bnkkk utworzono 26 stycznia 2013 utworzono 26 stycznia 2013 Witam. Moj komputer od kilku dni bardzo wolno chodzi, skanowalem avastem bylo duzo zagrozen dalem je do kwarantanny ale to nic nie pomoglo. Komputer ledwo chodzi za kazdym otworzeniem sie zacina nie wiem co sie dzieje...
Youki komentarz 26 stycznia 2013 komentarz 26 stycznia 2013 Podaj pelny config wraz z marka i moca zasilacz, sciagnij program hwmonitor i sprawdz temperatury pdozespolow pod obciazeniem, kiedy ostatni raz czysciles PC, zmieniales paste termoprzewodzaca na procesorze ? Nastepnie proponuje udac sie do dzialu Bezpieczenstwo , zapoznac sie z przyklejonymi tematami i wkleic odpowiednie logi z OTL i RSiT. Pozdrawiam :)
bnkkk komentarz 26 stycznia 2013 Autor komentarz 26 stycznia 2013 Tzn ja sie na tym nie znam dokladnie nie wiem jak to mam sprawdzic
Youki komentarz 26 stycznia 2013 komentarz 26 stycznia 2013 Odnosnie sprzetu to tutaj jest wszystko dokladnie opisane, zasilacz to musisz odkrecic bok obudowy i przepisac marke z tabliczki znamionowej na zasilaczu, a temperatury to podalem powyzej program odpowiedni. :)
bnkkk komentarz 26 stycznia 2013 Autor komentarz 26 stycznia 2013 (edytowane) Temperature czego podac? Bo mam ten program i sa temperatury ale czego podac temerature. halo
Zayfi komentarz 26 stycznia 2013 komentarz 26 stycznia 2013 Temperature czego podac? Wstaw dwa obrazki z zakładek sensors i system summary
bnkkk komentarz 26 stycznia 2013 Autor komentarz 26 stycznia 2013 TO jest screen z tego programu przy wlaczonych kilku programach
Zayfi komentarz 26 stycznia 2013 komentarz 26 stycznia 2013 To nie jest problem temperatury. skanowalem avastem bylo duzo zagrozen dalem je do kwarantanny ale to nic nie pomoglo. Wykonaj logi z OTL http://www.forumpc.pl/topic/277786-nieingerencyjne-narzedzia-do-tworzenia-logow-systemowych/
bnkkk komentarz 26 stycznia 2013 Autor komentarz 26 stycznia 2013 OTL.txt to tak OTL logfile created on: 2013-01-26 18:25:57 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\BANIOK\Moje dokumenty\Downloads Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 0,39 Gb Available Physical Memory | 19,72% Memory free 3,85 Gb Paging File | 2,01 Gb Available in Paging File | 52,17% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 232,88 Gb Total Space | 128,34 Gb Free Space | 55,11% Space Free | Partition Type: NTFS Drive D: | 212,63 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS Computer Name: PIDZIK-6P8XAZI2 | User Name: BANIOK | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2013-01-26 18:24:57 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\BANIOK\Moje dokumenty\Downloads\OTL.exe PRC - [2013-01-24 19:00:36 | 017,918,976 | ---- | M] (Profibot) -- C:\Program Files\Profibot\OpenStealth 1.80\OpenStealth.exe PRC - [2013-01-23 16:17:38 | 003,274,008 | ---- | M] (Piriform Ltd) -- C:\Program Files\CCleaner\CCleaner.exe PRC - [2013-01-18 09:07:04 | 001,248,208 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe PRC - [2012-12-24 00:12:07 | 001,046,984 | ---- | M] () -- C:\Program Files\AVG Secure Search\vprot.exe PRC - [2012-12-24 00:12:07 | 000,894,920 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\13.3.2\ToolbarUpdater.exe PRC - [2012-12-17 11:39:02 | 000,615,440 | ---- | M] () -- C:\Program Files\EslWire\service\WireHelperSvc.exe PRC - [2012-12-14 10:17:04 | 003,467,768 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe PRC - [2012-12-14 10:17:03 | 009,876,472 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version8\TeamViewer.exe PRC - [2012-12-14 10:08:24 | 000,190,968 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version8\tv_w32.exe PRC - [2012-12-10 17:29:44 | 001,435,568 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe PRC - [2012-12-04 13:59:40 | 001,354,736 | ---- | M] (Valve Corporation) -- C:\Program Files\Steam\Steam.exe PRC - [2012-11-08 11:16:48 | 001,394,480 | ---- | M] (CPUID) -- C:\Program Files\CPUID\HWMonitor\HWMonitor.exe PRC - [2012-10-30 23:50:59 | 004,297,136 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe PRC - [2012-10-30 23:50:59 | 000,044,808 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe PRC - [2011-11-02 13:53:47 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2009-11-05 10:05:10 | 000,324,096 | ---- | M] () -- C:\Program Files\Profibot\OpenStealth 1.80\lib\privoxy.exe PRC - [2008-04-14 21:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2007-04-04 14:20:16 | 000,126,976 | ---- | M] (NVIDIA) -- C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe PRC - [2005-10-31 10:51:52 | 000,057,344 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\SB5.1 VX\Surround Mixer\CTSysVol.exe PRC - [2005-08-30 19:51:01 | 001,708,032 | ---- | M] (Gadu-Gadu Sp. z oo) -- C:\Program Files\Gadu-Gadu\gg.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2013-01-26 09:50:01 | 002,048,512 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\13012600\algo.dll MOD - [2013-01-23 21:13:16 | 000,045,056 | ---- | M] () -- C:\Program Files\CCleaner\Lang\lang-1045.dll MOD - [2013-01-19 09:06:12 | 000,647,168 | ---- | M] () -- C:\Program Files\Steam\sdl.dll MOD - [2013-01-19 09:05:39 | 020,320,240 | ---- | M] () -- C:\Program Files\Steam\bin\libcef.dll MOD - [2013-01-19 09:05:36 | 001,100,800 | ---- | M] () -- C:\Program Files\Steam\bin\avcodec-53.dll MOD - [2013-01-19 09:05:36 | 000,969,640 | ---- | M] () -- C:\Program Files\Steam\bin\chromehtml.dll MOD - [2013-01-19 09:05:36 | 000,192,000 | ---- | M] () -- C:\Program Files\Steam\bin\avformat-53.dll MOD - [2013-01-19 09:05:36 | 000,124,416 | ---- | M] () -- C:\Program Files\Steam\bin\avutil-51.dll MOD - [2013-01-18 09:07:02 | 012,459,472 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\24.0.1312.56\PepperFlash\pepflashplayer.dll MOD - [2013-01-18 09:07:02 | 000,460,240 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\24.0.1312.56\ppgooglenaclpluginchrome.dll MOD - [2013-01-18 09:07:01 | 004,012,496 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\24.0.1312.56\pdf.dll MOD - [2013-01-18 09:06:15 | 000,597,968 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\24.0.1312.56\libglesv2.dll MOD - [2013-01-18 09:06:15 | 000,124,368 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\24.0.1312.56\libegl.dll MOD - [2013-01-18 09:06:13 | 001,552,848 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\24.0.1312.56\ffmpegsumo.dll MOD - [2013-01-08 22:39:10 | 014,586,888 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_146.dll MOD - [2013-01-08 15:24:34 | 000,020,296 | ---- | M] () -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\{8b9fe9be-f7dd-451e-ac96-0e568e0ecc10}\components\winamp.dll MOD - [2012-12-24 00:12:08 | 000,137,672 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\13.3.2\SiteSafety.dll MOD - [2012-12-24 00:12:07 | 001,046,984 | ---- | M] () -- C:\Program Files\AVG Secure Search\vprot.exe MOD - [2012-12-24 00:12:07 | 000,894,920 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\13.3.2\ToolbarUpdater.exe MOD - [2012-12-24 00:12:07 | 000,566,728 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\DNTInstaller\13.3.2\avgdttbx.dll MOD - [2012-12-17 12:23:18 | 000,165,888 | ---- | M] () -- C:\Program Files\EslWire\service\NocIPC32.dll MOD - [2012-12-17 11:39:02 | 000,615,440 | ---- | M] () -- C:\Program Files\EslWire\service\WireHelperSvc.exe MOD - [2012-11-12 18:56:20 | 000,126,976 | ---- | M] () -- C:\Program Files\Profibot\OpenStealth 1.80\rt\bin\zip.dll MOD - [2011-11-02 13:53:45 | 001,833,944 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll MOD - [2011-09-16 02:27:26 | 000,069,632 | ---- | M] () -- C:\Program Files\Profibot\OpenStealth 1.80\rt\bin\java.dll MOD - [2011-09-16 02:27:20 | 000,020,480 | ---- | M] () -- C:\Program Files\Profibot\OpenStealth 1.80\rt\bin\jetvm\jvm.dll MOD - [2011-09-16 02:26:50 | 000,176,128 | ---- | M] () -- C:\Program Files\Profibot\OpenStealth 1.80\rt\jetrt\baseline760.dll MOD - [2011-07-18 22:04:08 | 000,296,448 | ---- | M] () -- C:\Program Files\Notepad++\NppShell_04.dll MOD - [2010-11-04 07:51:44 | 000,555,624 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\nView\nvShell.dll MOD - [2010-03-15 10:28:22 | 000,141,824 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll MOD - [2009-11-05 10:05:10 | 000,324,096 | ---- | M] () -- C:\Program Files\Profibot\OpenStealth 1.80\lib\privoxy.exe MOD - [2009-02-27 18:04:20 | 000,311,296 | ---- | M] () -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.POL MOD - [2008-04-14 21:50:38 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll MOD - [2007-12-28 09:32:14 | 000,065,536 | ---- | M] () -- C:\WINDOWS\system32\P17.DLL MOD - [2005-05-24 16:46:33 | 000,032,768 | ---- | M] () -- C:\Program Files\Gadu-Gadu\ggwhook.dll MOD - [2005-05-24 16:45:44 | 000,405,504 | ---- | M] () -- C:\Program Files\Gadu-Gadu\update.dll MOD - [2005-05-24 16:45:43 | 000,786,432 | ---- | M] () -- C:\Program Files\Gadu-Gadu\libeay32.dll MOD - [2005-05-24 16:45:43 | 000,159,744 | ---- | M] () -- C:\Program Files\Gadu-Gadu\ssleay32.dll MOD - [2005-05-24 16:45:42 | 000,036,864 | ---- | M] () -- C:\Program Files\Gadu-Gadu\Crypto.dll MOD - [1998-10-17 07:00:00 | 000,033,792 | ---- | M] () -- C:\Program Files\WinZip\WZSHLEXT.DLL [color=#E56717]========== Services (SafeList) ==========[/color] SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt) SRV - [2013-01-08 22:39:11 | 000,251,400 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2012-12-24 00:12:07 | 000,894,920 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\13.3.2\ToolbarUpdater.exe -- (vToolbarUpdater13.3.2) SRV - [2012-12-17 11:39:02 | 000,615,440 | ---- | M] () [Auto | Running] -- C:\Program Files\EslWire\service\WireHelperSvc.exe -- (EslWireHelper) SRV - [2012-12-14 10:17:04 | 003,467,768 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe -- (TeamViewer8) SRV - [2012-12-10 17:29:44 | 001,435,568 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc) SRV - [2012-10-30 23:50:59 | 000,044,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus) SRV - [2012-07-13 12:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2011-03-16 10:42:06 | 000,407,336 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service) SRV - [2007-04-04 14:20:16 | 000,126,976 | ---- | M] (NVIDIA) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe -- (nTuneService) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\XDva399.sys -- (XDva399) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\XDva397.sys -- (XDva397) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\XDva394.sys -- (XDva394) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\XDva391.sys -- (XDva391) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\XDva387.sys -- (XDva387) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP) DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump) DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc) DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt) DRV - File not found [Kernel | On_Demand | Running] -- C:\DOCUME~1\BANIOK\USTAWI~1\Temp\cpuz136\cpuz136_x32.sys -- (cpuz136) DRV - File not found [Kernel | System | Stopped] -- -- (Changer) DRV - [2012-12-24 00:12:08 | 000,026,984 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtpx86.sys -- (avgtp) DRV - [2012-12-17 11:38:54 | 000,867,344 | ---- | M] (<Turtle Entertainment>) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\ESLWireACD.sys -- (ESLWireAC) DRV - [2012-10-30 23:51:58 | 000,738,504 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx) DRV - [2012-10-30 23:51:58 | 000,361,032 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP) DRV - [2012-10-30 23:51:58 | 000,054,232 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi) DRV - [2012-10-30 23:51:58 | 000,035,928 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (AswRdr) DRV - [2012-10-30 23:51:57 | 000,097,608 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2) DRV - [2012-10-30 23:51:56 | 000,025,256 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4) DRV - [2012-10-30 23:51:56 | 000,021,256 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk) DRV - [2012-01-24 13:50:08 | 000,024,504 | ---- | M] (Turtle Entertainment GmbH) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ESLvnic.sys -- (ESLvnic1) DRV - [2011-09-20 17:40:06 | 000,281,760 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt) DRV - [2011-09-20 17:40:06 | 000,025,888 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt) DRV - [2011-04-21 10:39:20 | 000,015,600 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\gdrv.sys -- (gdrv) DRV - [2011-04-18 08:53:21 | 000,218,688 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\dtsoftbus01.sys -- (dtsoftbus01) DRV - [2009-03-18 16:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi) DRV - [2007-12-28 04:26:01 | 001,135,104 | R--- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\P17.sys -- (P17) DRV - [2007-09-05 10:31:30 | 004,611,072 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) DRV - [2007-06-28 11:46:42 | 000,020,480 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus) DRV - [2007-06-28 11:46:40 | 000,045,824 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD) DRV - [2007-04-04 14:21:00 | 000,006,912 | ---- | M] (NVidia Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\nvoclock.sys -- (NVR0Dev) DRV - [2006-06-18 22:51:32 | 000,043,520 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8) DRV - [2006-01-19 17:33:26 | 000,402,432 | R--- | M] (ZyDAS Technology Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WlanBZXP.sys -- (SG762_XP) DRV - [2005-01-10 11:15:30 | 000,106,496 | R--- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctoss2k.sys -- (ossrv) DRV - [2005-01-10 11:15:24 | 000,138,752 | R--- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctsfm2k.sys -- (ctsfm2k) DRV - [2003-09-06 14:37:22 | 000,062,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\prohlp02.sys -- (prohlp02) DRV - [2003-09-06 13:27:06 | 000,004,832 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfhlp01.sys -- (sfhlp01) DRV - [2003-09-06 13:25:52 | 000,051,744 | ---- | M] (Protection Technology) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\prodrv06.sys -- (prodrv06) DRV - [2003-09-06 13:22:08 | 000,006,944 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\prosync1.sys -- (prosync1) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = pl.v9.com/idg/idg_1330794372_759913 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com/cheatengine/{82D200FC-8154-4A89-A0A6-C1D55F84052E} IE - HKLM\..\SearchScopes,DefaultScope = {EEE6C360-6118-11DC-9C72-001320C79847} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKLM\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://startsear.ch/?aff=2&src=sp&cf=af231868-234c-11e1-8925-001a4df9a8f8&q={searchTerms} IE - HKLM\..\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}: "URL" = http://startsear.ch/?aff=1&src=sp&cf=af231868-234c-11e1-8925-001a4df9a8f8&q={searchTerms} IE - HKLM\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?src=6&q={searchTerms}&barid={A6BFD75E-F0EA-11E0-883D-001A4DF9A8F8} IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = pl.v9.com/idg/idg_1330794372_759913 IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com/?l=dis&o=14656 IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (SweetIM Technologies Ltd.) IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233} IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{0D7562AE-8EF6-416d-A838-AB665251703A}: "URL" = http://start.facemoods.com/?a=dpgppc&s={searchTerms}&f=4 IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://startsear.ch/?aff=2&src=sp&cf=af231868-234c-11e1-8925-001a4df9a8f8&q={searchTerms} IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{1744F8FC-2A9D-4AD4-8C5A-291C24FAC341}: "URL" = http://search.aol.pl/aol/search?s_it=tb50winamp&q={searchTerms} IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5}: "URL" = http://search.babylon.com/?babsrc=SP_ss&q={searchTerms}&mntrId=e40bc2ba00000000000000ff01000001&tlver=1.4.23.10&affID=100607 IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.com/search?cid={5D6A603F-16C5-41B4-8378-C4B8853832B4}&mid=7b82c1c2436c47d0ae5bd1530b1d410b-be8161eaab38a64d10cc9a5e9cf9f13fbce84f54&lang=pl&ds=xn011&pr=sa&d=2012-12-24 00:12:35&v=13.3.0.17&sap=dsp&q={searchTerms} IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}: "URL" = http://www.bigseekpro.com/search/browser/cheatengine/{82D200FC-8154-4A89-A0A6-C1D55F84052E}?q={searchTerms} IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{96DACA10-7D49-4A4B-B35B-C4C3E3BE429A}: "URL" = http://websearch.ask.com/redirect?client=ie&tb=CPUID&o=14654&src=crm&q={searchTerms}&locale=&apn_ptnrs=^CV&apn_dtid=^YYYYYY^YY^PL&apn_uid=7352cb21-c932-4a66-a833-76a3124e114b&apn_sauid=127815F5-5E8B-41C1-B90F-98C710D149FC IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2304157 IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{C998C5D1-2B74-4439-BEAD-4E6DD49ADABD}: "URL" = http://search.babylon.com/web/{searchTerms}?babsrc=SP_ss&affID=1101316&mntrId=e40bc2ba00000000000000ff01000001 IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}: "URL" = http://startsear.ch/?aff=1&src=sp&cf=af231868-234c-11e1-8925-001a4df9a8f8&q={searchTerms} IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{D6367094-2014-4A44-9997-350973B82917}: "URL" = http://mystart.incredimail.com/mb68/?search={searchTerms}&loc=search_box&u=92823396114339511 IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?} IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{FD8C2125-4C66-4172-BE02-FE666D7BE362}: "URL" = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7 IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local> [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultengine: "Ask.com" FF - prefs.js..browser.search.defaultenginename: "Ask.com" FF - prefs.js..browser.search.defaultthis.engineName: "XfireXO Customized Web Search" FF - prefs.js..browser.search.defaulturl: "" FF - prefs.js..browser.search.order.1: "Ask.com" FF - prefs.js..browser.search.selectedEngine: "Google" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "http://www.google.com/" FF - prefs.js..extensions.enabledAddons: {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:5.6.0.8442 FF - prefs.js..extensions.enabledAddons: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledAddons: {EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}:2.0 FF - prefs.js..extensions.enabledAddons: ffxtlbr@babylon.com:1.2.0 FF - prefs.js..extensions.enabledAddons: plugin@yontoo.com:1.20.00 FF - prefs.js..extensions.enabledAddons: ffxtlbra@softonic.com:1.5.1 FF - prefs.js..extensions.enabledAddons: {75656794-AB59-4712-BFBC-5D816D56F3BC}:1.1.8 FF - prefs.js..extensions.enabledAddons: {c86eb8a9-ccc2-4b6c-b75d-73576ed591bf}:3.16.0.3 FF - prefs.js..extensions.enabledAddons: {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0}:3.16.0.100 FF - prefs.js..extensions.enabledAddons: {51a86bb3-6602-4c85-92a5-130ee4864f13}:3.16.0.100 FF - prefs.js..extensions.enabledAddons: {5e5ab302-7f65-44cd-8211-c1d4caaccea3}:3.16.0.100 FF - prefs.js..extensions.enabledAddons: {EEE6C361-6118-11DC-9C72-001320C79847}:1.9.0.0 FF - prefs.js..extensions.enabledAddons: {8b9fe9be-f7dd-451e-ac96-0e568e0ecc10}:5.218.1.9171 FF - prefs.js..extensions.enabledAddons: toolbar@ask.com:3.17.2.34141 FF - prefs.js..keyword.URL: "http://www.google.com/search?ie=UTF-8&oe=utf-8&q=" FF - prefs.js..network.proxy.backup.ftp: "127.0.0.1" FF - prefs.js..network.proxy.backup.ftp_port: 3128 FF - prefs.js..network.proxy.backup.socks: "127.0.0.1" FF - prefs.js..network.proxy.backup.socks_port: 3128 FF - prefs.js..network.proxy.backup.ssl: "127.0.0.1" FF - prefs.js..network.proxy.backup.ssl_port: 3128 FF - prefs.js..network.proxy.ftp: "127.0.0.1" FF - prefs.js..network.proxy.ftp_port: 3128 FF - prefs.js..network.proxy.http: "127.0.0.1" FF - prefs.js..network.proxy.http_port: 3128 FF - prefs.js..network.proxy.share_proxy_settings: true FF - prefs.js..network.proxy.socks: "127.0.0.1" FF - prefs.js..network.proxy.socks_port: 3128 FF - prefs.js..network.proxy.ssl: "127.0.0.1" FF - prefs.js..network.proxy.ssl_port: 3128 FF - prefs.js..network.proxy.type: 1 FF - prefs.js..sweetim.toolbar.previous.browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2304157&SearchSource=3&q={searchTerms}" FF - prefs.js..sweetim.toolbar.previous.browser.search.selectedEngine: "" FF - prefs.js..browser.startup.homepage: "http://www.esl.eu/pl/#/pl/player/5343490/" FF - prefs.js..sweetim.toolbar.previous.keyword.URL: "" FF - user.js..browser.startup.homepage: "http://www.google.com/" FF - user.js..keyword.URL: "http://www.google.com/search?ie=UTF-8&oe=utf-8&q=" FF - user.js..browser.search.selectedEngine: "Google" FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_146.dll () FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\13.3.2\\npsitesafety.dll () FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@powerchallenge.com/PowerLoader: C:\DOCUME~1\BANIOK\DANEAP~1\POWERC~1\nppowerloader.dll (Power Challenge Sweden AB) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\avg@toolbar: C:\Documents and Settings\All Users\Dane aplikacji\AVG Secure Search\FireFoxExt\13.3.0.17 [2012-12-24 00:12:40 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-01-25 19:04:10 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-11-02 13:53:49 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-09-15 18:11:57 | 000,000,000 | ---D | M] [2011-04-16 07:58:03 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Extensions [2013-01-26 10:50:26 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions [2012-12-31 09:10:21 | 000,000,000 | ---D | M] (BrotherSoft Extreme Community Toolbar) -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\{51a86bb3-6602-4c85-92a5-130ee4864f13} [2013-01-01 11:29:24 | 000,000,000 | ---D | M] (XfireXO Community Toolbar) -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\{5e5ab302-7f65-44cd-8211-c1d4caaccea3} [2012-05-20 14:49:18 | 000,000,000 | ---D | M] (CheatEngine DB Toolbar Toolbar) -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\{75656794-AB59-4712-BFBC-5D816D56F3BC} [2013-01-11 23:30:27 | 000,000,000 | ---D | M] ("Winamp Toolbar") -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\{8b9fe9be-f7dd-451e-ac96-0e568e0ecc10} [2012-11-11 11:19:59 | 000,000,000 | ---D | M] (ST-Polska Community Toolbar) -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\{c86eb8a9-ccc2-4b6c-b75d-73576ed591bf} [2012-12-31 09:10:32 | 000,000,000 | ---D | M] (IncrediMail MediaBar 2 Community Toolbar) -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} [2011-11-26 15:53:57 | 000,000,000 | ---D | M] (DealPly) -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF} [2011-04-27 13:34:35 | 000,000,000 | ---D | M] ("DAEMON Tools Toolbar") -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\DTToolbar@toolbarnet.com [2011-05-09 06:19:59 | 000,000,000 | ---D | M] (Conduit Engine) -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\engine@conduit.com [2011-11-03 13:52:46 | 000,000,000 | ---D | M] (Babylon) -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\ffxtlbr@babylon.com [2012-05-20 09:01:12 | 000,000,000 | ---D | M] (softonic.com) -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\ffxtlbra@softonic.com [2012-03-12 16:21:03 | 000,000,000 | ---D | M] (Yontoo) -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\plugin@yontoo.com [2013-01-26 15:22:49 | 000,000,000 | ---D | M] (Ask Toolbar) -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\toolbar@ask.com [2013-01-08 13:57:39 | 000,190,000 | ---- | M] () (No name found) -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi [2012-11-23 15:20:44 | 000,002,533 | ---- | M] () -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\searchplugins\aol-search.xml [2013-01-26 15:22:50 | 000,002,578 | ---- | M] () -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\searchplugins\askcom.xml [2011-10-05 10:36:18 | 000,000,917 | ---- | M] () -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\searchplugins\conduit.xml [2011-04-18 08:53:13 | 000,002,059 | ---- | M] () -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\searchplugins\daemon-search.xml [2011-11-26 15:53:07 | 000,002,207 | ---- | M] () -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\searchplugins\MyStart Search.xml [2012-05-20 15:50:53 | 000,002,380 | ---- | M] () -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\searchplugins\search.xml [2012-04-10 21:27:27 | 000,000,792 | ---- | M] () -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\searchplugins\startsear.xml [2012-03-12 16:54:42 | 000,004,030 | ---- | M] () -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\searchplugins\sweetim.xml [2012-09-15 18:17:03 | 000,002,569 | ---- | M] () -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\searchplugins\winamp-web-search.xml [2012-09-15 18:16:44 | 000,002,154 | ---- | M] () -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\searchplugins\wyszukiwarka-aol.xml [2011-05-17 18:05:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2011-10-18 17:20:34 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2011-05-17 18:05:24 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} [2011-05-17 18:05:18 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF [2011-12-23 17:19:37 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION [2011-11-02 13:53:48 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2011-10-27 14:45:50 | 000,083,456 | ---- | M] (LiveVDO ) -- C:\Program Files\mozilla firefox\plugins\npvsharetvplg.dll [2012-06-28 16:42:00 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll [2011-11-02 13:53:43 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml [2012-12-24 00:12:40 | 000,003,580 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\avg-secure-search.xml [2012-03-12 16:24:53 | 000,002,289 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml [2011-11-02 13:53:43 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml [2011-11-14 13:02:58 | 000,002,049 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fcmdSrch.xml [2011-11-02 13:53:43 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml [2011-11-02 13:53:43 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml [2012-03-03 18:06:12 | 000,002,415 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\v9.xml [2011-11-02 13:53:43 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml [2011-11-02 13:53:43 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml [color=#E56717]========== Chrome ==========[/color] CHR - homepage: http://www.ask.com/?l=dis&o=14656cr CHR - default_search_provider: Ask (Enabled) CHR - default_search_provider: search_url = http://websearch.ask.com/redirect?client=cr&src=kw&tb=CPUID&o=14654&locale=en_US&apn_uid=7352cb21-c932-4a66-a833-76a3124e114b&apn_ptnrs=%5ECV&apn_sauid=127815F5-5E8B-41C1-B90F-98C710D149FC&apn_dtid=%5EYYYYYY%5EYY%5EPL&q={searchTerms} CHR - default_search_provider: suggest_url = http://ss.websearch.ask.com/query?qsrc=2922&li=ff&sstype=prefix&q={searchTerms} CHR - homepage: http://www.ask.com/?l=dis&o=14656cr CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\24.0.1312.56\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\24.0.1312.56\pdf.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\24.0.1312.56\gcswf32.dll CHR - plugin: Shockwave Flash (Disabled) = C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\PepperFlash\11.1.31.203\pepflashplayer.dll CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll CHR - plugin: vShare.tv plug-in (Enabled) = C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0\chvsharetvplg.dll CHR - plugin: Skype Toolbars (Enabled) = C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.6.0.8442_0\npSkypeChromePlugin.dll CHR - plugin: Java Deployment Toolkit 6.0.250.6 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll CHR - plugin: Java(TM) Platform SE 6 U25 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll CHR - plugin: LiveVDO plug-in (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npvsharetvplg.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\5.0.61118.0\npctrl.dll CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll CHR - Extension: Ask Toolbar = C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\aaaapodhaoggdemfffbmjpgfgekfjjpe\7.17.2.0_0\ CHR - Extension: YouTube = C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\ CHR - Extension: Szukaj w Google = C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\ CHR - Extension: DealPly = C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\gaiilaahiahdejapggenmdmafpmbipje\3.0.7.2_0\ CHR - Extension: avast! WebRep = C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1474_0\ CHR - Extension: vshare plugin = C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0\ CHR - Extension: Skype Click to Call = C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.6.0.8442_0\ CHR - Extension: AVG Secure Search = C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\13.3.0.17_0\ CHR - Extension: Yontoo = C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\niapdbllcanepiiimjjndipklodoedlc\1.0.2_0\ CHR - Extension: LiveVDO plugin = C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pbiamblgmkgbcgbcgejjgebalncpmhnp\1.3_0\ CHR - Extension: Gmail = C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\ O1 HOSTS File: ([2003-04-16 13:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Babylon toolbar helper) - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll (Babylon BHO) O2 - BHO: (Winamp Toolbar Loader) - {4accc990-3dc7-4456-a734-5cb4b610a7f5} - C:\Program Files\Winamp Toolbar\winamppltb.dll (AOL Inc.) O2 - BHO: (IE5BarLauncherBHO Class) - {78F3A323-798E-4AEA-9A57-88F4B05FD5DD} - C:\Program Files\StartSearch plugin\ssBarLcher.dll (StartSearch Inc.) O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\13.3.0.17\AVG Secure Search_toolbar.dll () O2 - BHO: (DealPly) - {A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} - C:\Program Files\DealPly\DealPlyIE.dll (DealPly Technologies Ltd) O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (Softonic Helper Object) - {E87806B5-E908-45FD-AF5E-957D83E58E68} - C:\Program Files\Softonic\softonic\1.5.11.5\bh\softonic.dll (Softonic.com) O2 - BHO: (SweetPacks Browser Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) O2 - BHO: (SMTTB2009 Class) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\CheatEngine DB Toolbar Toolbar\tbcore3.dll File not found O2 - BHO: (Yontoo) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo\YontooIEClient.dll (Yontoo LLC) O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll () O3 - HKLM\..\Toolbar: (CheatEngine DB Toolbar Toolbar) - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files\CheatEngine DB Toolbar Toolbar\tbcore3.dll File not found O3 - HKLM\..\Toolbar: (Softonic Toolbar) - {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - C:\Program Files\Softonic\softonic\1.5.11.5\softonicTlbr.dll (Softonic.com) O3 - HKLM\..\Toolbar: (StartSearchToolBar) - {7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} - C:\Program Files\StartSearch plugin\ssBarLcher.dll (StartSearch Inc.) O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\13.3.0.17\AVG Secure Search_toolbar.dll () O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll (Babylon Ltd.) O3 - HKLM\..\Toolbar: (Winamp Toolbar) - {a0b1221c-a3ff-4f7c-a393-dc63af5301e9} - C:\Program Files\Winamp Toolbar\winamppltb.dll (AOL Inc.) O3 - HKLM\..\Toolbar: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) O3 - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll () O3 - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\Toolbar\WebBrowser: (CheatEngine DB Toolbar Toolbar) - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files\CheatEngine DB Toolbar Toolbar\tbcore3.dll File not found O3 - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\Toolbar\WebBrowser: (StartSearchToolBar) - {7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} - C:\Program Files\StartSearch plugin\ssBarLcher.dll (StartSearch Inc.) O3 - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\Toolbar\WebBrowser: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.) O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software) O4 - HKLM..\Run: [CTSysVol] C:\Program Files\Creative\SB5.1 VX\Surround Mixer\CTSysVol.exe (Creative Technology Ltd) O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation) O4 - HKLM..\Run: [P17Helper] C:\WINDOWS\System32\P17.DLL () O4 - HKLM..\Run: [vProt] C:\Program Files\AVG Secure Search\vprot.exe () O4 - HKU\S-1-5-21-1801674531-1547161642-839522115-1004..\Run: [Gadu-Gadu] C:\Program Files\Gadu-Gadu\gg.exe (Gadu-Gadu Sp. z oo) O4 - HKU\S-1-5-21-1801674531-1547161642-839522115-1004..\Run: [NVIDIA nTune] C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe (NVIDIA) O4 - HKU\S-1-5-21-1801674531-1547161642-839522115-1004..\Run: [SetDefaultMIDI] C:\WINDOWS\MIDIDEF.EXE (Creative Technology Ltd) O4 - HKU\S-1-5-21-1801674531-1547161642-839522115-1004..\Run: [Steam] C:\Program Files\Steam\steam.exe (Valve Corporation) O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O16 - DPF: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25) O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab (Creative Software AutoUpdate Support Package 2) O16 - DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} http://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab (Creative Software AutoUpdate 2) O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwareupdate/ocx/121022/CTPID.cab (Creative Software AutoUpdate Support Package) O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{48D66C3A-FBD4-4AA8-9CA9-1411AE3DC3E0}: DhcpNameServer = 192.168.1.1 O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\13.3.2\ViProtocol.dll () O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\SYSTEM32\Userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O20 - HKU\S-1-5-21-1801674531-1547161642-839522115-1004 Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2011-04-15 19:40:56 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2007-10-22 03:03:24 | 000,000,052 | R--- | M] () - D:\AUTORUN.INF -- [ CDFS ] O32 - AutoRun File - [2008-01-07 06:28:04 | 000,000,000 | R--D | M] - D:\AutoUpd -- [ CDFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2013-01-26 18:18:00 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\BANIOK\Recent [2013-01-26 17:56:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\CCleaner [2013-01-26 17:56:07 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner [2013-01-26 17:10:13 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro [2013-01-26 17:10:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\BANIOK\Menu Start\Programy\HiJackThis [2013-01-26 10:51:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\CPUID [2013-01-26 10:51:20 | 000,000,000 | ---D | C] -- C:\Program Files\CPUID [2013-01-26 10:50:29 | 000,000,000 | ---D | C] -- C:\Program Files\Ask.com [2013-01-26 10:50:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\AskToolbar [2013-01-26 10:50:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\APN [2013-01-25 19:04:38 | 000,021,256 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys [2013-01-25 19:04:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\avast! Free Antivirus [2013-01-25 19:04:37 | 000,361,032 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys [2013-01-25 19:04:34 | 000,054,232 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys [2013-01-25 19:04:34 | 000,035,928 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys [2013-01-25 19:04:33 | 000,738,504 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys [2013-01-25 19:04:31 | 000,097,608 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys [2013-01-25 19:04:31 | 000,089,752 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys [2013-01-25 19:04:30 | 000,025,256 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys [2013-01-25 19:03:56 | 000,041,224 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr [2013-01-25 19:03:55 | 000,227,648 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe [2013-01-25 19:03:33 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software [2013-01-25 19:03:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\AVAST Software [2013-01-22 17:17:39 | 000,000,000 | ---D | C] -- C:\Program Files\KBot [2013-01-20 20:50:41 | 000,025,088 | ---- | C] (Creative Technology Ltd) -- C:\WINDOWS\System32\CTSVCCTL.EXE [2013-01-20 20:50:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Creative [2013-01-20 20:14:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages [2013-01-20 20:13:33 | 001,230,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msvidctl.dll [2013-01-20 20:13:33 | 001,179,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\d3d8.dll [2013-01-20 20:13:33 | 000,285,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kstvtune.ax [2013-01-20 20:13:33 | 000,285,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kstvtune.ax [2013-01-20 20:13:33 | 000,265,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ddraw.dll [2013-01-20 20:13:33 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kswdmcap.ax [2013-01-20 20:13:33 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kswdmcap.ax [2013-01-20 20:13:33 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nabtsfec.sys [2013-01-20 20:13:33 | 000,052,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdv.sys [2013-01-20 20:13:33 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wstdecod.dll [2013-01-20 20:13:33 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksxbar.ax [2013-01-20 20:13:33 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksxbar.ax [2013-01-20 20:13:33 | 000,018,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wstcodec.sys [2013-01-20 20:13:33 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bdaplgin.ax [2013-01-20 20:13:33 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bdaplgin.ax [2013-01-20 20:13:33 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ccdecode.sys [2013-01-20 20:13:33 | 000,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mpe.sys [2013-01-20 20:13:33 | 000,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpe.sys [2013-01-20 20:13:33 | 000,014,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\streamip.sys [2013-01-20 20:13:33 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ipsink.ax [2013-01-20 20:13:33 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ipsink.ax [2013-01-20 20:13:33 | 000,011,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bdasup.sys [2013-01-20 20:13:33 | 000,011,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bdasup.sys [2013-01-20 20:13:33 | 000,010,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\slip.sys [2013-01-20 20:13:33 | 000,010,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndisip.sys [2013-01-20 20:13:32 | 000,525,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qedit.dll [2013-01-20 20:13:32 | 000,363,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsound.dll [2013-01-20 20:13:32 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dxdiag.exe [2013-01-20 20:13:32 | 000,276,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qdv.dll [2013-01-20 20:13:32 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpvoice.dll [2013-01-20 20:13:32 | 000,177,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qcap.dll [2013-01-20 20:13:32 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dinput8.dll [2013-01-20 20:13:32 | 000,156,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dinput.dll [2013-01-20 20:13:32 | 000,153,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qasf.dll [2013-01-20 20:13:32 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmusic.dll [2013-01-20 20:13:32 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsdmoprp.dll [2013-01-20 20:13:32 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\joy.cpl [2013-01-20 20:13:32 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpwsockx.dll [2013-01-20 20:13:32 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\devenum.dll [2013-01-20 20:13:32 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pid.dll [2013-01-20 20:13:32 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpmodemx.dll [2013-01-20 20:13:32 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpnsvr.exe [2013-01-20 20:13:32 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksolay.ax [2013-01-20 20:13:32 | 000,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstee.sys [2013-01-20 20:13:31 | 001,189,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dx8vb.dll [2013-01-20 20:13:31 | 000,797,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\d3dim700.dll [2013-01-20 20:13:31 | 000,602,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dx7vb.dll [2013-01-20 20:13:31 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ddrawex.dll [2013-01-20 20:13:31 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\d3d8thk.dll [2013-01-20 20:13:30 | 001,294,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsound3d.dll [2013-01-20 20:13:30 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dplayx.dll [2013-01-20 20:13:30 | 000,186,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsdmo.dll [2013-01-20 20:13:30 | 000,181,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmime.dll [2013-01-20 20:13:30 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpvvox.dll [2013-01-20 20:13:30 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmsynth.dll [2013-01-20 20:13:30 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmstyle.dll [2013-01-20 20:13:30 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpvsetup.exe [2013-01-20 20:13:30 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmscript.dll [2013-01-20 20:13:30 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpnhupnp.dll [2013-01-20 20:13:30 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmcompos.dll [2013-01-20 20:13:30 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dxdllreg.exe [2013-01-20 20:13:30 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmloader.dll [2013-01-20 20:13:30 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpnhpast.dll [2013-01-20 20:13:30 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dplaysvr.exe [2013-01-20 20:13:30 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmband.dll [2013-01-20 20:13:30 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpvacm.dll [2013-01-20 20:13:30 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dswave.dll [2013-01-20 20:13:30 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpnlobby.dll [2013-01-20 20:13:30 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpnaddr.dll [2013-01-20 20:11:28 | 000,315,624 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\BANIOK\Pulpit\directx-90c.exe [2013-01-19 17:06:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\BANIOK\Pulpit\BOXY BOT [2013-01-11 17:03:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\BANIOK\Pulpit\K-BOT [2013-01-08 18:07:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\TeamViewer 8 [2013-01-08 18:07:49 | 000,000,000 | ---D | C] -- C:\Program Files\TeamViewer [2013-01-02 22:54:36 | 000,000,000 | ---D | C] -- C:\Program Files\System.Data.SQLite [2013-01-02 22:53:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\BANIOK\Pulpit\PBDO-BOT [2013-01-02 22:53:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\BANIOK\Pulpit\QBOT [2013-01-02 22:39:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\System.Data.SQLite [2013-01-01 18:01:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\BANIOK\Moje dokumenty\Downloads [2012-12-29 19:49:29 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET [5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2013-01-26 18:30:01 | 000,000,236 | ---- | M] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job [2013-01-26 18:06:02 | 000,150,121 | ---- | M] () -- C:\Documents and Settings\BANIOK\Pulpit\bez tytułu.JPG [2013-01-26 18:04:39 | 003,888,054 | ---- | M] () -- C:\Documents and Settings\BANIOK\Pulpit\bez tytułu.bmp [2013-01-26 17:56:08 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\CCleaner.lnk [2013-01-26 17:50:30 | 000,002,445 | ---- | M] () -- C:\Documents and Settings\BANIOK\Pulpit\HiJackThis.lnk [2013-01-26 17:48:00 | 000,001,036 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2013-01-26 17:38:15 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job [2013-01-26 17:20:31 | 000,000,316 | -H-- | M] () -- C:\WINDOWS\tasks\avast! Emergency Update.job [2013-01-26 17:19:38 | 000,001,032 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2013-01-26 17:19:26 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2013-01-26 17:10:20 | 000,006,509 | ---- | M] () -- C:\Documents and Settings\BANIOK\Pulpit\INFORMACJE [2013-01-26 10:51:24 | 000,000,778 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\CPUID HWMonitor.lnk [2013-01-25 19:20:48 | 000,002,163 | ---- | M] () -- C:\Documents and Settings\BANIOK\Pulpit\Ventrilo.lnk [2013-01-25 19:04:38 | 000,001,689 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\avast! Free Antivirus.lnk [2013-01-25 19:04:32 | 000,002,644 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2013-01-25 15:31:51 | 000,000,882 | ---- | M] () -- C:\Documents and Settings\BANIOK\Pulpit\OpenStealth.lnk [2013-01-24 19:57:58 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2013-01-23 07:19:43 | 000,000,812 | ---- | M] () -- C:\Documents and Settings\BANIOK\Pulpit\KBot 6.95.lnk [2013-01-20 20:55:34 | 000,000,584 | ---- | M] () -- C:\WINDOWS\System32\settingsbkup.sfm [2013-01-20 20:55:34 | 000,000,584 | ---- | M] () -- C:\WINDOWS\System32\settings.sfm [2013-01-20 20:52:00 | 000,001,940 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Creative Product Registration.lnk [2013-01-20 20:49:11 | 000,409,600 | ---- | M] (Creative Labs) -- C:\WINDOWS\System32\wrap_oal.dll [2013-01-20 20:49:11 | 000,114,688 | ---- | M] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\WINDOWS\System32\OpenAL32.dll [2013-01-20 20:11:30 | 000,315,624 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\BANIOK\Pulpit\directx-90c.exe [2013-01-16 15:00:51 | 000,001,813 | ---- | M] () -- C:\Documents and Settings\BANIOK\Pulpit\Google Chrome.lnk [2013-01-09 23:21:08 | 000,556,068 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2013-01-09 23:21:08 | 000,494,004 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2013-01-09 23:21:08 | 000,105,224 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2013-01-09 23:21:08 | 000,084,548 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2013-01-09 14:47:00 | 000,121,336 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2013-01-08 22:39:11 | 000,697,864 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2013-01-08 22:39:11 | 000,074,248 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2013-01-08 18:07:56 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\TeamViewer 8.lnk [2013-01-06 06:33:58 | 006,009,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll [2013-01-02 14:57:49 | 000,176,640 | ---- | M] () -- C:\WINDOWS\Max_delete.exe [5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2013-01-26 18:06:02 | 000,150,121 | ---- | C] () -- C:\Documents and Settings\BANIOK\Pulpit\bez tytułu.JPG [2013-01-26 18:04:39 | 003,888,054 | ---- | C] () -- C:\Documents and Settings\BANIOK\Pulpit\bez tytułu.bmp [2013-01-26 17:56:08 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\CCleaner.lnk [2013-01-26 17:10:13 | 000,002,445 | ---- | C] () -- C:\Documents and Settings\BANIOK\Pulpit\HiJackThis.lnk [2013-01-26 10:51:24 | 000,000,778 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\CPUID HWMonitor.lnk [2013-01-26 10:50:56 | 000,000,236 | ---- | C] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job [2013-01-25 19:04:38 | 000,001,689 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\avast! Free Antivirus.lnk [2013-01-25 19:04:32 | 000,000,316 | -H-- | C] () -- C:\WINDOWS\tasks\avast! Emergency Update.job [2013-01-23 07:19:43 | 000,000,812 | ---- | C] () -- C:\Documents and Settings\BANIOK\Pulpit\KBot 6.95.lnk [2013-01-20 20:52:00 | 000,001,940 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Creative Product Registration.lnk [2013-01-20 20:49:27 | 000,003,628 | ---- | C] () -- C:\WINDOWS\System32\AudioDrv.ini [2013-01-20 20:13:33 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll [2013-01-20 20:13:33 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\dllcache\psisdecd.dll [2013-01-20 20:13:33 | 000,052,224 | ---- | C] () -- C:\WINDOWS\System32\msdvbnp.ax [2013-01-20 20:13:33 | 000,052,224 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msdvbnp.ax [2013-01-20 20:13:33 | 000,030,208 | ---- | C] () -- C:\WINDOWS\System32\psisrndr.ax [2013-01-20 20:13:33 | 000,030,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\psisrndr.ax [2013-01-20 20:13:30 | 000,733,184 | ---- | C] () -- C:\WINDOWS\System32\dllcache\qedwipes.dll [2013-01-20 20:13:30 | 000,136,192 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mpg2splt.ax [2013-01-20 20:13:30 | 000,064,512 | ---- | C] () -- C:\WINDOWS\System32\dllcache\amstream.dll [2013-01-20 20:13:30 | 000,034,304 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mciqtz32.dll [2013-01-20 20:13:30 | 000,013,312 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msdmo.dll [2013-01-08 18:07:56 | 000,000,815 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\TeamViewer 8.lnk [2013-01-02 14:58:46 | 000,176,640 | ---- | C] () -- C:\WINDOWS\Max_delete.exe [2012-12-22 19:06:17 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\P17.DLL [2012-08-16 16:46:19 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BANIOK\ts3creator.exe [2012-08-11 12:37:07 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BANIOK\Moj dom [2012-08-11 12:23:37 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BANIOK\Mój Dom ! [2012-08-09 15:50:35 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BANIOK\Adobe Reader X.lnk [2012-08-09 15:50:17 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BANIOK\Ad-Aware Antivirus.lnk [2012-08-09 15:45:36 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BANIOK\HistoriaRachunku.pdf [2012-08-08 23:22:43 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BANIOK\Bez tytułu.png [2012-08-05 22:29:24 | 000,000,988 | ---- | C] () -- C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\recently-used.xbel [2012-08-03 22:19:38 | 000,239,109 | ---- | C] () -- C:\Documents and Settings\BANIOK\Obraz.jpeg [2012-07-25 23:49:30 | 000,042,440 | ---- | C] () -- C:\WINDOWS\System32\xfcodec.dll [2012-07-05 10:08:59 | 000,004,096 | ---- | C] () -- C:\WINDOWS\d3dx.dat [2012-05-01 23:19:52 | 000,000,310 | ---- | C] () -- C:\Documents and Settings\BANIOK\Dane aplikacji\regdatels.dat [2012-02-15 13:59:37 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll [2012-01-26 18:42:57 | 000,265,120 | ---- | C] () -- C:\Program Files\Common Files\WireHelpSvc.exe [2011-12-25 20:57:23 | 000,012,263 | ---- | C] () -- C:\Program Files\images1.jpeg [2011-12-25 15:10:25 | 001,280,303 | ---- | C] () -- C:\Program Files\HLC_1_setup.exe [2011-12-25 15:07:38 | 000,004,302 | ---- | C] () -- C:\Program Files\QPAD.jpeg [2011-11-12 17:33:38 | 000,000,319 | ---- | C] () -- C:\WINDOWS\game.ini [2011-11-08 18:23:14 | 000,837,192 | ---- | C] () -- C:\WINDOWS\System32\pbsvc.exe [2011-08-11 08:58:26 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BANIOK\31b674f3355fc1312e5c3a358736d670.gif [2011-07-13 10:05:14 | 000,000,206 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI [2011-06-26 13:43:05 | 000,000,050 | ---- | C] () -- C:\WINDOWS\Winamp.ini [2011-06-26 13:43:04 | 000,000,041 | ---- | C] () -- C:\WINDOWS\winampa.ini [2011-06-25 14:11:57 | 000,000,180 | ---- | C] () -- C:\Documents and Settings\BANIOK\.gstreamer-0.10.lnk [2011-06-09 12:48:05 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BANIOK\INVedit [2011-06-09 12:48:02 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BANIOK\skiny do MINECRAFTA [2011-05-17 18:31:08 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BANIOK\Minecraft Beta 1.5_01 SPOLSZCZONY cartographer MOD NA LATANIE.rar [2011-05-17 17:55:56 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat [2011-05-10 17:59:29 | 000,080,896 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2011-05-03 07:29:56 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BANIOK\PP2.png [2011-05-03 07:29:30 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BANIOK\PP1.png [2011-05-01 17:54:10 | 000,139,448 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys [2011-05-01 17:54:10 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\BANIOK\Dane aplikacji\PnkBstrK.sys [2011-05-01 17:53:54 | 000,282,472 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe [2011-05-01 17:53:52 | 000,076,888 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe [2011-04-21 10:33:36 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\ChCfg.exe [2011-04-21 10:28:15 | 000,001,732 | ---- | C] () -- C:\WINDOWS\System32\drivers\nvphy.bin [2011-04-18 09:01:25 | 000,281,760 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys [2011-04-18 09:01:25 | 000,025,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys [2011-04-18 08:49:30 | 000,000,180 | ---- | C] () -- C:\Documents and Settings\BANIOK\InstallAnywhere.lnk [2011-04-16 20:06:18 | 000,000,186 | ---- | C] () -- C:\Documents and Settings\BANIOK\Ustawienia lokalne.lnk [2011-04-16 20:06:18 | 000,000,178 | ---- | C] () -- C:\Documents and Settings\BANIOK\Moje dokumenty.lnk [2011-04-16 20:06:18 | 000,000,178 | ---- | C] () -- C:\Documents and Settings\BANIOK\Dane aplikacji.lnk [2011-04-16 20:06:18 | 000,000,170 | ---- | C] () -- C:\Documents and Settings\BANIOK\New Folder.lnk [2011-04-16 20:06:18 | 000,000,170 | ---- | C] () -- C:\Documents and Settings\BANIOK\Menu Start.lnk [2011-04-16 20:06:18 | 000,000,168 | ---- | C] () -- C:\Documents and Settings\BANIOK\PrintHood.lnk [2011-04-16 20:06:18 | 000,000,168 | ---- | C] () -- C:\Documents and Settings\BANIOK\Passwords.lnk [2011-04-16 20:06:18 | 000,000,168 | ---- | C] () -- C:\Documents and Settings\BANIOK\Documents.lnk [2011-04-16 20:06:18 | 000,000,166 | ---- | C] () -- C:\Documents and Settings\BANIOK\UserData.lnk [2011-04-16 20:06:18 | 000,000,166 | ---- | C] () -- C:\Documents and Settings\BANIOK\Ulubione.lnk [2011-04-16 20:06:18 | 000,000,166 | ---- | C] () -- C:\Documents and Settings\BANIOK\Szablony.lnk [2011-04-16 20:06:18 | 000,000,166 | ---- | C] () -- C:\Documents and Settings\BANIOK\Pictures.lnk [2011-04-16 20:06:18 | 000,000,164 | ---- | C] () -- C:\Documents and Settings\BANIOK\NetHood.lnk [2011-04-16 20:06:18 | 000,000,164 | ---- | C] () -- C:\Documents and Settings\BANIOK\Cookies.lnk [2011-04-16 20:06:18 | 000,000,162 | ---- | C] () -- C:\Documents and Settings\BANIOK\SendTo.lnk [2011-04-16 20:06:18 | 000,000,162 | ---- | C] () -- C:\Documents and Settings\BANIOK\Recent.lnk [2011-04-16 20:06:18 | 000,000,162 | ---- | C] () -- C:\Documents and Settings\BANIOK\Pulpit.lnk [2011-04-16 20:06:18 | 000,000,160 | ---- | C] () -- C:\Documents and Settings\BANIOK\Video.lnk [2011-04-16 20:06:18 | 000,000,160 | ---- | C] () -- C:\Documents and Settings\BANIOK\Music.lnk [2011-04-16 20:06:18 | 000,000,154 | ---- | C] () -- C:\Documents and Settings\BANIOK\...lnk [2011-04-16 20:06:18 | 000,000,152 | ---- | C] () -- C:\Documents and Settings\BANIOK\..lnk [2011-04-16 07:57:50 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2011-04-15 20:52:35 | 000,252,096 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin [2011-04-15 20:52:35 | 000,252,096 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin [2011-04-15 20:52:35 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin [2011-04-15 20:52:32 | 002,292,678 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin [2011-04-15 20:28:43 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2011-04-15 20:27:59 | 000,121,336 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2011-04-15 19:41:57 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2011-04-15 19:39:16 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [color=#E56717]========== ZeroAccess Check ==========[/color] [2011-12-21 19:59:59 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\System32\shdocvw.dll -- [2011-09-05 14:56:10 | 001,510,400 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = C:\WINDOWS\System32\wbem\fastprox.dll -- [2009-02-09 11:53:44 | 000,473,600 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = C:\WINDOWS\System32\wbem\wbemess.dll -- [2008-04-14 21:50:58 | 000,273,920 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [color=#E56717]========== LOP Check ==========[/color] [2013-01-25 19:03:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVAST Software [2012-12-31 12:19:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG Secure Search [2012-03-12 16:24:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Babylon [2011-11-11 10:47:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Big Fish Games [2012-12-24 00:12:10 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files [2012-07-06 09:33:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite [2011-06-20 20:30:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Easybits GO [2012-01-26 18:42:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESL Wire [2011-05-02 19:25:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2012-07-18 09:45:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\GG [2011-11-26 16:20:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\IM [2011-11-26 16:20:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\IncrediMail [2011-10-07 14:44:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\InstallMate [2011-05-10 18:25:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\install_clap [2012-12-08 07:49:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla [2011-06-06 20:25:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\KONAMI [2012-08-18 16:02:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2012-07-03 13:54:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC1Data [2011-05-10 18:26:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PDVD [2011-10-07 14:44:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Premium [2012-10-17 13:45:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\RDRM [2011-04-18 08:41:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Sports Interactive [2012-03-08 14:34:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\SweetIM [2012-03-12 16:21:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Tarma Installer [2011-05-10 18:25:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Temp [2012-05-02 16:39:38 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{E568B6A0-8E02-46C8-8954-00ECD7CD3554} [2012-10-23 13:05:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\.minecraft [2011-08-18 12:46:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\.minecraft_xray [2012-12-24 00:12:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\AVG Secure Search [2012-03-12 16:24:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\Babylon [2011-07-21 15:50:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\BabylonToolbar [2011-04-18 08:54:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\DAEMON Tools Lite [2013-01-25 20:36:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\E40BC [2011-05-02 19:26:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\Gadu-Gadu 10 [2011-05-15 11:30:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\GetRightToGo [2012-12-22 18:28:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\GG [2011-10-28 13:00:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\GHISLER [2011-11-14 16:30:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\go [2012-12-22 18:27:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\ipla [2012-06-01 22:04:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\Notepad++ [2011-06-25 11:06:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\OpenFM [2012-07-03 13:54:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\PC Cleaners [2012-07-03 13:54:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\PCPro [2012-06-09 16:21:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\PowerChallenge [2011-11-11 10:47:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\PriceGong [2012-02-17 13:47:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\Softonic [2011-04-18 08:41:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\Sports Interactive [2011-11-26 15:54:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\SumatraPDF [2012-05-20 14:49:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\Toolbar4 [2013-01-26 17:09:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\TS3Client [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Files - Unicode (All) ==========[/color] [2013-01-01 18:03:21 | 006,053,251 | ---- | M] ()(C:\Documents and Settings\BANIOK\Pulpit\PSY - GANGNAM STYLE (?????) M_V - YouTube.MP3) -- C:\Documents and Settings\BANIOK\Pulpit\PSY - GANGNAM STYLE (강남스타일) M_V - YouTube.MP3 [2013-01-01 18:01:48 | 006,053,251 | ---- | C] ()(C:\Documents and Settings\BANIOK\Pulpit\PSY - GANGNAM STYLE (?????) M_V - YouTube.MP3) -- C:\Documents and Settings\BANIOK\Pulpit\PSY - GANGNAM STYLE (강남스타일) M_V - YouTube.MP3 < End of report > A to Extras.Txt OTL Extras logfile created on: 2013-01-26 18:25:57 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\BANIOK\Moje dokumenty\Downloads Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 0,39 Gb Available Physical Memory | 19,72% Memory free 3,85 Gb Paging File | 2,01 Gb Available in Paging File | 52,17% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 232,88 Gb Total Space | 128,34 Gb Free Space | 55,11% Space Free | Partition Type: NTFS Drive D: | 212,63 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS Computer Name: PIDZIK-6P8XAZI2 | User Name: BANIOK | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* .html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) [HKEY_USERS\S-1-5-21-1801674531-1547161642-839522115-1004\SOFTWARE\Classes\<extension>] .html [@ = ChromeHTML] -- Reg Error: Key error. File not found [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* exefile [open] -- "%1" %* htmlfile [edit] -- Reg Error: Key error. http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.) https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.) Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.) Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 4 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 0 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008 [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation) "%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation) "%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation) "C:\WINDOWS\system32\PnkBstrA.exe" = C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA -- () "C:\WINDOWS\system32\PnkBstrB.exe" = C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB -- () "C:\Program Files\KONAMI\Pro Evolution Soccer 2010\pes2010.exe" = C:\Program Files\KONAMI\Pro Evolution Soccer 2010\pes2010.exe:*:Enabled:Pro Evolution Soccer 2010 -- (Konami Digital Entertainment Co., Ltd.) "C:\MicrovoltsDownloader\MVDownloader.exe" = C:\MicrovoltsDownloader\MVDownloader.exe:*:Enabled:Microvolts_Downloader "C:\Program Files\Sports Interactive\Football Manager 2011\fm.exe" = C:\Program Files\Sports Interactive\Football Manager 2011\fm.exe:*:Disabled:Football Manager 2011 "C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe" = C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM) -- () "C:\Program Files\Steam\steamapps\matipeti\counter-strike\hl.exe" = C:\Program Files\Steam\steamapps\matipeti\counter-strike\hl.exe:*:Enabled:Counter-Strike "C:\Program Files\IncrediMail\Bin\IncMail.exe" = C:\Program Files\IncrediMail\Bin\IncMail.exe:*:Enabled:IncrediMail "C:\Program Files\IncrediMail\Bin\ImApp.exe" = C:\Program Files\IncrediMail\Bin\ImApp.exe:*:Enabled:IncrediMail "C:\Program Files\IncrediMail\Bin\ImpCnt.exe" = C:\Program Files\IncrediMail\Bin\ImpCnt.exe:*:Enabled:IncrediMail "C:\Program Files\Steam\steamapps\b7df1d96e2d42a1e51484cd2f3821d9d\counter-strike\hl.exe" = C:\Program Files\Steam\steamapps\b7df1d96e2d42a1e51484cd2f3821d9d\counter-strike\hl.exe:*:Enabled:Counter-Strike "C:\Program Files\EslWire\wire.exe" = C:\Program Files\EslWire\wire.exe:*:Enabled:ESL Wire Client -- (Turtle Entertainment GmbH) "C:\WINDOWS\system32\msiexec.exe" = C:\WINDOWS\system32\msiexec.exe:*:Enabled:UpdateManagerSetup -- (Microsoft Corporation) "C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe" = C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe:*:Enabled:SweetPacksUpdateManager -- (SweetIM Technologies Ltd.) "C:\Program Files\Steam\Steam.exe" = C:\Program Files\Steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation) "C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.) "C:\Program Files\TeamViewer\Version8\TeamViewer.exe" = C:\Program Files\TeamViewer\Version8\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application -- (TeamViewer GmbH) "C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe" = C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service -- (TeamViewer GmbH) "C:\Program Files\Steam\steamapps\spam46\counter-strike\hl.exe" = C:\Program Files\Steam\steamapps\spam46\counter-strike\hl.exe:*:Enabled:Counter-Strike -- (Valve) [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{02B244A2-7F6A-42E8-A36F-8C385D7A1625}" = Gothic III "{02E43EC2-6B1C-45B5-9E48-941C3E1B204A}_is1" = System.Data.SQLite v1.0.81.0 "{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam "{0965F857-DAAD-4F93-8054-0E2EC3C8C5B0}" = SweetIM for Messenger 3.6 "{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended "{106B4413-ACBB-4CDE-8707-587DB9BD77EC}" = LogMeIn Hamachi "{11CD2C42-7459-46AD-8DCF-B2240D89DB61}}_is1" = OpenStealth 1.76 "{1B2AC353-FEA2-47FA-A058-5C64E443FB80}}_is1" = OpenStealth 1.28 "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{26A24AE4-039D-4CA4-87B4-2F83216025FF}" = Java(TM) 6 Update 25 "{283FFB23-8751-4B08-ACB8-5E0F8BCF7727}" = Pro Evolution Soccer 2010 "{2D43FD89-B225-4334-B4AA-0983400BE61B}" = Windows Presentation Foundation Language Pack (PLK) "{2F603A45-D956-496B-81B5-50D782424976}" = SweetPacks Toolbar for Internet Explorer 4.4 "{323AABD4-E4A8-4A03-8CFF-ABE09490A6E2}}_is1" = OpenStealth 1.16 "{32A22D9F-97A2-4F40-92AA-457213DB1832}}_is1" = OpenStealth 1.21 "{3347F67B-5F7F-4A8A-A35C-5BFFAFBC369C}}_is1" = OpenStealth 1.79 "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile "{3EADB6FA-E36F-40EE-9225-3AF4EE940DBB}}_is1" = OpenStealth 1.18 "{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis "{495998C4-FC8A-4302-82E0-53DE4D7A8F56}" = Windows Communication Foundation Language Pack - PLK "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4D15A64D-4BB9-463F-A852-4E12B2ED2D27}}_is1" = OpenStealth 1.26 "{52DB1748-8594-4F2D-854A-6AD64649BE97}}_is1" = OpenStealth 1.19 "{553C904F-57A2-4113-888E-BA0C3D1C69C0}" = Microsoft VC9 runtime libraries "{57713539-DD5C-4688-9EDF-72D99B243E22}}_is1" = OpenStealth 1.75 "{5AF71003-1797-4D93-9F37-4F2125CBF539}" = Microsoft .NET Framework 2.0 Language Pack - PLK "{5E7A8F05-013C-44FD-B450-5434CA581098}_is1" = MicroVolts "{6286318B-4156-47DC-9603-803BA7DB5D0E}}_is1" = OpenStealth 1.77 "{698ACE45-B941-4066-8310-6A795077C9A3}}_is1" = OpenStealth 1.20 "{6FB6D550-DDC4-4996-9CDF-91C34F0A4C4A}" = Gothic II - Noc Kruka "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{73FF293D-53BE-4745-873D-CA80EB7E7036}}_is1" = OpenStealth 1.22 "{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo "{79072636-0B86-4C92-885C-EC1024D34460}}_is1" = OpenStealth 1.27 "{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}" = NVIDIA nTune "{815CEA4A-97DC-4FB4-9415-A84174C1DE7E}}_is1" = OpenStealth 1.78 "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar "{889DF117-14D1-44EE-9F31-C5FB5D47F68B}" = Yontoo 1.10.02 "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8B743AA0-53B2-11D2-808A-00600895FB43}" = Heroes of Might and Magic III - Złota Edycja "{8C3727F2-8E37-49E4-820C-03B1677F53B6}" = Twierdza Krzyżowiec "{9066A404-CD62-4CC0-A089-A1554F960791}}_is1" = OpenStealth 1.23 "{90840409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Excel Viewer 2003 "{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch "{95120000-003F-0415-0000-0000000FF1CE}" = Microsoft Office Excel Viewer "{98061C12-46D0-4FA3-B895-B4ABEBCCCDE7}}_is1" = OpenStealth 1.14 "{995973ED-3980-4FA9-B975-EE0DAEEF2393}}_is1" = OpenStealth 1.15 "{99BEB67F-B288-44F5-8B2A-23F5A52FA1AE}_is1" = Universal AntiCheat 3 v1.068 "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{A5355F15-F98B-4704-9BAE-E53B9FE48F48}" = SDFormatter "{A7914F46-B8EF-4205-9F2B-C2C78624EE46}}_is1" = OpenStealth 1.74 "{A8A56F8E-44B5-40DD-A354-45BD33AF843E}}_is1" = OpenStealth 1.80 "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AC76BA86-7AD7-1045-7B44-A95000000001}" = Adobe Reader 9.5.0 - Polish "{AF9DF4B7-5BDE-42F5-94EF-53311B55566B}" = Project IGI2 - Covert Strike "{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panel sterowania NVIDIA 266.58 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Sterownik graficzny 266.58 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 135.50 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Oprogramowanie systemu PhysX 9.10.0514 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application "{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call "{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX "{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation "{BBCC4C9A-14C9-4EE4-9099-DB2C7316666B}" = Sound Blaster 5.1 VX "{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}" = Creative MediaSource 5 "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{C1080852-065E-4991-9260-F3756E3CC182}" = CursorFX "{C9FA44C7-8AC4-46ED-94A5-A12CC7B92D07}}_is1" = IBot 4.22 "{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}" = PlayReady PC Runtime x86 "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{D0B89FDC-1CDB-481C-BF96-6E5C4BA21000}}_is1" = OpenStealth 1.24 "{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}" = GTA San Andreas "{D466F906-72B6-47B7-9213-B1FAF4145D91}}_is1" = OpenStealth 1.17 "{DB76863D-D4D9-4AB3-AFDC-26717BA1E11C}" = Windows Workflow Foundation PL Language Pack "{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM) "{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10 "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{FB697452-8CA4-46B4-98B1-165C922A2EF3}" = Update Manager for SweetPacks 1.0 "{FD593DE6-C3A0-4722-8E86-9DEEF0A93290}" = Microsoft .NET Framework 3.0 Polish Language Pack "18 Wheels of Steel - Across America" = 18 Wheels of Steel - Across America "18 Wheels of Steel: American Long Haul" = 18 Wheels of Steel: American Long Haul "6A1545AE87FC8D98ACA7539CE7AA69DF2A5C7E1C" = Pakiet sterowników systemu Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0) "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "avast" = avast! Free Antivirus "AVG Secure Search" = AVG Security Toolbar "BabylonToolbar" = Babylon toolbar on IE "CCleaner" = CCleaner "Cheat Engine 6.2_is1" = Cheat Engine 6.2 "CheatEngine DB Toolbar Toolbar" = CheatEngine DB Toolbar Toolbar "CPUID HWMonitor_is1" = CPUID HWMonitor 1.21 "Creative Software AutoUpdate" = Creative Software AutoUpdate "CursorFX" = CursorFX "DAEMON Tools Lite" = DAEMON Tools Lite "DAEMON Tools Toolbar" = DAEMON Tools Toolbar "DBDB2B2E231D0260DB18F8EAFCA6C8AE7C206629" = Pakiet sterowników systemu Windows - Sagem, SA (SG762_XP) Net (10/28/2005 6.3.0.0) "DealPly" = DealPly "Deluxe Ski Jump 3_is1" = Deluxe Ski Jump 3 v1.7.0 "eMusic Promotion" = 50 FREE MP3s +1 Free Audiobook! "ESL Wire_is1" = ESL Wire 1.15.2 "EVEREST Home Edition_is1" = EVEREST Home Edition v2.20 "ffdshow_is1" = ffdshow v1.1.3836 [2011-05-02] "Gadu-Gadu" = Gadu-Gadu 7.0 "Gadu-Gadu 10" = Gadu-Gadu 10 "GIMP-2_is1" = GIMP 2.8.0 "Google Chrome" = Google Chrome "ie8" = Windows Internet Explorer 8 "InstallShield_{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}" = NVIDIA nTune "InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch "InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM) "ipla" = ipla 2.4 "IrfanView" = IrfanView (remove only) "LiveVDO plugin" = LiveVDO plugin 1.3 "LogMeIn Hamachi" = LogMeIn Hamachi "Lomsel Shutdown_is1" = Lomsel Shutdown 1.05 "Microsoft .NET Framework 2.0 Language Pack - PLK" = Microsoft .NET Framework 2.0 — pakiet języka polskiego "Microsoft .NET Framework 3.0 Polish Language Pack" = Pakiet języka polskiego dla systemu Microsoft .NET Framework 3.0 "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended "mIRC" = mIRC "Mozilla Firefox 7.0.1 (x86 pl)" = Mozilla Firefox 7.0.1 (x86 pl) "Notepad++" = Notepad++ "NVIDIA Drivers" = NVIDIA Drivers "NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager "PunkBusterSvc" = PunkBuster Services "Skoki narciarskie 2003: Polski orzeł" = Skoki narciarskie 2003: Polski orzeł "softonic" = Softonic toolbar on IE and Chrome "SoftwareUpdUtility" = Download Updater (AOL Inc.) "Space Hack_is1" = Space Hack "Steam App 10" = Counter-Strike "TeamSpeak 3 Client" = TeamSpeak 3 Client "TeamViewer 8" = TeamViewer 8 "Totalcmd" = Total Commander (Remove or Repair) "V9Software" = V9 HomeTool "vShare.tv plugin" = vShare.tv plugin 1.3 "Winamp" = Winamp "Winamp Toolbar" = Winamp Toolbar "Winamp3" = Winamp3 (remove only) "Windows Media Format Runtime" = Windows Media Format 11 runtime "Windows XP Service Pack" = Windows XP Service Pack 3 "WinRAR archiver" = WinRAR archiver "WinZip" = WinZip "WMFDist11" = Windows Media Format 11 runtime "Xfire" = Xfire (remove only) "XpsEPSC" = XML Paper Specification Shared Components Pack 1.0 "XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0 [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-1801674531-1547161642-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{79A765E1-C399-405B-85AF-466F52E918B0}" = Ask Toolbar Updater "GG" = GG "PDF Reader" = PDF Reader "Power Loader" = Power Challenge Game Plugin "Winamp Detect" = Detektor Winampa "Winamp Toolbar" = Winamp Toolbar [color=#E56717]========== Last 20 Event Log Errors ==========[/color] [ Application Events ] Error - 2013-01-26 05:49:34 | Computer Name = PIDZIK-6P8XAZI2 | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd hwmonitor(33495).exe, wersja 0.0.0.0, moduł powodujący błąd unknown, wersja 0.0.0.0, adres błędu 0x00000000. Error - 2013-01-26 06:50:27 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490 Description = wuauclt (1340) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb" w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error - 2013-01-26 06:50:37 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490 Description = wuauclt (4776) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb" w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error - 2013-01-26 06:50:48 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490 Description = wuauclt (824) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb" w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error - 2013-01-26 06:50:58 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490 Description = wuauclt (4656) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb" w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error - 2013-01-26 06:51:09 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490 Description = wuauclt (5876) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb" w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error - 2013-01-26 06:51:19 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490 Description = wuauclt (6072) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb" w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error - 2013-01-26 06:51:30 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490 Description = wuauclt (316) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb" w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error - 2013-01-26 06:51:40 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490 Description = wuauclt (2552) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb" w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error - 2013-01-26 06:51:51 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490 Description = wuauclt (1388) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb" w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). [ System Events ] Error - 2013-01-04 09:49:49 | Computer Name = PIDZIK-6P8XAZI2 | Source = Dhcp | ID = 1002 Description = Adres IP połączenia 192.168.1.97 dla karty sieciowej o adresie 001A4DF9A8F8 został zabroniony przez serwer DHCP 192.168.1.1 (Serwer DHCP wysłał komunikat DHCPNACK). Error - 2013-01-04 17:06:26 | Computer Name = PIDZIK-6P8XAZI2 | Source = Service Control Manager | ID = 7034 Description = Usługa vToolbarUpdater13.3.2 niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error - 2013-01-25 10:09:32 | Computer Name = PIDZIK-6P8XAZI2 | Source = Dhcp | ID = 1002 Description = Adres IP połączenia 192.168.1.237 dla karty sieciowej o adresie 001A4DF9A8F8 został zabroniony przez serwer DHCP 192.168.1.1 (Serwer DHCP wysłał komunikat DHCPNACK). < End of report > OTL Extras logfile created on: 2013-01-26 18:25:57 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\BANIOK\Moje dokumenty\Downloads Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 0,39 Gb Available Physical Memory | 19,72% Memory free 3,85 Gb Paging File | 2,01 Gb Available in Paging File | 52,17% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 232,88 Gb Total Space | 128,34 Gb Free Space | 55,11% Space Free | Partition Type: NTFS Drive D: | 212,63 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS Computer Name: PIDZIK-6P8XAZI2 | User Name: BANIOK | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* .html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) [HKEY_USERS\S-1-5-21-1801674531-1547161642-839522115-1004\SOFTWARE\Classes\<extension>] .html [@ = ChromeHTML] -- Reg Error: Key error. File not found [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* exefile [open] -- "%1" %* htmlfile [edit] -- Reg Error: Key error. http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.) https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.) Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.) Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 4 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 0 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008 [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation) "%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation) "%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation) "C:\WINDOWS\system32\PnkBstrA.exe" = C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA -- () "C:\WINDOWS\system32\PnkBstrB.exe" = C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB -- () "C:\Program Files\KONAMI\Pro Evolution Soccer 2010\pes2010.exe" = C:\Program Files\KONAMI\Pro Evolution Soccer 2010\pes2010.exe:*:Enabled:Pro Evolution Soccer 2010 -- (Konami Digital Entertainment Co., Ltd.) "C:\MicrovoltsDownloader\MVDownloader.exe" = C:\MicrovoltsDownloader\MVDownloader.exe:*:Enabled:Microvolts_Downloader "C:\Program Files\Sports Interactive\Football Manager 2011\fm.exe" = C:\Program Files\Sports Interactive\Football Manager 2011\fm.exe:*:Disabled:Football Manager 2011 "C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe" = C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM) -- () "C:\Program Files\Steam\steamapps\matipeti\counter-strike\hl.exe" = C:\Program Files\Steam\steamapps\matipeti\counter-strike\hl.exe:*:Enabled:Counter-Strike "C:\Program Files\IncrediMail\Bin\IncMail.exe" = C:\Program Files\IncrediMail\Bin\IncMail.exe:*:Enabled:IncrediMail "C:\Program Files\IncrediMail\Bin\ImApp.exe" = C:\Program Files\IncrediMail\Bin\ImApp.exe:*:Enabled:IncrediMail "C:\Program Files\IncrediMail\Bin\ImpCnt.exe" = C:\Program Files\IncrediMail\Bin\ImpCnt.exe:*:Enabled:IncrediMail "C:\Program Files\Steam\steamapps\b7df1d96e2d42a1e51484cd2f3821d9d\counter-strike\hl.exe" = C:\Program Files\Steam\steamapps\b7df1d96e2d42a1e51484cd2f3821d9d\counter-strike\hl.exe:*:Enabled:Counter-Strike "C:\Program Files\EslWire\wire.exe" = C:\Program Files\EslWire\wire.exe:*:Enabled:ESL Wire Client -- (Turtle Entertainment GmbH) "C:\WINDOWS\system32\msiexec.exe" = C:\WINDOWS\system32\msiexec.exe:*:Enabled:UpdateManagerSetup -- (Microsoft Corporation) "C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe" = C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe:*:Enabled:SweetPacksUpdateManager -- (SweetIM Technologies Ltd.) "C:\Program Files\Steam\Steam.exe" = C:\Program Files\Steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation) "C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.) "C:\Program Files\TeamViewer\Version8\TeamViewer.exe" = C:\Program Files\TeamViewer\Version8\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application -- (TeamViewer GmbH) "C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe" = C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service -- (TeamViewer GmbH) "C:\Program Files\Steam\steamapps\spam46\counter-strike\hl.exe" = C:\Program Files\Steam\steamapps\spam46\counter-strike\hl.exe:*:Enabled:Counter-Strike -- (Valve) [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{02B244A2-7F6A-42E8-A36F-8C385D7A1625}" = Gothic III "{02E43EC2-6B1C-45B5-9E48-941C3E1B204A}_is1" = System.Data.SQLite v1.0.81.0 "{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam "{0965F857-DAAD-4F93-8054-0E2EC3C8C5B0}" = SweetIM for Messenger 3.6 "{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended "{106B4413-ACBB-4CDE-8707-587DB9BD77EC}" = LogMeIn Hamachi "{11CD2C42-7459-46AD-8DCF-B2240D89DB61}}_is1" = OpenStealth 1.76 "{1B2AC353-FEA2-47FA-A058-5C64E443FB80}}_is1" = OpenStealth 1.28 "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{26A24AE4-039D-4CA4-87B4-2F83216025FF}" = Java(TM) 6 Update 25 "{283FFB23-8751-4B08-ACB8-5E0F8BCF7727}" = Pro Evolution Soccer 2010 "{2D43FD89-B225-4334-B4AA-0983400BE61B}" = Windows Presentation Foundation Language Pack (PLK) "{2F603A45-D956-496B-81B5-50D782424976}" = SweetPacks Toolbar for Internet Explorer 4.4 "{323AABD4-E4A8-4A03-8CFF-ABE09490A6E2}}_is1" = OpenStealth 1.16 "{32A22D9F-97A2-4F40-92AA-457213DB1832}}_is1" = OpenStealth 1.21 "{3347F67B-5F7F-4A8A-A35C-5BFFAFBC369C}}_is1" = OpenStealth 1.79 "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile "{3EADB6FA-E36F-40EE-9225-3AF4EE940DBB}}_is1" = OpenStealth 1.18 "{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis "{495998C4-FC8A-4302-82E0-53DE4D7A8F56}" = Windows Communication Foundation Language Pack - PLK "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4D15A64D-4BB9-463F-A852-4E12B2ED2D27}}_is1" = OpenStealth 1.26 "{52DB1748-8594-4F2D-854A-6AD64649BE97}}_is1" = OpenStealth 1.19 "{553C904F-57A2-4113-888E-BA0C3D1C69C0}" = Microsoft VC9 runtime libraries "{57713539-DD5C-4688-9EDF-72D99B243E22}}_is1" = OpenStealth 1.75 "{5AF71003-1797-4D93-9F37-4F2125CBF539}" = Microsoft .NET Framework 2.0 Language Pack - PLK "{5E7A8F05-013C-44FD-B450-5434CA581098}_is1" = MicroVolts "{6286318B-4156-47DC-9603-803BA7DB5D0E}}_is1" = OpenStealth 1.77 "{698ACE45-B941-4066-8310-6A795077C9A3}}_is1" = OpenStealth 1.20 "{6FB6D550-DDC4-4996-9CDF-91C34F0A4C4A}" = Gothic II - Noc Kruka "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{73FF293D-53BE-4745-873D-CA80EB7E7036}}_is1" = OpenStealth 1.22 "{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo "{79072636-0B86-4C92-885C-EC1024D34460}}_is1" = OpenStealth 1.27 "{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}" = NVIDIA nTune "{815CEA4A-97DC-4FB4-9415-A84174C1DE7E}}_is1" = OpenStealth 1.78 "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar "{889DF117-14D1-44EE-9F31-C5FB5D47F68B}" = Yontoo 1.10.02 "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8B743AA0-53B2-11D2-808A-00600895FB43}" = Heroes of Might and Magic III - Złota Edycja "{8C3727F2-8E37-49E4-820C-03B1677F53B6}" = Twierdza Krzyżowiec "{9066A404-CD62-4CC0-A089-A1554F960791}}_is1" = OpenStealth 1.23 "{90840409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Excel Viewer 2003 "{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch "{95120000-003F-0415-0000-0000000FF1CE}" = Microsoft Office Excel Viewer "{98061C12-46D0-4FA3-B895-B4ABEBCCCDE7}}_is1" = OpenStealth 1.14 "{995973ED-3980-4FA9-B975-EE0DAEEF2393}}_is1" = OpenStealth 1.15 "{99BEB67F-B288-44F5-8B2A-23F5A52FA1AE}_is1" = Universal AntiCheat 3 v1.068 "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{A5355F15-F98B-4704-9BAE-E53B9FE48F48}" = SDFormatter "{A7914F46-B8EF-4205-9F2B-C2C78624EE46}}_is1" = OpenStealth 1.74 "{A8A56F8E-44B5-40DD-A354-45BD33AF843E}}_is1" = OpenStealth 1.80 "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AC76BA86-7AD7-1045-7B44-A95000000001}" = Adobe Reader 9.5.0 - Polish "{AF9DF4B7-5BDE-42F5-94EF-53311B55566B}" = Project IGI2 - Covert Strike "{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panel sterowania NVIDIA 266.58 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Sterownik graficzny 266.58 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 135.50 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Oprogramowanie systemu PhysX 9.10.0514 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application "{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call "{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX "{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation "{BBCC4C9A-14C9-4EE4-9099-DB2C7316666B}" = Sound Blaster 5.1 VX "{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}" = Creative MediaSource 5 "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{C1080852-065E-4991-9260-F3756E3CC182}" = CursorFX "{C9FA44C7-8AC4-46ED-94A5-A12CC7B92D07}}_is1" = IBot 4.22 "{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}" = PlayReady PC Runtime x86 "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{D0B89FDC-1CDB-481C-BF96-6E5C4BA21000}}_is1" = OpenStealth 1.24 "{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}" = GTA San Andreas "{D466F906-72B6-47B7-9213-B1FAF4145D91}}_is1" = OpenStealth 1.17 "{DB76863D-D4D9-4AB3-AFDC-26717BA1E11C}" = Windows Workflow Foundation PL Language Pack "{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM) "{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10 "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{FB697452-8CA4-46B4-98B1-165C922A2EF3}" = Update Manager for SweetPacks 1.0 "{FD593DE6-C3A0-4722-8E86-9DEEF0A93290}" = Microsoft .NET Framework 3.0 Polish Language Pack "18 Wheels of Steel - Across America" = 18 Wheels of Steel - Across America "18 Wheels of Steel: American Long Haul" = 18 Wheels of Steel: American Long Haul "6A1545AE87FC8D98ACA7539CE7AA69DF2A5C7E1C" = Pakiet sterowników systemu Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0) "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "avast" = avast! Free Antivirus "AVG Secure Search" = AVG Security Toolbar "BabylonToolbar" = Babylon toolbar on IE "CCleaner" = CCleaner "Cheat Engine 6.2_is1" = Cheat Engine 6.2 "CheatEngine DB Toolbar Toolbar" = CheatEngine DB Toolbar Toolbar "CPUID HWMonitor_is1" = CPUID HWMonitor 1.21 "Creative Software AutoUpdate" = Creative Software AutoUpdate "CursorFX" = CursorFX "DAEMON Tools Lite" = DAEMON Tools Lite "DAEMON Tools Toolbar" = DAEMON Tools Toolbar "DBDB2B2E231D0260DB18F8EAFCA6C8AE7C206629" = Pakiet sterowników systemu Windows - Sagem, SA (SG762_XP) Net (10/28/2005 6.3.0.0) "DealPly" = DealPly "Deluxe Ski Jump 3_is1" = Deluxe Ski Jump 3 v1.7.0 "eMusic Promotion" = 50 FREE MP3s +1 Free Audiobook! "ESL Wire_is1" = ESL Wire 1.15.2 "EVEREST Home Edition_is1" = EVEREST Home Edition v2.20 "ffdshow_is1" = ffdshow v1.1.3836 [2011-05-02] "Gadu-Gadu" = Gadu-Gadu 7.0 "Gadu-Gadu 10" = Gadu-Gadu 10 "GIMP-2_is1" = GIMP 2.8.0 "Google Chrome" = Google Chrome "ie8" = Windows Internet Explorer 8 "InstallShield_{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}" = NVIDIA nTune "InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch "InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM) "ipla" = ipla 2.4 "IrfanView" = IrfanView (remove only) "LiveVDO plugin" = LiveVDO plugin 1.3 "LogMeIn Hamachi" = LogMeIn Hamachi "Lomsel Shutdown_is1" = Lomsel Shutdown 1.05 "Microsoft .NET Framework 2.0 Language Pack - PLK" = Microsoft .NET Framework 2.0 — pakiet języka polskiego "Microsoft .NET Framework 3.0 Polish Language Pack" = Pakiet języka polskiego dla systemu Microsoft .NET Framework 3.0 "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended "mIRC" = mIRC "Mozilla Firefox 7.0.1 (x86 pl)" = Mozilla Firefox 7.0.1 (x86 pl) "Notepad++" = Notepad++ "NVIDIA Drivers" = NVIDIA Drivers "NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager "PunkBusterSvc" = PunkBuster Services "Skoki narciarskie 2003: Polski orzeł" = Skoki narciarskie 2003: Polski orzeł "softonic" = Softonic toolbar on IE and Chrome "SoftwareUpdUtility" = Download Updater (AOL Inc.) "Space Hack_is1" = Space Hack "Steam App 10" = Counter-Strike "TeamSpeak 3 Client" = TeamSpeak 3 Client "TeamViewer 8" = TeamViewer 8 "Totalcmd" = Total Commander (Remove or Repair) "V9Software" = V9 HomeTool "vShare.tv plugin" = vShare.tv plugin 1.3 "Winamp" = Winamp "Winamp Toolbar" = Winamp Toolbar "Winamp3" = Winamp3 (remove only) "Windows Media Format Runtime" = Windows Media Format 11 runtime "Windows XP Service Pack" = Windows XP Service Pack 3 "WinRAR archiver" = WinRAR archiver "WinZip" = WinZip "WMFDist11" = Windows Media Format 11 runtime "Xfire" = Xfire (remove only) "XpsEPSC" = XML Paper Specification Shared Components Pack 1.0 "XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0 [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-1801674531-1547161642-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{79A765E1-C399-405B-85AF-466F52E918B0}" = Ask Toolbar Updater "GG" = GG "PDF Reader" = PDF Reader "Power Loader" = Power Challenge Game Plugin "Winamp Detect" = Detektor Winampa "Winamp Toolbar" = Winamp Toolbar [color=#E56717]========== Last 20 Event Log Errors ==========[/color] [ Application Events ] Error - 2013-01-26 05:49:34 | Computer Name = PIDZIK-6P8XAZI2 | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd hwmonitor(33495).exe, wersja 0.0.0.0, moduł powodujący błąd unknown, wersja 0.0.0.0, adres błędu 0x00000000. Error - 2013-01-26 06:50:27 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490 Description = wuauclt (1340) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb" w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error - 2013-01-26 06:50:37 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490 Description = wuauclt (4776) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb" w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error - 2013-01-26 06:50:48 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490 Description = wuauclt (824) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb" w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error - 2013-01-26 06:50:58 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490 Description = wuauclt (4656) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb" w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error - 2013-01-26 06:51:09 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490 Description = wuauclt (5876) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb" w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error - 2013-01-26 06:51:19 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490 Description = wuauclt (6072) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb" w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error - 2013-01-26 06:51:30 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490 Description = wuauclt (316) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb" w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error - 2013-01-26 06:51:40 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490 Description = wuauclt (2552) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb" w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error - 2013-01-26 06:51:51 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490 Description = wuauclt (1388) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb" w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). [ System Events ] Error - 2013-01-04 09:49:49 | Computer Name = PIDZIK-6P8XAZI2 | Source = Dhcp | ID = 1002 Description = Adres IP połączenia 192.168.1.97 dla karty sieciowej o adresie 001A4DF9A8F8 został zabroniony przez serwer DHCP 192.168.1.1 (Serwer DHCP wysłał komunikat DHCPNACK). Error - 2013-01-04 17:06:26 | Computer Name = PIDZIK-6P8XAZI2 | Source = Service Control Manager | ID = 7034 Description = Usługa vToolbarUpdater13.3.2 niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error - 2013-01-25 10:09:32 | Computer Name = PIDZIK-6P8XAZI2 | Source = Dhcp | ID = 1002 Description = Adres IP połączenia 192.168.1.237 dla karty sieciowej o adresie 001A4DF9A8F8 został zabroniony przez serwer DHCP 192.168.1.1 (Serwer DHCP wysłał komunikat DHCPNACK). A extras.txt OTL Extras logfile created on: 2013-01-26 18:25:57 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\BANIOK\Moje dokumenty\Downloads Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 0,39 Gb Available Physical Memory | 19,72% Memory free 3,85 Gb Paging File | 2,01 Gb Available in Paging File | 52,17% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 232,88 Gb Total Space | 128,34 Gb Free Space | 55,11% Space Free | Partition Type: NTFS Drive D: | 212,63 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS Computer Name: PIDZIK-6P8XAZI2 | User Name: BANIOK | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* .html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) [HKEY_USERS\S-1-5-21-1801674531-1547161642-839522115-1004\SOFTWARE\Classes\<extension>] .html [@ = ChromeHTML] -- Reg Error: Key error. File not found [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* exefile [open] -- "%1" %* htmlfile [edit] -- Reg Error: Key error. http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.) https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.) Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.) Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 4 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 0 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008 [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation) "%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation) "%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation) "C:\WINDOWS\system32\PnkBstrA.exe" = C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA -- () "C:\WINDOWS\system32\PnkBstrB.exe" = C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB -- () "C:\Program Files\KONAMI\Pro Evolution Soccer 2010\pes2010.exe" = C:\Program Files\KONAMI\Pro Evolution Soccer 2010\pes2010.exe:*:Enabled:Pro Evolution Soccer 2010 -- (Konami Digital Entertainment Co., Ltd.) "C:\MicrovoltsDownloader\MVDownloader.exe" = C:\MicrovoltsDownloader\MVDownloader.exe:*:Enabled:Microvolts_Downloader "C:\Program Files\Sports Interactive\Football Manager 2011\fm.exe" = C:\Program Files\Sports Interactive\Football Manager 2011\fm.exe:*:Disabled:Football Manager 2011 "C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe" = C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM) -- () "C:\Program Files\Steam\steamapps\matipeti\counter-strike\hl.exe" = C:\Program Files\Steam\steamapps\matipeti\counter-strike\hl.exe:*:Enabled:Counter-Strike "C:\Program Files\IncrediMail\Bin\IncMail.exe" = C:\Program Files\IncrediMail\Bin\IncMail.exe:*:Enabled:IncrediMail "C:\Program Files\IncrediMail\Bin\ImApp.exe" = C:\Program Files\IncrediMail\Bin\ImApp.exe:*:Enabled:IncrediMail "C:\Program Files\IncrediMail\Bin\ImpCnt.exe" = C:\Program Files\IncrediMail\Bin\ImpCnt.exe:*:Enabled:IncrediMail "C:\Program Files\Steam\steamapps\b7df1d96e2d42a1e51484cd2f3821d9d\counter-strike\hl.exe" = C:\Program Files\Steam\steamapps\b7df1d96e2d42a1e51484cd2f3821d9d\counter-strike\hl.exe:*:Enabled:Counter-Strike "C:\Program Files\EslWire\wire.exe" = C:\Program Files\EslWire\wire.exe:*:Enabled:ESL Wire Client -- (Turtle Entertainment GmbH) "C:\WINDOWS\system32\msiexec.exe" = C:\WINDOWS\system32\msiexec.exe:*:Enabled:UpdateManagerSetup -- (Microsoft Corporation) "C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe" = C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe:*:Enabled:SweetPacksUpdateManager -- (SweetIM Technologies Ltd.) "C:\Program Files\Steam\Steam.exe" = C:\Program Files\Steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation) "C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.) "C:\Program Files\TeamViewer\Version8\TeamViewer.exe" = C:\Program Files\TeamViewer\Version8\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application -- (TeamViewer GmbH) "C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe" = C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service -- (TeamViewer GmbH) "C:\Program Files\Steam\steamapps\spam46\counter-strike\hl.exe" = C:\Program Files\Steam\steamapps\spam46\counter-strike\hl.exe:*:Enabled:Counter-Strike -- (Valve) [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{02B244A2-7F6A-42E8-A36F-8C385D7A1625}" = Gothic III "{02E43EC2-6B1C-45B5-9E48-941C3E1B204A}_is1" = System.Data.SQLite v1.0.81.0 "{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam "{0965F857-DAAD-4F93-8054-0E2EC3C8C5B0}" = SweetIM for Messenger 3.6 "{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended "{106B4413-ACBB-4CDE-8707-587DB9BD77EC}" = LogMeIn Hamachi "{11CD2C42-7459-46AD-8DCF-B2240D89DB61}}_is1" = OpenStealth 1.76 "{1B2AC353-FEA2-47FA-A058-5C64E443FB80}}_is1" = OpenStealth 1.28 "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{26A24AE4-039D-4CA4-87B4-2F83216025FF}" = Java(TM) 6 Update 25 "{283FFB23-8751-4B08-ACB8-5E0F8BCF7727}" = Pro Evolution Soccer 2010 "{2D43FD89-B225-4334-B4AA-0983400BE61B}" = Windows Presentation Foundation Language Pack (PLK) "{2F603A45-D956-496B-81B5-50D782424976}" = SweetPacks Toolbar for Internet Explorer 4.4 "{323AABD4-E4A8-4A03-8CFF-ABE09490A6E2}}_is1" = OpenStealth 1.16 "{32A22D9F-97A2-4F40-92AA-457213DB1832}}_is1" = OpenStealth 1.21 "{3347F67B-5F7F-4A8A-A35C-5BFFAFBC369C}}_is1" = OpenStealth 1.79 "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile "{3EADB6FA-E36F-40EE-9225-3AF4EE940DBB}}_is1" = OpenStealth 1.18 "{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis "{495998C4-FC8A-4302-82E0-53DE4D7A8F56}" = Windows Communication Foundation Language Pack - PLK "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4D15A64D-4BB9-463F-A852-4E12B2ED2D27}}_is1" = OpenStealth 1.26 "{52DB1748-8594-4F2D-854A-6AD64649BE97}}_is1" = OpenStealth 1.19 "{553C904F-57A2-4113-888E-BA0C3D1C69C0}" = Microsoft VC9 runtime libraries "{57713539-DD5C-4688-9EDF-72D99B243E22}}_is1" = OpenStealth 1.75 "{5AF71003-1797-4D93-9F37-4F2125CBF539}" = Microsoft .NET Framework 2.0 Language Pack - PLK "{5E7A8F05-013C-44FD-B450-5434CA581098}_is1" = MicroVolts "{6286318B-4156-47DC-9603-803BA7DB5D0E}}_is1" = OpenStealth 1.77 "{698ACE45-B941-4066-8310-6A795077C9A3}}_is1" = OpenStealth 1.20 "{6FB6D550-DDC4-4996-9CDF-91C34F0A4C4A}" = Gothic II - Noc Kruka "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{73FF293D-53BE-4745-873D-CA80EB7E7036}}_is1" = OpenStealth 1.22 "{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo "{79072636-0B86-4C92-885C-EC1024D34460}}_is1" = OpenStealth 1.27 "{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}" = NVIDIA nTune "{815CEA4A-97DC-4FB4-9415-A84174C1DE7E}}_is1" = OpenStealth 1.78 "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar "{889DF117-14D1-44EE-9F31-C5FB5D47F68B}" = Yontoo 1.10.02 "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8B743AA0-53B2-11D2-808A-00600895FB43}" = Heroes of Might and Magic III - Złota Edycja "{8C3727F2-8E37-49E4-820C-03B1677F53B6}" = Twierdza Krzyżowiec "{9066A404-CD62-4CC0-A089-A1554F960791}}_is1" = OpenStealth 1.23 "{90840409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Excel Viewer 2003 "{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch "{95120000-003F-0415-0000-0000000FF1CE}" = Microsoft Office Excel Viewer "{98061C12-46D0-4FA3-B895-B4ABEBCCCDE7}}_is1" = OpenStealth 1.14 "{995973ED-3980-4FA9-B975-EE0DAEEF2393}}_is1" = OpenStealth 1.15 "{99BEB67F-B288-44F5-8B2A-23F5A52FA1AE}_is1" = Universal AntiCheat 3 v1.068 "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{A5355F15-F98B-4704-9BAE-E53B9FE48F48}" = SDFormatter "{A7914F46-B8EF-4205-9F2B-C2C78624EE46}}_is1" = OpenStealth 1.74 "{A8A56F8E-44B5-40DD-A354-45BD33AF843E}}_is1" = OpenStealth 1.80 "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AC76BA86-7AD7-1045-7B44-A95000000001}" = Adobe Reader 9.5.0 - Polish "{AF9DF4B7-5BDE-42F5-94EF-53311B55566B}" = Project IGI2 - Covert Strike "{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panel sterowania NVIDIA 266.58 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Sterownik graficzny 266.58 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 135.50 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Oprogramowanie systemu PhysX 9.10.0514 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application "{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call "{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX "{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation "{BBCC4C9A-14C9-4EE4-9099-DB2C7316666B}" = Sound Blaster 5.1 VX "{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}" = Creative MediaSource 5 "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{C1080852-065E-4991-9260-F3756E3CC182}" = CursorFX "{C9FA44C7-8AC4-46ED-94A5-A12CC7B92D07}}_is1" = IBot 4.22 "{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}" = PlayReady PC Runtime x86 "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{D0B89FDC-1CDB-481C-BF96-6E5C4BA21000}}_is1" = OpenStealth 1.24 "{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}" = GTA San Andreas "{D466F906-72B6-47B7-9213-B1FAF4145D91}}_is1" = OpenStealth 1.17 "{DB76863D-D4D9-4AB3-AFDC-26717BA1E11C}" = Windows Workflow Foundation PL Language Pack "{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM) "{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10 "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{FB697452-8CA4-46B4-98B1-165C922A2EF3}" = Update Manager for SweetPacks 1.0 "{FD593DE6-C3A0-4722-8E86-9DEEF0A93290}" = Microsoft .NET Framework 3.0 Polish Language Pack "18 Wheels of Steel - Across America" = 18 Wheels of Steel - Across America "18 Wheels of Steel: American Long Haul" = 18 Wheels of Steel: American Long Haul "6A1545AE87FC8D98ACA7539CE7AA69DF2A5C7E1C" = Pakiet sterowników systemu Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0) "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "avast" = avast! Free Antivirus "AVG Secure Search" = AVG Security Toolbar "BabylonToolbar" = Babylon toolbar on IE "CCleaner" = CCleaner "Cheat Engine 6.2_is1" = Cheat Engine 6.2 "CheatEngine DB Toolbar Toolbar" = CheatEngine DB Toolbar Toolbar "CPUID HWMonitor_is1" = CPUID HWMonitor 1.21 "Creative Software AutoUpdate" = Creative Software AutoUpdate "CursorFX" = CursorFX "DAEMON Tools Lite" = DAEMON Tools Lite "DAEMON Tools Toolbar" = DAEMON Tools Toolbar "DBDB2B2E231D0260DB18F8EAFCA6C8AE7C206629" = Pakiet sterowników systemu Windows - Sagem, SA (SG762_XP) Net (10/28/2005 6.3.0.0) "DealPly" = DealPly "Deluxe Ski Jump 3_is1" = Deluxe Ski Jump 3 v1.7.0 "eMusic Promotion" = 50 FREE MP3s +1 Free Audiobook! "ESL Wire_is1" = ESL Wire 1.15.2 "EVEREST Home Edition_is1" = EVEREST Home Edition v2.20 "ffdshow_is1" = ffdshow v1.1.3836 [2011-05-02] "Gadu-Gadu" = Gadu-Gadu 7.0 "Gadu-Gadu 10" = Gadu-Gadu 10 "GIMP-2_is1" = GIMP 2.8.0 "Google Chrome" = Google Chrome "ie8" = Windows Internet Explorer 8 "InstallShield_{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}" = NVIDIA nTune "InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch "InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM) "ipla" = ipla 2.4 "IrfanView" = IrfanView (remove only) "LiveVDO plugin" = LiveVDO plugin 1.3 "LogMeIn Hamachi" = LogMeIn Hamachi "Lomsel Shutdown_is1" = Lomsel Shutdown 1.05 "Microsoft .NET Framework 2.0 Language Pack - PLK" = Microsoft .NET Framework 2.0 — pakiet języka polskiego "Microsoft .NET Framework 3.0 Polish Language Pack" = Pakiet języka polskiego dla systemu Microsoft .NET Framework 3.0 "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended "mIRC" = mIRC "Mozilla Firefox 7.0.1 (x86 pl)" = Mozilla Firefox 7.0.1 (x86 pl) "Notepad++" = Notepad++ "NVIDIA Drivers" = NVIDIA Drivers "NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager "PunkBusterSvc" = PunkBuster Services "Skoki narciarskie 2003: Polski orzeł" = Skoki narciarskie 2003: Polski orzeł "softonic" = Softonic toolbar on IE and Chrome "SoftwareUpdUtility" = Download Updater (AOL Inc.) "Space Hack_is1" = Space Hack "Steam App 10" = Counter-Strike "TeamSpeak 3 Client" = TeamSpeak 3 Client "TeamViewer 8" = TeamViewer 8 "Totalcmd" = Total Commander (Remove or Repair) "V9Software" = V9 HomeTool "vShare.tv plugin" = vShare.tv plugin 1.3 "Winamp" = Winamp "Winamp Toolbar" = Winamp Toolbar "Winamp3" = Winamp3 (remove only) "Windows Media Format Runtime" = Windows Media Format 11 runtime "Windows XP Service Pack" = Windows XP Service Pack 3 "WinRAR archiver" = WinRAR archiver "WinZip" = WinZip "WMFDist11" = Windows Media Format 11 runtime "Xfire" = Xfire (remove only) "XpsEPSC" = XML Paper Specification Shared Components Pack 1.0 "XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0 [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-1801674531-1547161642-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{79A765E1-C399-405B-85AF-466F52E918B0}" = Ask Toolbar Updater "GG" = GG "PDF Reader" = PDF Reader "Power Loader" = Power Challenge Game Plugin "Winamp Detect" = Detektor Winampa "Winamp Toolbar" = Winamp Toolbar [color=#E56717]========== Last 20 Event Log Errors ==========[/color] [ Application Events ] Error - 2013-01-26 05:49:34 | Computer Name = PIDZIK-6P8XAZI2 | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd hwmonitor(33495).exe, wersja 0.0.0.0, moduł powodujący błąd unknown, wersja 0.0.0.0, adres błędu 0x00000000. Error - 2013-01-26 06:50:27 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490 Description = wuauclt (1340) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb" w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error - 2013-01-26 06:50:37 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490 Description = wuauclt (4776) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb" w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error - 2013-01-26 06:50:48 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490 Description = wuauclt (824) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb" w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error - 2013-01-26 06:50:58 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490 Description = wuauclt (4656) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb" w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error - 2013-01-26 06:51:09 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490 Description = wuauclt (5876) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb" w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error - 2013-01-26 06:51:19 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490 Description = wuauclt (6072) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb" w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error - 2013-01-26 06:51:30 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490 Description = wuauclt (316) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb" w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error - 2013-01-26 06:51:40 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490 Description = wuauclt (2552) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb" w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error - 2013-01-26 06:51:51 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490 Description = wuauclt (1388) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb" w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). [ System Events ] Error - 2013-01-04 09:49:49 | Computer Name = PIDZIK-6P8XAZI2 | Source = Dhcp | ID = 1002 Description = Adres IP połączenia 192.168.1.97 dla karty sieciowej o adresie 001A4DF9A8F8 został zabroniony przez serwer DHCP 192.168.1.1 (Serwer DHCP wysłał komunikat DHCPNACK). Error - 2013-01-04 17:06:26 | Computer Name = PIDZIK-6P8XAZI2 | Source = Service Control Manager | ID = 7034 Description = Usługa vToolbarUpdater13.3.2 niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error - 2013-01-25 10:09:32 | Computer Name = PIDZIK-6P8XAZI2 | Source = Dhcp | ID = 1002 Description = Adres IP połączenia 192.168.1.237 dla karty sieciowej o adresie 001A4DF9A8F8 został zabroniony przez serwer DHCP 192.168.1.1 (Serwer DHCP wysłał komunikat DHCPNACK). < End of report >
Zayfi komentarz 26 stycznia 2013 komentarz 26 stycznia 2013 Masz strasznie zaśmiecony system. Uruchom OTL i w oknie Własne opcje skanowania/skrypt wklej: [xml]:OTL IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = pl.v9.com/idg/idg_1330794372_759913 IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...ferrer:source?} IE - HKLM\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://startsear.ch/...q={searchTerms} IE - HKLM\..\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}: "URL" = http://startsear.ch/...q={searchTerms} IE - HKLM\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweeti...D-001A4DF9A8F8} IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = pl.v9.com/idg/idg_1330794372_759913 IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com/?l=dis&o=14656 IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (SweetIM Technologies Ltd.) IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{96DACA10-7D49-4A4B-B35B-C4C3E3BE429A}: "URL" = http://websearch.ask...0F-98C710D149FC IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.condui...&ctid=CT2304157 IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{C998C5D1-2B74-4439-BEAD-4E6DD49ADABD}: "URL" = http://search.babylo...00000ff01000001 IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}: "URL" = http://startsear.ch/...q={searchTerms} FF - prefs.js..browser.search.defaultengine: "Ask.com" FF - prefs.js..browser.search.defaultenginename: "Ask.com" FF - prefs.js..browser.search.order.1: "Ask.com" FF - prefs.js..extensions.enabledAddons: ffxtlbr@babylon.com:1.2.0 FF - prefs.js..extensions.enabledAddons: ffxtlbra@softonic.com:1.5.1 FF - prefs.js..extensions.enabledAddons: toolbar@ask.com:3.17.2.34141 FF - prefs.js..sweetim.toolbar.previous.browser.search.defaulturl: "http://search.condui...q={searchTerms}" FF - prefs.js..sweetim.toolbar.previous.browser.search.selectedEngine: "" [2013-01-26 15:22:49 | 000,000,000 | ---D | M] (Ask Toolbar) -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\toolbar@ask.com O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found :Files C:\Program Files\mozilla firefox\searchplugins\avg-secure-search.xml C:\Program Files\mozilla firefox\searchplugins\babylon.xml C:\Program Files\mozilla firefox\searchplugins\v9.xml C:\Documents and Settings\BANIOK\Dane aplikacji\PriceGong C:\Documents and Settings\BANIOK\Dane aplikacji\Softonic :Commands [emptytemp][/xml] Kliknij w Wykonaj skrypt 2. Zpanelu dodaj/usuń programy odinstaluj SweetIM for Messenger 3.6 Ask Toolbar AVG Security Toolbar Softonic toolbar on IE and Chrome V9Software" = V9 HomeTool Winamp Toolbar 3. Po wykonaniu czynności zrób nowy skan OTL i wstaw raport (najlepiej na http://wklej.org)
Zayfi komentarz 26 stycznia 2013 komentarz 26 stycznia 2013 Uruchom OTL i w okno Włąsne opcje skanowania/skrypt wklej: [xml]:OTL IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{0D7562AE-8EF6-416d-A838-AB665251703A}: "URL" = http://start.facemoods.com/?a=dpgppc&s={searchTerms}&f=4 IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://startsear.ch/?aff=2&src=sp&cf=af231868-234c-11e1-8925-001a4df9a8f8&q={searchTerms} IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{1744F8FC-2A9D-4AD4-8C5A-291C24FAC341}: "URL" = http://search.aol.pl/aol/search?s_it=tb50winamp&q={searchTerms} IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5}: "URL" = http://search.babylon.com/?babsrc=SP_ss&q={searchTerms}&mntrId=e40bc2ba00000000000000ff01000001&tlver=1.4.23.10&affID=100607 O2 - BHO: (SweetPacks Browser Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll File not found O2 - BHO: (SMTTB2009 Class) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\CheatEngine DB Toolbar Toolbar\tbcore3.dll File not found O3 - HKLM\..\Toolbar: (CheatEngine DB Toolbar Toolbar) - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files\CheatEngine DB Toolbar Toolbar\tbcore3.dll File not found O3 - HKLM\..\Toolbar: (StartSearchToolBar) - {7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} - C:\Program Files\StartSearch plugin\ssBarLcher.dll (StartSearch Inc.) O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll (Babylon Ltd.) O3 - HKLM\..\Toolbar: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll File not found :Services avgtp :Commands [reboot][/xml] Kliknij w Wykonaj skrypt. 2.Pobierz AdwCleaner i zastosuj w nim opcje skanuj a potem usuń. http://www.bleepingcomputer.com/download/adwcleaner/ 3. Zrób nowy skan OTL i przedstaw raport.
bnkkk komentarz 26 stycznia 2013 Autor komentarz 26 stycznia 2013 (edytowane) http://wklej.org/id/938874/ Odp
Zayfi komentarz 26 stycznia 2013 komentarz 26 stycznia 2013 Zamknij wszystkie przeglądarki koniecznie. Uruchom OTL i w oknie Własne opcje skanowania/skrypt wklej [xml]:OTL FF - prefs.js..browser.search.defaulturl: "http://search.winamp.com/search/search?query={searchTerms}&invocationType=winamp-ff&s_qt=sb&tb_uuid=20120915171157156&tb_oid=25-01-2013&tb_mrud=26-01-2013&query=" FF - prefs.js..extensions.enabledAddons: ffxtlbra@softonic.com:1.5.1 :Files C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\{8b9fe9be-f7dd-451e-ac96-0e568e0ecc10} C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\{c86eb8a9-ccc2-4b6c-b75d-73576ed591bf} C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\engine@conduit.com C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\ffxtlbr@babylon.com C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\ffxtlbra@softonic.com C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\searchplugins\MyStart Search.xml C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\searchplugins\sweetim.xml C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\searchplugins\winamp-web-search.xml :Commands [emptytemp][/xml] Kliknij w Wykonaj skrypt. Po restarcie będzie log z usuwania. Przedstaw go.
Zayfi komentarz 27 stycznia 2013 komentarz 27 stycznia 2013 Uruchom OTL i Kliknij Sprzątanie. Wyczyść foldery Przywracania systemu PPM na Mój komputer > Włąściwości > Przywracanie systemu > zaznacz Wyłącz potem odznacz opcję Zaktualizuj Firefoxa bo masz starą wersję Mozilla Firefox 7.0.1 (x86 pl)" Odinstaluj starą Javę i pobierz najnowszą Niezbyt szczęśliwa konfiguracja dysku. Brak podziału na partycje. [xml]%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 232,88 Gb Total Space | 128,34 Gb Free Space | 55,11% Space Free | Partition Type: NTFS[/xml]
bnkkk komentarz 28 stycznia 2013 Autor komentarz 28 stycznia 2013 Troszke jest ale pozniej bede robil cos na komputerze bardziej bo teraz nie mam czasu to zobacze czy lepiej jest. Komputer zacina sie dalej, dodam rowniez ze uzycie mojego procesora wacha sie od 40 nawet do 100% czasami.
Zayfi komentarz 28 stycznia 2013 komentarz 28 stycznia 2013 Komputer zacina sie dalej, co konkretnie robisz że sie zacina?
bnkkk komentarz 29 stycznia 2013 Autor komentarz 29 stycznia 2013 obojetne co nawet jak chce wlaczyc nowa karte w przegldarce to musze dlugo czekac. Kiedys z cheat engine zbieralem w takiej gierce szybciej palladium to takie gwiazki w ok.90 minut cala ladownie a teraz jak wlaczam to musze 150 minut czekac bo gdy do tego podlatuje to mnie laguje i niby zbieram a nie zbieram. i co?
Zayfi komentarz 30 stycznia 2013 komentarz 30 stycznia 2013 i co? I Avast testowo do deinstalacji. I sprawdzasz jak zachowuje się system.
hixmen komentarz 30 stycznia 2013 komentarz 30 stycznia 2013 Jak deinstalacja Avasta nie poprawi sytuacji to pokaż SMART dysku np. z programu HDTune zakładka Health oraz Info to pokaże czy dysk pracuje w PIO czy DMA.
bnkkk komentarz 2 lutego 2013 Autor komentarz 2 lutego 2013 Przepraszam ze mnie troszke nie bylo :/ Juz bede to deinstalowal Po tej deinstalacji tak jak jzu mowilem dalej zbiera to wolno i zacina sie przy tym zbieraniu nie tak jak kiedys szybko smigalo Co podac z tego programu HDTune?
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.