x-kom hosting

Log OTL oraz RSIT

Machej666
utworzono
utworzono

Witam, Prosiłbym o sprawdzenie logów OTL i RSIT, z komputerem dzieją się różne niepożądane rzeczy i mam nadzieję, że uda się to naprawić ;)

OTL:
[log]OTL logfile created on: 2011-06-23 11:57:37 - Run 1
OTL by OldTimer - Version 3.2.24.1 Folder = C:\Documents and Settings\Arturuz\Pulpit
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,46 Gb Available Physical Memory | 72,95% Memory free
3,85 Gb Paging File | 3,49 Gb Available in Paging File | 90,83% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 232,88 Gb Total Space | 47,75 Gb Free Space | 20,51% Space Free | Partition Type: NTFS
Drive D: | 232,88 Gb Total Space | 26,63 Gb Free Space | 11,44% Space Free | Partition Type: NTFS

Computer Name: KOMP | User Name: Arturuz | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days

[color=#E56717]========== Processes (All) ==========[/color]

PRC - [2011-06-23 11:55:27 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Arturuz\Pulpit\OTL.exe
PRC - [2011-05-15 16:48:49 | 000,016,856 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe
PRC - [2011-05-15 16:48:47 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011-05-10 14:10:58 | 003,459,712 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2011-05-10 14:10:57 | 000,042,184 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2011-05-04 04:52:36 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2011-04-08 12:59:52 | 000,254,696 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
PRC - [2011-01-07 20:58:12 | 000,156,776 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe
PRC - [2010-08-17 15:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe
PRC - [2009-02-09 13:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe
PRC - [2009-02-06 12:10:02 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvse.exe
PRC - [2009-01-08 10:42:54 | 000,233,472 | ---- | M] (Teruten) -- C:\WINDOWS\system32\FsUsbExService.Exe
PRC - [2008-04-15 14:00:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008-04-15 14:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe
PRC - [2008-04-15 14:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe
PRC - [2008-04-15 14:00:00 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe
PRC - [2008-04-15 14:00:00 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe
PRC - [2008-04-15 14:00:00 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe
PRC - [2008-04-15 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [WUDFSERVICEGROUP]
PRC - [2008-04-15 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS]
PRC - [2008-04-15 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE]
PRC - [2008-04-15 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS]
PRC - [2008-04-15 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-04-15 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-04-15 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [IMGSVC]
PRC - [2008-04-15 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH]
PRC - [2008-04-15 14:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe
PRC - [2008-04-15 14:00:00 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe
PRC - [2007-05-21 17:43:36 | 005,327,360 | R--- | M] (Linksys) -- C:\Program Files\Linksys\Linksys Wireless-G PCI Wireless Network Monitor\WMP54Gv4.exe
PRC - [2006-03-16 20:25:52 | 000,057,344 | ---- | M] (GEMTEKS) -- C:\Program Files\Linksys\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe


[color=#E56717]========== Modules (All) ==========[/color]

MOD - [2011-06-23 11:55:27 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Arturuz\Pulpit\OTL.exe
MOD - [2011-05-10 14:10:55 | 000,199,792 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\snxhk.dll
MOD - [2011-01-21 16:44:11 | 008,491,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll
MOD - [2010-12-20 19:32:08 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll
MOD - [2010-12-09 17:15:25 | 000,726,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll
MOD - [2010-08-23 18:12:53 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2010-08-16 10:45:09 | 000,590,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll
MOD - [2010-07-16 14:00:50 | 001,287,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll
MOD - [2009-12-08 11:25:45 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll
MOD - [2009-06-25 10:27:54 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll
MOD - [2009-03-21 16:08:59 | 001,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll
MOD - [2009-02-09 12:53:44 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll
MOD - [2008-10-23 14:42:41 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll
MOD - [2008-04-15 14:00:00 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll
MOD - [2008-04-15 14:00:00 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll
MOD - [2008-04-15 14:00:00 | 000,732,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\userenv.dll
MOD - [2008-04-15 14:00:00 | 000,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll
MOD - [2008-04-15 14:00:00 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll
MOD - [2008-04-15 14:00:00 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll
MOD - [2008-04-15 14:00:00 | 000,297,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTF.dll
MOD - [2008-04-15 14:00:00 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll
MOD - [2008-04-15 14:00:00 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll
MOD - [2008-04-15 14:00:00 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll
MOD - [2008-04-15 14:00:00 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wldap32.dll
MOD - [2008-04-15 14:00:00 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv
MOD - [2008-04-15 14:00:00 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntmarta.dll
MOD - [2008-04-15 14:00:00 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
MOD - [2008-04-15 14:00:00 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll
MOD - [2008-04-15 14:00:00 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll
MOD - [2008-04-15 14:00:00 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samlib.dll
MOD - [2008-04-15 14:00:00 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll
MOD - [2008-04-15 14:00:00 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - File not found [Auto | Running] -- -- (WMP54Gv4SVC)
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011-05-10 14:10:57 | 000,042,184 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2010-04-10 16:31:53 | 000,651,720 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009-07-26 07:43:14 | 000,025,832 | ---- | M] (BioWare) [On_Demand | Stopped] -- C:\Program Files\Dragon Age\bin_ship\daupdatersvc.service.exe -- (DAUpdaterSvc)
SRV - [2009-01-08 10:42:54 | 000,233,472 | ---- | M] (Teruten) [Auto | Running] -- C:\WINDOWS\system32\FsUsbExService.Exe -- (FsUsbExService)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - [2011-05-10 14:03:54 | 000,441,176 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011-05-10 14:03:44 | 000,307,928 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011-05-10 14:02:37 | 000,049,240 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011-05-10 14:02:25 | 000,102,616 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011-05-10 13:59:56 | 000,025,432 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011-05-10 13:59:37 | 000,030,808 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011-05-10 13:59:35 | 000,019,544 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010-01-23 13:31:22 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009-11-19 15:06:46 | 000,098,672 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039bus.sys -- (s1039bus) Sony Ericsson Device 1039 driver (WDM)
DRV - [2009-11-19 15:06:46 | 000,025,456 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039nd5.sys -- (s1039nd5) Sony Ericsson Device 1039 USB Ethernet Emulation (NDIS)
DRV - [2009-11-19 15:06:45 | 000,124,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039mdm.sys -- (s1039mdm)
DRV - [2009-11-19 15:06:45 | 000,123,504 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039unic.sys -- (s1039unic) Sony Ericsson Device 1039 USB Ethernet Emulation (WDM)
DRV - [2009-11-19 15:06:45 | 000,117,872 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039mgmt.sys -- (s1039mgmt) Sony Ericsson Device 1039 USB WMC Device Management Drivers (WDM)
DRV - [2009-11-19 15:06:45 | 000,113,904 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039obex.sys -- (s1039obex)
DRV - [2009-11-19 15:06:44 | 000,014,960 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s1039mdfl.sys -- (s1039mdfl)
DRV - [2009-01-08 10:42:54 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2008-05-19 09:46:30 | 000,150,568 | R--- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\mv61xx.sys -- (mv61xx)
DRV - [2008-03-26 20:37:26 | 004,713,472 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2008-02-22 16:33:02 | 000,114,304 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdm.sys -- (sscdmdm)
DRV - [2008-02-22 16:33:02 | 000,014,976 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdfl.sys -- (sscdmdfl)
DRV - [2008-02-22 16:33:00 | 000,087,936 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdbus.sys -- (sscdbus) SAMSUNG USB Composite Device driver (WDM)
DRV - [2008-02-02 17:54:00 | 000,036,864 | R--- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\l1e51x86.sys -- (L1e)
DRV - [2007-12-17 11:14:06 | 000,012,400 | R--- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AsIO.sys -- (AsIO)
DRV - [2006-09-24 15:28:46 | 000,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan)
DRV - [2005-10-27 16:06:30 | 000,356,096 | ---- | M] (Ralink Technology Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rt61.sys -- (RT61) Linksys Wireless-G PCI Adapter Driver(RT61)
DRV - [2004-08-13 12:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)
DRV - [2003-09-25 23:15:32 | 000,015,872 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\GTNDIS5.sys -- (GTNDIS5)
DRV - [1996-04-03 21:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com/?o=0&l=dir
IE - HKCU\..\URLSearchHook: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\tbuTor.dll (Conduit Ltd.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.search.defaultenginename: ""
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.pl/"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.6
FF - prefs.js..extensions.enabledItems: {3d7eb24f-2740-49df-8937-200b1cc08f8a}:1.5.14.2
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: engine@conduit.com:3.3.3.2
FF - prefs.js..extensions.enabledItems: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}:3.3.3.2
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24

FF - HKLM\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2011-05-26 13:53:00 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-05-15 16:48:59 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-06-19 22:58:50 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

[2010-01-23 01:04:28 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Arturuz\Dane aplikacji\Mozilla\Extensions
[2011-05-23 21:38:41 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Arturuz\Dane aplikacji\Mozilla\Firefox\Profiles\1lrqvygf.default\extensions
[2010-10-21 16:58:35 | 000,000,000 | ---D | M] (Flashblock) -- C:\Documents and Settings\Arturuz\Dane aplikacji\Mozilla\Firefox\Profiles\1lrqvygf.default\extensions\{3d7eb24f-2740-49df-8937-200b1cc08f8a}
[2011-03-31 20:33:15 | 000,000,000 | ---D | M] (uTorrentBar Community Toolbar) -- C:\Documents and Settings\Arturuz\Dane aplikacji\Mozilla\Firefox\Profiles\1lrqvygf.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}
[2011-03-31 20:33:19 | 000,000,000 | ---D | M] (Conduit Engine) -- C:\Documents and Settings\Arturuz\Dane aplikacji\Mozilla\Firefox\Profiles\1lrqvygf.default\extensions\engine@conduit.com
[2010-06-15 23:11:44 | 000,002,340 | ---- | M] () -- C:\Documents and Settings\Arturuz\Dane aplikacji\Mozilla\Firefox\Profiles\1lrqvygf.default\searchplugins\bigseekpro.xml
[2010-08-02 13:06:19 | 000,001,728 | ---- | M] () -- C:\Documents and Settings\Arturuz\Dane aplikacji\Mozilla\Firefox\Profiles\1lrqvygf.default\searchplugins\google-pl.xml
[2011-06-15 16:00:46 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011-02-16 19:21:25 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010-09-09 15:17:30 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2011-01-04 21:57:23 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2011-02-16 19:22:34 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2011-06-15 16:00:47 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
File not found (No name found) --
() (No name found) -- C:\DOCUMENTS AND SETTINGS\ARTURUZ\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\1LRQVYGF.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
[2011-05-26 13:53:00 | 000,000,000 | ---D | M] (avast! WebRep) -- C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF
[2010-09-09 15:17:19 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2010-04-11 11:14:15 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION
[2011-05-15 16:48:46 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll
[2011-05-04 04:52:23 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2011-05-15 16:48:50 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2011-05-15 16:48:50 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2011-05-15 16:48:50 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2011-05-15 16:48:50 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2011-05-15 16:48:50 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2011-05-15 16:48:50 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2008-04-15 14:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (uTorrentBar Toolbar) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\tbuTor.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (uTorrentBar Toolbar) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\tbuTor.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (uTorrentBar Toolbar) - {BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - C:\Program Files\uTorrentBar\tbuTor.dll (Conduit Ltd.)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Cpu Level Up help] C:\Program Files\ASUS\AI Suite\CpuLevelUpHelp.exe ()
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [QFan Help] C:\Program Files\ASUS\AI Suite\QFan3\QFanHelp.exe ()
O4 - HKLM..\RunServices: [WUSB54GC] C:\Program Files\ [2011-06-20 14:02:55 | 000,000,000 | R--D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} http://www.mks.com.pl/skaner/SkanerOnline.cab (MksSkanerOnline Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 217.113.224.36 217.113.224.35
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Arturuz\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Arturuz\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010-01-23 00:14:03 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2009-06-23 18:38:40 | 000,000,000 | ---D | M] - D:\autocad2006 -- [ NTFS ]
O33 - MountPoints2\{826f45e8-9b06-11df-a98f-002129e2ceee}\Shell - "" = AutoRun
O33 - MountPoints2\{826f45e8-9b06-11df-a98f-002129e2ceee}\Shell\AutoRun\command - "" = G:\Startme.exe
O33 - MountPoints2\{e8cb935a-44ab-11df-a906-002129e2ceee}\Shell\AutoRun\command - "" = G:\yveqsh93.exe
O33 - MountPoints2\{e8cb935a-44ab-11df-a906-002129e2ceee}\Shell\open\Command - "" = G:\yveqsh93.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

MsConfig - StartUpReg: [b]Adobe ARM[/b] - hkey= - key= - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
MsConfig - StartUpReg: [b]Adobe Reader Speed Launcher[/b] - hkey= - key= - C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
MsConfig - StartUpReg: [b]Ai Nap[/b] - hkey= - key= - C:\Program Files\ASUS\AI Suite\AiNap\AiNap.exe ()
MsConfig - StartUpReg: [b]Alcmtr[/b] - hkey= - key= - C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
MsConfig - StartUpReg: [b]AutoStartNPSAgent[/b] - hkey= - key= - C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe (Samsung Electronics Co., Ltd.)
MsConfig - StartUpReg: [b]DAEMON Tools Lite[/b] - hkey= - key= - C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
MsConfig - StartUpReg: [b]Delete USB Error Key[/b] - hkey= - key= - C:\Program Files\Samsung\Samsung New PC Studio\USB Drivers\SPS3_USB_Driver_Setup.exe ()
MsConfig - StartUpReg: [b]Gadu-Gadu 10[/b] - hkey= - key= - C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.)
MsConfig - StartUpReg: [b]IPLA![/b] - hkey= - key= - C:\Program Files\ipla\ipla.exe (Redefine Sp z o.o.)
MsConfig - StartUpReg: [b]ISUSPM Startup[/b] - hkey= - key= - c:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe (Macrovision Corporation)
MsConfig - StartUpReg: [b]ISUSScheduler[/b] - hkey= - key= - C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe (Macrovision Corporation)
MsConfig - StartUpReg: [b]nwiz[/b] - hkey= - key= - C:\Program Files\NVIDIA Corporation\nView\nwiz.exe ()
MsConfig - StartUpReg: [b]RGSC[/b] - hkey= - key= - File not found
MsConfig - StartUpReg: [b]RTHDCPL[/b] - hkey= - key= - C:\WINDOWS\RTHDCPL.exe (Realtek Semiconductor Corp.)
MsConfig - StartUpReg: [b]Six Engine[/b] - hkey= - key= - C:\Program Files\ASUS\Six Engine\SixEngine.exe ()
MsConfig - StartUpReg: [b]Sony Ericsson PC Companion[/b] - hkey= - key= - C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe (Sony Ericsson Mobile Communications AB)
MsConfig - StartUpReg: [b]Steam[/b] - hkey= - key= - c:\program files\valve\steam\steam.exe (Valve Corporation)

SafeBootMin: AppMgmt - File not found
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootNet: AppMgmt - File not found
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

[color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color]

[2011-06-23 11:55:22 | 000,579,072 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Arturuz\Pulpit\OTL.exe
[2011-06-20 14:24:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arturuz\Pulpit\TibiaAuto Tłumaczenie 9.0 by Zikk
[2011-06-20 14:18:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arturuz\Menu Start\Programy\Tibia Auto
[2011-06-20 14:02:50 | 000,000,000 | ---D | C] -- C:\Program Files\TibiaAuto
[2011-06-20 14:00:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arturuz\Pulpit\python24
[2011-06-20 13:57:33 | 000,000,000 | ---D | C] -- C:\Program Files\Tibia Auto
[2011-06-19 22:58:39 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2011-06-16 14:17:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\SxsCaPendDel
[2011-06-15 16:01:01 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2011-06-15 16:00:44 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2011-06-15 16:00:44 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2011-06-15 16:00:44 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2011-06-10 19:27:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arturuz\Moje dokumenty\The Witcher 2
[2011-06-10 19:25:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Wiedźmin 2
[2011-06-10 19:10:22 | 000,000,000 | ---D | C] -- C:\Program Files\Wiedźmin 2
[2011-06-04 15:00:32 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Arturuz\Recent
[2011-05-28 15:43:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arturuz\Pulpit\Politechnika
[2011-05-28 15:37:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arturuz\Pulpit\Prawo jazdy
[2011-05-27 19:24:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Grupa IMAGE
[2011-05-27 19:24:21 | 000,000,000 | ---D | C] -- C:\Program Files\Grupa IMAGE
[2011-05-26 13:53:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\avast! Free Antivirus
[2011-05-26 13:53:14 | 000,307,928 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011-05-26 13:53:14 | 000,019,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011-05-26 13:53:12 | 000,441,176 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2011-05-26 13:53:12 | 000,049,240 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011-05-26 13:53:12 | 000,025,432 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011-05-26 13:53:11 | 000,102,616 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011-05-26 13:53:11 | 000,096,344 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011-05-26 13:53:10 | 000,030,808 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011-05-26 13:52:59 | 000,040,112 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011-05-26 13:52:58 | 000,199,304 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011-05-26 13:52:51 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2011-05-26 13:52:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\AVAST Software
[2011-05-19 11:25:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arturuz\Menu Start\Programy\Revo Uninstaller
[2011-05-19 10:37:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arturuz\Moje dokumenty\Witcher 2
[2011-05-19 10:37:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arturuz\Ustawienia lokalne\Dane aplikacji\The Witcher 2
[2011-05-08 15:23:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arturuz\Ustawienia lokalne\Dane aplikacji\MediaGet2
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\Documents and Settings\Arturuz\Pulpit\*.tmp files -> C:\Documents and Settings\Arturuz\Pulpit\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 60 Days ==========[/color]

[2011-06-23 11:55:27 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Arturuz\Pulpit\OTL.exe
[2011-06-23 11:44:59 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011-06-22 20:21:36 | 005,356,433 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\WWO - Obejrzyj sobie wiadomosci-[www.flv2mp3.com].mp3
[2011-06-22 00:34:13 | 008,066,338 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\fisz - czerwona sukeinka-[www.flv2mp3.com].mp3
[2011-06-22 00:30:23 | 004,840,105 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\WWO-Tak to wyglada-[www.flv2mp3.com].mp3
[2011-06-22 00:26:53 | 004,824,445 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\Sokół - Dentysta (prod. Drumkidz)-[www.flv2mp3.com].mp3
[2011-06-22 00:26:36 | 007,008,581 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\Fu ft Sokół - Mój projekt moje życie-[www.flv2mp3.com].mp3
[2011-06-22 00:22:57 | 006,198,079 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\Los Sicarios, Sokol, Pallacio - Checkeando-[www.flv2mp3.com].mp3
[2011-06-22 00:20:00 | 006,546,024 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\L.U.C. feat Sokol - Pospolite Ruszenie-[www.flv2mp3.com].mp3
[2011-06-22 00:13:51 | 005,801,225 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\dowód odpowiedzialności wychowani na błędach feat pono sokół wwo fu-[www.flv2mp3.com].mp3
[2011-06-21 01:16:56 | 000,061,563 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\tibiaAuto.cfg.Kayano.xml
[2011-06-20 13:57:22 | 002,759,023 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\TibiaAutoSetup_2_12_0.exe
[2011-06-20 13:52:23 | 001,389,011 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\TibiaAuto Tłumaczenie 9.0 by Zikk.rar
[2011-06-19 20:10:37 | 000,013,720 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011-06-16 14:18:13 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011-06-15 23:05:34 | 000,035,704 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\8342,5271,statystyki_2010_11.pdf,35704.pdf
[2011-06-14 21:49:38 | 000,000,789 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\Dragon Age Początek.lnk
[2011-06-14 13:05:36 | 004,786,997 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\Wiedzmin 2 Poradnik.pdf
[2011-06-10 19:25:15 | 000,000,529 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Uruchom Wiedźmin 2.lnk
[2011-06-05 16:46:45 | 008,020,460 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\L.A.O.S. - We All (Blame Remix)-[www.flv2mp3.com].mp3
[2011-06-05 16:45:46 | 006,470,668 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\L.A.O.S. - Fire On Water-[www.flv2mp3.com].mp3
[2011-06-01 20:41:48 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2011-06-01 20:33:40 | 000,027,648 | ---- | M] () -- C:\Documents and Settings\Arturuz\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-05-30 14:26:43 | 000,138,957 | ---- | M] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\Ticketpro-eTicket-1748685.pdf
[2011-05-28 19:06:40 | 000,021,272 | ---- | M] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\cc_20110528_190638.reg
[2011-05-27 23:02:18 | 000,233,576 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011-05-27 19:59:34 | 000,003,737 | ---- | M] () -- C:\WINDOWS\bestplayer.bbt
[2011-05-27 19:59:34 | 000,002,651 | ---- | M] () -- C:\WINDOWS\bestplayer.ini
[2011-05-27 19:59:34 | 000,000,013 | ---- | M] () -- C:\WINDOWS\bestplayer.bpp
[2011-05-26 13:53:11 | 000,002,644 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011-05-22 16:36:54 | 000,000,825 | ---- | M] () -- C:\Documents and Settings\Arturuz\.recently-used.xbel
[2011-05-21 20:01:41 | 000,000,034 | -H-- | M] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\.picasa.ini
[2011-05-21 20:01:19 | 000,376,192 | ---- | M] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\DSC07454.JPG
[2011-05-21 19:30:26 | 000,138,960 | ---- | M] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\Ticketpro-eTicket-1728175.pdf
[2011-05-18 21:44:12 | 000,067,721 | ---- | M] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\The.Witcher.2.Assassins.Of.Kings.PL.torrent
[2011-05-10 14:10:59 | 000,040,112 | ---- | M] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011-05-10 14:10:55 | 000,199,304 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011-05-10 14:03:54 | 000,441,176 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2011-05-10 14:03:44 | 000,307,928 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011-05-10 14:02:37 | 000,049,240 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011-05-10 14:02:25 | 000,102,616 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011-05-10 14:02:22 | 000,096,344 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011-05-10 13:59:56 | 000,025,432 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011-05-10 13:59:37 | 000,030,808 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011-05-10 13:59:35 | 000,019,544 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011-05-04 04:52:34 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2011-05-04 04:52:33 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2011-05-04 04:52:32 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2011-05-04 04:52:22 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll
[2011-05-04 02:25:49 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\Documents and Settings\Arturuz\Pulpit\*.tmp files -> C:\Documents and Settings\Arturuz\Pulpit\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2011-06-22 12:45:46 | 005,356,433 | ---- | C] () -- C:\Documents and Settings\Arturuz\Pulpit\WWO - Obejrzyj sobie wiadomosci-[www.flv2mp3.com].mp3
[2011-06-22 00:30:07 | 008,066,338 | ---- | C] () -- C:\Documents and Settings\Arturuz\Pulpit\fisz - czerwona sukeinka-[www.flv2mp3.com].mp3
[2011-06-22 00:29:20 | 004,840,105 | ---- | C] () -- C:\Documents and Settings\Arturuz\Pulpit\WWO-Tak to wyglada-[www.flv2mp3.com].mp3
[2011-06-22 00:25:42 | 004,824,445 | ---- | C] () -- C:\Documents and Settings\Arturuz\Pulpit\Sokół - Dentysta (prod. Drumkidz)-[www.flv2mp3.com].mp3
[2011-06-22 00:24:42 | 007,008,581 | ---- | C] () -- C:\Documents and Settings\Arturuz\Pulpit\Fu ft Sokół - Mój projekt moje życie-[www.flv2mp3.com].mp3
[2011-06-22 00:21:36 | 006,198,079 | ---- | C] () -- C:\Documents and Settings\Arturuz\Pulpit\Los Sicarios, Sokol, Pallacio - Checkeando-[www.flv2mp3.com].mp3
[2011-06-22 00:16:48 | 006,546,024 | ---- | C] () -- C:\Documents and Settings\Arturuz\Pulpit\L.U.C. feat Sokol - Pospolite Ruszenie-[www.flv2mp3.com].mp3
[2011-06-22 00:12:45 | 005,801,225 | ---- | C] () -- C:\Documents and Settings\Arturuz\Pulpit\dowód odpowiedzialności wychowani na błędach feat pono sokół wwo fu-[www.flv2mp3.com].mp3
[2011-06-21 01:16:50 | 000,061,563 | ---- | C] () -- C:\Documents and Settings\Arturuz\Pulpit\tibiaAuto.cfg.Kayano.xml
[2011-06-20 14:03:12 | 001,867,776 | ---- | C] () -- C:\WINDOWS\System32\python24.dll
[2011-06-20 13:56:59 | 002,759,023 | ---- | C] () -- C:\Documents and Settings\Arturuz\Pulpit\TibiaAutoSetup_2_12_0.exe
[2011-06-20 13:52:22 | 001,389,011 | ---- | C] () -- C:\Documents and Settings\Arturuz\Pulpit\TibiaAuto Tłumaczenie 9.0 by Zikk.rar
[2011-06-16 14:15:40 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2011-06-15 23:05:33 | 000,035,704 | ---- | C] () -- C:\Documents and Settings\Arturuz\Pulpit\8342,5271,statystyki_2010_11.pdf,35704.pdf
[2011-06-14 13:04:45 | 004,786,997 | ---- | C] () -- C:\Documents and Settings\Arturuz\Pulpit\Wiedzmin 2 Poradnik.pdf
[2011-06-10 19:25:15 | 000,000,529 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Uruchom Wiedźmin 2.lnk
[2011-06-05 16:44:44 | 008,020,460 | ---- | C] () -- C:\Documents and Settings\Arturuz\Pulpit\L.A.O.S. - We All (Blame Remix)-[www.flv2mp3.com].mp3
[2011-06-05 16:44:08 | 006,470,668 | ---- | C] () -- C:\Documents and Settings\Arturuz\Pulpit\L.A.O.S. - Fire On Water-[www.flv2mp3.com].mp3
[2011-05-30 14:26:27 | 000,138,957 | ---- | C] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\Ticketpro-eTicket-1748685.pdf
[2011-05-28 19:06:39 | 000,021,272 | ---- | C] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\cc_20110528_190638.reg
[2011-05-22 16:36:54 | 000,000,825 | ---- | C] () -- C:\Documents and Settings\Arturuz\.recently-used.xbel
[2011-05-21 20:01:41 | 000,000,034 | -H-- | C] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\.picasa.ini
[2011-05-21 20:01:02 | 000,376,192 | ---- | C] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\DSC07454.JPG
[2011-05-21 19:30:25 | 000,138,960 | ---- | C] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\Ticketpro-eTicket-1728175.pdf
[2011-05-18 21:43:57 | 000,067,721 | ---- | C] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\The.Witcher.2.Assassins.Of.Kings.PL.torrent
[2011-05-15 16:49:03 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox.lnk
[2011-03-08 21:50:14 | 000,252,080 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2011-03-08 21:50:11 | 000,252,080 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2011-03-08 21:50:11 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2011-03-08 21:49:59 | 002,292,678 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin
[2011-02-11 00:43:03 | 000,063,459 | ---- | C] () -- C:\WINDOWS\War3Unin.dat
[2010-09-09 15:02:04 | 000,000,023 | ---- | C] () -- C:\WINDOWS\BlendSettings.ini
[2010-07-19 18:49:14 | 000,133,448 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2010-06-15 23:14:10 | 000,000,135 | ---- | C] () -- C:\WINDOWS\Mp3CutterJoiner.ini
[2010-06-15 23:11:38 | 000,000,005 | ---- | C] () -- C:\WINDOWS\System32\SySMP3CutJoin.dat
[2010-06-15 23:11:27 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2010-03-22 19:28:07 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll
[2010-03-22 19:28:07 | 000,036,608 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys
[2010-03-22 19:28:01 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\Arturuz\Dane aplikacji\$_hpcst$.hpc
[2010-03-05 19:18:31 | 000,000,241 | ---- | C] () -- C:\WINDOWS\RomeTW.ini
[2010-02-25 21:31:21 | 000,002,651 | ---- | C] () -- C:\WINDOWS\bestplayer.ini
[2010-01-24 20:00:53 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2010-01-24 20:00:49 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010-01-24 20:00:49 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010-01-24 20:00:48 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010-01-24 17:47:43 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010-01-23 13:43:41 | 000,178,176 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010-01-23 01:04:23 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2010-01-23 01:00:39 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010-01-23 00:58:04 | 000,233,576 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-01-23 00:49:39 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\GTW32N50.dll
[2010-01-23 00:49:24 | 000,000,920 | ---- | C] () -- C:\WINDOWS\System32\WLAN.INI
[2010-01-23 00:39:38 | 000,024,576 | R--- | C] () -- C:\WINDOWS\System32\AsIO.dll
[2010-01-23 00:39:38 | 000,012,400 | R--- | C] () -- C:\WINDOWS\System32\drivers\AsIO.sys
[2010-01-23 00:39:36 | 000,011,832 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp64.sys
[2010-01-23 00:39:36 | 000,010,216 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp32.sys
[2010-01-23 00:37:57 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2010-01-23 00:22:31 | 000,036,025 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini
[2010-01-23 00:22:04 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2010-01-23 00:21:48 | 000,035,634 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2010-01-23 00:21:47 | 000,010,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2010-01-23 00:19:45 | 000,027,648 | ---- | C] () -- C:\Documents and Settings\Arturuz\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-01-23 00:15:20 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2010-01-23 00:12:14 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2008-10-22 05:29:06 | 000,173,550 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2008-04-15 14:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2008-04-15 14:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2008-04-15 14:00:00 | 000,490,284 | ---- | C] () -- C:\WINDOWS\System32\perfh015.dat
[2008-04-15 14:00:00 | 000,432,356 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2008-04-15 14:00:00 | 000,313,828 | ---- | C] () -- C:\WINDOWS\System32\perfi015.dat
[2008-04-15 14:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2008-04-15 14:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2008-04-15 14:00:00 | 000,083,660 | ---- | C] () -- C:\WINDOWS\System32\perfc015.dat
[2008-04-15 14:00:00 | 000,067,312 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2008-04-15 14:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2008-04-15 14:00:00 | 000,034,990 | ---- | C] () -- C:\WINDOWS\System32\perfd015.dat
[2008-04-15 14:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2008-04-15 14:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2008-04-15 14:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2008-04-15 14:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
[2008-04-15 14:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2007-10-25 18:26:10 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[1996-04-03 21:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys

[color=#E56717]========== LOP Check ==========[/color]

[2010-04-10 16:28:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Autodesk
[2011-05-26 13:52:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVAST Software
[2011-03-14 22:03:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\BioWare
[2010-01-23 13:30:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2011-03-14 21:51:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Electronic Arts
[2010-01-23 12:43:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET
[2010-05-05 13:56:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2010-02-24 16:53:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla
[2011-05-28 18:31:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\KONAMI
[2010-09-09 15:26:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM
[2010-05-03 13:36:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Sports Interactive
[2010-07-20 12:01:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2010-03-24 15:36:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ubisoft
[2011-06-20 16:57:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\AIMP
[2010-04-10 16:28:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\Autodesk
[2010-01-24 13:57:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\DAEMON Tools Lite
[2010-04-03 15:08:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\Gadu-Gadu 10
[2010-09-07 18:52:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\gtk-2.0
[2011-01-16 20:14:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\ipla
[2011-01-13 15:27:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\Leadertech
[2010-12-10 20:52:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\LolClient
[2010-01-23 13:54:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\Nowe Gadu-Gadu
[2010-02-10 21:46:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\OpenFM
[2011-06-14 21:46:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\PriceGong
[2010-03-22 19:28:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\Samsung
[2010-05-03 13:35:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\Sports Interactive
[2010-01-24 15:08:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\Tibia
[2010-06-15 23:11:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\Toolbar4
[2010-03-24 15:36:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\Ubisoft
[2011-06-04 15:03:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\uTorrent

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Custom Scans ==========[/color]


[color=#A23BEC]< %systemdrive%\*.* >[/color]
[2010-01-23 00:14:03 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010-01-23 00:09:55 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2008-04-15 14:00:00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin
[2010-01-23 00:14:03 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010-01-23 00:14:03 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2011-01-31 21:56:20 | 000,011,352 | ---- | M] () -- C:\mksbasel.cpp.log
[2010-01-23 00:14:03 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2008-04-15 14:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2008-04-15 14:00:00 | 000,251,152 | RHS- | M] () -- C:\ntldr
[2011-06-23 11:44:57 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys
[2010-01-23 00:37:59 | 000,000,522 | ---- | M] () -- C:\RHDSetup.log


[color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
[2008-04-15 14:00:00 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys

[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2008-04-15 14:00:00 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008-04-14 01:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\dllcache\atapi.sys
[2008-04-14 01:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2008-04-15 14:00:00 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\system32\DRIVERS\atapi.sys
[2008-04-15 14:00:00 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0006\DriverFiles\i386\atapi.sys
[2008-04-14 01:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0007\DriverFiles\i386\atapi.sys

[color=#A23BEC]< MD5 for: BEEP.SYS >[/color]
[2008-04-15 14:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys
[2008-04-15 14:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys

[color=#A23BEC]< MD5 for: CDROM.SYS >[/color]
[2008-04-15 14:00:00 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008-04-15 14:00:00 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2010-06-11 02:40:58 | 000,062,592 | ---- | M] (Microsoft Corporation) MD5=7B53584D94E9D8716B2DE91D5F1CB42D -- C:\WINDOWS\system32\dllcache\cdrom.sys

[color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color]
[2008-04-15 14:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\dllcache\eventlog.dll
[2008-04-15 14:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\eventlog.dll

[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]
[2008-04-15 14:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\dllcache\ndis.sys
[2008-04-15 14:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2008-04-15 14:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\dllcache\winlogon.exe
[2008-04-15 14:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\winlogon.exe

[color=#E56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 111 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:4F8F308F

< End of report >
[/log]
[log]OTL Extras logfile created on: 2011-06-23 11:57:37 - Run 1
OTL by OldTimer - Version 3.2.24.1 Folder = C:\Documents and Settings\Arturuz\Pulpit
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,46 Gb Available Physical Memory | 72,95% Memory free
3,85 Gb Paging File | 3,49 Gb Available in Paging File | 90,83% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 232,88 Gb Total Space | 47,75 Gb Free Space | 20,51% Space Free | Partition Type: NTFS
Drive D: | 232,88 Gb Total Space | 26,63 Gb Free Space | 11,44% Space Free | Partition Type: NTFS

Computer Name: KOMP | User Name: Arturuz | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe shdocvw.dll,OpenURL %l

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

[color=#E56717]========== Shell Spawning ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe shdocvw.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[color=#E56717]========== Security Center Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 1
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[color=#E56717]========== System Restore Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"8380:TCP" = 8380:TCP:*:Enabled:League of Legends Launcher
"8380:UDP" = 8380:UDP:*:Enabled:League of Legends Launcher
"8381:TCP" = 8381:TCP:*:Enabled:League of Legends Launcher
"8381:UDP" = 8381:UDP:*:Enabled:League of Legends Launcher
"8382:TCP" = 8382:TCP:*:Enabled:League of Legends Launcher
"8382:UDP" = 8382:UDP:*:Enabled:League of Legends Launcher
"8383:TCP" = 8383:TCP:*:Enabled:League of Legends Launcher
"8383:UDP" = 8383:UDP:*:Enabled:League of Legends Launcher
"8393:TCP" = 8393:TCP:*:Enabled:League of Legends Lobby
"8393:UDP" = 8393:UDP:*:Enabled:League of Legends Lobby
"8390:TCP" = 8390:TCP:*:Enabled:League of Legends Game Client
"8390:UDP" = 8390:UDP:*:Enabled:League of Legends Game Client
"6896:TCP" = 6896:TCP:*:Enabled:League of Legends Launcher
"6896:UDP" = 6896:UDP:*:Enabled:League of Legends Launcher

[color=#E56717]========== Authorized Applications List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\Program Files\Nowe Gadu-Gadu\gg.exe" = C:\Program Files\Nowe Gadu-Gadu\gg.exe:*:Enabled:Nowe Gadu-Gadu
"C:\Program Files\Gadu-Gadu 10\gg.exe" = C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10 -- (GG Network S.A.)
"C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe" = C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe:*:Enabled:KTF MUSIC AoD Server -- (PeeringPortal)
"C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe" = C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe:*:Enabled:KTF MUSIC VoD Server -- (PeeringPortal)
"C:\Program Files\Valve\Steam\SteamApps\macheja\opposing force\hl.exe" = C:\Program Files\Valve\Steam\SteamApps\macheja\opposing force\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
"C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Mozilla Firefox -- (Mozilla Corporation)
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" = C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe:*:Enabled:ESET NOD32 Antivirus
"C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe" = C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe:*:Enabled:Ubisoft Game Launcher -- (Ubisoft)
"C:\Program Files\Strategy First\Disciples II - Powrót Galleana\Discipl2.exe" = C:\Program Files\Strategy First\Disciples II - Powrót Galleana\Discipl2.exe:*:Enabled:Disciples II v2.01 -- (Strategy First)
"C:\Program Files\Valve\Steam\SteamApps\macheja\deathmatch classic\hl.exe" = C:\Program Files\Valve\Steam\SteamApps\macheja\deathmatch classic\hl.exe:*:Enabled:Deathmatch Classic -- (Valve)
"C:\Program Files\Heroes of Might and Magic III - Zlota Edycja\Heroes3.exe" = C:\Program Files\Heroes of Might and Magic III - Zlota Edycja\Heroes3.exe:*:Enabled:Heroes of Might and Magic® III (CDP) -- (The 3DO Company)
"C:\WINDOWS\system32\dplaysvr.exe" = C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper -- (Microsoft Corporation)
"C:\Program Files\SopCast\adv\SopAdver.exe" = C:\Program Files\SopCast\adv\SopAdver.exe:*:Enabled:SopCast Adver -- (www.sopcast.com)
"C:\Riot Games\League of Legends\air\LolClient.exe" = C:\Riot Games\League of Legends\air\LolClient.exe:*:Enabled:League of Legends Lobby
"C:\Riot Games\League of Legends\game\League of Legends.exe" = C:\Riot Games\League of Legends\game\League of Legends.exe:*:Enabled:League of Legends Game Client
"C:\Program Files\KONAMI\Pro Evolution Soccer 2011\pes2011.exe" = C:\Program Files\KONAMI\Pro Evolution Soccer 2011\pes2011.exe:*:Enabled:Pro Evolution Soccer 2011 -- (Konami Digital Entertainment Co., Ltd.)
"C:\Program Files\Sports Interactive\Football Manager 2011\fm.exe" = C:\Program Files\Sports Interactive\Football Manager 2011\fm.exe:*:Enabled:Football Manager 2011 -- (Sports Interactive)
"C:\Program Files\Warcraft III\Warcraft III.exe" = C:\Program Files\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III -- (Blizzard Entertainment)
"C:\Program Files\Dragon Age\bin_ship\daorigins.exe" = C:\Program Files\Dragon Age\bin_ship\daorigins.exe:*:Enabled:Dragon Age Początek Gra -- (BioWare)
"C:\Program Files\Dragon Age\DAOriginsLauncher.exe" = C:\Program Files\Dragon Age\DAOriginsLauncher.exe:*:Enabled:Dragon Age Początek Program startowy -- (BioWare)
"C:\Program Files\Dragon Age\bin_ship\daupdatersvc.service.exe" = C:\Program Files\Dragon Age\bin_ship\daupdatersvc.service.exe:*:Enabled:Dragon Age Początek Aktualizator -- (BioWare)
"C:\Program Files\Dragon Age\bin_ship\EACoreServer.exe" = C:\Program Files\Dragon Age\bin_ship\EACoreServer.exe:*:Enabled:EA Core Server Application -- (Electronic Arts)
"C:\Program Files\Valve\Steam\SteamApps\macheja\half-life\hl.exe" = C:\Program Files\Valve\Steam\SteamApps\macheja\half-life\hl.exe:*:Enabled:Half-Life -- (Valve)
"C:\Riot Games\League of Legends\lol.launcher.exe" = C:\Riot Games\League of Legends\lol.launcher.exe:*:Enabled:League of Legends Launcher -- ()
"C:\Documents and Settings\Arturuz\Ustawienia lokalne\Dane aplikacji\MediaGet2\mediaget.exe" = C:\Documents and Settings\Arturuz\Ustawienia lokalne\Dane aplikacji\MediaGet2\mediaget.exe:*:Enabled:MediaGet torrent client
"C:\Program Files\Wiedźmin 2\bin\witcher2.exe" = C:\Program Files\Wiedźmin 2\bin\witcher2.exe:*:Enabled:The Witcher 2: Assasins of Kings -- ()
"C:\Program Files\Valve\Steam\SteamApps\macheja\counter-strike\hl.exe" = C:\Program Files\Valve\Steam\SteamApps\macheja\counter-strike\hl.exe:*:Enabled:Counter-Strike -- (Valve)


[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{01D8CA8B-3F5F-4590-A0F3-36373BE97866}_is1" = Testy B
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam(TM)
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{217EC467-61C4-1939-3BBF-4FA4CAEA42FF}" = EA Shared Game Component: Activation
"{26A24AE4-039D-4CA4-87B4-2F83216020F0}" = Java(TM) 6 Update 20
"{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 26
"{28999392-5871-4A39-863A-D2A6EA3260AF}" = League of Legends
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR8121/AR8113 Gigabit/Fast Ethernet Driver
"{310BC5E2-31AF-49BB-904D-E71EB93645DC}" = AI Suite
"{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{35CB6715-41F8-4F99-8881-6FC75BF054B0}" = Oblivion
"{3B5C7583-F7DA-481E-9A0D-AFFCC972A139}" = Disciples II - Powrót Galleana
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4B35F00C-E63D-40DC-9839-DF15A33EAC46}" = Grand Theft Auto Vice City
"{4DDC3BED-CC68-44AA-B435-D727B620CA5B}" = Linksys Wireless-G PCI Adapter
"{56B83336-FBC1-4C46-8613-90A9E3B440D6}" = Six Engine
"{5783F2D7-8001-0415-0002-0060B0CE6BBA}" = AutoCAD 2010 - Polski
"{5783F2D7-8001-0415-1002-0060B0CE6BBA}" = Pakiet językowy programu AutoCAD 2010 - polski
"{59E4543A-D49D-4489-B445-473D763C79AF}" = Microsoft Games for Windows - LIVE Redistributable
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-0010-0415-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Polish) 12
"{90120000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2007
"{90120000-0016-0415-0000-0000000FF1CE}_HOMESTUDENTR_{79EB535E-76E4-4356-8146-A24EE55AB69D}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2007
"{90120000-0018-0415-0000-0000000FF1CE}_HOMESTUDENTR_{79EB535E-76E4-4356-8146-A24EE55AB69D}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2007
"{90120000-001B-0415-0000-0000000FF1CE}_HOMESTUDENTR_{79EB535E-76E4-4356-8146-A24EE55AB69D}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2007
"{90120000-001F-0415-0000-0000000FF1CE}_HOMESTUDENTR_{E9EA2604-8AC9-47D2-8F4B-6BF60787A357}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2007
"{90120000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2007
"{90120000-006E-0415-0000-0000000FF1CE}_HOMESTUDENTR_{D45F91DE-F0FC-4D5F-9A0C-FDE5B251AAC6}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2007
"{90120000-00A1-0415-0000-0000000FF1CE}_HOMESTUDENTR_{79EB535E-76E4-4356-8146-A24EE55AB69D}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{92606477-9366-4D3B-8AE3-6BE4B29727AB}" = League of Legends
"{94B4E2D8-A184-415C-BF9E-F699D76466BD}" = Heroes of Might and Magic IV - Złota Edycja
"{9773450C-E2F3-46C3-9464-1D7EDE5EFB63}" = Pro Evolution Soccer 2011
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A642BB6B-CA1D-4142-8DD4-318C3F3DC834}" = Rome - Total War(TM)
"{AC76BA86-7AD7-1045-7B44-A94000000001}" = Adobe Reader 9.4.5 - Polish
"{AEC81925-9C76-4707-84A9-40696C613ED3}" = Dragon Age: Początek
"{AF7E85DC-317C-47F5-810E-B82EE093A612}" = Samsung New PC Studio USB Driver Installer
"{B2BE514B-F1B3-43AB-84DD-3377ADBA1A7F}" = GIGABYTE Gamer HUD
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panel sterowania NVIDIA 266.58
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Sterownik graficzny 266.58
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 135.50
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Oprogramowanie systemu PhysX 9.10.0514
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{DF5A03CC-D5AA-43D8-B948-D9903F2AF94A}" = Counter-Strike(TM)
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony Ericsson PC Companion 1.60.13
"{F0A209B7-7F85-4BDD-8F1F-B98EEAD9E04B}" = Wiedźmin 2
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"{FC900219-2DB9-4274-B2CF-F9ABA057C7BC}_is1" = Modern Warfare 2 Spolszczenie by O22y
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"6194C28A8F62DD817EA1B918E6E46E806A21B452" = Pakiet sterowników systemu Windows - MobileTop (sshpmdm) Modem (02/23/2007 2.5.0.0)
"65B6FE5418CE28F4D72543FB2D964C3CEC83F161" = Pakiet sterowników systemu Windows - MobileTop (sshpusb) USB (02/23/2007 2.5.0.0)
"7-Zip" = 7-Zip 9.20
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"AIMP2" = AIMP2
"AutoCAD 2010 - Polski" = AutoCAD 2010 - Polski
"avast" = avast! Free Antivirus
"Call of Duty Modern Warfare 2_is1" = Call of Duty Modern Warfare 2
"CCleaner" = CCleaner
"com.ea.Activation.919CACB699904AC5D41B606703500DD39747C02D.1" = EA Shared Game Component: Activation
"conduitEngine" = Conduit Engine
"Digital Image Recovery_is1" = Digital Image Recovery 1.47
"EA Installer.-49286475" = EA Installer
"Football Manager 2011" = Football Manager 2011
"Gadu-Gadu 10" = Gadu-Gadu 10
"Heroes of Might and Magic III - Złota Edycja_is1" = Heroes of Might and Magic III - Złota Edycja
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"InstallShield_{A642BB6B-CA1D-4142-8DD4-318C3F3DC834}" = Rome - Total War(TM)
"InstallShield_{AF7E85DC-317C-47F5-810E-B82EE093A612}" = Samsung New PC Studio USB Driver Installer
"InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"ipla" = ipla 2.1.0
"jv16 PowerTools_is1" = jv16 PowerTools 1.3
"KLiteCodecPack_is1" = K-Lite Codec Pack 5.6.1 (Corporate)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox 4.0.1 (x86 pl)" = Mozilla Firefox 4.0.1 (x86 pl)
"MP3 Cutter Joiner_is1" = MP3 Cutter Joiner 5.00
"NapiProjekt_is1" = NapiProjekt 1.0.6.9
"Nero - Burning Rom!UninstallKey" = Nero 6 Ultra Edition
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager
"Picasa 3" = Picasa 3
"RealAlt_is1" = Real Alternative 2.0.1
"Revo Uninstaller" = Revo Uninstaller 1.92
"SAMSUNG Mobile Composite Device" = SAMSUNG Mobile Composite Device Software
"SAMSUNG Mobile Modem" = SAMSUNG Mobile Modem Driver Set
"Samsung Mobile phone USB driver" = Samsung Mobile phone USB driver Software
"SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software
"SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software
"SkanerOnline" = Skaner on-line mks_vir
"Skrzyżowania_is1" = Skrzyżowania 1.0.0.14
"SopCast" = SopCast 3.0.3
"SpeedFan" = SpeedFan (remove only)
"Steam App 130" = Half-Life: Blue Shift
"Steam App 40" = Deathmatch Classic
"Steam App 50" = Half-Life: Opposing Force
"Tibia Auto" = NSIS Example2
"Tibia_is1" = Tibia
"uTorrent" = µTorrent
"uTorrentBar Toolbar" = uTorrentBar Toolbar
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"WinGimp-2.0_is1" = GIMP 2.6.10
"WinRAR archiver" = Archiwizator WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"Znaki Drogowe_is1" = Znaki Drogowe

[color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"I-Doser v4" = I-Doser v4
"Warcraft III" = Warcraft III: All Products

[color=#E56717]========== Last 10 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2011-05-08 17:06:29 | Computer Name = KOMP | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd daorigins.exe, wersja 1.1.9363.0, moduł
powodujący błąd daorigins.exe, wersja 1.1.9363.0, adres błędu 0x0028b344.

Error - 2011-05-19 10:27:05 | Computer Name = KOMP | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca witcher2.exe, wersja 1.0.6041.43456, moduł
zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2011-05-19 10:29:06 | Computer Name = KOMP | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca witcher2.exe, wersja 1.0.6041.43456, moduł
zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2011-05-19 10:29:07 | Computer Name = KOMP | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca Launcher.exe, wersja 0.9.0.754, moduł zawieszenia
hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2011-05-24 03:45:02 | Computer Name = KOMP | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca firefox.exe, wersja 2.0.1.4120, moduł zawieszenia
hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2011-05-29 11:39:54 | Computer Name = KOMP | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd prawo jazdy.exe, wersja 0.0.0.0, moduł powodujący
błąd , wersja 0.0.0.0, adres błędu 0x00000000.

Error - 2011-05-29 17:49:57 | Computer Name = KOMP | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca LolClient.exe, wersja 2.0.2.12610, moduł zawieszenia
hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2011-05-30 12:16:59 | Computer Name = KOMP | Source = EventSystem | ID = 4612
Description = Podczas wewnętrznego przetwarzania w wierszu 44 z d:\comxp_sp3\com\com1x\src\events\tier1\eventsystemobj.cpp,
zabrakło pamięci dla systemu zdarzeń modelu COM

Error - 2011-06-19 17:08:54 | Computer Name = KOMP | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca firefox.exe, wersja 2.0.1.4120, moduł zawieszenia
hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2011-06-21 12:19:13 | Computer Name = KOMP | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca firefox.exe, wersja 2.0.1.4120, moduł zawieszenia
hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

[ OSession Events ]
Error - 2010-04-21 15:53:40 | Computer Name = KOMP | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6504.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 116
seconds with 0 seconds of active time. This session ended with a crash.

Error - 2010-05-12 13:40:52 | Computer Name = KOMP | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 3, Application Name: Microsoft Office PowerPoint, Application
Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session
lasted 5527 seconds with 2040 seconds of active time. This session ended with a
crash.

[ System Events ]
Error - 2011-06-22 18:40:19 | Computer Name = KOMP | Source = W32Time | ID = 39452689
Description = Dostawca czasu NtpClient: Wystąpił błąd podczas wyszukiwania serwera
DNS ręcznie skonfigurowanej końcówki „time.windows.com,0x1”. Klient NtpClient ponowi
próbę wyszukania serwera DNS za 15 min. Wystąpił błąd: Próba przeprowadzenia operacji,
wykonywanej przez gniazdo, na nieosiągalnym hoście. (0x80072751)

Error - 2011-06-22 18:40:19 | Computer Name = KOMP | Source = W32Time | ID = 39452701
Description = Dostawca czasu NtpClient jest skonfigurowany, tak aby pobierać czas
z jednego lub kilku źródeł czasu, jednak żadne ze źródeł jest obecnie niedostępne.
Przez 14 min nie nastąpi próba kontaktu ze źródłem. NtpClient nie ma źródła dokładnego
czasu.

Error - 2011-06-22 18:40:55 | Computer Name = KOMP | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi GTNDIS5 NDIS Protocol Driver z powodu następującego
błędu: %%1314

Error - 2011-06-22 18:40:55 | Computer Name = KOMP | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi GTNDIS5 NDIS Protocol Driver z powodu następującego
błędu: %%1314

Error - 2011-06-22 18:41:26 | Computer Name = KOMP | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi GTNDIS5 NDIS Protocol Driver z powodu następującego
błędu: %%1314

Error - 2011-06-22 18:41:26 | Computer Name = KOMP | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi GTNDIS5 NDIS Protocol Driver z powodu następującego
błędu: %%1314

Error - 2011-06-22 18:43:15 | Computer Name = KOMP | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi GTNDIS5 NDIS Protocol Driver z powodu następującego
błędu: %%1314

Error - 2011-06-22 18:43:15 | Computer Name = KOMP | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi GTNDIS5 NDIS Protocol Driver z powodu następującego
błędu: %%1314

Error - 2011-06-22 18:43:46 | Computer Name = KOMP | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi GTNDIS5 NDIS Protocol Driver z powodu następującego
błędu: %%1314

Error - 2011-06-22 18:43:46 | Computer Name = KOMP | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi GTNDIS5 NDIS Protocol Driver z powodu następującego
błędu: %%1314


< End of report >
[/log]

RSIT:
[log]info.txt logfile of random's system information tool 1.08 2011-06-23 12:04:29

======Uninstall list======

-->MsiExec /X{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
µTorrent-->"C:\Program Files\uTorrent\uTorrent.exe" /UNINSTALL
7-Zip 9.20-->"C:\Program Files\7-Zip\Uninstall.exe"
Adobe AIR-->c:\Program Files\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{A2BCA9F1-566C-4805-97D1-7FDC93386723}
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10o_Plugin.exe -maintain plugin
Adobe Reader 9.4.5 - Polish-->MsiExec.exe /I{AC76BA86-7AD7-1045-7B44-A94000000001}
AI Suite-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{310BC5E2-31AF-49BB-904D-E71EB93645DC}\setup.exe" -l0x9
AIMP2-->C:\Program Files\AIMP2\Uninstall.exe
Aktualizacja dla systemu Windows XP (KB2141007)-->"C:\WINDOWS\$NtUninstallKB2141007$\spuninst\spuninst.exe"
Aktualizacja dla systemu Windows XP (KB2345886)-->"C:\WINDOWS\$NtUninstallKB2345886$\spuninst\spuninst.exe"
Aktualizacja dla systemu Windows XP (KB2467659)-->"C:\WINDOWS\$NtUninstallKB2467659$\spuninst\spuninst.exe"
Aktualizacja dla systemu Windows XP (KB898461)-->"C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe"
Aktualizacja dla systemu Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Aktualizacja dla systemu Windows XP (KB955759)-->"C:\WINDOWS\$NtUninstallKB955759$\spuninst\spuninst.exe"
Aktualizacja dla systemu Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
Aktualizacja dla systemu Windows XP (KB968389)-->"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe"
Aktualizacja dla systemu Windows XP (KB971029)-->"C:\WINDOWS\$NtUninstallKB971029$\spuninst\spuninst.exe"
Aktualizacja dla systemu Windows XP (KB971737)-->"C:\WINDOWS\$NtUninstallKB971737$\spuninst\spuninst.exe"
Aktualizacja dla systemu Windows XP (KB973687)-->"C:\WINDOWS\$NtUninstallKB973687$\spuninst\spuninst.exe"
Aktualizacja dla systemu Windows XP (KB973815)-->"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe"
Aktualizacja dla systemu Windows XP (KB978207)-->"C:\WINDOWS\$NtUninstallKB978207$\spuninst\spuninst.exe"
Aktualizacja dla systemu Windows XP (KB980182)-->"C:\WINDOWS\$NtUninstallKB980182$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla programu Windows Media Player (KB2378111)-->"C:\WINDOWS\$NtUninstallKB2378111_WM9$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla programu Windows Media Player (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla programu Windows Media Player (KB954155)-->"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla programu Windows Media Player (KB968816)-->"C:\WINDOWS\$NtUninstallKB968816_WM9$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla programu Windows Media Player (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla programu Windows Media Player (KB975558)-->"C:\WINDOWS\$NtUninstallKB975558_WM8$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla programu Windows Media Player (KB978695)-->"C:\WINDOWS\$NtUninstallKB978695_WM9$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla programu Windows Media Player (KB979402)-->"C:\WINDOWS\$NtUninstallKB979402_WM9$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2079403)-->"C:\WINDOWS\$NtUninstallKB2079403$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2115168)-->"C:\WINDOWS\$NtUninstallKB2115168$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2121546)-->"C:\WINDOWS\$NtUninstallKB2121546$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2160329)-->"C:\WINDOWS\$NtUninstallKB2160329$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2183461)-->"C:\WINDOWS\$NtUninstallKB2183461$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2229593)-->"C:\WINDOWS\$NtUninstallKB2229593$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2259922)-->"C:\WINDOWS\$NtUninstallKB2259922$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2279986)-->"C:\WINDOWS\$NtUninstallKB2279986$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2286198)-->"C:\WINDOWS\$NtUninstallKB2286198$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2296011)-->"C:\WINDOWS\$NtUninstallKB2296011$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2296199)-->"C:\WINDOWS\$NtUninstallKB2296199$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2347290)-->"C:\WINDOWS\$NtUninstallKB2347290$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2360131)-->"C:\WINDOWS\$NtUninstallKB2360131$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2360937)-->"C:\WINDOWS\$NtUninstallKB2360937$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2387149)-->"C:\WINDOWS\$NtUninstallKB2387149$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2393802)-->"C:\WINDOWS\$NtUninstallKB2393802$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2412687)-->"C:\WINDOWS\$NtUninstallKB2412687$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2416400)-->"C:\WINDOWS\$NtUninstallKB2416400$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2419632)-->"C:\WINDOWS\$NtUninstallKB2419632$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2423089)-->"C:\WINDOWS\$NtUninstallKB2423089$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2436673)-->"C:\WINDOWS\$NtUninstallKB2436673$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2440591)-->"C:\WINDOWS\$NtUninstallKB2440591$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2443105)-->"C:\WINDOWS\$NtUninstallKB2443105$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2476490)-->"C:\WINDOWS\$NtUninstallKB2476490$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2476687)-->"C:\WINDOWS\$NtUninstallKB2476687$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2478960)-->"C:\WINDOWS\$NtUninstallKB2478960$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2478971)-->"C:\WINDOWS\$NtUninstallKB2478971$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2479628)-->"C:\WINDOWS\$NtUninstallKB2479628$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2479943)-->"C:\WINDOWS\$NtUninstallKB2479943$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2481109)-->"C:\WINDOWS\$NtUninstallKB2481109$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2482017)-->"C:\WINDOWS\$NtUninstallKB2482017$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2483185)-->"C:\WINDOWS\$NtUninstallKB2483185$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2485376)-->"C:\WINDOWS\$NtUninstallKB2485376$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2485663)-->"C:\WINDOWS\$NtUninstallKB2485663$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2497640)-->"C:\WINDOWS\$NtUninstallKB2497640$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2503658)-->"C:\WINDOWS\$NtUninstallKB2503658$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2503665)-->"C:\WINDOWS\$NtUninstallKB2503665$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2506212)-->"C:\WINDOWS\$NtUninstallKB2506212$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2506223)-->"C:\WINDOWS\$NtUninstallKB2506223$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2507618)-->"C:\WINDOWS\$NtUninstallKB2507618$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2508272)-->"C:\WINDOWS\$NtUninstallKB2508272$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2508429)-->"C:\WINDOWS\$NtUninstallKB2508429$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2509553)-->"C:\WINDOWS\$NtUninstallKB2509553$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2510581)-->"C:\WINDOWS\$NtUninstallKB2510581$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2511455)-->"C:\WINDOWS\$NtUninstallKB2511455$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2524375)-->"C:\WINDOWS\$NtUninstallKB2524375$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2530548)-->"C:\WINDOWS\$NtUninstallKB2530548$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2535512)-->"C:\WINDOWS\$NtUninstallKB2535512$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2536276)-->"C:\WINDOWS\$NtUninstallKB2536276$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2544521)-->"C:\WINDOWS\$NtUninstallKB2544521$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB2544893)-->"C:\WINDOWS\$NtUninstallKB2544893$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf
Aktualizacja zabezpieczeń dla systemu Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB956744)-->"C:\WINDOWS\$NtUninstallKB956744$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB956844)-->"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB958869)-->"C:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB960859)-->"C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB969059)-->"C:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB969947)-->"C:\WINDOWS\$NtUninstallKB969947$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB970430)-->"C:\WINDOWS\$NtUninstallKB970430$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB971468)-->"C:\WINDOWS\$NtUninstallKB971468$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB971486)-->"C:\WINDOWS\$NtUninstallKB971486$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB971557)-->"C:\WINDOWS\$NtUninstallKB971557$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB971633)-->"C:\WINDOWS\$NtUninstallKB971633$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB971657)-->"C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB971961)-->"C:\WINDOWS\$NtUninstallKB971961$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB972270)-->"C:\WINDOWS\$NtUninstallKB972270$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB973354)-->"C:\WINDOWS\$NtUninstallKB973354$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB973507)-->"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB973525)-->"C:\WINDOWS\$NtUninstallKB973525$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB973869)-->"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB973904)-->"C:\WINDOWS\$NtUninstallKB973904$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB974112)-->"C:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB974318)-->"C:\WINDOWS\$NtUninstallKB974318$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB974392)-->"C:\WINDOWS\$NtUninstallKB974392$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB974571)-->"C:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB975025)-->"C:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB975467)-->"C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB975560)-->"C:\WINDOWS\$NtUninstallKB975560$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB975561)-->"C:\WINDOWS\$NtUninstallKB975561$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB975562)-->"C:\WINDOWS\$NtUninstallKB975562$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB975713)-->"C:\WINDOWS\$NtUninstallKB975713$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB977165)-->"C:\WINDOWS\$NtUninstallKB977165$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB977816)-->"C:\WINDOWS\$NtUninstallKB977816$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB977914)-->"C:\WINDOWS\$NtUninstallKB977914$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB978037)-->"C:\WINDOWS\$NtUninstallKB978037$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB978251)-->"C:\WINDOWS\$NtUninstallKB978251$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB978262)-->"C:\WINDOWS\$NtUninstallKB978262$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB978338)-->"C:\WINDOWS\$NtUninstallKB978338$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB978542)-->"C:\WINDOWS\$NtUninstallKB978542$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB978601)-->"C:\WINDOWS\$NtUninstallKB978601$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB978706)-->"C:\WINDOWS\$NtUninstallKB978706$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB979309)-->"C:\WINDOWS\$NtUninstallKB979309$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB979482)-->"C:\WINDOWS\$NtUninstallKB979482$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB979559)-->"C:\WINDOWS\$NtUninstallKB979559$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB979683)-->"C:\WINDOWS\$NtUninstallKB979683$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB979687)-->"C:\WINDOWS\$NtUninstallKB979687$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB980195)-->"C:\WINDOWS\$NtUninstallKB980195$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB980218)-->"C:\WINDOWS\$NtUninstallKB980218$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB980232)-->"C:\WINDOWS\$NtUninstallKB980232$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB980436)-->"C:\WINDOWS\$NtUninstallKB980436$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB981322)-->"C:\WINDOWS\$NtUninstallKB981322$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB981349)-->"C:\WINDOWS\$NtUninstallKB981349$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB981852)-->"C:\WINDOWS\$NtUninstallKB981852$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB981957)-->"C:\WINDOWS\$NtUninstallKB981957$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB981997)-->"C:\WINDOWS\$NtUninstallKB981997$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB982132)-->"C:\WINDOWS\$NtUninstallKB982132$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB982214)-->"C:\WINDOWS\$NtUninstallKB982214$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB982381)-->"C:\WINDOWS\$NtUninstallKB982381$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB982665)-->"C:\WINDOWS\$NtUninstallKB982665$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla systemu Windows XP (KB982802)-->"C:\WINDOWS\$NtUninstallKB982802$\spuninst\spuninst.exe"
Aktualizacja zabezpieczeń dla Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Archiwizator WinRAR-->C:\Program Files\WinRAR\uninstall.exe
Atheros Communications Inc.(R) AR8121/AR8113 Gigabit/Fast Ethernet Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3108C217-BE83-42E4-AE9E-A56A2A92E549}\Setup.exe" -l0x9 -removeonly
AutoCAD 2010 - Polski-->C:\Program Files\AutoCAD 2010\Setup\Setup.exe /P {5783F2D7-8001-0415-0002-0060B0CE6BBA} /M ACAD /language pl-PL
AutoCAD 2010 - Polski-->C:\Program Files\AutoCAD 2010\Setup\Setup.exe /P {5783F2D7-8001-0415-0002-0060B0CE6BBA} /M ACAD /language pl-PL
avast! Free Antivirus-->C:\Program Files\AVAST Software\Avast\aswRunDll.exe "C:\Program Files\AVAST Software\Avast\Setup\setiface.dll" RunSetup
Call of Duty Modern Warfare 2-->"C:\Program Files\Activision\Modern Warfare 2\unins000.exe"
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
Conduit Engine-->C:\PROGRA~1\CONDUI~1\ConduitEngineUninstall.exe
Counter-Strike(TM)-->MsiExec.exe /I{DF5A03CC-D5AA-43D8-B948-D9903F2AF94A}
Deathmatch Classic-->"C:\Program Files\Valve\Steam\steam.exe" steam://uninstall/40
Digital Image Recovery 1.47-->"C:\Program Files\Digital Image Recovery\unins000.exe"
Disciples II - Powrót Galleana-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3B5C7583-F7DA-481E-9A0D-AFFCC972A139}\setup.exe" -l0x15
Dragon Age: Początek-->C:\Program Files\Common Files\BioWare\Uninstall Dragon Age.exe
EA Shared Game Component: Activation-->msiexec /qb /x {217EC467-61C4-1939-3BBF-4FA4CAEA42FF}
EA Shared Game Component: Activation-->MsiExec.exe /I{217EC467-61C4-1939-3BBF-4FA4CAEA42FF}
Football Manager 2011-->"C:\Program Files\Sports Interactive\Football Manager 2011\Uninstall_Football Manager 2011\Uninstall Football Manager 2011.exe"
Gadu-Gadu 10-->C:\Program Files\Gadu-Gadu 10\Uninstall.exe
GIGABYTE Gamer HUD-->MsiExec.exe /I{B2BE514B-F1B3-43AB-84DD-3377ADBA1A7F}
GIMP 2.6.10-->"C:\Program Files\GIMP-2.0\setup\unins000.exe"
Grand Theft Auto Vice City-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4B35F00C-E63D-40DC-9839-DF15A33EAC46}\Setup.exe" -l0x9
Half-Life: Blue Shift-->"C:\Program Files\Valve\Steam\steam.exe" steam://uninstall/130
Half-Life: Opposing Force-->"C:\Program Files\Valve\Steam\steam.exe" steam://uninstall/50
Heroes of Might and Magic III - Złota Edycja-->"C:\Program Files\Heroes of Might and Magic III - Zlota Edycja\unins000.exe"
Heroes of Might and Magic IV - Złota Edycja-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{94B4E2D8-A184-415C-BF9E-F699D76466BD}\setup.exe" -l0x15
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
ipla 2.1.0-->C:\Program Files\ipla\uninst.exe
Java(TM) 6 Update 20-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216020F0}
Java(TM) 6 Update 26-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216021FF}
jv16 PowerTools 1.3-->"C:\Program Files\jv16 PowerTools\unins000.exe"
K-Lite Codec Pack 5.6.1 (Corporate)-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
League of Legends-->"C:\Program Files\InstallShield Installation Information\{92606477-9366-4D3B-8AE3-6BE4B29727AB}\setup.exe" -runfromtemp -l0x0409 -removeonly
Linksys Wireless-G PCI Adapter-->C:\Program Files\InstallShield Installation Information\{4DDC3BED-CC68-44AA-B435-D727B620CA5B}\setup.exe -runfromtemp -l0x0009 -removeonly
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Games for Windows - LIVE Redistributable-->MsiExec.exe /X{59E4543A-D49D-4489-B445-473D763C79AF}
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0016-0415-0000-0000000FF1CE} /uninstall {79EB535E-76E4-4356-8146-A24EE55AB69D}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0018-0415-0000-0000000FF1CE} /uninstall {79EB535E-76E4-4356-8146-A24EE55AB69D}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001B-0415-0000-0000000FF1CE} /uninstall {79EB535E-76E4-4356-8146-A24EE55AB69D}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-006E-0415-0000-0000000FF1CE} /uninstall {D45F91DE-F0FC-4D5F-9A0C-FDE5B251AAC6}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-00A1-0415-0000-0000000FF1CE} /uninstall {79EB535E-76E4-4356-8146-A24EE55AB69D}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}
Microsoft Office Excel MUI (Polish) 2007-->MsiExec.exe /X{90120000-0016-0415-0000-0000000FF1CE}
Microsoft Office Home and Student 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall HOMESTUDENTR /dll OSETUP.DLL
Microsoft Office Home and Student 2007-->MsiExec.exe /X{91120000-002F-0000-0000-0000000FF1CE}
Microsoft Office OneNote MUI (Polish) 2007-->MsiExec.exe /X{90120000-00A1-0415-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (Polish) 2007-->MsiExec.exe /X{90120000-0018-0415-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Polish) 2007-->MsiExec.exe /X{90120000-001F-0415-0000-0000000FF1CE}
Microsoft Office Proofing (Polish) 2007-->MsiExec.exe /X{90120000-002C-0415-0000-0000000FF1CE}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {A0516415-ED61-419A-981D-93596DA74165}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {ABDDE972-355B-4AF1-89A8-DA50B7B5C045}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0415-0000-0000000FF1CE} /uninstall {E9EA2604-8AC9-47D2-8F4B-6BF60787A357}
Microsoft Office Shared MUI (Polish) 2007-->MsiExec.exe /X{90120000-006E-0415-0000-0000000FF1CE}
Microsoft Office Word MUI (Polish) 2007-->MsiExec.exe /X{90120000-001B-0415-0000-0000000FF1CE}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148-->MsiExec.exe /X{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570-->MsiExec.exe /X{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319-->MsiExec.exe /X{196BB40D-1578-3D01-B289-BEFC77A11A1E}
Modern Warfare 2 Spolszczenie by O22y-->"C:\Program Files\Activision\Modern Warfare 2\unins001.exe"
Mozilla Firefox 4.0.1 (x86 pl)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MP3 Cutter Joiner 5.00-->"C:\Program Files\AudioToolsFactory\MP3 Cutter Joiner\unins000.exe"
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
NapiProjekt 1.0.6.9-->"C:\Program Files\NAPI-PROJEKT\unins000.exe"
Nero 6 Ultra Edition-->C:\Program Files\Ahead\nero\uninstall\UNNERO.exe /UNINSTALL
NSIS Example2-->"C:\Program Files\Tibia Auto\uninstall.exe"
NVIDIA nView 135.50-->"C:\WINDOWS\system32\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.0\NVI2.DLL",UninstallPackage Display.NView
NVIDIA nView Desktop Manager-->C:\Program Files\NVIDIA Corporation\nView\nViewSetup.exe -uninstall
NVIDIA Oprogramowanie systemu PhysX 9.10.0514-->"C:\WINDOWS\system32\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.0\NVI2.DLL",UninstallPackage Display.PhysX
NVIDIA PhysX-->MsiExec.exe /X{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}
NVIDIA Sterownik graficzny 266.58-->"C:\WINDOWS\system32\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.0\NVI2.DLL",UninstallPackage Display.Driver
Oblivion-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{35CB6715-41F8-4F99-8881-6FC75BF054B0}\setup.exe" -l0x9 -removeonly
Pakiet sterowników systemu Windows - MobileTop (sshpmdm) Modem (02/23/2007 2.5.0.0)-->C:\PROGRA~1\DIFX\7B44739871F4D539FA473F57A832EA4B6A59EF06\DPInst.exe /u C:\WINDOWS\system32\DRVSTORE\shpacm_18A9B92ED8DEDC602E49E767FA4BE98A30525207\shpacm.inf
Pakiet sterowników systemu Windows - MobileTop (sshpusb) USB (02/23/2007 2.5.0.0)-->C:\PROGRA~1\DIFX\7B44739871F4D539FA473F57A832EA4B6A59EF06\DPInst.exe /u C:\WINDOWS\system32\DRVSTORE\shpusb_558D416BCEB984F35885804D3E1A9C3773F1B17C\shpusb.inf
Picasa 3-->"C:\Program Files\Google\Picasa3\Uninstall.exe"
Poprawka dla systemu Windows XP (KB2158563)-->"C:\WINDOWS\$NtUninstallKB2158563$\spuninst\spuninst.exe"
Poprawka dla systemu Windows XP (KB2443685)-->"C:\WINDOWS\$NtUninstallKB2443685$\spuninst\spuninst.exe"
Poprawka dla systemu Windows XP (KB942288-v3)-->"C:\WINDOWS\$NtUninstallKB942288-v3$\spuninst\spuninst.exe"
Poprawka dla systemu Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Poprawka dla systemu Windows XP (KB961118)-->"C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe"
Poprawka dla systemu Windows XP (KB976098-v2)-->"C:\WINDOWS\$NtUninstallKB976098-v2$\spuninst\spuninst.exe"
Poprawka dla systemu Windows XP (KB979306)-->"C:\WINDOWS\$NtUninstallKB979306$\spuninst\spuninst.exe"
Poprawka dla systemu Windows XP (KB981793)-->"C:\WINDOWS\$NtUninstallKB981793$\spuninst\spuninst.exe"
Pro Evolution Soccer 2011-->MsiExec.exe /X{9773450C-E2F3-46C3-9464-1D7EDE5EFB63}
Real Alternative 2.0.1-->"C:\Program Files\Real Alternative\unins000.exe"
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\setup.exe" -l0x15 -removeonly
Revo Uninstaller 1.92-->C:\Program Files\VS Revo Group\Revo Uninstaller\uninst.exe
Rome - Total War(TM)-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{A642BB6B-CA1D-4142-8DD4-318C3F3DC834}
SAMSUNG Mobile Composite Device Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\6\SSBCUninstall.exe
SAMSUNG Mobile Modem Driver Set-->C:\WINDOWS\system32\Samsung_USB_Drivers\3\SSCDUninstall.exe
Samsung Mobile phone USB driver Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\5\SSSDUninstall.exe
SAMSUNG Mobile USB Modem 1.0 Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\1\SS_Uninstall.exe
SAMSUNG Mobile USB Modem Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\2\SSM_Uninstall.exe
Samsung New PC Studio USB Driver Installer-->"C:\Program Files\InstallShield Installation Information\{AF7E85DC-317C-47F5-810E-B82EE093A612}\setup.exe" -runfromtemp -l0x0415 -removeonly
Samsung New PC Studio USB Driver Installer-->MsiExec.exe /I{AF7E85DC-317C-47F5-810E-B82EE093A612}
Samsung New PC Studio-->"C:\Program Files\InstallShield Installation Information\{F193FC0E-9E18-40FC-A974-509A1BDD240A}\setup.exe" -runfromtemp -l0x0415 -removeonly
Samsung New PC Studio-->MsiExec.exe /X{F193FC0E-9E18-40FC-A974-509A1BDD240A}
Security Update for 2007 Microsoft Office System (KB2288621)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {5C497F0B-2061-4CC9-A61C-6B45B867354D}
Security Update for 2007 Microsoft Office System (KB2288931)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {CD769337-C8AC-46DB-A7DC-643E50089263}
Security Update for 2007 Microsoft Office System (KB2345043)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {536FB502-775F-4494-BACE-C02CC90B7A5B}
Security Update for 2007 Microsoft Office System (KB2509488)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {AD0DE453-0804-4495-9C91-33D0F9AA5463}
Security Update for 2007 Microsoft Office System (KB969559)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {69F52148-9BF6-4CDC-BF76-103DEAF3DD08}
Security Update for 2007 Microsoft Office System (KB976321)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {7F207DCA-3399-40CB-A968-6E5991B1421A}
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A8894F19-59C8-38D2-8A75-36C0CCE56A5B} /qb+ REBOOTPROMPT=""
Security Update for Microsoft Office 2007 System (KB2541012)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {CD907315-705A-4475-A1A0-2A1245803E4D}
Security Update for Microsoft Office Excel 2007 (KB2541007)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {A0173254-F442-4D04-9154-43FA157B83D0}
Security Update for Microsoft Office InfoPath 2007 (KB979441)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB}
Security Update for Microsoft Office PowerPoint 2007 (KB2535818)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {8588DD11-6BD7-4400-B55C-DD5AB74B43E1}
Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {D75E6D0C-BADF-4F41-98B2-0C0F02C15062}
Security Update for Microsoft Office system 2007 (972581)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {3D019598-7B59-447A-80AE-815B703B84FF}
Security Update for Microsoft Office system 2007 (KB974234)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {FCD742B9-7A55-44BC-A776-F795F21FEDDC}
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {71127777-8B2C-4F97-AF7A-6CF8CAC8224D}
Security Update for Microsoft Office Word 2007 (KB2344993)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {7A5B74FA-7A92-4FC9-821A-2DD5D4E73E48}
Six Engine-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{56B83336-FBC1-4C46-8613-90A9E3B440D6}\setup.exe" -l0x9
Skaner on-line mks_vir-->C:\WINDOWS\system32\SkanerOnlineUninstall.exe
Skrzyżowania 1.0.0.14-->"C:\Program Files\Grupa IMAGE\Skrzyżowania\unins000.exe"
Sony Ericsson PC Companion 1.60.13-->"C:\Program Files\InstallShield Installation Information\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}\setup.exe" -runfromtemp -l0x0009 -removeonly
SopCast 3.0.3-->C:\Program Files\SopCast\uninst.exe
SpeedFan (remove only)-->"C:\Program Files\SpeedFan\uninstall.exe"
Steam(TM)-->MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3}
Testy B -->"C:\Program Files\Grupa IMAGE\Testy B\unins000.exe"
Tibia-->"C:\Program Files\Tibia\unins000.exe"
Ubisoft Game Launcher-->"C:\Program Files\InstallShield Installation Information\{888F1505-C2B3-4FDE-835D-36353EBD4754}\setup.exe" -runfromtemp -l0x0409 -removeonly
Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
Update for Microsoft Office 2007 System (KB2539530)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {0B4CEEAE-AA88-490C-BCB2-AAC3421981A4}
Update for Microsoft Office OneNote 2007 (KB980729)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {329050A9-EF80-40F9-B633-74508F54C1FF}
uTorrentBar Toolbar-->C:\PROGRA~1\UTORRE~1\UNWISE.EXE /U C:\PROGRA~1\UTORRE~1\INSTALL.LOG
Wiedźmin 2-->"C:\Program Files\InstallShield Installation Information\{F0A209B7-7F85-4BDD-8F1F-B98EEAD9E04B}\setup.exe" -runfromtemp -l0x0415 -removeonly
Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray-->"C:\WINDOWS\$NtUninstallKB952011$\spuninst\spuninst.exe"
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Znaki Drogowe-->"C:\Program Files\Grupa IMAGE\Znaki Drogowe\unins000.exe"

======System event log======

Computer Name: KOMP
Event Code: 1003
Message: Komputer nie mógł odnowić swojego adresu z sieci
(z serwera DHCP) dla karty sieciowej o adresie 002129E2CEEE. Wystąpił
następujący błąd:
Operacja została anulowana przez użytkownika.
.
Komputer będzie dalej próbował sam uzyskać adres
z serwera adresów sieciowych (DHCP).

Record Number: 40349
Source Name: Dhcp
Time Written: 20110615192737.000000+120
Event Type: ostrzeżenie
User:

Computer Name: KOMP
Event Code: 4201
Message: System wykrył, że karta sieciowa \DEVICE\TCPIP_{71FEC046-4CE6-4146-A0FF-70217EAAEE79} została podłączona do sieci
i ma zainicjowane normalne działanie na karcie sieciowej.

Record Number: 40348
Source Name: Tcpip
Time Written: 20110615192737.000000+120
Event Type: informacje
User:

Computer Name: KOMP
Event Code: 4201
Message: System wykrył, że karta sieciowa \DEVICE\TCPIP_{71FEC046-4CE6-4146-A0FF-70217EAAEE79} została podłączona do sieci
i ma zainicjowane normalne działanie na karcie sieciowej.

Record Number: 40347
Source Name: Tcpip
Time Written: 20110615192723.000000+120
Event Type: informacje
User:

Computer Name: KOMP
Event Code: 4201
Message: System wykrył, że karta sieciowa \DEVICE\TCPIP_{71FEC046-4CE6-4146-A0FF-70217EAAEE79} została podłączona do sieci
i ma zainicjowane normalne działanie na karcie sieciowej.

Record Number: 40346
Source Name: Tcpip
Time Written: 20110615192657.000000+120
Event Type: informacje
User:

Computer Name: KOMP
Event Code: 1003
Message: Komputer nie mógł odnowić swojego adresu z sieci
(z serwera DHCP) dla karty sieciowej o adresie 002129E2CEEE. Wystąpił
następujący błąd:
Operacja została anulowana przez użytkownika.
.
Komputer będzie dalej próbował sam uzyskać adres
z serwera adresów sieciowych (DHCP).

Record Number: 40345
Source Name: Dhcp
Time Written: 20110615192655.000000+120
Event Type: ostrzeżenie
User:

=====Application event log=====

Computer Name: KOMP
Event Code: 4354
Message: System zdarzeń modelu COM+ nie mógł zwolnić metody ConnectionMadeNoQOCInfo dla subskrypcji {A82F0E80-1305-400C-BA56-375AE04264A1}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}. Subskrybent zwrócił HRESULT 80004001.
Record Number: 6984
Source Name: EventSystem
Time Written: 20110322191541.000000+060
Event Type: ostrzeżenie
User:

Computer Name: KOMP
Event Code: 4354
Message: System zdarzeń modelu COM+ nie mógł zwolnić metody ConnectionLost dla subskrypcji {45233130-B6C3-44FB-A6AF-487C47CEE611}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}. Subskrybent zwrócił HRESULT 80004001.
Record Number: 6983
Source Name: EventSystem
Time Written: 20110322191538.000000+060
Event Type: ostrzeżenie
User:

Computer Name: KOMP
Event Code: 4354
Message: System zdarzeń modelu COM+ nie mógł zwolnić metody ConnectionMadeNoQOCInfo dla subskrypcji {A82F0E80-1305-400C-BA56-375AE04264A1}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}. Subskrybent zwrócił HRESULT 80004001.
Record Number: 6982
Source Name: EventSystem
Time Written: 20110322191538.000000+060
Event Type: ostrzeżenie
User:

Computer Name: KOMP
Event Code: 4354
Message: System zdarzeń modelu COM+ nie mógł zwolnić metody ConnectionLost dla subskrypcji {45233130-B6C3-44FB-A6AF-487C47CEE611}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}. Subskrybent zwrócił HRESULT 80004001.
Record Number: 6981
Source Name: EventSystem
Time Written: 20110322191533.000000+060
Event Type: ostrzeżenie
User:

Computer Name: KOMP
Event Code: 4354
Message: System zdarzeń modelu COM+ nie mógł zwolnić metody ConnectionMadeNoQOCInfo dla subskrypcji {A82F0E80-1305-400C-BA56-375AE04264A1}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}. Subskrybent zwrócił HRESULT 80004001.
Record Number: 6980
Source Name: EventSystem
Time Written: 20110322191518.000000+060
Event Type: ostrzeżenie
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=C:\Program Files\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 23 Stepping 6, GenuineIntel
"PROCESSOR_REVISION"=1706
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP

-----------------EOF-----------------
[/log]

[log]Logfile of random's system information tool 1.08 (written by random/random)
Run by Arturuz at 2011-06-23 12:03:56
Microsoft Windows XP Home Edition Dodatek Service Pack 3
System drive C: has 49 GB (21%) free of 238 GB
Total RAM: 2047 MB (77% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:03:58, on 2011-06-23
Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Linksys\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe
C:\Program Files\Linksys\Linksys Wireless-G PCI Wireless Network Monitor\WMP54Gv4.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\Arturuz\Pulpit\RSIT.exe
C:\Program Files\trend micro\Arturuz.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com/?o=0&l=dir
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
R3 - URLSearchHook: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\tbuTor.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll
O2 - BHO: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\tbuTor.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\tbuTor.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll
O4 - HKLM\..\Run: [Cpu Level Up help] C:\Program Files\ASUS\AI Suite\CpuLevelUpHelp.exe
O4 - HKLM\..\Run: [QFan Help] "C:\Program Files\ASUS\AI Suite\QFan3\QFanHelp.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -startup
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\RunServices: [WUSB54GC] %ProgramFiles%\
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA LOKALNA')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA SIECIOWA')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} (MksSkanerOnline Class) - http://www.mks.com.pl/skaner/SkanerOnline.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{71FEC046-4CE6-4146-A0FF-70217EAAEE79}: NameServer = 208.67.222.222,208.67.220.220
O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Dragon Age: Początek - Aktualizator zawartości (DAUpdaterSvc) - BioWare - C:\Program Files\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: WMP54Gv4SVC - GEMTEKS - C:\Program Files\Linksys\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe

--
End of file - 6535 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
Conduit Engine - C:\Program Files\ConduitEngine\ConduitEngine.dll [2010-12-09 3911776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]
uTorrentBar Toolbar - C:\Program Files\uTorrentBar\tbuTor.dll [2010-12-09 3911776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-05-04 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-05-04 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - uTorrentBar Toolbar - C:\Program Files\uTorrentBar\tbuTor.dll [2010-12-09 3911776]
{30F9B915-B755-4826-820B-08FBA6BD249D} - Conduit Engine - C:\Program Files\ConduitEngine\ConduitEngine.dll [2010-12-09 3911776]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Cpu Level Up help"=C:\Program Files\ASUS\AI Suite\CpuLevelUpHelp.exe [2007-11-30 881152]
"QFan Help"=C:\Program Files\ASUS\AI Suite\QFan3\QFanHelp.exe [2008-05-06 594432]
"ISUSPM Startup"=C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [2005-08-11 249856]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2011-06-08 37296]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-03-30 937920]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2011-01-07 111208]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2011-01-07 13880424]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2011-05-10 3459712]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-04-08 254696]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-15 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-03-30 937920]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2011-06-08 37296]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Ai Nap]
C:\Program Files\ASUS\AI Suite\AiNap\AiNap.exe [2008-05-09 1423360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]
C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoStartNPSAgent]
C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe [2009-01-08 98304]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2009-10-30 369200]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Delete USB Error Key]
C:\Program Files\Samsung\Samsung New PC Studio\USB Drivers\SPS3_USB_Driver_Setup.exe [2007-07-24 126976]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Gadu-Gadu 10]
C:\Program Files\Gadu-Gadu 10\gg.exe [2011-05-05 13345376]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IPLA!]
C:\Program Files\ipla\ipla.exe [2010-02-02 14252952]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM Startup]
c:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe [2005-08-11 249856]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSScheduler]
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2005-08-11 81920]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
C:\Program Files\NVIDIA Corporation\nView\nwiz.exe [2010-11-04 1753192]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RGSC]
C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
C:\WINDOWS\RTHDCPL.EXE [2008-03-26 16859136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Six Engine]
C:\Program Files\ASUS\Six Engine\SixEngine.exe [2008-05-14 5958656]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Companion]
C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe [2009-12-08 774144]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
c:\program files\valve\steam\steam.exe [2011-04-23 1242448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Nowe Gadu-Gadu\gg.exe"="C:\Program Files\Nowe Gadu-Gadu\gg.exe:*:Enabled:Nowe Gadu-Gadu"
"C:\Program Files\Gadu-Gadu 10\gg.exe"="C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10"
"C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe"="C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe:*:Enabled:KTF MUSIC AoD Server"
"C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe"="C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe:*:Enabled:KTF MUSIC VoD Server"
"C:\Program Files\Valve\Steam\SteamApps\macheja\opposing force\hl.exe"="C:\Program Files\Valve\Steam\SteamApps\macheja\opposing force\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Mozilla Firefox"
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe"="C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe:*:Enabled:ESET NOD32 Antivirus"
"C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe"="C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe:*:Enabled:Ubisoft Game Launcher"
"C:\Program Files\Strategy First\Disciples II - Powrót Galleana\Discipl2.exe"="C:\Program Files\Strategy First\Disciples II - Powrót Galleana\Discipl2.exe:*:Enabled:Disciples II v2.01"
"C:\Program Files\Valve\Steam\SteamApps\macheja\deathmatch classic\hl.exe"="C:\Program Files\Valve\Steam\SteamApps\macheja\deathmatch classic\hl.exe:*:Enabled:Deathmatch Classic"
"C:\Program Files\Heroes of Might and Magic III - Zlota Edycja\Heroes3.exe"="C:\Program Files\Heroes of Might and Magic III - Zlota Edycja\Heroes3.exe:*:Enabled:Heroes of Might and Magic® III (CDP)"
"C:\WINDOWS\system32\dplaysvr.exe"="C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper"
"C:\WINDOWS\system32\dllhost.exe"="C:\WINDOWS\system32\dllhost.exe:*:Enabled:COM Surrogate"
"C:\Program Files\SopCast\adv\SopAdver.exe"="C:\Program Files\SopCast\adv\SopAdver.exe:*:Enabled:SopCast Adver"
"C:\Program Files\Internet Explorer\IEXPLORE.EXE"="C:\Program Files\Internet Explorer\IEXPLORE.EXE:*:Enabled:Internet Explorer"
"C:\Riot Games\League of Legends\air\LolClient.exe"="C:\Riot Games\League of Legends\air\LolClient.exe:*:Enabled:League of Legends Lobby"
"C:\Riot Games\League of Legends\game\League of Legends.exe"="C:\Riot Games\League of Legends\game\League of Legends.exe:*:Enabled:League of Legends Game Client"
"C:\Program Files\KONAMI\Pro Evolution Soccer 2011\pes2011.exe"="C:\Program Files\KONAMI\Pro Evolution Soccer 2011\pes2011.exe:*:Enabled:Pro Evolution Soccer 2011"
"C:\Program Files\Sports Interactive\Football Manager 2011\fm.exe"="C:\Program Files\Sports Interactive\Football Manager 2011\fm.exe:*:Enabled:Football Manager 2011"
"C:\Program Files\Warcraft III\Warcraft III.exe"="C:\Program Files\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III"
"C:\Program Files\Dragon Age\bin_ship\daorigins.exe"="C:\Program Files\Dragon Age\bin_ship\daorigins.exe:*:Enabled:Dragon Age Początek Gra"
"C:\Program Files\Dragon Age\DAOriginsLauncher.exe"="C:\Program Files\Dragon Age\DAOriginsLauncher.exe:*:Enabled:Dragon Age Początek Program startowy"
"C:\Program Files\Dragon Age\bin_ship\daupdatersvc.service.exe"="C:\Program Files\Dragon Age\bin_ship\daupdatersvc.service.exe:*:Enabled:Dragon Age Początek Aktualizator"
"C:\Program Files\Dragon Age\bin_ship\EACoreServer.exe"="C:\Program Files\Dragon Age\bin_ship\EACoreServer.exe:*:Enabled:EA Core Server Application"
"C:\Program Files\Valve\Steam\SteamApps\macheja\half-life\hl.exe"="C:\Program Files\Valve\Steam\SteamApps\macheja\half-life\hl.exe:*:Enabled:Half-Life"
"C:\Riot Games\League of Legends\lol.launcher.exe"="C:\Riot Games\League of Legends\lol.launcher.exe:*:Enabled:League of Legends Launcher"
"C:\Documents and Settings\Arturuz\Ustawienia lokalne\Dane aplikacji\MediaGet2\mediaget.exe"="C:\Documents and Settings\Arturuz\Ustawienia lokalne\Dane aplikacji\MediaGet2\mediaget.exe:*:Enabled:MediaGet torrent client"
"C:\Program Files\Wiedźmin 2\bin\witcher2.exe"="C:\Program Files\Wiedźmin 2\bin\witcher2.exe:*:Enabled:The Witcher 2: Assasins of Kings"
"C:\Program Files\Valve\Steam\SteamApps\macheja\counter-strike\hl.exe"="C:\Program Files\Valve\Steam\SteamApps\macheja\counter-strike\hl.exe:*:Enabled:Counter-Strike"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======File associations======

.scr - open - C:\WINDOWS\system32\notepad.exe "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 2 months======

2011-06-23 12:03:12 ----D---- C:\rsit
2011-06-20 14:03:12 ----A---- C:\WINDOWS\system32\python24.dll
2011-06-20 14:02:50 ----D---- C:\Program Files\TibiaAuto
2011-06-20 13:57:33 ----D---- C:\Program Files\Tibia Auto
2011-06-19 22:58:39 ----SHD---- C:\Config.Msi
2011-06-16 14:18:18 ----HDC---- C:\WINDOWS\$NtUninstallKB2530548$
2011-06-16 14:18:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2476490$
2011-06-16 14:18:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2503665$
2011-06-16 14:17:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2535512$
2011-06-16 14:17:36 ----HDC---- C:\WINDOWS\$NtUninstallKB2536276$
2011-06-16 14:17:29 ----HDC---- C:\WINDOWS\$NtUninstallKB2544893$
2011-06-16 14:17:15 ----D---- C:\WINDOWS\SxsCaPendDel
2011-06-16 14:15:40 ----A---- C:\WINDOWS\imsins.BAK
2011-06-16 14:15:37 ----HDC---- C:\WINDOWS\$NtUninstallKB2544521$
2011-06-15 16:01:01 ----D---- C:\Program Files\Common Files\Java
2011-06-15 16:00:44 ----A---- C:\WINDOWS\system32\javaws.exe
2011-06-15 16:00:44 ----A---- C:\WINDOWS\system32\javaw.exe
2011-06-15 16:00:44 ----A---- C:\WINDOWS\system32\java.exe
2011-06-10 19:10:22 ----D---- C:\Program Files\Wiedźmin 2
2011-05-27 19:24:21 ----D---- C:\Program Files\Grupa IMAGE
2011-05-26 13:53:14 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2011-05-26 13:53:14 ----A---- C:\WINDOWS\system32\drivers\aswFsBlk.sys
2011-05-26 13:53:12 ----A---- C:\WINDOWS\system32\drivers\aswTdi.sys
2011-05-26 13:53:12 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2011-05-26 13:53:12 ----A---- C:\WINDOWS\system32\drivers\aswRdr.sys
2011-05-26 13:53:11 ----A---- C:\WINDOWS\system32\drivers\aswmon2.sys
2011-05-26 13:53:11 ----A---- C:\WINDOWS\system32\drivers\aswmon.sys
2011-05-26 13:53:10 ----A---- C:\WINDOWS\system32\drivers\aavmker4.sys
2011-05-26 13:52:58 ----A---- C:\WINDOWS\system32\aswBoot.exe
2011-05-26 13:52:51 ----D---- C:\Program Files\AVAST Software
2011-05-26 13:52:51 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\AVAST Software
2011-05-19 10:37:35 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2011-05-19 10:37:35 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2011-05-19 10:37:35 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2011-05-19 10:37:34 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2011-05-19 10:37:34 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2011-05-19 10:37:33 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2011-05-19 10:37:32 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2011-05-19 10:37:32 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2011-05-19 10:37:31 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2011-05-19 10:37:31 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2011-05-19 10:37:31 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2011-05-19 10:37:30 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2011-05-04 13:28:53 ----A---- C:\WINDOWS\system32\hidserv.dll
2011-05-04 13:28:39 ----A---- C:\WINDOWS\system32\drivers\mouhid.sys
2011-05-04 13:28:25 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys

======List of files/folders modified in the last 2 months======

2011-06-23 12:03:58 ----D---- C:\Program Files\trend micro
2011-06-23 12:03:15 ----D---- C:\WINDOWS\Prefetch
2011-06-23 12:00:03 ----D---- C:\WINDOWS\Temp
2011-06-23 11:48:35 ----D---- C:\Program Files\SpeedFan
2011-06-23 11:30:47 ----D---- C:\WINDOWS\system32\CatRoot2
2011-06-23 01:23:47 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-06-22 20:11:10 ----D---- C:\WINDOWS
2011-06-21 21:16:33 ----D---- C:\Program Files\Mozilla Firefox
2011-06-20 16:57:53 ----D---- C:\Documents and Settings\Arturuz\Dane aplikacji\AIMP
2011-06-20 14:18:27 ----D---- C:\Program Files\Tibia
2011-06-20 14:18:18 ----D---- C:\WINDOWS\system32
2011-06-20 14:02:55 ----RD---- C:\Program Files
2011-06-19 22:59:13 ----SHD---- C:\WINDOWS\Installer
2011-06-16 16:27:22 ----D---- C:\Program Files\Microsoft Silverlight
2011-06-16 14:22:13 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft Help
2011-06-16 14:20:45 ----D---- C:\WINDOWS\Debug
2011-06-16 14:20:29 ----A---- C:\WINDOWS\system32\MRT.exe
2011-06-16 14:19:51 ----D---- C:\WINDOWS\WinSxS
2011-06-16 14:18:28 ----HD---- C:\WINDOWS\inf
2011-06-16 14:18:26 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-06-16 14:18:06 ----D---- C:\WINDOWS\system32\drivers
2011-06-16 14:18:04 ----HD---- C:\WINDOWS\$hf_mig$
2011-06-15 16:01:01 ----D---- C:\Program Files\Common Files
2011-06-15 16:00:42 ----D---- C:\Program Files\Java
2011-06-14 21:46:22 ----D---- C:\Documents and Settings\Arturuz\Dane aplikacji\PriceGong
2011-06-10 19:27:12 ----D---- C:\WINDOWS\system32\DirectX
2011-06-10 19:26:40 ----RSD---- C:\WINDOWS\assembly
2011-06-10 19:26:12 ----D---- C:\WINDOWS\Logs
2011-06-10 19:10:21 ----HD---- C:\Program Files\InstallShield Installation Information
2011-06-04 15:03:54 ----D---- C:\Documents and Settings\Arturuz\Dane aplikacji\uTorrent
2011-06-04 15:00:55 ----D---- C:\Documents and Settings\Arturuz\Dane aplikacji\Media Player Classic
2011-06-01 20:41:48 ----A---- C:\WINDOWS\NeroDigital.ini
2011-05-28 19:05:47 ----D---- C:\WINDOWS\Minidump
2011-05-28 19:05:00 ----D---- C:\Program Files\CCleaner
2011-05-28 18:40:51 ----D---- C:\Program Files\Rockstar Games
2011-05-28 18:32:18 ----D---- C:\Program Files\Atari
2011-05-28 18:31:04 ----D---- C:\Program Files\KONAMI
2011-05-28 18:31:04 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\KONAMI
2011-05-28 18:27:35 ----D---- C:\Program Files\Kolekcja Klasyki
2011-05-28 18:26:13 ----D---- C:\Program Files\EA Sports
2011-05-28 18:21:35 ----D---- C:\Program Files\Sports Interactive
2011-05-28 15:55:01 ----D---- C:\Program Files\Akella Games
2011-05-27 19:59:34 ----A---- C:\WINDOWS\bestplayer.ini
2011-05-27 19:24:24 ----RSD---- C:\WINDOWS\Fonts
2011-05-17 00:41:25 ----D---- C:\Program Files\Pando Networks
2011-05-10 14:05:43 ----D---- C:\Program Files\Gadu-Gadu 10
2011-05-07 16:08:08 ----SD---- C:\Documents and Settings\Arturuz\Dane aplikacji\Microsoft
2011-05-04 04:52:22 ----A---- C:\WINDOWS\system32\deployJava1.dll
2011-05-02 17:32:15 ----A---- C:\WINDOWS\system32\inetcomm.dll
2011-04-25 16:47:34 ----A---- C:\WINDOWS\system32\wininet.dll
2011-04-25 16:47:33 ----A---- C:\WINDOWS\system32\urlmon.dll
2011-04-25 16:47:33 ----A---- C:\WINDOWS\system32\shdocvw.dll
2011-04-25 16:47:32 ----A---- C:\WINDOWS\system32\mstime.dll
2011-04-25 16:47:32 ----A---- C:\WINDOWS\system32\mshtmled.dll
2011-04-25 16:47:32 ----A---- C:\WINDOWS\system32\mshtml.dll
2011-04-25 16:47:31 ----A---- C:\WINDOWS\system32\iepeers.dll
2011-04-25 16:47:31 ----A---- C:\WINDOWS\system32\ieencode.dll
2011-04-25 16:47:31 ----A---- C:\WINDOWS\system32\browseui.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 giveio;giveio; C:\WINDOWS\system32\giveio.sys [1996-04-03 5248]
R0 mv61xx;mv61xx; C:\WINDOWS\system32\DRIVERS\mv61xx.sys [2008-05-19 150568]
R0 ohci1394;Kontroler hosta IEEE 1394 zgodny z OHCI; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-15 61696]
R0 speedfan;speedfan; C:\WINDOWS\system32\speedfan.sys [2006-09-24 5248]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-01-23 691696]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2011-05-10 30808]
R1 AsIO;AsIO; C:\WINDOWS\system32\drivers\AsIO.sys [2007-12-17 12400]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2011-05-10 25432]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2011-05-10 441176]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2011-05-10 307928]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2011-05-10 49240]
R1 intelppm;Sterownik procesora Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-15 40448]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.4.3.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2010-01-23 20747]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2011-05-10 19544]
R2 aswMon2;aswMon2; C:\WINDOWS\system32\drivers\aswMon2.sys [2011-05-10 102616]
R3 Arp1394;Protokół klienta 1394 ARP; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-15 60800]
R3 FsUsbExDisk;FsUsbExDisk; \??\C:\WINDOWS\system32\FsUsbExDisk.SYS []
R3 GTNDIS5;GTNDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\GTNDIS5.SYS []
R3 HDAudBus;Sterownik magistrali Microsoft UAA dla High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-15 144384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-03-26 4713472]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 NIC1394;Sterownik sieci 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-15 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2011-01-08 9888672]
R3 RT61;Linksys Wireless-G PCI Adapter Driver(RT61); C:\WINDOWS\system32\DRIVERS\RT61.sys [2005-10-27 356096]
R3 usbuhci;Sterownik Miniport uniwersalnego kontrolera hosta USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S3 a50dd4nb;a50dd4nb; C:\WINDOWS\system32\drivers\a50dd4nb.sys []
S3 HidUsb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 L1e;Miniport Driver for Atheros AR8121/AR8113 PCI-E Ethernet Controller; C:\WINDOWS\system32\DRIVERS\l1e51x86.sys [2008-02-02 36864]
S3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-26 12160]
S3 s1039bus;Sony Ericsson Device 1039 driver (WDM); C:\WINDOWS\system32\DRIVERS\s1039bus.sys [2009-11-19 98672]
S3 s1039mdfl;Sony Ericsson Device 1039 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s1039mdfl.sys [2009-11-19 14960]
S3 s1039mdm;Sony Ericsson Device 1039 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s1039mdm.sys [2009-11-19 124016]
S3 s1039mgmt;Sony Ericsson Device 1039 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s1039mgmt.sys [2009-11-19 117872]
S3 s1039nd5;Sony Ericsson Device 1039 USB Ethernet Emulation (NDIS); C:\WINDOWS\system32\DRIVERS\s1039nd5.sys [2009-11-19 25456]
S3 s1039obex;Sony Ericsson Device 1039 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s1039obex.sys [2009-11-19 113904]
S3 s1039unic;Sony Ericsson Device 1039 USB Ethernet Emulation (WDM); C:\WINDOWS\system32\DRIVERS\s1039unic.sys [2009-11-19 123504]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\WINDOWS\system32\DRIVERS\sscdbus.sys [2008-02-22 87936]
S3 sscdmdfl;SAMSUNG Mobile Modem Filter; C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys [2008-02-22 14976]
S3 sscdmdm;SAMSUNG Mobile Modem Drivers; C:\WINDOWS\system32\DRIVERS\sscdmdm.sys [2008-02-22 114304]
S3 usbscan;Sterownik skanera USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-05-10 42184]
R2 FsUsbExService;FsUsbExService; C:\WINDOWS\system32\FsUsbExService.Exe [2009-01-08 233472]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-05-04 153376]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2011-01-07 156776]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-15 14336]
S2 WMP54Gv4SVC;WMP54Gv4SVC; C:\Program Files\Linksys\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe [2006-03-16 57344]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 DAUpdaterSvc;Dragon Age: Początek - Aktualizator zawartości; C:\Program Files\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [2009-07-26 25832]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-04-10 651720]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-06-11 136120]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------
[/log]

Z góry dzięki.

wirusolog
komentarz
komentarz (edytowane)

W logach nie widać żadnej aktywnej infekcji.
Kosmetyka:
[hr]

[b]1.[/b] Uruchom OTL i w oknie [b]Własne opcje skanowania/Skrypt[/b] wklej następujący tekst:

[code]:OTL
MsConfig - StartUpReg: RGSC - hkey= - key= - File not found
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O4 - HKLM..\RunServices: [WUSB54GC] C:\Program Files\ [2011-06-20 14:02:55 | 000,000,000 | R--D | M]
@Alternate Data Stream - 111 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:4F8F308F
SRV - File not found [Auto | Running] -- -- (WMP54Gv4SVC)

:Reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.stronastartowa.com/"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.stronastartowa.com/"
[-HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2]

:Commands
[emptyflash]
[emptytemp][/code]
Kliknij w [b]Wykonaj skrypt[/b]. Zatwierdź restart komputera.

[b]2.[/b] Do odinstalowania w panelu sterowania paski sponsorowe : [b]ConduitEngine[/b] , [b]uTorrentBar[/b]

[b]3.[/b] Ściągnij [url=http://www.teamxscript.org/too/AD-R.exe][b][color=blue][u]Ad-Remover.exe[/url][/b][/color][/u] i wciśnij w nim opcję czyszczenie ([size="3"][b]Clean[/b][/size])
Po chwili wyświetli się raport - wklej go.

[b]4.[/b] Następnie uruchamiasz OTL ponownie, tym razem wywołujesz opcję [b]Skanuj[/b]. Pokazujesz nowe logi z OTL + raport z usuwania.

Machej666
komentarz
komentarz

Raport AD-R:
[log]======= REPORT FROM AD-REMOVER 2.0.0.2,G | ONLY XP/VISTA/7 =======

Updated by TeamXscript on 12/04/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
website: http://www.teamxscript.org

C:\Program Files\Ad-Remover\main.exe (CLEAN [1]) -> Launched at 14:32:41 on 23/06/2011, Normal boot

Microsoft Windows XP Home Edition Dodatek Service Pack 3 (X86)
Arturuz@KOMP ( )

============== ACTION(S) ==============


File deleted: C:\Program Files\Mozilla FireFox\Components\AskHPRFF.js
Folder deleted: C:\Documents and Settings\Arturuz\Dane aplikacji\Mozilla\FireFox\Profiles\1lrqvygf.default\conduit
Folder deleted: C:\Documents and Settings\Arturuz\Dane aplikacji\Mozilla\FireFox\Profiles\1lrqvygf.default\ConduitEngine
Folder deleted: C:\Documents and Settings\Arturuz\Dane aplikacji\Mozilla\FireFox\Profiles\1lrqvygf.default\extensions\engine@conduit.com
Folder deleted: C:\Documents and Settings\Arturuz\Ustawienia lokalne\Dane aplikacji\AskToolbar
Folder deleted: C:\Documents and Settings\Arturuz\Ustawienia lokalne\Dane aplikacji\Conduit
Folder deleted: C:\Program Files\Conduit
Folder deleted: C:\Documents and Settings\Arturuz\Dane aplikacji\PriceGong
Folder deleted: C:\Documents and Settings\Arturuz\Dane aplikacji\Toolbar4

(!) -- Temporary files deleted.


-- File opened: C:\Documents and Settings\Arturuz\Dane aplikacji\Mozilla\FireFox\Profiles\1lrqvygf.default\Prefs.js --
Line deleted: user_pref("CT2786678.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT278...
Line deleted: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1178763/1174448/PL", "\"0\"...
Line deleted: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/909619/905414/PL", "\"0\"")...
Line deleted: user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2786678", ...
Line deleted: user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&lo...
Line deleted: user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&loc...
Line deleted: user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&lo...
Line deleted: user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&local...
Line deleted: user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\...
Line deleted: user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-services.com/DLG.pkg?ver=3.3.3...
Line deleted: user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.3....
Line deleted: user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT2786678",...
Line deleted: user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/toolbar/", "\"63433363123173...
Line deleted: user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=0", "63...
Line deleted: user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=1/11/20...
Line deleted: user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=12/30/2...
Line deleted: user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=2/17/20...
Line deleted: user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=2/22/20...
Line deleted: user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=3/13/20...
Line deleted: user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.search.conduit.com/root/CT2786678/CT2786678...
Line deleted: user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"634...
Line deleted: user_pref("CommunityToolbar.EngineHiddenByUser", false);
Line deleted: user_pref("CommunityToolbar.EngineOwner", "CT2786678");
Line deleted: user_pref("CommunityToolbar.EngineOwnerGuid", "{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}");
Line deleted: user_pref("CommunityToolbar.EngineOwnerToolbarId", "utorrentbar");
Line deleted: user_pref("CommunityToolbar.IsEngineShown", true);
Line deleted: user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
Line deleted: user_pref("CommunityToolbar.OriginalEngineOwner", "CT2786678");
Line deleted: user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}");
Line deleted: user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "utorrentbar");
Line deleted: user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.pr...
Line deleted: user_pref("CommunityToolbar.ToolbarsList", "ConduitEngine,CT2786678");
Line deleted: user_pref("CommunityToolbar.ToolbarsList2", "ConduitEngine,CT2786678");
Line deleted: user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Thu Mar 31 2011 20:33:28 GMT+02...
Line deleted: user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
Line deleted: user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Wed Jun 22 2011 23:13:52 GMT+0200");
Line deleted: user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Line deleted: user_pref("CommunityToolbar.alert.locale", "en");
Line deleted: user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
Line deleted: user_pref("CommunityToolbar.alert.loginLastCheckTime", "Wed Jun 22 2011 21:46:34 GMT+0200");
Line deleted: user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1305622559");
Line deleted: user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Line deleted: user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Line deleted: user_pref("CommunityToolbar.alert.showTrayIcon", false);
Line deleted: user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Line deleted: user_pref("CommunityToolbar.alert.userId", "9a746fca-a0e9-40e1-a683-226accc75c65");
Line deleted: user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Mon Apr 04 2011 08:54:15 GMT+0200");
Line deleted: user_pref("CommunityToolbar.globalUserId", "6e92a794-ce5c-454b-95c8-706d1424c165");
Line deleted: user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Line deleted: user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Line deleted: user_pref("ConduitEngine.AppTrackingLastCheckTime", "Wed Jun 22 2011 20:08:02 GMT+0200");
Line deleted: user_pref("ConduitEngine.CTID", "ConduitEngine");
Line deleted: user_pref("ConduitEngine.DialogsGetterLastCheckTime", "Wed Jun 22 2011 21:46:35 GMT+0200");
Line deleted: user_pref("ConduitEngine.FirstServerDate", "01/04/2011 22");
Line deleted: user_pref("ConduitEngine.FirstTime", true);
Line deleted: user_pref("ConduitEngine.FirstTimeFF3", true);
Line deleted: user_pref("ConduitEngine.FixPageNotFoundErrors", false);
Line deleted: user_pref("ConduitEngine.HasUserGlobalKeys", true);
Line deleted: user_pref("ConduitEngine.HideEngineAfterRestart", true);
Line deleted: user_pref("ConduitEngine.Initialize", true);
Line deleted: user_pref("ConduitEngine.InitializeCommonPrefs", true);
Line deleted: user_pref("ConduitEngine.InstallationType", "UnknownIntegration");
Line deleted: user_pref("ConduitEngine.InstalledDate", "Tue Jan 04 2011 20:25:31 GMT+0100");
Line deleted: user_pref("ConduitEngine.IsMulticommunity", false);
Line deleted: user_pref("ConduitEngine.IsOpenThankYouPage", false);
Line deleted: user_pref("ConduitEngine.IsOpenUninstallPage", false);
Line deleted: user_pref("ConduitEngine.LanguagePackLastCheckTime", "Wed Jun 22 2011 21:46:39 GMT+0200");
Line deleted: user_pref("ConduitEngine.LastLogin_3.2.5.2", "Thu Mar 31 2011 18:17:42 GMT+0200");
Line deleted: user_pref("ConduitEngine.LastLogin_3.3.3.2", "Thu Jun 23 2011 11:46:47 GMT+0200");
Line deleted: user_pref("ConduitEngine.PublisherContainerWidth", 0);
Line deleted: user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
Line deleted: user_pref("ConduitEngine.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=C...
Line deleted: user_pref("ConduitEngine.SettingsLastCheckTime", "Thu Jun 23 2011 11:46:47 GMT+0200");
Line deleted: user_pref("ConduitEngine.UserID", "UN23847583280255383");
Line deleted: user_pref("ConduitEngine.engineLocale", "pl");
Line deleted: user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Wed Jun 22 2011 21:46:35 GMT+0200");
Line deleted: user_pref("ConduitEngine.globalFirstTimeInfoLastCheckTime", "Thu Jun 23 2011 11:46:47 GMT+0200");
Line deleted: user_pref("ConduitEngine.initDone", true);
Line deleted: user_pref("ConduitEngine.isAppTrackingManagerOn", true);
Line deleted: user_pref("ConduitEngine.usagesFlag", 2);
Line deleted: user_pref("extensions.asktb.cbid", "UG");
Line deleted: user_pref("extensions.asktb.default-channel-url-mask", "hxxp://www.ask.com/web?q={query}&o={o}&l={l}...
Line deleted: user_pref("extensions.asktb.fresh-install", false);
Line deleted: user_pref("extensions.asktb.l", "dis");
Line deleted: user_pref("extensions.asktb.last-config-req", "1264247575956");
Line deleted: user_pref("extensions.asktb.locale", "en_US");
Line deleted: user_pref("extensions.asktb.o", "15158");
Line deleted: user_pref("extensions.asktb.overlay-reloaded-using-restart", true);
Line deleted: user_pref("extensions.asktb.qsrc", "2871");
Line deleted: user_pref("extensions.asktb.r", "5");
-- File closed --


Key deleted: HKLM\Software\Classes\Conduit.Engine
Key deleted: HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd
Key deleted: HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd.1
Key deleted: HKLM\Software\Classes\Toolbar.CT2786678
Key deleted: HKLM\Software\Classes\AppID\GenericAskToolbar.DLL
Key deleted: HKLM\Software\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key deleted: HKLM\Software\Conduit
Key deleted: HKCU\Software\Ask.com
Key deleted: HKCU\Software\PriceGong
Key deleted: HKCU\Software\Toolbar
Key deleted: HKCU\Software\AppDataLow\AskBarDis
Key deleted: HKCU\Software\AppDataLow\AskHomePage
Key deleted: HKCU\Software\AppDataLow\AskToolbarInfo
Key deleted: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key deleted: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}

Value deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\post platform|AskTB5.5
Value deleted: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{D4027C7F-154A-4066-A1AD-4243D8127440}


============== ADDITIONNAL SCAN ==============

**** Mozilla Firefox Version [4.0.1 (pl)] ****

HKLM_MozillaPlugins\@pandonetworks.com/PandoWebPlugin (x)
HKLM_MozillaPlugins\Adobe Reader (x)
Searchplugins\allegro-pl.xml (hxxp://www.allegro.pl/search.php?string={searchTerms}&amp;sourceid=Mozilla-search)
Searchplugins\fbc-pl.xml (hxxp://fbc.pionier.net.pl/owoc/results)
Searchplugins\merlin-pl.xml (hxxp://www.merlin.com.pl/frontend/search?sourceid=Mozilla-search&amp;fraza={searchTerms}&amp;skad=crhhxmkohb)
Searchplugins\pwn-pl.xml (hxxp://encyklopedia.pwn.pl/szukaj.php?co={searchTerms})
Searchplugins\wikipedia-pl.xml (hxxp://pl.wikipedia.org/wiki/Specjalna:Szukaj)
Searchplugins\wp-pl.xml (hxxp://szukaj.wp.pl/szukaj.html?z=T&amp;r=T&amp;szukaj={searchTerms})
Components\browsercomps.dll (Mozilla Foundation)

-- C:\Documents and Settings\Arturuz\Dane aplikacji\Mozilla\FireFox\Profiles\1lrqvygf.default --
Extensions\{3d7eb24f-2740-49df-8937-200b1cc08f8a} (Flashblock)
Extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} (uTorrentBar Community Toolbar)
Searchplugins\bigseekpro.xml (?)
Searchplugins\google-pl.xml (?)
Prefs.js - browser.download.dir, C:\\Documents and Settings\\Arturuz\\Pulpit
Prefs.js - browser.download.lastDir, C:\\Documents and Settings\\Arturuz\\Pulpit\\Zdjęcia
Prefs.js - browser.search.defaultenginename,
Prefs.js - browser.startup.homepage, hxxp://www.google.pl/
Prefs.js - browser.startup.homepage_override.buildID, 20110413222027
Prefs.js - browser.startup.homepage_override.mstone, rv:2.0.1

========================================

**** Internet Explorer Version [6.0.2900.5512] ****

HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896
HKCU_Main|Start Page - hxxp://fr.msn.com/
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm
HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Start Page - hxxp://fr.msn.com/
HKCU_SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e} - "BigSeekPro" (hxxp://www.bigseekpro.com/search/browser/audiotoolsfactory/{368A699F-291B-492B-9...)
HKLM_ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291} - C:\Program Files\Audio Tools Factory Toolbar\TbHelper2.exe (x)
HKLM_Extensions\{e2e2dd38-d088-4134-82b7-f2ba38496583} - "?" (?)

========================================

C:\Program Files\Ad-Remover\Quarantine: 101 File(s)
C:\Program Files\Ad-Remover\Backup: 14 File(s)

C:\Ad-Report-CLEAN[1].txt - 23/06/2011 14:32:54 (9737 Byte(s))

End at: 14:33:21, 23/06/2011

============== E.O.F ==============
[/log]

nowe logi OTL:
[log]OTL logfile created on: 2011-06-23 14:40:26 - Run 2
OTL by OldTimer - Version 3.2.24.1 Folder = C:\Documents and Settings\Arturuz\Pulpit
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,41 Gb Available Physical Memory | 70,59% Memory free
3,85 Gb Paging File | 3,47 Gb Available in Paging File | 90,28% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 232,88 Gb Total Space | 47,60 Gb Free Space | 20,44% Space Free | Partition Type: NTFS
Drive D: | 232,88 Gb Total Space | 26,63 Gb Free Space | 11,44% Space Free | Partition Type: NTFS

Computer Name: KOMP | User Name: Arturuz | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days

[color=#E56717]========== Processes (All) ==========[/color]

PRC - C:\Documents and Settings\Arturuz\Pulpit\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Mozilla Firefox\plugin-container.exe (Mozilla Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
PRC - C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
PRC - C:\Program Files\Java\jre6\bin\jqs.exe (Sun Microsystems, Inc.)
PRC - C:\Program Files\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
PRC - C:\WINDOWS\system32\nvsvc32.exe (NVIDIA Corporation)
PRC - C:\WINDOWS\system32\spoolsv.exe (Microsoft Corporation)
PRC - C:\WINDOWS\system32\services.exe (Microsoft Corporation)
PRC - C:\WINDOWS\system32\FsUsbExService.Exe (Teruten)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\WINDOWS\system32\winlogon.exe (Microsoft Corporation)
PRC - C:\WINDOWS\system32\smss.exe (Microsoft Corporation)
PRC - C:\WINDOWS\system32\alg.exe (Microsoft Corporation)
PRC - C:\WINDOWS\system32\rundll32.exe (Microsoft Corporation)
PRC - C:\WINDOWS\system32\ctfmon.exe (Microsoft Corporation)
PRC - C:\WINDOWS\system32\svchost.exe [WUDFSERVICEGROUP] (Microsoft Corporation)
PRC - C:\WINDOWS\system32\svchost.exe [RPCSS] (Microsoft Corporation)
PRC - C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE] (Microsoft Corporation)
PRC - C:\WINDOWS\system32\svchost.exe [NETSVCS] (Microsoft Corporation)
PRC - C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] (Microsoft Corporation)
PRC - C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] (Microsoft Corporation)
PRC - C:\WINDOWS\system32\svchost.exe [IMGSVC] (Microsoft Corporation)
PRC - C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH] (Microsoft Corporation)
PRC - C:\WINDOWS\system32\lsass.exe (Microsoft Corporation)
PRC - C:\WINDOWS\system32\csrss.exe (Microsoft Corporation)
PRC - C:\Program Files\Linksys\Linksys Wireless-G PCI Wireless Network Monitor\WMP54Gv4.exe (Linksys)
PRC - C:\Program Files\Linksys\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe (GEMTEKS)


[color=#E56717]========== Modules (All) ==========[/color]

MOD - C:\Documents and Settings\Arturuz\Pulpit\OTL.exe (OldTimer Tools)
MOD - C:\Program Files\AVAST Software\Avast\snxhk.dll (AVAST Software)
MOD - C:\WINDOWS\system32\wininet.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\dnsapi.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\ntdll.dll (Microsoft Corporation)
MOD - C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\rpcrt4.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\ole32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\wintrust.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\shlwapi.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\msasn1.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\secur32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\kernel32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\advapi32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\gdi32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\netapi32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\setupapi.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\comres.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\userenv.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\crypt32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\user32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\cryptui.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\clbcatq.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\msvcrt.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\MSCTF.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\comdlg32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\mstask.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\uxtheme.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\wbem\framedyn.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\wldap32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\winspool.drv (Microsoft Corporation)
MOD - C:\WINDOWS\system32\imagehlp.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\apphelp.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\ntmarta.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\msscript.ocx (Microsoft Corporation)
MOD - C:\WINDOWS\system32\olepro32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\ws2_32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\srclient.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\ntdsapi.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\samlib.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\mpr.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\psapi.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\ws2help.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\version.dll (Microsoft Corporation)


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - (WMP54Gv4SVC) -- File not found
SRV - (AppMgmt) -- File not found
SRV - (avast! Antivirus) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
SRV - (FLEXnet Licensing Service) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.)
SRV - (DAUpdaterSvc) -- C:\Program Files\Dragon Age\bin_ship\daupdatersvc.service.exe (BioWare)
SRV - (FsUsbExService) -- C:\WINDOWS\system32\FsUsbExService.Exe (Teruten)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - (aswSnx) -- C:\WINDOWS\System32\drivers\aswSnx.sys (AVAST Software)
DRV - (aswSP) -- C:\WINDOWS\System32\drivers\aswSP.sys (AVAST Software)
DRV - (aswTdi) -- C:\WINDOWS\System32\drivers\aswTdi.sys (AVAST Software)
DRV - (aswMon2) -- C:\WINDOWS\System32\drivers\aswmon2.sys (AVAST Software)
DRV - (aswRdr) -- C:\WINDOWS\System32\drivers\aswRdr.sys (AVAST Software)
DRV - (Aavmker4) -- C:\WINDOWS\System32\drivers\aavmker4.sys (AVAST Software)
DRV - (aswFsBlk) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys (AVAST Software)
DRV - (sptd) -- C:\WINDOWS\System32\Drivers\sptd.sys ()
DRV - (s1039bus) Sony Ericsson Device 1039 driver (WDM) -- C:\WINDOWS\system32\drivers\s1039bus.sys (MCCI Corporation)
DRV - (s1039nd5) Sony Ericsson Device 1039 USB Ethernet Emulation (NDIS) -- C:\WINDOWS\system32\drivers\s1039nd5.sys (MCCI Corporation)
DRV - (s1039mdm) -- C:\WINDOWS\system32\drivers\s1039mdm.sys (MCCI Corporation)
DRV - (s1039unic) Sony Ericsson Device 1039 USB Ethernet Emulation (WDM) -- C:\WINDOWS\system32\drivers\s1039unic.sys (MCCI Corporation)
DRV - (s1039mgmt) Sony Ericsson Device 1039 USB WMC Device Management Drivers (WDM) -- C:\WINDOWS\system32\drivers\s1039mgmt.sys (MCCI Corporation)
DRV - (s1039obex) -- C:\WINDOWS\system32\drivers\s1039obex.sys (MCCI Corporation)
DRV - (s1039mdfl) -- C:\WINDOWS\system32\drivers\s1039mdfl.sys (MCCI Corporation)
DRV - (FsUsbExDisk) -- C:\WINDOWS\system32\FsUsbExDisk.Sys ()
DRV - (mv61xx) -- C:\WINDOWS\system32\DRIVERS\mv61xx.sys (Marvell Semiconductor, Inc.)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.)
DRV - (sscdmdm) -- C:\WINDOWS\system32\drivers\sscdmdm.sys (MCCI Corporation)
DRV - (sscdmdfl) -- C:\WINDOWS\system32\drivers\sscdmdfl.sys (MCCI Corporation)
DRV - (sscdbus) SAMSUNG USB Composite Device driver (WDM) -- C:\WINDOWS\system32\drivers\sscdbus.sys (MCCI Corporation)
DRV - (L1e) -- C:\WINDOWS\system32\drivers\l1e51x86.sys (Atheros Communications, Inc.)
DRV - (AsIO) -- C:\WINDOWS\system32\drivers\AsIO.sys ()
DRV - (speedfan) -- C:\WINDOWS\system32\speedfan.sys (Windows (R) 2000 DDK provider)
DRV - (RT61) Linksys Wireless-G PCI Adapter Driver(RT61) -- C:\WINDOWS\system32\drivers\rt61.sys (Ralink Technology Inc.)
DRV - (MTsensor) -- C:\WINDOWS\system32\drivers\ASACPI.sys ()
DRV - (GTNDIS5) -- C:\WINDOWS\system32\GTNDIS5.sys (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (giveio) -- C:\WINDOWS\system32\giveio.sys ()


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.search.defaultenginename: ""
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.pl/"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.6
FF - prefs.js..extensions.enabledItems: {3d7eb24f-2740-49df-8937-200b1cc08f8a}:1.5.14.2
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: engine@conduit.com:3.3.3.2
FF - prefs.js..extensions.enabledItems: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}:3.3.3.2
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24

FF - HKLM\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2011-05-26 13:53:00 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-06-23 14:33:10 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-06-19 22:58:50 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

[2010-01-23 01:04:28 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Arturuz\Dane aplikacji\Mozilla\Extensions
[2011-06-23 14:33:11 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Arturuz\Dane aplikacji\Mozilla\Firefox\Profiles\1lrqvygf.default\extensions
[2010-10-21 16:58:35 | 000,000,000 | ---D | M] (Flashblock) -- C:\Documents and Settings\Arturuz\Dane aplikacji\Mozilla\Firefox\Profiles\1lrqvygf.default\extensions\{3d7eb24f-2740-49df-8937-200b1cc08f8a}
[2011-03-31 20:33:15 | 000,000,000 | ---D | M] (uTorrentBar Community Toolbar) -- C:\Documents and Settings\Arturuz\Dane aplikacji\Mozilla\Firefox\Profiles\1lrqvygf.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}
[2010-06-15 23:11:44 | 000,002,340 | ---- | M] () -- C:\Documents and Settings\Arturuz\Dane aplikacji\Mozilla\Firefox\Profiles\1lrqvygf.default\searchplugins\bigseekpro.xml
[2010-08-02 13:06:19 | 000,001,728 | ---- | M] () -- C:\Documents and Settings\Arturuz\Dane aplikacji\Mozilla\Firefox\Profiles\1lrqvygf.default\searchplugins\google-pl.xml
[2011-06-15 16:00:46 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011-02-16 19:21:25 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010-09-09 15:17:30 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2011-01-04 21:57:23 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2011-02-16 19:22:34 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2011-06-15 16:00:47 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
File not found (No name found) --
() (No name found) -- C:\DOCUMENTS AND SETTINGS\ARTURUZ\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\1LRQVYGF.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
[2011-05-26 13:53:00 | 000,000,000 | ---D | M] (avast! WebRep) -- C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF
[2010-09-09 15:17:19 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2010-04-11 11:14:15 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION
[2011-05-15 16:48:46 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll
[2011-05-04 04:52:23 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2011-05-15 16:48:50 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2011-05-15 16:48:50 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2011-05-15 16:48:50 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2011-05-15 16:48:50 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2011-05-15 16:48:50 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2011-05-15 16:48:50 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2008-04-15 14:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Cpu Level Up help] C:\Program Files\ASUS\AI Suite\CpuLevelUpHelp.exe ()
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [QFan Help] C:\Program Files\ASUS\AI Suite\QFan3\QFanHelp.exe ()
O4 - HKLM..\RunServices: [WUSB54GC] C:\Program Files\ [2011-06-23 14:33:11 | 000,000,000 | R--D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} http://www.mks.com.pl/skaner/SkanerOnline.cab (MksSkanerOnline Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 217.113.224.36 217.113.224.35
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Arturuz\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Arturuz\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010-01-23 00:14:03 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2009-06-23 18:38:40 | 000,000,000 | ---D | M] - D:\autocad2006 -- [ NTFS ]
O33 - MountPoints2\{826f45e8-9b06-11df-a98f-002129e2ceee}\Shell - "" = AutoRun
O33 - MountPoints2\{826f45e8-9b06-11df-a98f-002129e2ceee}\Shell\AutoRun\command - "" = G:\Startme.exe
O33 - MountPoints2\{e8cb935a-44ab-11df-a906-002129e2ceee}\Shell\AutoRun\command - "" = G:\yveqsh93.exe
O33 - MountPoints2\{e8cb935a-44ab-11df-a906-002129e2ceee}\Shell\open\Command - "" = G:\yveqsh93.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

[color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color]

[2011-06-23 14:32:39 | 000,000,000 | ---D | C] -- C:\Program Files\Ad-Remover
[2011-06-23 12:03:12 | 000,000,000 | ---D | C] -- C:\rsit
[2011-06-23 11:55:22 | 000,579,072 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Arturuz\Pulpit\OTL.exe
[2011-06-20 14:24:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arturuz\Pulpit\TibiaAuto Tłumaczenie 9.0 by Zikk
[2011-06-20 14:18:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arturuz\Menu Start\Programy\Tibia Auto
[2011-06-20 14:02:50 | 000,000,000 | ---D | C] -- C:\Program Files\TibiaAuto
[2011-06-20 14:00:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arturuz\Pulpit\python24
[2011-06-20 13:57:33 | 000,000,000 | ---D | C] -- C:\Program Files\Tibia Auto
[2011-06-19 22:58:39 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2011-06-16 14:17:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\SxsCaPendDel
[2011-06-15 16:01:01 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2011-06-15 16:00:44 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2011-06-15 16:00:44 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2011-06-15 16:00:44 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2011-06-10 19:27:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arturuz\Moje dokumenty\The Witcher 2
[2011-06-10 19:25:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Wiedźmin 2
[2011-06-10 19:10:22 | 000,000,000 | ---D | C] -- C:\Program Files\Wiedźmin 2
[2011-06-04 15:00:32 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Arturuz\Recent
[2011-05-28 15:43:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arturuz\Pulpit\Politechnika
[2011-05-28 15:37:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arturuz\Pulpit\Prawo jazdy
[2011-05-27 19:24:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Grupa IMAGE
[2011-05-27 19:24:21 | 000,000,000 | ---D | C] -- C:\Program Files\Grupa IMAGE
[2011-05-26 13:53:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\avast! Free Antivirus
[2011-05-26 13:53:14 | 000,307,928 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011-05-26 13:53:14 | 000,019,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011-05-26 13:53:12 | 000,441,176 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2011-05-26 13:53:12 | 000,049,240 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011-05-26 13:53:12 | 000,025,432 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011-05-26 13:53:11 | 000,102,616 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011-05-26 13:53:11 | 000,096,344 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011-05-26 13:53:10 | 000,030,808 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011-05-26 13:52:59 | 000,040,112 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011-05-26 13:52:58 | 000,199,304 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011-05-26 13:52:51 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2011-05-26 13:52:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\AVAST Software
[2011-05-19 11:25:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arturuz\Menu Start\Programy\Revo Uninstaller
[2011-05-19 10:37:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arturuz\Moje dokumenty\Witcher 2
[2011-05-19 10:37:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arturuz\Ustawienia lokalne\Dane aplikacji\The Witcher 2
[2011-05-08 15:23:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arturuz\Ustawienia lokalne\Dane aplikacji\MediaGet2
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\Documents and Settings\Arturuz\Pulpit\*.tmp files -> C:\Documents and Settings\Arturuz\Pulpit\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 60 Days ==========[/color]

[2011-06-23 14:35:00 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011-06-23 14:32:39 | 000,001,554 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\AD-R.lnk
[2011-06-23 12:02:31 | 000,339,991 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\RSIT.exe
[2011-06-23 11:55:27 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Arturuz\Pulpit\OTL.exe
[2011-06-22 20:21:36 | 005,356,433 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\WWO - Obejrzyj sobie wiadomosci-[www.flv2mp3.com].mp3
[2011-06-22 00:34:13 | 008,066,338 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\fisz - czerwona sukeinka-[www.flv2mp3.com].mp3
[2011-06-22 00:30:23 | 004,840,105 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\WWO-Tak to wyglada-[www.flv2mp3.com].mp3
[2011-06-22 00:26:53 | 004,824,445 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\Sokół - Dentysta (prod. Drumkidz)-[www.flv2mp3.com].mp3
[2011-06-22 00:26:36 | 007,008,581 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\Fu ft Sokół - Mój projekt moje życie-[www.flv2mp3.com].mp3
[2011-06-22 00:22:57 | 006,198,079 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\Los Sicarios, Sokol, Pallacio - Checkeando-[www.flv2mp3.com].mp3
[2011-06-22 00:20:00 | 006,546,024 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\L.U.C. feat Sokol - Pospolite Ruszenie-[www.flv2mp3.com].mp3
[2011-06-22 00:13:51 | 005,801,225 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\dowód odpowiedzialności wychowani na błędach feat pono sokół wwo fu-[www.flv2mp3.com].mp3
[2011-06-21 01:16:56 | 000,061,563 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\tibiaAuto.cfg.Kayano.xml
[2011-06-20 13:57:22 | 002,759,023 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\TibiaAutoSetup_2_12_0.exe
[2011-06-20 13:52:23 | 001,389,011 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\TibiaAuto Tłumaczenie 9.0 by Zikk.rar
[2011-06-19 20:10:37 | 000,013,720 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011-06-16 14:18:13 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011-06-15 23:05:34 | 000,035,704 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\8342,5271,statystyki_2010_11.pdf,35704.pdf
[2011-06-14 21:49:38 | 000,000,789 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\Dragon Age Początek.lnk
[2011-06-14 13:05:36 | 004,786,997 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\Wiedzmin 2 Poradnik.pdf
[2011-06-10 19:25:15 | 000,000,529 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Uruchom Wiedźmin 2.lnk
[2011-06-05 16:46:45 | 008,020,460 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\L.A.O.S. - We All (Blame Remix)-[www.flv2mp3.com].mp3
[2011-06-05 16:45:46 | 006,470,668 | ---- | M] () -- C:\Documents and Settings\Arturuz\Pulpit\L.A.O.S. - Fire On Water-[www.flv2mp3.com].mp3
[2011-06-01 20:41:48 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2011-06-01 20:33:40 | 000,027,648 | ---- | M] () -- C:\Documents and Settings\Arturuz\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-05-30 14:26:43 | 000,138,957 | ---- | M] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\Ticketpro-eTicket-1748685.pdf
[2011-05-28 19:06:40 | 000,021,272 | ---- | M] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\cc_20110528_190638.reg
[2011-05-27 23:02:18 | 000,233,576 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011-05-27 19:59:34 | 000,003,737 | ---- | M] () -- C:\WINDOWS\bestplayer.bbt
[2011-05-27 19:59:34 | 000,002,651 | ---- | M] () -- C:\WINDOWS\bestplayer.ini
[2011-05-27 19:59:34 | 000,000,013 | ---- | M] () -- C:\WINDOWS\bestplayer.bpp
[2011-05-26 13:53:11 | 000,002,644 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011-05-22 16:36:54 | 000,000,825 | ---- | M] () -- C:\Documents and Settings\Arturuz\.recently-used.xbel
[2011-05-21 20:01:41 | 000,000,034 | -H-- | M] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\.picasa.ini
[2011-05-21 20:01:19 | 000,376,192 | ---- | M] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\DSC07454.JPG
[2011-05-21 19:30:26 | 000,138,960 | ---- | M] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\Ticketpro-eTicket-1728175.pdf
[2011-05-18 21:44:12 | 000,067,721 | ---- | M] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\The.Witcher.2.Assassins.Of.Kings.PL.torrent
[2011-05-10 14:10:59 | 000,040,112 | ---- | M] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011-05-10 14:10:55 | 000,199,304 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011-05-10 14:03:54 | 000,441,176 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2011-05-10 14:03:44 | 000,307,928 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011-05-10 14:02:37 | 000,049,240 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011-05-10 14:02:25 | 000,102,616 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011-05-10 14:02:22 | 000,096,344 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011-05-10 13:59:56 | 000,025,432 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011-05-10 13:59:37 | 000,030,808 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011-05-10 13:59:35 | 000,019,544 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011-05-04 04:52:34 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2011-05-04 04:52:33 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2011-05-04 04:52:32 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2011-05-04 04:52:22 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll
[2011-05-04 02:25:49 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\Documents and Settings\Arturuz\Pulpit\*.tmp files -> C:\Documents and Settings\Arturuz\Pulpit\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2011-06-23 14:32:39 | 000,001,554 | ---- | C] () -- C:\Documents and Settings\Arturuz\Pulpit\AD-R.lnk
[2011-06-23 12:02:31 | 000,339,991 | ---- | C] () -- C:\Documents and Settings\Arturuz\Pulpit\RSIT.exe
[2011-06-22 12:45:46 | 005,356,433 | ---- | C] () -- C:\Documents and Settings\Arturuz\Pulpit\WWO - Obejrzyj sobie wiadomosci-[www.flv2mp3.com].mp3
[2011-06-22 00:30:07 | 008,066,338 | ---- | C] () -- C:\Documents and Settings\Arturuz\Pulpit\fisz - czerwona sukeinka-[www.flv2mp3.com].mp3
[2011-06-22 00:29:20 | 004,840,105 | ---- | C] () -- C:\Documents and Settings\Arturuz\Pulpit\WWO-Tak to wyglada-[www.flv2mp3.com].mp3
[2011-06-22 00:25:42 | 004,824,445 | ---- | C] () -- C:\Documents and Settings\Arturuz\Pulpit\Sokół - Dentysta (prod. Drumkidz)-[www.flv2mp3.com].mp3
[2011-06-22 00:24:42 | 007,008,581 | ---- | C] () -- C:\Documents and Settings\Arturuz\Pulpit\Fu ft Sokół - Mój projekt moje życie-[www.flv2mp3.com].mp3
[2011-06-22 00:21:36 | 006,198,079 | ---- | C] () -- C:\Documents and Settings\Arturuz\Pulpit\Los Sicarios, Sokol, Pallacio - Checkeando-[www.flv2mp3.com].mp3
[2011-06-22 00:16:48 | 006,546,024 | ---- | C] () -- C:\Documents and Settings\Arturuz\Pulpit\L.U.C. feat Sokol - Pospolite Ruszenie-[www.flv2mp3.com].mp3
[2011-06-22 00:12:45 | 005,801,225 | ---- | C] () -- C:\Documents and Settings\Arturuz\Pulpit\dowód odpowiedzialności wychowani na błędach feat pono sokół wwo fu-[www.flv2mp3.com].mp3
[2011-06-21 01:16:50 | 000,061,563 | ---- | C] () -- C:\Documents and Settings\Arturuz\Pulpit\tibiaAuto.cfg.Kayano.xml
[2011-06-20 14:03:12 | 001,867,776 | ---- | C] () -- C:\WINDOWS\System32\python24.dll
[2011-06-20 13:56:59 | 002,759,023 | ---- | C] () -- C:\Documents and Settings\Arturuz\Pulpit\TibiaAutoSetup_2_12_0.exe
[2011-06-20 13:52:22 | 001,389,011 | ---- | C] () -- C:\Documents and Settings\Arturuz\Pulpit\TibiaAuto Tłumaczenie 9.0 by Zikk.rar
[2011-06-16 14:15:40 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2011-06-15 23:05:33 | 000,035,704 | ---- | C] () -- C:\Documents and Settings\Arturuz\Pulpit\8342,5271,statystyki_2010_11.pdf,35704.pdf
[2011-06-14 13:04:45 | 004,786,997 | ---- | C] () -- C:\Documents and Settings\Arturuz\Pulpit\Wiedzmin 2 Poradnik.pdf
[2011-06-10 19:25:15 | 000,000,529 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Uruchom Wiedźmin 2.lnk
[2011-06-05 16:44:44 | 008,020,460 | ---- | C] () -- C:\Documents and Settings\Arturuz\Pulpit\L.A.O.S. - We All (Blame Remix)-[www.flv2mp3.com].mp3
[2011-06-05 16:44:08 | 006,470,668 | ---- | C] () -- C:\Documents and Settings\Arturuz\Pulpit\L.A.O.S. - Fire On Water-[www.flv2mp3.com].mp3
[2011-05-30 14:26:27 | 000,138,957 | ---- | C] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\Ticketpro-eTicket-1748685.pdf
[2011-05-28 19:06:39 | 000,021,272 | ---- | C] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\cc_20110528_190638.reg
[2011-05-22 16:36:54 | 000,000,825 | ---- | C] () -- C:\Documents and Settings\Arturuz\.recently-used.xbel
[2011-05-21 20:01:41 | 000,000,034 | -H-- | C] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\.picasa.ini
[2011-05-21 20:01:02 | 000,376,192 | ---- | C] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\DSC07454.JPG
[2011-05-21 19:30:25 | 000,138,960 | ---- | C] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\Ticketpro-eTicket-1728175.pdf
[2011-05-18 21:43:57 | 000,067,721 | ---- | C] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\The.Witcher.2.Assassins.Of.Kings.PL.torrent
[2011-05-15 16:49:03 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox.lnk
[2011-03-08 21:50:14 | 000,252,080 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2011-03-08 21:50:11 | 000,252,080 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2011-03-08 21:50:11 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2011-03-08 21:49:59 | 002,292,678 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin
[2011-02-11 00:43:03 | 000,063,459 | ---- | C] () -- C:\WINDOWS\War3Unin.dat
[2010-09-09 15:02:04 | 000,000,023 | ---- | C] () -- C:\WINDOWS\BlendSettings.ini
[2010-07-19 18:49:14 | 000,133,448 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2010-06-15 23:14:10 | 000,000,135 | ---- | C] () -- C:\WINDOWS\Mp3CutterJoiner.ini
[2010-06-15 23:11:38 | 000,000,005 | ---- | C] () -- C:\WINDOWS\System32\SySMP3CutJoin.dat
[2010-06-15 23:11:27 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2010-03-22 19:28:07 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll
[2010-03-22 19:28:07 | 000,036,608 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys
[2010-03-22 19:28:01 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\Arturuz\Dane aplikacji\$_hpcst$.hpc
[2010-03-05 19:18:31 | 000,000,241 | ---- | C] () -- C:\WINDOWS\RomeTW.ini
[2010-02-25 21:31:21 | 000,002,651 | ---- | C] () -- C:\WINDOWS\bestplayer.ini
[2010-01-24 20:00:53 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2010-01-24 20:00:49 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010-01-24 20:00:49 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010-01-24 20:00:48 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010-01-24 17:47:43 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010-01-23 13:43:41 | 000,178,176 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010-01-23 01:04:23 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2010-01-23 01:00:39 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010-01-23 00:58:04 | 000,233,576 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-01-23 00:49:39 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\GTW32N50.dll
[2010-01-23 00:49:24 | 000,000,920 | ---- | C] () -- C:\WINDOWS\System32\WLAN.INI
[2010-01-23 00:39:38 | 000,024,576 | R--- | C] () -- C:\WINDOWS\System32\AsIO.dll
[2010-01-23 00:39:38 | 000,012,400 | R--- | C] () -- C:\WINDOWS\System32\drivers\AsIO.sys
[2010-01-23 00:39:36 | 000,011,832 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp64.sys
[2010-01-23 00:39:36 | 000,010,216 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp32.sys
[2010-01-23 00:37:57 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2010-01-23 00:22:31 | 000,036,025 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini
[2010-01-23 00:22:04 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2010-01-23 00:21:48 | 000,035,634 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2010-01-23 00:21:47 | 000,010,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2010-01-23 00:19:45 | 000,027,648 | ---- | C] () -- C:\Documents and Settings\Arturuz\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-01-23 00:15:20 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2010-01-23 00:12:14 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2008-10-22 05:29:06 | 000,173,550 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2008-04-15 14:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2008-04-15 14:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2008-04-15 14:00:00 | 000,490,284 | ---- | C] () -- C:\WINDOWS\System32\perfh015.dat
[2008-04-15 14:00:00 | 000,432,356 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2008-04-15 14:00:00 | 000,313,828 | ---- | C] () -- C:\WINDOWS\System32\perfi015.dat
[2008-04-15 14:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2008-04-15 14:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2008-04-15 14:00:00 | 000,083,660 | ---- | C] () -- C:\WINDOWS\System32\perfc015.dat
[2008-04-15 14:00:00 | 000,067,312 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2008-04-15 14:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2008-04-15 14:00:00 | 000,034,990 | ---- | C] () -- C:\WINDOWS\System32\perfd015.dat
[2008-04-15 14:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2008-04-15 14:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2008-04-15 14:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2008-04-15 14:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
[2008-04-15 14:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2007-10-25 18:26:10 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[1996-04-03 21:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys

[color=#E56717]========== LOP Check ==========[/color]

[2010-04-10 16:28:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Autodesk
[2011-05-26 13:52:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVAST Software
[2011-03-14 22:03:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\BioWare
[2010-01-23 13:30:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2011-03-14 21:51:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Electronic Arts
[2010-01-23 12:43:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET
[2010-05-05 13:56:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2010-02-24 16:53:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla
[2011-05-28 18:31:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\KONAMI
[2010-09-09 15:26:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM
[2010-05-03 13:36:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Sports Interactive
[2010-07-20 12:01:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2010-03-24 15:36:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ubisoft
[2011-06-20 16:57:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\AIMP
[2010-04-10 16:28:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\Autodesk
[2010-01-24 13:57:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\DAEMON Tools Lite
[2010-04-03 15:08:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\Gadu-Gadu 10
[2010-09-07 18:52:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\gtk-2.0
[2011-01-16 20:14:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\ipla
[2011-01-13 15:27:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\Leadertech
[2010-12-10 20:52:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\LolClient
[2010-01-23 13:54:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\Nowe Gadu-Gadu
[2010-02-10 21:46:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\OpenFM
[2010-03-22 19:28:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\Samsung
[2010-05-03 13:35:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\Sports Interactive
[2010-01-24 15:08:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\Tibia
[2010-03-24 15:36:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\Ubisoft
[2011-06-04 15:03:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\uTorrent

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 111 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:4F8F308F

< End of report >
[/log]

wirusolog
komentarz
komentarz

Czy wykonałeś skrypt o który Cię prosiłem, ponieważ nie widzę żadnego usuwanie ze strony OTL, w nowym logu dalej wiszą wpisy które dałem do usuwania.
Wykonaj jeszcze raz usuwanie poprzez skrypt i daj nowe logi z OTL + raport z usuwania.

Machej666
komentarz
komentarz

Po wykonaniu skryptu w OTL nie dostaję raportu, po restarcie także.

wirusolog
komentarz
komentarz

Pokaż nowe logi z OTL.

Machej666
komentarz
komentarz

nowe logi:
[log]OTL logfile created on: 2011-06-23 17:34:22 - Run 3
OTL by OldTimer - Version 3.2.24.1 Folder = C:\Documents and Settings\Arturuz\Pulpit\Programy
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,33 Gb Available Physical Memory | 66,46% Memory free
3,85 Gb Paging File | 3,38 Gb Available in Paging File | 87,76% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 232,88 Gb Total Space | 47,57 Gb Free Space | 20,43% Space Free | Partition Type: NTFS
Drive D: | 232,88 Gb Total Space | 26,63 Gb Free Space | 11,44% Space Free | Partition Type: NTFS

Computer Name: KOMP | User Name: Arturuz | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days

[color=#E56717]========== Processes (All) ==========[/color]

PRC - C:\Documents and Settings\Arturuz\Pulpit\Programy\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Mozilla Firefox\plugin-container.exe (Mozilla Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
PRC - C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
PRC - C:\Program Files\Java\jre6\bin\jqs.exe (Sun Microsystems, Inc.)
PRC - C:\Program Files\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
PRC - C:\WINDOWS\system32\nvsvc32.exe (NVIDIA Corporation)
PRC - C:\WINDOWS\system32\spoolsv.exe (Microsoft Corporation)
PRC - C:\Program Files\AIMP2\AIMP2.exe (AIMP DevTeam)
PRC - C:\WINDOWS\system32\services.exe (Microsoft Corporation)
PRC - C:\WINDOWS\system32\FsUsbExService.Exe (Teruten)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\WINDOWS\system32\winlogon.exe (Microsoft Corporation)
PRC - C:\WINDOWS\system32\smss.exe (Microsoft Corporation)
PRC - C:\WINDOWS\system32\alg.exe (Microsoft Corporation)
PRC - C:\WINDOWS\system32\rundll32.exe (Microsoft Corporation)
PRC - C:\WINDOWS\system32\ctfmon.exe (Microsoft Corporation)
PRC - C:\WINDOWS\system32\svchost.exe [WUDFSERVICEGROUP] (Microsoft Corporation)
PRC - C:\WINDOWS\system32\svchost.exe [RPCSS] (Microsoft Corporation)
PRC - C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE] (Microsoft Corporation)
PRC - C:\WINDOWS\system32\svchost.exe [NETSVCS] (Microsoft Corporation)
PRC - C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] (Microsoft Corporation)
PRC - C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] (Microsoft Corporation)
PRC - C:\WINDOWS\system32\svchost.exe [IMGSVC] (Microsoft Corporation)
PRC - C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH] (Microsoft Corporation)
PRC - C:\WINDOWS\system32\lsass.exe (Microsoft Corporation)
PRC - C:\WINDOWS\system32\csrss.exe (Microsoft Corporation)
PRC - C:\Program Files\Linksys\Linksys Wireless-G PCI Wireless Network Monitor\WMP54Gv4.exe (Linksys)
PRC - C:\Program Files\Linksys\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe (GEMTEKS)


[color=#E56717]========== Modules (All) ==========[/color]

MOD - C:\Documents and Settings\Arturuz\Pulpit\Programy\OTL.exe (OldTimer Tools)
MOD - C:\Program Files\AVAST Software\Avast\snxhk.dll (AVAST Software)
MOD - C:\WINDOWS\system32\wininet.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\dnsapi.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\ntdll.dll (Microsoft Corporation)
MOD - C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\rpcrt4.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\ole32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\wintrust.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\shlwapi.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\msasn1.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\secur32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\kernel32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\advapi32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\gdi32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\netapi32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\setupapi.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\comres.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\userenv.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\crypt32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\user32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\cryptui.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\clbcatq.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\msvcrt.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\MSCTF.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\comdlg32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\mstask.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\uxtheme.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\wbem\framedyn.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\wldap32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\winspool.drv (Microsoft Corporation)
MOD - C:\WINDOWS\system32\imagehlp.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\apphelp.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\ntmarta.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\msscript.ocx (Microsoft Corporation)
MOD - C:\WINDOWS\system32\olepro32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\ws2_32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\srclient.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\ntdsapi.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\samlib.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\mpr.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\psapi.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\ws2help.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\version.dll (Microsoft Corporation)


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - (WMP54Gv4SVC) -- File not found
SRV - (AppMgmt) -- File not found
SRV - (avast! Antivirus) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
SRV - (FLEXnet Licensing Service) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.)
SRV - (DAUpdaterSvc) -- C:\Program Files\Dragon Age\bin_ship\daupdatersvc.service.exe (BioWare)
SRV - (FsUsbExService) -- C:\WINDOWS\system32\FsUsbExService.Exe (Teruten)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - (aswSnx) -- C:\WINDOWS\System32\drivers\aswSnx.sys (AVAST Software)
DRV - (aswSP) -- C:\WINDOWS\System32\drivers\aswSP.sys (AVAST Software)
DRV - (aswTdi) -- C:\WINDOWS\System32\drivers\aswTdi.sys (AVAST Software)
DRV - (aswMon2) -- C:\WINDOWS\System32\drivers\aswmon2.sys (AVAST Software)
DRV - (aswRdr) -- C:\WINDOWS\System32\drivers\aswRdr.sys (AVAST Software)
DRV - (Aavmker4) -- C:\WINDOWS\System32\drivers\aavmker4.sys (AVAST Software)
DRV - (aswFsBlk) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys (AVAST Software)
DRV - (sptd) -- C:\WINDOWS\System32\Drivers\sptd.sys ()
DRV - (s1039bus) Sony Ericsson Device 1039 driver (WDM) -- C:\WINDOWS\system32\drivers\s1039bus.sys (MCCI Corporation)
DRV - (s1039nd5) Sony Ericsson Device 1039 USB Ethernet Emulation (NDIS) -- C:\WINDOWS\system32\drivers\s1039nd5.sys (MCCI Corporation)
DRV - (s1039mdm) -- C:\WINDOWS\system32\drivers\s1039mdm.sys (MCCI Corporation)
DRV - (s1039unic) Sony Ericsson Device 1039 USB Ethernet Emulation (WDM) -- C:\WINDOWS\system32\drivers\s1039unic.sys (MCCI Corporation)
DRV - (s1039mgmt) Sony Ericsson Device 1039 USB WMC Device Management Drivers (WDM) -- C:\WINDOWS\system32\drivers\s1039mgmt.sys (MCCI Corporation)
DRV - (s1039obex) -- C:\WINDOWS\system32\drivers\s1039obex.sys (MCCI Corporation)
DRV - (s1039mdfl) -- C:\WINDOWS\system32\drivers\s1039mdfl.sys (MCCI Corporation)
DRV - (FsUsbExDisk) -- C:\WINDOWS\system32\FsUsbExDisk.Sys ()
DRV - (mv61xx) -- C:\WINDOWS\system32\DRIVERS\mv61xx.sys (Marvell Semiconductor, Inc.)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.)
DRV - (sscdmdm) -- C:\WINDOWS\system32\drivers\sscdmdm.sys (MCCI Corporation)
DRV - (sscdmdfl) -- C:\WINDOWS\system32\drivers\sscdmdfl.sys (MCCI Corporation)
DRV - (sscdbus) SAMSUNG USB Composite Device driver (WDM) -- C:\WINDOWS\system32\drivers\sscdbus.sys (MCCI Corporation)
DRV - (L1e) -- C:\WINDOWS\system32\drivers\l1e51x86.sys (Atheros Communications, Inc.)
DRV - (AsIO) -- C:\WINDOWS\system32\drivers\AsIO.sys ()
DRV - (speedfan) -- C:\WINDOWS\system32\speedfan.sys (Windows (R) 2000 DDK provider)
DRV - (RT61) Linksys Wireless-G PCI Adapter Driver(RT61) -- C:\WINDOWS\system32\drivers\rt61.sys (Ralink Technology Inc.)
DRV - (MTsensor) -- C:\WINDOWS\system32\drivers\ASACPI.sys ()
DRV - (GTNDIS5) -- C:\WINDOWS\system32\GTNDIS5.sys (Printing Communications Assoc., Inc. (PCAUSA))
DRV - (giveio) -- C:\WINDOWS\system32\giveio.sys ()


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1078081533-2052111302-682003330-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
IE - HKU\S-1-5-21-1078081533-2052111302-682003330-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.search.defaultenginename: ""
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.pl/"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.6
FF - prefs.js..extensions.enabledItems: {3d7eb24f-2740-49df-8937-200b1cc08f8a}:1.5.14.2
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: engine@conduit.com:3.3.3.2
FF - prefs.js..extensions.enabledItems: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}:3.3.3.2
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24

FF - HKLM\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2011-05-26 13:53:00 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-06-23 14:33:10 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-06-19 22:58:50 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

[2010-01-23 01:04:28 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Arturuz\Dane aplikacji\Mozilla\Extensions
[2011-06-23 14:33:11 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Arturuz\Dane aplikacji\Mozilla\Firefox\Profiles\1lrqvygf.default\extensions
[2010-10-21 16:58:35 | 000,000,000 | ---D | M] (Flashblock) -- C:\Documents and Settings\Arturuz\Dane aplikacji\Mozilla\Firefox\Profiles\1lrqvygf.default\extensions\{3d7eb24f-2740-49df-8937-200b1cc08f8a}
[2011-03-31 20:33:15 | 000,000,000 | ---D | M] (uTorrentBar Community Toolbar) -- C:\Documents and Settings\Arturuz\Dane aplikacji\Mozilla\Firefox\Profiles\1lrqvygf.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}
[2010-06-15 23:11:44 | 000,002,340 | ---- | M] () -- C:\Documents and Settings\Arturuz\Dane aplikacji\Mozilla\Firefox\Profiles\1lrqvygf.default\searchplugins\bigseekpro.xml
[2010-08-02 13:06:19 | 000,001,728 | ---- | M] () -- C:\Documents and Settings\Arturuz\Dane aplikacji\Mozilla\Firefox\Profiles\1lrqvygf.default\searchplugins\google-pl.xml
[2011-06-15 16:00:46 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011-02-16 19:21:25 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010-09-09 15:17:30 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2011-01-04 21:57:23 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2011-02-16 19:22:34 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2011-06-15 16:00:47 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
File not found (No name found) --
() (No name found) -- C:\DOCUMENTS AND SETTINGS\ARTURUZ\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\1LRQVYGF.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
[2011-05-26 13:53:00 | 000,000,000 | ---D | M] (avast! WebRep) -- C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF
[2010-09-09 15:17:19 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2010-04-11 11:14:15 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION
[2011-05-15 16:48:46 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll
[2011-05-04 04:52:23 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2011-05-15 16:48:50 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2011-05-15 16:48:50 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2011-05-15 16:48:50 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2011-05-15 16:48:50 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2011-05-15 16:48:50 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2011-05-15 16:48:50 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2008-04-15 14:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Cpu Level Up help] C:\Program Files\ASUS\AI Suite\CpuLevelUpHelp.exe ()
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [QFan Help] C:\Program Files\ASUS\AI Suite\QFan3\QFanHelp.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1078081533-2052111302-682003330-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} http://www.mks.com.pl/skaner/SkanerOnline.cab (MksSkanerOnline Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 217.113.224.36 217.113.224.35
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Arturuz\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Arturuz\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010-01-23 00:14:03 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2009-06-23 18:38:40 | 000,000,000 | ---D | M] - D:\autocad2006 -- [ NTFS ]
O33 - MountPoints2\{826f45e8-9b06-11df-a98f-002129e2ceee}\Shell - "" = AutoRun
O33 - MountPoints2\{826f45e8-9b06-11df-a98f-002129e2ceee}\Shell\AutoRun\command - "" = G:\Startme.exe
O33 - MountPoints2\{e8cb935a-44ab-11df-a906-002129e2ceee}\Shell\AutoRun\command - "" = G:\yveqsh93.exe
O33 - MountPoints2\{e8cb935a-44ab-11df-a906-002129e2ceee}\Shell\open\Command - "" = G:\yveqsh93.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

[color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color]

[2011-06-23 16:49:26 | 000,000,000 | ---D | C] -- C:\_OTL
[2011-06-23 14:32:39 | 000,000,000 | ---D | C] -- C:\Program Files\Ad-Remover
[2011-06-23 12:03:12 | 000,000,000 | ---D | C] -- C:\rsit
[2011-06-20 14:18:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arturuz\Menu Start\Programy\Tibia Auto
[2011-06-20 14:02:50 | 000,000,000 | ---D | C] -- C:\Program Files\TibiaAuto
[2011-06-20 13:57:33 | 000,000,000 | ---D | C] -- C:\Program Files\Tibia Auto
[2011-06-19 22:58:39 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2011-06-16 14:17:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\SxsCaPendDel
[2011-06-15 16:01:01 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2011-06-15 16:00:44 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2011-06-15 16:00:44 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2011-06-15 16:00:44 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2011-06-10 19:27:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arturuz\Moje dokumenty\The Witcher 2
[2011-06-10 19:25:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Wiedźmin 2
[2011-06-10 19:10:22 | 000,000,000 | ---D | C] -- C:\Program Files\Wiedźmin 2
[2011-06-04 15:00:32 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Arturuz\Recent
[2011-05-28 15:43:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arturuz\Pulpit\Politechnika
[2011-05-28 15:37:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arturuz\Pulpit\Prawo jazdy
[2011-05-27 19:24:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Grupa IMAGE
[2011-05-27 19:24:21 | 000,000,000 | ---D | C] -- C:\Program Files\Grupa IMAGE
[2011-05-26 13:53:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\avast! Free Antivirus
[2011-05-26 13:53:14 | 000,307,928 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011-05-26 13:53:14 | 000,019,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011-05-26 13:53:12 | 000,441,176 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2011-05-26 13:53:12 | 000,049,240 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011-05-26 13:53:12 | 000,025,432 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011-05-26 13:53:11 | 000,102,616 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011-05-26 13:53:11 | 000,096,344 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011-05-26 13:53:10 | 000,030,808 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011-05-26 13:52:59 | 000,040,112 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011-05-26 13:52:58 | 000,199,304 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011-05-26 13:52:51 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2011-05-26 13:52:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\AVAST Software
[2011-05-19 11:25:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arturuz\Menu Start\Programy\Revo Uninstaller
[2011-05-19 10:37:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arturuz\Moje dokumenty\Witcher 2
[2011-05-19 10:37:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arturuz\Ustawienia lokalne\Dane aplikacji\The Witcher 2
[2011-05-08 15:23:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Arturuz\Ustawienia lokalne\Dane aplikacji\MediaGet2
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 60 Days ==========[/color]

[2011-06-23 17:24:49 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011-06-19 20:10:37 | 000,013,720 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011-06-16 14:18:13 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011-06-01 20:41:48 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2011-06-01 20:33:40 | 000,027,648 | ---- | M] () -- C:\Documents and Settings\Arturuz\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-05-30 14:26:43 | 000,138,957 | ---- | M] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\Ticketpro-eTicket-1748685.pdf
[2011-05-28 19:06:40 | 000,021,272 | ---- | M] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\cc_20110528_190638.reg
[2011-05-27 23:02:18 | 000,233,576 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011-05-27 19:59:34 | 000,003,737 | ---- | M] () -- C:\WINDOWS\bestplayer.bbt
[2011-05-27 19:59:34 | 000,002,651 | ---- | M] () -- C:\WINDOWS\bestplayer.ini
[2011-05-27 19:59:34 | 000,000,013 | ---- | M] () -- C:\WINDOWS\bestplayer.bpp
[2011-05-26 13:53:11 | 000,002,644 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011-05-22 16:36:54 | 000,000,825 | ---- | M] () -- C:\Documents and Settings\Arturuz\.recently-used.xbel
[2011-05-21 20:01:41 | 000,000,034 | -H-- | M] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\.picasa.ini
[2011-05-21 20:01:19 | 000,376,192 | ---- | M] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\DSC07454.JPG
[2011-05-21 19:30:26 | 000,138,960 | ---- | M] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\Ticketpro-eTicket-1728175.pdf
[2011-05-18 21:44:12 | 000,067,721 | ---- | M] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\The.Witcher.2.Assassins.Of.Kings.PL.torrent
[2011-05-10 14:10:59 | 000,040,112 | ---- | M] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011-05-10 14:10:55 | 000,199,304 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011-05-10 14:03:54 | 000,441,176 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2011-05-10 14:03:44 | 000,307,928 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011-05-10 14:02:37 | 000,049,240 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011-05-10 14:02:25 | 000,102,616 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011-05-10 14:02:22 | 000,096,344 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011-05-10 13:59:56 | 000,025,432 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011-05-10 13:59:37 | 000,030,808 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011-05-10 13:59:35 | 000,019,544 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011-05-04 04:52:34 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2011-05-04 04:52:33 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2011-05-04 04:52:32 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2011-05-04 04:52:22 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll
[2011-05-04 02:25:49 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2011-06-20 14:03:12 | 001,867,776 | ---- | C] () -- C:\WINDOWS\System32\python24.dll
[2011-06-16 14:15:40 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2011-05-30 14:26:27 | 000,138,957 | ---- | C] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\Ticketpro-eTicket-1748685.pdf
[2011-05-28 19:06:39 | 000,021,272 | ---- | C] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\cc_20110528_190638.reg
[2011-05-22 16:36:54 | 000,000,825 | ---- | C] () -- C:\Documents and Settings\Arturuz\.recently-used.xbel
[2011-05-21 20:01:41 | 000,000,034 | -H-- | C] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\.picasa.ini
[2011-05-21 20:01:02 | 000,376,192 | ---- | C] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\DSC07454.JPG
[2011-05-21 19:30:25 | 000,138,960 | ---- | C] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\Ticketpro-eTicket-1728175.pdf
[2011-05-18 21:43:57 | 000,067,721 | ---- | C] () -- C:\Documents and Settings\Arturuz\Moje dokumenty\The.Witcher.2.Assassins.Of.Kings.PL.torrent
[2011-05-15 16:49:03 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox.lnk
[2011-03-08 21:50:14 | 000,252,080 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2011-03-08 21:50:11 | 000,252,080 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2011-03-08 21:50:11 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2011-03-08 21:49:59 | 002,292,678 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin
[2011-02-11 00:43:03 | 000,063,459 | ---- | C] () -- C:\WINDOWS\War3Unin.dat
[2010-09-09 15:02:04 | 000,000,023 | ---- | C] () -- C:\WINDOWS\BlendSettings.ini
[2010-07-19 18:49:14 | 000,133,448 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2010-06-15 23:14:10 | 000,000,135 | ---- | C] () -- C:\WINDOWS\Mp3CutterJoiner.ini
[2010-06-15 23:11:38 | 000,000,005 | ---- | C] () -- C:\WINDOWS\System32\SySMP3CutJoin.dat
[2010-06-15 23:11:27 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2010-03-22 19:28:07 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll
[2010-03-22 19:28:07 | 000,036,608 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys
[2010-03-22 19:28:01 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\Arturuz\Dane aplikacji\$_hpcst$.hpc
[2010-03-05 19:18:31 | 000,000,241 | ---- | C] () -- C:\WINDOWS\RomeTW.ini
[2010-02-25 21:31:21 | 000,002,651 | ---- | C] () -- C:\WINDOWS\bestplayer.ini
[2010-01-24 20:00:53 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2010-01-24 20:00:49 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010-01-24 20:00:49 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010-01-24 20:00:48 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010-01-24 17:47:43 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010-01-23 13:43:41 | 000,178,176 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010-01-23 01:04:23 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2010-01-23 01:00:39 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010-01-23 00:58:04 | 000,233,576 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-01-23 00:49:39 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\GTW32N50.dll
[2010-01-23 00:49:24 | 000,000,920 | ---- | C] () -- C:\WINDOWS\System32\WLAN.INI
[2010-01-23 00:39:38 | 000,024,576 | R--- | C] () -- C:\WINDOWS\System32\AsIO.dll
[2010-01-23 00:39:38 | 000,012,400 | R--- | C] () -- C:\WINDOWS\System32\drivers\AsIO.sys
[2010-01-23 00:39:36 | 000,011,832 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp64.sys
[2010-01-23 00:39:36 | 000,010,216 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp32.sys
[2010-01-23 00:37:57 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2010-01-23 00:22:31 | 000,036,025 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini
[2010-01-23 00:22:04 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2010-01-23 00:21:48 | 000,035,634 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2010-01-23 00:21:47 | 000,010,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2010-01-23 00:19:45 | 000,027,648 | ---- | C] () -- C:\Documents and Settings\Arturuz\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-01-23 00:15:20 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2010-01-23 00:12:14 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2008-10-22 05:29:06 | 000,173,550 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2008-04-15 14:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2008-04-15 14:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2008-04-15 14:00:00 | 000,490,284 | ---- | C] () -- C:\WINDOWS\System32\perfh015.dat
[2008-04-15 14:00:00 | 000,432,356 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2008-04-15 14:00:00 | 000,313,828 | ---- | C] () -- C:\WINDOWS\System32\perfi015.dat
[2008-04-15 14:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2008-04-15 14:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2008-04-15 14:00:00 | 000,083,660 | ---- | C] () -- C:\WINDOWS\System32\perfc015.dat
[2008-04-15 14:00:00 | 000,067,312 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2008-04-15 14:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2008-04-15 14:00:00 | 000,034,990 | ---- | C] () -- C:\WINDOWS\System32\perfd015.dat
[2008-04-15 14:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2008-04-15 14:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2008-04-15 14:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2008-04-15 14:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
[2008-04-15 14:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2007-10-25 18:26:10 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[1996-04-03 21:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys

[color=#E56717]========== LOP Check ==========[/color]

[2010-04-10 16:28:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Autodesk
[2011-05-26 13:52:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVAST Software
[2011-03-14 22:03:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\BioWare
[2010-01-23 13:30:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2011-03-14 21:51:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Electronic Arts
[2010-01-23 12:43:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET
[2010-05-05 13:56:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2010-02-24 16:53:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla
[2011-05-28 18:31:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\KONAMI
[2010-09-09 15:26:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM
[2010-05-03 13:36:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Sports Interactive
[2010-07-20 12:01:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2010-03-24 15:36:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ubisoft
[2011-06-23 17:32:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\AIMP
[2010-04-10 16:28:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\Autodesk
[2010-01-24 13:57:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\DAEMON Tools Lite
[2010-04-03 15:08:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\Gadu-Gadu 10
[2010-09-07 18:52:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\gtk-2.0
[2011-01-16 20:14:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\ipla
[2011-01-13 15:27:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\Leadertech
[2010-12-10 20:52:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\LolClient
[2010-01-23 13:54:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\Nowe Gadu-Gadu
[2010-02-10 21:46:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\OpenFM
[2010-03-22 19:28:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\Samsung
[2010-05-03 13:35:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\Sports Interactive
[2010-01-24 15:08:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\Tibia
[2010-03-24 15:36:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\Ubisoft
[2011-06-04 15:03:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Arturuz\Dane aplikacji\uTorrent

[color=#E56717]========== Purity Check ==========[/color]



< End of report >
[/log]
[log]OTL Extras logfile created on: 2011-06-23 17:34:22 - Run 3
OTL by OldTimer - Version 3.2.24.1 Folder = C:\Documents and Settings\Arturuz\Pulpit\Programy
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,33 Gb Available Physical Memory | 66,46% Memory free
3,85 Gb Paging File | 3,38 Gb Available in Paging File | 87,76% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 232,88 Gb Total Space | 47,57 Gb Free Space | 20,43% Space Free | Partition Type: NTFS
Drive D: | 232,88 Gb Total Space | 26,63 Gb Free Space | 11,44% Space Free | Partition Type: NTFS

Computer Name: KOMP | User Name: Arturuz | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe shdocvw.dll,OpenURL %l

[HKEY_USERS\S-1-5-21-1078081533-2052111302-682003330-1004\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

[color=#E56717]========== Shell Spawning ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe shdocvw.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[color=#E56717]========== Security Center Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 1
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[color=#E56717]========== System Restore Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"8380:TCP" = 8380:TCP:*:Enabled:League of Legends Launcher
"8380:UDP" = 8380:UDP:*:Enabled:League of Legends Launcher
"8381:TCP" = 8381:TCP:*:Enabled:League of Legends Launcher
"8381:UDP" = 8381:UDP:*:Enabled:League of Legends Launcher
"8382:TCP" = 8382:TCP:*:Enabled:League of Legends Launcher
"8382:UDP" = 8382:UDP:*:Enabled:League of Legends Launcher
"8383:TCP" = 8383:TCP:*:Enabled:League of Legends Launcher
"8383:UDP" = 8383:UDP:*:Enabled:League of Legends Launcher
"8393:TCP" = 8393:TCP:*:Enabled:League of Legends Lobby
"8393:UDP" = 8393:UDP:*:Enabled:League of Legends Lobby
"8390:TCP" = 8390:TCP:*:Enabled:League of Legends Game Client
"8390:UDP" = 8390:UDP:*:Enabled:League of Legends Game Client
"6896:TCP" = 6896:TCP:*:Enabled:League of Legends Launcher
"6896:UDP" = 6896:UDP:*:Enabled:League of Legends Launcher

[color=#E56717]========== Authorized Applications List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\Program Files\Nowe Gadu-Gadu\gg.exe" = C:\Program Files\Nowe Gadu-Gadu\gg.exe:*:Enabled:Nowe Gadu-Gadu
"C:\Program Files\Gadu-Gadu 10\gg.exe" = C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10 -- (GG Network S.A.)
"C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe" = C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe:*:Enabled:KTF MUSIC AoD Server -- (PeeringPortal)
"C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe" = C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe:*:Enabled:KTF MUSIC VoD Server -- (PeeringPortal)
"C:\Program Files\Valve\Steam\SteamApps\macheja\opposing force\hl.exe" = C:\Program Files\Valve\Steam\SteamApps\macheja\opposing force\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
"C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Mozilla Firefox -- (Mozilla Corporation)
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" = C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe:*:Enabled:ESET NOD32 Antivirus
"C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe" = C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe:*:Enabled:Ubisoft Game Launcher -- (Ubisoft)
"C:\Program Files\Strategy First\Disciples II - Powrót Galleana\Discipl2.exe" = C:\Program Files\Strategy First\Disciples II - Powrót Galleana\Discipl2.exe:*:Enabled:Disciples II v2.01 -- (Strategy First)
"C:\Program Files\Valve\Steam\SteamApps\macheja\deathmatch classic\hl.exe" = C:\Program Files\Valve\Steam\SteamApps\macheja\deathmatch classic\hl.exe:*:Enabled:Deathmatch Classic -- (Valve)
"C:\Program Files\Heroes of Might and Magic III - Zlota Edycja\Heroes3.exe" = C:\Program Files\Heroes of Might and Magic III - Zlota Edycja\Heroes3.exe:*:Enabled:Heroes of Might and Magic® III (CDP) -- (The 3DO Company)
"C:\WINDOWS\system32\dplaysvr.exe" = C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper -- (Microsoft Corporation)
"C:\Program Files\SopCast\adv\SopAdver.exe" = C:\Program Files\SopCast\adv\SopAdver.exe:*:Enabled:SopCast Adver -- (www.sopcast.com)
"C:\Riot Games\League of Legends\air\LolClient.exe" = C:\Riot Games\League of Legends\air\LolClient.exe:*:Enabled:League of Legends Lobby
"C:\Riot Games\League of Legends\game\League of Legends.exe" = C:\Riot Games\League of Legends\game\League of Legends.exe:*:Enabled:League of Legends Game Client
"C:\Program Files\KONAMI\Pro Evolution Soccer 2011\pes2011.exe" = C:\Program Files\KONAMI\Pro Evolution Soccer 2011\pes2011.exe:*:Enabled:Pro Evolution Soccer 2011 -- (Konami Digital Entertainment Co., Ltd.)
"C:\Program Files\Sports Interactive\Football Manager 2011\fm.exe" = C:\Program Files\Sports Interactive\Football Manager 2011\fm.exe:*:Enabled:Football Manager 2011 -- (Sports Interactive)
"C:\Program Files\Warcraft III\Warcraft III.exe" = C:\Program Files\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III -- (Blizzard Entertainment)
"C:\Program Files\Dragon Age\bin_ship\daorigins.exe" = C:\Program Files\Dragon Age\bin_ship\daorigins.exe:*:Enabled:Dragon Age Początek Gra -- (BioWare)
"C:\Program Files\Dragon Age\DAOriginsLauncher.exe" = C:\Program Files\Dragon Age\DAOriginsLauncher.exe:*:Enabled:Dragon Age Początek Program startowy -- (BioWare)
"C:\Program Files\Dragon Age\bin_ship\daupdatersvc.service.exe" = C:\Program Files\Dragon Age\bin_ship\daupdatersvc.service.exe:*:Enabled:Dragon Age Początek Aktualizator -- (BioWare)
"C:\Program Files\Dragon Age\bin_ship\EACoreServer.exe" = C:\Program Files\Dragon Age\bin_ship\EACoreServer.exe:*:Enabled:EA Core Server Application -- (Electronic Arts)
"C:\Program Files\Valve\Steam\SteamApps\macheja\half-life\hl.exe" = C:\Program Files\Valve\Steam\SteamApps\macheja\half-life\hl.exe:*:Enabled:Half-Life -- (Valve)
"C:\Riot Games\League of Legends\lol.launcher.exe" = C:\Riot Games\League of Legends\lol.launcher.exe:*:Enabled:League of Legends Launcher -- ()
"C:\Documents and Settings\Arturuz\Ustawienia lokalne\Dane aplikacji\MediaGet2\mediaget.exe" = C:\Documents and Settings\Arturuz\Ustawienia lokalne\Dane aplikacji\MediaGet2\mediaget.exe:*:Enabled:MediaGet torrent client
"C:\Program Files\Wiedźmin 2\bin\witcher2.exe" = C:\Program Files\Wiedźmin 2\bin\witcher2.exe:*:Enabled:The Witcher 2: Assasins of Kings -- ()
"C:\Program Files\Valve\Steam\SteamApps\macheja\counter-strike\hl.exe" = C:\Program Files\Valve\Steam\SteamApps\macheja\counter-strike\hl.exe:*:Enabled:Counter-Strike -- (Valve)


[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{01D8CA8B-3F5F-4590-A0F3-36373BE97866}_is1" = Testy B
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam(TM)
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{217EC467-61C4-1939-3BBF-4FA4CAEA42FF}" = EA Shared Game Component: Activation
"{26A24AE4-039D-4CA4-87B4-2F83216020F0}" = Java(TM) 6 Update 20
"{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 26
"{28999392-5871-4A39-863A-D2A6EA3260AF}" = League of Legends
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR8121/AR8113 Gigabit/Fast Ethernet Driver
"{310BC5E2-31AF-49BB-904D-E71EB93645DC}" = AI Suite
"{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{35CB6715-41F8-4F99-8881-6FC75BF054B0}" = Oblivion
"{3B5C7583-F7DA-481E-9A0D-AFFCC972A139}" = Disciples II - Powrót Galleana
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4B35F00C-E63D-40DC-9839-DF15A33EAC46}" = Grand Theft Auto Vice City
"{4DDC3BED-CC68-44AA-B435-D727B620CA5B}" = Linksys Wireless-G PCI Adapter
"{56B83336-FBC1-4C46-8613-90A9E3B440D6}" = Six Engine
"{5783F2D7-8001-0415-0002-0060B0CE6BBA}" = AutoCAD 2010 - Polski
"{5783F2D7-8001-0415-1002-0060B0CE6BBA}" = Pakiet językowy programu AutoCAD 2010 - polski
"{59E4543A-D49D-4489-B445-473D763C79AF}" = Microsoft Games for Windows - LIVE Redistributable
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-0010-0415-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Polish) 12
"{90120000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2007
"{90120000-0016-0415-0000-0000000FF1CE}_HOMESTUDENTR_{79EB535E-76E4-4356-8146-A24EE55AB69D}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2007
"{90120000-0018-0415-0000-0000000FF1CE}_HOMESTUDENTR_{79EB535E-76E4-4356-8146-A24EE55AB69D}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2007
"{90120000-001B-0415-0000-0000000FF1CE}_HOMESTUDENTR_{79EB535E-76E4-4356-8146-A24EE55AB69D}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2007
"{90120000-001F-0415-0000-0000000FF1CE}_HOMESTUDENTR_{E9EA2604-8AC9-47D2-8F4B-6BF60787A357}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2007
"{90120000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2007
"{90120000-006E-0415-0000-0000000FF1CE}_HOMESTUDENTR_{D45F91DE-F0FC-4D5F-9A0C-FDE5B251AAC6}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2007
"{90120000-00A1-0415-0000-0000000FF1CE}_HOMESTUDENTR_{79EB535E-76E4-4356-8146-A24EE55AB69D}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{92606477-9366-4D3B-8AE3-6BE4B29727AB}" = League of Legends
"{94B4E2D8-A184-415C-BF9E-F699D76466BD}" = Heroes of Might and Magic IV - Złota Edycja
"{9773450C-E2F3-46C3-9464-1D7EDE5EFB63}" = Pro Evolution Soccer 2011
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A642BB6B-CA1D-4142-8DD4-318C3F3DC834}" = Rome - Total War(TM)
"{AC76BA86-7AD7-1045-7B44-A94000000001}" = Adobe Reader 9.4.5 - Polish
"{AEC81925-9C76-4707-84A9-40696C613ED3}" = Dragon Age: Początek
"{AF7E85DC-317C-47F5-810E-B82EE093A612}" = Samsung New PC Studio USB Driver Installer
"{B2BE514B-F1B3-43AB-84DD-3377ADBA1A7F}" = GIGABYTE Gamer HUD
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panel sterowania NVIDIA 266.58
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Sterownik graficzny 266.58
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 135.50
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Oprogramowanie systemu PhysX 9.10.0514
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{DF5A03CC-D5AA-43D8-B948-D9903F2AF94A}" = Counter-Strike(TM)
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony Ericsson PC Companion 1.60.13
"{F0A209B7-7F85-4BDD-8F1F-B98EEAD9E04B}" = Wiedźmin 2
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"{FC900219-2DB9-4274-B2CF-F9ABA057C7BC}_is1" = Modern Warfare 2 Spolszczenie by O22y
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"6194C28A8F62DD817EA1B918E6E46E806A21B452" = Pakiet sterowników systemu Windows - MobileTop (sshpmdm) Modem (02/23/2007 2.5.0.0)
"65B6FE5418CE28F4D72543FB2D964C3CEC83F161" = Pakiet sterowników systemu Windows - MobileTop (sshpusb) USB (02/23/2007 2.5.0.0)
"7-Zip" = 7-Zip 9.20
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Ad-Remover" = Ad-Remover par C_XX
"AIMP2" = AIMP2
"AutoCAD 2010 - Polski" = AutoCAD 2010 - Polski
"avast" = avast! Free Antivirus
"Call of Duty Modern Warfare 2_is1" = Call of Duty Modern Warfare 2
"CCleaner" = CCleaner
"com.ea.Activation.919CACB699904AC5D41B606703500DD39747C02D.1" = EA Shared Game Component: Activation
"Digital Image Recovery_is1" = Digital Image Recovery 1.47
"EA Installer.-49286475" = EA Installer
"Football Manager 2011" = Football Manager 2011
"Gadu-Gadu 10" = Gadu-Gadu 10
"Heroes of Might and Magic III - Złota Edycja_is1" = Heroes of Might and Magic III - Złota Edycja
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"InstallShield_{A642BB6B-CA1D-4142-8DD4-318C3F3DC834}" = Rome - Total War(TM)
"InstallShield_{AF7E85DC-317C-47F5-810E-B82EE093A612}" = Samsung New PC Studio USB Driver Installer
"InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"ipla" = ipla 2.1.0
"jv16 PowerTools_is1" = jv16 PowerTools 1.3
"KLiteCodecPack_is1" = K-Lite Codec Pack 5.6.1 (Corporate)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox 4.0.1 (x86 pl)" = Mozilla Firefox 4.0.1 (x86 pl)
"MP3 Cutter Joiner_is1" = MP3 Cutter Joiner 5.00
"NapiProjekt_is1" = NapiProjekt 1.0.6.9
"Nero - Burning Rom!UninstallKey" = Nero 6 Ultra Edition
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager
"Picasa 3" = Picasa 3
"RealAlt_is1" = Real Alternative 2.0.1
"Revo Uninstaller" = Revo Uninstaller 1.92
"SAMSUNG Mobile Composite Device" = SAMSUNG Mobile Composite Device Software
"SAMSUNG Mobile Modem" = SAMSUNG Mobile Modem Driver Set
"Samsung Mobile phone USB driver" = Samsung Mobile phone USB driver Software
"SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software
"SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software
"SkanerOnline" = Skaner on-line mks_vir
"Skrzyżowania_is1" = Skrzyżowania 1.0.0.14
"SopCast" = SopCast 3.0.3
"SpeedFan" = SpeedFan (remove only)
"Steam App 130" = Half-Life: Blue Shift
"Steam App 40" = Deathmatch Classic
"Steam App 50" = Half-Life: Opposing Force
"Tibia Auto" = NSIS Example2
"Tibia_is1" = Tibia
"uTorrent" = µTorrent
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"WinGimp-2.0_is1" = GIMP 2.6.10
"WinRAR archiver" = Archiwizator WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"Znaki Drogowe_is1" = Znaki Drogowe

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-21-1078081533-2052111302-682003330-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"I-Doser v4" = I-Doser v4
"Warcraft III" = Warcraft III: All Products

[color=#E56717]========== Last 10 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2011-05-19 10:27:05 | Computer Name = KOMP | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca witcher2.exe, wersja 1.0.6041.43456, moduł
zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2011-05-19 10:29:06 | Computer Name = KOMP | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca witcher2.exe, wersja 1.0.6041.43456, moduł
zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2011-05-19 10:29:07 | Computer Name = KOMP | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca Launcher.exe, wersja 0.9.0.754, moduł zawieszenia
hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2011-05-24 03:45:02 | Computer Name = KOMP | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca firefox.exe, wersja 2.0.1.4120, moduł zawieszenia
hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2011-05-29 11:39:54 | Computer Name = KOMP | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd prawo jazdy.exe, wersja 0.0.0.0, moduł powodujący
błąd , wersja 0.0.0.0, adres błędu 0x00000000.

Error - 2011-05-29 17:49:57 | Computer Name = KOMP | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca LolClient.exe, wersja 2.0.2.12610, moduł zawieszenia
hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2011-05-30 12:16:59 | Computer Name = KOMP | Source = EventSystem | ID = 4612
Description = Podczas wewnętrznego przetwarzania w wierszu 44 z d:\comxp_sp3\com\com1x\src\events\tier1\eventsystemobj.cpp,
zabrakło pamięci dla systemu zdarzeń modelu COM

Error - 2011-06-19 17:08:54 | Computer Name = KOMP | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca firefox.exe, wersja 2.0.1.4120, moduł zawieszenia
hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2011-06-21 12:19:13 | Computer Name = KOMP | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca firefox.exe, wersja 2.0.1.4120, moduł zawieszenia
hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2011-06-23 06:03:40 | Computer Name = KOMP | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca RSIT.exe, wersja 3.3.2.0, moduł zawieszenia
hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

[ OSession Events ]
Error - 2010-04-21 15:53:40 | Computer Name = KOMP | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6504.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 116
seconds with 0 seconds of active time. This session ended with a crash.

Error - 2010-05-12 13:40:52 | Computer Name = KOMP | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 3, Application Name: Microsoft Office PowerPoint, Application
Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session
lasted 5527 seconds with 2040 seconds of active time. This session ended with a
crash.

[ System Events ]
Error - 2011-06-23 06:04:29 | Computer Name = KOMP | Source = Service Control Manager | ID = 7011
Description = Limit czasu (30000 milisekund) podczas oczekiwania na odpowiedź transakcji
z usługi WMP54Gv4SVC.

Error - 2011-06-23 08:23:51 | Computer Name = KOMP | Source = Service Control Manager | ID = 7011
Description = Limit czasu (30000 milisekund) podczas oczekiwania na odpowiedź transakcji
z usługi WMP54Gv4SVC.

Error - 2011-06-23 08:24:21 | Computer Name = KOMP | Source = Service Control Manager | ID = 7011
Description = Limit czasu (30000 milisekund) podczas oczekiwania na odpowiedź transakcji
z usługi .

Error - 2011-06-23 10:49:26 | Computer Name = KOMP | Source = Service Control Manager | ID = 7034
Description = Usługa NVIDIA Display Driver Service niespodziewanie zakończyła pracę.
Wystąpiło to razy: 1.

Error - 2011-06-23 10:49:27 | Computer Name = KOMP | Source = Service Control Manager | ID = 7034
Description = Usługa Windows Image Acquisition (WIA) niespodziewanie zakończyła
pracę. Wystąpiło to razy: 1.

Error - 2011-06-23 10:49:27 | Computer Name = KOMP | Source = Service Control Manager | ID = 7031
Description = Usługa WMP54Gv4SVC niespodziewanie zakończyła pracę. Wystąpiło to
razy: 1. W przeciągu 0 milisekund zostanie podjęta następująca czynność korekcyjna:
Uruchom usługę ponownie.

Error - 2011-06-23 10:49:35 | Computer Name = KOMP | Source = Service Control Manager | ID = 7034
Description = Usługa Java Quick Starter niespodziewanie zakończyła pracę. Wystąpiło
to razy: 1.

Error - 2011-06-23 10:49:35 | Computer Name = KOMP | Source = Service Control Manager | ID = 7034
Description = Usługa FsUsbExService niespodziewanie zakończyła pracę. Wystąpiło
to razy: 1.

Error - 2011-06-23 10:55:05 | Computer Name = KOMP | Source = Service Control Manager | ID = 7011
Description = Limit czasu (30000 milisekund) podczas oczekiwania na odpowiedź transakcji
z usługi WMP54Gv4SVC.

Error - 2011-06-23 10:55:35 | Computer Name = KOMP | Source = Service Control Manager | ID = 7011
Description = Limit czasu (30000 milisekund) podczas oczekiwania na odpowiedź transakcji
z usługi .


< End of report >
[/log]

wirusolog
komentarz
komentarz

Skrypt wogóle się nie wykonuje.
Próbójmy inaczej (możliwe, że komenda [emptytemp] powoduje problemy / nawet BSODy).

[b]1.[/b] Uruchom OTL i w oknie [b]Własne opcje skanowania/Skrypt[/b] wklej następujący tekst:

[code]:OTL
O33 - MountPoints2\{826f45e8-9b06-11df-a98f-002129e2ceee}\Shell - "" = AutoRun
O33 - MountPoints2\{826f45e8-9b06-11df-a98f-002129e2ceee}\Shell\AutoRun\command - "" = G:\Startme.exe
O33 - MountPoints2\{e8cb935a-44ab-11df-a906-002129e2ceee}\Shell\AutoRun\command - "" = G:\yveqsh93.exe
O33 - MountPoints2\{e8cb935a-44ab-11df-a906-002129e2ceee}\Shell\open\Command - "" = G:\yveqsh93.exe
[2011-03-31 20:33:15 | 000,000,000 | ---D | M] (uTorrentBar Community Toolbar) -- C:\Documents and Settings\Arturuz\Dane aplikacji\Mozilla\Firefox\Profiles\1lrqvygf.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}
[2010-06-15 23:11:44 | 000,002,340 | ---- | M] () -- C:\Documents and Settings\Arturuz\Dane aplikacji\Mozilla\Firefox\Profiles\1lrqvygf.default\searchplugins\bigseekpro.xml
FF - prefs.js..extensions.enabledItems: engine@conduit.com:3.3.3.2
FF - prefs.js..extensions.enabledItems: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}:3.3.3.2
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.6
FF - prefs.js..extensions.enabledItems: {3d7eb24f-2740-49df-8937-200b1cc08f8a}:1.5.14.2
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
[/code]
Kliknij w [b]Wykonaj Skrypt[/b].

[b]2.[/b] Bezplikową usługę ([b]WMP54Gv4SVC[/b]) zniszczymy metodami systemowymi:
Start>>>Uruchom>>>wklep polecenie [b]cmd[/b]>>>wklep tam komende:
[b]SC DELETE WMP54Gv4SVC[/b]
Wciśnij klawisz ENTER, powinna pojawić się notka, że usługa została poprawnie zniszczona.

[b]3.[/b] Następnie uruchamiasz OTL ponownie, tym razem wywołujesz opcję [b]Skanuj[/b]. Pokazujesz nowe logi z OTL + raport z usuwania.

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.