,696 | ---- | C] () -- C:\WINDOWS\System32\qedwipes.dll [2008-04-15 13:00:00 | 000,355,112 | ---- | C] () -- C:\WINDOWS\System32\msjetoledb40.dll [2008-04-15 13:00:00 | 000,270,848 | ---- | C] () -- C:\WINDOWS\System32\sbe.dll [2008-04-15 13:00:00 | 000,253,440 | ---- | C] () -- C:\WINDOWS\System32\compatUI.dll [2008-04-15 13:00:00 | 000,199,168 | ---- | C] () -- C:\WINDOWS\System32\ir32_32.dll [2008-04-15 13:00:00 | 000,186,880 | ---- | C] () -- C:\WINDOWS\System32\encdec.dll [2008-04-15 13:00:00 | 000,094,282 | ---- | C] () -- C:\WINDOWS\System32\msencode.dll [2008-04-15 13:00:00 | 000,070,656 | ---- | C] () -- C:\WINDOWS\System32\amstream.dll [2008-04-15 13:00:00 | 000,053,478 | ---- | C] () -- C:\WINDOWS\System32\tcpmon.ini [2008-04-15 13:00:00 | 000,042,809 | ---- | C] () -- C:\WINDOWS\System32\key01.sys [2008-04-15 13:00:00 | 000,042,537 | ---- | C] () -- C:\WINDOWS\System32\keyboard.sys [2008-04-15 13:00:00 | 000,035,648 | ---- | C] () -- C:\WINDOWS\System32\ntio411.sys [2008-04-15 13:00:00 | 000,035,424 | ---- | C] () -- C:\WINDOWS\System32\ntio412.sys [2008-04-15 13:00:00 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio804.sys [2008-04-15 13:00:00 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio404.sys [2008-04-15 13:00:00 | 000,033,936 | ---- | C] () -- C:\WINDOWS\System32\ntio.sys [2008-04-15 13:00:00 | 000,029,370 | ---- | C] () -- C:\WINDOWS\System32\ntdos411.sys [2008-04-15 13:00:00 | 000,029,274 | ---- | C] () -- C:\WINDOWS\System32\ntdos412.sys [2008-04-15 13:00:00 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos804.sys [2008-04-15 13:00:00 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos404.sys [2008-04-15 13:00:00 | 000,027,898 | ---- | C] () -- C:\WINDOWS\System32\ntdos.sys [2008-04-15 13:00:00 | 000,027,097 | ---- | C] () -- C:\WINDOWS\System32\country.sys [2008-04-15 13:00:00 | 000,020,629 | ---- | C] () -- C:\WINDOWS\System32\mqperf.ini [2008-04-15 13:00:00 | 000,016,024 | ---- | C] () -- C:\WINDOWS\System32\rsvp.ini [2008-04-15 13:00:00 | 000,015,360 | ---- | C] () -- C:\WINDOWS\System32\tsd32.dll [2008-04-15 13:00:00 | 000,014,336 | ---- | C] () -- C:\WINDOWS\System32\msdmo.dll [2008-04-15 13:00:00 | 000,013,819 | ---- | C] () -- C:\WINDOWS\System32\pschdprf.ini [2008-04-15 13:00:00 | 000,013,312 | ---- | C] () -- C:\WINDOWS\System32\win87em.dll [2008-04-15 13:00:00 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\scriptpw.dll [2008-04-15 13:00:00 | 000,009,043 | ---- | C] () -- C:\WINDOWS\System32\ansi.sys [2008-04-15 13:00:00 | 000,006,074 | ---- | C] () -- C:\WINDOWS\System32\rasctrs.ini [2008-04-15 13:00:00 | 000,004,976 | ---- | C] () -- C:\WINDOWS\System32\himem.sys [2008-04-15 13:00:00 | 000,002,992 | ---- | C] () -- C:\WINDOWS\System32\perfci.ini [2008-04-15 13:00:00 | 000,002,890 | ---- | C] () -- C:\WINDOWS\System32\perfwci.ini [2008-04-15 13:00:00 | 000,002,656 | ---- | C] () -- C:\WINDOWS\System32\netware.drv [2008-04-15 13:00:00 | 000,001,405 | ---- | C] () -- C:\WINDOWS\msdfmap.ini [2008-04-15 13:00:00 | 000,001,295 | ---- | C] () -- C:\WINDOWS\System32\perffilt.ini [2008-04-15 13:00:00 | 000,000,592 | ---- | C] () -- C:\WINDOWS\win.ini [2008-04-15 13:00:00 | 000,000,359 | ---- | C] () -- C:\WINDOWS\System32\prodspec.ini [2008-04-15 13:00:00 | 000,000,259 | ---- | C] () -- C:\WINDOWS\system.ini [2004-06-24 23:00:00 | 000,771,584 | ---- | C] () -- C:\WINDOWS\System32\RGSS100J.dll [2001-10-26 18:29:42 | 000,157,696 | ---- | C] () -- C:\WINDOWS\System32\paqsp.dll [2001-07-06 14:30:02 | 000,003,234 | ---- | C] () -- C:\WINDOWS\System32\HPTCPMON.INI [1996-04-03 20:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys [color=#E56717]========== LOP Check ==========[/color] [2010-09-16 19:12:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\35BB [2010-09-13 23:59:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software [2010-11-13 17:38:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG Security Toolbar [2010-12-16 16:21:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG10 [2010-12-08 21:40:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Bluetooth [2010-11-13 12:23:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\boost_interprocess [2010-09-30 22:55:33 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files [2010-01-28 01:36:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Easy Driver Pro [2010-09-22 22:49:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Fighters [2010-09-13 17:12:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-12-05 23:39:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations [2010-09-19 18:44:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla [2010-02-04 13:38:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\LightScribe [2010-10-25 22:19:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\MFAData [2011-01-15 16:21:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2010-01-28 01:25:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Drivers HeadQuarters [2010-12-05 23:46:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite [2010-09-10 15:27:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PDF Writer [2011-02-09 08:17:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2010-12-27 13:30:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\.ZMatrix [2011-02-08 21:52:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\AVG [2010-09-30 23:06:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\AVG10 [2010-10-06 18:32:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Avnex [2010-09-16 19:06:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\bearsharemediabartb [2010-09-24 06:19:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\BitComet [2010-10-01 11:24:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\BonkEnc [2011-02-05 15:55:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\BSplayer [2011-01-29 13:02:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\BSplayer Pro [2011-02-08 23:42:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\ChomikBox [2010-10-03 16:48:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\CometPlayer [2010-09-13 23:40:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\facemoods.com [2010-02-04 16:48:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Gadu-Gadu 10 [2010-11-12 19:41:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\GetRight [2010-11-07 03:02:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\GetRightToGo [2010-09-30 13:32:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Image Zone Express [2010-09-26 23:51:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\ipla [2011-01-24 19:22:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\JLC's Software [2010-09-07 14:05:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Mikrotik [2010-11-13 14:35:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\NoiseCradle [2010-12-05 23:57:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Nokia [2010-10-05 21:08:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Nowe Gadu-Gadu [2010-09-13 23:47:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\OpenFM [2010-09-07 15:07:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\OpenOffice.org [2010-12-12 12:46:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Opera [2010-12-05 23:48:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\PC Suite [2010-09-10 15:27:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\PDF Writer [2011-01-24 19:22:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\QuickStoresToolbar [2010-11-18 18:41:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\SecondLife [2010-09-13 23:38:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\TeamViewer [2010-09-28 20:53:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\tigerplayer [2011-02-09 10:13:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\uTorrent [2010-12-29 16:17:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\ViGlance [2010-12-29 16:26:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\ViStart [2011-02-09 08:17:46 | 000,000,414 | ---- | M] () -- C:\WINDOWS\Tasks\AVG PC Tuneup 2011 Integrator Start On Windows Logon.job [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2010-08-23 13:02:05 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-08-23 12:55:13 | 000,000,211 | -HS- | M] () -- C:\BOOT.BKK [2010-12-29 14:36:55 | 000,000,354 | -HS- | M] () -- C:\boot.ini [2008-04-15 13:00:00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin [2010-08-23 13:02:05 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-08-23 13:02:05 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-08-23 13:02:05 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2008-04-15 13:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2008-04-15 13:00:00 | 000,251,152 | RHS- | M] () -- C:\ntldr [2011-02-09 08:12:28 | 792,723,456 | -HS- | M] () -- C:\pagefile.sys [2011-01-28 13:31:02 | 000,008,786 | ---- | M] () -- C:\Program1.RPT [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:0B4227B4 < End of report > [/log]
lolplo komentarz 9 lutego 2011 komentarz 9 lutego 2011 ahhh.... takich tematów było ...... ale skoro już pisze tego posta to masz: [url="http://www.forumpc.pl/index.php?showtopic=195504&st=0&p=1187119&hl=qooqle&fromsearch=1&#entry1187119"]>>1<<[/url] [url="http://www.forumpc.pl/index.php?showtopic=195744&st=0&p=1188229&hl=qooqle&fromsearch=1&#entry1188229"]>>2<<[/url] [url="http://www.forumpc.pl/index.php?showtopic=196253&st=0&p=1190980&hl=qooqle&fromsearch=1&#entry1190980"]>>3<<[/url] [url="http://www.forumpc.pl/index.php?showtopic=196609&st=0&p=1192778&hl=qooqle&fromsearch=1&#entry1192778"]>>4<<[/url] [url="http://www.forumpc.pl/index.php?showtopic=196773&st=0&p=1193825&hl=qooqle&fromsearch=1&#entry1193825"]>>5<<[/url]
sewer19 komentarz 9 lutego 2011 komentarz 9 lutego 2011 [quote name='lolplo' date='09 luty 2011 - 16:51' timestamp='1297266820' post='1195077'] ahhh.... takich tematów było ...... ale skoro już pisze tego posta to masz: [/quote] Tak były tylko do każdego trzeba podchodzić indywidualnie tu nie ma gotowych recept
batonxd komentarz 9 lutego 2011 Autor komentarz 9 lutego 2011 (edytowane) czyli mam się zastosować do odpowiedzi lolpo ?
sewer19 komentarz 9 lutego 2011 komentarz 9 lutego 2011 Nie,masz poczekać aż ktoś kompetentny przejrzy logi i poda rozwiązanie
Tomek01 komentarz 9 lutego 2011 komentarz 9 lutego 2011 Tu jest jeszcze infekcja z mediów przenośnych. Odinstaluj: AVG Security Toolbar, QuickStoresToolbar. Użyj z podpiętym pen’em [url="http://www.instalki.pl/programy/download/Windows/antywirusy/UsbFix.html"][color="#0000FF"][b]USBFix[/b][/color][/url], z opcją * Vaccinate. W OTL, w oknie Custom scan/fixes wklej: [code]:OTL IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.bearsh...ar.html?src=ssb IE - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.qooqlle.com/ O33 - MountPoints2\{0cd3c4c6-cd65-11df-983e-000e7ffb134f}\Shell\AutoRun\command - "" = F:\fi.cmd O33 - MountPoints2\{0cd3c4c6-cd65-11df-983e-000e7ffb134f}\Shell\explore\Command - "" = F:\fi.cmd O33 - MountPoints2\{0cd3c4c6-cd65-11df-983e-000e7ffb134f}\Shell\open\Command - "" = F:\fi.cmd O33 - MountPoints2\{8cfa4cd8-bfbc-11df-88fb-000e7ffb134f}\Shell\AutoRun\command - "" = G:\RECYCLER32\dmgr.exe O33 - MountPoints2\{8cfa4cd8-bfbc-11df-88fb-000e7ffb134f}\Shell\open\command - "" = G:\RECYCLER32\dmgr.exe O33 - MountPoints2\{aefde5a0-bda6-11df-88ea-000e7ffb134f}\Shell\AutoRun\command - "" = E:\RECYCLER32\dmgr.exe O33 - MountPoints2\{aefde5a0-bda6-11df-88ea-000e7ffb134f}\Shell\open\command - "" = E:\RECYCLER32\dmgr.exe @Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:0B4227B4 :Files C:\WINDOWS\Tasks\AVG PC Tuneup 2011 Integrator Start On Windows Logon.job :Commands [emptytemp][/code] Klikasz run fix, komputer uruchamia się ponownie. Wrzuć log z usuwania oraz nowe logi: OTL i RSIT
batonxd komentarz 10 lutego 2011 Autor komentarz 10 lutego 2011 niestety nie wiem czemu ale USBFix nie chce się uruchomić zaraz wrzuce logiczym mogę zastąpić USBFix ?nie wiem co zrobić po czyszczeniu program OTL usunął się a problem nie zniknął
Tomek01 komentarz 10 lutego 2011 komentarz 10 lutego 2011 Zamiast USBFix zastosuj [b][color=#0000CD][url=http://download.bleepingcomputer.com//sUBs/Flash_Disinfector.exe]Flash Disinfector[/url][/color][/b], najlepiej z podpiętym pendrive'm czy innymi pamięciami USB. OTL się usunął ?! Tzn, że wcisnąłeś Czyszczenie (CleanUp) zamiast wykonaj skrypt(RunFix). Po tej komendzie OTL się usuwa. Dlatego też nie został wygenerowany log z usuwania. Wykonaj wszystko jeszcze raz.
batonxd komentarz 11 lutego 2011 Autor komentarz 11 lutego 2011 logi z usuwania wrzucam w dwóch dokumentach tekstowychdaje nowe logiproblem nie zniknął
Tomek01 komentarz 11 lutego 2011 komentarz 11 lutego 2011 Tyle logów wrzuconych jako załączniki ! Wstaw je w odpowiednim formacie. Wg poniższego info:
batonxd komentarz 11 lutego 2011 Autor komentarz 11 lutego 2011 [log] OTL logfile created on: 2011-02-11 11:13:13 - Run 1 OTL by OldTimer - Version 3.2.20.6 Folder = C:\Documents and Settings\User\Pulpit Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1 015,00 Mb Total Physical Memory | 275,00 Mb Available Physical Memory | 27,00% Memory free 2,00 Gb Paging File | 1,00 Gb Available in Paging File | 59,00% Paging File free Paging file location(s): C:\pagefile.sys 756 1512 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 37,27 Gb Total Space | 0,41 Gb Free Space | 1,10% Space Free | Partition Type: NTFS Computer Name: USER-FCC60EA01E | User Name: User | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2011-02-11 08:07:23 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe PRC - [2011-02-07 10:29:02 | 000,994,872 | ---- | M] (Google Inc.) -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe PRC - [2011-01-07 01:22:54 | 002,747,744 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgtray.exe PRC - [2011-01-07 01:22:44 | 001,084,256 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgnsx.exe PRC - [2011-01-07 01:22:12 | 001,052,512 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgemcx.exe PRC - [2011-01-06 15:23:20 | 000,737,872 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe PRC - [2011-01-06 15:23:18 | 006,128,720 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe PRC - [2011-01-02 19:29:52 | 000,396,152 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\uTorrent\uTorrent.exe PRC - [2010-12-22 16:58:13 | 012,984,928 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe PRC - [2010-12-05 16:26:40 | 000,654,176 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgrsx.exe PRC - [2010-12-05 16:26:12 | 000,650,592 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgchsvx.exe PRC - [2010-11-22 04:48:46 | 003,226,632 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgfws.exe PRC - [2010-10-22 04:58:18 | 000,265,400 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgwdsvc.exe PRC - [2010-10-22 04:56:58 | 000,845,664 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgcsrvx.exe PRC - [2010-10-22 04:56:48 | 000,745,824 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgam.exe PRC - [2010-04-14 15:08:12 | 000,598,696 | ---- | M] ( ) -- C:\WINDOWS\system32\lxeccoms.exe PRC - [2008-04-15 13:00:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2007-05-28 17:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe PRC - [2007-04-16 15:28:22 | 000,577,536 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE PRC - [2004-12-28 22:38:38 | 000,853,504 | ---- | M] () -- C:\Program Files\WinRAR\WinRAR.exe PRC - [2004-09-29 11:14:36 | 000,069,632 | ---- | M] (HP) -- C:\WINDOWS\system32\HPZipm12.exe PRC - [2003-05-08 11:34:32 | 000,069,632 | ---- | M] (adi) -- C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe PRC - [2003-05-05 08:57:30 | 000,143,360 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMTray.exe PRC - [2002-09-20 16:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2011-02-11 08:07:23 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe MOD - [2010-08-23 17:12:53 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [On_Demand | Stopped] -- -- (NMIndexingService) SRV - [2011-01-06 15:23:18 | 006,128,720 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe -- (AVGIDSAgent) SRV - [2010-11-22 04:48:46 | 003,226,632 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgfws.exe -- (avgfws) SRV - [2010-10-22 04:58:18 | 000,265,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgwdsvc.exe -- (avgwd) SRV - [2010-10-06 11:31:48 | 000,517,448 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe -- (AVG Security Toolbar Service) SRV - [2010-06-14 15:07:14 | 000,615,936 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2010-04-14 15:08:12 | 000,598,696 | ---- | M] ( ) [Auto | Running] -- C:\WINDOWS\System32\lxeccoms.exe -- (lxec_device) SRV - [2010-04-14 15:08:05 | 000,193,192 | ---- | M] () [Auto | Stopped] -- C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxecserv.exe -- (lxecCATSCustConnectService) SRV - [2007-05-28 17:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) [Auto | Running] -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE) SRV - [2004-09-29 11:14:36 | 000,069,632 | ---- | M] (HP) [Auto | Running] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12) SRV - [2002-09-20 16:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) [Auto | Running] -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe -- (SoundMAX Agent Service (default)) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2010-12-08 04:12:38 | 000,251,728 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (Avgldx86) DRV - [2010-11-12 13:19:38 | 000,299,984 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (Avgtdix) DRV - [2010-09-16 14:44:07 | 000,436,792 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2010-09-13 16:27:24 | 000,025,680 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys -- (AVGIDSEH) DRV - [2010-09-07 03:48:56 | 000,034,384 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (Avgmfx86) DRV - [2010-09-07 03:48:50 | 000,026,064 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\avgrkx86.sys -- (Avgrkx86) DRV - [2010-08-19 21:42:38 | 000,030,288 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSFilter.sys -- (AVGIDSFilter) DRV - [2010-08-19 21:42:36 | 000,123,472 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSDriver.sys -- (AVGIDSDriver) DRV - [2010-08-19 21:42:34 | 000,026,192 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSShim.sys -- (AVGIDSShim) DRV - [2010-07-30 14:16:46 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt) DRV - [2010-07-30 14:16:44 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev) DRV - [2010-07-30 14:16:42 | 000,023,040 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc) DRV - [2010-07-30 14:16:38 | 000,018,048 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd) DRV - [2010-07-12 03:33:54 | 000,030,432 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\avgfwdx.sys -- (Avgfwfd) DRV - [2010-07-12 03:33:54 | 000,030,432 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\avgfwdx.sys -- (Avgfwdx) DRV - [2008-12-26 11:56:04 | 000,017,792 | ---- | M] (Avnex) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\vcsvad.sys -- (VCSVADHWSer) Avnex Virtual Audio Device (WDM) DRV - [2008-09-24 10:40:22 | 004,122,368 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM) DRV - [2008-08-26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd) DRV - [2008-07-25 00:18:32 | 000,176,640 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\b57xp32.sys -- (b57w2k) DRV - [2006-09-24 14:28:46 | 000,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan) DRV - [2002-09-16 16:14:32 | 000,004,228 | ---- | M] (PowerQuest Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\PQNTDRV.sys -- (PQNTDrv) DRV - [1998-10-06 13:36:26 | 000,001,984 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\papycpu.sys -- (papycpu) DRV - [1998-10-06 13:36:26 | 000,001,888 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\papyjoy.sys -- (papyjoy) DRV - [1996-04-03 20:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll () IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll () IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.qooqlle.com/ IE - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll () IE - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 FF - HKLM\software\mozilla\Firefox\extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG10\Firefox\ FF - HKLM\software\mozilla\Firefox\extensions\\avg@igeared: C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared [2011-02-09 11:50:41 | 000,002,045 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fcmdSrch.xml O1 HOSTS File: ([2008-04-15 13:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (no name) - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - No CLSID value found. O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.4.8.11.dll (BitComet) O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll (AVG Technologies CZ, s.r.o.) O2 - BHO: (no name) - {74322BF9-DF26-493f-B0DA-6D2FC5E6429E} - No CLSID value found. O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll () O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - File not found O3 - HKLM\..\Toolbar: (no name) - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - No CLSID value found. O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll () O3 - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll () O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe (AVG Technologies CZ, s.r.o.) O4 - HKLM..\Run: [DrvLsnr] C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe (adi) O4 - HKLM..\Run: [GProton] C:\Documents and Settings\All Users\GProton.exe () O4 - HKLM..\Run: [smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe (Analog Devices, Inc.) O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.) O4 - HKU\S-1-5-21-2052111302-492894223-1606980848-1003..\Run: [ALLUpdate] C:\Program Files\ALLPlayer\ALLUpdate.exe () O4 - HKU\S-1-5-21-2052111302-492894223-1606980848-1003..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0 O7 - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 3 O9 - Extra Button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - C:\Program Files\BitComet\tools\BitCometBHO_1.4.8.11.dll (BitComet) O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab (Reg Error: Key error.) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23) O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} http://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab (IWinAmpActiveX Class) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.174.8.1 157.25.5.18 O18 - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll () O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll (AVG Technologies CZ, s.r.o.) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (EXPLORER.EXE) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation) O20 - Winlogon\Notify\qoMgddAT: DllName - qoMgddAT.dll - File not found O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O28 - HKLM ShellExecuteHooks: {6D794CB4-C7CD-4c6f-BFDC-9B77AFBDC02C} - Reg Error: Key error. File not found O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010-08-23 13:02:05 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2011-02-11 08:18:47 | 000,000,000 | RHSD | M] - C:\Autorun.inf -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk /p \??\F:) - File not found O34 - HKLM BootExecute: (autocheck autochk *) - File not found O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgchsvx.exe /sync) - C:\Program Files\AVG\AVG10\avgchsvx.exe (AVG Technologies CZ, s.r.o.) O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgrsx.exe /sync /restart) - C:\Program Files\AVG\AVG10\avgrsx.exe (AVG Technologies CZ, s.r.o.) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: SCSI Class - Driver Group SafeBootMin: sermouse.sys - Driver SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vds - Service SafeBootMin: vga.sys - Driver SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: SCSI Class - Driver Group SafeBootNet: sermouse.sys - Driver SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vga.sys - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2011-02-11 08:18:47 | 000,000,000 | RHSD | C] -- C:\Autorun.inf [2011-02-11 08:11:09 | 000,000,000 | ---D | C] -- C:\_OTL [2011-02-11 08:07:12 | 000,602,624 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe [2011-02-10 18:00:10 | 000,000,000 | ---D | C] -- C:\Program Files\Everest Poker [2011-02-10 16:38:26 | 001,219,736 | ---- | C] (El Desaparecido & C_XX) -- C:\Documents and Settings\User\Pulpit\UsbFix (1).exe [2011-02-10 15:57:17 | 000,000,000 | ---D | C] -- C:\UsbFix [2011-02-10 13:58:31 | 000,000,000 | ---D | C] -- C:\Program Files\Szkola na miare klasa 1b [2011-02-09 15:36:14 | 000,000,000 | ---D | C] -- C:\Program Files\WinISO [2011-02-09 15:36:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\WinISO [2011-02-09 13:59:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\7-Zip [2011-02-09 13:59:28 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip [2011-02-09 13:07:54 | 000,327,168 | ---- | C] (InstallShield Software Corporation) -- C:\WINDOWS\IsUn0415.exe [2011-02-09 11:50:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\InstallMate [2011-02-09 11:50:27 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2011-02-09 09:12:55 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro [2011-02-08 23:59:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Google [2011-02-08 23:52:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\Google Chrome [2011-02-08 22:06:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Pulpit\tapety [2011-02-08 21:41:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Pulpit\programy i gry [2011-02-06 23:47:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\ChomikBox [2011-02-06 23:44:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\Chomikuj.pl [2011-02-06 23:28:00 | 000,000,000 | ---D | C] -- C:\Program Files\ChomikBox [2011-02-02 15:57:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\Virtual DJ [2011-02-02 15:57:34 | 000,000,000 | ---D | C] -- C:\Program Files\VirtualDJ [2011-02-02 15:57:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\VirtualDJ [2011-01-29 13:22:01 | 000,019,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll [2011-01-29 13:20:47 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2 [2011-01-29 13:16:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF [2011-01-29 13:16:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles [2011-01-29 13:05:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\BS.Player [2011-01-29 13:02:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\BSplayer Pro [2011-01-29 13:02:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\BSplayer [2011-01-29 13:02:38 | 000,000,000 | ---D | C] -- C:\Program Files\Webteh [2011-01-29 12:54:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\ALLPlayer [2011-01-29 12:54:14 | 000,000,000 | ---D | C] -- C:\Program Files\NAPI-PROJEKT [2011-01-29 12:54:05 | 000,000,000 | ---D | C] -- C:\Program Files\ALLPlayer [2011-01-29 12:52:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\Vplayer [2011-01-29 12:52:23 | 000,000,000 | ---D | C] -- C:\Program Files\Vplayer [2011-01-26 17:07:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Real [2011-01-25 23:05:44 | 000,000,000 | ---D | C] -- C:\Program Files\Real [2011-01-25 23:05:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Real [2011-01-25 23:05:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Real [2011-01-25 11:21:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\JoWood [2011-01-25 08:28:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Gothic II [2011-01-24 19:22:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\JLC's Software [2011-01-24 19:21:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\JLC's Software [2011-01-24 19:21:53 | 000,000,000 | ---D | C] -- C:\Program Files\JLC's Software [2011-01-24 15:42:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\JoWooD [2011-01-24 15:25:40 | 000,000,000 | ---D | C] -- C:\Program Files\JoWooD [2011-01-23 16:32:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Pulpit\jakieś obrazy [2011-01-15 19:50:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\GTA San Andreas User Files [2011-01-12 23:52:17 | 000,000,000 | ---D | C] -- C:\f392cca3e8185c93e16f64fd [2010-09-07 15:37:08 | 000,442,368 | ---- | C] ( ) -- C:\WINDOWS\System32\lxeccoin.dll [2010-09-07 15:35:35 | 000,364,544 | ---- | C] ( ) -- C:\WINDOWS\System32\lxecinpa.dll [2010-09-07 15:35:35 | 000,356,352 | ---- | C] ( ) -- C:\WINDOWS\System32\LXEChcp.dll [2010-09-07 15:35:34 | 001,048,576 | ---- | C] ( ) -- C:\WINDOWS\System32\lxecserv.dll [2010-09-07 15:35:34 | 000,847,872 | ---- | C] ( ) -- C:\WINDOWS\System32\lxecusb1.dll [2010-09-07 15:35:34 | 000,643,072 | ---- | C] ( ) -- C:\WINDOWS\System32\lxecpmui.dll [2010-09-07 15:35:34 | 000,344,064 | ---- | C] ( ) -- C:\WINDOWS\System32\lxeciesc.dll [2010-09-07 15:35:33 | 000,577,536 | ---- | C] ( ) -- C:\WINDOWS\System32\lxeclmpm.dll [2010-09-07 15:35:32 | 000,802,816 | ---- | C] ( ) -- C:\WINDOWS\System32\lxeccomc.dll [2010-09-07 15:35:32 | 000,688,128 | ---- | C] ( ) -- C:\WINDOWS\System32\lxechbn3.dll [2010-09-07 15:35:32 | 000,372,736 | ---- | C] ( ) -- C:\WINDOWS\System32\lxeccomm.dll [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2011-02-11 10:56:04 | 000,001,128 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2052111302-492894223-1606980848-1003UA.job [2011-02-11 10:55:58 | 000,002,295 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Google Chrome.lnk [2011-02-11 10:22:27 | 000,000,008 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\82 1020 1954 0000 7802 0084 2336.rtf [2011-02-11 08:23:10 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2011-02-11 08:07:23 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe [2011-02-11 00:36:58 | 105,890,045 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm [2011-02-10 23:52:01 | 000,001,076 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2052111302-492894223-1606980848-1003Core.job [2011-02-10 17:10:57 | 000,147,608 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2011-02-10 16:38:28 | 001,219,736 | ---- | M] (El Desaparecido & C_XX) -- C:\Documents and Settings\User\Pulpit\UsbFix (1).exe [2011-02-10 13:58:35 | 000,001,302 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Szkoła na miarę, klasa 1, semestr 2.lnk [2011-02-10 00:15:22 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2011-02-09 20:35:29 | 000,645,082 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\iavifw.avm [2011-02-09 15:58:20 | 000,000,606 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\WinISO.lnk [2011-02-09 12:25:32 | 000,001,724 | -H-- | M] () -- C:\Documents and Settings\User\Moje dokumenty\Default.rdp [2011-02-09 09:31:05 | 000,339,991 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\unconfirmed 32398.exe [2011-02-08 09:34:46 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2011-02-06 23:44:17 | 000,000,830 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\ChomikBox.lnk [2011-02-05 10:21:31 | 000,002,359 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Counter Strike NS.lnk [2011-02-04 10:58:28 | 000,000,797 | ---- | M] () -- C:\WINDOWS\VPlayer.INI [2011-02-04 10:58:27 | 000,000,021 | ---- | M] () -- C:\WINDOWS\VplayerINI.vpl [2011-02-02 15:57:42 | 000,000,694 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Virtual DJ.lnk [2011-01-29 13:21:27 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2011-01-29 13:21:27 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2011-01-29 13:16:35 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf [2011-01-29 12:55:26 | 000,000,797 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\SubEdit-Player.lnk [2011-01-28 13:31:02 | 000,008,786 | ---- | M] () -- C:\Program1.RPT [2011-01-28 09:30:30 | 000,000,720 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\AVG 2011.lnk [2011-01-25 11:39:36 | 000,001,843 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gothic II Złota Edycja.lnk [2011-01-24 19:21:58 | 000,001,777 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\JLC's Internet TV.lnk [2011-01-24 16:02:00 | 000,004,096 | ---- | M] () -- C:\WINDOWS\d3dx.dat [2011-01-23 22:19:43 | 000,000,000 | ---- | M] () -- C:\WINDOWS\Irremote.ini [2011-01-21 15:44:11 | 008,491,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shell32.dll [2011-01-21 15:44:11 | 000,440,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shimgvw.dll [2011-01-16 15:10:58 | 000,002,267 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2011-01-16 14:05:21 | 000,000,654 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk [color=#E56717]========== Files Created - No Company Name ==========[/color] [2011-02-11 10:22:27 | 000,000,008 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\82 1020 1954 0000 7802 0084 2336.rtf [2011-02-10 13:58:35 | 000,001,302 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Szkoła na miarę, klasa 1, semestr 2.lnk [2011-02-09 15:36:20 | 000,000,606 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\WinISO.lnk [2011-02-09 12:24:18 | 000,001,724 | -H-- | C] () -- C:\Documents and Settings\User\Moje dokumenty\Default.rdp [2011-02-09 09:31:04 | 000,339,991 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\unconfirmed 32398.exe [2011-02-08 23:52:42 | 000,002,295 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\Google Chrome.lnk [2011-02-08 23:47:06 | 000,001,128 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2052111302-492894223-1606980848-1003UA.job [2011-02-08 23:47:05 | 000,001,076 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2052111302-492894223-1606980848-1003Core.job [2011-02-06 23:44:16 | 000,000,830 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\ChomikBox.lnk [2011-02-04 10:58:27 | 000,000,797 | ---- | C] () -- C:\WINDOWS\VPlayer.INI [2011-02-04 10:58:27 | 000,000,021 | ---- | C] () -- C:\WINDOWS\VplayerINI.vpl [2011-02-02 15:57:42 | 000,000,694 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\Virtual DJ.lnk [2011-01-29 13:16:35 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf [2011-01-29 12:55:26 | 000,000,797 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\SubEdit-Player.lnk [2011-01-29 12:54:17 | 000,797,184 | ---- | C] () -- C:\WINDOWS\System32\ac3filter.ax [2011-01-29 12:54:17 | 000,790,528 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2011-01-29 12:54:17 | 000,258,048 | ---- | C] () -- C:\WINDOWS\System32\libFLAC.dll [2011-01-28 13:31:00 | 000,008,786 | ---- | C] () -- C:\Program1.RPT [2011-01-25 11:39:36 | 000,001,843 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Gothic II Złota Edycja.lnk [2011-01-24 19:21:58 | 000,001,777 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\JLC's Internet TV.lnk [2011-01-24 16:02:00 | 000,004,096 | ---- | C] () -- C:\WINDOWS\d3dx.dat [2011-01-23 22:19:43 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Irremote.ini [2010-11-15 15:04:44 | 000,000,311 | ---- | C] () -- C:\Documents and Settings\User\Dane aplikacji\scgdfgasfbh.bat [2010-11-12 19:40:41 | 000,000,056 | ---- | C] () -- C:\WINDOWS\wininit.ini [2010-11-05 07:47:52 | 000,004,608 | ---- | C] () -- C:\WINDOWS\cocowawa.dll [2010-10-13 15:51:10 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2010-10-07 22:41:21 | 000,004,305 | ---- | C] () -- C:\WINDOWS\jdncfw-f48.ini [2010-10-07 22:41:21 | 000,001,441 | ---- | C] () -- C:\WINDOWS\cbvmqg_x64.ini [2010-10-03 18:15:09 | 000,000,122 | ---- | C] () -- C:\WINDOWS\System32\ttbup222.dll [2010-10-03 15:58:32 | 000,029,696 | ---- | C] () -- C:\WINDOWS\System32\pthread.dll [2010-09-28 23:15:29 | 001,970,176 | ---- | C] () -- C:\WINDOWS\System32\d3dx9.dll [2010-09-23 08:51:56 | 000,000,095 | ---- | C] () -- C:\WINDOWS\mta.ini [2010-09-22 23:00:52 | 000,001,157 | ---- | C] () -- C:\WINDOWS\System32\urqOIbAq.dll [2010-09-22 22:59:33 | 000,465,832 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat [2010-09-20 13:11:30 | 000,001,153 | ---- | C] () -- C:\WINDOWS\System32\opnLfFWp.dll [2010-09-20 06:48:51 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\fusioncache.dat [2010-09-16 14:44:07 | 000,436,792 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys [2010-09-13 22:07:51 | 000,000,127 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI [2010-09-12 10:44:05 | 000,000,000 | ---- | C] () -- C:\WINDOWS\PROTOCOL.INI [2010-09-11 20:25:19 | 000,001,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\papycpu.sys [2010-09-11 20:25:19 | 000,001,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\papyjoy.sys [2010-09-11 20:25:09 | 000,000,130 | ---- | C] () -- C:\WINDOWS\SIERRA.INI [2010-09-11 16:37:21 | 000,000,682 | ---- | C] () -- C:\WINDOWS\bestplayer.ini [2010-09-11 14:39:23 | 000,024,576 | ---- | C] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-09-11 11:32:02 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll [2010-09-11 11:20:31 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI [2010-09-10 15:38:29 | 000,014,574 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\hpzinstall.log [2010-09-07 15:37:10 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\lxecvs.dll [2010-09-07 15:37:02 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\lxecgcfg.dll [2010-09-07 15:37:01 | 000,294,912 | ---- | C] () -- C:\WINDOWS\System32\lxeccui.dll [2010-09-07 15:37:01 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\lxeccuir.dll [2010-09-07 15:35:35 | 000,331,776 | ---- | C] () -- C:\WINDOWS\System32\LXECinst.dll [2010-09-07 15:35:33 | 000,323,584 | ---- | C] () -- C:\WINDOWS\System32\lxecins.dll [2010-09-07 15:35:33 | 000,262,144 | ---- | C] () -- C:\WINDOWS\System32\lxecinsb.dll [2010-09-07 15:35:33 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\lxecinsr.dll [2010-09-07 15:35:33 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\lxecjswr.dll [2010-09-07 15:35:32 | 000,253,952 | ---- | C] () -- C:\WINDOWS\System32\lxeccu.dll [2010-09-07 15:35:32 | 000,208,896 | ---- | C] () -- C:\WINDOWS\System32\lxecgrd.dll [2010-09-07 15:35:32 | 000,090,112 | ---- | C] () -- C:\WINDOWS\System32\lxeccub.dll [2010-09-07 15:35:32 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\lxeccur.dll [2010-09-07 15:35:27 | 000,299,008 | ---- | C] () -- C:\WINDOWS\System32\LXECsm.dll [2010-09-07 15:35:27 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\LXECsmr.dll [2010-08-24 08:17:37 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2010-08-24 08:09:34 | 000,000,044 | ---- | C] () -- C:\WINDOWS\System32\msssc.dll [2010-08-23 14:49:23 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2010-01-27 17:54:13 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll [2010-01-26 17:23:27 | 000,000,022 | ---- | C] () -- C:\WINDOWS\clofghls.dll [2010-01-26 17:09:41 | 000,000,052 | ---- | C] () -- C:\WINDOWS\mafosav.INI [2010-01-26 12:45:08 | 000,000,044 | ---- | C] () -- C:\WINDOWS\SMWizard.INI [2004-06-24 23:00:00 | 000,771,584 | ---- | C] () -- C:\WINDOWS\System32\RGSS100J.dll [2001-07-06 14:30:02 | 000,003,234 | ---- | C] () -- C:\WINDOWS\System32\HPTCPMON.INI [1996-04-03 20:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys [color=#E56717]========== LOP Check ==========[/color] [2010-09-16 19:12:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\35BB [2010-09-13 23:59:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software [2010-11-13 17:38:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG Security Toolbar [2010-12-16 16:21:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG10 [2010-12-08 21:40:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Bluetooth [2010-11-13 12:23:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\boost_interprocess [2010-09-30 22:55:33 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files [2010-01-28 01:36:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Easy Driver Pro [2010-09-22 22:49:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Fighters [2010-09-13 17:12:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-12-05 23:39:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations [2011-02-09 11:50:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\InstallMate [2010-09-19 18:44:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla [2010-02-04 13:38:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\LightScribe [2010-10-25 22:19:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\MFAData [2011-01-15 16:21:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2010-01-28 01:25:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Drivers HeadQuarters [2010-12-05 23:46:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite [2010-09-10 15:27:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PDF Writer [2011-02-10 17:27:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2010-12-27 13:30:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\.ZMatrix [2011-02-08 21:52:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\AVG [2010-09-30 23:06:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\AVG10 [2010-10-06 18:32:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Avnex [2010-09-16 19:06:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\bearsharemediabartb [2010-09-24 06:19:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\BitComet [2010-10-01 11:24:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\BonkEnc [2011-02-05 15:55:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\BSplayer [2011-01-29 13:02:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\BSplayer Pro [2011-02-08 23:42:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\ChomikBox [2010-10-03 16:48:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\CometPlayer [2010-09-13 23:40:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\facemoods.com [2010-02-04 16:48:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Gadu-Gadu 10 [2010-11-12 19:41:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\GetRight [2010-11-07 03:02:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\GetRightToGo [2010-09-30 13:32:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Image Zone Express [2010-09-26 23:51:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\ipla [2011-01-24 19:22:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\JLC's Software [2010-09-07 14:05:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Mikrotik [2010-11-13 14:35:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\NoiseCradle [2010-12-05 23:57:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Nokia [2010-10-05 21:08:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Nowe Gadu-Gadu [2010-09-13 23:47:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\OpenFM [2010-09-07 15:07:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\OpenOffice.org [2010-12-12 12:46:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Opera [2010-12-05 23:48:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\PC Suite [2010-09-10 15:27:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\PDF Writer [2010-11-18 18:41:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\SecondLife [2010-09-13 23:38:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\TeamViewer [2010-09-28 20:53:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\tigerplayer [2011-02-11 11:40:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\uTorrent [2010-12-29 16:17:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\ViGlance [2010-12-29 16:26:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\ViStart [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2010-08-23 13:02:05 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-08-23 12:55:13 | 000,000,211 | ---- | M] () -- C:\BOOT.BKK [2010-12-29 14:36:55 | 000,000,354 | ---- | M] () -- C:\boot.ini [2008-04-15 13:00:00 | 000,004,952 | ---- | M] () -- C:\Bootfont.bin [2010-08-23 13:02:05 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-08-23 13:02:05 | 000,000,000 | ---- | M] () -- C:\IO.SYS [2010-08-23 13:02:05 | 000,000,000 | ---- | M] () -- C:\MSDOS.SYS [2008-04-15 13:00:00 | 000,047,564 | ---- | M] () -- C:\NTDETECT.COM [2008-04-15 13:00:00 | 000,251,152 | ---- | M] () -- C:\ntldr [2011-02-11 08:23:07 | 792,723,456 | -HS- | M] () -- C:\pagefile.sys [2011-01-28 13:31:02 | 000,008,786 | ---- | M] () -- C:\Program1.RPT [2011-02-11 08:19:27 | 000,000,000 | ---- | M] () -- C:\UsbFix.txt [color=#A23BEC]< MD5 for: AGP440.SYS >[/color] [2008-04-15 13:00:00 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:agp440.sys [2008-04-14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys [2008-04-14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2008-04-15 13:00:00 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys [2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys [2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\dllcache\atapi.sys [2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys [2008-04-15 13:00:00 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0001\DriverFiles\i386\atapi.sys [2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0005\DriverFiles\i386\atapi.sys [color=#A23BEC]< MD5 for: BEEP.SYS >[/color] [2008-04-15 13:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys [2008-04-15 13:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2008-04-15 13:00:00 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys [2008-04-14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys [2008-04-13 23:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2008-04-14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys [2008-04-15 13:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\dllcache\ndis.sys [2008-04-15 13:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys [color=#A23BEC]< MD5 for: USERINIT.EXE >[/color] [2008-04-14 22:51:46 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=2A5B37D520508BE6570A3EA79695F5B5 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe [2008-04-15 13:00:00 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=2A5B37D520508BE6570A3EA79695F5B5 -- C:\WINDOWS\system32\dllcache\userinit.exe [2008-04-15 13:00:00 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=2A5B37D520508BE6570A3EA79695F5B5 -- C:\WINDOWS\system32\userinit.exe [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe [2008-04-15 13:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\dllcache\winlogon.exe [2008-04-15 13:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\winlogon.exe < End of report > [/log][log] OTL Extras logfile created on: 2011-02-11 11:13:14 - Run 1 OTL by OldTimer - Version 3.2.20.6 Folder = C:\Documents and Settings\User\Pulpit Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1 015,00 Mb Total Physical Memory | 275,00 Mb Available Physical Memory | 27,00% Memory free 2,00 Gb Paging File | 1,00 Gb Available in Paging File | 59,00% Paging File free Paging file location(s): C:\pagefile.sys 756 1512 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 37,27 Gb Total Space | 0,41 Gb Free Space | 1,10% Space Free | Partition Type: NTFS Computer Name: USER-FCC60EA01E | User Name: User | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* .html [@ = ChromeHTML] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe (Google Inc.) [HKEY_USERS\S-1-5-21-2052111302-492894223-1606980848-1003\SOFTWARE\Classes\<extension>] .html [@ = ChromeHTML] -- Reg Error: Key error. File not found [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* exefile [open] -- "%1" %* htmlfile [edit] -- Reg Error: Key error. http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.) Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.) Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 1 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "18178:TCP" = 18178:TCP:*:Enabled:BitComet 18178 TCP "18178:UDP" = 18178:UDP:*:Enabled:BitComet 18178 UDP "1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008 [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\WINDOWS\system32\lxeccoms.exe" = C:\WINDOWS\system32\lxeccoms.exe:*:Enabled:Pro800-Pro900 Series Server -- ( ) "C:\Program Files\Gadu-Gadu 10\gg.exe" = C:\Program Files\Gadu-Gadu 10\gg.exe:*:Disabled:Gadu-Gadu 10 -- (GG Network S.A.) "C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe" = C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe -- (Hewlett-Packard Co.) "C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe" = C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe -- (Hewlett-Packard Co.) "C:\Program Files\HP\Digital Imaging\bin\hposid01.exe" = C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe -- (Hewlett-Packard Co.) "C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe -- (Hewlett-Packard Co.) "C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe" = C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe -- (Hewlett-Packard Co.) "C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe" = C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe -- (Hewlett-Packard Co.) "C:\Program Files\valve\hl.exe" = C:\Program Files\valve\hl.exe:*:Enabled:Half-Life Launcher -- (Valve) "C:\Program Files\valve\hlds.exe" = C:\Program Files\valve\hlds.exe:*:Enabled:HLDS Launcher -- (Valve) "C:\Program Files\AVG\AVG10\avgmfapx.exe" = C:\Program Files\AVG\AVG10\avgmfapx.exe:*:Enabled:Instalator AVG -- (AVG Technologies CZ, s.r.o.) "C:\Program Files\Opera\opera.exe" = C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software) "C:\Program Files\AVG\AVG10\avgdiagex.exe" = C:\Program Files\AVG\AVG10\avgdiagex.exe:*:Enabled:Diagnostyka AVG 2011 -- (AVG Technologies CZ, s.r.o.) "C:\Program Files\AVG\AVG10\avgnsx.exe" = C:\Program Files\AVG\AVG10\avgnsx.exe:*:Enabled:Ochrona Sieci -- (AVG Technologies CZ, s.r.o.) "C:\Program Files\AVG\AVG10\avgam.exe" = C:\Program Files\AVG\AVG10\avgam.exe:*:Enabled:Menedżer alarmów systemu AVG -- (AVG Technologies CZ, s.r.o.) "C:\Program Files\AVG\AVG10\avgemcx.exe" = C:\Program Files\AVG\AVG10\avgemcx.exe:*:Enabled:Uniwersalny skaner poczty e-mail -- (AVG Technologies CZ, s.r.o.) "C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.) [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{03B1B42B-F6DE-41d9-8CFF-DC44E895C7A7}" = PhotoGallery "{0611BD4E-4FE4-4a62-B0C0-18A4CC463428}" = CP_Package_Variety1 "{089DD780-DB3F-4CDB-A0C2-111360247298}" = PC Connectivity Solution "{09984AEC-6B9F-4ca7-B78D-CB44D4771DA3}" = Destinations "{0B33B738-AD79-4E32-90C5-E67BFB10BBFF}" = AiO_Scan "{15EE79F4-4ED1-4267-9B0F-351009325D7D}" = HP Software Update "{172975EB-9465-4861-95B5-C7BB6D3DE62A}" = DocumentViewer "{193DB24F-9A66-4896-8404-22D53EA89075}" = 1400_Help "{1C139D7D-9FEA-468d-A9C8-2A6E3BDE564A}" = CP_Package_Variety3 "{1EE88B84-7BE5-4FB5-8DEA-B81D5409D62E}" = Opera 11.00 "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{21DB3D90-D816-4092-A260-CA3F6B55A6DD}" = Sonic_PrimoSDK "{23A7B376-BBEC-4e76-BBD7-0F155E70D74B}" = CP_Panorama1Config "{266959FA-0AEE-41D0-A88E-F1EAC10A7C14}" = 1400 "{26A24AE4-039D-4CA4-87B4-2F83216020F0}" = Java(TM) 6 Update 20 "{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 23 "{2CADCEAB-D5DA-44D6-B5FC-7DEE87AB3C0C}" = Unload "{30C19FF2-7FBA-4d09-B9DE-1659977F64F6}" = TrayApp "{32BDCCB8-9DC8-496d-9DB1-F77510775BDB}" = InstantShareDevices "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{36E47DA1-10E1-45d9-8B19-14D19607CDCF}" = CP_CalendarTemplates1 "{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{50316C0A-CC2A-460A-9EA5-F486E54AC17D}_is1" = AVG PC Tuneup 2011 "{53EE9E42-CECB-4C92-BF76-9CA65DAF8F1C}" = FullDPAppQFolder "{54E3707F-808E-4fd4-95C9-15D1AB077E5D}" = NewCopy "{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml "{56EE8B17-8274-418d-89AC-C057C5DB251E}" = RandMap "{56F8AFC3-FA98-4ff1-9673-8A026CBF85BE}" = WebReg "{5A01C58E-B0EC-49b9-AD71-7C0468688087}" = CP_Package_Basic1 "{5A9FE525-8B8F-4701-A937-7F6745A4E9C7}" = RGSS-RTP Standard "{5B622B7A-60FB-4630-B11D-F121D20BCCD6}" = MarketResearch "{5B79CFD1-6845-4158-9D7D-6BE89DF2C135}" = HP PSC & OfficeJet 5.3.B "{5F26311C-B135-4F7F-B11E-8E650F83651E}" = DeviceFunctionQFolder "{64CB2553-C109-4132-AA51-1F421B515FD1}" = Microsoft .NET Framework 1.1 Polish Language Pack "{66BA8C26-AFE4-4408-807B-43E76B57EF53}" = SkinsHP1 "{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder "{6BB6627C-694F-4FDC-A3E5-C7F4BED4C724}" = DocProc "{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}" = PartitionMagic "{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2 "{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder "{6FB6D550-DDC4-4996-9CDF-91C34F0A4C4A}" = Gothic II Złota Edycja "{7850A6D2-CBEA-4728-9877-F1BEDEA9F619}" = AiOSoftware "{7C03270C-4FAB-4F5C-B10D-52FEDA190790}" = DocumentViewerQFolder "{7C9B95B7-B598-4398-B30F-7F6827192E6C}" = ProductContext "{7E27304E-BAA2-4d90-A34E-76641FAFABB4}" = CP_AtenaShokunin1Config "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{8727531E-6C58-4852-A90B-39CF45E269A9}" = OpenOffice.org 3.2 "{8A708DD8-A5E6-11D4-A706-000629E95E20}" = Intel(R) Extreme Graphics 2 Driver "{923A7F5A-1E8C-4FBE-8DF6-85940A60A79F}" = Readme "{A05BE20E-6510-44BC-95ED-6E6D730407D3}" = Vplayer "{A195B13E-A5E3-4BAF-A995-7F70F445CD06}" = ScannerCopy "{A276502A-8979-44FB-8090-90CF72F22ABC}" = AVG 2011 "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{A483F88A-41E9-45B2-AAC9-A823DD9B4873}" = PS TO PC CONVERTER "{A5BB5365-EFB4-44c3-A7E2-EB59B7EFD23D}" = CueTour "{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder "{AC76BA86-7AD7-1045-7B44-A94000000001}" = Adobe Reader 9.4.1 - Polish "{B395BC1D-CC06-425E-9049-4CD985EFF004}" = LightScribe 1.8.15.1 "{B4D279F1-4309-49cc-A4B5-3A0D2E59C7B5}" = PanoStandAlone "{B824B5C9-849F-4b9e-9EA7-6FD8CD8116DA}" = CP_Package_Variety2 "{B996AE66-10DB-4ac5-B151-E8B4BFBC42FC}" = BufferChm "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{C506A18C-1469-4678-B094-F4EC9DAE6DB7}" = Scan "{C510CA36-98D6-4F07-8AFF-81E7399A075B}" = 1400Trb "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 "{CE24344F-DFD8-40C8-8FD8-C9740B5F25AC}" = Fax "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{D22AFEDF-6A5B-459D-A9EA-D16E422E4C18}" = Nokia Connectivity Cable Driver "{D642E38E-0D24-486C-9A2D-E316DD696F4B}" = Microsoft XML Parser "{E3F90083-80D4-4b5a-87C7-E97E12F5516D}" = HPProductAssistant "{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.0 "{E8870D92-54F6-4AC7-82D0-7DCDFB1F00AE}" = Cs Non Steam "{E9846102-5AEE-488E-8DE1-05316D1D3E47}" = HP WIRELESS LAN PCI CARD 802.11B WL220 Driver "{EA103B64-C0E4-4C0E-A506-751590E1653D}" = SolutionCenter "{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX "{F4C2E5F5-2970-45f4-ABD3-C180C4D961C4}" = Status "{F4C68898-EBA5-46A9-82B3-2D30426086BF}" = AVG 2011 "{F870B987-18BC-45FC-9BE8-35C02DCDA10F}" = Broadcom NetXtreme Ethernet Controller "{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio "{FE64AE29-0883-4C70-8388-DC026019C900}" = HP Image Zone Express "504244733D18C8F63FF584AEB290E3904E791693" = Pakiet sterowników systemu Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0) "7-Zip" = 7-Zip 9.20 "Adobe Shockwave Player" = Adobe Shockwave Player "ALLPlayer_is1" = ALLPlayer V4.X "AVG" = AVG 2011 "BitComet" = BitComet 1.23 "BSPlayerf" = BS.Player FREE "Bullzip PDF Printer_is1" = Bullzip PDF Printer 7.1.0.1195 "ChomikBox" = ChomikBox "ffdshow_is1" = ffdshow [rev 1723] [2007-12-24] "Gadu-Gadu 10" = Gadu-Gadu 10 "GPL Ghostscript Lite_is1" = GPL Ghostscript Lite 8.70 "HID Plugin_is1" = DeepSoftware HID Plugin for Winamp Player v1.5.3.4 "InstallShield_{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}" = PowerQuest PartitionMagic 8.0 Demo "JLC's Internet TV" = JLC's Internet TV "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1 "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP "Native Instruments Service Center" = Native Instruments Service Center "NVIDIA Drivers" = NVIDIA Drivers "SpeedFan" = SpeedFan (remove only) "SubEdit-Player_is1" = SubEdit-Player "Super Mario 3 : Mario Forever" = Super Mario 3 : Mario Forever "Szkoła na miarę, klasa 1, semestr 2" = Szkoła na miarę, klasa 1, semestr 2 "Usbfix" = UsbFix By El Desaparecido & C_XX "uTorrent" = µTorrent "Virtual DJ - Atomix Productions" = Virtual DJ - Atomix Productions "VLC media player" = VLC media player 1.1.5 "Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5 "Wdf01009" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.9 "Winamp" = Winamp "Windows Media Format Runtime" = Windows Media Format 11 runtime "Windows Media Player" = Windows Media Player 11 "WinISO_is1" = WinISO 5.3 "WinRAR archiver" = Archiwizator WinRAR "WMFDist11" = Windows Media Format 11 runtime "wmp11" = Windows Media Player 11 "WrzutaMediaDownloader" = Wrzuta Media Downloader "Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0 [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-2052111302-492894223-1606980848-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Google Chrome" = Google Chrome "Winamp Detect" = Detektor Winampa [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ Application Events ] Error - 2011-02-09 04:13:26 | Computer Name = USER-FCC60EA01E | Source = Application Hang | ID = 1002 Description = Aplikacja zawieszająca RSIT.exe, wersja 3.3.2.0, moduł zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000. Error - 2011-02-09 04:25:45 | Computer Name = USER-FCC60EA01E | Source = crypt32 | ID = 131083 Description = Nie można wyodrębnić głównej listy innych firm z pliku cab automatycznej aktualizacji z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>, wystąpił błąd: Wystąpił wewnętrzny błąd obsługi łańcucha certyfikatów. Error - 2011-02-09 07:25:00 | Computer Name = USER-FCC60EA01E | Source = crypt32 | ID = 131083 Description = Nie można wyodrębnić głównej listy innych firm z pliku cab automatycznej aktualizacji z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>, wystąpił błąd: Wystąpił wewnętrzny błąd obsługi łańcucha certyfikatów. Error - 2011-02-09 08:50:11 | Computer Name = USER-FCC60EA01E | Source = Application Hang | ID = 1002 Description = Aplikacja zawieszająca notepad.exe, wersja 5.1.2600.5512, moduł zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000. Error - 2011-02-09 08:51:39 | Computer Name = USER-FCC60EA01E | Source = Application Hang | ID = 1002 Description = Aplikacja zawieszająca bsplayer.exe, wersja 2.5.7.1051, moduł zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000. Error - 2011-02-10 11:06:56 | Computer Name = USER-FCC60EA01E | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd start.exe, wersja 0.0.0.0, moduł powodujący błąd start.exe, wersja 0.0.0.0, adres błędu 0x00032e80. Error - 2011-02-11 03:13:15 | Computer Name = USER-FCC60EA01E | Source = Application Hang | ID = 1002 Description = Aplikacja zawieszająca OTL.exe, wersja 3.2.20.6, moduł zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000. Error - 2011-02-11 03:13:19 | Computer Name = USER-FCC60EA01E | Source = Application Hang | ID = 1002 Description = Aplikacja zawieszająca OTL.exe, wersja 3.2.20.6, moduł zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000. Error - 2011-02-11 03:13:20 | Computer Name = USER-FCC60EA01E | Source = Application Hang | ID = 1002 Description = Aplikacja zawieszająca OTL.exe, wersja 3.2.20.6, moduł zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000. [ System Events ] Error - 2011-02-11 05:07:19 | Computer Name = USER-FCC60EA01E | Source = DCOM | ID = 10000 Description = Nie można uruchomić serwera DCOM: {C2BFE331-6739-4270-86C9-493D9A04CD38}. Błąd: „%2” wystąpił podczas uruchamiania tego polecenia: C:\WINDOWS\system32\igfxsrvc.exe -Embedding Error - 2011-02-11 05:07:19 | Computer Name = USER-FCC60EA01E | Source = DCOM | ID = 10000 Description = Nie można uruchomić serwera DCOM: {078AEF33-C48A-49F7-AFF3-A0EE810BFE7C}. Błąd: „%2” wystąpił podczas uruchamiania tego polecenia: C:\WINDOWS\system32\igfxsrvc.exe -Embedding Error - 2011-02-11 05:07:34 | Computer Name = USER-FCC60EA01E | Source = DCOM | ID = 10000 Description = Nie można uruchomić serwera DCOM: {C2BFE331-6739-4270-86C9-493D9A04CD38}. Błąd: „%2” wystąpił podczas uruchamiania tego polecenia: C:\WINDOWS\system32\igfxsrvc.exe -Embedding Error - 2011-02-11 05:07:34 | Computer Name = USER-FCC60EA01E | Source = DCOM | ID = 10000 Description = Nie można uruchomić serwera DCOM: {078AEF33-C48A-49F7-AFF3-A0EE810BFE7C}. Błąd: „%2” wystąpił podczas uruchamiania tego polecenia: C:\WINDOWS\system32\igfxsrvc.exe -Embedding Error - 2011-02-11 05:22:25 | Computer Name = USER-FCC60EA01E | Source = DCOM | ID = 10000 Description = Nie można uruchomić serwera DCOM: {C2BFE331-6739-4270-86C9-493D9A04CD38}. Błąd: „%2” wystąpił podczas uruchamiania tego polecenia: C:\WINDOWS\system32\igfxsrvc.exe -Embedding Error - 2011-02-11 05:22:25 | Computer Name = USER-FCC60EA01E | Source = DCOM | ID = 10000 Description = Nie można uruchomić serwera DCOM: {078AEF33-C48A-49F7-AFF3-A0EE810BFE7C}. Błąd: „%2” wystąpił podczas uruchamiania tego polecenia: C:\WINDOWS\system32\igfxsrvc.exe -Embedding Error - 2011-02-11 05:53:50 | Computer Name = USER-FCC60EA01E | Source = DCOM | ID = 10000 Description = Nie można uruchomić serwera DCOM: {C2BFE331-6739-4270-86C9-493D9A04CD38}. Błąd: „%2” wystąpił podczas uruchamiania tego polecenia: C:\WINDOWS\system32\igfxsrvc.exe -Embedding Error - 2011-02-11 05:53:50 | Computer Name = USER-FCC60EA01E | Source = DCOM | ID = 10000 Description = Nie można uruchomić serwera DCOM: {078AEF33-C48A-49F7-AFF3-A0EE810BFE7C}. Błąd: „%2” wystąpił podczas uruchamiania tego polecenia: C:\WINDOWS\system32\igfxsrvc.exe -Embedding Error - 2011-02-11 06:05:14 | Computer Name = USER-FCC60EA01E | Source = DCOM | ID = 10000 Description = Nie można uruchomić serwera DCOM: {C2BFE331-6739-4270-86C9-493D9A04CD38}. Błąd: „%2” wystąpił podczas uruchamiania tego polecenia: C:\WINDOWS\system32\igfxsrvc.exe -Embedding Error - 2011-02-11 06:05:14 | Computer Name = USER-FCC60EA01E | Source = DCOM | ID = 10000 Description = Nie można uruchomić serwera DCOM: {078AEF33-C48A-49F7-AFF3-A0EE810BFE7C}. Błąd: „%2” wystąpił podczas uruchamiania tego polecenia: C:\WINDOWS\system32\igfxsrvc.exe -Embedding < End of report > [/log][log] All processes killed ========== OTL ========== HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully! HKU\S-1-5-21-2052111302-492894223-1606980848-1003\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully! Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0cd3c4c6-cd65-11df-983e-000e7ffb134f}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0cd3c4c6-cd65-11df-983e-000e7ffb134f}\ not found. File F:\fi.cmd not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0cd3c4c6-cd65-11df-983e-000e7ffb134f}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0cd3c4c6-cd65-11df-983e-000e7ffb134f}\ not found. File F:\fi.cmd not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0cd3c4c6-cd65-11df-983e-000e7ffb134f}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0cd3c4c6-cd65-11df-983e-000e7ffb134f}\ not found. File F:\fi.cmd not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8cfa4cd8-bfbc-11df-88fb-000e7ffb134f}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8cfa4cd8-bfbc-11df-88fb-000e7ffb134f}\ not found. File G:\RECYCLER32\dmgr.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8cfa4cd8-bfbc-11df-88fb-000e7ffb134f}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8cfa4cd8-bfbc-11df-88fb-000e7ffb134f}\ not found. File G:\RECYCLER32\dmgr.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{aefde5a0-bda6-11df-88ea-000e7ffb134f}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{aefde5a0-bda6-11df-88ea-000e7ffb134f}\ not found. File E:\RECYCLER32\dmgr.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{aefde5a0-bda6-11df-88ea-000e7ffb134f}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{aefde5a0-bda6-11df-88ea-000e7ffb134f}\ not found. File E:\RECYCLER32\dmgr.exe not found. Unable to delete ADS C:\Documents and Settings\All Users\Dane aplikacji\TEMP:0B4227B4 . ========== FILES ========== File\Folder C:\WINDOWS\Tasks\AVG PC Tuneup 2011 Integrator Start On Windows Logon.job not found. ========== COMMANDS ========== [EMPTYTEMP] User: Administrator ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Administrator.USER-FCC60EA01E ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Administrator.USER-FCC60EA01E.000 ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Google Chrome cache emptied: 0 bytes ->Flash cache emptied: 0 bytes User: All Users User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: LocalService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 32768 bytes User: NetworkService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: User ->Temp folder emptied: 72258 bytes ->Temporary Internet Files folder emptied: 33170 bytes ->Java cache emptied: 0 bytes ->Google Chrome cache emptied: 6918927 bytes ->Opera cache emptied: 0 bytes ->Flash cache emptied: 6393 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 2469895 bytes %systemroot%\System32 .tmp files removed: 2206244 bytes %systemroot%\System32\dllcache .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 49408 bytes Windows Temp folder emptied: 17371 bytes RecycleBin emptied: 0 bytes Total Files Cleaned = 11,00 mb OTL by OldTimer - Version 3.2.20.6 log created on 02112011_082027 Files\Folders moved on Reboot... Registry entries deleted on Reboot... [/log]ok ?[log] info.txt logfile of random's system information tool 1.08 2011-02-11 15:54:02 ======Uninstall list====== -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf µTorrent-->"C:\Program Files\uTorrent\uTorrent.exe" /UNINSTALL 7-Zip 9.20-->"C:\Program Files\7-Zip\Uninstall.exe" Adobe Reader 9.4.1 - Polish-->MsiExec.exe /I{AC76BA86-7AD7-1045-7B44-A94000000001} Adobe Shockwave Player-->C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log Aktualizacja zabezpieczeń dla systemu Windows Internet Explorer 8 (KB2360131)-->"C:\WINDOWS\ie8updates\KB2360131-IE8\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows Internet Explorer 8 (KB2416400)-->"C:\WINDOWS\ie8updates\KB2416400-IE8\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows Internet Explorer 8 (KB2482017)-->"C:\WINDOWS\ie8updates\KB2482017-IE8\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB2393802)-->"C:\WINDOWS\$NtUninstallKB2393802$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB2476687)-->"C:\WINDOWS\$NtUninstallKB2476687$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB2478960)-->"C:\WINDOWS\$NtUninstallKB2478960$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB2478971)-->"C:\WINDOWS\$NtUninstallKB2478971$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB2479628)-->"C:\WINDOWS\$NtUninstallKB2479628$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB2483185)-->"C:\WINDOWS\$NtUninstallKB2483185$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB2485376)-->"C:\WINDOWS\$NtUninstallKB2485376$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf ALLPlayer V4.X-->"C:\Program Files\ALLPlayer\unins000.exe" Archiwizator WinRAR-->C:\Program Files\WinRAR\uninstall.exe AVG 2011-->"C:\Program Files\AVG\AVG10\avgmfapx.exe" /AppMode=SETUP /Uninstall AVG 2011-->MsiExec.exe /I{A276502A-8979-44FB-8090-90CF72F22ABC} AVG 2011-->MsiExec.exe /I{F4C68898-EBA5-46A9-82B3-2D30426086BF} AVG PC Tuneup 2011-->"C:\Program Files\AVG\AVG PC Tuneup 2011\unins000.exe" Broadcom NetXtreme Ethernet Controller-->MsiExec.exe /X{F870B987-18BC-45FC-9BE8-35C02DCDA10F} BS.Player FREE-->"C:\Program Files\Webteh\BSplayer\uninstall.exe" ChomikBox-->"C:\Program Files\ChomikBox\ChomikBoxSetup.exe" /uninstall Cs Non Steam-->MsiExec.exe /I{E8870D92-54F6-4AC7-82D0-7DCDFB1F00AE} DeepSoftware HID Plugin for Winamp Player v1.5.3.4-->"C:\Program Files\HID Plugin\unins000.exe" ffdshow [rev 1723] [2007-12-24]-->"C:\Program Files\MpcStar\Codecs\ffdshow\unins000.exe" Gadu-Gadu 10-->C:\Program Files\Gadu-Gadu 10\Uninstall.exe Gothic II Złota Edycja-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6FB6D550-DDC4-4996-9CDF-91C34F0A4C4A}\setup.exe" -l0x15 -removeonly Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT="" Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT="" HP Image Zone Express-->MsiExec.exe /X{FE64AE29-0883-4C70-8388-DC026019C900} HP PSC & OfficeJet 5.3.B-->"C:\Program Files\HP\Digital Imaging\{5B79CFD1-6845-4158-9D7D-6BE89DF2C135}\setup\hpzscr01.exe" -datfile hposcr07.dat HP Software Update-->MsiExec.exe /X{15EE79F4-4ED1-4267-9B0F-351009325D7D} HP WIRELESS LAN PCI CARD 802.11B WL220 Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E9846102-5AEE-488E-8DE1-05316D1D3E47}\WIN2K\Setup.exe" Java(TM) 6 Update 20-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216020F0} Java(TM) 6 Update 23-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216021FF} JLC's Internet TV-->"C:\Program Files\JLC's Software\Internet TV\Uninstall.exe" Microsoft .NET Framework 1.1 Polish Language Pack-->MsiExec.exe /X{64CB2553-C109-4132-AA51-1F421B515FD1} Microsoft .NET Framework 1.1 Security Update (KB2416447)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M2416447\M2416447Uninstall.msp" Microsoft .NET Framework 1.1 Security Update (KB979906)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M979906\M979906Uninstall.msp" Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7} Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe" Microsoft Kernel-Mode Driver Framework Feature Pack 1.5-->"C:\WINDOWS\$NtUninstallWdf01005$\spuninst\spuninst.exe" Microsoft Kernel-Mode Driver Framework Feature Pack 1.9-->"C:\WINDOWS\$NtUninstallWdf01009$\spuninst\spuninst.exe" Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe" Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c} Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989} MSVC80_x86_v2-->MsiExec.exe /I{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6} MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71} MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC} Native Instruments Service Center-->C:\PROGRA~1\NATIVE~1\SERVIC~1\UNWISE.EXE C:\PROGRA~1\NATIVE~1\SERVIC~1\INSTALL.LOG neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B} Nokia Connectivity Cable Driver-->MsiExec.exe /I{D22AFEDF-6A5B-459D-A9EA-D16E422E4C18} OpenOffice.org 3.2-->MsiExec.exe /I{8727531E-6C58-4852-A90B-39CF45E269A9} Opera 11.00-->MsiExec.exe /X{1EE88B84-7BE5-4FB5-8DEA-B81D5409D62E} Pakiet sterowników systemu Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)-->C:\PROGRA~1\DIFX\B4723E9A0713E5B1\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\pccsmcfd_A3B3916E5D8138F59EE218321B27B044D3B18294\pccsmcfd.inf PC Connectivity Solution-->MsiExec.exe /I{089DD780-DB3F-4CDB-A0C2-111360247298} PS TO PC CONVERTER-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0700\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A483F88A-41E9-45B2-AAC9-A823DD9B4873}\setup.exe" -l0x9 Realtek AC'97 Audio-->Alcrmv.exe -r -m RGSS-RTP Standard-->MsiExec.exe /I{5A9FE525-8B8F-4701-A937-7F6745A4E9C7} Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A8894F19-59C8-38D2-8A75-36C0CCE56A5B} /qb+ REBOOTPROMPT="" Skype™ 5.0-->MsiExec.exe /X{E633D396-5188-4E9D-8F6B-BFB8BF3467E8} SoundMAX-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F0A37341-D692-11D4-A984-009027EC0A9C}\Setup.exe" SpeedFan (remove only)-->"C:\Program Files\SpeedFan\uninstall.exe" SubEdit-Player-->"C:\Program Files\SubEdit-Player\unins000.exe" Super Mario 3 : Mario Forever-->C:\Program Files\softendo.com\Mario Forever\Uninstal.exe Szkoła na miarę, klasa 1, semestr 2-->C:\WINDOWS\IsUn0415.exe -f"C:\Program Files\Szkola na miare klasa 1b\Uninst.isu" -c"C:\Program Files\Szkola na miare klasa 1b\UninstallProject.dll" Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT="" UsbFix By El Desaparecido & C_XX-->"C:\UsbFix\Un-UsbFix.exe" VCRedistSetup-->MsiExec.exe /I{3921A67A-5AB1-4E48-9444-C71814CF3027} Virtual DJ - Atomix Productions-->C:\PROGRA~1\VIRTUA~1\UNWISE.EXE C:\PROGRA~1\VIRTUA~1\INSTALL.LOG VLC media player 1.1.5-->C:\Program Files\VideoLAN\VLC\uninstall.exe Vplayer-->MsiExec.exe /I{A05BE20E-6510-44BC-95ED-6E6D730407D3} Winamp-->"C:\Program Files\Winamp\UninstWA.exe" Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe" Windows Media Player 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe" WinISO 5.3-->"C:\Program Files\WinISO\unins000.exe" Wrzuta Media Downloader-->"C:\Program Files\Dragonshorn Studios\WMD\uninstall.exe" ======System event log====== Computer Name: USER-FCC60EA01E Event Code: 10000 Message: Nie można uruchomić serwera DCOM: {078AEF33-C48A-49F7-AFF3-A0EE810BFE7C}. Błąd: „%2” wystąpił podczas uruchamiania tego polecenia: C:\WINDOWS\system32\igfxsrvc.exe -Embedding Record Number: 5 Source Name: DCOM Time Written: 20110208230414.000000+060 Event Type: błąd User: USER-FCC60EA01E\User Computer Name: USER-FCC60EA01E Event Code: 10000 Message: Nie można uruchomić serwera DCOM: {C2BFE331-6739-4270-86C9-493D9A04CD38}. Błąd: „%2” wystąpił podczas uruchamiania tego polecenia: C:\WINDOWS\system32\igfxsrvc.exe -Embedding Record Number: 4 Source Name: DCOM Time Written: 20110208230414.000000+060 Event Type: błąd User: USER-FCC60EA01E\User Computer Name: USER-FCC60EA01E Event Code: 4226 Message: Protokół TCP/IP osiągnął limit zabezpieczeń ustalony dla liczby równoczesnych prób połączeń TCP. Record Number: 3 Source Name: Tcpip Time Written: 20110208225408.000000+060 Event Type: ostrzeżenie User: Computer Name: USER-FCC60EA01E Event Code: 10000 Message: Nie można uruchomić serwera DCOM: {078AEF33-C48A-49F7-AFF3-A0EE810BFE7C}. Błąd: „%2” wystąpił podczas uruchamiania tego polecenia: C:\WINDOWS\system32\igfxsrvc.exe -Embedding Record Number: 2 Source Name: DCOM Time Written: 20110208223900.000000+060 Event Type: błąd User: USER-FCC60EA01E\User Computer Name: USER-FCC60EA01E Event Code: 10000 Message: Nie można uruchomić serwera DCOM: {C2BFE331-6739-4270-86C9-493D9A04CD38}. Błąd: „%2” wystąpił podczas uruchamiania tego polecenia: C:\WINDOWS\system32\igfxsrvc.exe -Embedding Record Number: 1 Source Name: DCOM Time Written: 20110208223900.000000+060 Event Type: błąd User: USER-FCC60EA01E\User =====Application event log===== Computer Name: USER-FCC60EA01E Event Code: 1800 Message: Usługa Centrum zabezpieczeń systemu Windows została uruchomiona. Record Number: 5 Source Name: SecurityCenter Time Written: 20110209081256.000000+060 Event Type: informacje User: Computer Name: USER-FCC60EA01E Event Code: 4 Message: The LightScribe Service started successfully. Record Number: 4 Source Name: LightScribeService Time Written: 20110209081248.000000+060 Event Type: informacje User: Computer Name: USER-FCC60EA01E Event Code: 11724 Message: Product: Google Update Helper -- Removal completed successfully. Record Number: 3 Source Name: MsiInstaller Time Written: 20110208235907.000000+060 Event Type: informacje User: ZARZĄDZANIE NT\SYSTEM Computer Name: USER-FCC60EA01E Event Code: 2 Message: Pomyślnie wykonano automatyczne pobranie aktualizacji listy głównej plików cab innych firm z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> Record Number: 2 Source Name: crypt32 Time Written: 20110208234715.000000+060 Event Type: informacje User: Computer Name: USER-FCC60EA01E Event Code: 7 Message: Pomyślnie wykonano automatyczne pobranie aktualizacji numeru sekwencji listy głównej innych firm z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> Record Number: 1 Source Name: crypt32 Time Written: 20110208234714.000000+060 Event Type: informacje User: ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "Path"=C:\Program Files\PC Connectivity Solution\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem "windir"=%SystemRoot% "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_LEVEL"=15 "PROCESSOR_IDENTIFIER"=x86 Family 15 Model 2 Stepping 9, GenuineIntel "PROCESSOR_REVISION"=0209 "NUMBER_OF_PROCESSORS"=1 "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP -----------------EOF----------------- [/log][log] Logfile of random's system information tool 1.08 (written by random/random) Run by User at 2011-02-11 15:53:14 Microsoft Windows XP Professional Dodatek Service Pack 3 System drive C: has 5 GB (13%) free of 38 GB Total RAM: 1015 MB (35% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 15:53:51, on 2011-02-11 Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\PROGRA~1\AVG\AVG10\avgchsvx.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\EXPLORER.EXE C:\Program Files\AVG\AVG10\avgfws.exe C:\Program Files\AVG\AVG10\avgwdsvc.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Common Files\LightScribe\LSSrvc.exe C:\WINDOWS\system32\lxeccoms.exe C:\WINDOWS\system32\HPZipm12.exe C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe C:\Program Files\AVG\AVG10\avgam.exe C:\Program Files\AVG\AVG10\avgnsx.exe C:\Program Files\AVG\AVG10\avgemcx.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\HP\HP Software Update\HPWuSchd2.exe C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe C:\Program Files\AVG\AVG10\avgtray.exe C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\Analog Devices\SoundMAX\SMTray.exe C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\uTorrent\uTorrent.exe C:\Program Files\Messenger\msmsgs.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe C:\Program Files\AVG\AVG10\avgcsrvx.exe C:\PROGRA~1\AVG\AVG10\avgrsx.exe C:\Program Files\AVG\AVG10\avgcsrvx.exe C:\Program Files\Gadu-Gadu 10\gg.exe C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZSTC12.exe C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZENG12.exe C:\Documents and Settings\User\Pulpit\unconfirmed 32398.exe C:\Program Files\trend micro\User.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.bearshare.com/sidebar.html?src=ssb R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.qooqlle.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,EXPLORER.EXE O2 - BHO: MediaBar - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - (no file) O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.4.8.11.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll O2 - BHO: UrlHelper Class - {74322BF9-DF26-493f-B0DA-6D2FC5E6429E} - (no file) O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O2 - BHO: IEPluginBHO - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\User\Dane aplikacji\Nowe Gadu-Gadu\_userdata\ggbho.1.dll (file missing) O3 - Toolbar: MediaBar - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - (no file) O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll O3 - Toolbar: (no name) - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - (no file) O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe O4 - HKLM\..\Run: [DrvLsnr] C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe O4 - HKLM\..\Run: [GProton] %ALLUSERSPROFILE%\GProton.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe" O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [ALLUpdate] "C:\Program Files\ALLPlayer\ALLUpdate.exe" "sleep" O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe" /c O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA LOKALNA') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA SIECIOWA') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O8 - Extra context menu item: Pobierz wszystko za pomocą BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm O8 - Extra context menu item: Pobierz za pomocą BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.4.8.11.dll/206 (file missing) O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) - http://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab O18 - Protocol: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O20 - AppInit_DLLs: O20 - Winlogon Notify: qoMgddAT - qoMgddAT.dll (file missing) O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe O23 - Service: Zapora AVG (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\avgfws.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\avgwdsvc.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: lxecCATSCustConnectService - Lexmark International, Inc. - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxecserv.exe O23 - Service: lxec_device - - C:\WINDOWS\system32\lxeccoms.exe O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe (file missing) O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- End of file - 9847 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2052111302-492894223-1606980848-1003Core.job C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2052111302-492894223-1606980848-1003UA.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0974BA1E-64EC-11DE-B2A5-E43756D89593}] MediaBar [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}] BitComet Helper - C:\Program Files\BitComet\tools\BitCometBHO_1.4.8.11.dll [2010-08-11 735024] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}] AVG Safe Search - C:\Program Files\AVG\AVG10\avgssie.dll [2011-01-07 2731872] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{74322BF9-DF26-493f-B0DA-6D2FC5E6429E}] UrlHelper Class [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}] AVG Security Toolbar BHO - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll [2010-10-06 2475336] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-11-24 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-11-24 79648] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D}] IEPluginBHO Class - C:\Documents and Settings\User\Dane aplikacji\Nowe Gadu-Gadu\_userdata\ggbho.1.dll [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {0974BA1E-64EC-11DE-B2A5-E43756D89593} - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - AVG Security Toolbar - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll [2010-10-06 2475336] {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552] "HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2005-05-11 49152] "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760] "Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288] "AVG_TRAY"=C:\Program Files\AVG\AVG10\avgtray.exe [2011-01-07 2747744] "SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2007-04-16 577536] "smapp"=C:\Program Files\Analog Devices\SoundMAX\SMTray.exe [2003-05-05 143360] "DrvLsnr"=C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe [2003-05-08 69632] "GProton"=C:\Documents and Settings\All Users\GProton.exe [2011-01-07 7793152] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-15 15360] "uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2011-01-02 396152] "MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232] "ALLUpdate"=C:\Program Files\ALLPlayer\ALLUpdate.exe [2010-11-02 1432064] "Google Update"=C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe [2011-01-23 136176] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"=" " [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\WINDOWS\system32\igfxdev.dll [2005-09-20 135168] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\qoMgddAT] qoMgddAT.dll [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon] C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265608] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2009-01-30 133632] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{6D794CB4-C7CD-4c6f-BFDC-9B77AFBDC02C}"= [] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=0 "NoDriveAutoRun"=3 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"=1 "NoDriveAutoRun"=3 "NoDriveTypeAutoRun"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\WINDOWS\system32\lxeccoms.exe"="C:\WINDOWS\system32\lxeccoms.exe:*:Enabled:Pro800-Pro900 Series Server" "C:\Program Files\Gadu-Gadu 10\gg.exe"="C:\Program Files\Gadu-Gadu 10\gg.exe:*:Disabled:Gadu-Gadu 10" "C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe" "C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe" "C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe"="C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe" "C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe" "C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe" "C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe" "C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe" "C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe" "C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe" "C:\Program Files\valve\hl.exe"="C:\Program Files\valve\hl.exe:*:Enabled:Half-Life Launcher" "C:\Program Files\valve\hlds.exe"="C:\Program Files\valve\hlds.exe:*:Enabled:HLDS Launcher" "C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype" "C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager" "C:\Program Files\AVG\AVG10\avgmfapx.exe"="C:\Program Files\AVG\AVG10\avgmfapx.exe:*:Enabled:Instalator AVG" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser" "C:\Program Files\AVG\AVG10\avgdiagex.exe"="C:\Program Files\AVG\AVG10\avgdiagex.exe:*:Enabled:Diagnostyka AVG 2011" "C:\Program Files\AVG\AVG10\avgnsx.exe"="C:\Program Files\AVG\AVG10\avgnsx.exe:*:Enabled:Ochrona Sieci" "C:\Program Files\AVG\AVG10\avgam.exe"="C:\Program Files\AVG\AVG10\avgam.exe:*:Enabled:Menedżer alarmów systemu AVG" "C:\Program Files\AVG\AVG10\avgemcx.exe"="C:\Program Files\AVG\AVG10\avgemcx.exe:*:Enabled:Uniwersalny skaner poczty e-mail" "C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" ======List of files/folders created in the last 1 months====== 2011-02-11 12:01:18 ----D---- C:\rsit 2011-02-11 08:18:47 ----RASHD---- C:\Autorun.inf 2011-02-11 08:11:09 ----D---- C:\_OTL 2011-02-10 18:00:10 ----D---- C:\Program Files\Everest Poker 2011-02-10 17:19:51 ----A---- C:\UsbFix.txt 2011-02-10 15:57:17 ----D---- C:\UsbFix 2011-02-10 13:58:31 ----D---- C:\Program Files\Szkola na miare klasa 1b 2011-02-10 00:15:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2478971$ 2011-02-10 00:15:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2485376$ 2011-02-10 00:15:00 ----HDC---- C:\WINDOWS\$NtUninstallKB2479628$ 2011-02-10 00:14:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2483185$ 2011-02-10 00:09:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2476687$ 2011-02-10 00:08:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2478960$ 2011-02-10 00:08:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2393802$ 2011-02-09 15:36:14 ----D---- C:\Program Files\WinISO 2011-02-09 13:59:28 ----D---- C:\Program Files\7-Zip 2011-02-09 13:07:54 ----A---- C:\WINDOWS\IsUn0415.exe 2011-02-09 11:50:46 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\InstallMate 2011-02-09 11:50:27 ----D---- C:\Program Files\Mozilla Firefox 2011-02-09 09:12:55 ----D---- C:\Program Files\trend micro 2011-02-08 23:59:09 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Google 2011-02-06 23:47:26 ----D---- C:\Documents and Settings\User\Dane aplikacji\ChomikBox 2011-02-06 23:28:00 ----D---- C:\Program Files\ChomikBox 2011-02-04 10:58:27 ----A---- C:\WINDOWS\VPlayer.INI 2011-02-02 15:57:34 ----D---- C:\Program Files\VirtualDJ 2011-01-29 13:22:01 ----N---- C:\WINDOWS\system32\spmsg.dll 2011-01-29 13:21:42 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$ 2011-01-29 13:20:47 ----D---- C:\Program Files\Windows Media Connect 2 2011-01-29 13:20:09 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$ 2011-01-29 13:17:44 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$ 2011-01-29 13:16:22 ----D---- C:\WINDOWS\system32\LogFiles 2011-01-29 13:16:22 ----D---- C:\WINDOWS\system32\drivers\UMDF 2011-01-29 13:16:05 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$ 2011-01-29 13:02:39 ----D---- C:\Documents and Settings\User\Dane aplikacji\BSplayer Pro 2011-01-29 13:02:39 ----D---- C:\Documents and Settings\User\Dane aplikacji\BSplayer 2011-01-29 13:02:38 ----D---- C:\Program Files\Webteh 2011-01-29 12:54:17 ----A---- C:\WINDOWS\system32\xvidcore.dll 2011-01-29 12:54:17 ----A---- C:\WINDOWS\system32\libFLAC.dll 2011-01-29 12:54:14 ----D---- C:\Program Files\NAPI-PROJEKT 2011-01-29 12:54:05 ----D---- C:\Program Files\ALLPlayer 2011-01-29 12:52:23 ----D---- C:\Program Files\Vplayer 2011-01-26 17:07:34 ----D---- C:\Program Files\Common Files\Real 2011-01-25 23:05:44 ----D---- C:\Program Files\Real 2011-01-25 23:05:38 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Real 2011-01-25 23:05:29 ----D---- C:\Documents and Settings\User\Dane aplikacji\Real 2011-01-24 19:22:08 ----D---- C:\Documents and Settings\User\Dane aplikacji\JLC's Software 2011-01-24 19:21:53 ----D---- C:\Program Files\JLC's Software 2011-01-24 15:25:40 ----D---- C:\Program Files\JoWooD 2011-01-23 22:19:43 ----A---- C:\WINDOWS\Irremote.ini 2011-01-12 23:52:17 ----D---- C:\f392cca3e8185c93e16f64fd ======List of files/folders modified in the last 1 months====== 2011-02-11 15:53:32 ----D---- C:\Documents and Settings\User\Dane aplikacji\uTorrent 2011-02-11 15:52:33 ----D---- C:\WINDOWS\Temp 2011-02-11 14:07:24 ----D---- C:\WINDOWS\Prefetch 2011-02-11 12:37:43 ----D---- C:\WINDOWS\system32\drivers\AVG 2011-02-11 08:24:31 ----D---- C:\WINDOWS\system32\CatRoot2 2011-02-11 08:24:04 ----D---- C:\WINDOWS\system32 2011-02-11 08:21:36 ----A---- C:\WINDOWS\SchedLgU.Txt 2011-02-11 08:21:15 ----D---- C:\WINDOWS\system32\drivers 2011-02-11 08:21:15 ----D---- C:\WINDOWS 2011-02-11 08:11:29 ----SD---- C:\WINDOWS\Tasks 2011-02-10 18:00:10 ----D---- C:\Program Files 2011-02-10 17:27:19 ----AD---- C:\Documents and Settings\All Users\Dane aplikacji\TEMP 2011-02-10 15:44:08 ----RSD---- C:\WINDOWS\assembly 2011-02-10 13:58:31 ----RSD---- C:\WINDOWS\Fonts 2011-02-10 00:15:38 ----RSHDC---- C:\WINDOWS\system32\dllcache 2011-02-10 00:15:35 ----HD---- C:\WINDOWS\inf 2011-02-10 00:15:22 ----A---- C:\WINDOWS\imsins.BAK 2011-02-10 00:11:10 ----D---- C:\WINDOWS\Debug 2011-02-10 00:10:53 ----A---- C:\WINDOWS\system32\MRT.exe 2011-02-10 00:10:10 ----D---- C:\Program Files\Internet Explorer 2011-02-10 00:09:37 ----D---- C:\WINDOWS\ie8updates 2011-02-10 00:09:30 ----HD---- C:\WINDOWS\$hf_mig$ 2011-02-08 23:59:07 ----SHD---- C:\WINDOWS\Installer 2011-02-08 23:26:12 ----D---- C:\Program Files\Google 2011-02-08 22:38:45 ----D---- C:\WINDOWS\system32\config 2011-02-08 22:00:39 ----D---- C:\WINDOWS\Minidump 2011-02-08 21:58:34 ----SD---- C:\WINDOWS\Downloaded Program Files 2011-02-08 21:52:03 ----D---- C:\Documents and Settings\User\Dane aplikacji\AVG 2011-02-08 21:39:38 ----DC---- C:\Config.Msi 2011-02-08 21:39:37 ----RD---- C:\Program Files\Skype 2011-02-08 21:38:48 ----HD---- C:\Program Files\InstallShield Installation Information 2011-01-31 14:12:30 ----D---- C:\WINDOWS\system32\CatRoot 2011-01-29 13:21:14 ----A---- C:\WINDOWS\win.ini 2011-01-29 13:20:41 ----D---- C:\Program Files\Windows Media Player 2011-01-29 13:20:21 ----D---- C:\WINDOWS\Help 2011-01-29 12:55:18 ----D---- C:\Program Files\SubEdit-Player 2011-01-27 10:40:07 ----A---- C:\WINDOWS\system32\msvcr71.dll 2011-01-27 10:40:07 ----A---- C:\WINDOWS\system32\msvcp71.dll 2011-01-26 17:07:34 ----D---- C:\Program Files\Common Files 2011-01-26 17:06:01 ----D---- C:\WINDOWS\WinSxS 2011-01-23 22:23:35 ----D---- C:\Program Files\Common Files\Ahead 2011-01-23 22:23:31 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Nero 2011-01-23 22:13:03 ----D---- C:\Program Files\Counter-Strike 1.6 2011-01-23 16:16:48 ----DC---- C:\Documents and Settings 2011-01-21 15:44:11 ----A---- C:\WINDOWS\system32\shimgvw.dll 2011-01-21 15:44:11 ----A---- C:\WINDOWS\system32\shell32.dll 2011-01-16 16:55:17 ----D---- C:\Documents and Settings\User\Dane aplikacji\Skype 2011-01-16 14:59:07 ----D---- C:\Documents and Settings\User\Dane aplikacji\skypePM 2011-01-16 14:06:36 ----D---- C:\Program Files\Winamp 2011-01-16 14:05:16 ----D---- C:\Program Files\Winamp Detect 2011-01-15 16:21:52 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 AVGIDSEH;AVGIDSEH; C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys [2010-09-13 25680] R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\WINDOWS\system32\DRIVERS\avgrkx86.sys [2010-09-07 26064] R0 giveio;giveio; C:\WINDOWS\system32\giveio.sys [1996-04-03 5248] R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2009-04-28 44944] R0 speedfan;speedfan; C:\WINDOWS\system32\speedfan.sys [2006-09-24 5248] R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-09-16 436792] R0x01000000 papycpu;papycpu; C:\WINDOWS\system32\drivers\papycpu.sys [1998-10-06 1984] R0x01000000 papyjoy;papyjoy; C:\WINDOWS\system32\drivers\papyjoy.sys [1998-10-06 1888] R1 Avgldx86;AVG AVI Loader Driver; C:\WINDOWS\system32\DRIVERS\avgldx86.sys [2010-12-08 251728] R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\WINDOWS\system32\DRIVERS\avgmfx86.sys [2010-09-07 34384] R1 Avgtdix;AVG TDI Driver; C:\WINDOWS\system32\DRIVERS\avgtdix.sys [2010-11-12 299984] R1 intelppm;Sterownik procesora Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-15 40448] R1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2002-09-16 4228] R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2003-03-13 100224] R3 Avgfwdx;Avgfwdx; C:\WINDOWS\system32\DRIVERS\avgfwdx.sys [2010-07-12 30432] R3 AVGIDSDriver;AVGIDSDriver; C:\WINDOWS\system32\DRIVERS\AVGIDSDriver.Sys [2010-08-19 123472] R3 AVGIDSFilter;AVGIDSFilter; C:\WINDOWS\system32\DRIVERS\AVGIDSFilter.Sys [2010-08-19 30288] R3 AVGIDSShim;AVGIDSShim; C:\WINDOWS\system32\DRIVERS\AVGIDSShim.Sys [2010-08-19 26192] R3 b57w2k;Broadcom NetXtreme Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2008-07-25 176640] R3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2005-03-08 51120] R3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2005-03-08 16496] R3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2005-03-08 21744] R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2005-09-20 1302332] R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2003-05-27 578304] R3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128] R3 usbprint;Klasa PRINTER USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856] R3 usbscan;Sterownik skanera USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104] R3 usbuhci;Sterownik Miniport uniwersalnego kontrolera hosta USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608] R3 VCSVADHWSer;Avnex Virtual Audio Device (WDM); C:\WINDOWS\system32\DRIVERS\vcsvad.sys [2008-12-26 17792] S0 BTHidMgr;Bluetooth HID Manager Service; C:\WINDOWS\System32\Drivers\BTHidMgr.sys [] S1 kbdhid;Sterownik klawiatury HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720] S3 aiid1ioq;aiid1ioq; C:\WINDOWS\system32\drivers\aiid1ioq.sys [] S3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2008-09-24 4122368] S3 Avgfwfd;AVG network filter service; C:\WINDOWS\system32\DRIVERS\avgfwdx.sys [2010-07-12 30432] S3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys [] S3 BlueletSCOAudio;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys [] S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys [] S3 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\system32\DRIVERS\vbtenum.sys [] S3 CCDECODE;Dekoder napisów; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024] S3 EagleNT;EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys [] S3 HidUsb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368] S3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-26 12160] S3 MSTEE;Konwerter strumieni Tee/Sink-to-Sink Microsoft Streaming; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504] S3 NABTSFEC;Koder-dekoder NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248] S3 NdisIP;Połączenie TV/wideo firmy Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880] S3 nmwcd;Nokia USB Phone Parent Driver; C:\WINDOWS\system32\drivers\ccdcmb.sys [2010-07-30 18048] S3 nmwcdc;Nokia USB Communication Driver; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2010-07-30 23040] S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816] S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2008-04-15 5888] S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136] S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232] S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2010-07-30 8192] S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-14 26112] S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2010-07-30 8192] S3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] S3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys [] S3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys [] S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2009-07-14 444136] S3 WSTCODEC;Kodery-dekodery teletekstu w standardzie światowym; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200] S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 avgfws;Zapora AVG; C:\Program Files\AVG\AVG10\avgfws.exe [2010-11-22 3226632] R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe [2011-01-06 6128720] R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG10\avgwdsvc.exe [2010-10-22 265400] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-11-12 153376] R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-07-25 79136] R2 lxec_device;lxec_device; C:\WINDOWS\system32\lxeccoms.exe [2010-04-14 598696] R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2004-09-29 69632] R2 SoundMAX Agent Service (default);SoundMAX Agent Service; C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [2002-09-20 45056] R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968] S2 lxecCATSCustConnectService;lxecCATSCustConnectService; C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxecserv.exe [2010-04-14 193192] S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312] S3 AVG Security Toolbar Service;AVG Security Toolbar Service; C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe [2010-10-06 517448] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104] S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664] S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [] S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-06-14 615936] S3 WMPNetworkSvc;Usługa udostępniania w sieci programu Windows Media Player; C:\Program Files\Windows Media Player\WMPNetwk.exe [2009-02-04 918016] S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-15 14336] S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096] -----------------EOF----------------- [/log]
Tomek01 komentarz 11 lutego 2011 komentarz 11 lutego 2011 [code] :Files C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2052111302-492894223-1606980848-1003UA.job C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2052111302-492894223-1606980848-1003Core.job C:\Documents and Settings\User\Dane aplikacji\scgdfgasfbh.bat C:\Documents and Settings\All Users\Dane aplikacji\35BB :Reg [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0974BA1E-64EC-11DE-B2A5-E43756D89593}] :Commands [emptytemp][/code] Klikasz run fix, komputer uruchamia się ponownie. Wrzuć log z usuwania oraz nowe logi: OTL i RSIT.
batonxd komentarz 11 lutego 2011 Autor komentarz 11 lutego 2011 (edytowane) [log] All processes killed ========== FILES ========== C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2052111302-492894223-1606980848-1003UA.job moved successfully. C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2052111302-492894223-1606980848-1003Core.job moved successfully. C:\Documents and Settings\User\Dane aplikacji\scgdfgasfbh.bat moved successfully. C:\Documents and Settings\All Users\Dane aplikacji\35BB folder moved successfully. ========== REGISTRY ========== ========== COMMANDS ========== [EMPTYTEMP] User: Administrator ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Administrator.USER-FCC60EA01E ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Administrator.USER-FCC60EA01E.000 ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Google Chrome cache emptied: 0 bytes ->Flash cache emptied: 0 bytes User: All Users User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: LocalService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: NetworkService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: User ->Temp folder emptied: 4394839 bytes ->Temporary Internet Files folder emptied: 2119032 bytes ->Java cache emptied: 0 bytes ->Google Chrome cache emptied: 122176366 bytes ->Opera cache emptied: 0 bytes ->Flash cache emptied: 1078 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32\dllcache .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 144500 bytes RecycleBin emptied: 143898 bytes Total Files Cleaned = 123,00 mb OTL by OldTimer - Version 3.2.20.6 log created on 02112011_205907 Files\Folders moved on Reboot... Registry entries deleted on Reboot... [/log] [log] OTL logfile created on: 2011-02-11 21:12:11 - Run 2 OTL by OldTimer - Version 3.2.20.6 Folder = C:\Documents and Settings\User\Pulpit Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1 015,00 Mb Total Physical Memory | 476,00 Mb Available Physical Memory | 47,00% Memory free 2,00 Gb Paging File | 1,00 Gb Available in Paging File | 72,00% Paging File free Paging file location(s): C:\pagefile.sys 756 1512 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 37,27 Gb Total Space | 10,99 Gb Free Space | 29,48% Space Free | Partition Type: NTFS Computer Name: USER-FCC60EA01E | User Name: User | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: On | No Company Name Whitelist: Off | File Age = 60 Days [color=#E56717]========== Processes (All) ==========[/color] PRC - [2011-02-11 08:07:23 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe PRC - [2011-02-10 04:14:59 | 000,994,872 | ---- | M] (Google Inc.) -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe PRC - [2011-01-23 22:54:27 | 000,136,176 | ---- | M] (Google Inc.) -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe PRC - [2011-01-07 01:22:54 | 002,747,744 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgtray.exe PRC - [2011-01-07 01:22:44 | 001,084,256 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgnsx.exe PRC - [2011-01-07 01:22:12 | 001,052,512 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgemcx.exe PRC - [2011-01-06 15:23:20 | 000,737,872 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe PRC - [2011-01-06 15:23:18 | 006,128,720 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe PRC - [2011-01-02 19:29:52 | 000,396,152 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\uTorrent\uTorrent.exe PRC - [2010-12-05 16:26:40 | 000,654,176 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgrsx.exe PRC - [2010-12-05 16:26:12 | 000,650,592 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgchsvx.exe PRC - [2010-11-22 04:48:46 | 003,226,632 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgfws.exe PRC - [2010-11-12 18:53:22 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe PRC - [2010-10-22 04:58:18 | 000,265,400 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgwdsvc.exe PRC - [2010-10-22 04:56:58 | 000,845,664 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgcsrvx.exe PRC - [2010-10-22 04:56:48 | 000,745,824 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgam.exe PRC - [2010-08-17 14:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe PRC - [2010-05-14 10:44:46 | 000,248,552 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe PRC - [2010-04-14 15:08:12 | 000,598,696 | ---- | M] ( ) -- C:\WINDOWS\system32\lxeccoms.exe PRC - [2009-02-09 12:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe PRC - [2008-04-15 13:00:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2008-04-15 13:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe PRC - [2008-04-15 13:00:00 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapsrv.exe PRC - [2008-04-15 13:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe PRC - [2008-04-15 13:00:00 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe PRC - [2008-04-15 13:00:00 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS] PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE] PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS] PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [IMGSVC] PRC - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH] PRC - [2008-04-15 13:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe PRC - [2008-04-15 13:00:00 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe PRC - [2007-07-25 15:50:26 | 000,079,136 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe PRC - [2007-05-28 17:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe PRC - [2007-04-16 15:28:22 | 000,577,536 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE PRC - [2005-05-11 22:12:54 | 000,049,152 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\HP Software Update\hpwuSchd2.exe PRC - [2004-09-29 11:14:36 | 000,069,632 | ---- | M] (HP) -- C:\WINDOWS\system32\HPZipm12.exe PRC - [2003-05-08 11:34:32 | 000,069,632 | ---- | M] (adi) -- C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe PRC - [2003-05-05 08:57:30 | 000,143,360 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMTray.exe PRC - [2002-09-20 16:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2011-02-11 08:07:23 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe MOD - [2011-01-21 15:44:11 | 008,491,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll MOD - [2010-12-29 16:17:15 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll MOD - [2010-12-09 16:15:25 | 000,726,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll MOD - [2010-08-23 17:12:53 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll MOD - [2010-08-16 09:45:09 | 000,590,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll MOD - [2010-07-16 13:00:50 | 001,287,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll MOD - [2009-12-08 10:25:45 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll MOD - [2009-06-25 09:27:54 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll MOD - [2009-03-21 15:08:59 | 001,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll MOD - [2009-02-09 11:53:44 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll MOD - [2008-10-23 13:42:41 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll MOD - [2008-04-15 13:00:00 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll MOD - [2008-04-15 13:00:00 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll MOD - [2008-04-15 13:00:00 | 000,732,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\userenv.dll MOD - [2008-04-15 13:00:00 | 000,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll MOD - [2008-04-15 13:00:00 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll MOD - [2008-04-15 13:00:00 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll MOD - [2008-04-15 13:00:00 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll MOD - [2008-04-15 13:00:00 | 000,297,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTF.dll MOD - [2008-04-15 13:00:00 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll MOD - [2008-04-15 13:00:00 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll MOD - [2008-04-15 13:00:00 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTFIME.IME MOD - [2008-04-15 13:00:00 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv MOD - [2008-04-15 13:00:00 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx MOD - [2008-04-15 13:00:00 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imm32.dll MOD - [2008-04-15 13:00:00 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll MOD - [2008-04-15 13:00:00 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll MOD - [2008-04-15 13:00:00 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll MOD - [2008-04-15 13:00:00 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [On_Demand | Stopped] -- -- (NMIndexingService) SRV - [2011-01-06 15:23:18 | 006,128,720 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe -- (AVGIDSAgent) SRV - [2010-11-22 04:48:46 | 003,226,632 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgfws.exe -- (avgfws) SRV - [2010-10-22 04:58:18 | 000,265,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgwdsvc.exe -- (avgwd) SRV - [2010-10-06 11:31:48 | 000,517,448 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe -- (AVG Security Toolbar Service) SRV - [2010-06-14 15:07:14 | 000,615,936 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2010-04-14 15:08:12 | 000,598,696 | ---- | M] ( ) [Auto | Running] -- C:\WINDOWS\System32\lxeccoms.exe -- (lxec_device) SRV - [2010-04-14 15:08:05 | 000,193,192 | ---- | M] () [Auto | Stopped] -- C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxecserv.exe -- (lxecCATSCustConnectService) SRV - [2007-05-28 17:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) [Auto | Running] -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE) SRV - [2004-09-29 11:14:36 | 000,069,632 | ---- | M] (HP) [Auto | Running] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12) SRV - [2002-09-20 16:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) [Auto | Running] -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe -- (SoundMAX Agent Service (default)) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2010-12-08 04:12:38 | 000,251,728 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (Avgldx86) DRV - [2010-11-12 13:19:38 | 000,299,984 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (Avgtdix) DRV - [2010-09-16 14:44:07 | 000,436,792 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2010-09-13 16:27:24 | 000,025,680 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys -- (AVGIDSEH) DRV - [2010-09-07 03:48:56 | 000,034,384 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (Avgmfx86) DRV - [2010-09-07 03:48:50 | 000,026,064 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\avgrkx86.sys -- (Avgrkx86) DRV - [2010-08-19 21:42:38 | 000,030,288 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSFilter.sys -- (AVGIDSFilter) DRV - [2010-08-19 21:42:36 | 000,123,472 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSDriver.sys -- (AVGIDSDriver) DRV - [2010-08-19 21:42:34 | 000,026,192 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSShim.sys -- (AVGIDSShim) DRV - [2010-07-30 14:16:46 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt) DRV - [2010-07-30 14:16:44 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev) DRV - [2010-07-30 14:16:42 | 000,023,040 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc) DRV - [2010-07-30 14:16:38 | 000,018,048 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd) DRV - [2010-07-12 03:33:54 | 000,030,432 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\avgfwdx.sys -- (Avgfwfd) DRV - [2010-07-12 03:33:54 | 000,030,432 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\avgfwdx.sys -- (Avgfwdx) DRV - [2008-12-26 11:56:04 | 000,017,792 | ---- | M] (Avnex) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\vcsvad.sys -- (VCSVADHWSer) Avnex Virtual Audio Device (WDM) DRV - [2008-09-24 10:40:22 | 004,122,368 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM) DRV - [2008-08-26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd) DRV - [2008-07-25 00:18:32 | 000,176,640 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\b57xp32.sys -- (b57w2k) DRV - [2006-09-24 14:28:46 | 000,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan) DRV - [2002-09-16 16:14:32 | 000,004,228 | ---- | M] (PowerQuest Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\PQNTDRV.sys -- (PQNTDrv) DRV - [1998-10-06 13:36:26 | 000,001,984 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\papycpu.sys -- (papycpu) DRV - [1998-10-06 13:36:26 | 000,001,888 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\papyjoy.sys -- (papyjoy) DRV - [1996-04-03 20:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll () IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll () IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.qooqlle.com/ IE - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll () IE - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 FF - HKLM\software\mozilla\Firefox\extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG10\Firefox\ FF - HKLM\software\mozilla\Firefox\extensions\\avg@igeared: C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared [2011-02-09 11:50:41 | 000,002,045 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fcmdSrch.xml O1 HOSTS File: ([2008-04-15 13:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (no name) - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - No CLSID value found. O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.4.8.11.dll (BitComet) O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll (AVG Technologies CZ, s.r.o.) O2 - BHO: (no name) - {74322BF9-DF26-493f-B0DA-6D2FC5E6429E} - No CLSID value found. O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll () O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - File not found O3 - HKLM\..\Toolbar: (no name) - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - No CLSID value found. O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll () O3 - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll () O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe (AVG Technologies CZ, s.r.o.) O4 - HKLM..\Run: [DrvLsnr] C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe (adi) O4 - HKLM..\Run: [GProton] C:\Documents and Settings\All Users\GProton.exe () O4 - HKLM..\Run: [smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe (Analog Devices, Inc.) O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [TaskTray] File not found O4 - HKU\S-1-5-21-2052111302-492894223-1606980848-1003..\Run: [ALLUpdate] C:\Program Files\ALLPlayer\ALLUpdate.exe () O4 - HKU\S-1-5-21-2052111302-492894223-1606980848-1003..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0 O7 - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 3 O9 - Extra Button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - C:\Program Files\BitComet\tools\BitCometBHO_1.4.8.11.dll (BitComet) O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab (Reg Error: Key error.) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23) O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} http://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab (IWinAmpActiveX Class) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.174.8.1 157.25.5.18 O18 - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll () O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll (AVG Technologies CZ, s.r.o.) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (EXPLORER.EXE) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation) O20 - Winlogon\Notify\qoMgddAT: DllName - qoMgddAT.dll - File not found O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O28 - HKLM ShellExecuteHooks: {6D794CB4-C7CD-4c6f-BFDC-9B77AFBDC02C} - Reg Error: Key error. File not found O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010-08-23 13:02:05 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2011-02-11 08:18:47 | 000,000,000 | RHSD | M] - C:\Autorun.inf -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk /p \??\F:) - File not found O34 - HKLM BootExecute: (autocheck autochk *) - File not found O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgchsvx.exe /sync) - C:\Program Files\AVG\AVG10\avgchsvx.exe (AVG Technologies CZ, s.r.o.) O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgrsx.exe /sync /restart) - C:\Program Files\AVG\AVG10\avgrsx.exe (AVG Technologies CZ, s.r.o.) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: SCSI Class - Driver Group SafeBootMin: sermouse.sys - Driver SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vds - Service SafeBootMin: vga.sys - Driver SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: SCSI Class - Driver Group SafeBootNet: sermouse.sys - Driver SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vga.sys - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2011-02-11 21:17:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood [2011-02-11 19:16:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\SuperSterownik [2011-02-11 19:11:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Super Sterownik [2011-02-11 19:11:33 | 000,000,000 | ---D | C] -- C:\Program Files\Driver-Soft [2011-02-11 12:01:18 | 000,000,000 | ---D | C] -- C:\rsit [2011-02-11 08:18:47 | 000,000,000 | RHSD | C] -- C:\Autorun.inf [2011-02-11 08:11:09 | 000,000,000 | ---D | C] -- C:\_OTL [2011-02-11 08:07:12 | 000,602,624 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe [2011-02-10 18:00:10 | 000,000,000 | ---D | C] -- C:\Program Files\Everest Poker [2011-02-10 15:57:17 | 000,000,000 | ---D | C] -- C:\UsbFix [2011-02-10 13:58:31 | 000,000,000 | ---D | C] -- C:\Program Files\Szkola na miare klasa 1b [2011-02-09 15:36:14 | 000,000,000 | ---D | C] -- C:\Program Files\WinISO [2011-02-09 15:36:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\WinISO [2011-02-09 13:59:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\7-Zip [2011-02-09 13:59:28 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip [2011-02-09 13:07:54 | 000,327,168 | ---- | C] (InstallShield Software Corporation) -- C:\WINDOWS\IsUn0415.exe [2011-02-09 11:50:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\InstallMate [2011-02-09 11:50:27 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2011-02-09 09:12:55 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro [2011-02-08 23:59:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Google [2011-02-08 23:52:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\Google Chrome [2011-02-08 22:06:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Pulpit\tapety [2011-02-08 21:41:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Pulpit\programy i gry [2011-02-06 23:47:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\ChomikBox [2011-02-06 23:44:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\Chomikuj.pl [2011-02-06 23:28:00 | 000,000,000 | ---D | C] -- C:\Program Files\ChomikBox [2011-02-02 15:57:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\Virtual DJ [2011-02-02 15:57:34 | 000,000,000 | ---D | C] -- C:\Program Files\VirtualDJ [2011-02-02 15:57:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\VirtualDJ [2011-01-29 13:20:47 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2 [2011-01-29 13:16:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF [2011-01-29 13:16:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles [2011-01-29 13:05:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\BS.Player [2011-01-29 13:02:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\BSplayer Pro [2011-01-29 13:02:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\BSplayer [2011-01-29 13:02:38 | 000,000,000 | ---D | C] -- C:\Program Files\Webteh [2011-01-29 12:54:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\ALLPlayer [2011-01-29 12:54:14 | 000,000,000 | ---D | C] -- C:\Program Files\NAPI-PROJEKT [2011-01-29 12:54:05 | 000,000,000 | ---D | C] -- C:\Program Files\ALLPlayer [2011-01-29 12:52:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\Vplayer [2011-01-29 12:52:23 | 000,000,000 | ---D | C] -- C:\Program Files\Vplayer [2011-01-26 17:07:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Real [2011-01-25 23:05:44 | 000,000,000 | ---D | C] -- C:\Program Files\Real [2011-01-25 23:05:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Real [2011-01-25 23:05:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Real [2011-01-25 11:21:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\JoWood [2011-01-25 08:28:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Gothic II [2011-01-24 19:22:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\JLC's Software [2011-01-24 19:21:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\JLC's Software [2011-01-24 19:21:53 | 000,000,000 | ---D | C] -- C:\Program Files\JLC's Software [2011-01-24 15:42:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\JoWooD [2011-01-24 15:25:40 | 000,000,000 | ---D | C] -- C:\Program Files\JoWooD [2011-01-23 16:32:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Pulpit\jakieś obrazy [2011-01-15 19:50:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\GTA San Andreas User Files [2011-01-12 23:52:17 | 000,000,000 | ---D | C] -- C:\f392cca3e8185c93e16f64fd [2011-01-09 01:58:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\Max Payne Savegames [2011-01-08 12:24:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\Alcohol 120% [2011-01-08 11:30:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\searchplugins [2010-12-29 16:23:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\ViStart [2010-12-29 16:17:50 | 000,000,000 | ---D | C] -- C:\Program Files\TrueTransparency [2010-12-29 16:17:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\ViGlance [2010-12-29 16:08:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\VITrans [2010-12-29 14:21:46 | 000,000,000 | ---D | C] -- C:\Program Files\TGTSoft [2010-12-28 14:57:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\TechSmith [2010-12-27 13:30:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\.ZMatrix [2010-12-27 13:05:50 | 000,000,000 | ---D | C] -- C:\Program Files\pcwDreamScreen [2010-12-22 16:56:51 | 000,015,360 | ---- | C] (www.bk2.prv.pl) -- C:\Documents and Settings\User\Pulpit\ggbkiller2v2_98.exe [2010-12-20 12:33:52 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe [2010-12-20 12:33:52 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe [2010-12-20 12:33:52 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe [2010-12-17 14:51:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Ventrilo [2010-12-16 16:18:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\Winbooterr [2010-12-16 05:09:56 | 000,000,000 | ---D | C] -- C:\9cb0916458dc5818aa9c381484 [2010-09-07 15:37:08 | 000,442,368 | ---- | C] ( ) -- C:\WINDOWS\System32\lxeccoin.dll [2010-09-07 15:35:35 | 000,364,544 | ---- | C] ( ) -- C:\WINDOWS\System32\lxecinpa.dll [2010-09-07 15:35:35 | 000,356,352 | ---- | C] ( ) -- C:\WINDOWS\System32\LXEChcp.dll [2010-09-07 15:35:34 | 001,048,576 | ---- | C] ( ) -- C:\WINDOWS\System32\lxecserv.dll [2010-09-07 15:35:34 | 000,847,872 | ---- | C] ( ) -- C:\WINDOWS\System32\lxecusb1.dll [2010-09-07 15:35:34 | 000,643,072 | ---- | C] ( ) -- C:\WINDOWS\System32\lxecpmui.dll [2010-09-07 15:35:34 | 000,344,064 | ---- | C] ( ) -- C:\WINDOWS\System32\lxeciesc.dll [2010-09-07 15:35:33 | 000,577,536 | ---- | C] ( ) -- C:\WINDOWS\System32\lxeclmpm.dll [2010-09-07 15:35:32 | 000,802,816 | ---- | C] ( ) -- C:\WINDOWS\System32\lxeccomc.dll [2010-09-07 15:35:32 | 000,688,128 | ---- | C] ( ) -- C:\WINDOWS\System32\lxechbn3.dll [2010-09-07 15:35:32 | 000,372,736 | ---- | C] ( ) -- C:\WINDOWS\System32\lxeccomm.dll [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2011-02-11 21:03:17 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2011-02-11 21:03:12 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2011-02-11 21:01:27 | 006,815,744 | -H-- | M] () -- C:\Documents and Settings\User\NTUSER.DAT [2011-02-11 21:01:27 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\User\ntuser.ini [2011-02-11 19:11:37 | 000,000,884 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Super Sterownik Professional Edition.lnk [2011-02-11 16:36:48 | 000,645,397 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\iavifw.avm [2011-02-11 12:37:33 | 105,939,812 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm [2011-02-11 10:55:58 | 000,002,295 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Google Chrome.lnk [2011-02-11 08:07:23 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe [2011-02-10 19:49:06 | 000,026,960 | ---- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2011-02-10 17:10:57 | 000,147,608 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2011-02-10 13:58:35 | 000,001,302 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Szkoła na miarę, klasa 1, semestr 2.lnk [2011-02-10 00:15:22 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2011-02-09 15:58:20 | 000,000,606 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\WinISO.lnk [2011-02-09 12:25:32 | 000,001,724 | -H-- | M] () -- C:\Documents and Settings\User\Moje dokumenty\Default.rdp [2011-02-09 09:31:05 | 000,339,991 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\unconfirmed 32398.exe [2011-02-08 09:34:46 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2011-02-07 07:15:16 | 003,706,738 | -H-- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\IconCache.db [2011-02-06 23:44:17 | 000,000,830 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\ChomikBox.lnk [2011-02-05 10:21:31 | 000,002,359 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Counter Strike NS.lnk [2011-02-04 10:58:28 | 000,000,797 | ---- | M] () -- C:\WINDOWS\VPlayer.INI [2011-02-04 10:58:27 | 000,000,021 | ---- | M] () -- C:\WINDOWS\VplayerINI.vpl [2011-02-02 15:57:42 | 000,000,694 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Virtual DJ.lnk [2011-01-29 13:21:27 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2011-01-29 13:21:27 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2011-01-29 13:21:14 | 000,000,592 | ---- | M] () -- C:\WINDOWS\win.ini [2011-01-29 13:16:35 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf [2011-01-29 12:55:26 | 000,000,797 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\SubEdit-Player.lnk [2011-01-28 13:31:02 | 000,008,786 | ---- | M] () -- C:\Program1.RPT [2011-01-28 09:30:30 | 000,000,720 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\AVG 2011.lnk [2011-01-25 11:39:36 | 000,001,843 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gothic II Złota Edycja.lnk [2011-01-24 19:21:58 | 000,001,777 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\JLC's Internet TV.lnk [2011-01-24 16:02:00 | 000,004,096 | ---- | M] () -- C:\WINDOWS\d3dx.dat [2011-01-23 22:19:43 | 000,000,000 | ---- | M] () -- C:\WINDOWS\Irremote.ini [2011-01-16 15:10:58 | 000,002,267 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2011-01-16 14:05:21 | 000,000,654 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk [2011-01-07 15:09:02 | 000,290,048 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\dllcache\atmfd.dll [2011-01-07 15:09:02 | 000,290,048 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\atmfd.dll [2011-01-07 10:21:02 | 007,793,152 | RHS- | M] () -- C:\Documents and Settings\All Users\GProton.exe [2011-01-02 18:39:40 | 002,797,846 | ---- | M] () -- C:\Documents and Settings\User\Moje dokumenty\Fotka 036.jpg [2011-01-02 18:39:16 | 002,721,306 | ---- | M] () -- C:\Documents and Settings\User\Moje dokumenty\Fotka 033.jpg [2011-01-01 21:16:31 | 000,000,032 | ---- | M] () -- C:\WINDOWS\go [2010-12-29 16:41:45 | 000,001,503 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Paint.lnk [2010-12-29 16:18:03 | 006,912,054 | ---- | M] () -- C:\WINDOWS\clwcp.bmp [2010-12-29 16:08:35 | 000,078,942 | ---- | M] () -- C:\WINDOWS\Icon_1.ico [2010-12-29 15:50:45 | 000,000,592 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Opera.lnk [2010-12-29 15:47:16 | 000,001,702 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Wrzuta Media Downloader.lnk [2010-12-29 14:36:55 | 000,000,354 | ---- | M] () -- C:\boot.ini [2010-12-28 19:04:40 | 000,000,022 | ---- | M] () -- C:\WINDOWS\clofghls.dll [2010-12-27 19:01:19 | 000,000,412 | ---- | M] () -- C:\Documents and Settings\User\Moje dokumenty\spider.sav [2010-12-26 16:42:14 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2010-12-24 20:53:57 | 005,122,810 | ---- | M] () -- C:\Documents and Settings\User\Moje dokumenty\SDC10508.JPG [2010-12-22 16:56:54 | 000,015,360 | ---- | M] (www.bk2.prv.pl) -- C:\Documents and Settings\User\Pulpit\ggbkiller2v2_98.exe [2010-12-16 23:56:03 | 000,074,578 | ---- | M] () -- C:\WINDOWS\System32\winupd [2010-12-14 22:48:55 | 001,114,842 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010-12-14 22:48:55 | 000,499,854 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2010-12-14 22:48:55 | 000,440,820 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010-12-14 22:48:55 | 000,089,036 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2010-12-14 22:48:55 | 000,071,138 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010-12-14 22:35:33 | 000,000,259 | ---- | M] () -- C:\WINDOWS\system.ini [9 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2011-02-11 19:11:37 | 000,000,884 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\Super Sterownik Professional Edition.lnk [2011-02-10 13:58:35 | 000,001,302 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Szkoła na miarę, klasa 1, semestr 2.lnk [2011-02-09 15:36:20 | 000,000,606 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\WinISO.lnk [2011-02-09 12:24:18 | 000,001,724 | -H-- | C] () -- C:\Documents and Settings\User\Moje dokumenty\Default.rdp [2011-02-09 09:31:04 | 000,339,991 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\unconfirmed 32398.exe [2011-02-08 23:52:42 | 000,002,295 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\Google Chrome.lnk [2011-02-06 23:44:16 | 000,000,830 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\ChomikBox.lnk [2011-02-04 10:58:27 | 000,000,797 | ---- | C] () -- C:\WINDOWS\VPlayer.INI [2011-02-04 10:58:27 | 000,000,021 | ---- | C] () -- C:\WINDOWS\VplayerINI.vpl [2011-02-02 15:57:42 | 000,000,694 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\Virtual DJ.lnk [2011-01-29 13:16:35 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf [2011-01-29 12:55:26 | 000,000,797 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\SubEdit-Player.lnk [2011-01-29 12:54:17 | 000,797,184 | ---- | C] () -- C:\WINDOWS\System32\ac3filter.ax [2011-01-29 12:54:17 | 000,790,528 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2011-01-29 12:54:17 | 000,258,048 | ---- | C] () -- C:\WINDOWS\System32\libFLAC.dll [2011-01-28 13:31:00 | 000,008,786 | ---- | C] () -- C:\Program1.RPT [2011-01-27 19:18:21 | 003,706,738 | -H-- | C] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\IconCache.db [2011-01-25 11:39:36 | 000,001,843 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Gothic II Złota Edycja.lnk [2011-01-24 19:21:58 | 000,001,777 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\JLC's Internet TV.lnk [2011-01-24 16:02:00 | 000,004,096 | ---- | C] () -- C:\WINDOWS\d3dx.dat [2011-01-23 22:19:43 | 000,000,000 | ---- | C] () -- C:\WINDOWS\Irremote.ini [2011-01-07 10:21:08 | 007,793,152 | RHS- | C] () -- C:\Documents and Settings\All Users\GProton.exe [2011-01-02 18:36:20 | 002,797,846 | ---- | C] () -- C:\Documents and Settings\User\Moje dokumenty\Fotka 036.jpg [2011-01-02 18:35:53 | 002,721,306 | ---- | C] () -- C:\Documents and Settings\User\Moje dokumenty\Fotka 033.jpg [2011-01-01 21:16:31 | 000,000,032 | ---- | C] () -- C:\WINDOWS\go [2010-12-29 16:18:03 | 006,912,054 | ---- | C] () -- C:\WINDOWS\clwcp.bmp [2010-12-29 16:08:35 | 000,078,942 | ---- | C] () -- C:\WINDOWS\Icon_1.ico [2010-12-29 16:08:29 | 000,517,120 | ---- | C] () -- C:\WINDOWS\System32\CLWCP.exe [2010-12-29 16:08:29 | 000,111,104 | ---- | C] () -- C:\WINDOWS\System32\Uharc.exe [2010-12-29 16:08:29 | 000,008,636 | ---- | C] () -- C:\WINDOWS\System32\modifype.exe [2010-12-29 14:30:40 | 000,000,211 | ---- | C] () -- C:\BOOT.BKK [2010-12-27 19:01:19 | 000,000,412 | ---- | C] () -- C:\Documents and Settings\User\Moje dokumenty\spider.sav [2010-12-24 20:51:11 | 005,122,810 | ---- | C] () -- C:\Documents and Settings\User\Moje dokumenty\SDC10508.JPG [2010-12-16 16:35:42 | 000,074,578 | ---- | C] () -- C:\WINDOWS\System32\winupd [2010-11-12 19:40:41 | 000,000,056 | ---- | C] () -- C:\WINDOWS\wininit.ini [2010-11-05 07:47:52 | 000,004,608 | ---- | C] () -- C:\WINDOWS\cocowawa.dll [2010-10-13 15:51:10 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2010-10-07 22:41:21 | 000,004,305 | ---- | C] () -- C:\WINDOWS\jdncfw-f48.ini [2010-10-07 22:41:21 | 000,001,441 | ---- | C] () -- C:\WINDOWS\cbvmqg_x64.ini [2010-10-03 18:15:09 | 000,000,122 | ---- | C] () -- C:\WINDOWS\System32\ttbup222.dll [2010-10-03 15:58:32 | 000,029,696 | ---- | C] () -- C:\WINDOWS\System32\pthread.dll [2010-09-28 23:15:29 | 001,970,176 | ---- | C] () -- C:\WINDOWS\System32\d3dx9.dll [2010-09-23 08:51:56 | 000,000,095 | ---- | C] () -- C:\WINDOWS\mta.ini [2010-09-22 23:00:52 | 000,001,157 | ---- | C] () -- C:\WINDOWS\System32\urqOIbAq.dll [2010-09-22 22:59:33 | 000,465,832 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat [2010-09-20 13:11:30 | 000,001,153 | ---- | C] () -- C:\WINDOWS\System32\opnLfFWp.dll [2010-09-20 06:48:51 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\fusioncache.dat [2010-09-16 14:44:07 | 000,436,792 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys [2010-09-13 22:07:51 | 000,000,127 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI [2010-09-12 10:44:05 | 000,000,000 | ---- | C] () -- C:\WINDOWS\PROTOCOL.INI [2010-09-11 20:25:19 | 000,001,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\papycpu.sys [2010-09-11 20:25:19 | 000,001,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\papyjoy.sys [2010-09-11 20:25:09 | 000,000,130 | ---- | C] () -- C:\WINDOWS\SIERRA.INI [2010-09-11 16:37:21 | 000,000,682 | ---- | C] () -- C:\WINDOWS\bestplayer.ini [2010-09-11 14:39:23 | 000,024,576 | ---- | C] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-09-11 11:32:02 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll [2010-09-11 11:20:31 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI [2010-09-10 15:38:29 | 000,015,757 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\hpzinstall.log [2010-09-10 14:53:13 | 000,026,960 | ---- | C] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2010-09-07 15:37:10 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\lxecvs.dll [2010-09-07 15:37:02 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\lxecgcfg.dll [2010-09-07 15:37:01 | 000,294,912 | ---- | C] () -- C:\WINDOWS\System32\lxeccui.dll [2010-09-07 15:37:01 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\lxeccuir.dll [2010-09-07 15:35:35 | 000,331,776 | ---- | C] () -- C:\WINDOWS\System32\LXECinst.dll [2010-09-07 15:35:33 | 000,323,584 | ---- | C] () -- C:\WINDOWS\System32\lxecins.dll [2010-09-07 15:35:33 | 000,262,144 | ---- | C] () -- C:\WINDOWS\System32\lxecinsb.dll [2010-09-07 15:35:33 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\lxecinsr.dll [2010-09-07 15:35:33 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\lxecjswr.dll [2010-09-07 15:35:32 | 000,253,952 | ---- | C] () -- C:\WINDOWS\System32\lxeccu.dll [2010-09-07 15:35:32 | 000,208,896 | ---- | C] () -- C:\WINDOWS\System32\lxecgrd.dll [2010-09-07 15:35:32 | 000,090,112 | ---- | C] () -- C:\WINDOWS\System32\lxeccub.dll [2010-09-07 15:35:32 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\lxeccur.dll [2010-09-07 15:35:27 | 000,299,008 | ---- | C] () -- C:\WINDOWS\System32\LXECsm.dll [2010-09-07 15:35:27 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\LXECsmr.dll [2010-08-24 08:17:37 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2010-08-24 08:09:34 | 000,000,044 | ---- | C] () -- C:\WINDOWS\System32\msssc.dll [2010-08-23 14:49:24 | 001,114,842 | ---- | C] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010-08-23 14:49:23 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2010-08-23 14:48:46 | 000,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini [2010-08-23 13:09:15 | 000,000,062 | -HS- | C] () -- C:\Documents and Settings\User\Dane aplikacji\desktop.ini [2010-08-23 13:02:05 | 000,000,000 | ---- | C] () -- C:\WINDOWS\control.ini [2010-08-23 12:57:32 | 000,000,037 | ---- | C] () -- C:\WINDOWS\vbaddin.ini [2010-08-23 12:57:32 | 000,000,036 | ---- | C] () -- C:\WINDOWS\vb.ini [2010-08-23 12:56:42 | 000,026,717 | ---- | C] () -- C:\WINDOWS\System32\tslabels.ini [2010-08-23 12:56:40 | 000,003,813 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.ini [2010-01-27 17:54:13 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll [2010-01-26 17:23:27 | 000,000,022 | ---- | C] () -- C:\WINDOWS\clofghls.dll [2010-01-26 17:09:41 | 000,000,052 | ---- | C] () -- C:\WINDOWS\mafosav.INI [2010-01-26 12:45:08 | 000,000,044 | ---- | C] () -- C:\WINDOWS\SMWizard.INI [2008-04-15 13:00:00 | 001,015,477 | ---- | C] () -- C:\WINDOWS\System32\esentprf.ini [2008-04-15 13:00:00 | 000,733,696 | ---- | C] () -- C:\WINDOWS\System32\qedwipes.dll [2008-04-15 13:00:00 | 000,355,112 | ---- | C] () -- C:\WINDOWS\System32\msjetoledb40.dll [2008-04-15 13:00:00 | 000,270,848 | ---- | C] () -- C:\WINDOWS\System32\sbe.dll [2008-04-15 13:00:00 | 000,253,440 | ---- | C] () -- C:\WINDOWS\System32\compatUI.dll [2008-04-15 13:00:00 | 000,199,168 | ---- | C] () -- C:\WINDOWS\System32\ir32_32.dll [2008-04-15 13:00:00 | 000,186,880 | ---- | C] () -- C:\WINDOWS\System32\encdec.dll [2008-04-15 13:00:00 | 000,094,282 | ---- | C] () -- C:\WINDOWS\System32\msencode.dll [2008-04-15 13:00:00 | 000,070,656 | ---- | C] () -- C:\WINDOWS\System32\amstream.dll [2008-04-15 13:00:00 | 000,053,478 | ---- | C] () -- C:\WINDOWS\System32\tcpmon.ini [2008-04-15 13:00:00 | 000,042,809 | ---- | C] () -- C:\WINDOWS\System32\key01.sys [2008-04-15 13:00:00 | 000,042,537 | ---- | C] () -- C:\WINDOWS\System32\keyboard.sys [2008-04-15 13:00:00 | 000,035,648 | ---- | C] () -- C:\WINDOWS\System32\ntio411.sys [2008-04-15 13:00:00 | 000,035,424 | ---- | C] () -- C:\WINDOWS\System32\ntio412.sys [2008-04-15 13:00:00 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio804.sys [2008-04-15 13:00:00 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio404.sys [2008-04-15 13:00:00 | 000,033,936 | ---- | C] () -- C:\WINDOWS\System32\ntio.sys [2008-04-15 13:00:00 | 000,029,370 | ---- | C] () -- C:\WINDOWS\System32\ntdos411.sys [2008-04-15 13:00:00 | 000,029,274 | ---- | C] () -- C:\WINDOWS\System32\ntdos412.sys [2008-04-15 13:00:00 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos804.sys [2008-04-15 13:00:00 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos404.sys [2008-04-15 13:00:00 | 000,027,898 | ---- | C] () -- C:\WINDOWS\System32\ntdos.sys [2008-04-15 13:00:00 | 000,027,097 | ---- | C] () -- C:\WINDOWS\System32\country.sys [2008-04-15 13:00:00 | 000,020,629 | ---- | C] () -- C:\WINDOWS\System32\mqperf.ini [2008-04-15 13:00:00 | 000,016,024 | ---- | C] () -- C:\WINDOWS\System32\rsvp.ini [2008-04-15 13:00:00 | 000,015,360 | ---- | C] () -- C:\WINDOWS\System32\tsd32.dll [2008-04-15 13:00:00 | 000,014,336 | ---- | C] () -- C:\WINDOWS\System32\msdmo.dll [2008-04-15 13:00:00 | 000,013,819 | ---- | C] () -- C:\WINDOWS\System32\pschdprf.ini [2008-04-15 13:00:00 | 000,013,312 | ---- | C] () -- C:\WINDOWS\System32\win87em.dll [2008-04-15 13:00:00 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\scriptpw.dll [2008-04-15 13:00:00 | 000,009,043 | ---- | C] () -- C:\WINDOWS\System32\ansi.sys [2008-04-15 13:00:00 | 000,006,074 | ---- | C] () -- C:\WINDOWS\System32\rasctrs.ini [2008-04-15 13:00:00 | 000,004,976 | ---- | C] () -- C:\WINDOWS\System32\himem.sys [2008-04-15 13:00:00 | 000,002,992 | ---- | C] () -- C:\WINDOWS\System32\perfci.ini [2008-04-15 13:00:00 | 000,002,890 | ---- | C] () -- C:\WINDOWS\System32\perfwci.ini [2008-04-15 13:00:00 | 000,002,656 | ---- | C] () -- C:\WINDOWS\System32\netware.drv [2008-04-15 13:00:00 | 000,001,405 | ---- | C] () -- C:\WINDOWS\msdfmap.ini [2008-04-15 13:00:00 | 000,001,295 | ---- | C] () -- C:\WINDOWS\System32\perffilt.ini [2008-04-15 13:00:00 | 000,000,592 | ---- | C] () -- C:\WINDOWS\win.ini [2008-04-15 13:00:00 | 000,000,359 | ---- | C] () -- C:\WINDOWS\System32\prodspec.ini [2008-04-15 13:00:00 | 000,000,259 | ---- | C] () -- C:\WINDOWS\system.ini [2004-06-24 23:00:00 | 000,771,584 | ---- | C] () -- C:\WINDOWS\System32\RGSS100J.dll [2001-10-26 18:29:42 | 000,157,696 | ---- | C] () -- C:\WINDOWS\System32\paqsp.dll [2001-07-06 14:30:02 | 000,003,234 | ---- | C] () -- C:\WINDOWS\System32\HPTCPMON.INI [1996-04-03 20:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys [color=#E56717]========== LOP Check ==========[/color] [2010-09-13 23:59:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software [2010-11-13 17:38:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG Security Toolbar [2010-12-16 16:21:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG10 [2010-12-08 21:40:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Bluetooth [2010-11-13 12:23:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\boost_interprocess [2010-09-30 22:55:33 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files [2010-01-28 01:36:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Easy Driver Pro [2010-09-22 22:49:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Fighters [2010-09-13 17:12:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-12-05 23:39:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations [2011-02-09 11:50:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\InstallMate [2010-09-19 18:44:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla [2010-02-04 13:38:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\LightScribe [2010-10-25 22:19:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\MFAData [2011-01-15 16:21:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2010-01-28 01:25:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Drivers HeadQuarters [2010-12-05 23:46:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite [2010-09-10 15:27:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PDF Writer [2011-02-10 17:27:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2010-12-27 13:30:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\.ZMatrix [2011-02-08 21:52:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\AVG [2010-09-30 23:06:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\AVG10 [2010-10-06 18:32:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Avnex [2010-09-16 19:06:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\bearsharemediabartb [2010-09-24 06:19:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\BitComet [2010-10-01 11:24:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\BonkEnc [2011-02-05 15:55:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\BSplayer [2011-01-29 13:02:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\BSplayer Pro [2011-02-08 23:42:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\ChomikBox [2010-10-03 16:48:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\CometPlayer [2010-09-13 23:40:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\facemoods.com [2010-02-04 16:48:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Gadu-Gadu 10 [2010-11-12 19:41:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\GetRight [2010-11-07 03:02:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\GetRightToGo [2010-09-30 13:32:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Image Zone Express [2010-09-26 23:51:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\ipla [2011-01-24 19:22:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\JLC's Software [2010-09-07 14:05:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Mikrotik [2010-11-13 14:35:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\NoiseCradle [2010-12-05 23:57:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Nokia [2010-10-05 21:08:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Nowe Gadu-Gadu [2010-09-13 23:47:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\OpenFM [2010-09-07 15:07:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\OpenOffice.org [2010-12-12 12:46:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Opera [2010-12-05 23:48:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\PC Suite [2010-09-10 15:27:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\PDF Writer [2010-11-18 18:41:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\SecondLife [2010-09-13 23:38:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\TeamViewer [2010-09-28 20:53:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\tigerplayer [2011-02-11 21:26:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\uTorrent [2010-12-29 16:17:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\ViGlance [2010-12-29 16:26:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\ViStart [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2010-08-23 13:02:05 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-08-23 12:55:13 | 000,000,211 | ---- | M] () -- C:\BOOT.BKK [2010-12-29 14:36:55 | 000,000,354 | ---- | M] () -- C:\boot.ini [2008-04-15 13:00:00 | 000,004,952 | ---- | M] () -- C:\Bootfont.bin [2010-08-23 13:02:05 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-08-23 13:02:05 | 000,000,000 | ---- | M] () -- C:\IO.SYS [2010-08-23 13:02:05 | 000,000,000 | ---- | M] () -- C:\MSDOS.SYS [2008-04-15 13:00:00 | 000,047,564 | ---- | M] () -- C:\NTDETECT.COM [2008-04-15 13:00:00 | 000,251,152 | ---- | M] () -- C:\ntldr [2011-02-11 21:03:10 | 792,723,456 | -HS- | M] () -- C:\pagefile.sys [2011-01-28 13:31:02 | 000,008,786 | ---- | M] () -- C:\Program1.RPT [2011-02-11 08:19:27 | 000,000,000 | ---- | M] () -- C:\UsbFix.txt [color=#A23BEC]< MD5 for: AGP440.SYS >[/color] [2008-04-15 13:00:00 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:agp440.sys [2008-04-14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys [2008-04-14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2008-04-15 13:00:00 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys [2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\Documents and Settings\User\Moje dokumenty\SuperSterownik\Backup\Driver Backup 2-11-2011-195719\Intel(R) 82801EB Ultra ATA Storage Controllers#1\atapi.sys [2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\Documents and Settings\User\Moje dokumenty\SuperSterownik\Backup\Driver Backup 2-11-2011-195719\Intel(R) 82801EB Ultra ATA Storage Controllers\atapi.sys [2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\Documents and Settings\User\Moje dokumenty\SuperSterownik\Backup\Driver Backup 2-11-2011-195719\Podstawowy kanał IDE#1\atapi.sys [2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\Documents and Settings\User\Moje dokumenty\SuperSterownik\Backup\Driver Backup 2-11-2011-195719\Podstawowy kanał IDE\atapi.sys [2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\Documents and Settings\User\Moje dokumenty\SuperSterownik\Backup\Driver Backup 2-11-2011-195719\Pomocniczy kanał IDE#1\atapi.sys [2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\Documents and Settings\User\Moje dokumenty\SuperSterownik\Backup\Driver Backup 2-11-2011-195719\Pomocniczy kanał IDE\atapi.sys [2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys [2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\dllcache\atapi.sys [2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys [2008-04-15 13:00:00 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0001\DriverFiles\i386\atapi.sys [2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0005\DriverFiles\i386\atapi.sys [color=#A23BEC]< MD5 for: BEEP.SYS >[/color] [2008-04-15 13:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys [2008-04-15 13:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2008-04-15 13:00:00 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys [2008-04-13 23:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\Documents and Settings\User\Moje dokumenty\SuperSterownik\Backup\Driver Backup 2-11-2011-195719\Stacja dysków CD-ROM#1\cdrom.sys [2008-04-13 23:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\Documents and Settings\User\Moje dokumenty\SuperSterownik\Backup\Driver Backup 2-11-2011-195719\Stacja dysków CD-ROM\cdrom.sys [2008-04-14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys [2008-04-13 23:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys [color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color] [2008-04-14 22:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll [2008-04-15 13:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\dllcache\eventlog.dll [2008-04-15 13:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\eventlog.dll [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2008-04-14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys [2008-04-15 13:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\dllcache\ndis.sys [2008-04-15 13:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe [2008-04-15 13:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\dllcache\winlogon.exe [2008-04-15 13:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\winlogon.exe < End of report > [/log] [log] Logfile of random's system information tool 1.08 (written by random/random) Run by User at 2011-02-11 21:31:22 Microsoft Windows XP Professional Dodatek Service Pack 3 System drive C: has 11 GB (29%) free of 38 GB Total RAM: 1015 MB (42% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 21:31:40, on 2011-02-11 Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\PROGRA~1\AVG\AVG10\avgchsvx.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\EXPLORER.EXE C:\Program Files\AVG\AVG10\avgfws.exe C:\Program Files\AVG\AVG10\avgwdsvc.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Common Files\LightScribe\LSSrvc.exe C:\WINDOWS\system32\lxeccoms.exe C:\WINDOWS\system32\HPZipm12.exe C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe C:\Program Files\AVG\AVG10\avgam.exe C:\Program Files\AVG\AVG10\avgnsx.exe C:\Program Files\AVG\AVG10\avgemcx.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\HP\HP Software Update\HPWuSchd2.exe C:\Program Files\AVG\AVG10\avgtray.exe C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\Analog Devices\SoundMAX\SMTray.exe C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\uTorrent\uTorrent.exe C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe C:\Program Files\AVG\AVG10\avgcsrvx.exe C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe C:\PROGRA~1\AVG\AVG10\avgrsx.exe C:\Program Files\AVG\AVG10\avgcsrvx.exe C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe C:\Program Files\Winamp\winamp.exe C:\Documents and Settings\User\Pulpit\unconfirmed 32398.exe C:\Program Files\trend micro\User.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.bearshare.com/sidebar.html?src=ssb R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.qooqlle.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,EXPLORER.EXE O2 - BHO: MediaBar - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - (no file) O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.4.8.11.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll O2 - BHO: UrlHelper Class - {74322BF9-DF26-493f-B0DA-6D2FC5E6429E} - (no file) O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O2 - BHO: IEPluginBHO - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\User\Dane aplikacji\Nowe Gadu-Gadu\_userdata\ggbho.1.dll (file missing) O3 - Toolbar: MediaBar - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - (no file) O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll O3 - Toolbar: (no name) - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - (no file) O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe O4 - HKLM\..\Run: [DrvLsnr] C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe O4 - HKLM\..\Run: [GProton] %ALLUSERSPROFILE%\GProton.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe" O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [ALLUpdate] "C:\Program Files\ALLPlayer\ALLUpdate.exe" "sleep" O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe" /c O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA LOKALNA') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA SIECIOWA') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O8 - Extra context menu item: Pobierz wszystko za pomocą BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm O8 - Extra context menu item: Pobierz za pomocą BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.4.8.11.dll/206 (file missing) O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) - http://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab O18 - Protocol: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O20 - AppInit_DLLs: O20 - Winlogon Notify: qoMgddAT - qoMgddAT.dll (file missing) O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe O23 - Service: Zapora AVG (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\avgfws.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\avgwdsvc.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: lxecCATSCustConnectService - Lexmark International, Inc. - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxecserv.exe O23 - Service: lxec_device - - C:\WINDOWS\system32\lxeccoms.exe O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe (file missing) O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- End of file - 9834 bytes ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0974BA1E-64EC-11DE-B2A5-E43756D89593}] MediaBar [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}] BitComet Helper - C:\Program Files\BitComet\tools\BitCometBHO_1.4.8.11.dll [2010-08-11 735024] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}] AVG Safe Search - C:\Program Files\AVG\AVG10\avgssie.dll [2011-01-07 2731872] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{74322BF9-DF26-493f-B0DA-6D2FC5E6429E}] UrlHelper Class [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}] AVG Security Toolbar BHO - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll [2010-10-06 2475336] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-11-24 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-11-24 79648] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D}] IEPluginBHO Class - C:\Documents and Settings\User\Dane aplikacji\Nowe Gadu-Gadu\_userdata\ggbho.1.dll [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {0974BA1E-64EC-11DE-B2A5-E43756D89593} - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - AVG Security Toolbar - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll [2010-10-06 2475336] {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552] "HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2005-05-11 49152] "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760] "Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288] "AVG_TRAY"=C:\Program Files\AVG\AVG10\avgtray.exe [2011-01-07 2747744] "SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2007-04-16 577536] "smapp"=C:\Program Files\Analog Devices\SoundMAX\SMTray.exe [2003-05-05 143360] "DrvLsnr"=C:\Program Files\Analog Devices\SoundMAX\DrvLsnr.exe [2003-05-08 69632] "GProton"=C:\Documents and Settings\All Users\GProton.exe [2011-01-07 7793152] "TaskTray"= [] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-15 15360] "uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2011-01-02 396152] "MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232] "ALLUpdate"=C:\Program Files\ALLPlayer\ALLUpdate.exe [2010-11-02 1432064] "Google Update"=C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe [2011-01-23 136176] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"=" " [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\WINDOWS\system32\igfxdev.dll [2005-09-20 135168] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\qoMgddAT] qoMgddAT.dll [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon] C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265608] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2009-01-30 133632] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{6D794CB4-C7CD-4c6f-BFDC-9B77AFBDC02C}"= [] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=0 "NoDriveAutoRun"=3 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"=1 "NoDriveAutoRun"=3 "NoDriveTypeAutoRun"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\WINDOWS\system32\lxeccoms.exe"="C:\WINDOWS\system32\lxeccoms.exe:*:Enabled:Pro800-Pro900 Series Server" "C:\Program Files\Gadu-Gadu 10\gg.exe"="C:\Program Files\Gadu-Gadu 10\gg.exe:*:Disabled:Gadu-Gadu 10" "C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe" "C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe" "C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe"="C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe" "C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe" "C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe" "C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe" "C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe" "C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe" "C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe" "C:\Program Files\valve\hl.exe"="C:\Program Files\valve\hl.exe:*:Enabled:Half-Life Launcher" "C:\Program Files\valve\hlds.exe"="C:\Program Files\valve\hlds.exe:*:Enabled:HLDS Launcher" "C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype" "C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager" "C:\Program Files\AVG\AVG10\avgmfapx.exe"="C:\Program Files\AVG\AVG10\avgmfapx.exe:*:Enabled:Instalator AVG" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser" "C:\Program Files\AVG\AVG10\avgdiagex.exe"="C:\Program Files\AVG\AVG10\avgdiagex.exe:*:Enabled:Diagnostyka AVG 2011" "C:\Program Files\AVG\AVG10\avgnsx.exe"="C:\Program Files\AVG\AVG10\avgnsx.exe:*:Enabled:Ochrona Sieci" "C:\Program Files\AVG\AVG10\avgam.exe"="C:\Program Files\AVG\AVG10\avgam.exe:*:Enabled:Menedżer alarmów systemu AVG" "C:\Program Files\AVG\AVG10\avgemcx.exe"="C:\Program Files\AVG\AVG10\avgemcx.exe:*:Enabled:Uniwersalny skaner poczty e-mail" "C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" ======List of files/folders created in the last 1 months====== 2011-02-11 21:22:06 ----A---- C:\WINDOWS\system32\OLDB4.tmp 2011-02-11 21:22:06 ----A---- C:\WINDOWS\system32\OLDB3.tmp 2011-02-11 21:22:05 ----A---- C:\WINDOWS\system32\OLDB2.tmp 2011-02-11 21:22:05 ----A---- C:\WINDOWS\system32\OLDB1.tmp 2011-02-11 21:22:04 ----A---- C:\WINDOWS\system32\OLDB0.tmp 2011-02-11 21:22:03 ----A---- C:\WINDOWS\system32\OLDAF.tmp 2011-02-11 21:22:03 ----A---- C:\WINDOWS\system32\OLDAE.tmp 2011-02-11 21:22:02 ----A---- C:\WINDOWS\system32\OLDAD.tmp 2011-02-11 21:21:59 ----A---- C:\WINDOWS\system32\OLDAC.tmp 2011-02-11 21:17:28 ----D---- C:\WINDOWS\LastGood 2011-02-11 19:11:33 ----D---- C:\Program Files\Driver-Soft 2011-02-11 12:01:18 ----D---- C:\rsit 2011-02-11 08:18:47 ----RASHD---- C:\Autorun.inf 2011-02-11 08:11:09 ----D---- C:\_OTL 2011-02-10 18:00:10 ----D---- C:\Program Files\Everest Poker 2011-02-10 17:19:51 ----A---- C:\UsbFix.txt 2011-02-10 15:57:17 ----D---- C:\UsbFix 2011-02-10 13:58:31 ----D---- C:\Program Files\Szkola na miare klasa 1b 2011-02-10 00:15:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2478971$ 2011-02-10 00:15:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2485376$ 2011-02-10 00:15:00 ----HDC---- C:\WINDOWS\$NtUninstallKB2479628$ 2011-02-10 00:14:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2483185$ 2011-02-10 00:09:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2476687$ 2011-02-10 00:08:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2478960$ 2011-02-10 00:08:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2393802$ 2011-02-09 15:36:14 ----D---- C:\Program Files\WinISO 2011-02-09 13:59:28 ----D---- C:\Program Files\7-Zip 2011-02-09 13:07:54 ----A---- C:\WINDOWS\IsUn0415.exe 2011-02-09 11:50:46 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\InstallMate 2011-02-09 11:50:27 ----D---- C:\Program Files\Mozilla Firefox 2011-02-09 09:12:55 ----D---- C:\Program Files\trend micro 2011-02-08 23:59:09 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Google 2011-02-06 23:47:26 ----D---- C:\Documents and Settings\User\Dane aplikacji\ChomikBox 2011-02-06 23:28:00 ----D---- C:\Program Files\ChomikBox 2011-02-04 10:58:27 ----A---- C:\WINDOWS\VPlayer.INI 2011-02-02 15:57:34 ----D---- C:\Program Files\VirtualDJ 2011-01-29 13:22:01 ----N---- C:\WINDOWS\system32\spmsg.dll 2011-01-29 13:21:42 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$ 2011-01-29 13:20:47 ----D---- C:\Program Files\Windows Media Connect 2 2011-01-29 13:20:09 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$ 2011-01-29 13:17:44 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$ 2011-01-29 13:16:22 ----D---- C:\WINDOWS\system32\LogFiles 2011-01-29 13:16:22 ----D---- C:\WINDOWS\system32\drivers\UMDF 2011-01-29 13:16:05 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$ 2011-01-29 13:02:39 ----D---- C:\Documents and Settings\User\Dane aplikacji\BSplayer Pro 2011-01-29 13:02:39 ----D---- C:\Documents and Settings\User\Dane aplikacji\BSplayer 2011-01-29 13:02:38 ----D---- C:\Program Files\Webteh 2011-01-29 12:54:17 ----A---- C:\WINDOWS\system32\xvidcore.dll 2011-01-29 12:54:17 ----A---- C:\WINDOWS\system32\libFLAC.dll 2011-01-29 12:54:14 ----D---- C:\Program Files\NAPI-PROJEKT 2011-01-29 12:54:05 ----D---- C:\Program Files\ALLPlayer 2011-01-29 12:52:23 ----D---- C:\Program Files\Vplayer 2011-01-26 17:07:34 ----D---- C:\Program Files\Common Files\Real 2011-01-25 23:05:44 ----D---- C:\Program Files\Real 2011-01-25 23:05:38 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Real 2011-01-25 23:05:29 ----D---- C:\Documents and Settings\User\Dane aplikacji\Real 2011-01-24 19:22:08 ----D---- C:\Documents and Settings\User\Dane aplikacji\JLC's Software 2011-01-24 19:21:53 ----D---- C:\Program Files\JLC's Software 2011-01-24 15:25:40 ----D---- C:\Program Files\JoWooD 2011-01-23 22:19:43 ----A---- C:\WINDOWS\Irremote.ini 2011-01-12 23:52:17 ----D---- C:\f392cca3e8185c93e16f64fd ======List of files/folders modified in the last 1 months====== 2011-02-11 21:31:34 ----D---- C:\Documents and Settings\User\Dane aplikacji\uTorrent 2011-02-11 21:29:17 ----D---- C:\WINDOWS\Temp 2011-02-11 21:22:28 ----D---- C:\WINDOWS\system32\ReinstallBackups 2011-02-11 21:22:19 ----HD---- C:\WINDOWS\inf 2011-02-11 21:22:06 ----D---- C:\WINDOWS\system32 2011-02-11 21:20:48 ----D---- C:\WINDOWS\system32\drivers 2011-02-11 21:17:55 ----RSHDC---- C:\WINDOWS\system32\dllcache 2011-02-11 21:17:28 ----D---- C:\WINDOWS 2011-02-11 21:16:09 ----D---- C:\WINDOWS\Prefetch 2011-02-11 21:04:03 ----D---- C:\WINDOWS\system32\CatRoot2 2011-02-11 21:01:37 ----A---- C:\WINDOWS\SchedLgU.Txt 2011-02-11 20:59:32 ----SD---- C:\WINDOWS\Tasks 2011-02-11 19:11:33 ----D---- C:\Program Files 2011-02-11 16:36:53 ----D---- C:\WINDOWS\system32\drivers\AVG 2011-02-11 16:10:38 ----SHD---- C:\WINDOWS\Installer 2011-02-10 17:27:19 ----AD---- C:\Documents and Settings\All Users\Dane aplikacji\TEMP 2011-02-10 15:44:08 ----RSD---- C:\WINDOWS\assembly 2011-02-10 13:58:31 ----RSD---- C:\WINDOWS\Fonts 2011-02-10 00:15:22 ----A---- C:\WINDOWS\imsins.BAK 2011-02-10 00:11:10 ----D---- C:\WINDOWS\Debug 2011-02-10 00:10:53 ----A---- C:\WINDOWS\system32\MRT.exe 2011-02-10 00:10:10 ----D---- C:\Program Files\Internet Explorer 2011-02-10 00:09:37 ----D---- C:\WINDOWS\ie8updates 2011-02-10 00:09:30 ----HD---- C:\WINDOWS\$hf_mig$ 2011-02-08 23:26:12 ----D---- C:\Program Files\Google 2011-02-08 22:38:45 ----D---- C:\WINDOWS\system32\config 2011-02-08 22:00:39 ----D---- C:\WINDOWS\Minidump 2011-02-08 21:58:34 ----SD---- C:\WINDOWS\Downloaded Program Files 2011-02-08 21:52:03 ----D---- C:\Documents and Settings\User\Dane aplikacji\AVG 2011-02-08 21:39:38 ----DC---- C:\Config.Msi 2011-02-08 21:39:37 ----RD---- C:\Program Files\Skype 2011-02-08 21:38:48 ----HD---- C:\Program Files\InstallShield Installation Information 2011-01-31 14:12:30 ----D---- C:\WINDOWS\system32\CatRoot 2011-01-29 13:21:14 ----A---- C:\WINDOWS\win.ini 2011-01-29 13:20:41 ----D---- C:\Program Files\Windows Media Player 2011-01-29 13:20:21 ----D---- C:\WINDOWS\Help 2011-01-29 12:55:18 ----D---- C:\Program Files\SubEdit-Player 2011-01-27 10:40:07 ----A---- C:\WINDOWS\system32\msvcr71.dll 2011-01-27 10:40:07 ----A---- C:\WINDOWS\system32\msvcp71.dll 2011-01-26 17:07:34 ----D---- C:\Program Files\Common Files 2011-01-26 17:06:01 ----D---- C:\WINDOWS\WinSxS 2011-01-23 22:23:35 ----D---- C:\Program Files\Common Files\Ahead 2011-01-23 22:23:31 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Nero 2011-01-23 22:13:03 ----D---- C:\Program Files\Counter-Strike 1.6 2011-01-23 16:16:48 ----DC---- C:\Documents and Settings 2011-01-21 15:44:11 ----A---- C:\WINDOWS\system32\shimgvw.dll 2011-01-21 15:44:11 ----A---- C:\WINDOWS\system32\shell32.dll 2011-01-16 16:55:17 ----D---- C:\Documents and Settings\User\Dane aplikacji\Skype 2011-01-16 14:59:07 ----D---- C:\Documents and Settings\User\Dane aplikacji\skypePM 2011-01-16 14:06:36 ----D---- C:\Program Files\Winamp 2011-01-16 14:05:16 ----D---- C:\Program Files\Winamp Detect 2011-01-15 16:21:52 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 AVGIDSEH;AVGIDSEH; C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys [2010-09-13 25680] R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\WINDOWS\system32\DRIVERS\avgrkx86.sys [2010-09-07 26064] R0 giveio;giveio; C:\WINDOWS\system32\giveio.sys [1996-04-03 5248] R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2009-04-28 44944] R0 speedfan;speedfan; C:\WINDOWS\system32\speedfan.sys [2006-09-24 5248] R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-09-16 436792] R0x01000000 papycpu;papycpu; C:\WINDOWS\system32\drivers\papycpu.sys [1998-10-06 1984] R0x01000000 papyjoy;papyjoy; C:\WINDOWS\system32\drivers\papyjoy.sys [1998-10-06 1888] R1 Avgldx86;AVG AVI Loader Driver; C:\WINDOWS\system32\DRIVERS\avgldx86.sys [2010-12-08 251728] R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\WINDOWS\system32\DRIVERS\avgmfx86.sys [2010-09-07 34384] R1 Avgtdix;AVG TDI Driver; C:\WINDOWS\system32\DRIVERS\avgtdix.sys [2010-11-12 299984] R1 intelppm;Sterownik procesora Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-15 40448] R1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2002-09-16 4228] R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2003-03-13 100224] R3 Avgfwdx;Avgfwdx; C:\WINDOWS\system32\DRIVERS\avgfwdx.sys [2010-07-12 30432] R3 AVGIDSDriver;AVGIDSDriver; C:\WINDOWS\system32\DRIVERS\AVGIDSDriver.Sys [2010-08-19 123472] R3 AVGIDSFilter;AVGIDSFilter; C:\WINDOWS\system32\DRIVERS\AVGIDSFilter.Sys [2010-08-19 30288] R3 AVGIDSShim;AVGIDSShim; C:\WINDOWS\system32\DRIVERS\AVGIDSShim.Sys [2010-08-19 26192] R3 b57w2k;Broadcom NetXtreme Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2008-07-25 176640] R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2005-09-20 1302332] R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2003-05-27 578304] R3 usbuhci;Sterownik Miniport uniwersalnego kontrolera hosta USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608] R3 VCSVADHWSer;Avnex Virtual Audio Device (WDM); C:\WINDOWS\system32\DRIVERS\vcsvad.sys [2008-12-26 17792] S0 BTHidMgr;Bluetooth HID Manager Service; C:\WINDOWS\System32\Drivers\BTHidMgr.sys [] S1 kbdhid;Sterownik klawiatury HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720] S3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2008-09-24 4122368] S3 aux67s46;aux67s46; C:\WINDOWS\system32\drivers\aux67s46.sys [] S3 Avgfwfd;AVG network filter service; C:\WINDOWS\system32\DRIVERS\avgfwdx.sys [2010-07-12 30432] S3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys [] S3 BlueletSCOAudio;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys [] S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys [] S3 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\system32\DRIVERS\vbtenum.sys [] S3 CCDECODE;Dekoder napisów; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024] S3 EagleNT;EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys [] S3 HidUsb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368] S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2005-03-08 51120] S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2005-03-08 16496] S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2005-03-08 21744] S3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-26 12160] S3 MSTEE;Konwerter strumieni Tee/Sink-to-Sink Microsoft Streaming; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504] S3 NABTSFEC;Koder-dekoder NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248] S3 NdisIP;Połączenie TV/wideo firmy Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880] S3 nmwcd;Nokia USB Phone Parent Driver; C:\WINDOWS\system32\drivers\ccdcmb.sys [2010-07-30 18048] S3 nmwcdc;Nokia USB Communication Driver; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2010-07-30 23040] S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816] S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2008-04-15 5888] S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136] S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232] S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2010-07-30 8192] S3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128] S3 usbprint;Klasa PRINTER USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856] S3 usbscan;Sterownik skanera USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104] S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-14 26112] S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2010-07-30 8192] S3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] S3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys [] S3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys [] S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2009-07-14 444136] S3 WSTCODEC;Kodery-dekodery teletekstu w standardzie światowym; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200] S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 avgfws;Zapora AVG; C:\Program Files\AVG\AVG10\avgfws.exe [2010-11-22 3226632] R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe [2011-01-06 6128720] R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG10\avgwdsvc.exe [2010-10-22 265400] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-11-12 153376] R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-07-25 79136] R2 lxec_device;lxec_device; C:\WINDOWS\system32\lxeccoms.exe [2010-04-14 598696] R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2004-09-29 69632] R2 SoundMAX Agent Service (default);SoundMAX Agent Service; C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [2002-09-20 45056] R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968] S2 lxecCATSCustConnectService;lxecCATSCustConnectService; C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxecserv.exe [2010-04-14 193192] S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312] S3 AVG Security Toolbar Service;AVG Security Toolbar Service; C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe [2010-10-06 517448] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104] S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664] S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [] S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-06-14 615936] S3 WMPNetworkSvc;Usługa udostępniania w sieci programu Windows Media Player; C:\Program Files\Windows Media Player\WMPNetwk.exe [2009-02-04 918016] S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-15 14336] S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096] -----------------EOF----------------- [/log] nie wiem dlaczego ale nie było extras i w dodatku zniknęła mi ikonka głośności i sterownika głośności ale z dźwiękiem dam sobie rade czy użycie super sterownika to dobry pomysł ? podejrzewam że brak dźwięku jest spowodowany jego użyciem dźwięk naprawiony ale qooqlle nie zniknęły
Tomek01 komentarz 14 lutego 2011 komentarz 14 lutego 2011 To jeszcze tylko to wklej do OTL: [code]:OTL IE - HKU\S-1-5-21-2052111302-492894223-1606980848-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.qooqlle.com/ :Commands [emptytemp] [/code] W OTL użyj funkcji Clean Up. Wyłącz a następnie włącz przywracanie systemu na wszystkich partycjach. Użyj ATF Cleaner, zaznacz trzy pierwsze fajki i empty selected. Wykonaj pełny skan [url=http://www.instalki.pl/programy/download_c/14/155.html][color=#0000CD][b]DrWebCureIt[/b][/color][/url] oraz [url=http://www.instalki.pl/programy/download_c/13/96.html][color=#0000CD][b]Malwarebytes Anti-Malware[/b][/color][/url] i jakby coś wykryły raporty pokaż na forum.
batonxd komentarz 1 marca 2011 Autor komentarz 1 marca 2011 zrobiłem formata i jak pewnie wiadomo problemu już nie ma dzięki za poświęcony czas i cierpliwość
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.