Skocz do zawartości

Zarchiwizowany

Ten temat jest archiwizowany i nie można dodawać nowych odpowiedzi.

Cearme

Wyrzuca wszystko do pulpitu. (Otl)

Polecane posty

Cześć od paru dni mam problem z systemem. Mianowicie wszystko wyrzuca mi do pulpitu, każdą grę, każdy program. Tutaj jest raport z OTL'a (temat: http://forum.cdaction.pl/index.php?showtopic=116155)

OTL Extras logfile created on: 2013-03-09 16:40:08 - Run 1

OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\user\Moje dokumenty\Pobieranie

Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 7.0.5730.13)

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

3,00 Gb Total Physical Memory | 1,99 Gb Available Physical Memory | 66,48% Memory free

4,84 Gb Paging File | 3,72 Gb Available in Paging File | 76,80% Paging File free

Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 48,83 Gb Total Space | 28,85 Gb Free Space | 59,09% Space Free | Partition Type: NTFS

Drive D: | 208,49 Gb Total Space | 168,32 Gb Free Space | 80,73% Space Free | Partition Type: NTFS

Drive E: | 208,43 Gb Total Space | 207,23 Gb Free Space | 99,42% Space Free | Partition Type: NTFS

Computer Name: MROZICKIPAWEL | User Name: user | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: All users

Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

[HKEY_USERS\S-1-5-21-1993962763-484763869-1801674531-1004\SOFTWARE\Classes\<extension>]

.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]

batfile [open] -- "%1" %*

cmdfile [open] -- "%1" %*

comfile [open] -- "%1" %*

cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

exefile [open] -- "%1" %*

htmlfile [edit] -- Reg Error: Key error.

InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l

piffile [open] -- "%1" %*

regfile [merge] -- Reg Error: Key error.

scrfile [config] -- "%1"

scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l

scrfile [open] -- "%1" /S

txtfile [edit] -- Reg Error: Key error.

Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1

Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)

Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)

Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)

Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)

Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)

Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

"FirstRunDisabled" = 1

"AntiVirusDisableNotify" = 0

"FirewallDisableNotify" = 0

"UpdatesDisableNotify" = 0

"AntiVirusOverride" = 1

"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]

"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]

"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]

"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007

"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

"57962:TCP" = 57962:TCP:*:Enabled:Pando Media Booster

"57962:UDP" = 57962:UDP:*:Enabled:Pando Media Booster

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

"EnableFirewall" = 1

"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007

"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

"139:TCP" = 139:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22004

"445:TCP" = 445:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22005

"137:UDP" = 137:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22001

"138:UDP" = 138:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22002

"57962:TCP" = 57962:TCP:*:Enabled:Pando Media Booster

"57962:UDP" = 57962:UDP:*:Enabled:Pando Media Booster

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)

"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)

"C:\Program Files\Pando Networks\Media Booster\PMB.exe" = C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)

"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)

"C:\WINDOWS\system32\PnkBstrA.exe" = C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA -- ()

"C:\WINDOWS\system32\PnkBstrB.exe" = C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB -- ()

"C:\Program Files\Bonjour\mDNSResponder.exe" = C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour -- (Apple Inc.)

"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)

"D:\Heroes 5\bin\H5_Game.exe" = D:\Heroes 5\bin\H5_Game.exe:*:Enabled:Heroes of Might and Magic V -- ()

"\\MROZICKI-D50C0A\E\gry\Counter-Strike 1.6\hltv.exe" = \\MROZICKI-D50C0A\E\gry\Counter-Strike 1.6\hltv.exe:*:Enabled:hltv.exe

"C:\Documents and Settings\user\Pulpit\Counter-Strike 1.6\hl.exe" = C:\Documents and Settings\user\Pulpit\Counter-Strike 1.6\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)

"C:\Documents and Settings\user\Pulpit\Counter-Strike 1.6\hlds.exe" = C:\Documents and Settings\user\Pulpit\Counter-Strike 1.6\hlds.exe:*:Enabled:HLDS Launcher -- (Valve)

"C:\Documents and Settings\user\Pulpit\Counter-Strike 1.6\hltv.exe" = C:\Documents and Settings\user\Pulpit\Counter-Strike 1.6\hltv.exe:*:Enabled:HLTV Launcher -- (Valve)

"D:\enemy\etqw.exe" = D:\enemy\etqw.exe:*:Enabled:Enemy Territory - QUAKE Wars -- (Splash Damage, Ltd.)

"D:\enemy\etqwded.exe" = D:\enemy\etqwded.exe:*:Enabled:etqwded.exe -- (Splash Damage, Ltd.)

"C:\WINDOWS\system32\muzapp.exe" = C:\WINDOWS\system32\muzapp.exe:*:Enabled:MUZ AOD APP player -- (Musiccity Co.Ltd.)

"C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe" = C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe:*:Enabled:Ubisoft Game Launcher -- ()

"C:\Program Files\Ubisoft\Might & Magic Heroes VI\Might & Magic Heroes VI.exe" = C:\Program Files\Ubisoft\Might & Magic Heroes VI\Might & Magic Heroes VI.exe:*:Enabled:Might & Magic Heroes VI -- (Black Hole Entertainment)

"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)

"D:\steam\Steam.exe" = D:\steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation)

"C:\Program Files\Pando Networks\Media Booster\PMB.exe" = C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()

"D:\steam\SteamApps\common\Darksiders 2\Darksiders2.exe" = D:\steam\SteamApps\common\Darksiders 2\Darksiders2.exe:*:Enabled:Darksiders II -- ()

"C:\Program Files\AVG\AVG2013\avgmfapx.exe" = C:\Program Files\AVG\AVG2013\avgmfapx.exe:*:Enabled:Instalator AVG -- (AVG Technologies CZ, s.r.o.)

"C:\Program Files\AVG\AVG2013\avgnsx.exe" = C:\Program Files\AVG\AVG2013\avgnsx.exe:*:Enabled:Ochrona Sieci -- (AVG Technologies CZ, s.r.o.)

"C:\Program Files\AVG\AVG2013\avgdiagex.exe" = C:\Program Files\AVG\AVG2013\avgdiagex.exe:*:Enabled:Diagnostyka AVG 2013 -- (AVG Technologies CZ, s.r.o.)

"C:\Program Files\AVG\AVG2013\avgemcx.exe" = C:\Program Files\AVG\AVG2013\avgemcx.exe:*:Enabled:Uniwersalny skaner poczty e-mail -- (AVG Technologies CZ, s.r.o.)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam

"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended

"{0DE075DB-4218-4B2C-A35E-48D80BA680BB}" = Heroes of Might and Magic V

"{105CFC7C-6992-11D5-BD9D-000102C10FD8}" = Lizardtech DjVu Control

"{1E249838-D27F-4C11-8C62-0D1CACCFC7EB}" = Disney-Pixar Wall-E

"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer

"{241DBC8D-14E3-4240-8EE5-3AC35086B638}" = AVG 2013

"{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java 6 Update 17

"{318AB667-3230-41B5-A617-CB3BF748D371}" = iTunes

"{319D91C6-3D44-436C-9F79-36C0D22372DC}" = TP-LINK Wireless Configuration Utility

"{321320E1-0E5A-36CB-9E52-F3B201B8C4D4}" = Microsoft .NET Framework 4 Client Profile PLK Language Pack

"{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP

"{361693F2-A153-4359-A4CB-A1B9FF2AA5E6}" = A4tech USB Mouse Quality Testing Program V4.0

"{38A1E3ED-D913-41D2-9953-A93D5ACE3ADF}" = TL-WN721N/TL-WN722N Driver

"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile

"{4248F8E5-5994-4F33-8251-544D02EA9925}" = FEAR Perseus Mandate

"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype? 6.2

"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml

"{5C19E2DC-4CCF-3114-B40A-6E565987025F}" = Microsoft .NET Framework 4 Extended PLK Language Pack

"{5DB65884-C963-4454-AABA-4CA3089281FA}" = NVIDIA PhysX

"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update

"{6F8CBBFB-7986-4140-91EC-D8C7F1EC8DF3}" = AVG 2013

"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable

"{745D37C2-26F4-4B65-BA13-F9840EBFA75B}" = Might & Magic Heroes VI

"{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies

"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053

"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher

"{88F0F4FF-B514-4E32-9C17-CAF96D60EAFC}" = Razer Game Booster

"{8A25392D-C5D2-4E79-A2BD-C15DDC5B0959}" = Bonjour

"{8FB53850-246A-3507-8ADE-0060093FFEA6}" = Visual Studio Tools for the Office system 3.0 Runtime

"{92606477-9366-4D3B-8AE3-6BE4B29727AB}" = League of Legends

"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster

"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

"{A2104078-AAA5-449E-95DD-55C9443A1045}" = Nero 7 Essentials

"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2

"{AC76BA86-7AD7-1045-7B44-A70500000002}" = Adobe Reader 7.0.5 - Polish

"{B7A585C8-CE4E-4150-84C6-A13C3CB1379F}" = Enemy Territory - Quake Wars

"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2

"{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}" = TuneUp Utilities 2013

"{C66A542D-B66B-4E67-84EA-F2D0383FBC14}" = TuneUp Utilities Language Pack (pl-PL)

"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1

"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1

"{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones

"{D9B4D7EE-481C-4C36-86AB-A8F7417725FF}" = LightScribe 1.6.43.1

"{DBEA1034-5882-4A88-8033-81C4EF0CFA29}" = Google Toolbar for Internet Explorer

"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime

"{EC4455AB-F155-4CC1-A4C5-88F3777F9886}" = Apple Mobile Device Support

"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219

"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver

"{F138762F-5A1F-4CF0-A5E1-1588EF6088A4}" = Wiedźmin

"{F958CA02-BB40-4007-894B-258729456EE4}" = QuickTime

"6A1545AE87FC8D98ACA7539CE7AA69DF2A5C7E1C" = Pakiet sterowników systemu Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)

"Adobe Acrobat 4.0" = Adobe Acrobat 4.0

"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX

"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin

"AVG" = AVG 2013

"BSPlayer1" = BSPlayer

"EADM" = EA Download Manager

"Free CD to MP3 Converter" = Free CD to MP3 Converter

"Generic USB 106 Sound" = Genesis HX77 Headset

"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs

"ie7" = Windows Internet Explorer 7

"InstallShield_{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies

"IrfanView" = IrfanView (remove only)

"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 4.5.3

"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1

"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1

"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile

"Microsoft .NET Framework 4 Client Profile PLK Language Pack" = Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile

"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended

"Microsoft .NET Framework 4 Extended PLK Language Pack" = Polski pakiet językowy dla programu Microsoft .NET Framework 4 Extended

"Mozilla Firefox 12.0 (x86 pl)" = Mozilla Firefox 12.0 (x86 pl)

"MozillaMaintenanceService" = Mozilla Maintenance Service

"NAPIPROJEKT_is1" = NAPIPROJEKT 1.0.6.2

"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs

"NVIDIA Drivers" = NVIDIA Drivers

"PunkBusterSvc" = PunkBuster Services

"Recuva" = Recuva

"screenSHU" = screenSHU - the fastest screen capture ever.

"Steam App 50650" = Darksiders II

"ToonCar" = ToonCar

"TuneUp Utilities 2013" = TuneUp Utilities 2013

"Visual Studio Tools for the Office system 3.0 Runtime" = Visual Studio Tools for the Office system 3.0 Runtime

"WheelMouse" = Smart-X7 7.80

"Winamp" = Winamp

"Windows Media Format Runtime" = Windows Media Format 11 runtime

"WinRAR archiver" = Archiwizator WinRAR

"WMFDist11" = Windows Media Format 11 runtime

"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0

"x264 Revision 489 x264.nl" = x264 Revision 489 x264.nl (remove only)

"Yahoo! Companion" = Yahoo! Companion

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1993962763-484763869-1801674531-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

"Winamp Detect" = Detektor Winampa

========== Last 20 Event Log Errors ==========

[ Application Events ]

Error - 2009-11-09 12:17:07 | Computer Name = MROZICKIPAWEL | Source = Application Hang | ID = 1002

Description = Aplikacja zawieszająca autorun.exe, wersja 1.0.0.1, moduł zawieszenia

hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2009-11-09 12:17:29 | Computer Name = MROZICKIPAWEL | Source = Application Hang | ID = 1002

Description = Aplikacja zawieszająca autorun.exe, wersja 1.0.0.1, moduł zawieszenia

hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2010-01-09 13:55:22 | Computer Name = MROZICKIPAWEL | Source = Application Hang | ID = 1002

Description = Aplikacja zawieszająca mmc.exe, wersja 5.2.3790.4136, moduł zawieszenia

hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2010-01-20 06:00:49 | Computer Name = MROZICKIPAWEL | Source = Application Error | ID = 1000

Description = Aplikacja powodująca błąd core.exe, wersja 5.0.0.255, moduł powodujący

błąd core.exe, wersja 5.0.0.255, adres błędu 0x0016b6a2.

Error - 2010-03-31 11:54:06 | Computer Name = MROZICKIPAWEL | Source = Application Error | ID = 1000

Description = Aplikacja powodująca błąd h5_game.exe, wersja 1.0.0.27, moduł powodujący

błąd h5_game.exe, wersja 1.0.0.27, adres błędu 0x00541542.

Error - 2010-03-31 11:54:33 | Computer Name = MROZICKIPAWEL | Source = Application Error | ID = 1000

Description = Aplikacja powodująca błąd h5_game.exe, wersja 1.0.0.27, moduł powodujący

błąd h5_game.exe, wersja 1.0.0.27, adres błędu 0x00541542.

Error - 2010-03-31 11:55:42 | Computer Name = MROZICKIPAWEL | Source = Application Error | ID = 1000

Description = Aplikacja powodująca błąd h5_game.exe, wersja 1.2.0.12, moduł powodujący

błąd h5_game.exe, wersja 1.2.0.12, adres błędu 0x001bb602.

Error - 2010-04-08 04:27:54 | Computer Name = MROZICKIPAWEL | Source = Application Error | ID = 1000

Description = Aplikacja powodująca błąd shift.exe, wersja 1.0.0.0, moduł powodujący

błąd unknown, wersja 0.0.0.0, adres błędu 0x00007365.

Error - 2010-04-28 04:26:56 | Computer Name = MROZICKIPAWEL | Source = Application Hang | ID = 1002

Description = Aplikacja zawieszająca nero.exe, wersja 7.9.6.0, moduł zawieszenia

hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2010-04-28 04:27:04 | Computer Name = MROZICKIPAWEL | Source = Application Hang | ID = 1002

Description = Aplikacja zawieszająca nero.exe, wersja 7.9.6.0, moduł zawieszenia

hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

[ System Events ]

Error - 2013-03-07 16:02:53 | Computer Name = MROZICKIPAWEL | Source = Service Control Manager | ID = 7006

Description = Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił

następujący błąd: %%5.

Error - 2013-03-07 17:39:51 | Computer Name = MROZICKIPAWEL | Source = DCOM | ID = 10010

Description = Serwer {9B1F122C-2982-4E91-AA8B-E071D54F2A4D} nie zarejestrował się

w modelu DCOM w wymaganym czasie.

Error - 2013-03-07 17:41:51 | Computer Name = MROZICKIPAWEL | Source = DCOM | ID = 10010

Description = Serwer {9B1F122C-2982-4E91-AA8B-E071D54F2A4D} nie zarejestrował się

w modelu DCOM w wymaganym czasie.

Error - 2013-03-08 09:40:11 | Computer Name = MROZICKIPAWEL | Source = NetBT | ID = 4307

Description = Zainicjowanie nie powiodło się, ponieważ transport odmówił otwarcia

adresów początkowych.

Error - 2013-03-08 09:40:24 | Computer Name = MROZICKIPAWEL | Source = Service Control Manager | ID = 7006

Description = Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił

następujący błąd: %%5.

Error - 2013-03-08 09:40:24 | Computer Name = MROZICKIPAWEL | Source = Service Control Manager | ID = 7006

Description = Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił

następujący błąd: %%5.

Error - 2013-03-08 11:57:26 | Computer Name = MROZICKIPAWEL | Source = DCOM | ID = 10010

Description = Serwer {9B1F122C-2982-4E91-AA8B-E071D54F2A4D} nie zarejestrował się

w modelu DCOM w wymaganym czasie.

Error - 2013-03-09 10:57:00 | Computer Name = MROZICKIPAWEL | Source = Service Control Manager | ID = 7006

Description = Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił

następujący błąd: %%5.

Error - 2013-03-09 10:57:00 | Computer Name = MROZICKIPAWEL | Source = Service Control Manager | ID = 7006

Description = Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił

następujący błąd: %%5.

Error - 2013-03-09 10:57:03 | Computer Name = MROZICKIPAWEL | Source = sr | ID = 1

Description = Filtr Przywracania systemu napotkał nieoczekiwany błąd '0xC0000001'

podczas przetwarzania pliku '' w woluminie 'HarddiskVolume1'. W rezultacie zostało

zatrzymane monitorowanie woluminu.

< End of report >

Kolejny:

OTL logfile created on: 2013-03-09 16:40:08 - Run 1

OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\user\Moje dokumenty\Pobieranie

Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 7.0.5730.13)

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

3,00 Gb Total Physical Memory | 1,99 Gb Available Physical Memory | 66,48% Memory free

4,84 Gb Paging File | 3,72 Gb Available in Paging File | 76,80% Paging File free

Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 48,83 Gb Total Space | 28,85 Gb Free Space | 59,09% Space Free | Partition Type: NTFS

Drive D: | 208,49 Gb Total Space | 168,32 Gb Free Space | 80,73% Space Free | Partition Type: NTFS

Drive E: | 208,43 Gb Total Space | 207,23 Gb Free Space | 99,42% Space Free | Partition Type: NTFS

Computer Name: MROZICKIPAWEL | User Name: user | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: All users

Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013-03-09 16:38:57 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\user\Moje dokumenty\Pobieranie\OTL.exe

PRC - [2013-03-07 13:53:25 | 000,924,600 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe

PRC - [2013-02-25 07:39:34 | 001,602,984 | ---- | M] (Valve Corporation) -- D:\steam\steam.exe

PRC - [2013-01-31 11:12:26 | 001,926,944 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesApp32.exe

PRC - [2013-01-31 11:12:24 | 001,724,192 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe

PRC - [2012-12-11 03:52:44 | 003,147,384 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgui.exe

PRC - [2012-11-15 23:34:30 | 005,814,904 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgidsagent.exe

PRC - [2012-10-30 04:59:56 | 000,726,648 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgrsx.exe

PRC - [2012-10-22 13:05:08 | 000,196,664 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgwdsvc.exe

PRC - [2012-10-22 13:04:32 | 001,116,792 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgnsx.exe

PRC - [2012-10-22 13:03:52 | 000,796,792 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgemcx.exe

PRC - [2012-10-22 13:03:46 | 000,440,440 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgcsrvx.exe

PRC - [2011-11-18 17:14:48 | 000,788,992 | ---- | M] () -- C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe

PRC - [2011-08-01 04:32:20 | 000,020,880 | ---- | M] () -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe

PRC - [2011-08-01 04:32:10 | 003,507,088 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files\Samsung\Kies\KiesTrayAgent.exe

PRC - [2011-03-31 15:36:56 | 000,073,728 | ---- | M] () -- C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\WJATH\AthServer.exe

PRC - [2011-03-31 15:36:54 | 000,499,796 | ---- | M] (Atheros) -- C:\WINDOWS\system32\acs.exe

PRC - [2010-07-26 14:15:26 | 000,217,088 | ---- | M] (Teruten) -- C:\WINDOWS\system32\FsUsbExService.Exe

PRC - [2008-04-15 13:00:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe

PRC - [2007-05-15 14:55:46 | 001,628,208 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero 7\InCD\NBHGui.exe

PRC - [2007-05-15 14:55:46 | 001,550,896 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe

PRC - [2007-05-15 14:55:26 | 001,057,328 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero 7\InCD\InCD.exe

PRC - [2006-12-26 08:08:50 | 000,196,608 | ---- | M] (A4Tech Co., Ltd.) -- C:\Program Files\A4Tech\Mouse\Amoumain.exe

========== Modules (No Company Name) ==========

MOD - [2013-03-07 13:53:25 | 001,952,696 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll

MOD - [2013-03-07 07:48:59 | 001,159,168 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Management\6a6f4be744ed5bc5273cbcf0fcf303e3\System.Management.ni.dll

MOD - [2013-03-07 07:39:16 | 000,767,488 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Remo#\dc1f0dbf1d3ba856eccec90b62b55d79\System.Runtime.Remoting.ni.dll

MOD - [2013-03-07 07:38:36 | 001,776,640 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xaml\035910922f160d304fb834aae41f45a6\System.Xaml.ni.dll

MOD - [2013-03-06 22:02:47 | 017,629,184 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\7f91eecda3ff7ce478146b6458580c98\PresentationFramework.ni.dll

MOD - [2013-03-06 22:02:40 | 013,006,336 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\17e020ae92d7fab33bcc1c98b25019d0\System.Windows.Forms.ni.dll

MOD - [2013-03-06 22:02:29 | 001,651,200 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Drawing\dd57bc19f5807c6dbe8f88d4a23277f6\System.Drawing.ni.dll

MOD - [2013-03-06 22:02:25 | 011,057,664 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PresentationCore\3963e9ce8d44f50e8367e92a8e3e42e6\PresentationCore.ni.dll

MOD - [2013-03-06 22:02:25 | 000,656,896 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\016f9a150fce0e0a4c93532d8fa4c749\PresentationFramework.Luna.ni.dll

MOD - [2013-03-06 22:02:24 | 005,571,584 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xml\e997d0200c25f7db6bd32313d50b729d\System.Xml.ni.dll

MOD - [2013-03-06 22:02:17 | 007,025,664 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Core\713647b987b140a17e3c4ffe4c721f85\System.Core.ni.dll

MOD - [2013-03-06 22:02:14 | 003,779,072 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\WindowsBase\d17606e813f01376bd0def23726ecc62\WindowsBase.ni.dll

MOD - [2013-03-06 22:02:03 | 009,000,960 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System\964da027ebca3b263a05cadb8eaa20a3\System.ni.dll

MOD - [2013-03-06 22:01:54 | 014,415,872 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\mscorlib\246f1a5abb686b9dcdf22d3505b08cea\mscorlib.ni.dll

MOD - [2013-02-25 07:39:32 | 000,988,584 | ---- | M] () -- D:\steam\bin\chromehtml.dll

MOD - [2013-02-19 11:48:10 | 020,340,648 | ---- | M] () -- D:\steam\bin\libcef.dll

MOD - [2012-12-18 18:28:50 | 000,647,168 | ---- | M] () -- D:\steam\sdl.dll

MOD - [2012-12-11 09:51:10 | 001,100,800 | ---- | M] () -- D:\steam\bin\avcodec-53.dll

MOD - [2012-12-11 09:51:10 | 000,192,000 | ---- | M] () -- D:\steam\bin\avformat-53.dll

MOD - [2012-12-11 09:51:10 | 000,124,416 | ---- | M] () -- D:\steam\bin\avutil-51.dll

MOD - [2011-11-18 17:14:48 | 000,788,992 | ---- | M] () -- C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe

MOD - [2011-08-25 14:02:18 | 001,425,920 | ---- | M] () -- C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\nicLan.dll

MOD - [2011-08-18 22:05:53 | 000,115,137 | ---- | M] () -- C:\Documents and Settings\user\Ustawienia lokalne\Temp\3dcf2df1-2a83-477c-a7dd-858967792357\CliSecureRT.dll

MOD - [2011-08-01 04:32:20 | 000,020,880 | ---- | M] () -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe

MOD - [2011-05-05 18:23:30 | 006,053,536 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

MOD - [2011-03-31 15:36:56 | 000,231,424 | ---- | M] () -- C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\WJATH\WjAth.dll

MOD - [2011-03-31 15:36:56 | 000,073,728 | ---- | M] () -- C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\WJATH\AthServer.exe

MOD - [2011-03-31 15:36:56 | 000,024,576 | ---- | M] () -- C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\WJATH\IAthWcAPI.dll

MOD - [2011-03-31 15:36:46 | 000,167,424 | ---- | M] () -- C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\DC_WFF.dll

MOD - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll

MOD - [2007-02-16 16:40:42 | 005,521,408 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\QtGui4.dll

MOD - [2007-02-16 16:40:40 | 001,466,368 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\QtCore4.dll

========== Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)

SRV - [2013-03-07 13:53:25 | 000,129,976 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)

SRV - [2013-02-07 13:10:08 | 000,161,384 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)

SRV - [2013-01-31 11:12:24 | 001,724,192 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc)

SRV - [2013-01-31 11:12:22 | 000,029,984 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)

SRV - [2012-11-19 17:03:24 | 000,489,256 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)

SRV - [2012-11-15 23:34:30 | 005,814,904 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2013\avgidsagent.exe -- (AVGIDSAgent)

SRV - [2012-10-22 13:05:08 | 000,196,664 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2013\avgwdsvc.exe -- (avgwd)

SRV - [2011-03-31 15:36:54 | 000,499,796 | ---- | M] (Atheros) [Auto | Running] -- C:\WINDOWS\system32\acs.exe -- (ACS)

SRV - [2011-03-31 15:36:52 | 000,360,529 | ---- | M] (wireless) [On_Demand | Stopped] -- C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\WPS\jswpsapi.exe -- (jswpsapi)

SRV - [2010-07-26 14:15:26 | 000,217,088 | ---- | M] (Teruten) [Auto | Running] -- C:\WINDOWS\system32\FsUsbExService.Exe -- (FsUsbExService)

SRV - [2007-05-15 14:55:46 | 001,550,896 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe -- (InCDsrv)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)

DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)

DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)

DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)

DRV - File not found [Kernel | System | Stopped] -- -- (Changer)

DRV - [2013-03-06 00:28:47 | 000,278,984 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)

DRV - [2013-03-06 00:28:46 | 000,025,416 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)

DRV - [2012-11-15 23:33:26 | 000,094,048 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (Avgmfx86)

DRV - [2012-11-13 21:53:00 | 000,014,416 | ---- | M] (OpenLibSys.org) [File_System | On_Demand | Stopped] -- C:\Program Files\Razer\Razer Game Booster\Driver\WinRing0.sys -- (WinRing0_1_2_0)

DRV - [2012-10-22 13:02:46 | 000,179,936 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgidsdriverx.sys -- (AVGIDSDriver)

DRV - [2012-10-15 03:48:52 | 000,055,776 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\avgidshx.sys -- (AVGIDSHX)

DRV - [2012-10-02 03:30:38 | 000,159,712 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (Avgldx86)

DRV - [2012-09-21 03:46:06 | 000,164,832 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (Avgtdix)

DRV - [2012-09-21 03:46:00 | 000,177,376 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\avglogx.sys -- (Avglogx)

DRV - [2012-09-21 03:45:54 | 000,019,936 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgidsshimx.sys -- (AVGIDSShim)

DRV - [2012-09-19 10:50:50 | 000,010,088 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)

DRV - [2012-09-14 03:05:20 | 000,035,552 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\avgrkx86.sys -- (Avgrkx86)

DRV - [2011-12-07 20:52:28 | 000,022,328 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PnkBstrK.sys -- (PnkBstrK)

DRV - [2011-07-28 19:06:06 | 001,763,584 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\athuw.sys -- (AR9271)

DRV - [2011-07-20 08:46:04 | 000,181,432 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssudmdm.sys -- (ssudmdm)

DRV - [2011-07-20 08:46:04 | 000,077,624 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssudbus.sys -- (dg_ssudbus)

DRV - [2011-03-31 15:36:52 | 000,058,208 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\wsimd.sys -- (WSIMD)

DRV - [2011-03-31 15:36:52 | 000,057,440 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\jswscimd.sys -- (JSWSCIMD)

DRV - [2011-03-08 13:40:58 | 000,020,032 | ---- | M] (Devguru Co., Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\dgderdrv.sys -- (dgderdrv)

DRV - [2010-12-21 06:55:02 | 000,132,424 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdm.sys -- (sscdmdm)

DRV - [2010-12-21 06:55:02 | 000,104,648 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdbus.sys -- (sscdbus)

DRV - [2010-12-21 06:55:02 | 000,014,920 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdfl.sys -- (sscdmdfl)

DRV - [2010-08-12 11:23:48 | 001,513,984 | R--- | M] (C-Media Electronics Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\CM106.sys -- (USBMULCD)

DRV - [2010-07-26 14:15:26 | 000,036,640 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk)

DRV - [2008-12-24 11:42:15 | 000,015,600 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\gdrv.sys -- (gdrv)

DRV - [2008-10-14 11:07:50 | 000,103,936 | R--- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZTEusbser6k.sys -- (ZTEusbser6k)

DRV - [2008-10-14 11:07:50 | 000,103,936 | R--- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZTEusbnmeaext.sys -- (ZTEusbnmeaext)

DRV - [2008-10-14 11:07:50 | 000,103,936 | R--- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZTEusbnmea.sys -- (ZTEusbnmea)

DRV - [2008-10-14 11:07:50 | 000,103,936 | R--- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZTEusbmdm6k.sys -- (ZTEusbmdm6k)

DRV - [2008-10-14 08:10:30 | 000,034,688 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pcampr5.sys -- (PCAMPR5)

DRV - [2008-06-16 09:13:46 | 000,032,128 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pcandis5.sys -- (PCANDIS5)

DRV - [2007-09-05 10:31:30 | 004,611,072 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService)

DRV - [2007-06-28 11:46:42 | 000,020,480 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)

DRV - [2007-06-28 11:46:40 | 000,045,824 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)

DRV - [2007-05-15 14:55:36 | 000,118,576 | ---- | M] (Nero AG) [File_System | Disabled | Running] -- C:\WINDOWS\system32\drivers\InCDfs.sys -- (InCDfs)

DRV - [2007-05-15 14:55:36 | 000,038,576 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\InCDRm.sys -- (incdrm)

DRV - [2007-05-15 14:55:36 | 000,037,040 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\InCDPass.sys -- (InCDPass)

DRV - [2007-05-15 14:55:36 | 000,016,304 | ---- | M] (Nero AG) [Recognizer | System | Unknown] -- C:\WINDOWS\System32\drivers\InCDrec.sys -- (InCDrec)

DRV - [2006-12-15 16:09:50 | 000,013,824 | R--- | M] (A4Tech Co.,Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Amusbprt.sys -- (Amusbprt)

DRV - [2006-12-15 16:09:24 | 000,008,704 | R--- | M] (A4Tech Co.,Ltd.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\Amfilter.sys -- (Amfilter)

DRV - [2006-06-18 22:51:32 | 000,043,520 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)

DRV - [2006-05-09 09:27:30 | 000,013,824 | R--- | M] (A4Tech Co.,Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Amps2prt.sys -- (Amps2prt)

DRV - [2005-08-08 13:44:04 | 000,006,640 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\MouseCap.sys -- (MouseCap)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1993962763-484763869-1801674531-1004\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Yahoo! Search

IE - HKU\S-1-5-21-1993962763-484763869-1801674531-1004\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7

IE - HKU\S-1-5-21-1993962763-484763869-1801674531-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com

IE - HKU\S-1-5-21-1993962763-484763869-1801674531-1004\..\SearchScopes,DefaultScope = {AFB3F1EB-9085-4314-BE35-EBEB2818A5B5}

IE - HKU\S-1-5-21-1993962763-484763869-1801674531-1004\..\SearchScopes\{AFB3F1EB-9085-4314-BE35-EBEB2818A5B5}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7RNWN

IE - HKU\S-1-5-21-1993962763-484763869-1801674531-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1993962763-484763869-1801674531-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0

FF - prefs.js..network.proxy.no_proxies_on: "*.local"

FF - prefs.js..network.proxy.type: 0

FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()

FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found

FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()

FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.69: C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll (RealNetworks, Inc.)

FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.69: C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)

FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found

FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013-03-07 13:53:27 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013-03-06 11:14:32 | 000,000,000 | ---D | M]

[2010-09-24 08:00:37 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\user\Dane aplikacji\Mozilla\Extensions

[2013-03-08 14:50:28 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\x0qmy1ky.default\extensions

[2010-10-18 13:53:40 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\x0qmy1ky.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}

[2013-03-07 13:54:11 | 000,817,280 | ---- | M] () (No name found) -- C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\x0qmy1ky.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

[2010-09-24 08:17:45 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions

[2013-03-07 13:53:26 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll

[2012-06-28 16:42:00 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll

[2013-03-07 13:53:23 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml

[2013-03-07 13:53:23 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml

[2013-03-07 13:53:23 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml

[2013-03-07 13:53:23 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml

[2013-03-07 13:53:23 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml

[2013-03-07 13:53:23 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2008-04-15 13:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts

O1 - Hosts: 127.0.0.1 localhost

O2 - BHO: (Yahoo! Companion BHO) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_2_0.dll (Yahoo! Inc.)

O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)

O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)

O3 - HKLM\..\Toolbar: (&Google) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)

O3 - HKLM\..\Toolbar: (&Yahoo! Companion) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_2_0.dll (Yahoo! Inc.)

O3 - HKU\S-1-5-21-1993962763-484763869-1801674531-1004\..\Toolbar\WebBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)

O3 - HKU\S-1-5-21-1993962763-484763869-1801674531-1004\..\Toolbar\WebBrowser: (&Yahoo! Companion) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_2_0.dll (Yahoo! Inc.)

O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)

O4 - HKLM..\Run: [AVG_UI] C:\Program Files\AVG\AVG2013\avgui.exe (AVG Technologies CZ, s.r.o.)

O4 - HKLM..\Run: [Cm106Sound] RunDll32 cm106.cpl,CMICtrlWnd File not found

O4 - HKLM..\Run: [inCD] C:\Program Files\Nero\Nero 7\InCD\InCD.exe (Nero AG)

O4 - HKLM..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)

O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)

O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)

O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)

O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()

O4 - HKLM..\Run: [securDisc] C:\Program Files\Nero\Nero 7\InCD\NBHGui.exe (Nero AG)

O4 - HKLM..\Run: [WheelMouse] C:\Program Files\A4Tech\Mouse\Amoumain.exe (A4Tech Co., Ltd.)

O4 - HKU\S-1-5-21-1993962763-484763869-1801674531-1004..\Run: [KiesHelper] C:\Program Files\Samsung\Kies\KiesHelper.exe (Samsung)

O4 - HKU\S-1-5-21-1993962763-484763869-1801674531-1004..\Run: [KiesPDLR] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe ()

O4 - HKU\S-1-5-21-1993962763-484763869-1801674531-1004..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)

O4 - HKU\S-1-5-21-1993962763-484763869-1801674531-1004..\Run: [Pando Media Booster] C:\Program Files\Pando Networks\Media Booster\PMB.exe ()

O4 - HKU\S-1-5-21-1993962763-484763869-1801674531-1004..\Run: [screenSHU] C:\Program Files\screenSHU\screenSHU.exe ()

O4 - HKU\S-1-5-21-1993962763-484763869-1801674531-1004..\Run: [steam] D:\steam\Steam.exe (Valve Corporation)

O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\TP-LINK Wireless Configuration Utility.lnk = C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe ()

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1

O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-21-1993962763-484763869-1801674531-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1219661812109 (MUWebControl Class)

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)

O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1B62E037-43D1-47F8-B765-D51919BFBC2A}: NameServer = 194.204.152.34,194.204.159.1

O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{676BB714-E93C-4998-BDB6-F464430BA4B3}: NameServer = 194.204.152.34,194.204.159.1

O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{AEA8AD08-79BA-41AB-9217-8568B3215E66}: NameServer = 194.204.152.34,194.204.159.1

O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E7B08606-DB23-4864-B8E5-025DFC2B660E}: DhcpNameServer = 192.168.0.1

O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)

O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)

O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)

O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home

O24 - Desktop WallPaper: C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp

O24 - Desktop BackupWallPaper: C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2008-08-13 18:41:27 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]

O32 - AutoRun File - [2010-04-28 09:57:31 | 000,067,329 | ---- | M] () - C:\AutoMapaSetupLog.txt -- [ NTFS ]

O33 - MountPoints2\{0e381adc-0505-11df-a3ca-001a4dfa48a6}\Shell\AutoRun\command - "" = H:\dhrhyje.bat

O33 - MountPoints2\{0e381adc-0505-11df-a3ca-001a4dfa48a6}\Shell\open\Command - "" = H:\dhrhyje.bat

O33 - MountPoints2\{0e381add-0505-11df-a3ca-001a4dfa48a6}\Shell\AutoRun\command - "" = G:\dhrhyje.bat

O33 - MountPoints2\{0e381add-0505-11df-a3ca-001a4dfa48a6}\Shell\open\Command - "" = G:\dhrhyje.bat

O33 - MountPoints2\{4a0c767b-59c5-11e0-a40f-001a4dfa48a6}\Shell - "" = AutoRun

O33 - MountPoints2\{4a0c767b-59c5-11e0-a40f-001a4dfa48a6}\Shell\AutoRun\command - "" = G:\AutoRunCardDetector.exe

O34 - HKLM BootExecute: (autocheck autochk *)

O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG2013\avgrsx.exe /sync /restart)

O35 - HKLM\..comfile [open] -- "%1" %*

O35 - HKLM\..exefile [open] -- "%1" %*

O37 - HKLM\...com [@ = comfile] -- "%1" %*

O37 - HKLM\...exe [@ = exefile] -- "%1" %*

O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)

O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2013-03-08 14:54:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\AVG

[2013-03-07 13:53:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Mozilla

[2013-03-07 13:53:29 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service

[2013-03-06 22:10:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Dane aplikacji\AVG2013

[2013-03-06 22:09:35 | 000,000,000 | -H-D | C] -- C:\$AVG

[2013-03-06 22:09:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG2013

[2013-03-06 22:08:44 | 000,000,000 | ---D | C] -- C:\Program Files\AVG

[2013-03-06 22:08:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Razer

[2013-03-06 22:07:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Razer

[2013-03-06 22:07:41 | 000,000,000 | ---D | C] -- C:\Program Files\Razer

[2013-03-06 22:07:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Razer

[2013-03-06 22:04:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\MFAData

[2013-03-06 22:04:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\MFAData

[2013-03-06 22:04:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Avg2013

[2013-03-06 21:59:34 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET

[2013-03-06 20:31:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Dane aplikacji\LolClient

[2013-03-06 19:10:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\screenSHU

[2013-03-06 19:09:47 | 000,000,000 | ---D | C] -- C:\Program Files\screenSHU

[2013-03-06 18:13:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\NewFeature1

[2013-03-06 14:45:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Darksiders2

[2013-03-06 12:00:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Menu Start\Programy\Steam

[2013-03-06 11:23:40 | 000,029,984 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\uxtuneup.dll

[2013-03-06 11:19:45 | 000,032,032 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\TURegOpt.exe

[2013-03-06 11:19:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\TuneUp Utilities 2013

[2013-03-06 11:19:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Dane aplikacji\TuneUp Software

[2013-03-06 11:19:17 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2013

[2013-03-06 11:19:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\TuneUp Software

[2013-03-06 11:19:03 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}

[2013-03-06 11:19:03 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files

[2013-03-06 11:18:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Winamp

[2013-03-06 11:14:32 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp Detect

[2013-03-06 11:14:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Menu Start\Programy\Detektor Winampa

[2013-03-06 11:14:16 | 002,095,600 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxsfs.dll

[2013-03-06 11:14:16 | 000,571,888 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxdrv.dll

[2013-03-06 11:14:16 | 000,440,816 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxwave.dll

[2013-03-06 11:14:16 | 000,133,616 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxafs.dll

[2013-03-06 11:14:16 | 000,126,448 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsi64.exe

[2013-03-06 11:14:16 | 000,123,888 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpyi64.exe

[2013-03-06 11:14:16 | 000,100,848 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\vxblock.dll

[2013-03-06 11:14:16 | 000,072,176 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxhpinst.exe

[2013-03-06 11:14:16 | 000,068,592 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsa64.exe

[2013-03-06 11:14:16 | 000,068,080 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpya64.exe

[2013-03-06 11:14:16 | 000,059,888 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxwma.dll

[2013-03-06 11:14:16 | 000,009,200 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\cdralw2k.sys

[2013-03-06 11:14:16 | 000,009,072 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys

[2013-03-06 11:14:15 | 000,698,864 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\px.dll

[2013-03-06 11:14:15 | 000,219,632 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxmas.dll

[2013-03-06 11:14:11 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp

[2013-03-06 11:14:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Dane aplikacji\Winamp

[2013-03-06 11:14:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Dane aplikacji\OpenCandy

[2013-03-06 11:14:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\PMB Files

[2013-03-06 11:13:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\PMB Files

[2013-03-06 11:13:21 | 000,000,000 | ---D | C] -- C:\Program Files\Pando Networks

[2013-03-06 11:13:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\.swt

[2013-03-06 11:08:48 | 000,000,000 | ---D | C] -- C:\Winamp muzyka

[2013-03-06 11:00:09 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Steam

[2013-03-06 11:00:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Steam

[2013-03-06 10:53:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype

[2013-03-06 10:53:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Skype

[2013-03-06 10:53:35 | 000,000,000 | R--D | C] -- C:\Program Files\Skype

[2013-03-06 10:31:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Dane aplikacji\TP-LINK

[2013-03-06 10:31:11 | 000,405,582 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\jswscsup.dll

[2013-03-06 10:31:11 | 000,057,440 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\jswscimd.sys

[2013-03-06 10:31:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\TP-LINK

[2013-03-06 10:31:07 | 000,499,796 | ---- | C] (Atheros) -- C:\WINDOWS\System32\acs.exe

[2013-03-06 10:30:55 | 000,405,504 | ---- | C] (Atheros) -- C:\WINDOWS\System32\wcapi.dll

[2013-03-06 10:30:55 | 000,360,539 | ---- | C] (Atheros) -- C:\WINDOWS\System32\wcapiU.dll

[2013-03-06 10:30:55 | 000,311,390 | ---- | C] (Atheros) -- C:\WINDOWS\System32\athcfg20U.dll

[2013-03-06 10:30:55 | 000,254,022 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\wsfwDS.dll

[2013-03-06 10:30:55 | 000,249,924 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\wsimd.dll

[2013-03-06 10:30:55 | 000,237,568 | ---- | C] (Atheros) -- C:\WINDOWS\System32\athcfg20.dll

[2013-03-06 10:30:55 | 000,127,079 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\athcfg20resU.dll

[2013-03-06 10:30:55 | 000,127,053 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\athcfg20res.dll

[2013-03-06 10:30:55 | 000,082,017 | ---- | C] (Devicescape, Inc.) -- C:\WINDOWS\System32\dsaNac.dll

[2013-03-06 10:30:55 | 000,058,208 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\wsimd.sys

[2013-03-06 10:30:55 | 000,058,208 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\drivers\wsimd.sys

[2013-03-06 10:30:55 | 000,000,000 | ---D | C] -- C:\Program Files\TP-LINK

[2013-03-06 10:30:21 | 001,763,584 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\drivers\athuw.sys

[2013-03-06 10:30:21 | 001,763,584 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\athuw.sys

[2013-03-06 10:17:15 | 000,057,440 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\drivers\jswscimd.sys

[2013-03-06 09:59:12 | 001,269,854 | ---- | C] (Devicescape) -- C:\WINDOWS\System32\dsa.dll

[2013-03-06 08:45:13 | 008,757,248 | R--- | C] (C-Media Corporation) -- C:\WINDOWS\System\CM106.cpl

[2013-03-06 08:45:13 | 000,294,912 | R--- | C] (C-Media) -- C:\WINDOWS\System32\CM106rm.exe

[2013-03-06 08:44:57 | 001,513,984 | R--- | C] (C-Media Electronics Inc) -- C:\WINDOWS\System32\drivers\CM106.sys

[2013-03-06 08:44:57 | 000,315,392 | R--- | C] (C-Media Electronics Inc.) -- C:\WINDOWS\System\fltr106.dll

[2013-03-06 08:44:50 | 000,307,200 | R--- | C] (C-Media Corporation) -- C:\WINDOWS\Cmi106Uninstall.exe

[2013-03-06 08:44:24 | 000,000,000 | ---D | C] -- C:\Program Files\Genesis HX77 Headset

[2013-03-06 08:44:04 | 000,060,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbaudio.sys

[2013-03-06 00:29:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\The Witcher

[2013-03-06 00:29:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Moje dokumenty\The Witcher

[2013-03-05 22:31:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Wiedźmin

[2013-03-05 21:34:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Ubisoft Game Launcher

[2013-03-05 21:34:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Moje dokumenty\Might & Magic Heroes VI

[2013-03-05 21:34:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Dane aplikacji\Might & Magic Heroes VI

[2013-03-05 21:24:32 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_7.dll

[2013-03-05 21:24:32 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_5.dll

[2013-03-05 21:24:30 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_7.dll

[2013-03-05 21:24:27 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_43.dll

[2013-03-05 21:24:23 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dcsx_43.dll

[2013-03-05 21:24:19 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx11_43.dll

[2013-03-05 21:24:18 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_43.dll

[2013-03-05 21:24:16 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_43.dll

[2013-03-05 21:24:12 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_6.dll

[2013-03-05 21:24:12 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_4.dll

[2013-03-05 21:24:11 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_6.dll

[2013-03-05 21:24:11 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_7.dll

[2013-03-05 21:24:08 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_5.dll

[2013-03-05 21:24:06 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_5.dll

[2013-03-05 21:24:05 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_42.dll

[2013-03-05 21:23:59 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dcsx_42.dll

[2013-03-05 21:23:54 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_42.dll

[2013-03-05 21:23:54 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx11_42.dll

[2013-03-05 21:23:52 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_42.dll

[2013-03-05 20:57:21 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\user\Dane aplikacji\SecuROM

[2013-03-05 20:56:39 | 000,000,000 | ---D | C] -- C:\Program Files\Ubisoft

[2013-03-05 20:18:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Pulpit\Trzeci.Wymiar-Cztery.Pory.Rapu

[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[16 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013-03-09 15:57:08 | 000,175,033 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml

[2013-03-09 15:56:45 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl

[2013-03-09 15:56:43 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat

[2013-03-08 14:54:06 | 000,000,732 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\AVG 2013.lnk

[2013-03-06 23:56:02 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job

[2013-03-06 22:23:13 | 000,000,986 | ---- | M] () -- C:\WINDOWS\System\Cm106.ini

[2013-03-06 22:07:52 | 000,001,869 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Razer Game Booster.lnk

[2013-03-06 22:05:54 | 000,566,094 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat

[2013-03-06 22:05:54 | 000,502,916 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat

[2013-03-06 22:05:54 | 000,110,410 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat

[2013-03-06 22:05:54 | 000,088,440 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat

[2013-03-06 19:09:49 | 000,000,694 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\screenSHU.lnk

[2013-03-06 18:19:24 | 000,000,714 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Graj w League of Legends.lnk

[2013-03-06 14:31:00 | 040,902,592 | ---- | M] () -- C:\Documents and Settings\user\ggsetup.exe

[2013-03-06 14:31:00 | 000,000,044 | ---- | M] () -- C:\Documents and Settings\user\ggdownload.ini

[2013-03-06 12:00:24 | 000,000,201 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\Darksiders II.url

[2013-03-06 11:19:44 | 000,001,761 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\TuneUp Konserwacja 1 kliknięciem.lnk

[2013-03-06 11:19:44 | 000,001,747 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\TuneUp Utilities 2013.lnk

[2013-03-06 11:18:19 | 000,000,654 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk

[2013-03-06 11:00:11 | 000,000,457 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Steam.lnk

[2013-03-06 10:31:11 | 000,001,928 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\TP-LINK Wireless Configuration Utility.lnk

[2013-03-06 10:31:11 | 000,001,902 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\TP-LINK Wireless Configuration Utility.lnk

[2013-03-06 08:45:13 | 000,000,125 | ---- | M] () -- C:\WINDOWS\Cm106.ini.cfl

[2013-03-06 00:28:47 | 000,278,984 | ---- | M] () -- C:\WINDOWS\System32\drivers\atksgt.sys

[2013-03-06 00:28:46 | 000,025,416 | ---- | M] () -- C:\WINDOWS\System32\drivers\lirsgt.sys

[2013-03-05 21:24:40 | 000,001,767 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Might & Magic Heroes VI.lnk

[2013-03-05 19:46:15 | 000,131,584 | ---- | M] () -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[16 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013-03-08 16:57:27 | 000,076,598 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\WPFFontCache_v0400-S-1-5-21-1993962763-484763869-1801674531-1004-0.dat

[2013-03-07 07:55:00 | 000,076,598 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\WPFFontCache_v0400-System.dat

[2013-03-06 22:10:03 | 000,000,732 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\AVG 2013.lnk

[2013-03-06 22:07:51 | 000,001,869 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Razer Game Booster.lnk

[2013-03-06 19:09:49 | 000,000,700 | ---- | C] () -- C:\Documents and Settings\user\Menu Start\Programy\screenSHU.lnk

[2013-03-06 19:09:49 | 000,000,694 | ---- | C] () -- C:\Documents and Settings\user\Pulpit\screenSHU.lnk

[2013-03-06 18:19:24 | 000,000,714 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Graj w League of Legends.lnk

[2013-03-06 14:31:00 | 000,000,044 | ---- | C] () -- C:\Documents and Settings\user\ggdownload.ini

[2013-03-06 12:21:24 | 040,902,592 | ---- | C] () -- C:\Documents and Settings\user\ggsetup.exe

[2013-03-06 12:00:24 | 000,000,201 | ---- | C] () -- C:\Documents and Settings\user\Pulpit\Darksiders II.url

[2013-03-06 11:19:44 | 000,001,761 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\TuneUp Konserwacja 1 kliknięciem.lnk

[2013-03-06 11:19:44 | 000,001,747 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\TuneUp Utilities 2013.lnk

[2013-03-06 11:19:43 | 000,001,753 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\TuneUp Utilities 2013.lnk

[2013-03-06 11:18:19 | 000,000,654 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk

[2013-03-06 11:00:11 | 000,000,457 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Steam.lnk

[2013-03-06 10:31:11 | 000,035,967 | ---- | C] () -- C:\WINDOWS\System32\jswscimdp.cat

[2013-03-06 10:31:11 | 000,035,538 | ---- | C] () -- C:\WINDOWS\System32\jswscimd.cat

[2013-03-06 10:31:11 | 000,005,529 | ---- | C] () -- C:\WINDOWS\System32\jswscimdp.inf

[2013-03-06 10:31:11 | 000,002,231 | ---- | C] () -- C:\WINDOWS\System32\jswscimd.inf

[2013-03-06 10:31:11 | 000,001,928 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\TP-LINK Wireless Configuration Utility.lnk

[2013-03-06 10:31:11 | 000,001,902 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\TP-LINK Wireless Configuration Utility.lnk

[2013-03-06 10:31:07 | 000,262,216 | ---- | C] () -- C:\WINDOWS\System32\IPTests.dll

[2013-03-06 10:30:55 | 000,422,000 | ---- | C] () -- C:\WINDOWS\System32\wgapi.dll

[2013-03-06 10:30:55 | 000,042,067 | ---- | C] () -- C:\WINDOWS\System32\wsimdp.cat

[2013-03-06 10:30:55 | 000,042,052 | ---- | C] () -- C:\WINDOWS\System32\wsimd.cat

[2013-03-06 10:30:55 | 000,005,363 | ---- | C] () -- C:\WINDOWS\System32\wsimdp.inf

[2013-03-06 10:30:55 | 000,002,179 | ---- | C] () -- C:\WINDOWS\System32\wsimd.inf

[2013-03-06 10:30:21 | 000,045,171 | ---- | C] () -- C:\WINDOWS\System32\netathuw.inf

[2013-03-06 10:30:21 | 000,008,818 | ---- | C] () -- C:\WINDOWS\System32\netathuw.cat

[2013-03-06 08:45:13 | 000,491,520 | R--- | C] () -- C:\WINDOWS\System\cmau106.dll

[2013-03-06 08:45:13 | 000,221,184 | R--- | C] () -- C:\WINDOWS\System\cm106eye.exe

[2013-03-06 08:45:13 | 000,000,986 | ---- | C] () -- C:\WINDOWS\System\Cm106.ini

[2013-03-06 08:45:13 | 000,000,125 | ---- | C] () -- C:\WINDOWS\Cm106.ini.cfl

[2013-03-06 08:44:51 | 000,001,249 | R--- | C] () -- C:\WINDOWS\Cm106.ini.cfg

[2013-03-06 08:44:41 | 000,000,814 | R--- | C] () -- C:\WINDOWS\cm106.ini

[2013-03-06 00:28:47 | 000,278,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys

[2013-03-06 00:28:46 | 000,025,416 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys

[2013-03-05 21:24:40 | 000,001,767 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Might & Magic Heroes VI.lnk

[2011-10-12 08:19:14 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat

[2011-03-29 07:54:06 | 000,453,032 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat

[2011-03-29 06:24:42 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll

[2011-03-29 06:24:42 | 000,036,640 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys

[2011-03-29 06:24:25 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\user\Dane aplikacji\$_hpcst$.hpc

[2008-08-25 19:44:44 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\fusioncache.dat

[2008-08-25 14:22:03 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\user\Dane aplikacji\PnkBstrK.sys

[2008-08-15 07:28:41 | 000,131,584 | ---- | C] () -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

========== ZeroAccess Check ==========

[2008-08-25 19:43:16 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

"" = %SystemRoot%\system32\shdocvw.dll -- [2008-06-26 09:14:35 | 001,499,136 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]

"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009-02-09 11:53:44 | 000,473,600 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008-04-15 13:00:00 | 000,273,920 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Both

========== LOP Check ==========

[2013-03-06 22:10:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG2013

[2013-03-06 11:19:03 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files

[2010-10-15 07:31:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Electronic Arts

[2008-08-25 09:34:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\LightScribe

[2013-03-09 16:02:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\MFAData

[2013-03-06 21:21:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PMB Files

[2013-03-06 22:07:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Razer

[2009-11-26 11:45:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\rkfree

[2011-03-29 06:25:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Samsung

[2013-03-06 10:30:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TP-LINK

[2013-03-06 11:19:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TuneUp Software

[2008-12-08 18:47:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}

[2013-03-06 11:30:22 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}

[2013-03-08 14:54:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Dane aplikacji\TuneUp Software

[2008-08-29 16:39:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\ACD Systems

[2008-08-13 18:11:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Ace

[2013-03-06 22:10:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\AVG2013

[2009-05-04 20:09:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\BSplayer Pro

[2009-07-27 17:09:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Gadu-Gadu

[2013-03-06 20:31:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\LolClient

[2013-03-05 21:34:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Might & Magic Heroes VI

[2013-03-06 11:14:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\OpenCandy

[2011-03-29 06:23:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Samsung

[2008-08-26 09:26:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Tlen.pl

[2013-03-06 10:32:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\TP-LINK

[2013-03-06 22:10:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\TuneUp Software

========== Purity Check ==========

========== Alternate Data Streams ==========

@Alternate Data Stream - 3020 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\rkfree:cfg

< End of report >

Ktoś pomoże? :x

Link do komentarza
Udostępnij na innych stronach

W logach widzę parę niepokojących rzeczy (widać ślady po malware i brakujące pliki w systemie), ale jeśli o to chodzi, to lepiej udaj się na jedno z for poleconych wyżej.

Z innych rzeczy - dziennik aplikacji najpewniej nie działa (ostatni wpis z 2010 roku, co jest dziwne). W dzienniku System widać błędy dotyczące dostępu do kluczy rejestru oraz błąd przy przywracaniu systemu. Tak na szybko - możesz podać S.M.A.R.T. swoich dysków (patrz przypięty temat w Sprzęcie)?

Link do komentarza
Udostępnij na innych stronach

To raczej nie jest wina firmware'u - nie te objawy. Martwi wysoka wartość atrybutu BC Command Timeout. Sprawdź dokładnie kable łączące dysk z płytą główną oraz z zasilaczem. Jaki masz zasilacz?

Frimware dysku i tak trzeba zaktualizować, bo błąd w firmware jest dosyć poważny (odsyłam tu).

Link do komentarza
Udostępnij na innych stronach

To raczej nie jest wina firmware'u - nie te objawy. Martwi wysoka wartość atrybutu BC Command Timeout. Sprawdź dokładnie kable łączące dysk z płytą główną oraz z zasilaczem. Jaki masz zasilacz?

Frimware dysku i tak trzeba zaktualizować, bo błąd w firmware jest dosyć poważny (odsyłam tu).

Frimware zaktualizowany, pomogło przez jakieś dwa dni lecz problem nadal występuje. Mój zasilacz:Fell III-500ATX. (total output 500w). Wszystkie kable moim zdaniem są prawidłowo podpięte, zdarza się że raz komputer działa prawidłowo a po restarcie pojawia się ten sam błąd.

Link do komentarza
Udostępnij na innych stronach



  • Kto przegląda   0 użytkowników

    • Brak zalogowanych użytkowników przeglądających tę stronę.
×
×
  • Utwórz nowe...