x-kom hosting

Bardzo wolna praca komputera

bnkkk
utworzono
utworzono

Witam. Moj komputer od kilku dni bardzo wolno chodzi, skanowalem avastem bylo duzo zagrozen dalem je do kwarantanny ale to nic nie pomoglo. Komputer ledwo chodzi za kazdym otworzeniem sie zacina nie wiem co sie dzieje...

Youki
komentarz
komentarz

Podaj pelny config wraz z marka i moca zasilacz, sciagnij program hwmonitor i sprawdz temperatury pdozespolow pod obciazeniem, kiedy ostatni raz czysciles PC, zmieniales paste termoprzewodzaca na procesorze ?

Nastepnie proponuje udac sie do dzialu Bezpieczenstwo , zapoznac sie z przyklejonymi tematami i wkleic odpowiednie logi z OTL i RSiT. 
Pozdrawiam :)

bnkkk
komentarz
komentarz

Tzn ja sie na tym nie znam dokladnie nie wiem jak to mam sprawdzic

Youki
komentarz
komentarz

Odnosnie sprzetu to tutaj jest wszystko dokladnie opisane, zasilacz to musisz odkrecic bok obudowy i przepisac marke z tabliczki znamionowej na zasilaczu, a temperatury to podalem powyzej program odpowiedni. :)

bnkkk
komentarz
komentarz (edytowane)

Temperature czego podac? Bo mam ten program i sa temperatury ale czego podac temerature.



halo

Zayfi
komentarz
komentarz
Temperature czego podac?

Wstaw dwa obrazki z zakładek sensors i system summary

Youki
komentarz
komentarz

karty graficznej oraz proceosra

bnkkk
komentarz
komentarz

TO jest screen z tego programu przy wlaczonych kilku programach

bnkkk
komentarz
komentarz

OTL.txt to tak

 

 

OTL logfile created on: 2013-01-26 18:25:57 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Documents and Settings\BANIOK\Moje dokumenty\Downloads
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
2,00 Gb Total Physical Memory | 0,39 Gb Available Physical Memory | 19,72% Memory free
3,85 Gb Paging File | 2,01 Gb Available in Paging File | 52,17% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 232,88 Gb Total Space | 128,34 Gb Free Space | 55,11% Space Free | Partition Type: NTFS
Drive D: | 212,63 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
 
Computer Name: PIDZIK-6P8XAZI2 | User Name: BANIOK | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2013-01-26 18:24:57 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\BANIOK\Moje dokumenty\Downloads\OTL.exe
PRC - [2013-01-24 19:00:36 | 017,918,976 | ---- | M] (Profibot) -- C:\Program Files\Profibot\OpenStealth 1.80\OpenStealth.exe
PRC - [2013-01-23 16:17:38 | 003,274,008 | ---- | M] (Piriform Ltd) -- C:\Program Files\CCleaner\CCleaner.exe
PRC - [2013-01-18 09:07:04 | 001,248,208 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2012-12-24 00:12:07 | 001,046,984 | ---- | M] () -- C:\Program Files\AVG Secure Search\vprot.exe
PRC - [2012-12-24 00:12:07 | 000,894,920 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\13.3.2\ToolbarUpdater.exe
PRC - [2012-12-17 11:39:02 | 000,615,440 | ---- | M] () -- C:\Program Files\EslWire\service\WireHelperSvc.exe
PRC - [2012-12-14 10:17:04 | 003,467,768 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
PRC - [2012-12-14 10:17:03 | 009,876,472 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version8\TeamViewer.exe
PRC - [2012-12-14 10:08:24 | 000,190,968 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version8\tv_w32.exe
PRC - [2012-12-10 17:29:44 | 001,435,568 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
PRC - [2012-12-04 13:59:40 | 001,354,736 | ---- | M] (Valve Corporation) -- C:\Program Files\Steam\Steam.exe
PRC - [2012-11-08 11:16:48 | 001,394,480 | ---- | M] (CPUID) -- C:\Program Files\CPUID\HWMonitor\HWMonitor.exe
PRC - [2012-10-30 23:50:59 | 004,297,136 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2012-10-30 23:50:59 | 000,044,808 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2011-11-02 13:53:47 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009-11-05 10:05:10 | 000,324,096 | ---- | M] () -- C:\Program Files\Profibot\OpenStealth 1.80\lib\privoxy.exe
PRC - [2008-04-14 21:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007-04-04 14:20:16 | 000,126,976 | ---- | M] (NVIDIA) -- C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe
PRC - [2005-10-31 10:51:52 | 000,057,344 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\SB5.1 VX\Surround Mixer\CTSysVol.exe
PRC - [2005-08-30 19:51:01 | 001,708,032 | ---- | M] (Gadu-Gadu Sp. z oo) -- C:\Program Files\Gadu-Gadu\gg.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2013-01-26 09:50:01 | 002,048,512 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\13012600\algo.dll
MOD - [2013-01-23 21:13:16 | 000,045,056 | ---- | M] () -- C:\Program Files\CCleaner\Lang\lang-1045.dll
MOD - [2013-01-19 09:06:12 | 000,647,168 | ---- | M] () -- C:\Program Files\Steam\sdl.dll
MOD - [2013-01-19 09:05:39 | 020,320,240 | ---- | M] () -- C:\Program Files\Steam\bin\libcef.dll
MOD - [2013-01-19 09:05:36 | 001,100,800 | ---- | M] () -- C:\Program Files\Steam\bin\avcodec-53.dll
MOD - [2013-01-19 09:05:36 | 000,969,640 | ---- | M] () -- C:\Program Files\Steam\bin\chromehtml.dll
MOD - [2013-01-19 09:05:36 | 000,192,000 | ---- | M] () -- C:\Program Files\Steam\bin\avformat-53.dll
MOD - [2013-01-19 09:05:36 | 000,124,416 | ---- | M] () -- C:\Program Files\Steam\bin\avutil-51.dll
MOD - [2013-01-18 09:07:02 | 012,459,472 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\24.0.1312.56\PepperFlash\pepflashplayer.dll
MOD - [2013-01-18 09:07:02 | 000,460,240 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\24.0.1312.56\ppgooglenaclpluginchrome.dll
MOD - [2013-01-18 09:07:01 | 004,012,496 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\24.0.1312.56\pdf.dll
MOD - [2013-01-18 09:06:15 | 000,597,968 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\24.0.1312.56\libglesv2.dll
MOD - [2013-01-18 09:06:15 | 000,124,368 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\24.0.1312.56\libegl.dll
MOD - [2013-01-18 09:06:13 | 001,552,848 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\24.0.1312.56\ffmpegsumo.dll
MOD - [2013-01-08 22:39:10 | 014,586,888 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_146.dll
MOD - [2013-01-08 15:24:34 | 000,020,296 | ---- | M] () -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\{8b9fe9be-f7dd-451e-ac96-0e568e0ecc10}\components\winamp.dll
MOD - [2012-12-24 00:12:08 | 000,137,672 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\13.3.2\SiteSafety.dll
MOD - [2012-12-24 00:12:07 | 001,046,984 | ---- | M] () -- C:\Program Files\AVG Secure Search\vprot.exe
MOD - [2012-12-24 00:12:07 | 000,894,920 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\13.3.2\ToolbarUpdater.exe
MOD - [2012-12-24 00:12:07 | 000,566,728 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\DNTInstaller\13.3.2\avgdttbx.dll
MOD - [2012-12-17 12:23:18 | 000,165,888 | ---- | M] () -- C:\Program Files\EslWire\service\NocIPC32.dll
MOD - [2012-12-17 11:39:02 | 000,615,440 | ---- | M] () -- C:\Program Files\EslWire\service\WireHelperSvc.exe
MOD - [2012-11-12 18:56:20 | 000,126,976 | ---- | M] () -- C:\Program Files\Profibot\OpenStealth 1.80\rt\bin\zip.dll
MOD - [2011-11-02 13:53:45 | 001,833,944 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2011-09-16 02:27:26 | 000,069,632 | ---- | M] () -- C:\Program Files\Profibot\OpenStealth 1.80\rt\bin\java.dll
MOD - [2011-09-16 02:27:20 | 000,020,480 | ---- | M] () -- C:\Program Files\Profibot\OpenStealth 1.80\rt\bin\jetvm\jvm.dll
MOD - [2011-09-16 02:26:50 | 000,176,128 | ---- | M] () -- C:\Program Files\Profibot\OpenStealth 1.80\rt\jetrt\baseline760.dll
MOD - [2011-07-18 22:04:08 | 000,296,448 | ---- | M] () -- C:\Program Files\Notepad++\NppShell_04.dll
MOD - [2010-11-04 07:51:44 | 000,555,624 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\nView\nvShell.dll
MOD - [2010-03-15 10:28:22 | 000,141,824 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2009-11-05 10:05:10 | 000,324,096 | ---- | M] () -- C:\Program Files\Profibot\OpenStealth 1.80\lib\privoxy.exe
MOD - [2009-02-27 18:04:20 | 000,311,296 | ---- | M] () -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.POL
MOD - [2008-04-14 21:50:38 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2007-12-28 09:32:14 | 000,065,536 | ---- | M] () -- C:\WINDOWS\system32\P17.DLL
MOD - [2005-05-24 16:46:33 | 000,032,768 | ---- | M] () -- C:\Program Files\Gadu-Gadu\ggwhook.dll
MOD - [2005-05-24 16:45:44 | 000,405,504 | ---- | M] () -- C:\Program Files\Gadu-Gadu\update.dll
MOD - [2005-05-24 16:45:43 | 000,786,432 | ---- | M] () -- C:\Program Files\Gadu-Gadu\libeay32.dll
MOD - [2005-05-24 16:45:43 | 000,159,744 | ---- | M] () -- C:\Program Files\Gadu-Gadu\ssleay32.dll
MOD - [2005-05-24 16:45:42 | 000,036,864 | ---- | M] () -- C:\Program Files\Gadu-Gadu\Crypto.dll
MOD - [1998-10-17 07:00:00 | 000,033,792 | ---- | M] () -- C:\Program Files\WinZip\WZSHLEXT.DLL
 
 
[color=#E56717]========== Services (SafeList) ==========[/color]
 
SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
SRV - [2013-01-08 22:39:11 | 000,251,400 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012-12-24 00:12:07 | 000,894,920 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\13.3.2\ToolbarUpdater.exe -- (vToolbarUpdater13.3.2)
SRV - [2012-12-17 11:39:02 | 000,615,440 | ---- | M] () [Auto | Running] -- C:\Program Files\EslWire\service\WireHelperSvc.exe -- (EslWireHelper)
SRV - [2012-12-14 10:17:04 | 003,467,768 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe -- (TeamViewer8)
SRV - [2012-12-10 17:29:44 | 001,435,568 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2012-10-30 23:50:59 | 000,044,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2012-07-13 12:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2011-03-16 10:42:06 | 000,407,336 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2007-04-04 14:20:16 | 000,126,976 | ---- | M] (NVIDIA) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe -- (nTuneService)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\XDva399.sys -- (XDva399)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\XDva397.sys -- (XDva397)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\XDva394.sys -- (XDva394)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\XDva391.sys -- (XDva391)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\XDva387.sys -- (XDva387)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] --  -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] --  -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] --  -- (i2omgmt)
DRV - File not found [Kernel | On_Demand | Running] -- C:\DOCUME~1\BANIOK\USTAWI~1\Temp\cpuz136\cpuz136_x32.sys -- (cpuz136)
DRV - File not found [Kernel | System | Stopped] --  -- (Changer)
DRV - [2012-12-24 00:12:08 | 000,026,984 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtpx86.sys -- (avgtp)
DRV - [2012-12-17 11:38:54 | 000,867,344 | ---- | M] (<Turtle Entertainment>) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\ESLWireACD.sys -- (ESLWireAC)
DRV - [2012-10-30 23:51:58 | 000,738,504 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2012-10-30 23:51:58 | 000,361,032 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2012-10-30 23:51:58 | 000,054,232 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2012-10-30 23:51:58 | 000,035,928 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (AswRdr)
DRV - [2012-10-30 23:51:57 | 000,097,608 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2012-10-30 23:51:56 | 000,025,256 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2012-10-30 23:51:56 | 000,021,256 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2012-01-24 13:50:08 | 000,024,504 | ---- | M] (Turtle Entertainment GmbH) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ESLvnic.sys -- (ESLvnic1)
DRV - [2011-09-20 17:40:06 | 000,281,760 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2011-09-20 17:40:06 | 000,025,888 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2011-04-21 10:39:20 | 000,015,600 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\gdrv.sys -- (gdrv)
DRV - [2011-04-18 08:53:21 | 000,218,688 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2009-03-18 16:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2007-12-28 04:26:01 | 001,135,104 | R--- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\P17.sys -- (P17)
DRV - [2007-09-05 10:31:30 | 004,611,072 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService)
DRV - [2007-06-28 11:46:42 | 000,020,480 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2007-06-28 11:46:40 | 000,045,824 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2007-04-04 14:21:00 | 000,006,912 | ---- | M] (NVidia Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\nvoclock.sys -- (NVR0Dev)
DRV - [2006-06-18 22:51:32 | 000,043,520 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2006-01-19 17:33:26 | 000,402,432 | R--- | M] (ZyDAS Technology Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WlanBZXP.sys -- (SG762_XP)
DRV - [2005-01-10 11:15:30 | 000,106,496 | R--- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctoss2k.sys -- (ossrv)
DRV - [2005-01-10 11:15:24 | 000,138,752 | R--- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctsfm2k.sys -- (ctsfm2k)
DRV - [2003-09-06 14:37:22 | 000,062,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\prohlp02.sys -- (prohlp02)
DRV - [2003-09-06 13:27:06 | 000,004,832 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sfhlp01.sys -- (sfhlp01)
DRV - [2003-09-06 13:25:52 | 000,051,744 | ---- | M] (Protection Technology) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\prodrv06.sys -- (prodrv06)
DRV - [2003-09-06 13:22:08 | 000,006,944 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\prosync1.sys -- (prosync1)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = pl.v9.com/idg/idg_1330794372_759913
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com/cheatengine/{82D200FC-8154-4A89-A0A6-C1D55F84052E}
IE - HKLM\..\SearchScopes,DefaultScope = {EEE6C360-6118-11DC-9C72-001320C79847}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKLM\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://startsear.ch/?aff=2&src=sp&cf=af231868-234c-11e1-8925-001a4df9a8f8&q={searchTerms}
IE - HKLM\..\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}: "URL" = http://startsear.ch/?aff=1&src=sp&cf=af231868-234c-11e1-8925-001a4df9a8f8&q={searchTerms}
IE - HKLM\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?src=6&q={searchTerms}&barid={A6BFD75E-F0EA-11E0-883D-001A4DF9A8F8}
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = pl.v9.com/idg/idg_1330794372_759913
IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com/?l=dis&o=14656
IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (SweetIM Technologies Ltd.)
IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}
IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{0D7562AE-8EF6-416d-A838-AB665251703A}: "URL" = http://start.facemoods.com/?a=dpgppc&s={searchTerms}&f=4
IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://startsear.ch/?aff=2&src=sp&cf=af231868-234c-11e1-8925-001a4df9a8f8&q={searchTerms}
IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{1744F8FC-2A9D-4AD4-8C5A-291C24FAC341}: "URL" = http://search.aol.pl/aol/search?s_it=tb50winamp&q={searchTerms}
IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5}: "URL" = http://search.babylon.com/?babsrc=SP_ss&q={searchTerms}&mntrId=e40bc2ba00000000000000ff01000001&tlver=1.4.23.10&affID=100607
IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.com/search?cid={5D6A603F-16C5-41B4-8378-C4B8853832B4}&mid=7b82c1c2436c47d0ae5bd1530b1d410b-be8161eaab38a64d10cc9a5e9cf9f13fbce84f54&lang=pl&ds=xn011&pr=sa&d=2012-12-24 00:12:35&v=13.3.0.17&sap=dsp&q={searchTerms}
IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}: "URL" = http://www.bigseekpro.com/search/browser/cheatengine/{82D200FC-8154-4A89-A0A6-C1D55F84052E}?q={searchTerms}
IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2304157
IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{C998C5D1-2B74-4439-BEAD-4E6DD49ADABD}: "URL" = http://search.babylon.com/web/{searchTerms}?babsrc=SP_ss&affID=1101316&mntrId=e40bc2ba00000000000000ff01000001
IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}: "URL" = http://startsear.ch/?aff=1&src=sp&cf=af231868-234c-11e1-8925-001a4df9a8f8&q={searchTerms}
IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{D6367094-2014-4A44-9997-350973B82917}: "URL" = http://mystart.incredimail.com/mb68/?search={searchTerms}&loc=search_box&u=92823396114339511
IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{FD8C2125-4C66-4172-BE02-FE666D7BE362}: "URL" = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.defaultthis.engineName: "XfireXO Customized Web Search"
FF - prefs.js..browser.search.defaulturl: ""
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.com/"
FF - prefs.js..extensions.enabledAddons: {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:5.6.0.8442
FF - prefs.js..extensions.enabledAddons: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledAddons: {EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}:2.0
FF - prefs.js..extensions.enabledAddons: ffxtlbr@babylon.com:1.2.0
FF - prefs.js..extensions.enabledAddons: plugin@yontoo.com:1.20.00
FF - prefs.js..extensions.enabledAddons: ffxtlbra@softonic.com:1.5.1
FF - prefs.js..extensions.enabledAddons: {75656794-AB59-4712-BFBC-5D816D56F3BC}:1.1.8
FF - prefs.js..extensions.enabledAddons: {c86eb8a9-ccc2-4b6c-b75d-73576ed591bf}:3.16.0.3
FF - prefs.js..extensions.enabledAddons: {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0}:3.16.0.100
FF - prefs.js..extensions.enabledAddons: {51a86bb3-6602-4c85-92a5-130ee4864f13}:3.16.0.100
FF - prefs.js..extensions.enabledAddons: {5e5ab302-7f65-44cd-8211-c1d4caaccea3}:3.16.0.100
FF - prefs.js..extensions.enabledAddons: {EEE6C361-6118-11DC-9C72-001320C79847}:1.9.0.0
FF - prefs.js..extensions.enabledAddons: {8b9fe9be-f7dd-451e-ac96-0e568e0ecc10}:5.218.1.9171
FF - prefs.js..extensions.enabledAddons: toolbar@ask.com:3.17.2.34141
FF - prefs.js..network.proxy.backup.ftp: "127.0.0.1"
FF - prefs.js..network.proxy.backup.ftp_port: 3128
FF - prefs.js..network.proxy.backup.socks: "127.0.0.1"
FF - prefs.js..network.proxy.backup.socks_port: 3128
FF - prefs.js..network.proxy.backup.ssl: "127.0.0.1"
FF - prefs.js..network.proxy.backup.ssl_port: 3128
FF - prefs.js..network.proxy.ftp: "127.0.0.1"
FF - prefs.js..network.proxy.ftp_port: 3128
FF - prefs.js..network.proxy.http: "127.0.0.1"
FF - prefs.js..network.proxy.http_port: 3128
FF - prefs.js..network.proxy.share_proxy_settings: true
FF - prefs.js..network.proxy.socks: "127.0.0.1"
FF - prefs.js..network.proxy.socks_port: 3128
FF - prefs.js..network.proxy.ssl: "127.0.0.1"
FF - prefs.js..network.proxy.ssl_port: 3128
FF - prefs.js..network.proxy.type: 1
FF - prefs.js..sweetim.toolbar.previous.browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2304157&SearchSource=3&q={searchTerms}"
FF - prefs.js..sweetim.toolbar.previous.browser.search.selectedEngine: ""
FF - prefs.js..browser.startup.homepage: "http://www.esl.eu/pl/#/pl/player/5343490/"
FF - prefs.js..sweetim.toolbar.previous.keyword.URL: ""
 
FF - user.js..browser.startup.homepage: "http://www.google.com/"
FF - user.js..browser.search.selectedEngine: "Google"
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_146.dll ()
FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\13.3.2\\npsitesafety.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@powerchallenge.com/PowerLoader: C:\DOCUME~1\BANIOK\DANEAP~1\POWERC~1\nppowerloader.dll (Power Challenge Sweden AB)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\avg@toolbar: C:\Documents and Settings\All Users\Dane aplikacji\AVG Secure Search\FireFoxExt\13.3.0.17 [2012-12-24 00:12:40 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-01-25 19:04:10 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-11-02 13:53:49 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-09-15 18:11:57 | 000,000,000 | ---D | M]
 
[2011-04-16 07:58:03 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Extensions
[2013-01-26 10:50:26 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions
[2012-12-31 09:10:21 | 000,000,000 | ---D | M] (BrotherSoft Extreme Community Toolbar) -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\{51a86bb3-6602-4c85-92a5-130ee4864f13}
[2013-01-01 11:29:24 | 000,000,000 | ---D | M] (XfireXO Community Toolbar) -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\{5e5ab302-7f65-44cd-8211-c1d4caaccea3}
[2012-05-20 14:49:18 | 000,000,000 | ---D | M] (CheatEngine DB Toolbar Toolbar) -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\{75656794-AB59-4712-BFBC-5D816D56F3BC}
[2013-01-11 23:30:27 | 000,000,000 | ---D | M] ("Winamp Toolbar") -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\{8b9fe9be-f7dd-451e-ac96-0e568e0ecc10}
[2012-11-11 11:19:59 | 000,000,000 | ---D | M] (ST-Polska Community Toolbar) -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\{c86eb8a9-ccc2-4b6c-b75d-73576ed591bf}
[2012-12-31 09:10:32 | 000,000,000 | ---D | M] (IncrediMail MediaBar 2 Community Toolbar) -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0}
[2011-11-26 15:53:57 | 000,000,000 | ---D | M] (DealPly) -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}
[2011-04-27 13:34:35 | 000,000,000 | ---D | M] ("DAEMON Tools Toolbar") -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\DTToolbar@toolbarnet.com
[2011-05-09 06:19:59 | 000,000,000 | ---D | M] (Conduit Engine) -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\engine@conduit.com
[2011-11-03 13:52:46 | 000,000,000 | ---D | M] (Babylon) -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\ffxtlbr@babylon.com
[2012-05-20 09:01:12 | 000,000,000 | ---D | M] (softonic.com) -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\ffxtlbra@softonic.com
[2012-03-12 16:21:03 | 000,000,000 | ---D | M] (Yontoo) -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\plugin@yontoo.com
[2013-01-26 15:22:49 | 000,000,000 | ---D | M] (Ask Toolbar) -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\toolbar@ask.com
[2013-01-08 13:57:39 | 000,190,000 | ---- | M] () (No name found) -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi
[2012-11-23 15:20:44 | 000,002,533 | ---- | M] () -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\searchplugins\aol-search.xml
[2013-01-26 15:22:50 | 000,002,578 | ---- | M] () -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\searchplugins\askcom.xml
[2011-10-05 10:36:18 | 000,000,917 | ---- | M] () -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\searchplugins\conduit.xml
[2011-04-18 08:53:13 | 000,002,059 | ---- | M] () -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\searchplugins\daemon-search.xml
[2011-11-26 15:53:07 | 000,002,207 | ---- | M] () -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\searchplugins\MyStart Search.xml
[2012-05-20 15:50:53 | 000,002,380 | ---- | M] () -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\searchplugins\search.xml
[2012-04-10 21:27:27 | 000,000,792 | ---- | M] () -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\searchplugins\startsear.xml
[2012-03-12 16:54:42 | 000,004,030 | ---- | M] () -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\searchplugins\sweetim.xml
[2012-09-15 18:17:03 | 000,002,569 | ---- | M] () -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\searchplugins\winamp-web-search.xml
[2012-09-15 18:16:44 | 000,002,154 | ---- | M] () -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\searchplugins\wyszukiwarka-aol.xml
[2011-05-17 18:05:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011-10-18 17:20:34 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2011-05-17 18:05:24 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}
[2011-05-17 18:05:18 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011-12-23 17:19:37 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION
[2011-11-02 13:53:48 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011-10-27 14:45:50 | 000,083,456 | ---- | M] (LiveVDO ) -- C:\Program Files\mozilla firefox\plugins\npvsharetvplg.dll
[2012-06-28 16:42:00 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll
[2011-11-02 13:53:43 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2012-12-24 00:12:40 | 000,003,580 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\avg-secure-search.xml
[2012-03-12 16:24:53 | 000,002,289 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2011-11-02 13:53:43 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2011-11-14 13:02:58 | 000,002,049 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fcmdSrch.xml
[2011-11-02 13:53:43 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2011-11-02 13:53:43 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2012-03-03 18:06:12 | 000,002,415 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\v9.xml
[2011-11-02 13:53:43 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2011-11-02 13:53:43 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml
 
[color=#E56717]========== Chrome  ==========[/color]
 
CHR - default_search_provider: Ask (Enabled)
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\24.0.1312.56\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\24.0.1312.56\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\24.0.1312.56\gcswf32.dll
CHR - plugin: Shockwave Flash (Disabled) = C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\PepperFlash\11.1.31.203\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll
CHR - plugin: vShare.tv plug-in (Enabled) = C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0\chvsharetvplg.dll
CHR - plugin: Skype Toolbars (Enabled) = C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.6.0.8442_0\npSkypeChromePlugin.dll
CHR - plugin: Java Deployment Toolkit 6.0.250.6 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U25 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: LiveVDO plug-in (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npvsharetvplg.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\5.0.61118.0\npctrl.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - Extension: Ask Toolbar = C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\aaaapodhaoggdemfffbmjpgfgekfjjpe\7.17.2.0_0\
CHR - Extension: YouTube = C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\
CHR - Extension: Szukaj w Google = C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\
CHR - Extension: DealPly = C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\gaiilaahiahdejapggenmdmafpmbipje\3.0.7.2_0\
CHR - Extension: avast! WebRep = C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1474_0\
CHR - Extension: vshare plugin = C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0\
CHR - Extension: Skype Click to Call = C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.6.0.8442_0\
CHR - Extension: AVG Secure Search = C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\13.3.0.17_0\
CHR - Extension: Yontoo = C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\niapdbllcanepiiimjjndipklodoedlc\1.0.2_0\
CHR - Extension: LiveVDO plugin = C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pbiamblgmkgbcgbcgejjgebalncpmhnp\1.3_0\
CHR - Extension: Gmail = C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
 
O1 HOSTS File: ([2003-04-16 13:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (Babylon toolbar helper) - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll (Babylon BHO)
O2 - BHO: (Winamp Toolbar Loader) - {4accc990-3dc7-4456-a734-5cb4b610a7f5} - C:\Program Files\Winamp Toolbar\winamppltb.dll (AOL Inc.)
O2 - BHO: (IE5BarLauncherBHO Class) - {78F3A323-798E-4AEA-9A57-88F4B05FD5DD} - C:\Program Files\StartSearch plugin\ssBarLcher.dll (StartSearch Inc.)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\13.3.0.17\AVG Secure Search_toolbar.dll ()
O2 - BHO: (DealPly) - {A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} - C:\Program Files\DealPly\DealPlyIE.dll (DealPly Technologies Ltd)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Softonic Helper Object) - {E87806B5-E908-45FD-AF5E-957D83E58E68} - C:\Program Files\Softonic\softonic\1.5.11.5\bh\softonic.dll (Softonic.com)
O2 - BHO: (SweetPacks Browser Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O2 - BHO: (SMTTB2009 Class) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\CheatEngine DB Toolbar Toolbar\tbcore3.dll File not found
O2 - BHO: (Yontoo) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo\YontooIEClient.dll (Yontoo LLC)
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (CheatEngine DB Toolbar Toolbar) - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files\CheatEngine DB Toolbar Toolbar\tbcore3.dll File not found
O3 - HKLM\..\Toolbar: (Softonic Toolbar) - {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - C:\Program Files\Softonic\softonic\1.5.11.5\softonicTlbr.dll (Softonic.com)
O3 - HKLM\..\Toolbar: (StartSearchToolBar) - {7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} - C:\Program Files\StartSearch plugin\ssBarLcher.dll (StartSearch Inc.)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\13.3.0.17\AVG Secure Search_toolbar.dll ()
O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll (Babylon Ltd.)
O3 - HKLM\..\Toolbar: (Winamp Toolbar) - {a0b1221c-a3ff-4f7c-a393-dc63af5301e9} - C:\Program Files\Winamp Toolbar\winamppltb.dll (AOL Inc.)
O3 - HKLM\..\Toolbar: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\Toolbar\WebBrowser: (CheatEngine DB Toolbar Toolbar) - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files\CheatEngine DB Toolbar Toolbar\tbcore3.dll File not found
O3 - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\Toolbar\WebBrowser: (StartSearchToolBar) - {7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} - C:\Program Files\StartSearch plugin\ssBarLcher.dll (StartSearch Inc.)
O3 - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\Toolbar\WebBrowser: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: []  File not found
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [CTSysVol] C:\Program Files\Creative\SB5.1 VX\Surround Mixer\CTSysVol.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [P17Helper] C:\WINDOWS\System32\P17.DLL ()
O4 - HKLM..\Run: [vProt] C:\Program Files\AVG Secure Search\vprot.exe ()
O4 - HKU\S-1-5-21-1801674531-1547161642-839522115-1004..\Run: [Gadu-Gadu] C:\Program Files\Gadu-Gadu\gg.exe (Gadu-Gadu Sp. z oo)
O4 - HKU\S-1-5-21-1801674531-1547161642-839522115-1004..\Run: [NVIDIA nTune] C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe (NVIDIA)
O4 - HKU\S-1-5-21-1801674531-1547161642-839522115-1004..\Run: [SetDefaultMIDI] C:\WINDOWS\MIDIDEF.EXE (Creative Technology Ltd)
O4 - HKU\S-1-5-21-1801674531-1547161642-839522115-1004..\Run: [Steam] C:\Program Files\Steam\steam.exe (Valve Corporation)
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O16 - DPF: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25)
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab (Creative Software AutoUpdate Support Package 2)
O16 - DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} http://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab (Creative Software AutoUpdate 2)
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwareupdate/ocx/121022/CTPID.cab (Creative Software AutoUpdate Support Package)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{48D66C3A-FBD4-4AA8-9CA9-1411AE3DC3E0}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\13.3.2\ViProtocol.dll ()
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\SYSTEM32\Userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - HKU\S-1-5-21-1801674531-1547161642-839522115-1004 Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011-04-15 19:40:56 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2007-10-22 03:03:24 | 000,000,052 | R--- | M] () - D:\AUTORUN.INF -- [ CDFS ]
O32 - AutoRun File - [2008-01-07 06:28:04 | 000,000,000 | R--D | M] - D:\AutoUpd -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2013-01-26 18:18:00 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\BANIOK\Recent
[2013-01-26 17:56:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\CCleaner
[2013-01-26 17:56:07 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2013-01-26 17:10:13 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2013-01-26 17:10:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\BANIOK\Menu Start\Programy\HiJackThis
[2013-01-26 10:51:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\CPUID
[2013-01-26 10:51:20 | 000,000,000 | ---D | C] -- C:\Program Files\CPUID
[2013-01-26 10:50:29 | 000,000,000 | ---D | C] -- C:\Program Files\Ask.com
[2013-01-26 10:50:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\AskToolbar
[2013-01-26 10:50:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\APN
[2013-01-25 19:04:38 | 000,021,256 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2013-01-25 19:04:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\avast! Free Antivirus
[2013-01-25 19:04:37 | 000,361,032 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2013-01-25 19:04:34 | 000,054,232 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2013-01-25 19:04:34 | 000,035,928 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2013-01-25 19:04:33 | 000,738,504 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2013-01-25 19:04:31 | 000,097,608 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2013-01-25 19:04:31 | 000,089,752 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2013-01-25 19:04:30 | 000,025,256 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2013-01-25 19:03:56 | 000,041,224 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2013-01-25 19:03:55 | 000,227,648 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2013-01-25 19:03:33 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2013-01-25 19:03:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\AVAST Software
[2013-01-22 17:17:39 | 000,000,000 | ---D | C] -- C:\Program Files\KBot
[2013-01-20 20:50:41 | 000,025,088 | ---- | C] (Creative Technology Ltd) -- C:\WINDOWS\System32\CTSVCCTL.EXE
[2013-01-20 20:50:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Creative
[2013-01-20 20:14:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages
[2013-01-20 20:13:33 | 001,230,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msvidctl.dll
[2013-01-20 20:13:33 | 001,179,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\d3d8.dll
[2013-01-20 20:13:33 | 000,285,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kstvtune.ax
[2013-01-20 20:13:33 | 000,285,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kstvtune.ax
[2013-01-20 20:13:33 | 000,265,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ddraw.dll
[2013-01-20 20:13:33 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kswdmcap.ax
[2013-01-20 20:13:33 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kswdmcap.ax
[2013-01-20 20:13:33 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nabtsfec.sys
[2013-01-20 20:13:33 | 000,052,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdv.sys
[2013-01-20 20:13:33 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wstdecod.dll
[2013-01-20 20:13:33 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksxbar.ax
[2013-01-20 20:13:33 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksxbar.ax
[2013-01-20 20:13:33 | 000,018,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wstcodec.sys
[2013-01-20 20:13:33 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bdaplgin.ax
[2013-01-20 20:13:33 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bdaplgin.ax
[2013-01-20 20:13:33 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ccdecode.sys
[2013-01-20 20:13:33 | 000,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mpe.sys
[2013-01-20 20:13:33 | 000,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpe.sys
[2013-01-20 20:13:33 | 000,014,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\streamip.sys
[2013-01-20 20:13:33 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ipsink.ax
[2013-01-20 20:13:33 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ipsink.ax
[2013-01-20 20:13:33 | 000,011,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bdasup.sys
[2013-01-20 20:13:33 | 000,011,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bdasup.sys
[2013-01-20 20:13:33 | 000,010,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\slip.sys
[2013-01-20 20:13:33 | 000,010,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndisip.sys
[2013-01-20 20:13:32 | 000,525,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qedit.dll
[2013-01-20 20:13:32 | 000,363,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsound.dll
[2013-01-20 20:13:32 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dxdiag.exe
[2013-01-20 20:13:32 | 000,276,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qdv.dll
[2013-01-20 20:13:32 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpvoice.dll
[2013-01-20 20:13:32 | 000,177,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qcap.dll
[2013-01-20 20:13:32 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dinput8.dll
[2013-01-20 20:13:32 | 000,156,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dinput.dll
[2013-01-20 20:13:32 | 000,153,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qasf.dll
[2013-01-20 20:13:32 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmusic.dll
[2013-01-20 20:13:32 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsdmoprp.dll
[2013-01-20 20:13:32 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\joy.cpl
[2013-01-20 20:13:32 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpwsockx.dll
[2013-01-20 20:13:32 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\devenum.dll
[2013-01-20 20:13:32 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pid.dll
[2013-01-20 20:13:32 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpmodemx.dll
[2013-01-20 20:13:32 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpnsvr.exe
[2013-01-20 20:13:32 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksolay.ax
[2013-01-20 20:13:32 | 000,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstee.sys
[2013-01-20 20:13:31 | 001,189,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dx8vb.dll
[2013-01-20 20:13:31 | 000,797,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\d3dim700.dll
[2013-01-20 20:13:31 | 000,602,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dx7vb.dll
[2013-01-20 20:13:31 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ddrawex.dll
[2013-01-20 20:13:31 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\d3d8thk.dll
[2013-01-20 20:13:30 | 001,294,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsound3d.dll
[2013-01-20 20:13:30 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dplayx.dll
[2013-01-20 20:13:30 | 000,186,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsdmo.dll
[2013-01-20 20:13:30 | 000,181,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmime.dll
[2013-01-20 20:13:30 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpvvox.dll
[2013-01-20 20:13:30 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmsynth.dll
[2013-01-20 20:13:30 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmstyle.dll
[2013-01-20 20:13:30 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpvsetup.exe
[2013-01-20 20:13:30 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmscript.dll
[2013-01-20 20:13:30 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpnhupnp.dll
[2013-01-20 20:13:30 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmcompos.dll
[2013-01-20 20:13:30 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dxdllreg.exe
[2013-01-20 20:13:30 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmloader.dll
[2013-01-20 20:13:30 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpnhpast.dll
[2013-01-20 20:13:30 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dplaysvr.exe
[2013-01-20 20:13:30 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmband.dll
[2013-01-20 20:13:30 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpvacm.dll
[2013-01-20 20:13:30 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dswave.dll
[2013-01-20 20:13:30 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpnlobby.dll
[2013-01-20 20:13:30 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpnaddr.dll
[2013-01-20 20:11:28 | 000,315,624 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\BANIOK\Pulpit\directx-90c.exe
[2013-01-19 17:06:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\BANIOK\Pulpit\BOXY BOT
[2013-01-11 17:03:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\BANIOK\Pulpit\K-BOT
[2013-01-08 18:07:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\TeamViewer 8
[2013-01-08 18:07:49 | 000,000,000 | ---D | C] -- C:\Program Files\TeamViewer
[2013-01-02 22:54:36 | 000,000,000 | ---D | C] -- C:\Program Files\System.Data.SQLite
[2013-01-02 22:53:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\BANIOK\Pulpit\PBDO-BOT
[2013-01-02 22:53:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\BANIOK\Pulpit\QBOT
[2013-01-02 22:39:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\System.Data.SQLite
[2013-01-01 18:01:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\BANIOK\Moje dokumenty\Downloads
[2012-12-29 19:49:29 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2013-01-26 18:30:01 | 000,000,236 | ---- | M] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
[2013-01-26 18:06:02 | 000,150,121 | ---- | M] () -- C:\Documents and Settings\BANIOK\Pulpit\bez tytułu.JPG
[2013-01-26 18:04:39 | 003,888,054 | ---- | M] () -- C:\Documents and Settings\BANIOK\Pulpit\bez tytułu.bmp
[2013-01-26 17:56:08 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\CCleaner.lnk
[2013-01-26 17:50:30 | 000,002,445 | ---- | M] () -- C:\Documents and Settings\BANIOK\Pulpit\HiJackThis.lnk
[2013-01-26 17:48:00 | 000,001,036 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2013-01-26 17:38:15 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2013-01-26 17:20:31 | 000,000,316 | -H-- | M] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
[2013-01-26 17:19:38 | 000,001,032 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2013-01-26 17:19:26 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013-01-26 17:10:20 | 000,006,509 | ---- | M] () -- C:\Documents and Settings\BANIOK\Pulpit\INFORMACJE
[2013-01-26 10:51:24 | 000,000,778 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\CPUID HWMonitor.lnk
[2013-01-25 19:20:48 | 000,002,163 | ---- | M] () -- C:\Documents and Settings\BANIOK\Pulpit\Ventrilo.lnk
[2013-01-25 19:04:38 | 000,001,689 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\avast! Free Antivirus.lnk
[2013-01-25 19:04:32 | 000,002,644 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2013-01-25 15:31:51 | 000,000,882 | ---- | M] () -- C:\Documents and Settings\BANIOK\Pulpit\OpenStealth.lnk
[2013-01-24 19:57:58 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013-01-23 07:19:43 | 000,000,812 | ---- | M] () -- C:\Documents and Settings\BANIOK\Pulpit\KBot 6.95.lnk
[2013-01-20 20:55:34 | 000,000,584 | ---- | M] () -- C:\WINDOWS\System32\settingsbkup.sfm
[2013-01-20 20:55:34 | 000,000,584 | ---- | M] () -- C:\WINDOWS\System32\settings.sfm
[2013-01-20 20:52:00 | 000,001,940 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Creative Product Registration.lnk
[2013-01-20 20:49:11 | 000,409,600 | ---- | M] (Creative Labs) -- C:\WINDOWS\System32\wrap_oal.dll
[2013-01-20 20:49:11 | 000,114,688 | ---- | M] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\WINDOWS\System32\OpenAL32.dll
[2013-01-20 20:11:30 | 000,315,624 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\BANIOK\Pulpit\directx-90c.exe
[2013-01-16 15:00:51 | 000,001,813 | ---- | M] () -- C:\Documents and Settings\BANIOK\Pulpit\Google Chrome.lnk
[2013-01-09 23:21:08 | 000,556,068 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2013-01-09 23:21:08 | 000,494,004 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2013-01-09 23:21:08 | 000,105,224 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2013-01-09 23:21:08 | 000,084,548 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2013-01-09 14:47:00 | 000,121,336 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2013-01-08 22:39:11 | 000,697,864 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2013-01-08 22:39:11 | 000,074,248 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2013-01-08 18:07:56 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\TeamViewer 8.lnk
[2013-01-06 06:33:58 | 006,009,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll
[2013-01-02 14:57:49 | 000,176,640 | ---- | M] () -- C:\WINDOWS\Max_delete.exe
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2013-01-26 18:06:02 | 000,150,121 | ---- | C] () -- C:\Documents and Settings\BANIOK\Pulpit\bez tytułu.JPG
[2013-01-26 18:04:39 | 003,888,054 | ---- | C] () -- C:\Documents and Settings\BANIOK\Pulpit\bez tytułu.bmp
[2013-01-26 17:56:08 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\CCleaner.lnk
[2013-01-26 17:10:13 | 000,002,445 | ---- | C] () -- C:\Documents and Settings\BANIOK\Pulpit\HiJackThis.lnk
[2013-01-26 10:51:24 | 000,000,778 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\CPUID HWMonitor.lnk
[2013-01-26 10:50:56 | 000,000,236 | ---- | C] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
[2013-01-25 19:04:38 | 000,001,689 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\avast! Free Antivirus.lnk
[2013-01-25 19:04:32 | 000,000,316 | -H-- | C] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
[2013-01-23 07:19:43 | 000,000,812 | ---- | C] () -- C:\Documents and Settings\BANIOK\Pulpit\KBot 6.95.lnk
[2013-01-20 20:52:00 | 000,001,940 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Creative Product Registration.lnk
[2013-01-20 20:49:27 | 000,003,628 | ---- | C] () -- C:\WINDOWS\System32\AudioDrv.ini
[2013-01-20 20:13:33 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2013-01-20 20:13:33 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\dllcache\psisdecd.dll
[2013-01-20 20:13:33 | 000,052,224 | ---- | C] () -- C:\WINDOWS\System32\msdvbnp.ax
[2013-01-20 20:13:33 | 000,052,224 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msdvbnp.ax
[2013-01-20 20:13:33 | 000,030,208 | ---- | C] () -- C:\WINDOWS\System32\psisrndr.ax
[2013-01-20 20:13:33 | 000,030,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\psisrndr.ax
[2013-01-20 20:13:30 | 000,733,184 | ---- | C] () -- C:\WINDOWS\System32\dllcache\qedwipes.dll
[2013-01-20 20:13:30 | 000,136,192 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mpg2splt.ax
[2013-01-20 20:13:30 | 000,064,512 | ---- | C] () -- C:\WINDOWS\System32\dllcache\amstream.dll
[2013-01-20 20:13:30 | 000,034,304 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mciqtz32.dll
[2013-01-20 20:13:30 | 000,013,312 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msdmo.dll
[2013-01-08 18:07:56 | 000,000,815 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\TeamViewer 8.lnk
[2013-01-02 14:58:46 | 000,176,640 | ---- | C] () -- C:\WINDOWS\Max_delete.exe
[2012-12-22 19:06:17 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\P17.DLL
[2012-08-16 16:46:19 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BANIOK\ts3creator.exe
[2012-08-11 12:37:07 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BANIOK\Moj dom
[2012-08-11 12:23:37 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BANIOK\Mój Dom !
[2012-08-09 15:50:35 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BANIOK\Adobe Reader X.lnk
[2012-08-09 15:50:17 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BANIOK\Ad-Aware Antivirus.lnk
[2012-08-09 15:45:36 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BANIOK\HistoriaRachunku.pdf
[2012-08-08 23:22:43 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BANIOK\Bez tytułu.png
[2012-08-05 22:29:24 | 000,000,988 | ---- | C] () -- C:\Documents and Settings\BANIOK\Ustawienia lokalne\Dane aplikacji\recently-used.xbel
[2012-08-03 22:19:38 | 000,239,109 | ---- | C] () -- C:\Documents and Settings\BANIOK\Obraz.jpeg
[2012-07-25 23:49:30 | 000,042,440 | ---- | C] () -- C:\WINDOWS\System32\xfcodec.dll
[2012-07-05 10:08:59 | 000,004,096 | ---- | C] () -- C:\WINDOWS\d3dx.dat
[2012-05-01 23:19:52 | 000,000,310 | ---- | C] () -- C:\Documents and Settings\BANIOK\Dane aplikacji\regdatels.dat
[2012-02-15 13:59:37 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012-01-26 18:42:57 | 000,265,120 | ---- | C] () -- C:\Program Files\Common Files\WireHelpSvc.exe
[2011-12-25 20:57:23 | 000,012,263 | ---- | C] () -- C:\Program Files\images1.jpeg
[2011-12-25 15:10:25 | 001,280,303 | ---- | C] () -- C:\Program Files\HLC_1_setup.exe
[2011-12-25 15:07:38 | 000,004,302 | ---- | C] () -- C:\Program Files\QPAD.jpeg
[2011-11-12 17:33:38 | 000,000,319 | ---- | C] () -- C:\WINDOWS\game.ini
[2011-11-08 18:23:14 | 000,837,192 | ---- | C] () -- C:\WINDOWS\System32\pbsvc.exe
[2011-08-11 08:58:26 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BANIOK\31b674f3355fc1312e5c3a358736d670.gif
[2011-07-13 10:05:14 | 000,000,206 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI
[2011-06-26 13:43:05 | 000,000,050 | ---- | C] () -- C:\WINDOWS\Winamp.ini
[2011-06-26 13:43:04 | 000,000,041 | ---- | C] () -- C:\WINDOWS\winampa.ini
[2011-06-25 14:11:57 | 000,000,180 | ---- | C] () -- C:\Documents and Settings\BANIOK\.gstreamer-0.10.lnk
[2011-06-09 12:48:05 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BANIOK\INVedit
[2011-06-09 12:48:02 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BANIOK\skiny do MINECRAFTA
[2011-05-17 18:31:08 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BANIOK\Minecraft Beta 1.5_01 SPOLSZCZONY   cartographer   MOD NA LATANIE.rar
[2011-05-17 17:55:56 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2011-05-10 17:59:29 | 000,080,896 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2011-05-03 07:29:56 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BANIOK\PP2.png
[2011-05-03 07:29:30 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BANIOK\PP1.png
[2011-05-01 17:54:10 | 000,139,448 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2011-05-01 17:54:10 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\BANIOK\Dane aplikacji\PnkBstrK.sys
[2011-05-01 17:53:54 | 000,282,472 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2011-05-01 17:53:52 | 000,076,888 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2011-04-21 10:33:36 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2011-04-21 10:28:15 | 000,001,732 | ---- | C] () -- C:\WINDOWS\System32\drivers\nvphy.bin
[2011-04-18 09:01:25 | 000,281,760 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2011-04-18 09:01:25 | 000,025,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2011-04-18 08:49:30 | 000,000,180 | ---- | C] () -- C:\Documents and Settings\BANIOK\InstallAnywhere.lnk
[2011-04-16 20:06:18 | 000,000,186 | ---- | C] () -- C:\Documents and Settings\BANIOK\Ustawienia lokalne.lnk
[2011-04-16 20:06:18 | 000,000,178 | ---- | C] () -- C:\Documents and Settings\BANIOK\Moje dokumenty.lnk
[2011-04-16 20:06:18 | 000,000,178 | ---- | C] () -- C:\Documents and Settings\BANIOK\Dane aplikacji.lnk
[2011-04-16 20:06:18 | 000,000,170 | ---- | C] () -- C:\Documents and Settings\BANIOK\New Folder.lnk
[2011-04-16 20:06:18 | 000,000,170 | ---- | C] () -- C:\Documents and Settings\BANIOK\Menu Start.lnk
[2011-04-16 20:06:18 | 000,000,168 | ---- | C] () -- C:\Documents and Settings\BANIOK\PrintHood.lnk
[2011-04-16 20:06:18 | 000,000,168 | ---- | C] () -- C:\Documents and Settings\BANIOK\Passwords.lnk
[2011-04-16 20:06:18 | 000,000,168 | ---- | C] () -- C:\Documents and Settings\BANIOK\Documents.lnk
[2011-04-16 20:06:18 | 000,000,166 | ---- | C] () -- C:\Documents and Settings\BANIOK\UserData.lnk
[2011-04-16 20:06:18 | 000,000,166 | ---- | C] () -- C:\Documents and Settings\BANIOK\Ulubione.lnk
[2011-04-16 20:06:18 | 000,000,166 | ---- | C] () -- C:\Documents and Settings\BANIOK\Szablony.lnk
[2011-04-16 20:06:18 | 000,000,166 | ---- | C] () -- C:\Documents and Settings\BANIOK\Pictures.lnk
[2011-04-16 20:06:18 | 000,000,164 | ---- | C] () -- C:\Documents and Settings\BANIOK\NetHood.lnk
[2011-04-16 20:06:18 | 000,000,164 | ---- | C] () -- C:\Documents and Settings\BANIOK\Cookies.lnk
[2011-04-16 20:06:18 | 000,000,162 | ---- | C] () -- C:\Documents and Settings\BANIOK\SendTo.lnk
[2011-04-16 20:06:18 | 000,000,162 | ---- | C] () -- C:\Documents and Settings\BANIOK\Recent.lnk
[2011-04-16 20:06:18 | 000,000,162 | ---- | C] () -- C:\Documents and Settings\BANIOK\Pulpit.lnk
[2011-04-16 20:06:18 | 000,000,160 | ---- | C] () -- C:\Documents and Settings\BANIOK\Video.lnk
[2011-04-16 20:06:18 | 000,000,160 | ---- | C] () -- C:\Documents and Settings\BANIOK\Music.lnk
[2011-04-16 20:06:18 | 000,000,154 | ---- | C] () -- C:\Documents and Settings\BANIOK\...lnk
[2011-04-16 20:06:18 | 000,000,152 | ---- | C] () -- C:\Documents and Settings\BANIOK\..lnk
[2011-04-16 07:57:50 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2011-04-15 20:52:35 | 000,252,096 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2011-04-15 20:52:35 | 000,252,096 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2011-04-15 20:52:35 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2011-04-15 20:52:32 | 002,292,678 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin
[2011-04-15 20:28:43 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2011-04-15 20:27:59 | 000,121,336 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011-04-15 19:41:57 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2011-04-15 19:39:16 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
 
[color=#E56717]========== ZeroAccess Check ==========[/color]
 
[2011-12-21 19:59:59 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\System32\shdocvw.dll -- [2011-09-05 14:56:10 | 001,510,400 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\System32\wbem\fastprox.dll -- [2009-02-09 11:53:44 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\System32\wbem\wbemess.dll -- [2008-04-14 21:50:58 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2013-01-25 19:03:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVAST Software
[2012-12-31 12:19:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG Secure Search
[2012-03-12 16:24:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Babylon
[2011-11-11 10:47:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Big Fish Games
[2012-12-24 00:12:10 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files
[2012-07-06 09:33:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2011-06-20 20:30:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Easybits GO
[2012-01-26 18:42:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESL Wire
[2011-05-02 19:25:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2012-07-18 09:45:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\GG
[2011-11-26 16:20:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\IM
[2011-11-26 16:20:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\IncrediMail
[2011-10-07 14:44:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\InstallMate
[2011-05-10 18:25:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\install_clap
[2012-12-08 07:49:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla
[2011-06-06 20:25:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\KONAMI
[2012-08-18 16:02:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM
[2012-07-03 13:54:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC1Data
[2011-05-10 18:26:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PDVD
[2011-10-07 14:44:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Premium
[2012-10-17 13:45:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\RDRM
[2011-04-18 08:41:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Sports Interactive
[2012-03-08 14:34:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\SweetIM
[2012-03-12 16:21:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Tarma Installer
[2011-05-10 18:25:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Temp
[2012-05-02 16:39:38 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{E568B6A0-8E02-46C8-8954-00ECD7CD3554}
[2012-10-23 13:05:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\.minecraft
[2011-08-18 12:46:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\.minecraft_xray
[2012-12-24 00:12:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\AVG Secure Search
[2012-03-12 16:24:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\Babylon
[2011-07-21 15:50:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\BabylonToolbar
[2011-04-18 08:54:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\DAEMON Tools Lite
[2013-01-25 20:36:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\E40BC
[2011-05-02 19:26:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\Gadu-Gadu 10
[2011-05-15 11:30:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\GetRightToGo
[2012-12-22 18:28:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\GG
[2011-10-28 13:00:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\GHISLER
[2011-11-14 16:30:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\go
[2012-12-22 18:27:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\ipla
[2012-06-01 22:04:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\Notepad++
[2011-06-25 11:06:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\OpenFM
[2012-07-03 13:54:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\PC Cleaners
[2012-07-03 13:54:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\PCPro
[2012-06-09 16:21:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\PowerChallenge
[2011-11-11 10:47:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\PriceGong
[2012-02-17 13:47:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\Softonic
[2011-04-18 08:41:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\Sports Interactive
[2011-11-26 15:54:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\SumatraPDF
[2012-05-20 14:49:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\Toolbar4
[2013-01-26 17:09:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BANIOK\Dane aplikacji\TS3Client
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Files - Unicode (All) ==========[/color]
[2013-01-01 18:03:21 | 006,053,251 | ---- | M] ()(C:\Documents and Settings\BANIOK\Pulpit\PSY - GANGNAM STYLE (?????) M_V - YouTube.MP3) -- C:\Documents and Settings\BANIOK\Pulpit\PSY - GANGNAM STYLE (강남스타일) M_V - YouTube.MP3
[2013-01-01 18:01:48 | 006,053,251 | ---- | C] ()(C:\Documents and Settings\BANIOK\Pulpit\PSY - GANGNAM STYLE (?????) M_V - YouTube.MP3) -- C:\Documents and Settings\BANIOK\Pulpit\PSY - GANGNAM STYLE (강남스타일) M_V - YouTube.MP3
 
< End of report >
 
A to Extras.Txt
OTL Extras logfile created on: 2013-01-26 18:25:57 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Documents and Settings\BANIOK\Moje dokumenty\Downloads
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
2,00 Gb Total Physical Memory | 0,39 Gb Available Physical Memory | 19,72% Memory free
3,85 Gb Paging File | 2,01 Gb Available in Paging File | 52,17% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 232,88 Gb Total Space | 128,34 Gb Free Space | 55,11% Space Free | Partition Type: NTFS
Drive D: | 212,63 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
 
Computer Name: PIDZIK-6P8XAZI2 | User Name: BANIOK | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== File Associations ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
 
[HKEY_USERS\S-1-5-21-1801674531-1547161642-839522115-1004\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
 
[color=#E56717]========== Shell Spawning ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
[color=#E56717]========== Security Center Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
 
[color=#E56717]========== System Restore Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 4
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
 
[color=#E56717]========== Firewall Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
 
[color=#E56717]========== Authorized Applications List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\WINDOWS\system32\PnkBstrA.exe" = C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA -- ()
"C:\WINDOWS\system32\PnkBstrB.exe" = C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB -- ()
"C:\Program Files\KONAMI\Pro Evolution Soccer 2010\pes2010.exe" = C:\Program Files\KONAMI\Pro Evolution Soccer 2010\pes2010.exe:*:Enabled:Pro Evolution Soccer 2010 -- (Konami Digital Entertainment Co., Ltd.)
"C:\MicrovoltsDownloader\MVDownloader.exe" = C:\MicrovoltsDownloader\MVDownloader.exe:*:Enabled:Microvolts_Downloader
"C:\Program Files\Sports Interactive\Football Manager 2011\fm.exe" = C:\Program Files\Sports Interactive\Football Manager 2011\fm.exe:*:Disabled:Football Manager 2011
"C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe" = C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM)  -- ()
"C:\Program Files\Steam\steamapps\matipeti\counter-strike\hl.exe" = C:\Program Files\Steam\steamapps\matipeti\counter-strike\hl.exe:*:Enabled:Counter-Strike
"C:\Program Files\IncrediMail\Bin\IncMail.exe" = C:\Program Files\IncrediMail\Bin\IncMail.exe:*:Enabled:IncrediMail
"C:\Program Files\IncrediMail\Bin\ImApp.exe" = C:\Program Files\IncrediMail\Bin\ImApp.exe:*:Enabled:IncrediMail
"C:\Program Files\IncrediMail\Bin\ImpCnt.exe" = C:\Program Files\IncrediMail\Bin\ImpCnt.exe:*:Enabled:IncrediMail
"C:\Program Files\Steam\steamapps\b7df1d96e2d42a1e51484cd2f3821d9d\counter-strike\hl.exe" = C:\Program Files\Steam\steamapps\b7df1d96e2d42a1e51484cd2f3821d9d\counter-strike\hl.exe:*:Enabled:Counter-Strike
"C:\Program Files\EslWire\wire.exe" = C:\Program Files\EslWire\wire.exe:*:Enabled:ESL Wire Client -- (Turtle Entertainment GmbH)
"C:\WINDOWS\system32\msiexec.exe" = C:\WINDOWS\system32\msiexec.exe:*:Enabled:UpdateManagerSetup -- (Microsoft Corporation)
"C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe" = C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe:*:Enabled:SweetPacksUpdateManager -- (SweetIM Technologies Ltd.)
"C:\Program Files\Steam\Steam.exe" = C:\Program Files\Steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation)
"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)
"C:\Program Files\TeamViewer\Version8\TeamViewer.exe" = C:\Program Files\TeamViewer\Version8\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application -- (TeamViewer GmbH)
"C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe" = C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service -- (TeamViewer GmbH)
"C:\Program Files\Steam\steamapps\spam46\counter-strike\hl.exe" = C:\Program Files\Steam\steamapps\spam46\counter-strike\hl.exe:*:Enabled:Counter-Strike -- (Valve)
 
 
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{02B244A2-7F6A-42E8-A36F-8C385D7A1625}" = Gothic III
"{02E43EC2-6B1C-45B5-9E48-941C3E1B204A}_is1" = System.Data.SQLite v1.0.81.0
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0965F857-DAAD-4F93-8054-0E2EC3C8C5B0}" = SweetIM for Messenger 3.6
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{106B4413-ACBB-4CDE-8707-587DB9BD77EC}" = LogMeIn Hamachi
"{11CD2C42-7459-46AD-8DCF-B2240D89DB61}}_is1" = OpenStealth 1.76
"{1B2AC353-FEA2-47FA-A058-5C64E443FB80}}_is1" = OpenStealth 1.28
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216025FF}" = Java(TM) 6 Update 25
"{283FFB23-8751-4B08-ACB8-5E0F8BCF7727}" = Pro Evolution Soccer 2010
"{2D43FD89-B225-4334-B4AA-0983400BE61B}" = Windows Presentation Foundation Language Pack (PLK)
"{2F603A45-D956-496B-81B5-50D782424976}" = SweetPacks Toolbar for Internet Explorer 4.4
"{323AABD4-E4A8-4A03-8CFF-ABE09490A6E2}}_is1" = OpenStealth 1.16
"{32A22D9F-97A2-4F40-92AA-457213DB1832}}_is1" = OpenStealth 1.21
"{3347F67B-5F7F-4A8A-A35C-5BFFAFBC369C}}_is1" = OpenStealth 1.79
"{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3EADB6FA-E36F-40EE-9225-3AF4EE940DBB}}_is1" = OpenStealth 1.18
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{495998C4-FC8A-4302-82E0-53DE4D7A8F56}" = Windows Communication Foundation Language Pack - PLK
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4D15A64D-4BB9-463F-A852-4E12B2ED2D27}}_is1" = OpenStealth 1.26
"{52DB1748-8594-4F2D-854A-6AD64649BE97}}_is1" = OpenStealth 1.19
"{553C904F-57A2-4113-888E-BA0C3D1C69C0}" = Microsoft VC9 runtime libraries
"{57713539-DD5C-4688-9EDF-72D99B243E22}}_is1" = OpenStealth 1.75
"{5AF71003-1797-4D93-9F37-4F2125CBF539}" = Microsoft .NET Framework 2.0 Language Pack - PLK
"{5E7A8F05-013C-44FD-B450-5434CA581098}_is1" = MicroVolts
"{6286318B-4156-47DC-9603-803BA7DB5D0E}}_is1" = OpenStealth 1.77
"{698ACE45-B941-4066-8310-6A795077C9A3}}_is1" = OpenStealth 1.20
"{6FB6D550-DDC4-4996-9CDF-91C34F0A4C4A}" = Gothic II - Noc Kruka
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{73FF293D-53BE-4745-873D-CA80EB7E7036}}_is1" = OpenStealth 1.22
"{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo
"{79072636-0B86-4C92-885C-EC1024D34460}}_is1" = OpenStealth 1.27
"{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}" = NVIDIA nTune
"{815CEA4A-97DC-4FB4-9415-A84174C1DE7E}}_is1" = OpenStealth 1.78
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{889DF117-14D1-44EE-9F31-C5FB5D47F68B}" = Yontoo 1.10.02
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8B743AA0-53B2-11D2-808A-00600895FB43}" = Heroes of Might and Magic III - Złota Edycja
"{8C3727F2-8E37-49E4-820C-03B1677F53B6}" = Twierdza Krzyżowiec
"{9066A404-CD62-4CC0-A089-A1554F960791}}_is1" = OpenStealth 1.23
"{90840409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Excel Viewer 2003
"{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"{95120000-003F-0415-0000-0000000FF1CE}" = Microsoft Office Excel Viewer
"{98061C12-46D0-4FA3-B895-B4ABEBCCCDE7}}_is1" = OpenStealth 1.14
"{995973ED-3980-4FA9-B975-EE0DAEEF2393}}_is1" = OpenStealth 1.15
"{99BEB67F-B288-44F5-8B2A-23F5A52FA1AE}_is1" = Universal AntiCheat 3 v1.068
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A5355F15-F98B-4704-9BAE-E53B9FE48F48}" = SDFormatter
"{A7914F46-B8EF-4205-9F2B-C2C78624EE46}}_is1" = OpenStealth 1.74
"{A8A56F8E-44B5-40DD-A354-45BD33AF843E}}_is1" = OpenStealth 1.80
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1045-7B44-A95000000001}" = Adobe Reader 9.5.0 - Polish
"{AF9DF4B7-5BDE-42F5-94EF-53311B55566B}" = Project IGI2 - Covert Strike
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panel sterowania NVIDIA 266.58
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Sterownik graficzny 266.58
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 135.50
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Oprogramowanie systemu PhysX 9.10.0514
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{BBCC4C9A-14C9-4EE4-9099-DB2C7316666B}" = Sound Blaster 5.1 VX
"{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}" = Creative MediaSource 5
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C1080852-065E-4991-9260-F3756E3CC182}" = CursorFX
"{C9FA44C7-8AC4-46ED-94A5-A12CC7B92D07}}_is1" = IBot 4.22
"{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}" = PlayReady PC Runtime x86
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D0B89FDC-1CDB-481C-BF96-6E5C4BA21000}}_is1" = OpenStealth 1.24
"{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}" = GTA San Andreas
"{D466F906-72B6-47B7-9213-B1FAF4145D91}}_is1" = OpenStealth 1.17
"{DB76863D-D4D9-4AB3-AFDC-26717BA1E11C}" = Windows Workflow Foundation PL Language Pack
"{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{FB697452-8CA4-46B4-98B1-165C922A2EF3}" = Update Manager for SweetPacks 1.0
"{FD593DE6-C3A0-4722-8E86-9DEEF0A93290}" = Microsoft .NET Framework 3.0 Polish Language Pack
"18 Wheels of Steel - Across America" = 18 Wheels of Steel - Across America
"18 Wheels of Steel: American Long Haul" = 18 Wheels of Steel: American Long Haul 
"6A1545AE87FC8D98ACA7539CE7AA69DF2A5C7E1C" = Pakiet sterowników systemu Windows - Advanced Micro Devices (AmdK8) Processor  (05/27/2006 1.3.2.0)
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"avast" = avast! Free Antivirus
"AVG Secure Search" = AVG Security Toolbar
"BabylonToolbar" = Babylon toolbar on IE
"CCleaner" = CCleaner
"Cheat Engine 6.2_is1" = Cheat Engine 6.2
"CheatEngine DB Toolbar Toolbar" = CheatEngine DB Toolbar Toolbar
"CPUID HWMonitor_is1" = CPUID HWMonitor 1.21
"Creative Software AutoUpdate" = Creative Software AutoUpdate
"CursorFX" = CursorFX
"DAEMON Tools Lite" = DAEMON Tools Lite
"DAEMON Tools Toolbar" = DAEMON Tools Toolbar
"DBDB2B2E231D0260DB18F8EAFCA6C8AE7C206629" = Pakiet sterowników systemu Windows - Sagem, SA (SG762_XP) Net  (10/28/2005 6.3.0.0)
"DealPly" = DealPly
"Deluxe Ski Jump 3_is1" = Deluxe Ski Jump 3 v1.7.0
"eMusic Promotion" = 50 FREE MP3s +1 Free Audiobook!
"ESL Wire_is1" = ESL Wire 1.15.2
"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
"ffdshow_is1" = ffdshow v1.1.3836 [2011-05-02]
"Gadu-Gadu" = Gadu-Gadu 7.0
"Gadu-Gadu 10" = Gadu-Gadu 10
"GIMP-2_is1" = GIMP 2.8.0
"Google Chrome" = Google Chrome
"ie8" = Windows Internet Explorer 8
"InstallShield_{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}" = NVIDIA nTune
"InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"ipla" = ipla 2.4
"IrfanView" = IrfanView (remove only)
"LiveVDO plugin" = LiveVDO plugin 1.3
"LogMeIn Hamachi" = LogMeIn Hamachi
"Lomsel Shutdown_is1" = Lomsel Shutdown 1.05
"Microsoft .NET Framework 2.0 Language Pack - PLK" = Microsoft .NET Framework 2.0 — pakiet języka polskiego
"Microsoft .NET Framework 3.0 Polish Language Pack" = Pakiet języka polskiego dla systemu Microsoft .NET Framework 3.0
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"mIRC" = mIRC
"Mozilla Firefox 7.0.1 (x86 pl)" = Mozilla Firefox 7.0.1 (x86 pl)
"Notepad++" = Notepad++
"NVIDIA Drivers" = NVIDIA Drivers
"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager
"PunkBusterSvc" = PunkBuster Services
"Skoki narciarskie 2003: Polski orzeł" = Skoki narciarskie 2003: Polski orzeł
"softonic" = Softonic toolbar  on IE and Chrome
"SoftwareUpdUtility" = Download Updater (AOL Inc.)
"Space Hack_is1" = Space Hack
"Steam App 10" = Counter-Strike
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"TeamViewer 8" = TeamViewer 8
"Totalcmd" = Total Commander (Remove or Repair)
"V9Software" = V9 HomeTool
"vShare.tv plugin" = vShare.tv plugin 1.3
"Winamp" = Winamp
"Winamp Toolbar" = Winamp Toolbar
"Winamp3" = Winamp3 (remove only)
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR archiver
"WinZip" = WinZip
"WMFDist11" = Windows Media Format 11 runtime
"Xfire" = Xfire (remove only)
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0
 
[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]
 
[HKEY_USERS\S-1-5-21-1801674531-1547161642-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{79A765E1-C399-405B-85AF-466F52E918B0}" = Ask Toolbar Updater
"GG" = GG
"PDF Reader" = PDF Reader
"Power Loader" = Power Challenge Game Plugin
"Winamp Detect" = Detektor Winampa
"Winamp Toolbar" = Winamp Toolbar
 
[color=#E56717]========== Last 20 Event Log Errors ==========[/color]
 
[ Application Events ]
Error - 2013-01-26 05:49:34 | Computer Name = PIDZIK-6P8XAZI2 | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd hwmonitor(33495).exe, wersja 0.0.0.0, moduł
 powodujący błąd unknown, wersja 0.0.0.0, adres błędu 0x00000000.
 
Error - 2013-01-26 06:50:27 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490
Description = wuauclt (1340) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb"
 w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 
(0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany
 przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032
 (0xfffffbf8).
 
Error - 2013-01-26 06:50:37 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490
Description = wuauclt (4776) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb"
 w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 
(0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany
 przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032
 (0xfffffbf8).
 
Error - 2013-01-26 06:50:48 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490
Description = wuauclt (824) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb"
 w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 
(0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany
 przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032
 (0xfffffbf8).
 
Error - 2013-01-26 06:50:58 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490
Description = wuauclt (4656) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb"
 w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 
(0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany
 przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032
 (0xfffffbf8).
 
Error - 2013-01-26 06:51:09 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490
Description = wuauclt (5876) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb"
 w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 
(0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany
 przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032
 (0xfffffbf8).
 
Error - 2013-01-26 06:51:19 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490
Description = wuauclt (6072) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb"
 w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 
(0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany
 przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032
 (0xfffffbf8).
 
Error - 2013-01-26 06:51:30 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490
Description = wuauclt (316) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb"
 w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 
(0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany
 przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032
 (0xfffffbf8).
 
Error - 2013-01-26 06:51:40 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490
Description = wuauclt (2552) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb"
 w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 
(0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany
 przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032
 (0xfffffbf8).
 
Error - 2013-01-26 06:51:51 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490
Description = wuauclt (1388) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb"
 w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 
(0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany
 przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032
 (0xfffffbf8).
 
[ System Events ]
Error - 2013-01-04 09:49:49 | Computer Name = PIDZIK-6P8XAZI2 | Source = Dhcp | ID = 1002
Description = Adres IP połączenia 192.168.1.97 dla karty sieciowej o adresie 001A4DF9A8F8
 został  zabroniony przez serwer DHCP 192.168.1.1 (Serwer DHCP wysłał komunikat DHCPNACK).
 
Error - 2013-01-04 17:06:26 | Computer Name = PIDZIK-6P8XAZI2 | Source = Service Control Manager | ID = 7034
Description = Usługa vToolbarUpdater13.3.2 niespodziewanie zakończyła pracę. Wystąpiło
 to razy: 1.
 
Error - 2013-01-25 10:09:32 | Computer Name = PIDZIK-6P8XAZI2 | Source = Dhcp | ID = 1002
Description = Adres IP połączenia 192.168.1.237 dla karty sieciowej o adresie 001A4DF9A8F8
 został  zabroniony przez serwer DHCP 192.168.1.1 (Serwer DHCP wysłał komunikat DHCPNACK).
 
 
< End of report >
 

 

OTL Extras logfile created on: 2013-01-26 18:25:57 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Documents and Settings\BANIOK\Moje dokumenty\Downloads
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
2,00 Gb Total Physical Memory | 0,39 Gb Available Physical Memory | 19,72% Memory free
3,85 Gb Paging File | 2,01 Gb Available in Paging File | 52,17% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 232,88 Gb Total Space | 128,34 Gb Free Space | 55,11% Space Free | Partition Type: NTFS
Drive D: | 212,63 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
 
Computer Name: PIDZIK-6P8XAZI2 | User Name: BANIOK | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== File Associations ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
 
[HKEY_USERS\S-1-5-21-1801674531-1547161642-839522115-1004\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
 
[color=#E56717]========== Shell Spawning ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
[color=#E56717]========== Security Center Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
 
[color=#E56717]========== System Restore Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 4
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
 
[color=#E56717]========== Firewall Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
 
[color=#E56717]========== Authorized Applications List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\WINDOWS\system32\PnkBstrA.exe" = C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA -- ()
"C:\WINDOWS\system32\PnkBstrB.exe" = C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB -- ()
"C:\Program Files\KONAMI\Pro Evolution Soccer 2010\pes2010.exe" = C:\Program Files\KONAMI\Pro Evolution Soccer 2010\pes2010.exe:*:Enabled:Pro Evolution Soccer 2010 -- (Konami Digital Entertainment Co., Ltd.)
"C:\MicrovoltsDownloader\MVDownloader.exe" = C:\MicrovoltsDownloader\MVDownloader.exe:*:Enabled:Microvolts_Downloader
"C:\Program Files\Sports Interactive\Football Manager 2011\fm.exe" = C:\Program Files\Sports Interactive\Football Manager 2011\fm.exe:*:Disabled:Football Manager 2011
"C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe" = C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM)  -- ()
"C:\Program Files\Steam\steamapps\matipeti\counter-strike\hl.exe" = C:\Program Files\Steam\steamapps\matipeti\counter-strike\hl.exe:*:Enabled:Counter-Strike
"C:\Program Files\IncrediMail\Bin\IncMail.exe" = C:\Program Files\IncrediMail\Bin\IncMail.exe:*:Enabled:IncrediMail
"C:\Program Files\IncrediMail\Bin\ImApp.exe" = C:\Program Files\IncrediMail\Bin\ImApp.exe:*:Enabled:IncrediMail
"C:\Program Files\IncrediMail\Bin\ImpCnt.exe" = C:\Program Files\IncrediMail\Bin\ImpCnt.exe:*:Enabled:IncrediMail
"C:\Program Files\Steam\steamapps\b7df1d96e2d42a1e51484cd2f3821d9d\counter-strike\hl.exe" = C:\Program Files\Steam\steamapps\b7df1d96e2d42a1e51484cd2f3821d9d\counter-strike\hl.exe:*:Enabled:Counter-Strike
"C:\Program Files\EslWire\wire.exe" = C:\Program Files\EslWire\wire.exe:*:Enabled:ESL Wire Client -- (Turtle Entertainment GmbH)
"C:\WINDOWS\system32\msiexec.exe" = C:\WINDOWS\system32\msiexec.exe:*:Enabled:UpdateManagerSetup -- (Microsoft Corporation)
"C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe" = C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe:*:Enabled:SweetPacksUpdateManager -- (SweetIM Technologies Ltd.)
"C:\Program Files\Steam\Steam.exe" = C:\Program Files\Steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation)
"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)
"C:\Program Files\TeamViewer\Version8\TeamViewer.exe" = C:\Program Files\TeamViewer\Version8\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application -- (TeamViewer GmbH)
"C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe" = C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service -- (TeamViewer GmbH)
"C:\Program Files\Steam\steamapps\spam46\counter-strike\hl.exe" = C:\Program Files\Steam\steamapps\spam46\counter-strike\hl.exe:*:Enabled:Counter-Strike -- (Valve)
 
 
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{02B244A2-7F6A-42E8-A36F-8C385D7A1625}" = Gothic III
"{02E43EC2-6B1C-45B5-9E48-941C3E1B204A}_is1" = System.Data.SQLite v1.0.81.0
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0965F857-DAAD-4F93-8054-0E2EC3C8C5B0}" = SweetIM for Messenger 3.6
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{106B4413-ACBB-4CDE-8707-587DB9BD77EC}" = LogMeIn Hamachi
"{11CD2C42-7459-46AD-8DCF-B2240D89DB61}}_is1" = OpenStealth 1.76
"{1B2AC353-FEA2-47FA-A058-5C64E443FB80}}_is1" = OpenStealth 1.28
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216025FF}" = Java(TM) 6 Update 25
"{283FFB23-8751-4B08-ACB8-5E0F8BCF7727}" = Pro Evolution Soccer 2010
"{2D43FD89-B225-4334-B4AA-0983400BE61B}" = Windows Presentation Foundation Language Pack (PLK)
"{2F603A45-D956-496B-81B5-50D782424976}" = SweetPacks Toolbar for Internet Explorer 4.4
"{323AABD4-E4A8-4A03-8CFF-ABE09490A6E2}}_is1" = OpenStealth 1.16
"{32A22D9F-97A2-4F40-92AA-457213DB1832}}_is1" = OpenStealth 1.21
"{3347F67B-5F7F-4A8A-A35C-5BFFAFBC369C}}_is1" = OpenStealth 1.79
"{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3EADB6FA-E36F-40EE-9225-3AF4EE940DBB}}_is1" = OpenStealth 1.18
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{495998C4-FC8A-4302-82E0-53DE4D7A8F56}" = Windows Communication Foundation Language Pack - PLK
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4D15A64D-4BB9-463F-A852-4E12B2ED2D27}}_is1" = OpenStealth 1.26
"{52DB1748-8594-4F2D-854A-6AD64649BE97}}_is1" = OpenStealth 1.19
"{553C904F-57A2-4113-888E-BA0C3D1C69C0}" = Microsoft VC9 runtime libraries
"{57713539-DD5C-4688-9EDF-72D99B243E22}}_is1" = OpenStealth 1.75
"{5AF71003-1797-4D93-9F37-4F2125CBF539}" = Microsoft .NET Framework 2.0 Language Pack - PLK
"{5E7A8F05-013C-44FD-B450-5434CA581098}_is1" = MicroVolts
"{6286318B-4156-47DC-9603-803BA7DB5D0E}}_is1" = OpenStealth 1.77
"{698ACE45-B941-4066-8310-6A795077C9A3}}_is1" = OpenStealth 1.20
"{6FB6D550-DDC4-4996-9CDF-91C34F0A4C4A}" = Gothic II - Noc Kruka
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{73FF293D-53BE-4745-873D-CA80EB7E7036}}_is1" = OpenStealth 1.22
"{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo
"{79072636-0B86-4C92-885C-EC1024D34460}}_is1" = OpenStealth 1.27
"{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}" = NVIDIA nTune
"{815CEA4A-97DC-4FB4-9415-A84174C1DE7E}}_is1" = OpenStealth 1.78
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{889DF117-14D1-44EE-9F31-C5FB5D47F68B}" = Yontoo 1.10.02
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8B743AA0-53B2-11D2-808A-00600895FB43}" = Heroes of Might and Magic III - Złota Edycja
"{8C3727F2-8E37-49E4-820C-03B1677F53B6}" = Twierdza Krzyżowiec
"{9066A404-CD62-4CC0-A089-A1554F960791}}_is1" = OpenStealth 1.23
"{90840409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Excel Viewer 2003
"{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"{95120000-003F-0415-0000-0000000FF1CE}" = Microsoft Office Excel Viewer
"{98061C12-46D0-4FA3-B895-B4ABEBCCCDE7}}_is1" = OpenStealth 1.14
"{995973ED-3980-4FA9-B975-EE0DAEEF2393}}_is1" = OpenStealth 1.15
"{99BEB67F-B288-44F5-8B2A-23F5A52FA1AE}_is1" = Universal AntiCheat 3 v1.068
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A5355F15-F98B-4704-9BAE-E53B9FE48F48}" = SDFormatter
"{A7914F46-B8EF-4205-9F2B-C2C78624EE46}}_is1" = OpenStealth 1.74
"{A8A56F8E-44B5-40DD-A354-45BD33AF843E}}_is1" = OpenStealth 1.80
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1045-7B44-A95000000001}" = Adobe Reader 9.5.0 - Polish
"{AF9DF4B7-5BDE-42F5-94EF-53311B55566B}" = Project IGI2 - Covert Strike
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panel sterowania NVIDIA 266.58
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Sterownik graficzny 266.58
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 135.50
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Oprogramowanie systemu PhysX 9.10.0514
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{BBCC4C9A-14C9-4EE4-9099-DB2C7316666B}" = Sound Blaster 5.1 VX
"{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}" = Creative MediaSource 5
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C1080852-065E-4991-9260-F3756E3CC182}" = CursorFX
"{C9FA44C7-8AC4-46ED-94A5-A12CC7B92D07}}_is1" = IBot 4.22
"{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}" = PlayReady PC Runtime x86
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D0B89FDC-1CDB-481C-BF96-6E5C4BA21000}}_is1" = OpenStealth 1.24
"{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}" = GTA San Andreas
"{D466F906-72B6-47B7-9213-B1FAF4145D91}}_is1" = OpenStealth 1.17
"{DB76863D-D4D9-4AB3-AFDC-26717BA1E11C}" = Windows Workflow Foundation PL Language Pack
"{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{FB697452-8CA4-46B4-98B1-165C922A2EF3}" = Update Manager for SweetPacks 1.0
"{FD593DE6-C3A0-4722-8E86-9DEEF0A93290}" = Microsoft .NET Framework 3.0 Polish Language Pack
"18 Wheels of Steel - Across America" = 18 Wheels of Steel - Across America
"18 Wheels of Steel: American Long Haul" = 18 Wheels of Steel: American Long Haul 
"6A1545AE87FC8D98ACA7539CE7AA69DF2A5C7E1C" = Pakiet sterowników systemu Windows - Advanced Micro Devices (AmdK8) Processor  (05/27/2006 1.3.2.0)
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"avast" = avast! Free Antivirus
"AVG Secure Search" = AVG Security Toolbar
"BabylonToolbar" = Babylon toolbar on IE
"CCleaner" = CCleaner
"Cheat Engine 6.2_is1" = Cheat Engine 6.2
"CheatEngine DB Toolbar Toolbar" = CheatEngine DB Toolbar Toolbar
"CPUID HWMonitor_is1" = CPUID HWMonitor 1.21
"Creative Software AutoUpdate" = Creative Software AutoUpdate
"CursorFX" = CursorFX
"DAEMON Tools Lite" = DAEMON Tools Lite
"DAEMON Tools Toolbar" = DAEMON Tools Toolbar
"DBDB2B2E231D0260DB18F8EAFCA6C8AE7C206629" = Pakiet sterowników systemu Windows - Sagem, SA (SG762_XP) Net  (10/28/2005 6.3.0.0)
"DealPly" = DealPly
"Deluxe Ski Jump 3_is1" = Deluxe Ski Jump 3 v1.7.0
"eMusic Promotion" = 50 FREE MP3s +1 Free Audiobook!
"ESL Wire_is1" = ESL Wire 1.15.2
"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
"ffdshow_is1" = ffdshow v1.1.3836 [2011-05-02]
"Gadu-Gadu" = Gadu-Gadu 7.0
"Gadu-Gadu 10" = Gadu-Gadu 10
"GIMP-2_is1" = GIMP 2.8.0
"Google Chrome" = Google Chrome
"ie8" = Windows Internet Explorer 8
"InstallShield_{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}" = NVIDIA nTune
"InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"ipla" = ipla 2.4
"IrfanView" = IrfanView (remove only)
"LiveVDO plugin" = LiveVDO plugin 1.3
"LogMeIn Hamachi" = LogMeIn Hamachi
"Lomsel Shutdown_is1" = Lomsel Shutdown 1.05
"Microsoft .NET Framework 2.0 Language Pack - PLK" = Microsoft .NET Framework 2.0 — pakiet języka polskiego
"Microsoft .NET Framework 3.0 Polish Language Pack" = Pakiet języka polskiego dla systemu Microsoft .NET Framework 3.0
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"mIRC" = mIRC
"Mozilla Firefox 7.0.1 (x86 pl)" = Mozilla Firefox 7.0.1 (x86 pl)
"Notepad++" = Notepad++
"NVIDIA Drivers" = NVIDIA Drivers
"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager
"PunkBusterSvc" = PunkBuster Services
"Skoki narciarskie 2003: Polski orzeł" = Skoki narciarskie 2003: Polski orzeł
"softonic" = Softonic toolbar  on IE and Chrome
"SoftwareUpdUtility" = Download Updater (AOL Inc.)
"Space Hack_is1" = Space Hack
"Steam App 10" = Counter-Strike
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"TeamViewer 8" = TeamViewer 8
"Totalcmd" = Total Commander (Remove or Repair)
"V9Software" = V9 HomeTool
"vShare.tv plugin" = vShare.tv plugin 1.3
"Winamp" = Winamp
"Winamp Toolbar" = Winamp Toolbar
"Winamp3" = Winamp3 (remove only)
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR archiver
"WinZip" = WinZip
"WMFDist11" = Windows Media Format 11 runtime
"Xfire" = Xfire (remove only)
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0
 
[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]
 
[HKEY_USERS\S-1-5-21-1801674531-1547161642-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{79A765E1-C399-405B-85AF-466F52E918B0}" = Ask Toolbar Updater
"GG" = GG
"PDF Reader" = PDF Reader
"Power Loader" = Power Challenge Game Plugin
"Winamp Detect" = Detektor Winampa
"Winamp Toolbar" = Winamp Toolbar
 
[color=#E56717]========== Last 20 Event Log Errors ==========[/color]
 
[ Application Events ]
Error - 2013-01-26 05:49:34 | Computer Name = PIDZIK-6P8XAZI2 | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd hwmonitor(33495).exe, wersja 0.0.0.0, moduł
 powodujący błąd unknown, wersja 0.0.0.0, adres błędu 0x00000000.
 
Error - 2013-01-26 06:50:27 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490
Description = wuauclt (1340) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb"
 w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 
(0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany
 przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032
 (0xfffffbf8).
 
Error - 2013-01-26 06:50:37 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490
Description = wuauclt (4776) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb"
 w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 
(0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany
 przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032
 (0xfffffbf8).
 
Error - 2013-01-26 06:50:48 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490
Description = wuauclt (824) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb"
 w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 
(0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany
 przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032
 (0xfffffbf8).
 
Error - 2013-01-26 06:50:58 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490
Description = wuauclt (4656) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb"
 w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 
(0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany
 przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032
 (0xfffffbf8).
 
Error - 2013-01-26 06:51:09 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490
Description = wuauclt (5876) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb"
 w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 
(0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany
 przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032
 (0xfffffbf8).
 
Error - 2013-01-26 06:51:19 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490
Description = wuauclt (6072) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb"
 w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 
(0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany
 przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032
 (0xfffffbf8).
 
Error - 2013-01-26 06:51:30 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490
Description = wuauclt (316) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb"
 w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 
(0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany
 przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032
 (0xfffffbf8).
 
Error - 2013-01-26 06:51:40 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490
Description = wuauclt (2552) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb"
 w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 
(0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany
 przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032
 (0xfffffbf8).
 
Error - 2013-01-26 06:51:51 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490
Description = wuauclt (1388) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb"
 w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 
(0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany
 przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032
 (0xfffffbf8).
 
[ System Events ]
Error - 2013-01-04 09:49:49 | Computer Name = PIDZIK-6P8XAZI2 | Source = Dhcp | ID = 1002
Description = Adres IP połączenia 192.168.1.97 dla karty sieciowej o adresie 001A4DF9A8F8
 został  zabroniony przez serwer DHCP 192.168.1.1 (Serwer DHCP wysłał komunikat DHCPNACK).
 
Error - 2013-01-04 17:06:26 | Computer Name = PIDZIK-6P8XAZI2 | Source = Service Control Manager | ID = 7034
Description = Usługa vToolbarUpdater13.3.2 niespodziewanie zakończyła pracę. Wystąpiło
 to razy: 1.
 
Error - 2013-01-25 10:09:32 | Computer Name = PIDZIK-6P8XAZI2 | Source = Dhcp | ID = 1002
Description = Adres IP połączenia 192.168.1.237 dla karty sieciowej o adresie 001A4DF9A8F8
 został  zabroniony przez serwer DHCP 192.168.1.1 (Serwer DHCP wysłał komunikat DHCPNACK).


A extras.txt 

 

 

OTL Extras logfile created on: 2013-01-26 18:25:57 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Documents and Settings\BANIOK\Moje dokumenty\Downloads
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
2,00 Gb Total Physical Memory | 0,39 Gb Available Physical Memory | 19,72% Memory free
3,85 Gb Paging File | 2,01 Gb Available in Paging File | 52,17% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 232,88 Gb Total Space | 128,34 Gb Free Space | 55,11% Space Free | Partition Type: NTFS
Drive D: | 212,63 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
 
Computer Name: PIDZIK-6P8XAZI2 | User Name: BANIOK | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== File Associations ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
 
[HKEY_USERS\S-1-5-21-1801674531-1547161642-839522115-1004\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
 
[color=#E56717]========== Shell Spawning ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
[color=#E56717]========== Security Center Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
 
[color=#E56717]========== System Restore Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 4
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
 
[color=#E56717]========== Firewall Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
 
[color=#E56717]========== Authorized Applications List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\WINDOWS\system32\PnkBstrA.exe" = C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA -- ()
"C:\WINDOWS\system32\PnkBstrB.exe" = C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB -- ()
"C:\Program Files\KONAMI\Pro Evolution Soccer 2010\pes2010.exe" = C:\Program Files\KONAMI\Pro Evolution Soccer 2010\pes2010.exe:*:Enabled:Pro Evolution Soccer 2010 -- (Konami Digital Entertainment Co., Ltd.)
"C:\MicrovoltsDownloader\MVDownloader.exe" = C:\MicrovoltsDownloader\MVDownloader.exe:*:Enabled:Microvolts_Downloader
"C:\Program Files\Sports Interactive\Football Manager 2011\fm.exe" = C:\Program Files\Sports Interactive\Football Manager 2011\fm.exe:*:Disabled:Football Manager 2011
"C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe" = C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM)  -- ()
"C:\Program Files\Steam\steamapps\matipeti\counter-strike\hl.exe" = C:\Program Files\Steam\steamapps\matipeti\counter-strike\hl.exe:*:Enabled:Counter-Strike
"C:\Program Files\IncrediMail\Bin\IncMail.exe" = C:\Program Files\IncrediMail\Bin\IncMail.exe:*:Enabled:IncrediMail
"C:\Program Files\IncrediMail\Bin\ImApp.exe" = C:\Program Files\IncrediMail\Bin\ImApp.exe:*:Enabled:IncrediMail
"C:\Program Files\IncrediMail\Bin\ImpCnt.exe" = C:\Program Files\IncrediMail\Bin\ImpCnt.exe:*:Enabled:IncrediMail
"C:\Program Files\Steam\steamapps\b7df1d96e2d42a1e51484cd2f3821d9d\counter-strike\hl.exe" = C:\Program Files\Steam\steamapps\b7df1d96e2d42a1e51484cd2f3821d9d\counter-strike\hl.exe:*:Enabled:Counter-Strike
"C:\Program Files\EslWire\wire.exe" = C:\Program Files\EslWire\wire.exe:*:Enabled:ESL Wire Client -- (Turtle Entertainment GmbH)
"C:\WINDOWS\system32\msiexec.exe" = C:\WINDOWS\system32\msiexec.exe:*:Enabled:UpdateManagerSetup -- (Microsoft Corporation)
"C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe" = C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe:*:Enabled:SweetPacksUpdateManager -- (SweetIM Technologies Ltd.)
"C:\Program Files\Steam\Steam.exe" = C:\Program Files\Steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation)
"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)
"C:\Program Files\TeamViewer\Version8\TeamViewer.exe" = C:\Program Files\TeamViewer\Version8\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application -- (TeamViewer GmbH)
"C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe" = C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service -- (TeamViewer GmbH)
"C:\Program Files\Steam\steamapps\spam46\counter-strike\hl.exe" = C:\Program Files\Steam\steamapps\spam46\counter-strike\hl.exe:*:Enabled:Counter-Strike -- (Valve)
 
 
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{02B244A2-7F6A-42E8-A36F-8C385D7A1625}" = Gothic III
"{02E43EC2-6B1C-45B5-9E48-941C3E1B204A}_is1" = System.Data.SQLite v1.0.81.0
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0965F857-DAAD-4F93-8054-0E2EC3C8C5B0}" = SweetIM for Messenger 3.6
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{106B4413-ACBB-4CDE-8707-587DB9BD77EC}" = LogMeIn Hamachi
"{11CD2C42-7459-46AD-8DCF-B2240D89DB61}}_is1" = OpenStealth 1.76
"{1B2AC353-FEA2-47FA-A058-5C64E443FB80}}_is1" = OpenStealth 1.28
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216025FF}" = Java(TM) 6 Update 25
"{283FFB23-8751-4B08-ACB8-5E0F8BCF7727}" = Pro Evolution Soccer 2010
"{2D43FD89-B225-4334-B4AA-0983400BE61B}" = Windows Presentation Foundation Language Pack (PLK)
"{2F603A45-D956-496B-81B5-50D782424976}" = SweetPacks Toolbar for Internet Explorer 4.4
"{323AABD4-E4A8-4A03-8CFF-ABE09490A6E2}}_is1" = OpenStealth 1.16
"{32A22D9F-97A2-4F40-92AA-457213DB1832}}_is1" = OpenStealth 1.21
"{3347F67B-5F7F-4A8A-A35C-5BFFAFBC369C}}_is1" = OpenStealth 1.79
"{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3EADB6FA-E36F-40EE-9225-3AF4EE940DBB}}_is1" = OpenStealth 1.18
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{495998C4-FC8A-4302-82E0-53DE4D7A8F56}" = Windows Communication Foundation Language Pack - PLK
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4D15A64D-4BB9-463F-A852-4E12B2ED2D27}}_is1" = OpenStealth 1.26
"{52DB1748-8594-4F2D-854A-6AD64649BE97}}_is1" = OpenStealth 1.19
"{553C904F-57A2-4113-888E-BA0C3D1C69C0}" = Microsoft VC9 runtime libraries
"{57713539-DD5C-4688-9EDF-72D99B243E22}}_is1" = OpenStealth 1.75
"{5AF71003-1797-4D93-9F37-4F2125CBF539}" = Microsoft .NET Framework 2.0 Language Pack - PLK
"{5E7A8F05-013C-44FD-B450-5434CA581098}_is1" = MicroVolts
"{6286318B-4156-47DC-9603-803BA7DB5D0E}}_is1" = OpenStealth 1.77
"{698ACE45-B941-4066-8310-6A795077C9A3}}_is1" = OpenStealth 1.20
"{6FB6D550-DDC4-4996-9CDF-91C34F0A4C4A}" = Gothic II - Noc Kruka
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{73FF293D-53BE-4745-873D-CA80EB7E7036}}_is1" = OpenStealth 1.22
"{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo
"{79072636-0B86-4C92-885C-EC1024D34460}}_is1" = OpenStealth 1.27
"{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}" = NVIDIA nTune
"{815CEA4A-97DC-4FB4-9415-A84174C1DE7E}}_is1" = OpenStealth 1.78
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{889DF117-14D1-44EE-9F31-C5FB5D47F68B}" = Yontoo 1.10.02
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8B743AA0-53B2-11D2-808A-00600895FB43}" = Heroes of Might and Magic III - Złota Edycja
"{8C3727F2-8E37-49E4-820C-03B1677F53B6}" = Twierdza Krzyżowiec
"{9066A404-CD62-4CC0-A089-A1554F960791}}_is1" = OpenStealth 1.23
"{90840409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Excel Viewer 2003
"{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"{95120000-003F-0415-0000-0000000FF1CE}" = Microsoft Office Excel Viewer
"{98061C12-46D0-4FA3-B895-B4ABEBCCCDE7}}_is1" = OpenStealth 1.14
"{995973ED-3980-4FA9-B975-EE0DAEEF2393}}_is1" = OpenStealth 1.15
"{99BEB67F-B288-44F5-8B2A-23F5A52FA1AE}_is1" = Universal AntiCheat 3 v1.068
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A5355F15-F98B-4704-9BAE-E53B9FE48F48}" = SDFormatter
"{A7914F46-B8EF-4205-9F2B-C2C78624EE46}}_is1" = OpenStealth 1.74
"{A8A56F8E-44B5-40DD-A354-45BD33AF843E}}_is1" = OpenStealth 1.80
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1045-7B44-A95000000001}" = Adobe Reader 9.5.0 - Polish
"{AF9DF4B7-5BDE-42F5-94EF-53311B55566B}" = Project IGI2 - Covert Strike
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panel sterowania NVIDIA 266.58
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Sterownik graficzny 266.58
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 135.50
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Oprogramowanie systemu PhysX 9.10.0514
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{BBCC4C9A-14C9-4EE4-9099-DB2C7316666B}" = Sound Blaster 5.1 VX
"{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}" = Creative MediaSource 5
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C1080852-065E-4991-9260-F3756E3CC182}" = CursorFX
"{C9FA44C7-8AC4-46ED-94A5-A12CC7B92D07}}_is1" = IBot 4.22
"{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}" = PlayReady PC Runtime x86
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D0B89FDC-1CDB-481C-BF96-6E5C4BA21000}}_is1" = OpenStealth 1.24
"{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}" = GTA San Andreas
"{D466F906-72B6-47B7-9213-B1FAF4145D91}}_is1" = OpenStealth 1.17
"{DB76863D-D4D9-4AB3-AFDC-26717BA1E11C}" = Windows Workflow Foundation PL Language Pack
"{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{FB697452-8CA4-46B4-98B1-165C922A2EF3}" = Update Manager for SweetPacks 1.0
"{FD593DE6-C3A0-4722-8E86-9DEEF0A93290}" = Microsoft .NET Framework 3.0 Polish Language Pack
"18 Wheels of Steel - Across America" = 18 Wheels of Steel - Across America
"18 Wheels of Steel: American Long Haul" = 18 Wheels of Steel: American Long Haul 
"6A1545AE87FC8D98ACA7539CE7AA69DF2A5C7E1C" = Pakiet sterowników systemu Windows - Advanced Micro Devices (AmdK8) Processor  (05/27/2006 1.3.2.0)
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"avast" = avast! Free Antivirus
"AVG Secure Search" = AVG Security Toolbar
"BabylonToolbar" = Babylon toolbar on IE
"CCleaner" = CCleaner
"Cheat Engine 6.2_is1" = Cheat Engine 6.2
"CheatEngine DB Toolbar Toolbar" = CheatEngine DB Toolbar Toolbar
"CPUID HWMonitor_is1" = CPUID HWMonitor 1.21
"Creative Software AutoUpdate" = Creative Software AutoUpdate
"CursorFX" = CursorFX
"DAEMON Tools Lite" = DAEMON Tools Lite
"DAEMON Tools Toolbar" = DAEMON Tools Toolbar
"DBDB2B2E231D0260DB18F8EAFCA6C8AE7C206629" = Pakiet sterowników systemu Windows - Sagem, SA (SG762_XP) Net  (10/28/2005 6.3.0.0)
"DealPly" = DealPly
"Deluxe Ski Jump 3_is1" = Deluxe Ski Jump 3 v1.7.0
"eMusic Promotion" = 50 FREE MP3s +1 Free Audiobook!
"ESL Wire_is1" = ESL Wire 1.15.2
"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
"ffdshow_is1" = ffdshow v1.1.3836 [2011-05-02]
"Gadu-Gadu" = Gadu-Gadu 7.0
"Gadu-Gadu 10" = Gadu-Gadu 10
"GIMP-2_is1" = GIMP 2.8.0
"Google Chrome" = Google Chrome
"ie8" = Windows Internet Explorer 8
"InstallShield_{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}" = NVIDIA nTune
"InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"ipla" = ipla 2.4
"IrfanView" = IrfanView (remove only)
"LiveVDO plugin" = LiveVDO plugin 1.3
"LogMeIn Hamachi" = LogMeIn Hamachi
"Lomsel Shutdown_is1" = Lomsel Shutdown 1.05
"Microsoft .NET Framework 2.0 Language Pack - PLK" = Microsoft .NET Framework 2.0 — pakiet języka polskiego
"Microsoft .NET Framework 3.0 Polish Language Pack" = Pakiet języka polskiego dla systemu Microsoft .NET Framework 3.0
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"mIRC" = mIRC
"Mozilla Firefox 7.0.1 (x86 pl)" = Mozilla Firefox 7.0.1 (x86 pl)
"Notepad++" = Notepad++
"NVIDIA Drivers" = NVIDIA Drivers
"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager
"PunkBusterSvc" = PunkBuster Services
"Skoki narciarskie 2003: Polski orzeł" = Skoki narciarskie 2003: Polski orzeł
"softonic" = Softonic toolbar  on IE and Chrome
"SoftwareUpdUtility" = Download Updater (AOL Inc.)
"Space Hack_is1" = Space Hack
"Steam App 10" = Counter-Strike
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"TeamViewer 8" = TeamViewer 8
"Totalcmd" = Total Commander (Remove or Repair)
"V9Software" = V9 HomeTool
"vShare.tv plugin" = vShare.tv plugin 1.3
"Winamp" = Winamp
"Winamp Toolbar" = Winamp Toolbar
"Winamp3" = Winamp3 (remove only)
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR archiver
"WinZip" = WinZip
"WMFDist11" = Windows Media Format 11 runtime
"Xfire" = Xfire (remove only)
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0
 
[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]
 
[HKEY_USERS\S-1-5-21-1801674531-1547161642-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{79A765E1-C399-405B-85AF-466F52E918B0}" = Ask Toolbar Updater
"GG" = GG
"PDF Reader" = PDF Reader
"Power Loader" = Power Challenge Game Plugin
"Winamp Detect" = Detektor Winampa
"Winamp Toolbar" = Winamp Toolbar
 
[color=#E56717]========== Last 20 Event Log Errors ==========[/color]
 
[ Application Events ]
Error - 2013-01-26 05:49:34 | Computer Name = PIDZIK-6P8XAZI2 | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd hwmonitor(33495).exe, wersja 0.0.0.0, moduł
 powodujący błąd unknown, wersja 0.0.0.0, adres błędu 0x00000000.
 
Error - 2013-01-26 06:50:27 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490
Description = wuauclt (1340) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb"
 w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 
(0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany
 przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032
 (0xfffffbf8).
 
Error - 2013-01-26 06:50:37 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490
Description = wuauclt (4776) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb"
 w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 
(0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany
 przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032
 (0xfffffbf8).
 
Error - 2013-01-26 06:50:48 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490
Description = wuauclt (824) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb"
 w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 
(0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany
 przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032
 (0xfffffbf8).
 
Error - 2013-01-26 06:50:58 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490
Description = wuauclt (4656) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb"
 w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 
(0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany
 przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032
 (0xfffffbf8).
 
Error - 2013-01-26 06:51:09 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490
Description = wuauclt (5876) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb"
 w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 
(0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany
 przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032
 (0xfffffbf8).
 
Error - 2013-01-26 06:51:19 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490
Description = wuauclt (6072) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb"
 w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 
(0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany
 przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032
 (0xfffffbf8).
 
Error - 2013-01-26 06:51:30 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490
Description = wuauclt (316) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb"
 w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 
(0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany
 przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032
 (0xfffffbf8).
 
Error - 2013-01-26 06:51:40 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490
Description = wuauclt (2552) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb"
 w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 
(0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany
 przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032
 (0xfffffbf8).
 
Error - 2013-01-26 06:51:51 | Computer Name = PIDZIK-6P8XAZI2 | Source = ESENT | ID = 490
Description = wuauclt (1388) Próba otwarcia pliku "C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb"
 w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 
(0x00000020): "Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany
 przez inny proces. ". Operacja otwierania pliku zostanie zakończona z błędem -1032
 (0xfffffbf8).
 
[ System Events ]
Error - 2013-01-04 09:49:49 | Computer Name = PIDZIK-6P8XAZI2 | Source = Dhcp | ID = 1002
Description = Adres IP połączenia 192.168.1.97 dla karty sieciowej o adresie 001A4DF9A8F8
 został  zabroniony przez serwer DHCP 192.168.1.1 (Serwer DHCP wysłał komunikat DHCPNACK).
 
Error - 2013-01-04 17:06:26 | Computer Name = PIDZIK-6P8XAZI2 | Source = Service Control Manager | ID = 7034
Description = Usługa vToolbarUpdater13.3.2 niespodziewanie zakończyła pracę. Wystąpiło
 to razy: 1.
 
Error - 2013-01-25 10:09:32 | Computer Name = PIDZIK-6P8XAZI2 | Source = Dhcp | ID = 1002
Description = Adres IP połączenia 192.168.1.237 dla karty sieciowej o adresie 001A4DF9A8F8
 został  zabroniony przez serwer DHCP 192.168.1.1 (Serwer DHCP wysłał komunikat DHCPNACK).
 
 
< End of report >
 
Zayfi
komentarz
komentarz

Masz strasznie zaśmiecony system.

 

Uruchom OTL i w oknie Własne opcje skanowania/skrypt wklej:

 

[xml]:OTL
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = pl.v9.com/idg/idg_1330794372_759913
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...ferrer:source?}
IE - HKLM\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://startsear.ch/...q={searchTerms}
IE - HKLM\..\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}: "URL" = http://startsear.ch/...q={searchTerms}
IE - HKLM\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweeti...D-001A4DF9A8F8}
IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = pl.v9.com/idg/idg_1330794372_759913
IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com/?l=dis&o=14656
IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (SweetIM Technologies Ltd.)
IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{96DACA10-7D49-4A4B-B35B-C4C3E3BE429A}: "URL" = http://websearch.ask...0F-98C710D149FC
IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.condui...&ctid=CT2304157
IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{C998C5D1-2B74-4439-BEAD-4E6DD49ADABD}: "URL" = http://search.babylo...00000ff01000001
IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}: "URL" = http://startsear.ch/...q={searchTerms}
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..extensions.enabledAddons: ffxtlbr@babylon.com:1.2.0
FF - prefs.js..extensions.enabledAddons: ffxtlbra@softonic.com:1.5.1
FF - prefs.js..extensions.enabledAddons: toolbar@ask.com:3.17.2.34141
FF - prefs.js..sweetim.toolbar.previous.browser.search.defaulturl: "http://search.condui...q={searchTerms}"
FF - prefs.js..sweetim.toolbar.previous.browser.search.selectedEngine: ""
[2013-01-26 15:22:49 | 000,000,000 | ---D | M] (Ask Toolbar) -- C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\toolbar@ask.com
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found


:Files
C:\Program Files\mozilla firefox\searchplugins\avg-secure-search.xml
C:\Program Files\mozilla firefox\searchplugins\babylon.xml
C:\Program Files\mozilla firefox\searchplugins\v9.xml
C:\Documents and Settings\BANIOK\Dane aplikacji\PriceGong
C:\Documents and Settings\BANIOK\Dane aplikacji\Softonic

:Commands
[emptytemp][/xml]

 

 

Kliknij w Wykonaj skrypt

 

 

2. Zpanelu dodaj/usuń programy odinstaluj

 

SweetIM for Messenger 3.6
Ask Toolbar
AVG Security Toolbar
Softonic toolbar  on IE and Chrome
V9Software" = V9 HomeTool
Winamp Toolbar

 

 

3. Po wykonaniu czynności zrób nowy skan OTL i wstaw raport (najlepiej na http://wklej.org)

 

 

 

 

 

 

bnkkk
komentarz
komentarz
Zayfi
komentarz
komentarz

Uruchom OTL i w okno Włąsne opcje skanowania/skrypt wklej:

 

 

[xml]:OTL
IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{0D7562AE-8EF6-416d-A838-AB665251703A}: "URL" = http://start.facemoods.com/?a=dpgppc&s={searchTerms}&f=4
IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://startsear.ch/?aff=2&src=sp&cf=af231868-234c-11e1-8925-001a4df9a8f8&q={searchTerms}
IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{1744F8FC-2A9D-4AD4-8C5A-291C24FAC341}: "URL" = http://search.aol.pl/aol/search?s_it=tb50winamp&q={searchTerms}
IE - HKU\S-1-5-21-1801674531-1547161642-839522115-1004\..\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5}: "URL" = http://search.babylon.com/?babsrc=SP_ss&q={searchTerms}&mntrId=e40bc2ba00000000000000ff01000001&tlver=1.4.23.10&affID=100607
O2 - BHO: (SweetPacks Browser Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll File not found
O2 - BHO: (SMTTB2009 Class) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\CheatEngine DB Toolbar Toolbar\tbcore3.dll File not found
O3 - HKLM\..\Toolbar: (CheatEngine DB Toolbar Toolbar) - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files\CheatEngine DB Toolbar Toolbar\tbcore3.dll File not found
O3 - HKLM\..\Toolbar: (StartSearchToolBar) - {7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} - C:\Program Files\StartSearch plugin\ssBarLcher.dll (StartSearch Inc.)
O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll (Babylon Ltd.)
O3 - HKLM\..\Toolbar: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll File not found

:Services

avgtp

:Commands
[reboot][/xml]

 

Kliknij w Wykonaj skrypt.

 

 

2.Pobierz AdwCleaner i zastosuj w nim opcje skanuj a potem usuń.

 

http://www.bleepingcomputer.com/download/adwcleaner/

 

 

3. Zrób nowy skan OTL i przedstaw raport.

bnkkk
komentarz
komentarz (edytowane)
Zayfi
komentarz
komentarz

Zamknij wszystkie przeglądarki koniecznie.

 

Uruchom OTL i w oknie Własne opcje skanowania/skrypt wklej

 

 

[xml]:OTL
FF - prefs.js..browser.search.defaulturl: "http://search.winamp.com/search/search?query={searchTerms}&invocationType=winamp-ff&s_qt=sb&tb_uuid=20120915171157156&tb_oid=25-01-2013&tb_mrud=26-01-2013&query="
FF - prefs.js..extensions.enabledAddons: ffxtlbra@softonic.com:1.5.1




:Files
C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\{8b9fe9be-f7dd-451e-ac96-0e568e0ecc10}
C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\{c86eb8a9-ccc2-4b6c-b75d-73576ed591bf}
C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\engine@conduit.com
C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\ffxtlbr@babylon.com
C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\extensions\ffxtlbra@softonic.com
C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\searchplugins\MyStart Search.xml
C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\searchplugins\sweetim.xml
C:\Documents and Settings\BANIOK\Dane aplikacji\Mozilla\Firefox\Profiles\u0bw247k.default\searchplugins\winamp-web-search.xml


:Commands
[emptytemp][/xml]

 

 

Kliknij w Wykonaj skrypt.

 

Po restarcie będzie log z usuwania. Przedstaw go.

bnkkk
komentarz
komentarz
Zayfi
komentarz
komentarz

Uruchom OTL i Kliknij Sprzątanie.

 

Wyczyść foldery Przywracania systemu

PPM na Mój komputer > Włąściwości > Przywracanie systemu > zaznacz Wyłącz

 

potem odznacz opcję

 

Zaktualizuj Firefoxa bo masz starą wersję Mozilla Firefox 7.0.1 (x86 pl)"

 

Odinstaluj starą Javę i pobierz najnowszą

 

 

Niezbyt szczęśliwa konfiguracja dysku. Brak podziału na partycje.

 

[xml]%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 232,88 Gb Total Space | 128,34 Gb Free Space | 55,11% Space Free | Partition Type: NTFS[/xml]

bnkkk
komentarz
komentarz

Zrobilem wszystko i co ?

Zayfi
komentarz
komentarz

Dalej masz problem z zacinaniem?

bnkkk
komentarz
komentarz

Troszke jest ale pozniej bede robil cos na komputerze bardziej bo teraz nie mam czasu to zobacze czy lepiej jest.



Komputer zacina sie dalej, dodam rowniez ze uzycie mojego procesora wacha sie od 40 nawet do 100% czasami.

Zayfi
komentarz
komentarz
Komputer zacina sie dalej,

co konkretnie robisz że sie zacina?

bnkkk
komentarz
komentarz

obojetne co nawet jak chce wlaczyc nowa karte w przegldarce to musze dlugo czekac. Kiedys z cheat engine zbieralem w takiej gierce szybciej palladium to takie gwiazki w ok.90 minut cala ladownie a teraz jak wlaczam to musze 150 minut czekac bo gdy do tego podlatuje to mnie laguje i niby zbieram a nie zbieram.



i co?

Zayfi
komentarz
komentarz
i co?

I Avast testowo do deinstalacji. I sprawdzasz jak zachowuje się system.

hixmen
komentarz
komentarz

Jak deinstalacja Avasta nie poprawi sytuacji to pokaż SMART dysku np. z programu HDTune zakładka Health oraz Info to pokaże czy dysk pracuje w PIO czy DMA.

bnkkk
komentarz
komentarz

Przepraszam ze mnie troszke nie bylo :/ Juz bede to deinstalowal 



Po tej deinstalacji tak jak jzu mowilem dalej zbiera to wolno i zacina sie przy tym zbieraniu nie tak jak kiedys szybko smigalo



Co podac z tego programu HDTune?

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.