Skocz do zawartości

Wyrzuca wszystko do pulpitu. (Otl)


  • Proszę się zalogować aby odpowiedzieć
7 odpowiedzi na ten temat

#1
Cearme

Cearme
  • Forumowicze
  • 3 postów
Rejestracja: 09 III 2013
Cześć od paru dni mam problem z systemem. Mianowicie wszystko wyrzuca mi do pulpitu, każdą grę, każdy program. Tutaj jest raport z OTL'a (temat: http://forum.cdactio...howtopic=116155)

OTL Extras logfile created on: 2013-03-09 16:40:08 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\user\Moje dokumenty\Pobieranie
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

3,00 Gb Total Physical Memory | 1,99 Gb Available Physical Memory | 66,48% Memory free
4,84 Gb Paging File | 3,72 Gb Available in Paging File | 76,80% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 48,83 Gb Total Space | 28,85 Gb Free Space | 59,09% Space Free | Partition Type: NTFS
Drive D: | 208,49 Gb Total Space | 168,32 Gb Free Space | 80,73% Space Free | Partition Type: NTFS
Drive E: | 208,43 Gb Total Space | 207,23 Gb Free Space | 99,42% Space Free | Partition Type: NTFS

Computer Name: MROZICKIPAWEL | User Name: user | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

[HKEY_USERS\S-1-5-21-1993962763-484763869-1801674531-1004\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 1
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"57962:TCP" = 57962:TCP:*:Enabled:Pando Media Booster
"57962:UDP" = 57962:UDP:*:Enabled:Pando Media Booster

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22002
"57962:TCP" = 57962:TCP:*:Enabled:Pando Media Booster
"57962:UDP" = 57962:UDP:*:Enabled:Pando Media Booster

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Program Files\Pando Networks\Media Booster\PMB.exe" = C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\WINDOWS\system32\PnkBstrA.exe" = C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA -- ()
"C:\WINDOWS\system32\PnkBstrB.exe" = C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB -- ()
"C:\Program Files\Bonjour\mDNSResponder.exe" = C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour -- (Apple Inc.)
"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)
"D:\Heroes 5\bin\H5_Game.exe" = D:\Heroes 5\bin\H5_Game.exe:*:Enabled:Heroes of Might and Magic V -- ()
"\\MROZICKI-D50C0A\E\gry\Counter-Strike 1.6\hltv.exe" = \\MROZICKI-D50C0A\E\gry\Counter-Strike 1.6\hltv.exe:*:Enabled:hltv.exe
"C:\Documents and Settings\user\Pulpit\Counter-Strike 1.6\hl.exe" = C:\Documents and Settings\user\Pulpit\Counter-Strike 1.6\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
"C:\Documents and Settings\user\Pulpit\Counter-Strike 1.6\hlds.exe" = C:\Documents and Settings\user\Pulpit\Counter-Strike 1.6\hlds.exe:*:Enabled:HLDS Launcher -- (Valve)
"C:\Documents and Settings\user\Pulpit\Counter-Strike 1.6\hltv.exe" = C:\Documents and Settings\user\Pulpit\Counter-Strike 1.6\hltv.exe:*:Enabled:HLTV Launcher -- (Valve)
"D:\enemy\etqw.exe" = D:\enemy\etqw.exe:*:Enabled:Enemy Territory - QUAKE Wars™ -- (Splash Damage, Ltd.)
"D:\enemy\etqwded.exe" = D:\enemy\etqwded.exe:*:Enabled:etqwded.exe -- (Splash Damage, Ltd.)
"C:\WINDOWS\system32\muzapp.exe" = C:\WINDOWS\system32\muzapp.exe:*:Enabled:MUZ AOD APP player -- (Musiccity Co.Ltd.)
"C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe" = C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe:*:Enabled:Ubisoft Game Launcher -- ()
"C:\Program Files\Ubisoft\Might & Magic Heroes VI\Might & Magic Heroes VI.exe" = C:\Program Files\Ubisoft\Might & Magic Heroes VI\Might & Magic Heroes VI.exe:*:Enabled:Might & Magic Heroes VI -- (Black Hole Entertainment)
"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)
"D:\steam\Steam.exe" = D:\steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation)
"C:\Program Files\Pando Networks\Media Booster\PMB.exe" = C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()
"D:\steam\SteamApps\common\Darksiders 2\Darksiders2.exe" = D:\steam\SteamApps\common\Darksiders 2\Darksiders2.exe:*:Enabled:Darksiders II -- ()
"C:\Program Files\AVG\AVG2013\avgmfapx.exe" = C:\Program Files\AVG\AVG2013\avgmfapx.exe:*:Enabled:Instalator AVG -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG2013\avgnsx.exe" = C:\Program Files\AVG\AVG2013\avgnsx.exe:*:Enabled:Ochrona Sieci -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG2013\avgdiagex.exe" = C:\Program Files\AVG\AVG2013\avgdiagex.exe:*:Enabled:Diagnostyka AVG 2013 -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG2013\avgemcx.exe" = C:\Program Files\AVG\AVG2013\avgemcx.exe:*:Enabled:Uniwersalny skaner poczty e-mail -- (AVG Technologies CZ, s.r.o.)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0DE075DB-4218-4B2C-A35E-48D80BA680BB}" = Heroes of Might and Magic V
"{105CFC7C-6992-11D5-BD9D-000102C10FD8}" = Lizardtech DjVu Control
"{1E249838-D27F-4C11-8C62-0D1CACCFC7EB}" = Disney-Pixar Wall-E
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{241DBC8D-14E3-4240-8EE5-3AC35086B638}" = AVG 2013
"{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java™ 6 Update 17
"{318AB667-3230-41B5-A617-CB3BF748D371}" = iTunes
"{319D91C6-3D44-436C-9F79-36C0D22372DC}" = TP-LINK Wireless Configuration Utility
"{321320E1-0E5A-36CB-9E52-F3B201B8C4D4}" = Microsoft .NET Framework 4 Client Profile PLK Language Pack
"{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{361693F2-A153-4359-A4CB-A1B9FF2AA5E6}" = A4tech USB Mouse Quality Testing Program V4.0
"{38A1E3ED-D913-41D2-9953-A93D5ACE3ADF}" = TL-WN721N/TL-WN722N Driver
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{4248F8E5-5994-4F33-8251-544D02EA9925}" = FEAR Perseus Mandate
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype? 6.2
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5C19E2DC-4CCF-3114-B40A-6E565987025F}" = Microsoft .NET Framework 4 Extended PLK Language Pack
"{5DB65884-C963-4454-AABA-4CA3089281FA}" = NVIDIA PhysX
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6F8CBBFB-7986-4140-91EC-D8C7F1EC8DF3}" = AVG 2013
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{745D37C2-26F4-4B65-BA13-F9840EBFA75B}" = Might & Magic Heroes VI
"{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{88F0F4FF-B514-4E32-9C17-CAF96D60EAFC}" = Razer Game Booster
"{8A25392D-C5D2-4E79-A2BD-C15DDC5B0959}" = Bonjour
"{8FB53850-246A-3507-8ADE-0060093FFEA6}" = Visual Studio Tools for the Office system 3.0 Runtime
"{92606477-9366-4D3B-8AE3-6BE4B29727AB}" = League of Legends
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A2104078-AAA5-449E-95DD-55C9443A1045}" = Nero 7 Essentials
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{AC76BA86-7AD7-1045-7B44-A70500000002}" = Adobe Reader 7.0.5 - Polish
"{B7A585C8-CE4E-4150-84C6-A13C3CB1379F}" = Enemy Territory - Quake Wars™
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}" = TuneUp Utilities 2013
"{C66A542D-B66B-4E67-84EA-F2D0383FBC14}" = TuneUp Utilities Language Pack (pl-PL)
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones
"{D9B4D7EE-481C-4C36-86AB-A8F7417725FF}" = LightScribe  1.6.43.1
"{DBEA1034-5882-4A88-8033-81C4EF0CFA29}" = Google Toolbar for Internet Explorer
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{EC4455AB-F155-4CC1-A4C5-88F3777F9886}" = Apple Mobile Device Support
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F138762F-5A1F-4CF0-A5E1-1588EF6088A4}" = Wiedźmin
"{F958CA02-BB40-4007-894B-258729456EE4}" = QuickTime
"6A1545AE87FC8D98ACA7539CE7AA69DF2A5C7E1C" = Pakiet sterowników systemu Windows - Advanced Micro Devices (AmdK8) Processor  (05/27/2006 1.3.2.0)
"Adobe Acrobat 4.0" = Adobe Acrobat 4.0
"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"AVG" = AVG 2013
"BSPlayer1" = BSPlayer
"EADM" = EA Download Manager
"Free CD to MP3 Converter" = Free CD to MP3 Converter
"Generic USB 106 Sound" = Genesis HX77 Headset
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"InstallShield_{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
"IrfanView" = IrfanView (remove only)
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 4.5.3
"Microsoft .NET Framework 1.1  (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile PLK Language Pack" = Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended PLK Language Pack" = Polski pakiet językowy dla programu Microsoft .NET Framework 4 Extended
"Mozilla Firefox 12.0 (x86 pl)" = Mozilla Firefox 12.0 (x86 pl)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"NAPIPROJEKT_is1" = NAPIPROJEKT 1.0.6.2
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA Drivers" = NVIDIA Drivers
"PunkBusterSvc" = PunkBuster Services
"Recuva" = Recuva
"screenSHU" = screenSHU - the fastest screen capture ever.
"Steam App 50650" = Darksiders II
"ToonCar" = ToonCar
"TuneUp Utilities 2013" = TuneUp Utilities 2013
"Visual Studio Tools for the Office system 3.0 Runtime" = Visual Studio Tools for the Office system 3.0 Runtime
"WheelMouse" = Smart-X7 7.80
"Winamp" = Winamp
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"WinRAR archiver" = Archiwizator WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"x264 Revision 489 x264.nl" = x264 Revision 489 x264.nl (remove only)
"Yahoo! Companion" = Yahoo! Companion

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1993962763-484763869-1801674531-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Winamp Detect" = Detektor Winampa

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 2009-11-09 12:17:07 | Computer Name = MROZICKIPAWEL | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca autorun.exe, wersja 1.0.0.1, moduł zawieszenia
hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2009-11-09 12:17:29 | Computer Name = MROZICKIPAWEL | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca autorun.exe, wersja 1.0.0.1, moduł zawieszenia
hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2010-01-09 13:55:22 | Computer Name = MROZICKIPAWEL | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca mmc.exe, wersja 5.2.3790.4136, moduł zawieszenia
hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2010-01-20 06:00:49 | Computer Name = MROZICKIPAWEL | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd core.exe, wersja 5.0.0.255, moduł powodujący
błąd core.exe, wersja 5.0.0.255, adres błędu 0x0016b6a2.

Error - 2010-03-31 11:54:06 | Computer Name = MROZICKIPAWEL | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd h5_game.exe, wersja 1.0.0.27, moduł powodujący
błąd h5_game.exe, wersja 1.0.0.27, adres błędu 0x00541542.

Error - 2010-03-31 11:54:33 | Computer Name = MROZICKIPAWEL | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd h5_game.exe, wersja 1.0.0.27, moduł powodujący
błąd h5_game.exe, wersja 1.0.0.27, adres błędu 0x00541542.

Error - 2010-03-31 11:55:42 | Computer Name = MROZICKIPAWEL | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd h5_game.exe, wersja 1.2.0.12, moduł powodujący
błąd h5_game.exe, wersja 1.2.0.12, adres błędu 0x001bb602.

Error - 2010-04-08 04:27:54 | Computer Name = MROZICKIPAWEL | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd shift.exe, wersja 1.0.0.0, moduł powodujący
błąd unknown, wersja 0.0.0.0, adres błędu 0x00007365.

Error - 2010-04-28 04:26:56 | Computer Name = MROZICKIPAWEL | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca nero.exe, wersja 7.9.6.0, moduł zawieszenia
hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2010-04-28 04:27:04 | Computer Name = MROZICKIPAWEL | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca nero.exe, wersja 7.9.6.0, moduł zawieszenia
hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

[ System Events ]
Error - 2013-03-07 16:02:53 | Computer Name = MROZICKIPAWEL | Source = Service Control Manager | ID = 7006
Description = Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił
następujący błąd:   %%5.

Error - 2013-03-07 17:39:51 | Computer Name = MROZICKIPAWEL | Source = DCOM | ID = 10010
Description = Serwer {9B1F122C-2982-4E91-AA8B-E071D54F2A4D} nie zarejestrował się
w modelu DCOM w wymaganym czasie.

Error - 2013-03-07 17:41:51 | Computer Name = MROZICKIPAWEL | Source = DCOM | ID = 10010
Description = Serwer {9B1F122C-2982-4E91-AA8B-E071D54F2A4D} nie zarejestrował się
w modelu DCOM w wymaganym czasie.

Error - 2013-03-08 09:40:11 | Computer Name = MROZICKIPAWEL | Source = NetBT | ID = 4307
Description = Zainicjowanie nie powiodło się, ponieważ transport odmówił otwarcia
adresów początkowych.

Error - 2013-03-08 09:40:24 | Computer Name = MROZICKIPAWEL | Source = Service Control Manager | ID = 7006
Description = Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił
następujący błąd:   %%5.

Error - 2013-03-08 09:40:24 | Computer Name = MROZICKIPAWEL | Source = Service Control Manager | ID = 7006
Description = Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił
następujący błąd:   %%5.

Error - 2013-03-08 11:57:26 | Computer Name = MROZICKIPAWEL | Source = DCOM | ID = 10010
Description = Serwer {9B1F122C-2982-4E91-AA8B-E071D54F2A4D} nie zarejestrował się
w modelu DCOM w wymaganym czasie.

Error - 2013-03-09 10:57:00 | Computer Name = MROZICKIPAWEL | Source = Service Control Manager | ID = 7006
Description = Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił
następujący błąd:   %%5.

Error - 2013-03-09 10:57:00 | Computer Name = MROZICKIPAWEL | Source = Service Control Manager | ID = 7006
Description = Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił
następujący błąd:   %%5.

Error - 2013-03-09 10:57:03 | Computer Name = MROZICKIPAWEL | Source = sr | ID = 1
Description = Filtr Przywracania systemu napotkał nieoczekiwany błąd '0xC0000001'
podczas przetwarzania pliku '' w woluminie 'HarddiskVolume1'. W rezultacie zostało
zatrzymane monitorowanie woluminu.


< End of report >



Kolejny:


OTL logfile created on: 2013-03-09 16:40:08 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\user\Moje dokumenty\Pobieranie
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

3,00 Gb Total Physical Memory | 1,99 Gb Available Physical Memory | 66,48% Memory free
4,84 Gb Paging File | 3,72 Gb Available in Paging File | 76,80% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 48,83 Gb Total Space | 28,85 Gb Free Space | 59,09% Space Free | Partition Type: NTFS
Drive D: | 208,49 Gb Total Space | 168,32 Gb Free Space | 80,73% Space Free | Partition Type: NTFS
Drive E: | 208,43 Gb Total Space | 207,23 Gb Free Space | 99,42% Space Free | Partition Type: NTFS

Computer Name: MROZICKIPAWEL | User Name: user | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013-03-09 16:38:57 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\user\Moje dokumenty\Pobieranie\OTL.exe
PRC - [2013-03-07 13:53:25 | 000,924,600 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2013-02-25 07:39:34 | 001,602,984 | ---- | M] (Valve Corporation) -- D:\steam\steam.exe
PRC - [2013-01-31 11:12:26 | 001,926,944 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesApp32.exe
PRC - [2013-01-31 11:12:24 | 001,724,192 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe
PRC - [2012-12-11 03:52:44 | 003,147,384 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgui.exe
PRC - [2012-11-15 23:34:30 | 005,814,904 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgidsagent.exe
PRC - [2012-10-30 04:59:56 | 000,726,648 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgrsx.exe
PRC - [2012-10-22 13:05:08 | 000,196,664 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgwdsvc.exe
PRC - [2012-10-22 13:04:32 | 001,116,792 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgnsx.exe
PRC - [2012-10-22 13:03:52 | 000,796,792 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgemcx.exe
PRC - [2012-10-22 13:03:46 | 000,440,440 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgcsrvx.exe
PRC - [2011-11-18 17:14:48 | 000,788,992 | ---- | M] () -- C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
PRC - [2011-08-01 04:32:20 | 000,020,880 | ---- | M] () -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
PRC - [2011-08-01 04:32:10 | 003,507,088 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
PRC - [2011-03-31 15:36:56 | 000,073,728 | ---- | M] () -- C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\WJATH\AthServer.exe
PRC - [2011-03-31 15:36:54 | 000,499,796 | ---- | M] (Atheros) -- C:\WINDOWS\system32\acs.exe
PRC - [2010-07-26 14:15:26 | 000,217,088 | ---- | M] (Teruten) -- C:\WINDOWS\system32\FsUsbExService.Exe
PRC - [2008-04-15 13:00:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007-05-15 14:55:46 | 001,628,208 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero 7\InCD\NBHGui.exe
PRC - [2007-05-15 14:55:46 | 001,550,896 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
PRC - [2007-05-15 14:55:26 | 001,057,328 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero 7\InCD\InCD.exe
PRC - [2006-12-26 08:08:50 | 000,196,608 | ---- | M] (A4Tech Co., Ltd.) -- C:\Program Files\A4Tech\Mouse\Amoumain.exe


========== Modules (No Company Name) ==========

MOD - [2013-03-07 13:53:25 | 001,952,696 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2013-03-07 07:48:59 | 001,159,168 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Management\6a6f4be744ed5bc5273cbcf0fcf303e3\System.Management.ni.dll
MOD - [2013-03-07 07:39:16 | 000,767,488 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Remo#\dc1f0dbf1d3ba856eccec90b62b55d79\System.Runtime.Remoting.ni.dll
MOD - [2013-03-07 07:38:36 | 001,776,640 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xaml\035910922f160d304fb834aae41f45a6\System.Xaml.ni.dll
MOD - [2013-03-06 22:02:47 | 017,629,184 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\7f91eecda3ff7ce478146b6458580c98\PresentationFramework.ni.dll
MOD - [2013-03-06 22:02:40 | 013,006,336 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\17e020ae92d7fab33bcc1c98b25019d0\System.Windows.Forms.ni.dll
MOD - [2013-03-06 22:02:29 | 001,651,200 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Drawing\dd57bc19f5807c6dbe8f88d4a23277f6\System.Drawing.ni.dll
MOD - [2013-03-06 22:02:25 | 011,057,664 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PresentationCore\3963e9ce8d44f50e8367e92a8e3e42e6\PresentationCore.ni.dll
MOD - [2013-03-06 22:02:25 | 000,656,896 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\016f9a150fce0e0a4c93532d8fa4c749\PresentationFramework.Luna.ni.dll
MOD - [2013-03-06 22:02:24 | 005,571,584 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xml\e997d0200c25f7db6bd32313d50b729d\System.Xml.ni.dll
MOD - [2013-03-06 22:02:17 | 007,025,664 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Core\713647b987b140a17e3c4ffe4c721f85\System.Core.ni.dll
MOD - [2013-03-06 22:02:14 | 003,779,072 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\WindowsBase\d17606e813f01376bd0def23726ecc62\WindowsBase.ni.dll
MOD - [2013-03-06 22:02:03 | 009,000,960 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System\964da027ebca3b263a05cadb8eaa20a3\System.ni.dll
MOD - [2013-03-06 22:01:54 | 014,415,872 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\mscorlib\246f1a5abb686b9dcdf22d3505b08cea\mscorlib.ni.dll
MOD - [2013-02-25 07:39:32 | 000,988,584 | ---- | M] () -- D:\steam\bin\chromehtml.dll
MOD - [2013-02-19 11:48:10 | 020,340,648 | ---- | M] () -- D:\steam\bin\libcef.dll
MOD - [2012-12-18 18:28:50 | 000,647,168 | ---- | M] () -- D:\steam\sdl.dll
MOD - [2012-12-11 09:51:10 | 001,100,800 | ---- | M] () -- D:\steam\bin\avcodec-53.dll
MOD - [2012-12-11 09:51:10 | 000,192,000 | ---- | M] () -- D:\steam\bin\avformat-53.dll
MOD - [2012-12-11 09:51:10 | 000,124,416 | ---- | M] () -- D:\steam\bin\avutil-51.dll
MOD - [2011-11-18 17:14:48 | 000,788,992 | ---- | M] () -- C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
MOD - [2011-08-25 14:02:18 | 001,425,920 | ---- | M] () -- C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\nicLan.dll
MOD - [2011-08-18 22:05:53 | 000,115,137 | ---- | M] () -- C:\Documents and Settings\user\Ustawienia lokalne\Temp\3dcf2df1-2a83-477c-a7dd-858967792357\CliSecureRT.dll
MOD - [2011-08-01 04:32:20 | 000,020,880 | ---- | M] () -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
MOD - [2011-05-05 18:23:30 | 006,053,536 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
MOD - [2011-03-31 15:36:56 | 000,231,424 | ---- | M] () -- C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\WJATH\WjAth.dll
MOD - [2011-03-31 15:36:56 | 000,073,728 | ---- | M] () -- C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\WJATH\AthServer.exe
MOD - [2011-03-31 15:36:56 | 000,024,576 | ---- | M] () -- C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\WJATH\IAthWcAPI.dll
MOD - [2011-03-31 15:36:46 | 000,167,424 | ---- | M] () -- C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\DC_WFF.dll
MOD - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2007-02-16 16:40:42 | 005,521,408 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\QtGui4.dll
MOD - [2007-02-16 16:40:40 | 001,466,368 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\QtCore4.dll


========== Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
SRV - [2013-03-07 13:53:25 | 000,129,976 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013-02-07 13:10:08 | 000,161,384 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013-01-31 11:12:24 | 001,724,192 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc)
SRV - [2013-01-31 11:12:22 | 000,029,984 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
SRV - [2012-11-19 17:03:24 | 000,489,256 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2012-11-15 23:34:30 | 005,814,904 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2013\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2012-10-22 13:05:08 | 000,196,664 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2013\avgwdsvc.exe -- (avgwd)
SRV - [2011-03-31 15:36:54 | 000,499,796 | ---- | M] (Atheros) [Auto | Running] -- C:\WINDOWS\system32\acs.exe -- (ACS)
SRV - [2011-03-31 15:36:52 | 000,360,529 | ---- | M] (wireless) [On_Demand | Stopped] -- C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\WPS\jswpsapi.exe -- (jswpsapi)
SRV - [2010-07-26 14:15:26 | 000,217,088 | ---- | M] (Teruten) [Auto | Running] -- C:\WINDOWS\system32\FsUsbExService.Exe -- (FsUsbExService)
SRV - [2007-05-15 14:55:46 | 001,550,896 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe -- (InCDsrv)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] --  -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] --  -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] --  -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] --  -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] --  -- (Changer)
DRV - [2013-03-06 00:28:47 | 000,278,984 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2013-03-06 00:28:46 | 000,025,416 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2012-11-15 23:33:26 | 000,094,048 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2012-11-13 21:53:00 | 000,014,416 | ---- | M] (OpenLibSys.org) [File_System | On_Demand | Stopped] -- C:\Program Files\Razer\Razer Game Booster\Driver\WinRing0.sys -- (WinRing0_1_2_0)
DRV - [2012-10-22 13:02:46 | 000,179,936 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgidsdriverx.sys -- (AVGIDSDriver)
DRV - [2012-10-15 03:48:52 | 000,055,776 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\avgidshx.sys -- (AVGIDSHX)
DRV - [2012-10-02 03:30:38 | 000,159,712 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2012-09-21 03:46:06 | 000,164,832 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2012-09-21 03:46:00 | 000,177,376 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\avglogx.sys -- (Avglogx)
DRV - [2012-09-21 03:45:54 | 000,019,936 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgidsshimx.sys -- (AVGIDSShim)
DRV - [2012-09-19 10:50:50 | 000,010,088 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)
DRV - [2012-09-14 03:05:20 | 000,035,552 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\avgrkx86.sys -- (Avgrkx86)
DRV - [2011-12-07 20:52:28 | 000,022,328 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PnkBstrK.sys -- (PnkBstrK)
DRV - [2011-07-28 19:06:06 | 001,763,584 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\athuw.sys -- (AR9271)
DRV - [2011-07-20 08:46:04 | 000,181,432 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssudmdm.sys -- (ssudmdm)
DRV - [2011-07-20 08:46:04 | 000,077,624 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssudbus.sys -- (dg_ssudbus)
DRV - [2011-03-31 15:36:52 | 000,058,208 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\wsimd.sys -- (WSIMD)
DRV - [2011-03-31 15:36:52 | 000,057,440 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\jswscimd.sys -- (JSWSCIMD)
DRV - [2011-03-08 13:40:58 | 000,020,032 | ---- | M] (Devguru Co., Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\dgderdrv.sys -- (dgderdrv)
DRV - [2010-12-21 06:55:02 | 000,132,424 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdm.sys -- (sscdmdm)
DRV - [2010-12-21 06:55:02 | 000,104,648 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdbus.sys -- (sscdbus)
DRV - [2010-12-21 06:55:02 | 000,014,920 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdfl.sys -- (sscdmdfl)
DRV - [2010-08-12 11:23:48 | 001,513,984 | R--- | M] (C-Media Electronics Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\CM106.sys -- (USBMULCD)
DRV - [2010-07-26 14:15:26 | 000,036,640 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2008-12-24 11:42:15 | 000,015,600 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\gdrv.sys -- (gdrv)
DRV - [2008-10-14 11:07:50 | 000,103,936 | R--- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZTEusbser6k.sys -- (ZTEusbser6k)
DRV - [2008-10-14 11:07:50 | 000,103,936 | R--- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZTEusbnmeaext.sys -- (ZTEusbnmeaext)
DRV - [2008-10-14 11:07:50 | 000,103,936 | R--- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZTEusbnmea.sys -- (ZTEusbnmea)
DRV - [2008-10-14 11:07:50 | 000,103,936 | R--- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZTEusbmdm6k.sys -- (ZTEusbmdm6k)
DRV - [2008-10-14 08:10:30 | 000,034,688 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pcampr5.sys -- (PCAMPR5)
DRV - [2008-06-16 09:13:46 | 000,032,128 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pcandis5.sys -- (PCANDIS5)
DRV - [2007-09-05 10:31:30 | 004,611,072 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService)
DRV - [2007-06-28 11:46:42 | 000,020,480 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2007-06-28 11:46:40 | 000,045,824 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2007-05-15 14:55:36 | 000,118,576 | ---- | M] (Nero AG) [File_System | Disabled | Running] -- C:\WINDOWS\system32\drivers\InCDfs.sys -- (InCDfs)
DRV - [2007-05-15 14:55:36 | 000,038,576 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\InCDRm.sys -- (incdrm)
DRV - [2007-05-15 14:55:36 | 000,037,040 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\InCDPass.sys -- (InCDPass)
DRV - [2007-05-15 14:55:36 | 000,016,304 | ---- | M] (Nero AG) [Recognizer | System | Unknown] -- C:\WINDOWS\System32\drivers\InCDrec.sys -- (InCDrec)
DRV - [2006-12-15 16:09:50 | 000,013,824 | R--- | M] (A4Tech Co.,Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Amusbprt.sys -- (Amusbprt)
DRV - [2006-12-15 16:09:24 | 000,008,704 | R--- | M] (A4Tech Co.,Ltd.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\Amfilter.sys -- (Amfilter)
DRV - [2006-06-18 22:51:32 | 000,043,520 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2006-05-09 09:27:30 | 000,013,824 | R--- | M] (A4Tech Co.,Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Amps2prt.sys -- (Amps2prt)
DRV - [2005-08-08 13:44:04 | 000,006,640 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\MouseCap.sys -- (MouseCap)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...ferrer:source?}


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1993962763-484763869-1801674531-1004\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Yahoo! Search
IE - HKU\S-1-5-21-1993962763-484763869-1801674531-1004\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://search.yahoo....=utf-8&fr=b1ie7
IE - HKU\S-1-5-21-1993962763-484763869-1801674531-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
IE - HKU\S-1-5-21-1993962763-484763869-1801674531-1004\..\SearchScopes,DefaultScope = {AFB3F1EB-9085-4314-BE35-EBEB2818A5B5}
IE - HKU\S-1-5-21-1993962763-484763869-1801674531-1004\..\SearchScopes\{AFB3F1EB-9085-4314-BE35-EBEB2818A5B5}: "URL" = http://www.google.co...ie7&rlz=1I7RNWN
IE - HKU\S-1-5-21-1993962763-484763869-1801674531-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1993962763-484763869-1801674531-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..network.proxy.no_proxies_on: "*.local"
FF - prefs.js..network.proxy.type: 0
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.69: C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.69: C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=:  File not found
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013-03-07 13:53:27 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013-03-06 11:14:32 | 000,000,000 | ---D | M]

[2010-09-24 08:00:37 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\user\Dane aplikacji\Mozilla\Extensions
[2013-03-08 14:50:28 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\x0qmy1ky.default\extensions
[2010-10-18 13:53:40 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\x0qmy1ky.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2013-03-07 13:54:11 | 000,817,280 | ---- | M] () (No name found) -- C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\x0qmy1ky.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2010-09-24 08:17:45 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2013-03-07 13:53:26 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012-06-28 16:42:00 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll
[2013-03-07 13:53:23 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2013-03-07 13:53:23 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2013-03-07 13:53:23 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2013-03-07 13:53:23 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2013-03-07 13:53:23 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2013-03-07 13:53:23 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2008-04-15 13:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1    localhost
O2 - BHO: (Yahoo! Companion BHO) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_2_0.dll (Yahoo! Inc.)
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (&Google) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (&Yahoo! Companion) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_2_0.dll (Yahoo! Inc.)
O3 - HKU\S-1-5-21-1993962763-484763869-1801674531-1004\..\Toolbar\WebBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O3 - HKU\S-1-5-21-1993962763-484763869-1801674531-1004\..\Toolbar\WebBrowser: (&Yahoo! Companion) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_2_0.dll (Yahoo! Inc.)
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [AVG_UI] C:\Program Files\AVG\AVG2013\avgui.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [Cm106Sound] RunDll32 cm106.cpl,CMICtrlWnd File not found
O4 - HKLM..\Run: [InCD] C:\Program Files\Nero\Nero 7\InCD\InCD.exe (Nero AG)
O4 - HKLM..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [SecurDisc] C:\Program Files\Nero\Nero 7\InCD\NBHGui.exe (Nero AG)
O4 - HKLM..\Run: [WheelMouse] C:\Program Files\A4Tech\Mouse\Amoumain.exe (A4Tech Co., Ltd.)
O4 - HKU\S-1-5-21-1993962763-484763869-1801674531-1004..\Run: [KiesHelper] C:\Program Files\Samsung\Kies\KiesHelper.exe (Samsung)
O4 - HKU\S-1-5-21-1993962763-484763869-1801674531-1004..\Run: [KiesPDLR] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe ()
O4 - HKU\S-1-5-21-1993962763-484763869-1801674531-1004..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
O4 - HKU\S-1-5-21-1993962763-484763869-1801674531-1004..\Run: [Pando Media Booster] C:\Program Files\Pando Networks\Media Booster\PMB.exe ()
O4 - HKU\S-1-5-21-1993962763-484763869-1801674531-1004..\Run: [screenSHU] C:\Program Files\screenSHU\screenSHU.exe ()
O4 - HKU\S-1-5-21-1993962763-484763869-1801674531-1004..\Run: [Steam] D:\steam\Steam.exe (Valve Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\TP-LINK Wireless Configuration Utility.lnk = C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1993962763-484763869-1801674531-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.mi...b?1219661812109 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1B62E037-43D1-47F8-B765-D51919BFBC2A}: NameServer = 194.204.152.34,194.204.159.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{676BB714-E93C-4998-BDB6-F464430BA4B3}: NameServer = 194.204.152.34,194.204.159.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{AEA8AD08-79BA-41AB-9217-8568B3215E66}: NameServer = 194.204.152.34,194.204.159.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E7B08606-DB23-4864-B8E5-025DFC2B660E}: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008-08-13 18:41:27 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2010-04-28 09:57:31 | 000,067,329 | ---- | M] () - C:\AutoMapaSetupLog.txt -- [ NTFS ]
O33 - MountPoints2\{0e381adc-0505-11df-a3ca-001a4dfa48a6}\Shell\AutoRun\command - "" = H:\dhrhyje.bat
O33 - MountPoints2\{0e381adc-0505-11df-a3ca-001a4dfa48a6}\Shell\open\Command - "" = H:\dhrhyje.bat
O33 - MountPoints2\{0e381add-0505-11df-a3ca-001a4dfa48a6}\Shell\AutoRun\command - "" = G:\dhrhyje.bat
O33 - MountPoints2\{0e381add-0505-11df-a3ca-001a4dfa48a6}\Shell\open\Command - "" = G:\dhrhyje.bat
O33 - MountPoints2\{4a0c767b-59c5-11e0-a40f-001a4dfa48a6}\Shell - "" = AutoRun
O33 - MountPoints2\{4a0c767b-59c5-11e0-a40f-001a4dfa48a6}\Shell\AutoRun\command - "" = G:\AutoRunCardDetector.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG2013\avgrsx.exe /sync /restart)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2013-03-08 14:54:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\AVG
[2013-03-07 13:53:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Mozilla
[2013-03-07 13:53:29 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2013-03-06 22:10:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Dane aplikacji\AVG2013
[2013-03-06 22:09:35 | 000,000,000 | -H-D | C] -- C:\$AVG
[2013-03-06 22:09:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG2013
[2013-03-06 22:08:44 | 000,000,000 | ---D | C] -- C:\Program Files\AVG
[2013-03-06 22:08:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Razer
[2013-03-06 22:07:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Razer
[2013-03-06 22:07:41 | 000,000,000 | ---D | C] -- C:\Program Files\Razer
[2013-03-06 22:07:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Razer
[2013-03-06 22:04:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\MFAData
[2013-03-06 22:04:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\MFAData
[2013-03-06 22:04:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Avg2013
[2013-03-06 21:59:34 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2013-03-06 20:31:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Dane aplikacji\LolClient
[2013-03-06 19:10:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\screenSHU
[2013-03-06 19:09:47 | 000,000,000 | ---D | C] -- C:\Program Files\screenSHU
[2013-03-06 18:13:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\NewFeature1
[2013-03-06 14:45:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Darksiders2
[2013-03-06 12:00:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Menu Start\Programy\Steam
[2013-03-06 11:23:40 | 000,029,984 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\uxtuneup.dll
[2013-03-06 11:19:45 | 000,032,032 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\TURegOpt.exe
[2013-03-06 11:19:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\TuneUp Utilities 2013
[2013-03-06 11:19:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Dane aplikacji\TuneUp Software
[2013-03-06 11:19:17 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2013
[2013-03-06 11:19:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\TuneUp Software
[2013-03-06 11:19:03 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
[2013-03-06 11:19:03 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files
[2013-03-06 11:18:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Winamp
[2013-03-06 11:14:32 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp Detect
[2013-03-06 11:14:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Menu Start\Programy\Detektor Winampa
[2013-03-06 11:14:16 | 002,095,600 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxsfs.dll
[2013-03-06 11:14:16 | 000,571,888 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxdrv.dll
[2013-03-06 11:14:16 | 000,440,816 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxwave.dll
[2013-03-06 11:14:16 | 000,133,616 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxafs.dll
[2013-03-06 11:14:16 | 000,126,448 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsi64.exe
[2013-03-06 11:14:16 | 000,123,888 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpyi64.exe
[2013-03-06 11:14:16 | 000,100,848 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\vxblock.dll
[2013-03-06 11:14:16 | 000,072,176 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxhpinst.exe
[2013-03-06 11:14:16 | 000,068,592 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsa64.exe
[2013-03-06 11:14:16 | 000,068,080 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpya64.exe
[2013-03-06 11:14:16 | 000,059,888 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxwma.dll
[2013-03-06 11:14:16 | 000,009,200 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\cdralw2k.sys
[2013-03-06 11:14:16 | 000,009,072 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys
[2013-03-06 11:14:15 | 000,698,864 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\px.dll
[2013-03-06 11:14:15 | 000,219,632 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxmas.dll
[2013-03-06 11:14:11 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp
[2013-03-06 11:14:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Dane aplikacji\Winamp
[2013-03-06 11:14:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Dane aplikacji\OpenCandy
[2013-03-06 11:14:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\PMB Files
[2013-03-06 11:13:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\PMB Files
[2013-03-06 11:13:21 | 000,000,000 | ---D | C] -- C:\Program Files\Pando Networks
[2013-03-06 11:13:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\.swt
[2013-03-06 11:08:48 | 000,000,000 | ---D | C] -- C:\Winamp muzyka
[2013-03-06 11:00:09 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Steam
[2013-03-06 11:00:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Steam
[2013-03-06 10:53:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2013-03-06 10:53:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Skype
[2013-03-06 10:53:35 | 000,000,000 | R--D | C] -- C:\Program Files\Skype
[2013-03-06 10:31:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Dane aplikacji\TP-LINK
[2013-03-06 10:31:11 | 000,405,582 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\jswscsup.dll
[2013-03-06 10:31:11 | 000,057,440 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\jswscimd.sys
[2013-03-06 10:31:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\TP-LINK
[2013-03-06 10:31:07 | 000,499,796 | ---- | C] (Atheros) -- C:\WINDOWS\System32\acs.exe
[2013-03-06 10:30:55 | 000,405,504 | ---- | C] (Atheros) -- C:\WINDOWS\System32\wcapi.dll
[2013-03-06 10:30:55 | 000,360,539 | ---- | C] (Atheros) -- C:\WINDOWS\System32\wcapiU.dll
[2013-03-06 10:30:55 | 000,311,390 | ---- | C] (Atheros) -- C:\WINDOWS\System32\athcfg20U.dll
[2013-03-06 10:30:55 | 000,254,022 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\wsfwDS.dll
[2013-03-06 10:30:55 | 000,249,924 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\wsimd.dll
[2013-03-06 10:30:55 | 000,237,568 | ---- | C] (Atheros) -- C:\WINDOWS\System32\athcfg20.dll
[2013-03-06 10:30:55 | 000,127,079 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\athcfg20resU.dll
[2013-03-06 10:30:55 | 000,127,053 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\athcfg20res.dll
[2013-03-06 10:30:55 | 000,082,017 | ---- | C] (Devicescape, Inc.) -- C:\WINDOWS\System32\dsaNac.dll
[2013-03-06 10:30:55 | 000,058,208 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\wsimd.sys
[2013-03-06 10:30:55 | 000,058,208 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\drivers\wsimd.sys
[2013-03-06 10:30:55 | 000,000,000 | ---D | C] -- C:\Program Files\TP-LINK
[2013-03-06 10:30:21 | 001,763,584 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\drivers\athuw.sys
[2013-03-06 10:30:21 | 001,763,584 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\athuw.sys
[2013-03-06 10:17:15 | 000,057,440 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\drivers\jswscimd.sys
[2013-03-06 09:59:12 | 001,269,854 | ---- | C] (Devicescape) -- C:\WINDOWS\System32\dsa.dll
[2013-03-06 08:45:13 | 008,757,248 | R--- | C] (C-Media Corporation) -- C:\WINDOWS\System\CM106.cpl
[2013-03-06 08:45:13 | 000,294,912 | R--- | C] (C-Media) -- C:\WINDOWS\System32\CM106rm.exe
[2013-03-06 08:44:57 | 001,513,984 | R--- | C] (C-Media Electronics Inc) -- C:\WINDOWS\System32\drivers\CM106.sys
[2013-03-06 08:44:57 | 000,315,392 | R--- | C] (C-Media Electronics Inc.) -- C:\WINDOWS\System\fltr106.dll
[2013-03-06 08:44:50 | 000,307,200 | R--- | C] (C-Media Corporation) -- C:\WINDOWS\Cmi106Uninstall.exe
[2013-03-06 08:44:24 | 000,000,000 | ---D | C] -- C:\Program Files\Genesis HX77 Headset
[2013-03-06 08:44:04 | 000,060,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbaudio.sys
[2013-03-06 00:29:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\The Witcher
[2013-03-06 00:29:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Moje dokumenty\The Witcher
[2013-03-05 22:31:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Wiedźmin
[2013-03-05 21:34:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Ubisoft Game Launcher
[2013-03-05 21:34:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Moje dokumenty\Might & Magic Heroes VI
[2013-03-05 21:34:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Dane aplikacji\Might & Magic Heroes VI
[2013-03-05 21:24:32 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_7.dll
[2013-03-05 21:24:32 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_5.dll
[2013-03-05 21:24:30 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_7.dll
[2013-03-05 21:24:27 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_43.dll
[2013-03-05 21:24:23 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dcsx_43.dll
[2013-03-05 21:24:19 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx11_43.dll
[2013-03-05 21:24:18 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_43.dll
[2013-03-05 21:24:16 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_43.dll
[2013-03-05 21:24:12 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_6.dll
[2013-03-05 21:24:12 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_4.dll
[2013-03-05 21:24:11 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_6.dll
[2013-03-05 21:24:11 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_7.dll
[2013-03-05 21:24:08 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_5.dll
[2013-03-05 21:24:06 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_5.dll
[2013-03-05 21:24:05 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_42.dll
[2013-03-05 21:23:59 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dcsx_42.dll
[2013-03-05 21:23:54 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_42.dll
[2013-03-05 21:23:54 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx11_42.dll
[2013-03-05 21:23:52 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_42.dll
[2013-03-05 20:57:21 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\user\Dane aplikacji\SecuROM
[2013-03-05 20:56:39 | 000,000,000 | ---D | C] -- C:\Program Files\Ubisoft
[2013-03-05 20:18:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Pulpit\Trzeci.Wymiar-Cztery.Pory.Rapu
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[16 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013-03-09 15:57:08 | 000,175,033 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2013-03-09 15:56:45 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013-03-09 15:56:43 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013-03-08 14:54:06 | 000,000,732 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\AVG 2013.lnk
[2013-03-06 23:56:02 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2013-03-06 22:23:13 | 000,000,986 | ---- | M] () -- C:\WINDOWS\System\Cm106.ini
[2013-03-06 22:07:52 | 000,001,869 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Razer Game Booster.lnk
[2013-03-06 22:05:54 | 000,566,094 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2013-03-06 22:05:54 | 000,502,916 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2013-03-06 22:05:54 | 000,110,410 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2013-03-06 22:05:54 | 000,088,440 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2013-03-06 19:09:49 | 000,000,694 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\screenSHU.lnk
[2013-03-06 18:19:24 | 000,000,714 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Graj w League of Legends.lnk
[2013-03-06 14:31:00 | 040,902,592 | ---- | M] () -- C:\Documents and Settings\user\ggsetup.exe
[2013-03-06 14:31:00 | 000,000,044 | ---- | M] () -- C:\Documents and Settings\user\ggdownload.ini
[2013-03-06 12:00:24 | 000,000,201 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\Darksiders II.url
[2013-03-06 11:19:44 | 000,001,761 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\TuneUp Konserwacja 1 kliknięciem.lnk
[2013-03-06 11:19:44 | 000,001,747 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\TuneUp Utilities 2013.lnk
[2013-03-06 11:18:19 | 000,000,654 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk
[2013-03-06 11:00:11 | 000,000,457 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Steam.lnk
[2013-03-06 10:31:11 | 000,001,928 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\TP-LINK Wireless Configuration Utility.lnk
[2013-03-06 10:31:11 | 000,001,902 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\TP-LINK Wireless Configuration Utility.lnk
[2013-03-06 08:45:13 | 000,000,125 | ---- | M] () -- C:\WINDOWS\Cm106.ini.cfl
[2013-03-06 00:28:47 | 000,278,984 | ---- | M] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2013-03-06 00:28:46 | 000,025,416 | ---- | M] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2013-03-05 21:24:40 | 000,001,767 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Might & Magic Heroes VI.lnk
[2013-03-05 19:46:15 | 000,131,584 | ---- | M] () -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[16 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013-03-08 16:57:27 | 000,076,598 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\WPFFontCache_v0400-S-1-5-21-1993962763-484763869-1801674531-1004-0.dat
[2013-03-07 07:55:00 | 000,076,598 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\WPFFontCache_v0400-System.dat
[2013-03-06 22:10:03 | 000,000,732 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\AVG 2013.lnk
[2013-03-06 22:07:51 | 000,001,869 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Razer Game Booster.lnk
[2013-03-06 19:09:49 | 000,000,700 | ---- | C] () -- C:\Documents and Settings\user\Menu Start\Programy\screenSHU.lnk
[2013-03-06 19:09:49 | 000,000,694 | ---- | C] () -- C:\Documents and Settings\user\Pulpit\screenSHU.lnk
[2013-03-06 18:19:24 | 000,000,714 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Graj w League of Legends.lnk
[2013-03-06 14:31:00 | 000,000,044 | ---- | C] () -- C:\Documents and Settings\user\ggdownload.ini
[2013-03-06 12:21:24 | 040,902,592 | ---- | C] () -- C:\Documents and Settings\user\ggsetup.exe
[2013-03-06 12:00:24 | 000,000,201 | ---- | C] () -- C:\Documents and Settings\user\Pulpit\Darksiders II.url
[2013-03-06 11:19:44 | 000,001,761 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\TuneUp Konserwacja 1 kliknięciem.lnk
[2013-03-06 11:19:44 | 000,001,747 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\TuneUp Utilities 2013.lnk
[2013-03-06 11:19:43 | 000,001,753 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\TuneUp Utilities 2013.lnk
[2013-03-06 11:18:19 | 000,000,654 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk
[2013-03-06 11:00:11 | 000,000,457 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Steam.lnk
[2013-03-06 10:31:11 | 000,035,967 | ---- | C] () -- C:\WINDOWS\System32\jswscimdp.cat
[2013-03-06 10:31:11 | 000,035,538 | ---- | C] () -- C:\WINDOWS\System32\jswscimd.cat
[2013-03-06 10:31:11 | 000,005,529 | ---- | C] () -- C:\WINDOWS\System32\jswscimdp.inf
[2013-03-06 10:31:11 | 000,002,231 | ---- | C] () -- C:\WINDOWS\System32\jswscimd.inf
[2013-03-06 10:31:11 | 000,001,928 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\TP-LINK Wireless Configuration Utility.lnk
[2013-03-06 10:31:11 | 000,001,902 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\TP-LINK Wireless Configuration Utility.lnk
[2013-03-06 10:31:07 | 000,262,216 | ---- | C] () -- C:\WINDOWS\System32\IPTests.dll
[2013-03-06 10:30:55 | 000,422,000 | ---- | C] () -- C:\WINDOWS\System32\wgapi.dll
[2013-03-06 10:30:55 | 000,042,067 | ---- | C] () -- C:\WINDOWS\System32\wsimdp.cat
[2013-03-06 10:30:55 | 000,042,052 | ---- | C] () -- C:\WINDOWS\System32\wsimd.cat
[2013-03-06 10:30:55 | 000,005,363 | ---- | C] () -- C:\WINDOWS\System32\wsimdp.inf
[2013-03-06 10:30:55 | 000,002,179 | ---- | C] () -- C:\WINDOWS\System32\wsimd.inf
[2013-03-06 10:30:21 | 000,045,171 | ---- | C] () -- C:\WINDOWS\System32\netathuw.inf
[2013-03-06 10:30:21 | 000,008,818 | ---- | C] () -- C:\WINDOWS\System32\netathuw.cat
[2013-03-06 08:45:13 | 000,491,520 | R--- | C] () -- C:\WINDOWS\System\cmau106.dll
[2013-03-06 08:45:13 | 000,221,184 | R--- | C] () -- C:\WINDOWS\System\cm106eye.exe
[2013-03-06 08:45:13 | 000,000,986 | ---- | C] () -- C:\WINDOWS\System\Cm106.ini
[2013-03-06 08:45:13 | 000,000,125 | ---- | C] () -- C:\WINDOWS\Cm106.ini.cfl
[2013-03-06 08:44:51 | 000,001,249 | R--- | C] () -- C:\WINDOWS\Cm106.ini.cfg
[2013-03-06 08:44:41 | 000,000,814 | R--- | C] () -- C:\WINDOWS\cm106.ini
[2013-03-06 00:28:47 | 000,278,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2013-03-06 00:28:46 | 000,025,416 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2013-03-05 21:24:40 | 000,001,767 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Might & Magic Heroes VI.lnk
[2011-10-12 08:19:14 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011-03-29 07:54:06 | 000,453,032 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2011-03-29 06:24:42 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll
[2011-03-29 06:24:42 | 000,036,640 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys
[2011-03-29 06:24:25 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\user\Dane aplikacji\$_hpcst$.hpc
[2008-08-25 19:44:44 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2008-08-25 14:22:03 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\user\Dane aplikacji\PnkBstrK.sys
[2008-08-15 07:28:41 | 000,131,584 | ---- | C] () -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

========== ZeroAccess Check ==========

[2008-08-25 19:43:16 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2008-06-26 09:14:35 | 001,499,136 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009-02-09 11:53:44 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008-04-15 13:00:00 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2013-03-06 22:10:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG2013
[2013-03-06 11:19:03 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files
[2010-10-15 07:31:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Electronic Arts
[2008-08-25 09:34:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\LightScribe
[2013-03-09 16:02:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\MFAData
[2013-03-06 21:21:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PMB Files
[2013-03-06 22:07:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Razer
[2009-11-26 11:45:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\rkfree
[2011-03-29 06:25:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Samsung
[2013-03-06 10:30:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TP-LINK
[2013-03-06 11:19:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TuneUp Software
[2008-12-08 18:47:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[2013-03-06 11:30:22 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
[2013-03-08 14:54:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Dane aplikacji\TuneUp Software
[2008-08-29 16:39:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\ACD Systems
[2008-08-13 18:11:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Ace
[2013-03-06 22:10:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\AVG2013
[2009-05-04 20:09:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\BSplayer Pro
[2009-07-27 17:09:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Gadu-Gadu
[2013-03-06 20:31:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\LolClient
[2013-03-05 21:34:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Might & Magic Heroes VI
[2013-03-06 11:14:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\OpenCandy
[2011-03-29 06:23:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Samsung
[2008-08-26 09:26:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Tlen.pl
[2013-03-06 10:32:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\TP-LINK
[2013-03-06 22:10:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\TuneUp Software

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 3020 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\rkfree:cfg

< End of report >



Ktoś pomoże? :x

Ogłoszenie

    Linki Sponsorowane


#2
Fivtyen

Fivtyen

    marny bloger

  • Forumowicze
  • PipPipPipPipPipPipPip
  • 1563 postów
Rejestracja: 30 XI 2008
  • Płeć:mężczyzna
Na FA logami OTL zajmował się kiedyś Sevard, ale od pewnego czasu poleca się poszukać pomocy na profesjonalnych forach zajmujących się tą tematyką.

geekstogo
bleeping computer

Jeśli komunikacja w języku angielskim jest dla Ciebie problemem, możesz poszukać pomocy na fixitpc.pl.
Dodany obrazek Dodany obrazek Dodany obrazek Dodany obrazek

#3
Sevard

Sevard

    Konqi

  • Hall of FAme
  • PipPipPipPipPipPipPipPipPipPip
  • 14576 postów
Rejestracja: 21 VII 2008
  • Płeć:mężczyzna
  • Skąd:Z 628254 warstwy otchłani.
W logach widzę parę niepokojących rzeczy (widać ślady po malware i brakujące pliki w systemie), ale jeśli o to chodzi, to lepiej udaj się na jedno z for poleconych wyżej.
Z innych rzeczy - dziennik aplikacji najpewniej nie działa (ostatni wpis z 2010 roku, co jest dziwne). W dzienniku System widać błędy dotyczące dostępu do kluczy rejestru oraz błąd przy przywracaniu systemu. Tak na szybko - możesz podać S.M.A.R.T. swoich dysków (patrz przypięty temat w Sprzęcie)?

She seems to be stronger but what they want her to be is weak
She could play pretend. She could join the game, boy
She could be another clone


#4
Cearme

Cearme
  • Forumowicze
  • 3 postów
Rejestracja: 09 III 2013
http://iv.pl/images/...58609143535.jpg
Dodany obrazek

Proszę.

Ogłoszenie

    Linki Sponsorowane


#5
helmud7543

helmud7543

    Hipnotyzer

  • Odrzutki
  • PipPipPipPipPipPipPipPip
  • 3480 postów
Rejestracja: 07 VII 2006
  • Płeć:mężczyzna
  • Skąd:Dębów
Prawdopodobnie dysk z wadliwym firmware.

#6
Sevard

Sevard

    Konqi

  • Hall of FAme
  • PipPipPipPipPipPipPipPipPipPip
  • 14576 postów
Rejestracja: 21 VII 2008
  • Płeć:mężczyzna
  • Skąd:Z 628254 warstwy otchłani.
To raczej nie jest wina firmware'u - nie te objawy. Martwi wysoka wartość atrybutu BC Command Timeout. Sprawdź dokładnie kable łączące dysk z płytą główną oraz z zasilaczem. Jaki masz zasilacz?

Frimware dysku i tak trzeba zaktualizować, bo błąd w firmware jest dosyć poważny (odsyłam tu).

She seems to be stronger but what they want her to be is weak
She could play pretend. She could join the game, boy
She could be another clone


#7
Cearme

Cearme
  • Forumowicze
  • 3 postów
Rejestracja: 09 III 2013

Zobacz postSevard, 10 marzec 2013 - 19:38, powiedział:

To raczej nie jest wina firmware'u - nie te objawy. Martwi wysoka wartość atrybutu BC Command Timeout. Sprawdź dokładnie kable łączące dysk z płytą główną oraz z zasilaczem. Jaki masz zasilacz?

Frimware dysku i tak trzeba zaktualizować, bo błąd w firmware jest dosyć poważny (odsyłam tu).

Frimware zaktualizowany, pomogło przez jakieś dwa dni lecz problem nadal występuje. Mój zasilacz:Fell III-500ATX. (total output 500w). Wszystkie kable moim zdaniem są prawidłowo podpięte, zdarza się że raz komputer działa prawidłowo a po restarcie pojawia się ten sam błąd.

#8
RAZOR026

RAZOR026

    Flaczek

  • Forumowicze
  • PipPipPipPipPipPipPip
  • 1942 postów
Rejestracja: 23 III 2011
  • Płeć:mężczyzna
  • Skąd:Żywiec
Pierwsza ważna rzecz. Dla dobra komputera wymień zasilacz ;)
Zobacz koniecznie Gothic Rap użytkownika Damiano0092AFTER

Czarna lista zasilaczy komputerowych:
http://www.elektroda...pic1199271.html

Jak czytać mój nick (bo niektórzy mylą RAZOR0 z RAZORO) RAZOR026 zero mam nadzieję  że będzie mniej pomyłek Dodany obrazek




0 użytkowników czyta ten temat

0 użytkowników, 0 gości, 0 anonimowych użytkowników