Problem z ad.yieldmanager.com i zamulaniem

**Posty:** 1 · przez **BROWAReq** 17 Maj 2013, 21:02

Witam
Po włączeniu firefoxa i od czasu do czasu podczas otwierania nowych stron otwiera się ww. stronka i masa reklam itp. Czasami firefox też uruchamia się długo i zamula otwieranie nowych okien
wklejam logi:

Kod: Zaznacz wszystko: GMER 2.1.19163 - http://www.gmer.net Rootkit scan 2013-05-17 20:36:17 Windows 5.1.2600 Dodatek Service Pack 3 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 ST3250410AS rev.3.AAC 232,88GB Running: phphmsre.exe; Driver: C:\DOCUME~1\BROWAR\USTAWI~1\Temp\pwtdypog.sys ---- System - GMER 2.1 ---- SSDT \SystemRoot\System32\Drivers\aswSP.SYS ZwClose [0xB55BE6B8] SSDT \SystemRoot\System32\Drivers\aswSP.SYS ZwCreateKey [0xB55BE574] SSDT \SystemRoot\System32\Drivers\aswSP.SYS ZwDeleteValueKey [0xB55BEA52] SSDT \SystemRoot\System32\Drivers\aswSP.SYS ZwDuplicateObject [0xB55BE14C] SSDT sptd.sys ZwEnumerateKey [0xB9F03FFE] SSDT sptd.sys ZwEnumerateValueKey [0xB9F0438C] SSDT \SystemRoot\System32\Drivers\aswSP.SYS ZwOpenKey [0xB55BE64E] SSDT \SystemRoot\System32\Drivers\aswSP.SYS ZwOpenProcess [0xB55BE08C] SSDT \SystemRoot\System32\Drivers\aswSP.SYS ZwOpenThread [0xB55BE0F0] SSDT sptd.sys ZwQueryKey [0xB9F04464] SSDT \SystemRoot\System32\Drivers\aswSP.SYS ZwQueryValueKey [0xB55BE76E] SSDT \SystemRoot\System32\Drivers\aswSP.SYS ZwRestoreKey [0xB55BE72E] SSDT \SystemRoot\System32\Drivers\aswSP.SYS ZwSetValueKey [0xB55BE8AE] INT 0x62 ? 8A5D2CC8 INT 0x63 ? 8A2EFF00 INT 0x82 ? 8A5D2CC8 INT 0x83 ? 8A2EFF00 INT 0xA4 ? 8A2EFF00 INT 0xB4 ? 8A2EFF00 ---- Kernel code sections - GMER 2.1 ---- .text ntkrnlpa.exe!ZwCallbackReturn + 2C40 80504528 2 Bytes [B8, E6] .text ntkrnlpa.exe!ZwCallbackReturn + 2CE0 805045C8 4 Bytes JMP 9268B55B .text ntkrnlpa.exe!ZwCallbackReturn + 2CEC 805045D4 2 Bytes [4C, E1] .text ntkrnlpa.exe!ZwCallbackReturn + 2FB8 805048A0 4 Bytes [AE, E8, 5B, B5] .text sptd.sys B9E95000 4 Bytes [A6, CB, 6E, 80] .text sptd.sys B9E95005 27 Bytes [79, 6E, 80, 30, 78, 6E, 80, ...] .text sptd.sys B9E95024 4 Bytes [74, 7F, E8, B9] .text sptd.sys B9E9502C 20 Bytes [DC, 1B, 5E, 80, 16, 8F, 5E, ...] .text sptd.sys B9E95041 224 Bytes [F2, 4E, 80, 90, F2, 4E, 80, ...] .text ... .sptd2 C:\WINDOWS\system32\drivers\sptd.sys entry point in ".sptd2" section [0xB9F8CD38] ? C:\WINDOWS\system32\drivers\sptd.sys Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ? System nie może odnaleźć określonej ścieżki. ! .text C:\WINDOWS\system32\DRIVERS\nv4_mini.sys section is writeable [0xB9579380, 0x2F2FC7, 0xE8000020] ---- User code sections - GMER 2.1 ---- .text C:\Program Files\Mozilla Firefox\plugin-container.exe[3824] USER32.dll!DefWindowProcA + 11A 7E37C298 7 Bytes JMP 1093EA03 C:\Program Files\Mozilla Firefox\xul.dll .text C:\Program Files\Mozilla Firefox\plugin-container.exe[3824] USER32.dll!SetWindowLongA + 19 7E37C2B6 7 Bytes JMP 1093E992 C:\Program Files\Mozilla Firefox\xul.dll .text C:\Program Files\Mozilla Firefox\plugin-container.exe[3824] USER32.dll!GetWindowInfo 7E37C49C 5 Bytes JMP 10775238 C:\Program Files\Mozilla Firefox\xul.dll .text C:\Program Files\Mozilla Firefox\plugin-container.exe[3824] USER32.dll!GetMenuContextHelpId + 1A 7E3B5319 7 Bytes JMP 10775811 C:\Program Files\Mozilla Firefox\xul.dll .text C:\Program Files\Mozilla Firefox\firefox.exe[3912] ntdll.dll!NtQueryAttributesFile 7C90D70E 5 Bytes JMP 1009DE20 c:\progra~1\simple~1\sprote~1.dll .text C:\Program Files\Mozilla Firefox\firefox.exe[3912] ntdll.dll!NtQueryFullAttributesFile 7C90D7AE 5 Bytes JMP 1009DFA0 c:\progra~1\simple~1\sprote~1.dll .text C:\Program Files\Mozilla Firefox\firefox.exe[3912] ntdll.dll!NtQueryInformationFile 7C90D7CE 5 Bytes JMP 1009DD90 c:\progra~1\simple~1\sprote~1.dll .text C:\Program Files\Mozilla Firefox\firefox.exe[3912] ntdll.dll!NtQueryValueKey 7C90D96E 5 Bytes JMP 10033120 c:\progra~1\simple~1\sprote~1.dll .text C:\Program Files\Mozilla Firefox\firefox.exe[3912] ntdll.dll!NtSetInformationFile 7C90DC5E 2 Bytes JMP 1009DCC0 c:\progra~1\simple~1\sprote~1.dll .text C:\Program Files\Mozilla Firefox\firefox.exe[3912] ntdll.dll!NtSetInformationFile + 3 7C90DC61 2 Bytes [79, 93] {JNS 0xffffff95} .text C:\Program Files\Mozilla Firefox\firefox.exe[3912] ntdll.dll!NtSetValueKey 7C90DDCE 5 Bytes JMP 100331B0 c:\progra~1\simple~1\sprote~1.dll .text C:\Program Files\Mozilla Firefox\firefox.exe[3912] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 01EC9CF0 C:\Program Files\Mozilla Firefox\xul.dll .text C:\Program Files\Mozilla Firefox\firefox.exe[3912] kernel32.dll!CreateFileA 7C801A28 5 Bytes JMP 1009D940 c:\progra~1\simple~1\sprote~1.dll .text C:\Program Files\Mozilla Firefox\firefox.exe[3912] kernel32.dll!lstrlenW + 43 7C809AEC 7 Bytes JMP 0247542B C:\Program Files\Mozilla Firefox\xul.dll .text C:\Program Files\Mozilla Firefox\firefox.exe[3912] kernel32.dll!CloseHandle 7C809BE7 5 Bytes JMP 1009DBC0 c:\progra~1\simple~1\sprote~1.dll .text C:\Program Files\Mozilla Firefox\firefox.exe[3912] kernel32.dll!MapViewOfFileEx + 6A 7C80B9A0 7 Bytes JMP 02475408 C:\Program Files\Mozilla Firefox\xul.dll .text C:\Program Files\Mozilla Firefox\firefox.exe[3912] kernel32.dll!CreateFileW 7C810CD9 5 Bytes JMP 1009DA80 c:\progra~1\simple~1\sprote~1.dll .text C:\Program Files\Mozilla Firefox\firefox.exe[3912] kernel32.dll!ValidateLocale + B1C8 7C8449C8 7 Bytes JMP 01ED369E C:\Program Files\Mozilla Firefox\xul.dll .text C:\Program Files\Mozilla Firefox\firefox.exe[3912] GDI32.dll!SetDIBitsToDevice + 20A 77F19E14 7 Bytes JMP 02475389 C:\Program Files\Mozilla Firefox\xul.dll ---- User IAT/EAT - GMER 2.1 ---- IAT C:\WINDOWS\system32\services.exe[1056] @ C:\WINDOWS\system32\services.exe [ADVAPI32.dll!CreateProcessAsUserW] 003D0002 IAT C:\WINDOWS\system32\services.exe[1056] @ C:\WINDOWS\system32\services.exe [KERNEL32.dll!CreateProcessW] 003D0000 ---- Devices - GMER 2.1 ---- Device \FileSystem\Ntfs \Ntfs 8A5D01F8 AttachedDevice \FileSystem\Ntfs \Ntfs HFXP2.SYS AttachedDevice \FileSystem\Ntfs \Ntfs aswMon2.SYS AttachedDevice \Driver\Tcpip \Device\Ip aswTdi.SYS Device \Driver\usbuhci \Device\USBPDO-0 8A20A1F8 Device \Driver\usbuhci \Device\USBPDO-1 8A20A1F8 Device \Driver\usbuhci \Device\USBPDO-2 8A20A1F8 Device \Driver\usbuhci \Device\USBPDO-3 8A20A1F8 Device \Driver\usbehci \Device\USBPDO-4 8A1F31F8 AttachedDevice \Driver\Tcpip \Device\Tcp aswTdi.SYS Device \Driver\Cdrom \Device\CdRom0 8A185380 Device \FileSystem\Rdbss \Device\FsWrap 89A941EC Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 8A182438 Device \Driver\atapi \Device\Ide\IdePort0 8A182438 Device \Driver\atapi \Device\Ide\IdePort1 8A182438 Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-e 8A182438 Device \Driver\Cdrom \Device\CdRom1 8A185380 Device \Driver\Cdrom \Device\CdRom2 8A185380 Device \Driver\NetBT \Device\NetBt_Wins_Export 8A1B6430 Device \Driver\NetBT \Device\NetBT_Tcpip_{BB7AB19E-D501-444F-BAFF-2B5541A25614} 8A1B6430 Device \FileSystem\Srv \Device\LanmanServer 89A9D32C AttachedDevice \Driver\Tcpip \Device\Udp aswTdi.SYS Device \Driver\NetBT \Device\NetBT_Tcpip_{07E56D9D-9462-4CDE-928B-3913BC872ECA} 8A1B6430 AttachedDevice \Driver\Tcpip \Device\RawIp aswTdi.SYS Device \Driver\usbuhci \Device\USBFDO-0 8A20A1F8 Device \Driver\usbuhci \Device\USBFDO-1 8A20A1F8 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver 89A411F8 Device \Driver\usbuhci \Device\USBFDO-2 8A20A1F8 Device \FileSystem\MRxSmb \Device\LanmanRedirector 89A411F8 Device \Driver\usbuhci \Device\USBFDO-3 8A20A1F8 Device \FileSystem\Npfs \Device\NamedPipe 89AB1124 Device \Driver\usbehci \Device\USBFDO-4 8A1F31F8 Device \FileSystem\Msfs \Device\Mailslot 89AE0E64 Device \Driver\d344prt \Device\Scsi\d344prt1 8A11B008 Device \Driver\d344prt \Device\Scsi\d344prt1Port2Path0Target0Lun0 8A11B008 Device \Driver\imagedrv \Device\Scsi\imagedrv1 8A5D11F8 Device \Driver\d344prt \Device\Scsi\d344prt1Port2Path0Target1Lun0 8A11B008 Device \FileSystem\Fs_Rec \FileSystem\ExFatRecognizer 8A1CC614 Device \FileSystem\Fs_Rec \FileSystem\UdfsCdRomRecognizer 8A1CC614 Device \FileSystem\Fs_Rec \FileSystem\CdfsRecognizer 8A1CC614 Device \FileSystem\Fs_Rec \FileSystem\FatCdRomRecognizer 8A1CC614 Device \FileSystem\Fs_Rec \FileSystem\FatDiskRecognizer 8A1CC614 Device \FileSystem\Fs_Rec \FileSystem\UdfsDiskRecognizer 8A1CC614 Device \FileSystem\Cdfs \Cdfs 89ADB430 Device \FileSystem\Cdfs \Cdfs 89E9BAE4 ---- Trace I/O - GMER 2.1 ---- Trace ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll >>UNKNOWN [0x8a182438]<< 8a182438 Trace 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8a523ab8] 8a523ab8 Trace 3 CLASSPNP.SYS[ba0e8fd7] -> nt!IofCallDriver -> \Device\00000080[0x8a559f18] 8a559f18 Trace 5 ACPI.sys[b9e11620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-3[0x8a526940] 8a526940 Trace \Driver\atapi[0x8a5443f8] -> IRP_MJ_CREATE -> 0x8a182438 8a182438 ---- Modules - GMER 2.1 ---- Module _________ (FILE NOT FOUND) B9D9D000-B9DB5000 (98304 bytes) ---- Registry - GMER 2.1 ---- Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\001bdc00108b Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\001bdc00108b@0017838c2c03 0x7F 0x0B 0xE3 0xF9 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s1 -60697362 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s2 -1842341675 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@h0 1 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0x6C 0x3B 0xCE 0x85 ... Reg HKLM\SYSTEM\ControlSet002\Services\BTHPORT\Parameters\Keys\001bdc00108b (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\Services\BTHPORT\Parameters\Keys\001bdc00108b@0017838c2c03 0x7F 0x0B 0xE3 0xF9 ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0 Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0x14 0xF6 0x3A 0xB8 ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0 C:\Program Files\Alcohol Soft\Alcohol 120\ Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@a0 0x20 0x01 0x00 0x00 ... Reg HKLM\SYSTEM\ControlSet003\Services\BTHPORT\Parameters\Keys\001bdc00108b (not active ControlSet) Reg HKLM\SYSTEM\ControlSet003\Services\BTHPORT\Parameters\Keys\001bdc00108b@0017838c2c03 0x7F 0x0B 0xE3 0xF9 ... Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0 Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0x6C 0x3B 0xCE 0x85 ... Reg HKLM\SOFTWARE\Classes\CLSID\{558EC983-BEDB-9168-B2DE-31DBF0EE543E}\Docobject@ 0 Reg HKLM\SOFTWARE\Classes\CLSID\{558EC983-BEDB-9168-B2DE-31DBF0EE543E}\LocalServer32@ C:\WINDOWS\system32\winfxdocobj.exe -application Reg HKLM\SOFTWARE\Classes\CLSID\{558EC983-BEDB-9168-B2DE-31DBF0EE543E}\ProgId@ bootstrap.application.1 Reg HKLM\SOFTWARE\Classes\CLSID\{558EC983-BEDB-9168-B2DE-31DBF0EE543E}\VersionIndependentProgID@ bootstrap.application ---- EOF - GMER 2.1 ----

Kod: Zaznacz wszystko: OTL logfile created on: 2013-05-17 20:40:50 - Run 2 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\BROWAR\Moje dokumenty\Pobieranie Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 0,91 Gb Available Physical Memory | 45,66% Memory free 3,85 Gb Paging File | 2,67 Gb Available in Paging File | 69,35% Paging File free Paging file location(s): C:\pagefile.sys 0 0 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 38,30 Gb Total Space | 13,61 Gb Free Space | 35,53% Space Free | Partition Type: NTFS Drive E: | 91,70 Gb Total Space | 47,99 Gb Free Space | 52,34% Space Free | Partition Type: NTFS Drive F: | 102,88 Gb Total Space | 25,15 Gb Free Space | 24,45% Space Free | Partition Type: NTFS Computer Name: SZYSZA | User Name: BROWAR | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2013-05-17 18:22:06 | 000,377,856 | ---- | M] () -- C:\Documents and Settings\BROWAR\Moje dokumenty\Pobieranie\phphmsre.exe PRC - [2013-05-17 14:24:36 | 000,920,472 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2013-05-17 12:47:38 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\BROWAR\Moje dokumenty\Pobieranie\OTL.exe PRC - [2013-04-04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe PRC - [2013-04-04 14:50:32 | 000,532,040 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe PRC - [2013-04-04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe PRC - [2013-04-04 05:32:53 | 000,181,664 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe PRC - [2011-12-04 22:51:37 | 013,374,048 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe PRC - [2011-09-02 09:14:56 | 003,343,360 | ---- | M] () -- C:\Program Files\GXStandard16-in-1\GXStandard16in1.exe PRC - [2011-03-25 21:22:06 | 000,223,088 | ---- | M] () -- C:\Program Files\Motorola\MotoHelper\MotoHelperService.exe PRC - [2011-03-25 21:21:30 | 000,673,648 | ---- | M] () -- C:\Program Files\Motorola\MotoHelper\MotoHelperAgent.exe PRC - [2010-07-30 11:40:54 | 000,090,112 | ---- | M] (Clarus, Inc.) -- C:\Program Files\Clarus\Samsung SecretZone\SZAssistSVC.exe PRC - [2009-11-25 01:51:40 | 000,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe PRC - [2009-11-25 01:51:35 | 000,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe PRC - [2009-11-25 01:51:21 | 000,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe PRC - [2009-11-25 01:48:48 | 000,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe PRC - [2009-11-25 01:43:56 | 000,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe PRC - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2007-09-07 20:16:50 | 000,132,392 | ---- | M] (Wacom Technology, Corp.) -- C:\WINDOWS\system32\WTablet\Pen_TabletUser.exe PRC - [2007-09-07 20:16:18 | 001,373,480 | ---- | M] (Wacom Technology, Corp.) -- C:\WINDOWS\system32\Pen_Tablet.exe PRC - [2007-07-24 11:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) -- C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2013-05-17 18:22:06 | 000,377,856 | ---- | M] () -- C:\Documents and Settings\BROWAR\Moje dokumenty\Pobieranie\phphmsre.exe MOD - [2013-05-17 14:24:36 | 003,128,728 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll MOD - [2013-04-11 17:49:07 | 016,032,648 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_169.dll MOD - [2013-01-24 13:20:16 | 001,032,704 | ---- | M] () -- c:\Program Files\SimpleSpeedy\sprotector.dll MOD - [2011-09-02 09:14:56 | 003,343,360 | ---- | M] () -- C:\Program Files\GXStandard16-in-1\GXStandard16in1.exe MOD - [2011-08-10 13:43:19 | 000,118,272 | ---- | M] () -- C:\Program Files\GXStandard16-in-1\dll\DLL_Wheel4D.dll MOD - [2011-07-04 19:46:20 | 000,217,696 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\gglog.dll MOD - [2011-07-04 19:46:18 | 000,123,488 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\ggipcradioproxy.dll MOD - [2011-07-04 19:46:16 | 000,017,504 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\ggipc.dll MOD - [2011-07-04 19:46:12 | 000,027,744 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\ggcrypto.dll MOD - [2011-07-04 19:46:10 | 000,356,960 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\ggcommon.dll MOD - [2011-06-24 17:31:26 | 000,891,392 | ---- | M] () -- C:\Program Files\GXStandard16-in-1\Data\GxStandard16in1\Forms\KeyboardLEDForm\KeyboardLEDForm.dll MOD - [2011-06-22 10:54:22 | 002,328,064 | ---- | M] () -- C:\Program Files\GXStandard16-in-1\Data\GxStandard16in1\Forms\ScreenCapture\ScreenCapture.dll MOD - [2011-04-16 05:04:30 | 014,749,696 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtWebKit4.dll MOD - [2011-04-12 15:14:04 | 000,063,488 | ---- | M] () -- C:\Program Files\GXStandard16-in-1\dll\DLL_AnalyzeGesturesInRight.dll MOD - [2011-04-06 16:06:05 | 000,067,072 | ---- | M] () -- C:\Program Files\GXStandard16-in-1\dll\DLL_PenSuit.dll MOD - [2011-03-25 21:22:06 | 000,223,088 | ---- | M] () -- C:\Program Files\Motorola\MotoHelper\MotoHelperService.exe MOD - [2011-03-25 21:21:30 | 000,673,648 | ---- | M] () -- C:\Program Files\Motorola\MotoHelper\MotoHelperAgent.exe MOD - [2011-03-21 19:33:17 | 000,999,424 | ---- | M] () -- C:\Program Files\GXStandard16-in-1\Data\GxStandard16in1\Forms\TrayIconWebAdvertisement\TrayIconWebAdvertisement.dll MOD - [2011-02-17 11:00:28 | 001,781,760 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtScript4.dll MOD - [2011-02-17 11:00:28 | 000,393,216 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtXml4.dll MOD - [2011-02-17 11:00:28 | 000,327,680 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtSvg4.dll MOD - [2011-02-17 11:00:26 | 001,044,480 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtNetwork4.dll MOD - [2011-02-17 11:00:24 | 009,097,216 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtGui4.dll MOD - [2011-02-17 11:00:24 | 002,560,000 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\QtCore4.dll MOD - [2011-02-17 10:59:40 | 000,311,296 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\imageformats\qtiff4.dll MOD - [2011-02-17 10:59:40 | 000,274,432 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\imageformats\qmng4.dll MOD - [2011-02-17 10:59:40 | 000,143,360 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\imageformats\qjpeg4.dll MOD - [2011-02-17 10:59:40 | 000,027,648 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\imageformats\qgif4.dll MOD - [2011-02-17 10:59:40 | 000,018,944 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\imageformats\qsvg4.dll MOD - [2011-02-17 10:59:32 | 000,059,904 | ---- | M] () -- C:\Program Files\Gadu-Gadu 10\zlib1.dll MOD - [2011-01-09 20:45:55 | 000,088,064 | ---- | M] () -- C:\Program Files\GXStandard16-in-1\dll\DLL_MouseDeviceManager.dll MOD - [2010-12-02 17:56:52 | 000,815,104 | ---- | M] () -- C:\Program Files\GXStandard16-in-1\Data\GxStandard16in1\Forms\OSD_Text\OSD_Text.dll MOD - [2010-11-01 20:16:00 | 000,062,976 | ---- | M] () -- C:\Program Files\GXStandard16-in-1\dll\DLL_AnalyzeGesturesInOne.dll MOD - [2010-09-20 14:18:57 | 000,085,504 | ---- | M] () -- C:\Program Files\GXStandard16-in-1\dll\DLL_ZoomControl.dll MOD - [2010-09-20 14:18:54 | 000,054,272 | ---- | M] () -- C:\Program Files\GXStandard16-in-1\dll\DLL_ScrollbarControl.dll MOD - [2008-08-01 16:58:14 | 000,622,693 | ---- | M] () -- C:\WINDOWS\system32\BSShell.dll MOD - [2008-08-01 16:55:40 | 000,118,880 | ---- | M] () -- C:\WINDOWS\system32\BsMobileSDK.dll MOD - [2008-08-01 16:54:12 | 000,102,499 | ---- | M] () -- C:\WINDOWS\system32\Bs2Res.dll MOD - [2008-08-01 16:46:30 | 017,907,824 | ---- | M] () -- C:\WINDOWS\system32\BsLangInDepRes.dll MOD - [2008-04-14 22:50:38 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll MOD - [2001-10-11 19:34:50 | 000,077,824 | ---- | M] () -- C:\Program Files\Adobe\Acrobat 5.0 CE\Distillr\adistres.dll [color=#E56717]========== Services (SafeList) ==========[/color] SRV - [2013-05-17 14:24:36 | 000,117,144 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2013-04-04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService) SRV - [2013-04-04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler) SRV - [2013-04-04 05:32:53 | 000,181,664 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService) SRV - [2011-03-31 16:08:14 | 000,080,896 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe -- (PassThru Service) SRV - [2011-03-25 21:22:06 | 000,223,088 | ---- | M] () [Auto | Running] -- C:\Program Files\Motorola\MotoHelper\MotoHelperService.exe -- (MotoHelper) SRV - [2010-07-30 11:40:54 | 000,090,112 | ---- | M] (Clarus, Inc.) [Auto | Running] -- C:\Program Files\Clarus\Samsung SecretZone\SZAssistSVC.exe -- (SZASSIST) SRV - [2009-11-25 01:51:35 | 000,138,680 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus) SRV - [2009-11-25 01:51:21 | 000,254,040 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner) SRV - [2009-11-25 01:48:48 | 000,352,920 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner) SRV - [2009-11-25 01:43:56 | 000,018,752 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv) SRV - [2008-08-04 19:04:40 | 000,772,096 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe -- (BlueSoleilCS) SRV - [2008-08-01 16:56:42 | 000,069,735 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe -- (BsHelpCS) SRV - [2008-08-01 16:55:28 | 000,143,467 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe -- (BsMobileCS) SRV - [2008-04-26 18:49:34 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [Disabled | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service) SRV - [2007-09-07 20:16:18 | 001,373,480 | ---- | M] (Wacom Technology, Corp.) [Auto | Running] -- C:\WINDOWS\system32\Pen_Tablet.exe -- (TabletServicePen) SRV - [2007-07-24 11:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) [Auto | Running] -- C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2) SRV - [2007-01-04 19:48:52 | 000,112,152 | R--- | M] (InterVideo) [Disabled | Stopped] -- C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe -- (IviRegMgr) SRV - [2006-10-23 14:50:35 | 000,046,640 | R--- | M] (AOL LLC) [On_Demand | Stopped] -- C:\Program Files\Common Files\aol\acs\AOLacsd.exe -- (AOL ACS) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\Drivers\vaxscsi.sys -- (vaxscsi) DRV - File not found [Kernel | On_Demand | Unknown] -- C:\DOCUME~1\BROWAR\USTAWI~1\Temp\pwtdypog.sys -- (pwtdypog) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\Drivers\PROCEXP151.SYS -- (PROCEXP151) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP) DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump) DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc) DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt) DRV - File not found [Kernel | System | Stopped] -- -- (Changer) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\ComboFix\catchme.sys -- (catchme) DRV - File not found [Kernel | Boot | Stopped] -- System32\Drivers\BTHidMgr.sys -- (BTHidMgr) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\vbtenum.sys -- (BTHidEnum) DRV - [2013-04-04 14:50:32 | 000,022,856 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector) DRV - [2012-01-05 01:01:54 | 000,032,768 | ---- | M] (AnchorFree Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\taphss.sys -- (taphss) DRV - [2011-04-09 21:50:50 | 000,025,512 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggsemc.sys -- (ggsemc) DRV - [2011-04-09 21:50:50 | 000,013,224 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggflt.sys -- (ggflt) DRV - [2011-04-04 15:55:38 | 000,020,480 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motccgp.sys -- (motccgp) DRV - [2011-03-31 15:53:22 | 000,024,064 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motmodem.sys -- (motmodem) DRV - [2010-12-18 13:03:56 | 000,021,696 | ---- | M] (Almico Software) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan) DRV - [2010-11-08 20:31:17 | 000,436,792 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd) DRV - [2010-08-31 13:43:36 | 000,195,968 | ---- | M] (Jungo) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\windrvr6.sys -- (WinDriver6) DRV - [2010-06-22 18:01:50 | 000,021,248 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\htcnprot.sys -- (htcnprot) DRV - [2010-06-14 14:14:48 | 000,064,512 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Program Files\Clarus\Samsung SecretZone\mvd21.sys -- (mvd21) DRV - [2010-04-01 15:31:50 | 000,023,424 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Motousbnet.sys -- (Motousbnet) DRV - [2010-03-18 16:24:34 | 000,012,288 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Program Files\Clarus\Samsung SecretZone\mdf15.sys -- (mdf15) DRV - [2010-01-27 04:09:02 | 000,050,704 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\npf.sys -- (npf) DRV - [2010-01-25 20:56:44 | 000,009,472 | ---- | M] (Motorola Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motusbdevice.sys -- (motusbdevice) DRV - [2009-11-25 01:50:59 | 000,094,160 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2) DRV - [2009-11-25 01:50:12 | 000,114,768 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP) DRV - [2009-11-25 01:50:00 | 000,020,560 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk) DRV - [2009-11-25 01:49:07 | 000,048,560 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi) DRV - [2009-11-25 01:48:57 | 000,023,120 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr) DRV - [2009-11-25 01:47:54 | 000,027,408 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4) DRV - [2009-07-10 14:01:06 | 000,025,856 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motoandroid.sys -- (motandroidusb) DRV - [2009-06-10 00:49:32 | 000,024,576 | ---- | M] (HTC, Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ANDROIDUSB.sys -- (HTCAND32) DRV - [2009-03-07 23:17:38 | 000,015,600 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\gdrv.sys -- (gdrv) DRV - [2009-02-28 15:35:40 | 000,028,672 | ---- | M] (http://libusb-win32.sourceforge.net) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\libusb0.sys -- (libusb0) DRV - [2009-01-29 18:18:00 | 000,008,320 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motccgpfl.sys -- (motccgpfl) DRV - [2009-01-29 18:11:20 | 000,006,016 | ---- | M] (Motorola Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motfilt.sys -- (BTCFilterService) DRV - [2009-01-24 01:36:20 | 000,103,424 | ---- | M] (QUALCOMM Incorporated) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\qcserxp.sys -- (qcserxp) DRV - [2008-07-31 21:45:42 | 000,020,616 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\BtHidBus.sys -- (BtHidBus) DRV - [2008-07-06 21:52:15 | 000,235,712 | ---- | M] (TrueCrypt Foundation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\truecrypt.sys -- (truecrypt) DRV - [2008-07-02 15:59:06 | 000,027,528 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\BlueletSCOAudio.sys -- (BlueletSCOAudio) DRV - [2008-07-02 15:59:02 | 000,033,800 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\blueletaudio.sys -- (BlueletAudio) DRV - [2008-07-02 15:58:48 | 000,026,248 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\IvtBtBus.sys -- (IvtBtBUs) DRV - [2008-07-02 15:58:36 | 000,029,960 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VcommMgr.sys -- (VcommMgr) DRV - [2008-07-02 15:58:28 | 000,038,920 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btcusb.sys -- (Btcsrusb) DRV - [2008-01-21 20:28:12 | 000,014,600 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btnetdrv.sys -- (BT) DRV - [2008-01-21 20:27:50 | 000,014,856 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\VComm.sys -- (VComm) DRV - [2007-11-02 16:51:30 | 000,006,400 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motswch.sys -- (MotoSwitchService) DRV - [2007-08-07 11:40:38 | 000,098,944 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp) DRV - [2007-07-18 13:26:04 | 004,547,584 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) DRV - [2007-04-26 12:03:12 | 010,343,168 | ---- | M] (Sonix Co. Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\snp325.sys -- (SNP325) DRV - [2007-04-17 20:09:28 | 000,011,032 | ---- | M] (InterVideo) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\regi.sys -- (regi) DRV - [2007-02-16 21:12:36 | 000,011,312 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\wacommousefilter.sys -- (wacommousefilter) DRV - [2007-02-16 20:30:12 | 000,012,848 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\wacomvhid.sys -- (wacomvhid) DRV - [2007-02-16 02:11:28 | 000,011,440 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WacomVKHid.sys -- (WacomVKHid) DRV - [2007-01-23 00:26:30 | 000,017,264 | ---- | M] (FSPro Labs) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\hfxp2.sys -- (HFXP2) DRV - [2005-08-15 13:08:26 | 000,127,488 | ---- | M] (Ahead Software AG) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\imagesrv.sys -- (imagesrv) DRV - [2005-08-15 13:08:26 | 000,005,888 | ---- | M] (Ahead Software AG) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\imagedrv.sys -- (imagedrv) DRV - [2003-12-27 21:42:12 | 000,137,216 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\d344bus.sys -- (d344bus) DRV - [2003-12-27 03:38:10 | 000,005,248 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\d344prt.sys -- (d344prt) DRV - [2003-01-10 23:13:04 | 000,033,588 | R--- | M] (America Online, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\wanatw4.sys -- (wanatw) DRV - [2002-09-16 18:14:32 | 000,004,228 | ---- | M] (PowerQuest Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\PQNTDRV.sys -- (PQNTDrv) DRV - [2000-09-19 11:16:56 | 000,003,584 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\DLPORTIO.SYS -- (DLPortIO) DRV - [1996-04-03 21:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://websearch.searchmainia.info/?unqvl=15 IE - HKLM\..\SearchScopes,DefaultScope = IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKLM\..\SearchScopes\{739CEF56-E9C4-4D3C-83AE-9BE206AA52C7}: "URL" = http://startsear.ch/?aff=1&src=sp&cf=f234f4c0-7a98-11e1-8af0-00038a000015&q={searchTerms} IE - HKLM\..\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://websearch.searchmainia.info/?unqvl=15&l=1&q={searchTerms} IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = IE - HKU\S-1-5-21-1229272821-261478967-725345543-1006\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://websearch.searchmainia.info/?unqvl=15 IE - HKU\S-1-5-21-1229272821-261478967-725345543-1006\..\SearchScopes,DefaultScope = {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} IE - HKU\S-1-5-21-1229272821-261478967-725345543-1006\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKU\S-1-5-21-1229272821-261478967-725345543-1006\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKU\S-1-5-21-1229272821-261478967-725345543-1006\..\SearchScopes\{739CEF56-E9C4-4D3C-83AE-9BE206AA52C7}: "URL" = http://startsear.ch/?aff=1&src=sp&cf=f234f4c0-7a98-11e1-8af0-00038a000015&q={searchTerms} IE - HKU\S-1-5-21-1229272821-261478967-725345543-1006\..\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://websearch.searchmainia.info/?unqvl=15&l=1&q={searchTerms} IE - HKU\S-1-5-21-1229272821-261478967-725345543-1006\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1229272821-261478967-725345543-1006\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = socks=211.139.93.67:1080 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultenginename: "WebSearch" FF - prefs.js..browser.search.defaultenginename,S: S", "WebSearch" FF - prefs.js..browser.search.defaulturl: "http://websearch.searchmainia.info/?unqvl=15&l=1&q=" FF - prefs.js..browser.search.order.1: "WebSearch" FF - prefs.js..browser.search.order.1,S: S", "WebSearch" FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=937811&ilc=12" FF - prefs.js..browser.search.selectedEngine: "Google" FF - prefs.js..browser.search.selectedEngine,S: S", "WebSearch" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "https://www.google.pl/" FF - prefs.js..extensions.enabledAddons: 2020Player_IKEA%402020Technologies.com:5.0.94.0 FF - prefs.js..extensions.enabledAddons: uploader%40adblockfilters.mozdev.org:2.1 FF - prefs.js..extensions.enabledAddons: %7Bb0e1b4a6-2c6f-4e99-94f2-8e625d7ae255%7D:3.0.18 FF - prefs.js..extensions.enabledAddons: optout%40google.com:1.5 FF - prefs.js..extensions.enabledAddons: %7Be4a8a97b-f2ed-450b-b12d-ee082ba24781%7D:1.8 FF - prefs.js..extensions.enabledAddons: adblockpopups%40jessehakanen.net:0.7 FF - prefs.js..extensions.enabledAddons: %7B23fcfd51-4958-4f00-80a3-ae97e717ed8b%7D:2.1.2.172 FF - prefs.js..extensions.enabledAddons: SQLiteManager%40mrinalkant.blogspot.com:0.8.0 FF - prefs.js..extensions.enabledAddons: %7B0b457cAA-602d-484a-8fe7-c1d894a011ba%7D:0.98.34 FF - prefs.js..extensions.enabledAddons: exif_viewer%40mozilla.doslash.org:2.00 FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:21.0 FF - prefs.js..keyword.URL: "http://websearch.searchmainia.info/?unqvl=15&l=1&q=" FF - prefs.js..sweetim.toolbar.previous.browser.search.defaultenginename: "" FF - prefs.js..sweetim.toolbar.previous.browser.search.selectedEngine: "" FF - prefs.js..browser.startup.homepage: "" FF - prefs.js..sweetim.toolbar.previous.keyword.URL: "" FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_169.dll () FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX,Inc.) FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll File not found FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Plus Web Player Plug-In,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC) FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.) FF - HKLM\Software\MozillaPlugins\@ganymede/GanymedeNetPlugin,version=1.0: C:\Program Files\Ganymede\Plugins\npganymedenet.dll ( ) FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.1864: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.2.1924: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.857: C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2013-04-07 13:01:10 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013-05-17 14:24:38 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013-05-17 14:24:27 | 000,000,000 | ---D | M] [2011-12-18 16:12:53 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\BROWAR\Dane aplikacji\Mozilla\Extensions [2009-12-14 23:54:11 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\BROWAR\Dane aplikacji\Mozilla\Extensions\mozswing@mozswing.org [2013-05-15 23:23:57 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\BROWAR\Dane aplikacji\Mozilla\Firefox\Profiles\3bb2gj4t.default\extensions [2013-05-08 07:35:51 | 000,000,000 | ---D | M] (FireShot) -- C:\Documents and Settings\BROWAR\Dane aplikacji\Mozilla\Firefox\Profiles\3bb2gj4t.default\extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba} [2012-09-06 20:32:22 | 000,000,000 | ---D | M] (20-20 3D Viewer - IKEA) -- C:\Documents and Settings\BROWAR\Dane aplikacji\Mozilla\Firefox\Profiles\3bb2gj4t.default\extensions\2020Player_IKEA@2020Technologies.com [2012-11-25 22:01:47 | 000,000,000 | ---D | M] (Download and Sa) -- C:\Documents and Settings\BROWAR\Dane aplikacji\Mozilla\Firefox\Profiles\3bb2gj4t.default\extensions\50b27c4591b43@50b27c4591b7c.com [2012-11-25 22:00:37 | 000,005,549 | ---- | M] () (No name found) -- C:\Documents and Settings\BROWAR\Dane aplikacji\Mozilla\Firefox\Profiles\3bb2gj4t.default\extensions\50b27c0c34f93@50b27c0c34fcc.com.xpi [2013-03-03 12:24:51 | 000,134,804 | ---- | M] () (No name found) -- C:\Documents and Settings\BROWAR\Dane aplikacji\Mozilla\Firefox\Profiles\3bb2gj4t.default\extensions\adblockpopups@jessehakanen.net.xpi [2013-05-15 23:23:57 | 000,230,013 | ---- | M] () (No name found) -- C:\Documents and Settings\BROWAR\Dane aplikacji\Mozilla\Firefox\Profiles\3bb2gj4t.default\extensions\exif_viewer@mozilla.doslash.org.xpi [2013-02-23 14:10:49 | 000,008,363 | ---- | M] () (No name found) -- C:\Documents and Settings\BROWAR\Dane aplikacji\Mozilla\Firefox\Profiles\3bb2gj4t.default\extensions\optout@google.com.xpi [2013-04-27 08:41:49 | 000,248,978 | ---- | M] () (No name found) -- C:\Documents and Settings\BROWAR\Dane aplikacji\Mozilla\Firefox\Profiles\3bb2gj4t.default\extensions\SQLiteManager@mrinalkant.blogspot.com.xpi [2012-06-22 16:34:00 | 000,075,438 | ---- | M] () (No name found) -- C:\Documents and Settings\BROWAR\Dane aplikacji\Mozilla\Firefox\Profiles\3bb2gj4t.default\extensions\uploader@adblockfilters.mozdev.org.xpi [2013-02-06 15:38:28 | 000,240,732 | ---- | M] () (No name found) -- C:\Documents and Settings\BROWAR\Dane aplikacji\Mozilla\Firefox\Profiles\3bb2gj4t.default\extensions\{b0e1b4a6-2c6f-4e99-94f2-8e625d7ae255}.xpi [2013-05-08 20:06:55 | 000,870,680 | ---- | M] () (No name found) -- C:\Documents and Settings\BROWAR\Dane aplikacji\Mozilla\Firefox\Profiles\3bb2gj4t.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-03-01 15:34:14 | 000,269,007 | ---- | M] () (No name found) -- C:\Documents and Settings\BROWAR\Dane aplikacji\Mozilla\Firefox\Profiles\3bb2gj4t.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2013-05-17 14:24:38 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2013-05-17 14:24:24 | 000,000,000 | ---D | M] (BlueSoleil Extension) -- C:\Program Files\Mozilla Firefox\extensions\{231D7D17-4F1B-4933-AB61-E502DB82FD11} [2013-05-17 14:24:37 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions [2013-05-17 14:24:37 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2013-04-07 13:01:10 | 000,000,000 | ---D | M] (No name found) -- C:\PROGRAM FILES\DIVX\DIVX PLUS WEB PLAYER\FIREFOX\DIVXHTML5 [2008-01-08 02:45:16 | 000,054,600 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\mozilla firefox\plugins\npbittorrent.dll [2007-02-04 23:02:56 | 001,642,496 | ---- | M] (LizardTech) -- C:\Program Files\mozilla firefox\plugins\npdjvu.dll [2009-11-16 17:23:30 | 000,120,296 | ---- | M] ( ) -- C:\Program Files\mozilla firefox\plugins\npganymedenet.dll O1 HOSTS File: ([2011-12-17 23:29:52 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC) O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Download and Sa Class) - {836176D9-0F3F-934E-F580-978968FC3FC7} - C:\Documents and Settings\All Users\Dane aplikacji\Download and Sa\50b27c4591cd2.ocx File not found O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (no name) - AutorunsDisabled - No CLSID value found. O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe () O4 - HKLM..\Run: [Resume copy] C:\WINDOWS\COPYFSTQ.EXE () O4 - HKU\S-1-5-21-1229272821-261478967-725345543-1006..\Run: [Gadu-Gadu 10] C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.) O4 - HKU\S-1-5-21-1229272821-261478967-725345543-1006..\Run: [OscarEditor] C:\Program Files\GXStandard16-in-1\GXStandard16in1.exe () O4 - HKU\.DEFAULT..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 File not found O4 - HKU\S-1-5-18..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 File not found O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1229272821-261478967-725345543-1006\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-21-1229272821-261478967-725345543-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\S-1-5-21-1229272821-261478967-725345543-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-21-1229272821-261478967-725345543-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O8 - Extra context menu item: Locate Spot on Map by GPS - C:\Program Files\Opanda\IExif 2.3\IExifMap.htm () O8 - Extra context menu item: View Exif/GPS/IPTC with IExif - C:\Program Files\Opanda\IExif 2.3\IExifCom.htm () O8 - Extra context menu item: Wyslij przez wiadomosc(&M)... - C:\Program Files\IVT Corporation\BlueSoleil\TransSend\IE\tssms.htm () O8 - Extra context menu item: Wyślij przez Bluetooth - C:\Program Files\IVT Corporation\BlueSoleil\TransSend\IE\tsinfo.htm () O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited) O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.) O15 - HKU\S-1-5-21-1229272821-261478967-725345543-1006\..Trusted Domains: aol.com ([objects] * is out of zone range - 5) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab (Java Plug-in 10.21.2) O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07) O16 - DPF: {CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab (Java Plug-in 1.6.0_32) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab (Java Plug-in 10.21.2) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 193.239.224.58 193.239.224.5 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{07E56D9D-9462-4CDE-928B-3913BC872ECA}: DhcpNameServer = 193.239.224.58 193.239.224.5 O18 - Protocol\Handler\AutorunsDisabled - No CLSID value found O18 - Protocol\Handler\AutorunsDisabled\skype4com - No CLSID value found O20 - AppInit_DLLs: (c:\progra~1\simple~1\sprote~1.dll) - c:\Program Files\SimpleSpeedy\sprotector.dll () O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O20 - Winlogon\Notify\WgaLogon: DllName - (WgaLogon.dll) - File not found O24 - Desktop Components:0 () - O24 - Desktop WallPaper: C:\Documents and Settings\BROWAR\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\BROWAR\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2011-09-25 11:55:49 | 000,000,000 | ---D | M] - C:\Autodesk -- [ NTFS ] O32 - AutoRun File - [2008-02-15 15:22:40 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2012-07-07 14:19:24 | 000,292,247 | ---- | M] () - C:\AutoMapaSetupLog.txt -- [ NTFS ] O32 - AutoRun File - [2012-12-15 15:09:14 | 000,000,000 | ---D | M] - E:\Automapa Win Mobile -- [ NTFS ] O32 - AutoRun File - [2012-12-06 17:37:58 | 000,000,042 | -H-- | M] () - E:\AutoMapa.info -- [ NTFS ] O32 - AutoRun File - [2012-11-11 04:34:06 | 000,000,042 | ---- | M] () - E:\AutoMapa.info.bak -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O34 - HKLM BootExecute: (MACHINE BootExecut) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = ComFile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2013-05-17 18:16:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\StarApp [2013-05-17 18:16:24 | 000,000,000 | ---D | C] -- C:\Program Files\SimpleSpeedy [2013-05-17 18:16:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\InstallMate [2013-05-17 14:24:23 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2013-05-09 09:31:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\NCH Software Suite [2013-05-01 11:47:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\BROWAR\Dane aplikacji\DivX [2013-04-29 14:21:45 | 000,000,000 | ---D | C] -- C:\Program Files\Przyspiesz Komputer [2013-04-26 18:39:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\BROWAR\Dane aplikacji\VDownloader [2013-04-26 18:39:10 | 000,000,000 | ---D | C] -- C:\Program Files\WinPcap [2013-04-26 18:39:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\BROWAR\Ustawienia lokalne\Dane aplikacji\VDownloader [2013-04-19 11:41:44 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe [2013-04-19 11:41:44 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe [2013-04-19 11:41:44 | 000,094,112 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll [2010-04-05 21:17:04 | 012,378,640 | ---- | C] (JonDos GmbH) -- C:\Documents and Settings\All Users\Dane aplikacji\JonDoFox.paf.exe [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2013-05-17 20:05:05 | 000,001,036 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2013-05-17 16:15:47 | 000,001,032 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2013-05-17 16:13:47 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2013-05-17 16:13:44 | 2145,898,496 | -HS- | M] () -- C:\hiberfil.sys [2013-05-17 12:23:18 | 000,000,790 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes Anti-Malware.lnk [2013-05-16 11:04:08 | 005,587,252 | ---- | M] () -- C:\Documents and Settings\BROWAR\Pulpit\DSC_4188.JPG [2013-05-16 11:03:44 | 004,924,108 | ---- | M] () -- C:\Documents and Settings\BROWAR\Pulpit\DSC_4187.JPG [2013-05-15 23:32:11 | 000,369,304 | ---- | M] () -- C:\Documents and Settings\BROWAR\Pulpit\84790265.jpg [2013-05-14 15:12:50 | 004,040,177 | ---- | M] () -- C:\Documents and Settings\BROWAR\Pulpit\DSC_4087.JPG [2013-05-14 12:46:58 | 004,296,152 | ---- | M] () -- C:\Documents and Settings\BROWAR\Pulpit\DSC_4073.JPG [2013-05-13 16:21:19 | 001,563,648 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2013-05-13 10:25:25 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2013-05-09 11:19:48 | 000,134,144 | ---- | M] () -- C:\Documents and Settings\BROWAR\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2013-05-09 11:16:50 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2013-05-09 09:51:07 | 000,003,224 | ---- | M] () -- C:\WINDOWS\VPlayer.INI [2013-05-09 09:51:07 | 000,000,049 | ---- | M] () -- C:\WINDOWS\VplayerINI.vpl [2013-05-09 09:39:20 | 000,000,155 | ---- | M] () -- C:\WINDOWS\winamp.ini [2013-05-09 09:32:01 | 000,000,296 | ---- | M] () -- C:\WINDOWS\tasks\ExpressBurnReminder.job [2013-05-06 14:02:34 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2013-04-29 14:56:48 | 000,000,282 | RHS- | M] () -- C:\boot.ini [2013-04-28 16:25:09 | 000,000,008 | ---- | M] () -- C:\WINDOWS\System32\nvModes.dat [2013-04-24 08:55:21 | 000,055,729 | ---- | M] () -- C:\Documents and Settings\BROWAR\Pulpit\dokument_zakupu_104257.pdf [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2013-05-17 12:23:18 | 000,000,790 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes Anti-Malware.lnk [2013-05-16 11:04:08 | 005,587,252 | ---- | C] () -- C:\Documents and Settings\BROWAR\Pulpit\DSC_4188.JPG [2013-05-16 11:03:44 | 004,924,108 | ---- | C] () -- C:\Documents and Settings\BROWAR\Pulpit\DSC_4187.JPG [2013-05-15 23:32:10 | 000,369,304 | ---- | C] () -- C:\Documents and Settings\BROWAR\Pulpit\84790265.jpg [2013-05-14 16:09:19 | 004,296,152 | ---- | C] () -- C:\Documents and Settings\BROWAR\Pulpit\DSC_4073.JPG [2013-05-14 16:09:17 | 004,040,177 | ---- | C] () -- C:\Documents and Settings\BROWAR\Pulpit\DSC_4087.JPG [2013-05-09 09:31:58 | 000,000,296 | ---- | C] () -- C:\WINDOWS\tasks\ExpressBurnReminder.job [2013-05-09 09:31:57 | 000,000,823 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Express Burn.lnk [2013-04-26 23:17:05 | 000,194,864 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat [2013-04-26 18:39:05 | 000,444,283 | ---- | C] () -- C:\Program Files\Common Files\WinPcapNmap.exe [2013-04-24 08:55:20 | 000,055,729 | ---- | C] () -- C:\Documents and Settings\BROWAR\Pulpit\dokument_zakupu_104257.pdf [2012-10-03 19:44:07 | 000,002,416 | ---- | C] () -- C:\WINDOWS\System32\ASOROSet.bin [2012-09-22 20:01:50 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BROWAR\DSC_0380.JPG [2012-09-22 20:00:59 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BROWAR\DSC_0328.jpg [2012-09-22 19:59:43 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BROWAR\DSC03495.jpg [2012-09-22 19:57:20 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BROWAR\DSC03532.JPG [2012-09-14 19:43:02 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BROWAR\DSC_0301.JPG [2012-09-14 19:42:55 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BROWAR\DSC_0300.JPG [2012-09-14 19:42:51 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BROWAR\DSC_0299.JPG [2012-09-08 18:21:36 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\BROWAR\DSC_0095.JPG [2012-05-28 22:17:34 | 000,736,294 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\WPFFontCache_v0400-S-1-5-21-1229272821-261478967-725345543-1006-0.dat [2012-05-27 22:49:31 | 000,350,086 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\WPFFontCache_v0400-System.dat [2012-05-27 11:22:39 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll [2012-05-26 11:20:59 | 000,001,778 | ---- | C] () -- C:\Documents and Settings\BROWAR\gdbtk.ini [2011-12-17 23:13:31 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe [2011-12-17 23:13:31 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe [2011-11-27 17:59:14 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ViewNX2.INI [2011-11-27 17:39:11 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\Font Book [2011-11-27 17:39:11 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\Folder Actions Handlers [2011-11-27 17:39:11 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\Folder Actions [2011-11-27 17:39:11 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\BROWAR\Dane aplikacji\Flanger [2011-11-27 17:39:11 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\BROWAR\Dane aplikacji\Flange Saw [2011-11-27 17:39:11 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\BROWAR\Dane aplikacji\Flags [2011-11-27 17:39:11 | 000,000,020 | -H-- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\PKP_DLev.DAT [2011-11-27 17:39:11 | 000,000,020 | -H-- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\PKP_DLet.DAT [2011-11-27 17:39:11 | 000,000,020 | -H-- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\PKP_DLes.DAT [2011-11-27 17:39:11 | 000,000,012 | RH-- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\Guitars [2011-11-27 17:39:11 | 000,000,012 | RH-- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\Guides [2011-11-27 17:39:11 | 000,000,012 | RH-- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\Grapher [2011-07-12 17:06:52 | 001,970,176 | ---- | C] () -- C:\WINDOWS\System32\d3dx9.dll [2011-05-27 17:55:57 | 000,000,455 | ---- | C] () -- C:\Documents and Settings\BROWAR\SciTE.session [2010-10-16 15:40:06 | 000,000,085 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\.zreglib [2010-07-31 09:17:44 | 000,002,828 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\KGyGaAvL.sys [2010-07-31 09:17:44 | 000,000,088 | RHS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\3FDCD07718.sys [2010-01-25 23:45:31 | 000,000,114 | ---- | C] () -- C:\Documents and Settings\BROWAR\Dane aplikacji\AVSDVDPlayer.m3u [2009-12-01 00:22:57 | 000,134,144 | ---- | C] () -- C:\Documents and Settings\BROWAR\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2009-11-29 17:02:08 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\BROWAR\Dane aplikacji\$_hpcst$.hpc [2008-04-05 11:22:08 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\ezsid.dat [color=#E56717]========== ZeroAccess Check ==========[/color] [2008-02-15 21:08:14 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shdocvw.dll -- [2008-04-14 22:50:48 | 001,499,136 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009-02-09 12:53:44 | 000,473,600 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008-04-14 22:50:58 | 000,273,920 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [color=#E56717]========== LOP Check ==========[/color] [2011-09-25 12:36:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Autodesk [2009-12-04 22:14:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Bluetooth [2008-05-03 19:09:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\BVRP Software [2012-09-12 20:23:03 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonBJ [2011-11-27 17:39:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\EnterNHelp [2012-05-30 18:14:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Freemake [2010-06-19 14:15:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2013-05-17 18:38:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\InstallMate [2011-10-25 14:02:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla [2011-04-26 22:27:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\NCH Swift Sound [2011-11-27 20:49:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Nikon [2012-06-23 15:32:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2011-10-25 14:03:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\RDRM [2013-05-17 18:16:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\StarApp [2012-09-26 21:38:42 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Dane aplikacji\System Restore [2011-04-24 18:28:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TrackMania [2009-02-14 18:54:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ubisoft [2011-11-27 17:39:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ultima_T15 [2012-10-20 11:29:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\YouTube Downloader [2013-02-20 21:19:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\YTD Video Downloader [2009-03-12 10:12:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{00D89592-F643-4D8D-8F0F-AFAE0F14D4C3} [2012-05-27 22:43:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BROWAR\Dane aplikacji\Atmel [2011-09-25 12:36:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BROWAR\Dane aplikacji\Autodesk [2012-12-26 14:29:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BROWAR\Dane aplikacji\BitTorrent [2010-04-25 19:19:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BROWAR\Dane aplikacji\e-Deklaracje.A1909296681C7ACEFE45687D3A64758C8659BF46.1 [2012-09-12 20:39:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BROWAR\Dane aplikacji\FireShot [2013-04-06 11:46:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BROWAR\Dane aplikacji\Gadu-Gadu 10 [2012-05-13 23:01:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BROWAR\Dane aplikacji\GanymedeNet [2012-08-22 22:49:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BROWAR\Dane aplikacji\GG Tools [2011-07-21 20:04:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BROWAR\Dane aplikacji\HTC [2011-04-19 22:01:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BROWAR\Dane aplikacji\HTC.388BC06ACDAB6261375BCE37FBA2E023C0D7EE34.1 [2009-12-28 17:43:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BROWAR\Dane aplikacji\HTML Executable [2010-06-20 11:06:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BROWAR\Dane aplikacji\ipla [2009-12-28 18:12:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BROWAR\Dane aplikacji\LEAPS [2010-03-31 17:22:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BROWAR\Dane aplikacji\LimeWire [2011-04-26 22:27:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BROWAR\Dane aplikacji\NCH Swift Sound [2011-11-27 17:54:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BROWAR\Dane aplikacji\Nikon [2011-12-24 23:34:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BROWAR\Dane aplikacji\OpenFM [2012-07-07 13:17:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BROWAR\Dane aplikacji\Patcher [2009-12-28 18:09:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BROWAR\Dane aplikacji\Pegasys Inc [2010-12-31 16:15:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BROWAR\Dane aplikacji\Stereoscopic Player [2012-10-10 23:02:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BROWAR\Dane aplikacji\systweak [2013-05-13 15:36:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BROWAR\Dane aplikacji\uTorrent [2013-04-26 18:40:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BROWAR\Dane aplikacji\VDownloader [2012-05-30 23:50:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BROWAR\Dane aplikacji\VisualAssist [2012-07-30 19:32:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BROWAR\Dane aplikacji\wtxpcom [2011-12-27 10:57:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\BROWAR\Dane aplikacji\YouTube Downloader [2009-12-28 18:05:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Reszta Świata\Dane aplikacji\BitTorrent [2009-03-22 13:49:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Reszta Świata\Dane aplikacji\Disney Interactive Studios [2009-04-01 17:42:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Reszta Świata\Dane aplikacji\Leadertech [2009-02-15 08:43:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Reszta Świata\Dane aplikacji\Ubisoft [color=#E56717]========== Purity Check ==========[/color] < End of report >

Kod: Zaznacz wszystko: OTL Extras logfile created on: 2013-05-17 20:40:50 - Run 2 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\BROWAR\Moje dokumenty\Pobieranie Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 0,91 Gb Available Physical Memory | 45,66% Memory free 3,85 Gb Paging File | 2,67 Gb Available in Paging File | 69,35% Paging File free Paging file location(s): C:\pagefile.sys 0 0 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 38,30 Gb Total Space | 13,61 Gb Free Space | 35,53% Space Free | Partition Type: NTFS Drive E: | 91,70 Gb Total Space | 47,99 Gb Free Space | 52,34% Space Free | Partition Type: NTFS Drive F: | 102,88 Gb Total Space | 25,15 Gb Free Space | 24,45% Space Free | Partition Type: NTFS Computer Name: SZYSZA | User Name: BROWAR | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* [HKEY_USERS\S-1-5-21-1229272821-261478967-725345543-1006\SOFTWARE\Classes\<extension>] .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* exefile [open] -- "%1" %* piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [ChomikBox.Upload] -- "C:\Program Files\ChomikBox\\ChomikBox.exe" -u"%1" ( ) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\Winamp.exe" /BOOKMARK "%1" (Nullsoft) Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\Winamp.exe" /ADD "%1" (Nullsoft) Directory [Winamp.Play] -- "C:\Program Files\Winamp\Winamp.exe" "%1" (Nullsoft) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 4 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List] "26675:TCP" = 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service "139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004 "445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005 "137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001 "138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002 "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DoNotAllowExceptions" = 0 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008 "19365:TCP" = 19365:TCP:*:Enabled:BitComet 19365 TCP "19365:UDP" = 19365:UDP:*:Enabled:BitComet 19365 UDP "26675:TCP" = 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service "139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004 "445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005 "137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001 "138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002 "80:TCP" = 80:TCP:*:Enabled:Tor [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation) "%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation) "C:\Program Files\Microsoft ActiveSync\rapimgr.exe" = C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager -- (Microsoft Corporation) "C:\Program Files\Microsoft ActiveSync\wcescomm.exe" = C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager -- (Microsoft Corporation) "C:\Program Files\Microsoft ActiveSync\WCESMgr.exe" = C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application -- (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation) "%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation) "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" = C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation) "C:\Program Files\Microsoft Office\Office12\GROOVE.EXE" = C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove -- (Microsoft Corporation) "C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" = C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation) "C:\Program Files\BitTorrent\bittorrent.exe" = C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent -- (BitTorrent, Inc.) "C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype "C:\Program Files\Bonjour\mDNSResponder.exe" = C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour -- (Apple Inc.) "C:\Program Files\Gadu-Gadu\gg.exe" = C:\Program Files\Gadu-Gadu\gg.exe:*:Enabled:Gadu-Gadu - program glowny -- (Gadu-Gadu Sp. z oo) "C:\Documents and Settings\Reszta Świata\Games\Tom Clancy's H.A.W.X\HAWX.exe" = C:\Documents and Settings\Reszta Świata\Games\Tom Clancy's H.A.W.X\HAWX.exe:*:Enabled:Tom_Clancy's_H.A.W.X_1 "C:\Documents and Settings\Reszta Świata\Games\Tom Clancy's H.A.W.X\HAWX_dx10.exe" = C:\Documents and Settings\Reszta Świata\Games\Tom Clancy's H.A.W.X\HAWX_dx10.exe:*:Enabled:Tom_Clancy's_H.A.W.X_2 "C:\Program Files\Microsoft ActiveSync\rapimgr.exe" = C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager -- (Microsoft Corporation) "C:\Program Files\Microsoft ActiveSync\wcescomm.exe" = C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager -- (Microsoft Corporation) "C:\Program Files\Microsoft ActiveSync\WCESMgr.exe" = C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application -- (Microsoft Corporation) "C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe" = C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe:*:Enabled:BlueSoleil -- () "C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe" = C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe:*:Enabled:BlueSoleilCS -- () "C:\Program Files\LimeWire\LimeWire.exe" = C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire "C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.) "C:\Program Files\Ares\Ares.exe" = C:\Program Files\Ares\Ares.exe:*:Enabled:Ares p2p for windows -- (Ares Development Group) "C:\Program Files\VDOWNLOADER\VDownloader.exe" = C:\Program Files\VDOWNLOADER\VDownloader.exe:*:Enabled:VDownloader -- (Vitzo) "C:\Program Files\Gadu-Gadu 10\gg.exe" = C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10 -- (GG Network S.A.) "C:\Program Files\Corel\DVD9\WinDVD.exe" = C:\Program Files\Corel\DVD9\WinDVD.exe:*:Enabled:WinDVD -- (Corel Corporation) "C:\Program Files\VideoLAN\VLC\vlc.exe" = C:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player -- () "F:\Gry -cos tam\TmNationsForever\TmForever.exe" = F:\Gry -cos tam\TmNationsForever\TmForever.exe:*:Enabled:TmForever -- () "C:\Program Files\Java\jre6\bin\java.exe" = C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.) "C:\Program Files\Java\jre6\bin\javaw.exe" = C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.) "C:\Program Files\Common Files\aol\acs\AOLDial.exe" = C:\Program Files\Common Files\aol\acs\AOLDial.exe:*:Enabled:AOL Connectivity Service Dialer -- (AOL LLC) "C:\Program Files\Common Files\aol\acs\AOLacsd.exe" = C:\Program Files\Common Files\aol\acs\AOLacsd.exe:*:Enabled:AOL Connectivity Service -- (AOL LLC) "C:\Program Files\Common Files\aol\1306672145\ee\aolsoftware.exe" = C:\Program Files\Common Files\aol\1306672145\ee\aolsoftware.exe:*:Enabled:AOL Shared Components -- (AOL Inc.) "C:\Program Files\AOL 9.5\waol.exe" = C:\Program Files\AOL 9.5\waol.exe:*:Enabled:AOL -- (AOL Inc.) "C:\Program Files\Common Files\aol\TopSpeed\3.0\aoltpsd3.exe" = C:\Program Files\Common Files\aol\TopSpeed\3.0\aoltpsd3.exe:*:Enabled:AOL TopSpeed -- (AOL LLC) "C:\Program Files\Common Files\aol\Loader\aolload.exe" = C:\Program Files\Common Files\aol\Loader\aolload.exe:*:Enabled:AOL Loader -- (AOL LLC) "C:\Program Files\Common Files\aol\System Information\sinf.exe" = C:\Program Files\Common Files\aol\System Information\sinf.exe:*:Enabled:AOL System Information -- (AOL LLC) "C:\Program Files\Google\Google Earth\plugin\geplugin.exe" = C:\Program Files\Google\Google Earth\plugin\geplugin.exe:*:Enabled:Google Earth -- (Google) "E:\GRY\FIFA 12\Game\fifa.exe" = E:\GRY\FIFA 12\Game\fifa.exe:*:Enabled:FIFA 12 -- (Electronic Arts) "E:\Atmel Studio\atmelstudio.exe" = E:\Atmel Studio\atmelstudio.exe:*:Enabled:Atmel Studio Application -- (Atmel) "C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation) "C:\WINDOWS\system32\rundll32.exe" = C:\WINDOWS\system32\rundll32.exe:*:Enabled:Uruchamia plik DLL jako aplikację -- (Microsoft Corporation) "C:\WINDOWS\system32\msiexec.exe" = C:\WINDOWS\system32\msiexec.exe:*:Enabled:UpdateManagerSetup -- (Microsoft Corporation) "C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe" = C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe:*:Enabled:SweetPacksUpdateManager "C:\Program Files\Java\jre7\bin\javaw.exe" = C:\Program Files\Java\jre7\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Oracle Corporation) "C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe" = C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe:*:Enabled:WebKit -- (Apple Inc.) [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 "{01600FA6-E93B-580E-135C-8548341676F2}" = e-Deklaracje Desktop "{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3 "{0780B80B-7B91-42AA-95CF-61387CA9933F}" = SekretNIK "{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting "{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended "{0F9196C6-58B4-445B-B56E-B1200FECC151}" = Microsoft Bootvis "{105CFC7C-6992-11D5-BD9D-000102C10FD8}" = Lizardtech DjVu Control "{11C86A01-3C83-4EE3-ADC1-8DE5C3037772}" = Enigma "{162B71B8-8464-4680-A086-601D555B331D}" = Apple Mobile Device Support "{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin "{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser "{19B72AA9-985A-11D4-9C8A-00D0B75D1498}" = Colin McRae Rally 2 "{26A24AE4-039D-4CA4-87B4-2F83216032FF}" = Java(TM) 6 Update 32 "{26A24AE4-039D-4CA4-87B4-2F83217017FF}" = Java 7 Update 21 "{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3 "{2A2F3AE8-246A-4252-BB26-1BEB45627074}" = Microsoft SQL Server System CLR Types "{31A559C1-9E4D-423B-9DD3-34A6C5398752}" = HTC BMP USB Driver "{3248F0A8-6813-11D6-A77B-00B0D0160050}" = Java(TM) 6 Update 5 "{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java(TM) 6 Update 7 "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{350F255B-B95A-49E4-835F-A9A0F85AFF49}" = Nyditot Virtual Display 5.02 "{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile "{3D7E3EC9-46CF-4359-9289-39CE01DFB82F}" = Adobe Photoshop CS3 "{439C8F8B-5A1B-4A3C-A91A-2F3F8CD34DDB}" = ChomikBox "{468D22C0-8080-11E2-B86E-B8AC6F98CCE3}" = Google Earth "{47C39E4A-28F2-33B1-B9B7-97F24E52D917}" = Microsoft Help Viewer 1.0 "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4E968D9C-21A7-4915-B698-F7AEB913541D}" = Microsoft SQL Server 2008 R2 Management Objects "{51846830-E7B2-4218-8968-B77F0FF475B8}" = Adobe Color EU Extra Settings "{51CC3953-2D06-47FA-832A-B7FD24D01322}" = Atmel Studio 6.0 "{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3 "{57FDAF8B-5690-401C-80C5-CB489A165EC8}" = Raven Shield Złota Edycja "{66491E5A-7899-4863-A2E9-057E10BCB578}" = Samsung SecretZone "{679068CA-C9E9-4C22-A90D-2C4F2881EF9C}" = Bluesoleil 6.2.227.11 "{6A86554B-8928-30E4-A53C-D7337689134D}" = Microsoft Visual C++ 2010 x86 Runtime - 10.0.30319 "{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All "{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}" = PartitionMagic "{6D6664A9-3342-4948-9B7E-034EFE366F0F}" = HTC Driver Installer "{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3 "{70AB1576-7883-2313-C650-7A71270B1045}" = Nero 7 "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{74224F8D-4A17-4816-9EDB-7BB854DE532C}" = NVIDIA PhysX v8.04.25 "{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}" = LiveUpdate BVRP Software "{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update "{797EE0CA-8165-405C-B5CE-F11EC20F1BB0}" = Microsoft VC9 runtime libraries "{7B63B2922B174135AFC0E1377DD81EC2}" = "{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3 "{803F609F-0EE2-4150-838E-4E47FCC8EAA9}" = JLink OB CDC Driver Package "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{83895843-3A51-4C93-9DF3-2BDB65C7E54A}" = DAEMON Tools "{87441A59-5E64-4096-A170-14EFE67200C3}" = Picture Control Utility "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3 "{8DFB54CE-49AA-4812-B4BF-866445F752D9}" = Foto E-Net 3.67 "{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support "{8FE5C338-EBF2-49CB-A36E-C89ABC759645}" = Kalkulator Receptur "{90120000-0010-0415-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Polish) 12 "{90120000-0015-0415-0000-0000000FF1CE}" = Microsoft Office Access MUI (Polish) 2007 "{90120000-0015-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2007 "{90120000-0016-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2007 "{90120000-0018-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0019-0415-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Polish) 2007 "{90120000-0019-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-001A-0415-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Polish) 2007 "{90120000-001A-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2007 "{90120000-001B-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007 "{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007 "{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2007 "{90120000-001F-0415-0000-0000000FF1CE}_ENTERPRISE_{9CC96D78-9E1D-46E0-AF4D-3EB440CD4619}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2007 "{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007 "{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0044-0415-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Polish) 2007 "{90120000-0044-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2007 "{90120000-006E-0415-0000-0000000FF1CE}_ENTERPRISE_{0C8AB602-A234-45AB-B355-4C863C1D2FA8}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2007 "{90120000-00A1-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-00BA-0415-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Polish) 2007 "{90120000-00BA-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In "{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3 "{94CAC2F1-C856-47F4-AF24-65A1E75AEDB9}" = MotoHelper MergeModules "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting "{95655ED4-7CA5-46DF-907F-7144877A32E5}" = Adobe Color NA Recommended Settings "{99052DB7-9592-4522-A558-5417BBAD48EE}" = Microsoft ActiveSync "{9A200E68-D5F4-4E70-910F-2871753A0E2B}" = Worms World Party "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3 "{A05BE20E-6510-44BC-95ED-6E6D730407D3}" = Vplayer "{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps "{A2D81E70-2A98-4A08-A628-94388B063C5E}" = Adobe Color - Photoshop Specific "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{A4A14B15-F25D-44F8-8483-291C1DF7C548}_is1" = WAV MP3 Converter v4.3 build 1287 "{A7E19604-93AF-4611-8C9F-CE509C2B286E}_is1" = VDownloader 3.9.1421 "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}" = PDF Settings "{AC76BA86-7AD7-1033-7B44-AB0000000001}" = Adobe Reader XI (11.0.02) "{AC76BA86-7AD7-2447-0000-900000000003}" = Chinese Simplified Fonts Support For Adobe Reader 9 "{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}" = QuickTime "{AFF7E080-1974-45BF-9310-10DE1A1F5ED0}" = Adobe AIR "{B014EE44-9197-4513-9613-71E6EB1B514E}" = Nikon Message Center 2 "{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter "{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0 "{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy "{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player "{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3 "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}" = Adobe ExtendScript Toolkit 2 "{C35CCBEB-5A54-4DD8-9EC8-110F2A8154B3}" = Motorola Mobile Drivers Installation 5.1.0 "{C9BED750-1211-4480-B1A5-718A3BE15525}" = REALTEK GbE & FE Ethernet PCI-E NIC Driver "{CA567AD5-33A4-403D-86D1-EE2D38251951}_is1" = VDownloader 0.74 "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 "{CC8C451E-A820-48C8-AE92-A0FF088969D8}" = Stereoscopic Player "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}" = Microsoft .NET Framework 4 Multi-Targeting Pack "{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client "{D1E7142C-6BC3-49EB-A71A-E5D7ADAC7599}" = Nikon File Uploader 2 "{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files "{D64B6984-242F-32BC-B008-752806E5FC44}" = Microsoft Visual Studio 2010 Shell (Isolated) - ENU "{D7D1C21E-AE35-463E-A7D6-212344965C97}" = CHIIonic "{DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9}" = Adobe Color Common Settings "{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}" = Adobe Color JA Extra Settings "{DD8D87E5-C372-462F-B168-94612B1D9451}" = HTC Sync "{DDD62492-32A7-412B-8AF1-2CF032AD42E3}" = ViewNX 2 "{E3993D46-AE3F-402E-9F9D-EEBDFBEC3564}" = Corel WinDVD 9 "{E39C74DF-58FD-4E52-9888-2CC59DFB0B34}" = PowerQuest PartitionMagic Pro 7.0 "{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3 "{E8F8861D-98E0-43FF-9E48-AC236CC3BE4E}" = Atmel USB "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F18E8A0F-BE99-4305-96A5-6C0FD9D7D999}" = mobile PhoneTools "{F5102A3B-0990-4E26-A289-5158D77F6455}" = GxStandard16-in-1 "{F5266D28-E0B2-4130-BFC5-EE155AD514DC}" = Obsługa programów Apple "{F5346614-B7C4-4E94-826A-E2363155233D}" = EasyCleaner "{F8C02517-4AC3-4026-8292-ACF23E98A7D7}" = Activision(R) "{F9466082-90E9-4BE4-92F0-CF0AF195B0CF}" = 325 USB PC Camera "{FC5495CB-CDA5-4DCE-99DF-D1567DAF5A86}" = TMPGEnc 4.0 XPress "{FF11004C-F42A-4A31-9BCF-7F5C8FDBE53C}" = Adobe Setup "6D4C34D12E9233ABADF9D04ADF9E288A7ECF3B5B" = Pakiet sterowników systemu Windows - Segger (jlink_ob) USB (03/13/2012 2.6.6.2) "ABA711DD50380EF91CB183F7CCDF6FFF13A3A738" = Windows Driver Package - Segger (jlink) USB (01/09/2007 2.6.5.0) "AC3Filter" = AC3Filter (remove only) "Adobe AIR" = Adobe AIR "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "Adobe_719d6f144d0c086a0dfa7ff76bb9ac1" = Adobe Photoshop CS3 "AOL Emergency Connect Utility 1.0" = Uninstall AOL Emergency Connect Utility 1.0 "AOL Uninstaller" = AOL Uninstaller (Choose which Products to Remove) "Ares" = Ares 2.1.2 "avast!" = avast! Antivirus "AVS DVD Player_is1" = AVS DVD Player version 2.2 "BD6BF8BBF7BE0D0091163F649A1A423B7EB9D4F1" = Pakiet sterowników systemu Windows - SEGGER (usbser) Ports (01/25/2012 6.0.2600.4) "CCleaner" = CCleaner "CDex" = CDex extraction audio "Cheat Engine 5.6.1_is1" = Cheat Engine 5.6.1 "CloneDVD2" = CloneDVD2 "Colin McRae Rally 2" = Colin McRae Rally 2 "Combined Community Codec Pack_is1" = Combined Community Codec Pack 2009-09-09 "Deluxe Ski Jump 4_is1" = Deluxe Ski Jump 4 "DivX Setup" = DivX Setup "e-Deklaracje.A1909296681C7ACEFE45687D3A64758C8659BF46.1" = e-Deklaracje Desktop "EGP230D PC-Link" = EGP230D PC-Link "EncFlac" = EncFlac 1.1.2 "ENTERPRISE" = Microsoft Office Enterprise 2007 "ExpressBurn" = Express Burn "ffdshow_is1" = ffdshow [rev 2844] [2009-03-30] "FIFA 12 (c) EA_is1" = FIFA 12 (c) EA version 1 "Fotosm_is1" = Fotosm 3.0 "Gadu-Gadu" = Gadu-Gadu 7.0 "Gadu-Gadu 10" = Gadu-Gadu 10 "GameDesire-Pool & Snooker" = GameDesire-Pool & Snooker "GG Tools_is1" = GG Tools "Hide Folders XP 2_is1" = Hide Folders XP 2.9.8 for Windows XP/Vista "ie8" = Windows Internet Explorer 8 "InFlac" = InFlac 1.1.1 "InstallShield_{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}" = PowerQuest PartitionMagic 8.0 "InstallShield_{E3993D46-AE3F-402E-9F9D-EEBDFBEC3564}" = Corel WinDVD 9 "InstallShield_{F5102A3B-0990-4E26-A289-5158D77F6455}" = 16-in-1 "Intelore - RAR Password Recovery" = RAR Password Recovery v1.1 RC17 (remove only) "JDownloader" = JDownloader "Jeyo Mobile Extender 2.5 for Outlook_is1" = Jeyo Mobile Extender 2.5 for Outlook "KLiteCodecPack_is1" = K-Lite Mega Codec Pack 4.6.2 "Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware wersja 1.75.0.1300 "Matroska Pack" = Matroska Pack "MediaInfo" = MediaInfo 0.7.26 "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1 "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended "Microsoft Help Viewer 1.0" = Microsoft Help Viewer 1.0 "MKV TO AVI CONVERTER_is1" = MKV TO AVI CONVERTER version 3.2 "MKV To AVI With Subtitle_is1" = MKV To AVI With Subtitle version 1.0 "MotoHelper" = MotoHelper 2.0.49 Driver 5.0.0 "Mozilla Firefox 21.0 (x86 pl)" = Mozilla Firefox 21.0 (x86 pl) "MozillaMaintenanceService" = Mozilla Maintenance Service "NAPIPROJEKT_is1" = NAPIPROJEKT 1.0.6.2 "NVIDIA Drivers" = NVIDIA Drivers "Opanda IExif_is1" = Opanda IExif 2.3 "Opanda PowerExif Professional Trial_is1" = Opanda PowerExif 1.2 Professional Trial "Pen Tablet Driver" = Pen Tablet "Pity 2008_is1" = Pity 2008 "Pity 2009_is1" = Pity 2009 "Pity Format 2010_is1" = Pity Format 2010 "Pocket Player" = Pocket Player "PonyProg2000_is1" = PonyProg2000 v2.05a "RealPlayer 6.0" = RealPlayer "RFSim99" = RFSim99 "Rm to Mp3 Wav Convertor_is1" = Rm to Mp3 Wav Convertor 2.25 "Smart MP3 Converter_is1" = Smart MP3 Converter "SnadBoy's Revelation v2" = SnadBoy's Revelation v2 "Snails (Trial)" = Snails (Trial) "SP_7699c875" = Search Assistant SimpleSpeedy 1.74 "SpeedFan" = SpeedFan (remove only) "SubEdit-Player_is1" = SubEdit-Player "Swat2" = Police Quest: SWAT2 "Switch" = Switch Sound File Converter "TCPMP" = TCPMP "TmNationsForever_is1" = TmNationsForever "ToneGenHQY" = Audio Signal Generator "TrueCrypt" = TrueCrypt "uTorrent" = µTorrent "VLC media player" = VLC media player 1.1.2 "WavePad" = WavePad Sound Editor "Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7 "WIC" = Windows Imaging Component "Winamp" = Winamp (remove only) "WinAVR-20100110" = WinAVR 20100110 (remove only) "Windows Media Format Runtime" = Windows Media Format 11 runtime "Windows XP Service Pack" = Windows XP Service Pack 3 "WinPcapInst" = WinPcap 4.1.1 "WinRAR archiver" = Archiwizator WinRAR "Wisdom-soft AutoScreenRecorder 2.0 Free" = Wisdom-soft AutoScreenRecorder 2.0 Free "WMFDist11" = Windows Media Format 11 runtime "WMV9_VCM" = Microsoft Windows Media Video 9 VCM "XP Codec Pack" = XP Codec Pack "Xvid_is1" = Xvid 1.2.1 final uninstall [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-1229272821-261478967-725345543-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Advanced Archive Password Recovery" = Advanced Archive Password Recovery "NCS Navigator" = NCS Navigator [color=#E56717]========== Last 20 Event Log Errors ==========[/color] [ Antivirus Events ] Error - 2013-05-06 11:54:02 | Computer Name = SZYSZA | Source = avast! | ID = 33554522 Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of C:\Documents and Settings\BROWAR\Ustawienia lokalne\Dane aplikacji\Adobe\Acrobat\11.0\AdobeFnt14.lst.3724 failed, 00000005. Error - 2013-05-08 15:00:22 | Computer Name = SZYSZA | Source = avast! | ID = 33554522 Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of C:\Documents and Settings\BROWAR\Ustawienia lokalne\Dane aplikacji\Adobe\Acrobat\11.0\Cache\AdobeFnt14.lst.1432 failed, 00000005. Error - 2013-05-08 15:00:22 | Computer Name = SZYSZA | Source = avast! | ID = 33554522 Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of C:\Documents and Settings\BROWAR\Ustawienia lokalne\Dane aplikacji\Adobe\Acrobat\11.0\AdobeFnt14.lst.1432 failed, 00000005. Error - 2013-05-08 15:00:22 | Computer Name = SZYSZA | Source = avast! | ID = 33554522 Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of C:\Documents and Settings\BROWAR\Ustawienia lokalne\Dane aplikacji\Adobe\Acrobat\11.0\AdobeFnt14.lst.1432 failed, 00000005. Error - 2013-05-08 15:24:04 | Computer Name = SZYSZA | Source = avast! | ID = 33554522 Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of C:\Documents and Settings\BROWAR\Ustawienia lokalne\Dane aplikacji\Adobe\Acrobat\11.0\Cache\AdobeFnt14.lst.2520 failed, 00000005. Error - 2013-05-08 15:24:04 | Computer Name = SZYSZA | Source = avast! | ID = 33554522 Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of C:\Documents and Settings\BROWAR\Ustawienia lokalne\Dane aplikacji\Adobe\Acrobat\11.0\AdobeFnt14.lst.2520 failed, 00000005. Error - 2013-05-08 15:24:04 | Computer Name = SZYSZA | Source = avast! | ID = 33554522 Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of C:\Documents and Settings\BROWAR\Ustawienia lokalne\Dane aplikacji\Adobe\Acrobat\11.0\AdobeFnt14.lst.2520 failed, 00000005. Error - 2013-05-11 08:51:29 | Computer Name = SZYSZA | Source = avast! | ID = 33554522 Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of C:\Documents and Settings\BROWAR\Ustawienia lokalne\Dane aplikacji\Adobe\Acrobat\11.0\Cache\AdobeFnt14.lst.7188 failed, 00000005. Error - 2013-05-11 08:51:29 | Computer Name = SZYSZA | Source = avast! | ID = 33554522 Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of C:\Documents and Settings\BROWAR\Ustawienia lokalne\Dane aplikacji\Adobe\Acrobat\11.0\AdobeFnt14.lst.7188 failed, 00000005. Error - 2013-05-11 08:51:29 | Computer Name = SZYSZA | Source = avast! | ID = 33554522 Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of C:\Documents and Settings\BROWAR\Ustawienia lokalne\Dane aplikacji\Adobe\Acrobat\11.0\AdobeFnt14.lst.7188 failed, 00000005. [ Application Events ] Error - 2013-04-30 04:53:10 | Computer Name = SZYSZA | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd coverdes.exe, wersja 2.4.6.4, moduł powodujący błąd lls.dll, wersja 1.0.4.5, adres błędu 0x0000883d. Error - 2013-04-30 10:49:19 | Computer Name = SZYSZA | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd copyfstq.exe, wersja 0.0.0.0, moduł powodujący błąd copyfstq.exe, wersja 0.0.0.0, adres błędu 0x00002915. Error - 2013-04-30 12:13:41 | Computer Name = SZYSZA | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd copyfstq.exe, wersja 0.0.0.0, moduł powodujący błąd copyfstq.exe, wersja 0.0.0.0, adres błędu 0x00002915. Error - 2013-04-30 12:13:53 | Computer Name = SZYSZA | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd copyfstq.exe, wersja 0.0.0.0, moduł powodujący błąd copyfstq.exe, wersja 0.0.0.0, adres błędu 0x00002915. Error - 2013-05-08 14:53:14 | Computer Name = SZYSZA | Source = Application Hang | ID = 1002 Description = Aplikacja zawieszająca rundll32.exe, wersja 5.1.2600.5512, moduł zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000. Error - 2013-05-16 07:52:24 | Computer Name = SZYSZA | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd pity2009.exe, wersja 1.0.0.5, moduł powodujący błąd kernel32.dll, wersja 5.1.2600.6293, adres błędu 0x00012fd3. Error - 2013-05-17 06:19:28 | Computer Name = SZYSZA | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd a2a1mx69.exe, wersja 8.1.0.3280, moduł powodujący błąd , wersja 0.0.0.0, adres błędu 0x00000000. Error - 2013-05-17 12:16:30 | Computer Name = SZYSZA | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd plugin-container.exe, wersja 21.0.0.4879, moduł powodujący błąd mozalloc.dll, wersja 21.0.0.4879, adres błędu 0x00001988. Error - 2013-05-17 12:23:29 | Computer Name = SZYSZA | Source = crypt32 | ID = 131083 Description = Nie można wyodrębnić głównej listy innych firm z pliku cab automatycznej aktualizacji z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>, wystąpił błąd: Wymagany certyfikat jest poza okresem ważności, co wynika z weryfikacji bieżącego zegara systemowego lub sygnatury czasowej. Error - 2013-05-17 12:23:29 | Computer Name = SZYSZA | Source = crypt32 | ID = 131083 Description = Nie można wyodrębnić głównej listy innych firm z pliku cab automatycznej aktualizacji z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>, wystąpił błąd: Wymagany certyfikat jest poza okresem ważności, co wynika z weryfikacji bieżącego zegara systemowego lub sygnatury czasowej. [ OSession Events ] Error - 2012-09-08 05:35:59 | Computer Name = SZYSZA | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6661.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 6 seconds with 0 seconds of active time. This session ended with a crash. Error - 2012-09-08 05:39:22 | Computer Name = SZYSZA | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6661.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 0 seconds with 0 seconds of active time. This session ended with a crash. Error - 2012-09-08 05:42:02 | Computer Name = SZYSZA | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6661.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 0 seconds with 0 seconds of active time. This session ended with a crash. [ System Events ] Error - 2013-05-17 12:36:19 | Computer Name = SZYSZA | Source = atapi | ID = 262153 Description = Urządzenie \Device\Ide\IdePort0 nie odpowiedziało w ramach ustalonego limitu czasu. Error - 2013-05-17 12:37:11 | Computer Name = SZYSZA | Source = atapi | ID = 262153 Description = Urządzenie \Device\Ide\IdePort0 nie odpowiedziało w ramach ustalonego limitu czasu. Error - 2013-05-17 12:37:43 | Computer Name = SZYSZA | Source = atapi | ID = 262153 Description = Urządzenie \Device\Ide\IdePort0 nie odpowiedziało w ramach ustalonego limitu czasu. Error - 2013-05-17 12:38:30 | Computer Name = SZYSZA | Source = atapi | ID = 262153 Description = Urządzenie \Device\Ide\IdePort0 nie odpowiedziało w ramach ustalonego limitu czasu. Error - 2013-05-17 12:39:29 | Computer Name = SZYSZA | Source = atapi | ID = 262153 Description = Urządzenie \Device\Ide\IdePort0 nie odpowiedziało w ramach ustalonego limitu czasu. Error - 2013-05-17 12:39:37 | Computer Name = SZYSZA | Source = atapi | ID = 262153 Description = Urządzenie \Device\Ide\IdePort0 nie odpowiedziało w ramach ustalonego limitu czasu. Error - 2013-05-17 12:40:45 | Computer Name = SZYSZA | Source = atapi | ID = 262153 Description = Urządzenie \Device\Ide\IdePort0 nie odpowiedziało w ramach ustalonego limitu czasu. Error - 2013-05-17 12:41:03 | Computer Name = SZYSZA | Source = atapi | ID = 262153 Description = Urządzenie \Device\Ide\IdePort0 nie odpowiedziało w ramach ustalonego limitu czasu. Error - 2013-05-17 12:46:40 | Computer Name = SZYSZA | Source = atapi | ID = 262153 Description = Urządzenie \Device\Ide\IdePort0 nie odpowiedziało w ramach ustalonego limitu czasu. Error - 2013-05-17 12:47:53 | Computer Name = SZYSZA | Source = atapi | ID = 262153 Description = Urządzenie \Device\Ide\IdePort0 nie odpowiedziało w ramach ustalonego limitu czasu. < End of report >

Chyba wszystko dobrze powklejane ;] Dodam, że system postawiony już dość dawno, więc pewnie sporo syfu się nazbierało ;/

Problem z ad.yieldmanager.com i zamulaniem

Problem z ad.yieldmanager.com i zamulaniem

Kto jest na forum