Cearme

Wyrzuca wszystko do pulpitu. (Otl)

Cześć od paru dni mam problem z systemem. Mianowicie wszystko wyrzuca mi do pulpitu, każdą grę, każdy program. Tutaj jest raport z OTL'a (temat: http://forum.cdaction.pl/index.php?showtopic=116155)

OTL Extras logfile created on: 2013-03-09 16:40:08 - Run 1

OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\user\Moje dokumenty\Pobieranie

Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 7.0.5730.13)

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

3,00 Gb Total Physical Memory | 1,99 Gb Available Physical Memory | 66,48% Memory free

4,84 Gb Paging File | 3,72 Gb Available in Paging File | 76,80% Paging File free

Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 48,83 Gb Total Space | 28,85 Gb Free Space | 59,09% Space Free | Partition Type: NTFS

Drive D: | 208,49 Gb Total Space | 168,32 Gb Free Space | 80,73% Space Free | Partition Type: NTFS

Drive E: | 208,43 Gb Total Space | 207,23 Gb Free Space | 99,42% Space Free | Partition Type: NTFS

Computer Name: MROZICKIPAWEL | User Name: user | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: All users

Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

[HKEY_USERS\S-1-5-21-1993962763-484763869-1801674531-1004\SOFTWARE\Classes\<extension>]

.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]

batfile [open] -- "%1" %*

cmdfile [open] -- "%1" %*

comfile [open] -- "%1" %*

cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

exefile [open] -- "%1" %*

htmlfile [edit] -- Reg Error: Key error.

InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l

piffile [open] -- "%1" %*

regfile [merge] -- Reg Error: Key error.

scrfile [config] -- "%1"

scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l

scrfile [open] -- "%1" /S

txtfile [edit] -- Reg Error: Key error.

Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1

Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)

Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)

Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)

Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)

Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)

Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

"FirstRunDisabled" = 1

"AntiVirusDisableNotify" = 0

"FirewallDisableNotify" = 0

"UpdatesDisableNotify" = 0

"AntiVirusOverride" = 1

"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]

"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]

"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]

"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007

"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

"57962:TCP" = 57962:TCP:*:Enabled:Pando Media Booster

"57962:UDP" = 57962:UDP:*:Enabled:Pando Media Booster

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

"EnableFirewall" = 1

"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007

"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

"139:TCP" = 139:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22004

"445:TCP" = 445:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22005

"137:UDP" = 137:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22001

"138:UDP" = 138:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22002

"57962:TCP" = 57962:TCP:*:Enabled:Pando Media Booster

"57962:UDP" = 57962:UDP:*:Enabled:Pando Media Booster

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)

"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)

"C:\Program Files\Pando Networks\Media Booster\PMB.exe" = C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)

"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)

"C:\WINDOWS\system32\PnkBstrA.exe" = C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA -- ()

"C:\WINDOWS\system32\PnkBstrB.exe" = C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB -- ()

"C:\Program Files\Bonjour\mDNSResponder.exe" = C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour -- (Apple Inc.)

"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)

"D:\Heroes 5\bin\H5_Game.exe" = D:\Heroes 5\bin\H5_Game.exe:*:Enabled:Heroes of Might and Magic V -- ()

"\\MROZICKI-D50C0A\E\gry\Counter-Strike 1.6\hltv.exe" = \\MROZICKI-D50C0A\E\gry\Counter-Strike 1.6\hltv.exe:*:Enabled:hltv.exe

"C:\Documents and Settings\user\Pulpit\Counter-Strike 1.6\hl.exe" = C:\Documents and Settings\user\Pulpit\Counter-Strike 1.6\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)

"C:\Documents and Settings\user\Pulpit\Counter-Strike 1.6\hlds.exe" = C:\Documents and Settings\user\Pulpit\Counter-Strike 1.6\hlds.exe:*:Enabled:HLDS Launcher -- (Valve)

"C:\Documents and Settings\user\Pulpit\Counter-Strike 1.6\hltv.exe" = C:\Documents and Settings\user\Pulpit\Counter-Strike 1.6\hltv.exe:*:Enabled:HLTV Launcher -- (Valve)

"D:\enemy\etqw.exe" = D:\enemy\etqw.exe:*:Enabled:Enemy Territory - QUAKE Wars -- (Splash Damage, Ltd.)

"D:\enemy\etqwded.exe" = D:\enemy\etqwded.exe:*:Enabled:etqwded.exe -- (Splash Damage, Ltd.)

"C:\WINDOWS\system32\muzapp.exe" = C:\WINDOWS\system32\muzapp.exe:*:Enabled:MUZ AOD APP player -- (Musiccity Co.Ltd.)

"C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe" = C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe:*:Enabled:Ubisoft Game Launcher -- ()

"C:\Program Files\Ubisoft\Might & Magic Heroes VI\Might & Magic Heroes VI.exe" = C:\Program Files\Ubisoft\Might & Magic Heroes VI\Might & Magic Heroes VI.exe:*:Enabled:Might & Magic Heroes VI -- (Black Hole Entertainment)

"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)

"D:\steam\Steam.exe" = D:\steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation)

"C:\Program Files\Pando Networks\Media Booster\PMB.exe" = C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()

"D:\steam\SteamApps\common\Darksiders 2\Darksiders2.exe" = D:\steam\SteamApps\common\Darksiders 2\Darksiders2.exe:*:Enabled:Darksiders II -- ()

"C:\Program Files\AVG\AVG2013\avgmfapx.exe" = C:\Program Files\AVG\AVG2013\avgmfapx.exe:*:Enabled:Instalator AVG -- (AVG Technologies CZ, s.r.o.)

"C:\Program Files\AVG\AVG2013\avgnsx.exe" = C:\Program Files\AVG\AVG2013\avgnsx.exe:*:Enabled:Ochrona Sieci -- (AVG Technologies CZ, s.r.o.)

"C:\Program Files\AVG\AVG2013\avgdiagex.exe" = C:\Program Files\AVG\AVG2013\avgdiagex.exe:*:Enabled:Diagnostyka AVG 2013 -- (AVG Technologies CZ, s.r.o.)

"C:\Program Files\AVG\AVG2013\avgemcx.exe" = C:\Program Files\AVG\AVG2013\avgemcx.exe:*:Enabled:Uniwersalny skaner poczty e-mail -- (AVG Technologies CZ, s.r.o.)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam

"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended

"{0DE075DB-4218-4B2C-A35E-48D80BA680BB}" = Heroes of Might and Magic V

"{105CFC7C-6992-11D5-BD9D-000102C10FD8}" = Lizardtech DjVu Control

"{1E249838-D27F-4C11-8C62-0D1CACCFC7EB}" = Disney-Pixar Wall-E

"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer

"{241DBC8D-14E3-4240-8EE5-3AC35086B638}" = AVG 2013

"{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java 6 Update 17

"{318AB667-3230-41B5-A617-CB3BF748D371}" = iTunes

"{319D91C6-3D44-436C-9F79-36C0D22372DC}" = TP-LINK Wireless Configuration Utility

"{321320E1-0E5A-36CB-9E52-F3B201B8C4D4}" = Microsoft .NET Framework 4 Client Profile PLK Language Pack

"{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP

"{361693F2-A153-4359-A4CB-A1B9FF2AA5E6}" = A4tech USB Mouse Quality Testing Program V4.0

"{38A1E3ED-D913-41D2-9953-A93D5ACE3ADF}" = TL-WN721N/TL-WN722N Driver

"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile

"{4248F8E5-5994-4F33-8251-544D02EA9925}" = FEAR Perseus Mandate

"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype? 6.2

"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml

"{5C19E2DC-4CCF-3114-B40A-6E565987025F}" = Microsoft .NET Framework 4 Extended PLK Language Pack

"{5DB65884-C963-4454-AABA-4CA3089281FA}" = NVIDIA PhysX

"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update

"{6F8CBBFB-7986-4140-91EC-D8C7F1EC8DF3}" = AVG 2013

"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable

"{745D37C2-26F4-4B65-BA13-F9840EBFA75B}" = Might & Magic Heroes VI

"{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies

"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053

"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher

"{88F0F4FF-B514-4E32-9C17-CAF96D60EAFC}" = Razer Game Booster

"{8A25392D-C5D2-4E79-A2BD-C15DDC5B0959}" = Bonjour

"{8FB53850-246A-3507-8ADE-0060093FFEA6}" = Visual Studio Tools for the Office system 3.0 Runtime

"{92606477-9366-4D3B-8AE3-6BE4B29727AB}" = League of Legends

"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster

"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

"{A2104078-AAA5-449E-95DD-55C9443A1045}" = Nero 7 Essentials

"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2

"{AC76BA86-7AD7-1045-7B44-A70500000002}" = Adobe Reader 7.0.5 - Polish

"{B7A585C8-CE4E-4150-84C6-A13C3CB1379F}" = Enemy Territory - Quake Wars

"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2

"{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}" = TuneUp Utilities 2013

"{C66A542D-B66B-4E67-84EA-F2D0383FBC14}" = TuneUp Utilities Language Pack (pl-PL)

"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1

"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1

"{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones

"{D9B4D7EE-481C-4C36-86AB-A8F7417725FF}" = LightScribe 1.6.43.1

"{DBEA1034-5882-4A88-8033-81C4EF0CFA29}" = Google Toolbar for Internet Explorer

"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime

"{EC4455AB-F155-4CC1-A4C5-88F3777F9886}" = Apple Mobile Device Support

"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219

"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver

"{F138762F-5A1F-4CF0-A5E1-1588EF6088A4}" = Wiedźmin

"{F958CA02-BB40-4007-894B-258729456EE4}" = QuickTime

"6A1545AE87FC8D98ACA7539CE7AA69DF2A5C7E1C" = Pakiet sterowników systemu Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)

"Adobe Acrobat 4.0" = Adobe Acrobat 4.0

"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX

"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin

"AVG" = AVG 2013

"BSPlayer1" = BSPlayer

"EADM" = EA Download Manager

"Free CD to MP3 Converter" = Free CD to MP3 Converter

"Generic USB 106 Sound" = Genesis HX77 Headset

"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs

"ie7" = Windows Internet Explorer 7

"InstallShield_{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies

"IrfanView" = IrfanView (remove only)

"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 4.5.3

"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1

"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1

"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile

"Microsoft .NET Framework 4 Client Profile PLK Language Pack" = Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile

"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended

"Microsoft .NET Framework 4 Extended PLK Language Pack" = Polski pakiet językowy dla programu Microsoft .NET Framework 4 Extended

"Mozilla Firefox 12.0 (x86 pl)" = Mozilla Firefox 12.0 (x86 pl)

"MozillaMaintenanceService" = Mozilla Maintenance Service

"NAPIPROJEKT_is1" = NAPIPROJEKT 1.0.6.2

"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs

"NVIDIA Drivers" = NVIDIA Drivers

"PunkBusterSvc" = PunkBuster Services

"Recuva" = Recuva

"screenSHU" = screenSHU - the fastest screen capture ever.

"Steam App 50650" = Darksiders II

"ToonCar" = ToonCar

"TuneUp Utilities 2013" = TuneUp Utilities 2013

"Visual Studio Tools for the Office system 3.0 Runtime" = Visual Studio Tools for the Office system 3.0 Runtime

"WheelMouse" = Smart-X7 7.80

"Winamp" = Winamp

"Windows Media Format Runtime" = Windows Media Format 11 runtime

"WinRAR archiver" = Archiwizator WinRAR

"WMFDist11" = Windows Media Format 11 runtime

"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0

"x264 Revision 489 x264.nl" = x264 Revision 489 x264.nl (remove only)

"Yahoo! Companion" = Yahoo! Companion

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1993962763-484763869-1801674531-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

"Winamp Detect" = Detektor Winampa

========== Last 20 Event Log Errors ==========

[ Application Events ]

Error - 2009-11-09 12:17:07 | Computer Name = MROZICKIPAWEL | Source = Application Hang | ID = 1002

Description = Aplikacja zawieszająca autorun.exe, wersja 1.0.0.1, moduł zawieszenia

hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2009-11-09 12:17:29 | Computer Name = MROZICKIPAWEL | Source = Application Hang | ID = 1002

Description = Aplikacja zawieszająca autorun.exe, wersja 1.0.0.1, moduł zawieszenia

hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2010-01-09 13:55:22 | Computer Name = MROZICKIPAWEL | Source = Application Hang | ID = 1002

Description = Aplikacja zawieszająca mmc.exe, wersja 5.2.3790.4136, moduł zawieszenia

hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2010-01-20 06:00:49 | Computer Name = MROZICKIPAWEL | Source = Application Error | ID = 1000

Description = Aplikacja powodująca błąd core.exe, wersja 5.0.0.255, moduł powodujący

błąd core.exe, wersja 5.0.0.255, adres błędu 0x0016b6a2.

Error - 2010-03-31 11:54:06 | Computer Name = MROZICKIPAWEL | Source = Application Error | ID = 1000

Description = Aplikacja powodująca błąd h5_game.exe, wersja 1.0.0.27, moduł powodujący

błąd h5_game.exe, wersja 1.0.0.27, adres błędu 0x00541542.

Error - 2010-03-31 11:54:33 | Computer Name = MROZICKIPAWEL | Source = Application Error | ID = 1000

Description = Aplikacja powodująca błąd h5_game.exe, wersja 1.0.0.27, moduł powodujący

błąd h5_game.exe, wersja 1.0.0.27, adres błędu 0x00541542.

Error - 2010-03-31 11:55:42 | Computer Name = MROZICKIPAWEL | Source = Application Error | ID = 1000

Description = Aplikacja powodująca błąd h5_game.exe, wersja 1.2.0.12, moduł powodujący

błąd h5_game.exe, wersja 1.2.0.12, adres błędu 0x001bb602.

Error - 2010-04-08 04:27:54 | Computer Name = MROZICKIPAWEL | Source = Application Error | ID = 1000

Description = Aplikacja powodująca błąd shift.exe, wersja 1.0.0.0, moduł powodujący

błąd unknown, wersja 0.0.0.0, adres błędu 0x00007365.

Error - 2010-04-28 04:26:56 | Computer Name = MROZICKIPAWEL | Source = Application Hang | ID = 1002

Description = Aplikacja zawieszająca nero.exe, wersja 7.9.6.0, moduł zawieszenia

hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2010-04-28 04:27:04 | Computer Name = MROZICKIPAWEL | Source = Application Hang | ID = 1002

Description = Aplikacja zawieszająca nero.exe, wersja 7.9.6.0, moduł zawieszenia

hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

[ System Events ]

Error - 2013-03-07 16:02:53 | Computer Name = MROZICKIPAWEL | Source = Service Control Manager | ID = 7006

Description = Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił

następujący błąd: %%5.

Error - 2013-03-07 17:39:51 | Computer Name = MROZICKIPAWEL | Source = DCOM | ID = 10010

Description = Serwer {9B1F122C-2982-4E91-AA8B-E071D54F2A4D} nie zarejestrował się

w modelu DCOM w wymaganym czasie.

Error - 2013-03-07 17:41:51 | Computer Name = MROZICKIPAWEL | Source = DCOM | ID = 10010

Description = Serwer {9B1F122C-2982-4E91-AA8B-E071D54F2A4D} nie zarejestrował się

w modelu DCOM w wymaganym czasie.

Error - 2013-03-08 09:40:11 | Computer Name = MROZICKIPAWEL | Source = NetBT | ID = 4307

Description = Zainicjowanie nie powiodło się, ponieważ transport odmówił otwarcia

adresów początkowych.

Error - 2013-03-08 09:40:24 | Computer Name = MROZICKIPAWEL | Source = Service Control Manager | ID = 7006

Description = Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił

następujący błąd: %%5.

Error - 2013-03-08 09:40:24 | Computer Name = MROZICKIPAWEL | Source = Service Control Manager | ID = 7006

Description = Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił

następujący błąd: %%5.

Error - 2013-03-08 11:57:26 | Computer Name = MROZICKIPAWEL | Source = DCOM | ID = 10010

Description = Serwer {9B1F122C-2982-4E91-AA8B-E071D54F2A4D} nie zarejestrował się

w modelu DCOM w wymaganym czasie.

Error - 2013-03-09 10:57:00 | Computer Name = MROZICKIPAWEL | Source = Service Control Manager | ID = 7006

Description = Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił

następujący błąd: %%5.

Error - 2013-03-09 10:57:00 | Computer Name = MROZICKIPAWEL | Source = Service Control Manager | ID = 7006

Description = Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił

następujący błąd: %%5.

Error - 2013-03-09 10:57:03 | Computer Name = MROZICKIPAWEL | Source = sr | ID = 1

Description = Filtr Przywracania systemu napotkał nieoczekiwany błąd '0xC0000001'

podczas przetwarzania pliku '' w woluminie 'HarddiskVolume1'. W rezultacie zostało

zatrzymane monitorowanie woluminu.

< End of report >

Kolejny:

OTL logfile created on: 2013-03-09 16:40:08 - Run 1

OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\user\Moje dokumenty\Pobieranie

Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 7.0.5730.13)

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

3,00 Gb Total Physical Memory | 1,99 Gb Available Physical Memory | 66,48% Memory free

4,84 Gb Paging File | 3,72 Gb Available in Paging File | 76,80% Paging File free

Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 48,83 Gb Total Space | 28,85 Gb Free Space | 59,09% Space Free | Partition Type: NTFS

Drive D: | 208,49 Gb Total Space | 168,32 Gb Free Space | 80,73% Space Free | Partition Type: NTFS

Drive E: | 208,43 Gb Total Space | 207,23 Gb Free Space | 99,42% Space Free | Partition Type: NTFS

Computer Name: MROZICKIPAWEL | User Name: user | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: All users

Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013-03-09 16:38:57 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\user\Moje dokumenty\Pobieranie\OTL.exe

PRC - [2013-03-07 13:53:25 | 000,924,600 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe

PRC - [2013-02-25 07:39:34 | 001,602,984 | ---- | M] (Valve Corporation) -- D:\steam\steam.exe

PRC - [2013-01-31 11:12:26 | 001,926,944 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesApp32.exe

PRC - [2013-01-31 11:12:24 | 001,724,192 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe

PRC - [2012-12-11 03:52:44 | 003,147,384 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgui.exe

PRC - [2012-11-15 23:34:30 | 005,814,904 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgidsagent.exe

PRC - [2012-10-30 04:59:56 | 000,726,648 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgrsx.exe

PRC - [2012-10-22 13:05:08 | 000,196,664 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgwdsvc.exe

PRC - [2012-10-22 13:04:32 | 001,116,792 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgnsx.exe

PRC - [2012-10-22 13:03:52 | 000,796,792 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgemcx.exe

PRC - [2012-10-22 13:03:46 | 000,440,440 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2013\avgcsrvx.exe

PRC - [2011-11-18 17:14:48 | 000,788,992 | ---- | M] () -- C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe

PRC - [2011-08-01 04:32:20 | 000,020,880 | ---- | M] () -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe

PRC - [2011-08-01 04:32:10 | 003,507,088 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files\Samsung\Kies\KiesTrayAgent.exe

PRC - [2011-03-31 15:36:56 | 000,073,728 | ---- | M] () -- C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\WJATH\AthServer.exe

PRC - [2011-03-31 15:36:54 | 000,499,796 | ---- | M] (Atheros) -- C:\WINDOWS\system32\acs.exe

PRC - [2010-07-26 14:15:26 | 000,217,088 | ---- | M] (Teruten) -- C:\WINDOWS\system32\FsUsbExService.Exe

PRC - [2008-04-15 13:00:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe

PRC - [2007-05-15 14:55:46 | 001,628,208 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero 7\InCD\NBHGui.exe

PRC - [2007-05-15 14:55:46 | 001,550,896 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe

PRC - [2007-05-15 14:55:26 | 001,057,328 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero 7\InCD\InCD.exe

PRC - [2006-12-26 08:08:50 | 000,196,608 | ---- | M] (A4Tech Co., Ltd.) -- C:\Program Files\A4Tech\Mouse\Amoumain.exe

========== Modules (No Company Name) ==========

MOD - [2013-03-07 13:53:25 | 001,952,696 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll

MOD - [2013-03-07 07:48:59 | 001,159,168 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Management\6a6f4be744ed5bc5273cbcf0fcf303e3\System.Management.ni.dll

MOD - [2013-03-07 07:39:16 | 000,767,488 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runtime.Remo#\dc1f0dbf1d3ba856eccec90b62b55d79\System.Runtime.Remoting.ni.dll

MOD - [2013-03-07 07:38:36 | 001,776,640 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xaml\035910922f160d304fb834aae41f45a6\System.Xaml.ni.dll

MOD - [2013-03-06 22:02:47 | 017,629,184 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\7f91eecda3ff7ce478146b6458580c98\PresentationFramework.ni.dll

MOD - [2013-03-06 22:02:40 | 013,006,336 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\17e020ae92d7fab33bcc1c98b25019d0\System.Windows.Forms.ni.dll

MOD - [2013-03-06 22:02:29 | 001,651,200 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Drawing\dd57bc19f5807c6dbe8f88d4a23277f6\System.Drawing.ni.dll

MOD - [2013-03-06 22:02:25 | 011,057,664 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PresentationCore\3963e9ce8d44f50e8367e92a8e3e42e6\PresentationCore.ni.dll

MOD - [2013-03-06 22:02:25 | 000,656,896 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\016f9a150fce0e0a4c93532d8fa4c749\PresentationFramework.Luna.ni.dll

MOD - [2013-03-06 22:02:24 | 005,571,584 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xml\e997d0200c25f7db6bd32313d50b729d\System.Xml.ni.dll

MOD - [2013-03-06 22:02:17 | 007,025,664 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Core\713647b987b140a17e3c4ffe4c721f85\System.Core.ni.dll

MOD - [2013-03-06 22:02:14 | 003,779,072 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\WindowsBase\d17606e813f01376bd0def23726ecc62\WindowsBase.ni.dll

MOD - [2013-03-06 22:02:03 | 009,000,960 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System\964da027ebca3b263a05cadb8eaa20a3\System.ni.dll

MOD - [2013-03-06 22:01:54 | 014,415,872 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\mscorlib\246f1a5abb686b9dcdf22d3505b08cea\mscorlib.ni.dll

MOD - [2013-02-25 07:39:32 | 000,988,584 | ---- | M] () -- D:\steam\bin\chromehtml.dll

MOD - [2013-02-19 11:48:10 | 020,340,648 | ---- | M] () -- D:\steam\bin\libcef.dll

MOD - [2012-12-18 18:28:50 | 000,647,168 | ---- | M] () -- D:\steam\sdl.dll

MOD - [2012-12-11 09:51:10 | 001,100,800 | ---- | M] () -- D:\steam\bin\avcodec-53.dll

MOD - [2012-12-11 09:51:10 | 000,192,000 | ---- | M] () -- D:\steam\bin\avformat-53.dll

MOD - [2012-12-11 09:51:10 | 000,124,416 | ---- | M] () -- D:\steam\bin\avutil-51.dll

MOD - [2011-11-18 17:14:48 | 000,788,992 | ---- | M] () -- C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe

MOD - [2011-08-25 14:02:18 | 001,425,920 | ---- | M] () -- C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\nicLan.dll

MOD - [2011-08-18 22:05:53 | 000,115,137 | ---- | M] () -- C:\Documents and Settings\user\Ustawienia lokalne\Temp\3dcf2df1-2a83-477c-a7dd-858967792357\CliSecureRT.dll

MOD - [2011-08-01 04:32:20 | 000,020,880 | ---- | M] () -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe

MOD - [2011-05-05 18:23:30 | 006,053,536 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

MOD - [2011-03-31 15:36:56 | 000,231,424 | ---- | M] () -- C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\WJATH\WjAth.dll

MOD - [2011-03-31 15:36:56 | 000,073,728 | ---- | M] () -- C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\WJATH\AthServer.exe

MOD - [2011-03-31 15:36:56 | 000,024,576 | ---- | M] () -- C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\WJATH\IAthWcAPI.dll

MOD - [2011-03-31 15:36:46 | 000,167,424 | ---- | M] () -- C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\DC_WFF.dll

MOD - [2008-04-15 13:00:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll

MOD - [2007-02-16 16:40:42 | 005,521,408 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\QtGui4.dll

MOD - [2007-02-16 16:40:40 | 001,466,368 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\QtCore4.dll

========== Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)

SRV - [2013-03-07 13:53:25 | 000,129,976 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)

SRV - [2013-02-07 13:10:08 | 000,161,384 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)

SRV - [2013-01-31 11:12:24 | 001,724,192 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc)

SRV - [2013-01-31 11:12:22 | 000,029,984 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)

SRV - [2012-11-19 17:03:24 | 000,489,256 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)

SRV - [2012-11-15 23:34:30 | 005,814,904 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2013\avgidsagent.exe -- (AVGIDSAgent)

SRV - [2012-10-22 13:05:08 | 000,196,664 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2013\avgwdsvc.exe -- (avgwd)

SRV - [2011-03-31 15:36:54 | 000,499,796 | ---- | M] (Atheros) [Auto | Running] -- C:\WINDOWS\system32\acs.exe -- (ACS)

SRV - [2011-03-31 15:36:52 | 000,360,529 | ---- | M] (wireless) [On_Demand | Stopped] -- C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\WPS\jswpsapi.exe -- (jswpsapi)

SRV - [2010-07-26 14:15:26 | 000,217,088 | ---- | M] (Teruten) [Auto | Running] -- C:\WINDOWS\system32\FsUsbExService.Exe -- (FsUsbExService)

SRV - [2007-05-15 14:55:46 | 001,550,896 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe -- (InCDsrv)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)

DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)

DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)

DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)

DRV - File not found [Kernel | System | Stopped] -- -- (Changer)

DRV - [2013-03-06 00:28:47 | 000,278,984 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)

DRV - [2013-03-06 00:28:46 | 000,025,416 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)

DRV - [2012-11-15 23:33:26 | 000,094,048 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (Avgmfx86)

DRV - [2012-11-13 21:53:00 | 000,014,416 | ---- | M] (OpenLibSys.org) [File_System | On_Demand | Stopped] -- C:\Program Files\Razer\Razer Game Booster\Driver\WinRing0.sys -- (WinRing0_1_2_0)

DRV - [2012-10-22 13:02:46 | 000,179,936 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgidsdriverx.sys -- (AVGIDSDriver)

DRV - [2012-10-15 03:48:52 | 000,055,776 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\avgidshx.sys -- (AVGIDSHX)

DRV - [2012-10-02 03:30:38 | 000,159,712 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (Avgldx86)

DRV - [2012-09-21 03:46:06 | 000,164,832 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (Avgtdix)

DRV - [2012-09-21 03:46:00 | 000,177,376 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\avglogx.sys -- (Avglogx)

DRV - [2012-09-21 03:45:54 | 000,019,936 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgidsshimx.sys -- (AVGIDSShim)

DRV - [2012-09-19 10:50:50 | 000,010,088 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)

DRV - [2012-09-14 03:05:20 | 000,035,552 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\avgrkx86.sys -- (Avgrkx86)

DRV - [2011-12-07 20:52:28 | 000,022,328 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PnkBstrK.sys -- (PnkBstrK)

DRV - [2011-07-28 19:06:06 | 001,763,584 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\athuw.sys -- (AR9271)

DRV - [2011-07-20 08:46:04 | 000,181,432 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssudmdm.sys -- (ssudmdm)

DRV - [2011-07-20 08:46:04 | 000,077,624 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssudbus.sys -- (dg_ssudbus)

DRV - [2011-03-31 15:36:52 | 000,058,208 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\wsimd.sys -- (WSIMD)

DRV - [2011-03-31 15:36:52 | 000,057,440 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\jswscimd.sys -- (JSWSCIMD)

DRV - [2011-03-08 13:40:58 | 000,020,032 | ---- | M] (Devguru Co., Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\dgderdrv.sys -- (dgderdrv)

DRV - [2010-12-21 06:55:02 | 000,132,424 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdm.sys -- (sscdmdm)

DRV - [2010-12-21 06:55:02 | 000,104,648 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdbus.sys -- (sscdbus)

DRV - [2010-12-21 06:55:02 | 000,014,920 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdfl.sys -- (sscdmdfl)

DRV - [2010-08-12 11:23:48 | 001,513,984 | R--- | M] (C-Media Electronics Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\CM106.sys -- (USBMULCD)

DRV - [2010-07-26 14:15:26 | 000,036,640 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk)

DRV - [2008-12-24 11:42:15 | 000,015,600 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\gdrv.sys -- (gdrv)

DRV - [2008-10-14 11:07:50 | 000,103,936 | R--- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZTEusbser6k.sys -- (ZTEusbser6k)

DRV - [2008-10-14 11:07:50 | 000,103,936 | R--- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZTEusbnmeaext.sys -- (ZTEusbnmeaext)

DRV - [2008-10-14 11:07:50 | 000,103,936 | R--- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZTEusbnmea.sys -- (ZTEusbnmea)

DRV - [2008-10-14 11:07:50 | 000,103,936 | R--- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ZTEusbmdm6k.sys -- (ZTEusbmdm6k)

DRV - [2008-10-14 08:10:30 | 000,034,688 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pcampr5.sys -- (PCAMPR5)

DRV - [2008-06-16 09:13:46 | 000,032,128 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pcandis5.sys -- (PCANDIS5)

DRV - [2007-09-05 10:31:30 | 004,611,072 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService)

DRV - [2007-06-28 11:46:42 | 000,020,480 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)

DRV - [2007-06-28 11:46:40 | 000,045,824 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)

DRV - [2007-05-15 14:55:36 | 000,118,576 | ---- | M] (Nero AG) [File_System | Disabled | Running] -- C:\WINDOWS\system32\drivers\InCDfs.sys -- (InCDfs)

DRV - [2007-05-15 14:55:36 | 000,038,576 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\InCDRm.sys -- (incdrm)

DRV - [2007-05-15 14:55:36 | 000,037,040 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\InCDPass.sys -- (InCDPass)

DRV - [2007-05-15 14:55:36 | 000,016,304 | ---- | M] (Nero AG) [Recognizer | System | Unknown] -- C:\WINDOWS\System32\drivers\InCDrec.sys -- (InCDrec)

DRV - [2006-12-15 16:09:50 | 000,013,824 | R--- | M] (A4Tech Co.,Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Amusbprt.sys -- (Amusbprt)

DRV - [2006-12-15 16:09:24 | 000,008,704 | R--- | M] (A4Tech Co.,Ltd.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\Amfilter.sys -- (Amfilter)

DRV - [2006-06-18 22:51:32 | 000,043,520 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)

DRV - [2006-05-09 09:27:30 | 000,013,824 | R--- | M] (A4Tech Co.,Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Amps2prt.sys -- (Amps2prt)

DRV - [2005-08-08 13:44:04 | 000,006,640 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\MouseCap.sys -- (MouseCap)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1993962763-484763869-1801674531-1004\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Yahoo! Search

IE - HKU\S-1-5-21-1993962763-484763869-1801674531-1004\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7

IE - HKU\S-1-5-21-1993962763-484763869-1801674531-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com

IE - HKU\S-1-5-21-1993962763-484763869-1801674531-1004\..\SearchScopes,DefaultScope = {AFB3F1EB-9085-4314-BE35-EBEB2818A5B5}

IE - HKU\S-1-5-21-1993962763-484763869-1801674531-1004\..\SearchScopes\{AFB3F1EB-9085-4314-BE35-EBEB2818A5B5}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7RNWN

IE - HKU\S-1-5-21-1993962763-484763869-1801674531-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1993962763-484763869-1801674531-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0

FF - prefs.js..network.proxy.no_proxies_on: "*.local"

FF - prefs.js..network.proxy.type: 0

FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()

FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found

FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()

FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.69: C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll (RealNetworks, Inc.)

FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.69: C:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)

FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found

FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013-03-07 13:53:27 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013-03-06 11:14:32 | 000,000,000 | ---D | M]

[2010-09-24 08:00:37 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\user\Dane aplikacji\Mozilla\Extensions

[2013-03-08 14:50:28 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\x0qmy1ky.default\extensions

[2010-10-18 13:53:40 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\x0qmy1ky.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}

[2013-03-07 13:54:11 | 000,817,280 | ---- | M] () (No name found) -- C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\x0qmy1ky.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

[2010-09-24 08:17:45 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions

[2013-03-07 13:53:26 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll

[2012-06-28 16:42:00 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll

[2013-03-07 13:53:23 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml

[2013-03-07 13:53:23 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml

[2013-03-07 13:53:23 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml

[2013-03-07 13:53:23 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml

[2013-03-07 13:53:23 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml

[2013-03-07 13:53:23 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2008-04-15 13:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts

O1 - Hosts: 127.0.0.1 localhost

O2 - BHO: (Yahoo! Companion BHO) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_2_0.dll (Yahoo! Inc.)

O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)

O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)

O3 - HKLM\..\Toolbar: (&Google) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)

O3 - HKLM\..\Toolbar: (&Yahoo! Companion) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_2_0.dll (Yahoo! Inc.)

O3 - HKU\S-1-5-21-1993962763-484763869-1801674531-1004\..\Toolbar\WebBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)

O3 - HKU\S-1-5-21-1993962763-484763869-1801674531-1004\..\Toolbar\WebBrowser: (&Yahoo! Companion) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_2_0.dll (Yahoo! Inc.)

O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)

O4 - HKLM..\Run: [AVG_UI] C:\Program Files\AVG\AVG2013\avgui.exe (AVG Technologies CZ, s.r.o.)

O4 - HKLM..\Run: [Cm106Sound] RunDll32 cm106.cpl,CMICtrlWnd File not found

O4 - HKLM..\Run: [inCD] C:\Program Files\Nero\Nero 7\InCD\InCD.exe (Nero AG)

O4 - HKLM..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)

O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)

O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)

O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)

O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()

O4 - HKLM..\Run: [securDisc] C:\Program Files\Nero\Nero 7\InCD\NBHGui.exe (Nero AG)

O4 - HKLM..\Run: [WheelMouse] C:\Program Files\A4Tech\Mouse\Amoumain.exe (A4Tech Co., Ltd.)

O4 - HKU\S-1-5-21-1993962763-484763869-1801674531-1004..\Run: [KiesHelper] C:\Program Files\Samsung\Kies\KiesHelper.exe (Samsung)

O4 - HKU\S-1-5-21-1993962763-484763869-1801674531-1004..\Run: [KiesPDLR] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe ()

O4 - HKU\S-1-5-21-1993962763-484763869-1801674531-1004..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)

O4 - HKU\S-1-5-21-1993962763-484763869-1801674531-1004..\Run: [Pando Media Booster] C:\Program Files\Pando Networks\Media Booster\PMB.exe ()

O4 - HKU\S-1-5-21-1993962763-484763869-1801674531-1004..\Run: [screenSHU] C:\Program Files\screenSHU\screenSHU.exe ()

O4 - HKU\S-1-5-21-1993962763-484763869-1801674531-1004..\Run: [steam] D:\steam\Steam.exe (Valve Corporation)

O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\TP-LINK Wireless Configuration Utility.lnk = C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe ()

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1

O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-21-1993962763-484763869-1801674531-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1219661812109 (MUWebControl Class)

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)

O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1B62E037-43D1-47F8-B765-D51919BFBC2A}: NameServer = 194.204.152.34,194.204.159.1

O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{676BB714-E93C-4998-BDB6-F464430BA4B3}: NameServer = 194.204.152.34,194.204.159.1

O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{AEA8AD08-79BA-41AB-9217-8568B3215E66}: NameServer = 194.204.152.34,194.204.159.1

O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E7B08606-DB23-4864-B8E5-025DFC2B660E}: DhcpNameServer = 192.168.0.1

O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)

O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)

O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)

O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home

O24 - Desktop WallPaper: C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp

O24 - Desktop BackupWallPaper: C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2008-08-13 18:41:27 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]

O32 - AutoRun File - [2010-04-28 09:57:31 | 000,067,329 | ---- | M] () - C:\AutoMapaSetupLog.txt -- [ NTFS ]

O33 - MountPoints2\{0e381adc-0505-11df-a3ca-001a4dfa48a6}\Shell\AutoRun\command - "" = H:\dhrhyje.bat

O33 - MountPoints2\{0e381adc-0505-11df-a3ca-001a4dfa48a6}\Shell\open\Command - "" = H:\dhrhyje.bat

O33 - MountPoints2\{0e381add-0505-11df-a3ca-001a4dfa48a6}\Shell\AutoRun\command - "" = G:\dhrhyje.bat

O33 - MountPoints2\{0e381add-0505-11df-a3ca-001a4dfa48a6}\Shell\open\Command - "" = G:\dhrhyje.bat

O33 - MountPoints2\{4a0c767b-59c5-11e0-a40f-001a4dfa48a6}\Shell - "" = AutoRun

O33 - MountPoints2\{4a0c767b-59c5-11e0-a40f-001a4dfa48a6}\Shell\AutoRun\command - "" = G:\AutoRunCardDetector.exe

O34 - HKLM BootExecute: (autocheck autochk *)

O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG2013\avgrsx.exe /sync /restart)

O35 - HKLM\..comfile [open] -- "%1" %*

O35 - HKLM\..exefile [open] -- "%1" %*

O37 - HKLM\...com [@ = comfile] -- "%1" %*

O37 - HKLM\...exe [@ = exefile] -- "%1" %*

O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)

O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2013-03-08 14:54:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\AVG

[2013-03-07 13:53:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Mozilla

[2013-03-07 13:53:29 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service

[2013-03-06 22:10:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Dane aplikacji\AVG2013

[2013-03-06 22:09:35 | 000,000,000 | -H-D | C] -- C:\$AVG

[2013-03-06 22:09:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG2013

[2013-03-06 22:08:44 | 000,000,000 | ---D | C] -- C:\Program Files\AVG

[2013-03-06 22:08:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Razer

[2013-03-06 22:07:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Razer

[2013-03-06 22:07:41 | 000,000,000 | ---D | C] -- C:\Program Files\Razer

[2013-03-06 22:07:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Razer

[2013-03-06 22:04:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\MFAData

[2013-03-06 22:04:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\MFAData

[2013-03-06 22:04:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Avg2013

[2013-03-06 21:59:34 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET

[2013-03-06 20:31:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Dane aplikacji\LolClient

[2013-03-06 19:10:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\screenSHU

[2013-03-06 19:09:47 | 000,000,000 | ---D | C] -- C:\Program Files\screenSHU

[2013-03-06 18:13:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\NewFeature1

[2013-03-06 14:45:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Darksiders2

[2013-03-06 12:00:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Menu Start\Programy\Steam

[2013-03-06 11:23:40 | 000,029,984 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\uxtuneup.dll

[2013-03-06 11:19:45 | 000,032,032 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\TURegOpt.exe

[2013-03-06 11:19:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\TuneUp Utilities 2013

[2013-03-06 11:19:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Dane aplikacji\TuneUp Software

[2013-03-06 11:19:17 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2013

[2013-03-06 11:19:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\TuneUp Software

[2013-03-06 11:19:03 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}

[2013-03-06 11:19:03 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files

[2013-03-06 11:18:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Winamp

[2013-03-06 11:14:32 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp Detect

[2013-03-06 11:14:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Menu Start\Programy\Detektor Winampa

[2013-03-06 11:14:16 | 002,095,600 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxsfs.dll

[2013-03-06 11:14:16 | 000,571,888 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxdrv.dll

[2013-03-06 11:14:16 | 000,440,816 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxwave.dll

[2013-03-06 11:14:16 | 000,133,616 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxafs.dll

[2013-03-06 11:14:16 | 000,126,448 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsi64.exe

[2013-03-06 11:14:16 | 000,123,888 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpyi64.exe

[2013-03-06 11:14:16 | 000,100,848 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\vxblock.dll

[2013-03-06 11:14:16 | 000,072,176 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxhpinst.exe

[2013-03-06 11:14:16 | 000,068,592 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsa64.exe

[2013-03-06 11:14:16 | 000,068,080 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpya64.exe

[2013-03-06 11:14:16 | 000,059,888 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxwma.dll

[2013-03-06 11:14:16 | 000,009,200 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\cdralw2k.sys

[2013-03-06 11:14:16 | 000,009,072 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys

[2013-03-06 11:14:15 | 000,698,864 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\px.dll

[2013-03-06 11:14:15 | 000,219,632 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxmas.dll

[2013-03-06 11:14:11 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp

[2013-03-06 11:14:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Dane aplikacji\Winamp

[2013-03-06 11:14:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Dane aplikacji\OpenCandy

[2013-03-06 11:14:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\PMB Files

[2013-03-06 11:13:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\PMB Files

[2013-03-06 11:13:21 | 000,000,000 | ---D | C] -- C:\Program Files\Pando Networks

[2013-03-06 11:13:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\.swt

[2013-03-06 11:08:48 | 000,000,000 | ---D | C] -- C:\Winamp muzyka

[2013-03-06 11:00:09 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Steam

[2013-03-06 11:00:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Steam

[2013-03-06 10:53:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype

[2013-03-06 10:53:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Skype

[2013-03-06 10:53:35 | 000,000,000 | R--D | C] -- C:\Program Files\Skype

[2013-03-06 10:31:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Dane aplikacji\TP-LINK

[2013-03-06 10:31:11 | 000,405,582 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\jswscsup.dll

[2013-03-06 10:31:11 | 000,057,440 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\jswscimd.sys

[2013-03-06 10:31:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\TP-LINK

[2013-03-06 10:31:07 | 000,499,796 | ---- | C] (Atheros) -- C:\WINDOWS\System32\acs.exe

[2013-03-06 10:30:55 | 000,405,504 | ---- | C] (Atheros) -- C:\WINDOWS\System32\wcapi.dll

[2013-03-06 10:30:55 | 000,360,539 | ---- | C] (Atheros) -- C:\WINDOWS\System32\wcapiU.dll

[2013-03-06 10:30:55 | 000,311,390 | ---- | C] (Atheros) -- C:\WINDOWS\System32\athcfg20U.dll

[2013-03-06 10:30:55 | 000,254,022 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\wsfwDS.dll

[2013-03-06 10:30:55 | 000,249,924 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\wsimd.dll

[2013-03-06 10:30:55 | 000,237,568 | ---- | C] (Atheros) -- C:\WINDOWS\System32\athcfg20.dll

[2013-03-06 10:30:55 | 000,127,079 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\athcfg20resU.dll

[2013-03-06 10:30:55 | 000,127,053 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\athcfg20res.dll

[2013-03-06 10:30:55 | 000,082,017 | ---- | C] (Devicescape, Inc.) -- C:\WINDOWS\System32\dsaNac.dll

[2013-03-06 10:30:55 | 000,058,208 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\wsimd.sys

[2013-03-06 10:30:55 | 000,058,208 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\drivers\wsimd.sys

[2013-03-06 10:30:55 | 000,000,000 | ---D | C] -- C:\Program Files\TP-LINK

[2013-03-06 10:30:21 | 001,763,584 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\drivers\athuw.sys

[2013-03-06 10:30:21 | 001,763,584 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\athuw.sys

[2013-03-06 10:17:15 | 000,057,440 | ---- | C] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\drivers\jswscimd.sys

[2013-03-06 09:59:12 | 001,269,854 | ---- | C] (Devicescape) -- C:\WINDOWS\System32\dsa.dll

[2013-03-06 08:45:13 | 008,757,248 | R--- | C] (C-Media Corporation) -- C:\WINDOWS\System\CM106.cpl

[2013-03-06 08:45:13 | 000,294,912 | R--- | C] (C-Media) -- C:\WINDOWS\System32\CM106rm.exe

[2013-03-06 08:44:57 | 001,513,984 | R--- | C] (C-Media Electronics Inc) -- C:\WINDOWS\System32\drivers\CM106.sys

[2013-03-06 08:44:57 | 000,315,392 | R--- | C] (C-Media Electronics Inc.) -- C:\WINDOWS\System\fltr106.dll

[2013-03-06 08:44:50 | 000,307,200 | R--- | C] (C-Media Corporation) -- C:\WINDOWS\Cmi106Uninstall.exe

[2013-03-06 08:44:24 | 000,000,000 | ---D | C] -- C:\Program Files\Genesis HX77 Headset

[2013-03-06 08:44:04 | 000,060,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbaudio.sys

[2013-03-06 00:29:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\The Witcher

[2013-03-06 00:29:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Moje dokumenty\The Witcher

[2013-03-05 22:31:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Wiedźmin

[2013-03-05 21:34:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Ubisoft Game Launcher

[2013-03-05 21:34:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Moje dokumenty\Might & Magic Heroes VI

[2013-03-05 21:34:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Dane aplikacji\Might & Magic Heroes VI

[2013-03-05 21:24:32 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_7.dll

[2013-03-05 21:24:32 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_5.dll

[2013-03-05 21:24:30 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_7.dll

[2013-03-05 21:24:27 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_43.dll

[2013-03-05 21:24:23 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dcsx_43.dll

[2013-03-05 21:24:19 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx11_43.dll

[2013-03-05 21:24:18 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_43.dll

[2013-03-05 21:24:16 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_43.dll

[2013-03-05 21:24:12 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_6.dll

[2013-03-05 21:24:12 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_4.dll

[2013-03-05 21:24:11 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_6.dll

[2013-03-05 21:24:11 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_7.dll

[2013-03-05 21:24:08 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_5.dll

[2013-03-05 21:24:06 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_5.dll

[2013-03-05 21:24:05 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_42.dll

[2013-03-05 21:23:59 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dcsx_42.dll

[2013-03-05 21:23:54 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_42.dll

[2013-03-05 21:23:54 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx11_42.dll

[2013-03-05 21:23:52 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_42.dll

[2013-03-05 20:57:21 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\user\Dane aplikacji\SecuROM

[2013-03-05 20:56:39 | 000,000,000 | ---D | C] -- C:\Program Files\Ubisoft

[2013-03-05 20:18:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Pulpit\Trzeci.Wymiar-Cztery.Pory.Rapu

[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[16 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013-03-09 15:57:08 | 000,175,033 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml

[2013-03-09 15:56:45 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl

[2013-03-09 15:56:43 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat

[2013-03-08 14:54:06 | 000,000,732 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\AVG 2013.lnk

[2013-03-06 23:56:02 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job

[2013-03-06 22:23:13 | 000,000,986 | ---- | M] () -- C:\WINDOWS\System\Cm106.ini

[2013-03-06 22:07:52 | 000,001,869 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Razer Game Booster.lnk

[2013-03-06 22:05:54 | 000,566,094 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat

[2013-03-06 22:05:54 | 000,502,916 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat

[2013-03-06 22:05:54 | 000,110,410 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat

[2013-03-06 22:05:54 | 000,088,440 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat

[2013-03-06 19:09:49 | 000,000,694 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\screenSHU.lnk

[2013-03-06 18:19:24 | 000,000,714 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Graj w League of Legends.lnk

[2013-03-06 14:31:00 | 040,902,592 | ---- | M] () -- C:\Documents and Settings\user\ggsetup.exe

[2013-03-06 14:31:00 | 000,000,044 | ---- | M] () -- C:\Documents and Settings\user\ggdownload.ini

[2013-03-06 12:00:24 | 000,000,201 | ---- | M] () -- C:\Documents and Settings\user\Pulpit\Darksiders II.url

[2013-03-06 11:19:44 | 000,001,761 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\TuneUp Konserwacja 1 kliknięciem.lnk

[2013-03-06 11:19:44 | 000,001,747 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\TuneUp Utilities 2013.lnk

[2013-03-06 11:18:19 | 000,000,654 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk

[2013-03-06 11:00:11 | 000,000,457 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Steam.lnk

[2013-03-06 10:31:11 | 000,001,928 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\TP-LINK Wireless Configuration Utility.lnk

[2013-03-06 10:31:11 | 000,001,902 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\TP-LINK Wireless Configuration Utility.lnk

[2013-03-06 08:45:13 | 000,000,125 | ---- | M] () -- C:\WINDOWS\Cm106.ini.cfl

[2013-03-06 00:28:47 | 000,278,984 | ---- | M] () -- C:\WINDOWS\System32\drivers\atksgt.sys

[2013-03-06 00:28:46 | 000,025,416 | ---- | M] () -- C:\WINDOWS\System32\drivers\lirsgt.sys

[2013-03-05 21:24:40 | 000,001,767 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Might & Magic Heroes VI.lnk

[2013-03-05 19:46:15 | 000,131,584 | ---- | M] () -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[16 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013-03-08 16:57:27 | 000,076,598 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\WPFFontCache_v0400-S-1-5-21-1993962763-484763869-1801674531-1004-0.dat

[2013-03-07 07:55:00 | 000,076,598 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\WPFFontCache_v0400-System.dat

[2013-03-06 22:10:03 | 000,000,732 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\AVG 2013.lnk

[2013-03-06 22:07:51 | 000,001,869 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Razer Game Booster.lnk

[2013-03-06 19:09:49 | 000,000,700 | ---- | C] () -- C:\Documents and Settings\user\Menu Start\Programy\screenSHU.lnk

[2013-03-06 19:09:49 | 000,000,694 | ---- | C] () -- C:\Documents and Settings\user\Pulpit\screenSHU.lnk

[2013-03-06 18:19:24 | 000,000,714 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Graj w League of Legends.lnk

[2013-03-06 14:31:00 | 000,000,044 | ---- | C] () -- C:\Documents and Settings\user\ggdownload.ini

[2013-03-06 12:21:24 | 040,902,592 | ---- | C] () -- C:\Documents and Settings\user\ggsetup.exe

[2013-03-06 12:00:24 | 000,000,201 | ---- | C] () -- C:\Documents and Settings\user\Pulpit\Darksiders II.url

[2013-03-06 11:19:44 | 000,001,761 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\TuneUp Konserwacja 1 kliknięciem.lnk

[2013-03-06 11:19:44 | 000,001,747 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\TuneUp Utilities 2013.lnk

[2013-03-06 11:19:43 | 000,001,753 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\TuneUp Utilities 2013.lnk

[2013-03-06 11:18:19 | 000,000,654 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk

[2013-03-06 11:00:11 | 000,000,457 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Steam.lnk

[2013-03-06 10:31:11 | 000,035,967 | ---- | C] () -- C:\WINDOWS\System32\jswscimdp.cat

[2013-03-06 10:31:11 | 000,035,538 | ---- | C] () -- C:\WINDOWS\System32\jswscimd.cat

[2013-03-06 10:31:11 | 000,005,529 | ---- | C] () -- C:\WINDOWS\System32\jswscimdp.inf

[2013-03-06 10:31:11 | 000,002,231 | ---- | C] () -- C:\WINDOWS\System32\jswscimd.inf

[2013-03-06 10:31:11 | 000,001,928 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\TP-LINK Wireless Configuration Utility.lnk

[2013-03-06 10:31:11 | 000,001,902 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\TP-LINK Wireless Configuration Utility.lnk

[2013-03-06 10:31:07 | 000,262,216 | ---- | C] () -- C:\WINDOWS\System32\IPTests.dll

[2013-03-06 10:30:55 | 000,422,000 | ---- | C] () -- C:\WINDOWS\System32\wgapi.dll

[2013-03-06 10:30:55 | 000,042,067 | ---- | C] () -- C:\WINDOWS\System32\wsimdp.cat

[2013-03-06 10:30:55 | 000,042,052 | ---- | C] () -- C:\WINDOWS\System32\wsimd.cat

[2013-03-06 10:30:55 | 000,005,363 | ---- | C] () -- C:\WINDOWS\System32\wsimdp.inf

[2013-03-06 10:30:55 | 000,002,179 | ---- | C] () -- C:\WINDOWS\System32\wsimd.inf

[2013-03-06 10:30:21 | 000,045,171 | ---- | C] () -- C:\WINDOWS\System32\netathuw.inf

[2013-03-06 10:30:21 | 000,008,818 | ---- | C] () -- C:\WINDOWS\System32\netathuw.cat

[2013-03-06 08:45:13 | 000,491,520 | R--- | C] () -- C:\WINDOWS\System\cmau106.dll

[2013-03-06 08:45:13 | 000,221,184 | R--- | C] () -- C:\WINDOWS\System\cm106eye.exe

[2013-03-06 08:45:13 | 000,000,986 | ---- | C] () -- C:\WINDOWS\System\Cm106.ini

[2013-03-06 08:45:13 | 000,000,125 | ---- | C] () -- C:\WINDOWS\Cm106.ini.cfl

[2013-03-06 08:44:51 | 000,001,249 | R--- | C] () -- C:\WINDOWS\Cm106.ini.cfg

[2013-03-06 08:44:41 | 000,000,814 | R--- | C] () -- C:\WINDOWS\cm106.ini

[2013-03-06 00:28:47 | 000,278,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys

[2013-03-06 00:28:46 | 000,025,416 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys

[2013-03-05 21:24:40 | 000,001,767 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Might & Magic Heroes VI.lnk

[2011-10-12 08:19:14 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat

[2011-03-29 07:54:06 | 000,453,032 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat

[2011-03-29 06:24:42 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll

[2011-03-29 06:24:42 | 000,036,640 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys

[2011-03-29 06:24:25 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\user\Dane aplikacji\$_hpcst$.hpc

[2008-08-25 19:44:44 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\fusioncache.dat

[2008-08-25 14:22:03 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\user\Dane aplikacji\PnkBstrK.sys

[2008-08-15 07:28:41 | 000,131,584 | ---- | C] () -- C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

========== ZeroAccess Check ==========

[2008-08-25 19:43:16 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

"" = %SystemRoot%\system32\shdocvw.dll -- [2008-06-26 09:14:35 | 001,499,136 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]

"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009-02-09 11:53:44 | 000,473,600 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008-04-15 13:00:00 | 000,273,920 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Both

========== LOP Check ==========

[2013-03-06 22:10:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG2013

[2013-03-06 11:19:03 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files

[2010-10-15 07:31:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Electronic Arts

[2008-08-25 09:34:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\LightScribe

[2013-03-09 16:02:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\MFAData

[2013-03-06 21:21:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PMB Files

[2013-03-06 22:07:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Razer

[2009-11-26 11:45:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\rkfree

[2011-03-29 06:25:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Samsung

[2013-03-06 10:30:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TP-LINK

[2013-03-06 11:19:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TuneUp Software

[2008-12-08 18:47:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}

[2013-03-06 11:30:22 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}

[2013-03-08 14:54:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Dane aplikacji\TuneUp Software

[2008-08-29 16:39:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\ACD Systems

[2008-08-13 18:11:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Ace

[2013-03-06 22:10:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\AVG2013

[2009-05-04 20:09:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\BSplayer Pro

[2009-07-27 17:09:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Gadu-Gadu

[2013-03-06 20:31:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\LolClient

[2013-03-05 21:34:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Might & Magic Heroes VI

[2013-03-06 11:14:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\OpenCandy

[2011-03-29 06:23:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Samsung

[2008-08-26 09:26:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\Tlen.pl

[2013-03-06 10:32:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\TP-LINK

[2013-03-06 22:10:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dane aplikacji\TuneUp Software

========== Purity Check ==========

========== Alternate Data Streams ==========

@Alternate Data Stream - 3020 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\rkfree:cfg

< End of report >

Ktoś pomoże? :x

0

Share this post


Link to post
Share on other sites

Na FA logami OTL zajmował się kiedyś Sevard, ale od pewnego czasu poleca się poszukać pomocy na profesjonalnych forach zajmujących się tą tematyką.

geekstogo

bleeping computer

Jeśli komunikacja w języku angielskim jest dla Ciebie problemem, możesz poszukać pomocy na fixitpc.pl.

0

Share this post


Link to post
Share on other sites

W logach widzę parę niepokojących rzeczy (widać ślady po malware i brakujące pliki w systemie), ale jeśli o to chodzi, to lepiej udaj się na jedno z for poleconych wyżej.

Z innych rzeczy - dziennik aplikacji najpewniej nie działa (ostatni wpis z 2010 roku, co jest dziwne). W dzienniku System widać błędy dotyczące dostępu do kluczy rejestru oraz błąd przy przywracaniu systemu. Tak na szybko - możesz podać S.M.A.R.T. swoich dysków (patrz przypięty temat w Sprzęcie)?

0

Share this post


Link to post
Share on other sites

Prawdopodobnie dysk z wadliwym firmware.

0

Share this post


Link to post
Share on other sites

To raczej nie jest wina firmware'u - nie te objawy. Martwi wysoka wartość atrybutu BC Command Timeout. Sprawdź dokładnie kable łączące dysk z płytą główną oraz z zasilaczem. Jaki masz zasilacz?

Frimware dysku i tak trzeba zaktualizować, bo błąd w firmware jest dosyć poważny (odsyłam tu).

0

Share this post


Link to post
Share on other sites

To raczej nie jest wina firmware'u - nie te objawy. Martwi wysoka wartość atrybutu BC Command Timeout. Sprawdź dokładnie kable łączące dysk z płytą główną oraz z zasilaczem. Jaki masz zasilacz?

Frimware dysku i tak trzeba zaktualizować, bo błąd w firmware jest dosyć poważny (odsyłam tu).

Frimware zaktualizowany, pomogło przez jakieś dwa dni lecz problem nadal występuje. Mój zasilacz:Fell III-500ATX. (total output 500w). Wszystkie kable moim zdaniem są prawidłowo podpięte, zdarza się że raz komputer działa prawidłowo a po restarcie pojawia się ten sam błąd.

0

Share this post


Link to post
Share on other sites

Pierwsza ważna rzecz. Dla dobra komputera wymień zasilacz ;)

0

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now

  • Recently Browsing   0 members

    No registered users viewing this page.