Dodano 18.06.2011 09:15:10:
- Kod: Zaznacz wszystko
.
DDS (Ver_2011-06-12.02) - NTFSx86
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_23
Run by W at 10:08:13 on 2011-06-18
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.48.1045.18.3294.1934 [GMT 2:00]
.
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\ProgramData\Badoo\Badoo Desktop\1.5.3.949\Badoo.Desktop.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\system32\FsUsbExService.Exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\SearchIndexer.exe
C:\Windows\System32\alg.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtProc.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Nero\Update\NASvc.exe
C:\Windows\system32\svchost.exe -k WindowsMobile
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files\Gadu-Gadu 10\gg.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Users\W\Desktop\OTL.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uInternet Settings,ProxyOverride = *.local
uInternet Settings,ProxyServer = 217.98.20.20:8080
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\progra~1\micros~2\office12\GR469A~1.DLL
BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll
TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
uRun: [DAEMON Tools Lite] "c:\program files\daemon tools lite\DTLite.exe" -autorun
uRun: [Badoo Desktop] "c:\programdata\badoo\badoo desktop\1.5.3.949\Badoo.Desktop.exe"
mRun: [Malwarebytes' Anti-Malware (reboot)] "c:\program files\malwarebytes' anti-malware\mbam.exe" /runcleanupscript
mRun: [NBAgent] "c:\program files\nero\nero 10\nero backitup\NBAgent.exe" /WinStart
mRun: [ITSecMng] %ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START
mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray
mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\blueto~1.lnk - c:\program files\toshiba\bluetooth toshiba stack\TosBtMng.exe
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: EnableLinkedConnections = 1 (0x1)
IE: E&ksport do programu Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: E&ksportuj do programu Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: ????3?? - c:\users\w\appdata\roaming\flashgetbho\GetUrl.htm
IE: ????3?????? - c:\users\w\appdata\roaming\flashgetbho\GetAllUrl.htm
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll
IE: {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - c:\windows\windowsmobile\INetRepl.dll
IE: {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - c:\windows\windowsmobile\INetRepl.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
DPF: {233C1507-6A77-46A4-9443-F871F945D258} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
TCP: DhcpNameServer = 192.168.0.1 192.168.1.1
TCP: Interfaces\{B3733C9A-E327-4676-B087-0C36DD4D65DF} : DhcpNameServer = 192.168.0.1 192.168.1.1
TCP: Interfaces\{B3733C9A-E327-4676-B087-0C36DD4D65DF}\4474 : DhcpNameServer = 192.168.0.1
TCP: Interfaces\{EA861513-151C-4458-B1AB-9400A70E50FC} : DhcpNameServer = 192.168.0.1
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\progra~1\micros~2\office12\GRA32A~1.DLL
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\progra~1\micros~2\office12\GR469A~1.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\w\appdata\roaming\mozilla\firefox\profiles\ekvi7n47.default\
FF - component: c:\program files\mozilla firefox\extensions\kavantibanner@kaspersky.ru\components\abhelperxpcom.dll
FF - component: c:\program files\mozilla firefox\extensions\linkfilter@kaspersky.ru\components\kavlinkfilter.dll
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\update\1.2.183.39\npGoogleOneClick8.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\microsoft silverlight\4.0.60129.0\npctrlui.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll
FF - plugin: c:\programdata\gadu-gadu 10\_userdata\npgg.2.dll
FF - plugin: c:\users\w\appdata\local\google\update\1.2.183.39\npGoogleOneClick8.dll
FF - plugin: c:\users\w\appdata\roaming\gadu-gadu 10\_userdata\nppl3260.dll
FF - plugin: c:\users\w\appdata\roaming\gadu-gadu 10\_userdata\nprpjplug.dll
.
---- FIREFOX POLICIES ----
FF - user.js: network.cookie.cookieBehavior - 0
FF - user.js: privacy.clearOnShutdown.cookies - false
FF - user.js: security.warn_viewing_mixed - false
FF - user.js: security.warn_viewing_mixed.show_once - false
FF - user.js: security.warn_submit_insecure - false
FF - user.js: security.warn_submit_insecure.show_once - false
.
============= SERVICES / DRIVERS ===============
.
R0 BtHidBus;Bluetooth HID Bus Service;c:\windows\system32\drivers\BtHidBus.sys [2009-1-8 20744]
R0 O2MDRDR;O2MDRDR;c:\windows\system32\drivers\o2media.sys [2005-11-14 34176]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2011-6-16 441176]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2011-6-16 307928]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [2011-3-17 218688]
R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-14 48128]
R2 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 PE Licensing Service;c:\program files\common files\abbyy\finereader\9.00\licensing\pe\NetworkLicenseServer.exe [2007-12-6 660768]
R2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\common files\adobe\arm\1.0\armsvc.exe [2011-6-6 64952]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2011-6-16 19544]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2011-6-16 53592]
R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2011-6-16 42184]
R2 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe [2011-3-19 222568]
R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2009-11-27 366640]
R2 NAUpdate;Nero Update;c:\program files\nero\update\NASvc.exe [2010-3-25 490280]
R3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [2011-3-19 42112]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2009-11-27 22712]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\drivers\VSTAZL3.SYS [2009-7-14 207360]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\drivers\VSTDPV3.SYS [2009-7-14 980992]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\drivers\VSTCNXT3.SYS [2009-7-14 661504]
R3 yukonw7;Sterownik miniportu NDIS6.2 dla kontrolera Marvell Yukon Ethernet Controller;c:\windows\system32\drivers\yk62x86.sys [2009-7-14 311296]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888]
S3 btnetBUs;Bluetooth PAN Bus Service;c:\windows\system32\drivers\btnetBus.sys [2008-12-7 30088]
S3 IvtBtBUs;IVT Bluetooth Bus Service;c:\windows\system32\drivers\IvtBtBus.sys [2008-7-2 26248]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2009-11-27 39984]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2011-3-4 15872]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\drivers\ss_bbus.sys [2011-3-19 98432]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\drivers\ss_bmdfl.sys [2011-3-19 14848]
S3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\drivers\ss_bmdm.sys [2011-3-19 123648]
S3 ss_bserd;SAMSUNG USB Mobile Logging Driver;c:\windows\system32\drivers\ss_bserd.sys [2011-3-19 100224]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2011-3-4 52224]
S3 WatAdminSvc;Usługa Technologie aktywacji systemu Windows;c:\windows\system32\wat\WatAdminSvc.exe [2010-6-15 1343400]
S4 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-8-18 176128]
S4 gupdate;Usługa Google Update (gupdate);c:\program files\google\update\GoogleUpdate.exe [2011-1-24 136176]
.
=============== Created Last 30 ================
.
2011-06-17 10:01:24 6962000 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{794b8a86-9164-4ed3-951e-2477796da49e}\mpengine.dll
2011-06-16 16:11:04 441176 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-06-16 16:10:57 53592 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2011-06-16 16:10:34 40112 ----a-w- c:\windows\avastSS.scr
2011-06-16 16:10:18 -------- d-----w- c:\programdata\AVAST Software
2011-06-16 16:10:18 -------- d-----w- c:\program files\AVAST Software
2011-06-16 06:03:25 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2011-06-16 06:03:25 141104 ----a-w- c:\program files\internet explorer\sqmapi.dll
2011-06-16 06:03:23 1797632 ----a-w- c:\windows\system32\jscript9.dll
2011-06-16 05:48:31 571904 ----a-w- c:\windows\system32\oleaut32.dll
2011-06-16 05:48:30 338944 ----a-w- c:\windows\system32\drivers\afd.sys
2011-06-16 05:48:30 1290624 ----a-w- c:\windows\system32\drivers\tcpip.sys
2011-06-16 05:48:29 311808 ----a-w- c:\windows\system32\drivers\srv.sys
2011-06-16 05:48:29 310272 ----a-w- c:\windows\system32\drivers\srv2.sys
2011-06-16 05:48:29 114688 ----a-w- c:\windows\system32\drivers\srvnet.sys
2011-06-16 05:48:28 741376 ----a-w- c:\windows\system32\inetcomm.dll
2011-06-16 05:48:27 96768 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2011-06-16 05:48:27 223744 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2011-06-16 05:48:27 123904 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-06-14 21:56:43 -------- d-----w- C:\odpowiedzi_Karolina_Deda_1_ZZIP 15A C7
2011-06-14 16:39:21 -------- d-----w- c:\users\w\appdata\roaming\.oit
2011-06-12 16:27:25 -------- d-----w- c:\program files\Gadu-Gadu 10
2011-06-06 10:55:30 183696 ----a-w- c:\program files\mozilla firefox\plugins\nppdf32.dll
2011-06-05 09:34:17 18944 ----a-w- c:\windows\system32\spool\prtprocs\w32x86\mdippr.dll
2011-06-05 09:34:17 17920 ----a-w- c:\windows\system32\mdimon.dll
2011-05-25 08:11:02 27008 ----a-w- c:\windows\system32\drivers\Diskdump.sys
.
==================== Find3M ====================
.
2011-06-12 16:16:53 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-05-29 07:11:30 39984 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-05-29 07:11:20 22712 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-04-09 06:02:25 3967872 ----a-w- c:\windows\system32\ntkrnlpa.exe
2011-04-09 06:02:25 3912576 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-04-09 05:56:38 123904 ----a-w- c:\windows\system32\poqexec.exe
.
============= FINISH: 10:11:10,55 ===============
Dodano 18.06.2011 09:16:21:
- Kod: Zaznacz wszystko
OTL Extras logfile created on: 2011-06-18 10:06:37 - Run 1
OTL by OldTimer - Version 3.2.24.1 Folder = C:\Users\W\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
3,22 Gb Total Physical Memory | 1,98 Gb Available Physical Memory | 61,67% Memory free
6,43 Gb Paging File | 5,10 Gb Available in Paging File | 79,34% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 85,84 Gb Total Space | 25,25 Gb Free Space | 29,42% Space Free | Partition Type: NTFS
Drive D: | 64,81 Gb Total Space | 26,96 Gb Free Space | 41,59% Space Free | Partition Type: NTFS
Drive E: | 145,97 Gb Total Space | 51,70 Gb Free Space | 35,42% Space Free | Partition Type: NTFS
Computer Name: W-KOMPUTER | User Name: W | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
[color=#E56717]========== File Associations ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = Opera.HTML] -- Reg Error: Key error. File not found
[HKEY_USERS\S-1-5-21-2385338383-1099639079-1865174489-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
[color=#E56717]========== Shell Spawning ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Opera\Opera.exe" "%1"
https [open] -- "C:\Program Files\Opera\Opera.exe" "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[color=#E56717]========== Security Center Settings ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[color=#E56717]========== Firewall Settings ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[color=#E56717]========== Authorized Applications List ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe" = C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0141D498-16DA-4221-A529-1D7A64BE8B05}" = OpenOffice.org 3.3
"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{08C8666B-C502-4AB3-B4CB-D74AC42D14FE}" = Nero BackItUp 10 Help (CHM)
"{16987E99-C95C-4513-9239-7B44A0A71DB5}" = Nero SoundTrax 10 Help (CHM)
"{1EE9BBA1-312F-4EC0-9DEA-A8FE22BBABAA}_is1" = 20Dollars2Surf 1.1
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F7FB68F-52F6-46A3-B42F-38CE46295AE5}" = Nero MediaHub 10
"{237CCB62-8454-43E3-B158-3ACD0134852E}" = High-Definition Video Playback 10
"{2436F2A8-4B7E-4B6C-AE4E-604C84AA6A4F}" = Nero Core Components 10
"{26A24AE4-039D-4CA4-87B4-2F83216016F0}" = Java(TM) 6 Update 16
"{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java(TM) 6 Update 23
"{277C1559-4CF7-44FF-8D07-98AA9C13AABD}" = Nero Multimedia Suite 10
"{329411A0-19F3-4740-874F-17400B126F27}" = Nero Vision 10 Help (CHM)
"{33643918-7957-4839-92C7-EA96CB621A98}" = Nero Express 10 Help (CHM)
"{34490F4E-48D0-492E-8249-B48BECF0537C}" = Nero DiscSpeed 10
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3C8199EC-A8A1-4F73-B5AC-753E9D23E2F6}" = Adobe Setup
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{51C7AD07-C3F6-4635-8E8A-231306D810FE}" = Cisco LEAP Module
"{523B2B1B-D8DB-4B41-90FF-C4D799E2758A}" = Nero ControlCenter 10 Help (CHM)
"{555868C6-49FB-484F-BB43-8980651A1B00}" = Nero BurnRights 10 Help (CHM)
"{5F548A02-80BC-404D-BAE6-F05F9BF6B449}" = Nero DiscCopyGadget 10 Help (CHM)
"{63AA3EAB-23BB-48B2-9AD0-44F878075604}" = Nero 10 Menu TemplatePack Basic
"{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}" = Cisco EAP-FAST Module
"{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}" = Nero Update
"{66049135-9659-4AAD-9169-9CCA269EBB3E}" = Nero InfoTool 10 Help (CHM)
"{68AB6930-5BFF-4FF6-923B-516A91984FE6}" = Nero BackItUp 10
"{6D12B99F-EAAA-49D8-8E2F-74FA7459CCB2}" = Adobe Asset Services CS3
"{6DFB899F-17A2-48F0-A533-ED8D6866CF38}" = Nero Control Center 10
"{70550193-1C22-445C-8FA4-564E155DB1A7}" = Nero Express 10
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7A295D8F-484B-4FFB-89AB-C1FD497591FE}" = Nero WaveEditor 10 Help (CHM)
"{7A5D731D-B4B3-490E-B339-75685712BAAB}" = Nero Burning ROM 10
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support
"{8ECEC853-5C3D-4B10-B5C7-FF11FF724807}" = Nero Recode 10
"{90110415-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0015-0415-0000-0000000FF1CE}" = Microsoft Office Access MUI (Polish) 2007
"{90120000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2007
"{90120000-0017-0000-0000-0000000FF1CE}" = Microsoft Office SharePoint Designer 2007
"{90120000-0017-0000-0000-0000000FF1CE}_SharePointDesigner_{37180755-CA2B-40AD-9637-89FB0CE7CB36}" = Microsoft Office SharePoint Designer 2007 Service Pack 1 (SP1)
"{90120000-0017-0415-0000-0000000FF1CE}" = Microsoft Office SharePoint Designer MUI (Polish) 2007
"{90120000-0017-0415-0000-0000000FF1CE}_SharePointDesigner_{603EA501-A7E8-4482-93FF-A39A639F46C6}" = Microsoft Office SharePoint Designer 2007 Service Pack 1 (SP1)
"{90120000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2007
"{90120000-0019-0415-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Polish) 2007
"{90120000-001A-0415-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Polish) 2007
"{90120000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0407-0000-0000000FF1CE}_SharePointDesigner_{2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{3EC77D26-799B-4CD8-914F-C1565E796173}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0409-0000-0000000FF1CE}_SharePointDesigner_{3EC77D26-799B-4CD8-914F-C1565E796173}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2007
"{90120000-001F-0415-0000-0000000FF1CE}_ENTERPRISE_{2D1F88C2-ADAE-47C4-8648-6EA8F7E6EB2D}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0415-0000-0000000FF1CE}_SharePointDesigner_{2D1F88C2-ADAE-47C4-8648-6EA8F7E6EB2D}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0415-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Polish) 2007
"{90120000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2007
"{90120000-006E-0415-0000-0000000FF1CE}_ENTERPRISE_{94A4609B-0414-4427-81F3-0FD282A2D0D3}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-006E-0415-0000-0000000FF1CE}_SharePointDesigner_{94A4609B-0414-4427-81F3-0FD282A2D0D3}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2007
"{90120000-00B2-0409-0000-0000000FF1CE}" = Microsoft Save as PDF or XPS Add-in for 2007 Microsoft Office programs
"{90120000-00BA-0415-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Polish) 2007
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{904CCF62-818D-4675-BC76-D37EB399F917}" = Centrum obsługi urządzeń z systemem Windows Mobile
"{92E25238-61A3-4ACD-A407-3C480EEF47A7}" = Nero RescueAgent 10 Help (CHM)
"{92EC1A84-7FFC-42DF-A8F6-79C21C4765A5}" = Nero DiscCopy Gadget 10
"{943CFD7D-5336-47AF-9418-E02473A5A517}" = Nero BurnRights 10
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A4297F3-2A51-4ED9-92CA-4BCB8380947E}" = Nero Vision 10
"{9B6B24BE-80E7-46C4-9FA5-B167D5E0F345}" = Nero BurningROM 10 Help (CHM)
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps
"{A2EF591E-90FE-4501-B890-9C664F657674}" = Adobe Dreamweaver CS3
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1045-7B44-AA1000000001}" = Adobe Reader X (10.1.0) - Polish
"{b1adf008-e898-4fe2-8a1f-690d9a06acaf}" = DolbyFiles
"{b2ec4a38-b545-4a00-8214-13fe0e915e6d}" = Advertising Center
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3
"{bd5ca0da-71ad-43da-b19e-6eee0c9adc9a}" = Nero ControlCenter
"{BE5F3842-8309-4754-92D5-83E02E6077A3}" = Adobe Extension Manager CS3
"{C18A0418-442A-4186-AF98-D08F5054A2FC}" = Nero DiscSpeed 10 Help (CHM)
"{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}" = Adobe ExtendScript Toolkit 2
"{C3273C55-E1E4-41FF-8D69-0158090DB8D8}" = Nero CoverDesigner 10 Help (CHM)
"{C3580AC4-C827-4332-B935-9A282ED5BB97}" = Nero Dolby Files 10
"{C768790F-04FB-11E0-9B2C-001AA037B01E}" = Google Earth
"{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}" = Bluetooth Stack for Windows by Toshiba
"{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}" = Microsoft Primary Interoperability Assemblies 2005
"{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files
"{DB7C1D4A-08BA-4C7E-A8AA-B7F9BB372DCF}" = Nero Recode 10 Help (CHM)
"{E1EE5339-5D32-458F-BAAB-B19F6301BCE2}" = Nero SoundTrax 10
"{E337E787-CF61-4B7B-B84F-509202A54023}" = Nero RescueAgent 10
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.0
"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3
"{e8a80433-302b-4ff1-815d-fcc8eac482ff}" = Nero Installer
"{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}" = Cisco PEAP Module
"{EDCDFAD5-DF80-4600-A493-E9DAD6810230}" = Nero WaveEditor 10
"{F160E118-2FA1-4294-8632-B3E87547D075}" = Badoo Desktop
"{F412B4AF-388C-4FF5-9B2F-33DB1C536953}" = Nero InfoTool 10
"{F467862A-D9CA-47ED-8D81-B4B3C9399272}" = Nero MediaHub 10 Help (CHM)
"{F5CB822F-B365-43D1-BCC0-4FDA1A2017A7}" = Nero 10 Movie ThemePack Basic
"{F6117F9C-ADB5-4590-9BE4-12C7BEC28702}" = Nero StartSmart 10 Help (CHM)
"{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}" = Nero StartSmart 10
"{F9000000-0001-0000-0000-074957833700}" = ABBYY FineReader 9.0 Professional Edition
"{FCF00A6E-FB58-477A-ABE9-232907105521}" = Nero CoverDesigner 10
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe_f600d30aaa4d8375e3b195bdb240047" = Adobe Dreamweaver CS3
"ALLPlayer_is1" = ALLPlayer V4.X
"avast" = avast! Free Antivirus
"Broadcom 802.11 Network Adapter" = Broadcom 802.11 Network Adapter
"CCleaner" = CCleaner
"DAEMON Tools Lite" = DAEMON Tools Lite
"DVD Decrypter" = DVD Decrypter (Remove Only)
"DVD Shrink_is1" = DVD Shrink 3.2
"ENTERPRISE" = Microsoft Office Enterprise 2007
"Gadu-Gadu" = Gadu-Gadu 7.7
"Gadu-Gadu 10" = Gadu-Gadu 10
"HD Tune_is1" = HD Tune 2.55
"JDownloader" = JDownloader
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware wersja 1.51.0.1200
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Mozilla Firefox 4.0.1 (x86 pl)" = Mozilla Firefox 4.0.1 (x86 pl)
"PDF To Excel Converter_is1" = PDF To Excel Converter V2.0
"SharePointDesigner" = Microsoft Office SharePoint Designer 2007
"Totalcmd" = Total Commander (Remove or Repair)
"WEOL 2010 v4.0" = WEOL 2010 v4.0
"WinGimp-2.0_is1" = GIMP 2.6.7
"WinRAR archiver" = Archiwizator WinRAR
[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]
[HKEY_USERS\S-1-5-21-2385338383-1099639079-1865174489-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Advanced PDF Password Recovery" = Advanced PDF Password Recovery
"Google Chrome" = Google Chrome
[color=#E56717]========== Last 10 Event Log Errors ==========[/color]
[ Application Events ]
Error - 2011-06-02 05:21:06 | Computer Name = W-Komputer | Source = Application Error | ID = 1000
Description = Nazwa aplikacji powodującej błąd: Photoshop.exe, wersja: 11.0.0.0,
sygnatura czasowa: 0x48d3882e Nazwa modułu powodującego błąd: Photoshop.exe, wersja:
11.0.0.0, sygnatura czasowa: 0x48d3882e Kod wyjątku: 0xc0000005 Przesunięcie błędu:
0x00c9a1d3 Identyfikator procesu powodującego błąd: 0x11cc Godzina uruchomienia aplikacji
powodującej błąd: 0x01cc2106628f7e68 Ścieżka aplikacji powodującej błąd: C:\Users\W\Desktop\Programy\Portable.Adobe.Photoshop.CS4-PL\App\Photoshop\Photoshop.exe
Ścieżka
modułu powodującego błąd: C:\Users\W\Desktop\Programy\Portable.Adobe.Photoshop.CS4-PL\App\Photoshop\Photoshop.exe
Identyfikator
raportu: a43faedd-8cf9-11e0-8bf9-00037ac8c0f4
Error - 2011-06-03 12:00:45 | Computer Name = W-Komputer | Source = Application Error | ID = 1000
Description = Nazwa aplikacji powodującej błąd: Photoshop.exe, wersja: 11.0.0.0,
sygnatura czasowa: 0x48d3882e Nazwa modułu powodującego błąd: Photoshop.exe, wersja:
11.0.0.0, sygnatura czasowa: 0x48d3882e Kod wyjątku: 0xc0000005 Przesunięcie błędu:
0x00c9a1d3 Identyfikator procesu powodującego błąd: 0x1608 Godzina uruchomienia aplikacji
powodującej błąd: 0x01cc220755ccf721 Ścieżka aplikacji powodującej błąd: C:\Users\W\Desktop\Programy\Portable.Adobe.Photoshop.CS4-PL\App\Photoshop\Photoshop.exe
Ścieżka
modułu powodującego błąd: C:\Users\W\Desktop\Programy\Portable.Adobe.Photoshop.CS4-PL\App\Photoshop\Photoshop.exe
Identyfikator
raportu: a36b121d-8dfa-11e0-aeb6-00037ac8c0f4
Error - 2011-06-03 12:02:22 | Computer Name = W-Komputer | Source = Application Error | ID = 1000
Description = Nazwa aplikacji powodującej błąd: Photoshop.exe, wersja: 11.0.0.0,
sygnatura czasowa: 0x48d3882e Nazwa modułu powodującego błąd: Photoshop.exe, wersja:
11.0.0.0, sygnatura czasowa: 0x48d3882e Kod wyjątku: 0xc0000005 Przesunięcie błędu:
0x00c9a1d3 Identyfikator procesu powodującego błąd: 0x39c Godzina uruchomienia aplikacji
powodującej błąd: 0x01cc220794ef1568 Ścieżka aplikacji powodującej błąd: C:\Users\W\Desktop\Programy\Portable.Adobe.Photoshop.CS4-PL\App\Photoshop\Photoshop.exe
Ścieżka
modułu powodującego błąd: C:\Users\W\Desktop\Programy\Portable.Adobe.Photoshop.CS4-PL\App\Photoshop\Photoshop.exe
Identyfikator
raportu: dd60a67f-8dfa-11e0-aeb6-00037ac8c0f4
Error - 2011-06-05 05:34:30 | Computer Name = W-Komputer | Source = Application Error | ID = 1000
Description = Nazwa aplikacji powodującej błąd: sidebar.exe, wersja: 6.1.7601.17514,
sygnatura czasowa: 0x4ce79791 Nazwa modułu powodującego błąd: ntdll.dll, wersja:
6.1.7601.17514, sygnatura czasowa: 0x4ce7b96e Kod wyjątku: 0xc0000005 Przesunięcie
błędu: 0x00032239 Identyfikator procesu powodującego błąd: 0xa64 Godzina uruchomienia
aplikacji powodującej błąd: 0x01cc2359ce6c51b5 Ścieżka aplikacji powodującej błąd:
C:\Program Files\Windows Sidebar\sidebar.exe Ścieżka modułu powodującego błąd: C:\Windows\SYSTEM32\ntdll.dll
Identyfikator
raportu: 031b52d6-8f57-11e0-8b23-00037ac8c0f4
Error - 2011-06-05 17:01:13 | Computer Name = W-Komputer | Source = Application Error | ID = 1000
Description = Nazwa aplikacji powodującej błąd: EXCEL.EXE, wersja: 12.0.4518.1014,
sygnatura czasowa: 0x45428263 Nazwa modułu powodującego błąd: MSVCR80.dll, wersja:
8.0.50727.4940, sygnatura czasowa: 0x4ca2b271 Kod wyjątku: 0xc0000005 Przesunięcie
błędu: 0x0001537a Identyfikator procesu powodującego błąd: 0x154c Godzina uruchomienia
aplikacji powodującej błąd: 0x01cc23b5290a26a6 Ścieżka aplikacji powodującej błąd:
C:\Program Files\Microsoft Office\Office12\EXCEL.EXE Ścieżka modułu powodującego
błąd: C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_d08cc06a442b34fc\MSVCR80.dll
Identyfikator
raportu: f21c0a21-8fb6-11e0-9b17-00037ac8c0f4
Error - 2011-06-05 17:37:10 | Computer Name = W-Komputer | Source = Application Error | ID = 1000
Description = Nazwa aplikacji powodującej błąd: EXCEL.EXE, wersja: 12.0.4518.1014,
sygnatura czasowa: 0x45428263 Nazwa modułu powodującego błąd: EXCEL.EXE, wersja:
12.0.4518.1014, sygnatura czasowa: 0x45428263 Kod wyjątku: 0xc0000005 Przesunięcie
błędu: 0x004ea277 Identyfikator procesu powodującego błąd: 0x890 Godzina uruchomienia
aplikacji powodującej błąd: 0x01cc23c3bd59f9e4 Ścieżka aplikacji powodującej błąd:
C:\Program Files\Microsoft Office\Office12\EXCEL.EXE Ścieżka modułu powodującego
błąd: C:\Program Files\Microsoft Office\Office12\EXCEL.EXE Identyfikator raportu:
f7c1283c-8fbb-11e0-9b17-00037ac8c0f4
Error - 2011-06-06 18:07:14 | Computer Name = W-Komputer | Source = Application Hang | ID = 1002
Description = Program iexplore.exe w wersji 9.0.8112.16421 zatrzymał interakcję
z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej
informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania
Centrum akcji. Identyfikator procesu: 4e0 Godzina rozpoczęcia: 01cc2495c911b058 Godzina
zakończenia: 50 Ścieżka aplikacji: C:\Program Files\Internet Explorer\iexplore.exe
Identyfikator
raportu:
Error - 2011-06-07 13:11:10 | Computer Name = W-Komputer | Source = Application Error | ID = 1000
Description = Nazwa aplikacji powodującej błąd: EXCEL.EXE, wersja: 12.0.4518.1014,
sygnatura czasowa: 0x45428263 Nazwa modułu powodującego błąd: EXCEL.EXE, wersja:
12.0.4518.1014, sygnatura czasowa: 0x45428263 Kod wyjątku: 0xc0000005 Przesunięcie
błędu: 0x004ea277 Identyfikator procesu powodującego błąd: 0xee8 Godzina uruchomienia
aplikacji powodującej błąd: 0x01cc24ed8a1f8d8c Ścieżka aplikacji powodującej błąd:
C:\Program Files\Microsoft Office\Office12\EXCEL.EXE Ścieżka modułu powodującego
błąd: C:\Program Files\Microsoft Office\Office12\EXCEL.EXE Identyfikator raportu:
233a5f84-9129-11e0-9218-00037ac8c0f4
Error - 2011-06-07 15:41:02 | Computer Name = W-Komputer | Source = Application Error | ID = 1000
Description = Nazwa aplikacji powodującej błąd: Photoshop.exe, wersja: 11.0.0.0,
sygnatura czasowa: 0x48d3882e Nazwa modułu powodującego błąd: Photoshop.exe, wersja:
11.0.0.0, sygnatura czasowa: 0x48d3882e Kod wyjątku: 0xc0000005 Przesunięcie błędu:
0x00c9a1d3 Identyfikator procesu powodującego błąd: 0x1498 Godzina uruchomienia aplikacji
powodującej błąd: 0x01cc254ac9cd1be7 Ścieżka aplikacji powodującej błąd: C:\Users\W\Desktop\Programy\Portable.Adobe.Photoshop.CS4-PL\App\Photoshop\Photoshop.exe
Ścieżka
modułu powodującego błąd: C:\Users\W\Desktop\Programy\Portable.Adobe.Photoshop.CS4-PL\App\Photoshop\Photoshop.exe
Identyfikator
raportu: 132e40a0-913e-11e0-9218-00037ac8c0f4
Error - 2011-06-15 05:32:31 | Computer Name = W-Komputer | Source = Application Error | ID = 1000
Description = Nazwa aplikacji powodującej błąd: Photoshop.exe, wersja: 11.0.0.0,
sygnatura czasowa: 0x48d3882e Nazwa modułu powodującego błąd: Photoshop.exe, wersja:
11.0.0.0, sygnatura czasowa: 0x48d3882e Kod wyjątku: 0xc0000005 Przesunięcie błędu:
0x00c9a1d3 Identyfikator procesu powodującego błąd: 0x87c Godzina uruchomienia aplikacji
powodującej błąd: 0x01cc2b3f1c6ef3d9 Ścieżka aplikacji powodującej błąd: C:\Users\W\Desktop\Programy\Portable.Adobe.Photoshop.CS4-PL\App\Photoshop\Photoshop.exe
Ścieżka
modułu powodującego błąd: C:\Users\W\Desktop\Programy\Portable.Adobe.Photoshop.CS4-PL\App\Photoshop\Photoshop.exe
Identyfikator
raportu: 63fab573-9732-11e0-9766-00037ac8c0f4
[ Media Center Events ]
Error - 2010-04-24 15:21:39 | Computer Name = W-Komputer | Source = MCUpdate | ID = 0
Description = 21:21:39 - Błąd podczas nawiązywania połączenia z Internetem. 21:21:39
- Nie można skontaktować się z serwerem..
Error - 2010-04-24 15:21:50 | Computer Name = W-Komputer | Source = MCUpdate | ID = 0
Description = 21:21:44 - Błąd podczas nawiązywania połączenia z Internetem. 21:21:44
- Nie można skontaktować się z serwerem..
[ OSession Events ]
Error - 2010-01-31 05:51:34 | Computer Name = W-Komputer | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 124
seconds with 120 seconds of active time. This session ended with a crash.
Error - 2011-06-05 17:01:12 | Computer Name = W-Komputer | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 1, Application Name: Microsoft Office Excel, Application Version:
12.0.4518.1014, Microsoft Office Version: 12.0.6215.1000. This session lasted 6245
seconds with 4140 seconds of active time. This session ended with a crash.
Error - 2011-06-05 17:37:10 | Computer Name = W-Komputer | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 1, Application Name: Microsoft Office Excel, Application Version:
12.0.4518.1014, Microsoft Office Version: 12.0.6215.1000. This session lasted 2141
seconds with 1440 seconds of active time. This session ended with a crash.
Error - 2011-06-07 13:11:09 | Computer Name = W-Komputer | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 1, Application Name: Microsoft Office Excel, Application Version:
12.0.4518.1014, Microsoft Office Version: 12.0.6215.1000. This session lasted 31076
seconds with 2160 seconds of active time. This session ended with a crash.
[ System Events ]
Error - 2011-06-16 13:22:04 | Computer Name = W-Komputer | Source = atikmdag | ID = 43029
Description = Display is not active
Error - 2011-06-16 13:25:13 | Computer Name = W-Komputer | Source = atikmdag | ID = 52236
Description = CPLIB :: General - Invalid Parameter
Error - 2011-06-16 13:25:13 | Computer Name = W-Komputer | Source = atikmdag | ID = 43029
Description = Display is not active
Error - 2011-06-16 17:49:26 | Computer Name = W-Komputer | Source = atikmdag | ID = 52236
Description = CPLIB :: General - Invalid Parameter
Error - 2011-06-16 17:49:26 | Computer Name = W-Komputer | Source = atikmdag | ID = 43029
Description = Display is not active
Error - 2011-06-17 05:56:50 | Computer Name = W-Komputer | Source = atikmdag | ID = 52236
Description = CPLIB :: General - Invalid Parameter
Error - 2011-06-17 05:56:50 | Computer Name = W-Komputer | Source = atikmdag | ID = 43029
Description = Display is not active
Error - 2011-06-17 09:33:01 | Computer Name = W-Komputer | Source = volsnap | ID = 393252
Description = Wykonywanie kopii w tle woluminu C: zostało przerwane, ponieważ nie
można powiększyć magazynu kopii w tle z powodu limitu wprowadzonego przez użytkownika.
Error - 2011-06-18 03:44:26 | Computer Name = W-Komputer | Source = atikmdag | ID = 52236
Description = CPLIB :: General - Invalid Parameter
Error - 2011-06-18 03:44:26 | Computer Name = W-Komputer | Source = atikmdag | ID = 43029
Description = Display is not active
< End of report >
Dodano 18.06.2011 09:16:59:
- Kod: Zaznacz wszystko
OTL logfile created on: 2011-06-18 10:06:37 - Run 1
OTL by OldTimer - Version 3.2.24.1 Folder = C:\Users\W\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
3,22 Gb Total Physical Memory | 1,98 Gb Available Physical Memory | 61,67% Memory free
6,43 Gb Paging File | 5,10 Gb Available in Paging File | 79,34% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 85,84 Gb Total Space | 25,25 Gb Free Space | 29,42% Space Free | Partition Type: NTFS
Drive D: | 64,81 Gb Total Space | 26,96 Gb Free Space | 41,59% Space Free | Partition Type: NTFS
Drive E: | 145,97 Gb Total Space | 51,70 Gb Free Space | 35,42% Space Free | Partition Type: NTFS
Computer Name: W-KOMPUTER | User Name: W | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days
[color=#E56717]========== Processes (SafeList) ==========[/color]
PRC - [2011-06-18 10:05:10 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Users\W\Desktop\OTL.exe
PRC - [2011-06-07 18:55:38 | 001,017,344 | ---- | M] (Badoo) -- C:\ProgramData\Badoo\Badoo Desktop\1.5.3.949\Badoo.Desktop.exe
PRC - [2011-06-06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011-06-01 15:14:56 | 013,349,472 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe
PRC - [2011-05-29 09:11:28 | 000,449,584 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2011-05-29 09:11:28 | 000,366,640 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2011-05-10 14:10:58 | 003,459,712 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2011-05-10 14:10:57 | 000,042,184 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2011-04-30 02:04:10 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011-02-25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2011-01-20 11:20:12 | 001,305,408 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
PRC - [2011-01-05 23:23:48 | 000,222,568 | ---- | M] (Teruten) -- C:\Windows\System32\FsUsbExService.Exe
PRC - [2010-12-09 20:52:46 | 002,749,856 | ---- | M] (TOSHIBA CORPORATION.) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
PRC - [2010-11-20 14:17:47 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2010-11-19 11:50:32 | 002,885,056 | ---- | M] (TOSHIBA CORPORATION.) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtProc.exe
PRC - [2010-11-02 10:38:00 | 000,341,392 | ---- | M] (TOSHIBA CORPORATION.) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosOBEX.exe
PRC - [2010-09-06 16:18:00 | 000,746,384 | ---- | M] (TOSHIBA CORPORATION.) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHSP.exe
PRC - [2010-08-23 16:12:00 | 000,677,264 | ---- | M] (TOSHIBA CORPORATION.) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
PRC - [2010-08-23 16:12:00 | 000,087,440 | ---- | M] (TOSHIBA CORPORATION.) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
PRC - [2010-04-12 10:46:00 | 000,152,944 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
PRC - [2010-03-25 15:39:22 | 000,490,280 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Update\NASvc.exe
PRC - [2009-04-03 18:17:00 | 000,447,816 | ---- | M] (TOSHIBA CORPORATION.) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
PRC - [2007-12-06 21:03:41 | 000,660,768 | ---- | M] (ABBYY (BIT Software)) -- C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
[color=#E56717]========== Modules (SafeList) ==========[/color]
MOD - [2011-06-18 10:05:10 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Users\W\Desktop\OTL.exe
MOD - [2011-05-10 14:10:55 | 000,199,792 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\snxhk.dll
MOD - [2010-11-20 13:55:09 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
SRV - [2011-06-06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011-05-29 09:11:28 | 000,366,640 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011-05-10 14:10:57 | 000,042,184 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2011-01-05 23:23:48 | 000,222,568 | ---- | M] (Teruten) [Auto | Running] -- C:\Windows\System32\FsUsbExService.Exe -- (FsUsbExService)
SRV - [2010-06-15 16:30:41 | 001,343,400 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2010-04-12 10:46:00 | 000,152,944 | ---- | M] (TOSHIBA CORPORATION) [On_Demand | Running] -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe -- (TOSHIBA Bluetooth Service)
SRV - [2010-03-25 15:39:22 | 000,490,280 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2010-02-20 21:11:52 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [Disabled | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009-08-18 03:36:08 | 000,176,128 | ---- | M] (AMD) [Disabled | Stopped] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2009-07-14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009-07-14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009-07-14 03:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007-12-06 21:03:41 | 000,660,768 | ---- | M] (ABBYY (BIT Software)) [Auto | Running] -- C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe -- (ABBYY.Licensing.FineReader.Professional.9.0)
SRV - [2007-05-31 16:21:24 | 000,379,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm)
SRV - [2007-05-31 16:21:18 | 000,183,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr)
SRV - [2006-05-01 18:56:30 | 000,576,000 | ---- | M] (FileZilla Project) [Disabled | Stopped] -- C:\Program Files\xampp\FileZillaFTP\FileZillaServer.exe -- (FileZilla Server)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV - [2011-05-29 09:11:30 | 000,039,984 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2011-05-29 09:11:20 | 000,022,712 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2011-05-10 14:03:54 | 000,441,176 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011-05-10 14:03:44 | 000,307,928 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011-05-10 14:02:37 | 000,049,240 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011-05-10 13:59:56 | 000,025,432 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011-05-10 13:59:44 | 000,053,592 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2011-05-10 13:59:35 | 000,019,544 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2011-03-18 13:46:10 | 000,073,096 | ---- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ftser2k.sys -- (FTSER2K)
DRV - [2011-03-17 11:22:34 | 000,218,688 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2011-01-05 23:23:40 | 000,042,112 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2010-12-21 07:55:02 | 000,123,648 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss_bmdm.sys -- (ss_bmdm)
DRV - [2010-12-21 07:55:02 | 000,100,224 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss_bserd.sys -- (ss_bserd)
DRV - [2010-12-21 07:55:02 | 000,098,432 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss_bbus.sys -- (ss_bbus) SAMSUNG USB Mobile Device (WDM)
DRV - [2010-12-21 07:55:02 | 000,014,848 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss_bmdfl.sys -- (ss_bmdfl) SAMSUNG USB Mobile Modem (Filter)
DRV - [2010-12-12 00:08:40 | 000,234,800 | ---- | M] (TOSHIBA CORPORATION) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tosrfbd.sys -- (tosrfbd)
DRV - [2010-12-02 19:29:00 | 000,056,760 | ---- | M] (TOSHIBA CORPORATION) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tosrfusb.sys -- (Tosrfusb)
DRV - [2010-11-29 11:47:00 | 000,070,448 | ---- | M] (TOSHIBA Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\tosrfcom.sys -- (Tosrfcom)
DRV - [2010-11-20 14:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\vmbus.sys -- (vmbus)
DRV - [2010-11-20 14:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010-11-20 14:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\storvsc.sys -- (storvsc)
DRV - [2010-11-20 12:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010-11-20 12:21:14 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2010-11-20 11:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WINUSB)
DRV - [2010-11-20 11:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010-11-20 11:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\vms3cap.sys -- (s3cap)
DRV - [2010-11-11 10:26:00 | 000,042,672 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tosrfbnp.sys -- (tosrfbnp)
DRV - [2010-08-30 10:48:00 | 000,080,064 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Tosrfhid.sys -- (Tosrfhid)
DRV - [2010-06-18 16:44:00 | 000,015,160 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tosrfec.sys -- (tosrfec)
DRV - [2010-04-26 11:48:00 | 000,053,760 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TosRfSnd.sys -- (TosRfSnd)
DRV - [2009-10-22 16:11:14 | 000,057,800 | ---- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ftdibus.sys -- (FTDIBUS)
DRV - [2009-09-21 18:58:28 | 001,218,048 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2009-08-18 04:48:06 | 004,994,560 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2009-07-24 11:31:00 | 000,021,608 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tosrfnds.sys -- (tosrfnds)
DRV - [2009-07-14 00:02:53 | 000,311,296 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\yk62x86.sys -- (yukonw7)
DRV - [2009-06-17 11:59:00 | 000,046,984 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tosporte.sys -- (tosporte)
DRV - [2009-01-08 00:39:36 | 000,020,744 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\BtHidBus.sys -- (BtHidBus)
DRV - [2008-12-07 13:44:54 | 000,030,088 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\btnetBus.sys -- (btnetBUs)
DRV - [2008-07-02 15:58:48 | 000,026,248 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\IvtBtBus.sys -- (IvtBtBUs)
DRV - [2007-11-09 06:00:52 | 000,023,640 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\TVALZ_O.SYS -- (TVALZ)
DRV - [2005-11-14 14:28:00 | 000,034,176 | ---- | M] (O2Micro ) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\o2media.sys -- (O2MDRDR)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2385338383-1099639079-1865174489-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 25 53 D5 52 25 F0 CA 01 [binary data]
IE - HKU\S-1-5-21-2385338383-1099639079-1865174489-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2385338383-1099639079-1865174489-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
IE - HKU\S-1-5-21-2385338383-1099639079-1865174489-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = 217.98.20.20:8080
[color=#E56717]========== FireFox ==========[/color]
FF - prefs.js..extensions.enabledItems: firebug@software.joehewitt.com:1.6.2
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: yslow@yahoo-inc.com:2.1.0
FF - prefs.js..extensions.enabledItems: {46551EC9-40F0-4e47-8E18-8E5CF550CFB8}:1.1
FF - prefs.js..extensions.enabledItems: {ea2b95c2-9be8-48ed-bdd1-5fcd2ad0ff99}:0.3.8.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {888d99e7-e8b5-46a3-851e-1ec45da1e644}:4.0.2
FF - prefs.js..extensions.enabledItems: check4change-owner@mozdev.org:1.8.2
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: KavAntiBanner@Kaspersky.ru:11.0.2.556
FF - prefs.js..extensions.enabledItems: linkfilter@kaspersky.ru:11.0.2.556
FF - prefs.js..network.proxy.ftp: "81.25.142.66"
FF - prefs.js..network.proxy.ftp_port: 3128
FF - prefs.js..network.proxy.gopher: "81.25.142.66"
FF - prefs.js..network.proxy.gopher_port: 3128
FF - prefs.js..network.proxy.http: "81.25.142.66"
FF - prefs.js..network.proxy.http_port: 3128
FF - prefs.js..network.proxy.socks: "81.25.142.66"
FF - prefs.js..network.proxy.socks_port: 3128
FF - prefs.js..network.proxy.ssl: "81.25.142.66"
FF - prefs.js..network.proxy.ssl_port: 3128
FF - HKLM\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2011-06-16 18:10:39 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-04-30 02:04:12 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-06-16 23:53:10 | 000,000,000 | ---D | M]
[2009-11-09 16:53:31 | 000,000,000 | ---D | M] (No name found) -- C:\Users\W\AppData\Roaming\mozilla\Extensions
[2011-06-04 10:39:50 | 000,000,000 | ---D | M] (No name found) -- C:\Users\W\AppData\Roaming\mozilla\Firefox\Profiles\ekvi7n47.default\extensions
[2010-10-17 14:57:09 | 000,000,000 | ---D | M] (Edit Cookies) -- C:\Users\W\AppData\Roaming\mozilla\Firefox\Profiles\ekvi7n47.default\extensions\{ea2b95c2-9be8-48ed-bdd1-5fcd2ad0ff99}
[2010-12-03 13:08:16 | 000,000,000 | ---D | M] (YSlow) -- C:\Users\W\AppData\Roaming\mozilla\Firefox\Profiles\ekvi7n47.default\extensions\yslow@yahoo-inc.com
[2011-06-16 18:02:40 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010-04-28 10:06:21 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010-08-29 13:46:43 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010-10-29 10:29:23 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011-01-03 14:32:08 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
File not found (No name found) --
[2011-06-16 18:10:39 | 000,000,000 | ---D | M] (avast! WebRep) -- C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF
() (No name found) -- C:\USERS\W\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\EKVI7N47.DEFAULT\EXTENSIONS\{46551EC9-40F0-4E47-8E18-8E5CF550CFB8}.XPI
() (No name found) -- C:\USERS\W\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\EKVI7N47.DEFAULT\EXTENSIONS\{888D99E7-E8B5-46A3-851E-1EC45DA1E644}.XPI
() (No name found) -- C:\USERS\W\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\EKVI7N47.DEFAULT\EXTENSIONS\CHECK4CHANGE-OWNER@MOZDEV.ORG.XPI
() (No name found) -- C:\USERS\W\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\EKVI7N47.DEFAULT\EXTENSIONS\FIREBUG@SOFTWARE.JOEHEWITT.COM.XPI
[2011-04-30 02:04:09 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll
[2010-11-12 19:53:06 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010-01-01 10:00:00 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010-01-01 10:00:00 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2010-01-01 10:00:00 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2010-01-01 10:00:00 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010-01-01 10:00:00 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2010-01-01 10:00:00 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml
O1 HOSTS File: ([2009-06-10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKU\S-1-5-21-2385338383-1099639079-1865174489-1000\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [ITSecMng] C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe (TOSHIBA CORPORATION)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NBAgent] C:\Program Files\Nero\Nero 10\Nero BackItUp\NBAgent.exe (Nero AG)
O4 - HKU\S-1-5-21-2385338383-1099639079-1865174489-1000..\Run: [Badoo Desktop] C:\ProgramData\Badoo\Badoo Desktop\1.5.3.949\Badoo.Desktop.exe (Badoo)
O4 - HKU\S-1-5-21-2385338383-1099639079-1865174489-1000..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O7 - HKU\S-1-5-21-2385338383-1099639079-1865174489-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 95 00 00 00 [binary data]
O8 - Extra context menu item: 使用快车3下载 - C:\Users\W\AppData\Roaming\FlashGetBHO\GetUrl.htm ()
O8 - Extra context menu item: 使用快车3下载全部链接 - C:\Users\W\AppData\Roaming\FlashGetBHO\GetAllUrl.htm ()
O9 - Extra Button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-06-10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2011-04-25 14:19:36 | 000,202,334 | ---- | M] () - C:\AutoMapaSetupLog.txt -- [ NTFS ]
O33 - MountPoints2\{150772ff-0429-11df-98d5-f615d481e9e2}\Shell - "" = AutoRun
O33 - MountPoints2\{150772ff-0429-11df-98d5-f615d481e9e2}\Shell\AutoRun\command - "" = H:\LaunchU3.exe -a
O33 - MountPoints2\{7f45b89e-5211-11e0-8394-00238b147be7}\Shell - "" = AutoRun
O33 - MountPoints2\{7f45b89e-5211-11e0-8394-00238b147be7}\Shell\AutoRun\command - "" = H:\ICM_Manager.exe
O33 - MountPoints2\H\Shell - "" = AutoRun
O33 - MountPoints2\H\Shell\AutoRun\command - "" = H:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2011-06-18 10:07:34 | 000,607,310 | R--- | C] (Swearware) -- C:\Users\W\Desktop\dds.scr
[2011-06-18 10:05:02 | 000,579,072 | ---- | C] (OldTimer Tools) -- C:\Users\W\Desktop\OTL.exe
[2011-06-16 18:11:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus
[2011-06-16 18:11:14 | 000,019,544 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswFsBlk.sys
[2011-06-16 18:11:13 | 000,307,928 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
[2011-06-16 18:11:08 | 000,025,432 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr.sys
[2011-06-16 18:11:07 | 000,049,240 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswTdi.sys
[2011-06-16 18:11:04 | 000,441,176 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys
[2011-06-16 18:10:57 | 000,053,592 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys
[2011-06-16 18:10:34 | 000,199,304 | ---- | C] (AVAST Software) -- C:\Windows\System32\aswBoot.exe
[2011-06-16 18:10:34 | 000,040,112 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2011-06-16 18:10:18 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2011-06-16 18:10:18 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2011-06-16 18:02:21 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2011-06-16 08:03:25 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2011-06-16 08:03:23 | 001,797,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2011-06-16 08:03:23 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
[2011-06-16 08:03:23 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2011-06-14 23:56:43 | 000,000,000 | ---D | C] -- C:\odpowiedzi_Karolina_Deda_1_ZZIP 15A C7
[2011-06-14 18:39:21 | 000,000,000 | ---D | C] -- C:\Users\W\AppData\Roaming\.oit
[2011-06-14 18:31:30 | 000,000,000 | ---D | C] -- C:\Users\W\Desktop\student
[2011-06-12 18:27:25 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu 10
[2011-06-05 11:34:17 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mdimon.dll
[2011-05-25 10:11:02 | 000,027,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Diskdump.sys
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\Users\W\Desktop\*.tmp files -> C:\Users\W\Desktop\*.tmp -> ]
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2011-06-18 10:13:12 | 005,242,880 | -HS- | M] () -- C:\Users\W\ntuser.dat
[2011-06-18 10:07:42 | 000,607,310 | R--- | M] (Swearware) -- C:\Users\W\Desktop\dds.scr
[2011-06-18 10:05:10 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Users\W\Desktop\OTL.exe
[2011-06-18 09:52:04 | 000,019,792 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011-06-18 09:52:04 | 000,019,792 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011-06-18 09:44:48 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2011-06-18 09:44:26 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011-06-18 09:44:18 | 2590,789,632 | -HS- | M] () -- C:\hiberfil.sys
[2011-06-17 23:07:41 | 001,295,054 | -H-- | M] () -- C:\Users\W\AppData\Local\IconCache.db
[2011-06-17 12:15:44 | 000,004,096 | -H-- | M] () -- C:\Users\W\AppData\Local\keyfile3.drm
[2011-06-16 19:22:13 | 000,462,816 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011-06-16 18:10:57 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
[2011-06-16 12:05:20 | 000,128,680 | ---- | M] () -- C:\Users\W\AppData\Local\GDIPFONTCACHEV1.DAT
[2011-06-16 08:06:40 | 000,002,653 | ---- | M] () -- C:\Windows\System32\MRT.INI
[2011-06-14 18:28:47 | 001,549,696 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2011-06-14 18:28:47 | 000,697,912 | ---- | M] () -- C:\Windows\System32\perfh015.dat
[2011-06-14 18:28:47 | 000,616,008 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011-06-14 18:28:47 | 000,134,990 | ---- | M] () -- C:\Windows\System32\perfc015.dat
[2011-06-14 18:28:47 | 000,106,388 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011-06-12 18:27:44 | 000,000,977 | ---- | M] () -- C:\Users\Public\Desktop\Gadu-Gadu 10.lnk
[2011-06-12 18:16:53 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2011-06-05 11:34:20 | 000,000,412 | ---- | M] () -- C:\Windows\ODBC.INI
[2011-05-29 09:11:30 | 000,039,984 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011-05-29 09:11:20 | 000,022,712 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\Users\W\Desktop\*.tmp files -> C:\Users\W\Desktop\*.tmp -> ]
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2011-06-17 12:15:44 | 000,004,096 | -H-- | C] () -- C:\Users\W\AppData\Local\keyfile3.drm
[2011-06-16 23:53:10 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
[2011-06-16 08:06:40 | 000,002,653 | ---- | C] () -- C:\Windows\System32\MRT.INI
[2011-06-12 18:27:44 | 000,000,977 | ---- | C] () -- C:\Users\Public\Desktop\Gadu-Gadu 10.lnk
[2011-06-12 18:27:29 | 000,000,973 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gadu-Gadu 10.lnk
[2011-06-05 11:34:20 | 000,000,412 | ---- | C] () -- C:\Windows\ODBC.INI
[2011-03-19 17:58:17 | 000,110,592 | ---- | C] () -- C:\Windows\System32\FsUsbExDevice.Dll
[2011-03-19 17:58:17 | 000,042,112 | ---- | C] () -- C:\Windows\System32\FsUsbExDisk.Sys
[2011-03-04 12:21:59 | 000,080,896 | ---- | C] () -- C:\Windows\System32\RDVGHelper.exe
[2011-03-04 12:20:41 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2011-03-04 12:20:39 | 000,053,600 | ---- | C] () -- C:\Windows\System32\dosx.exe
[2011-03-04 01:51:14 | 001,295,054 | -H-- | C] () -- C:\Users\W\AppData\Local\IconCache.db
[2011-03-03 19:07:24 | 000,006,656 | ---- | C] () -- C:\Windows\System32\bcmwlrc.dll
[2011-03-03 12:57:38 | 000,036,864 | ---- | C] () -- C:\Windows\StmClean.exe
[2011-01-04 17:10:56 | 000,974,848 | ---- | C] () -- C:\Windows\System32\cis-2.4.dll
[2011-01-04 17:10:56 | 000,081,920 | ---- | C] () -- C:\Windows\System32\issacapi_bs-2.3.dll
[2011-01-04 17:10:56 | 000,065,536 | ---- | C] () -- C:\Windows\System32\issacapi_pe-2.3.dll
[2011-01-04 17:10:56 | 000,057,344 | ---- | C] () -- C:\Windows\System32\issacapi_se-2.3.dll
[2010-10-18 22:51:37 | 000,000,204 | ---- | C] () -- C:\Windows\System32\secustat.dat
[2010-10-18 22:50:47 | 000,000,025 | ---- | C] () -- C:\Windows\libem.INI
[2010-09-10 22:45:00 | 000,000,025 | -H-- | C] () -- C:\Windows\sysdws.dat
[2010-08-22 19:35:05 | 000,165,376 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2010-07-06 23:29:04 | 000,000,100 | ---- | C] () -- C:\Windows\Kit.ini
[2010-05-14 13:36:20 | 000,001,013 | ---- | C] () -- C:\Windows\APDFPRP.INI
[2009-11-30 14:49:19 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2009-11-16 15:04:38 | 000,000,181 | ---- | C] () -- C:\Windows\BsMobileModel.ini
[2009-11-09 13:23:14 | 000,604,140 | -HS- | C] () -- C:\Windows\System32\drivers\ISwift3(33).dat
[2009-11-09 13:23:14 | 000,604,140 | -HS- | C] () -- C:\Windows\System32\drivers\ISwift3(26).dat
[2009-11-09 12:38:41 | 000,128,680 | ---- | C] () -- C:\Users\W\AppData\Local\GDIPFONTCACHEV1.DAT
[2009-11-09 12:21:27 | 001,549,696 | ---- | C] () -- C:\Windows\System32\PerfStringBackup.INI
[2009-11-09 12:12:05 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2009-07-14 10:07:57 | 000,697,912 | ---- | C] () -- C:\Windows\System32\perfh015.dat
[2009-07-14 10:07:57 | 000,337,158 | ---- | C] () -- C:\Windows\System32\perfi015.dat
[2009-07-14 10:07:57 | 000,134,990 | ---- | C] () -- C:\Windows\System32\perfc015.dat
[2009-07-14 10:07:57 | 000,038,710 | ---- | C] () -- C:\Windows\System32\perfd015.dat
[2009-07-14 06:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009-07-14 06:33:53 | 000,462,816 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2009-07-14 04:05:48 | 000,616,008 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2009-07-14 04:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2009-07-14 04:05:48 | 000,106,388 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2009-07-14 04:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2009-07-14 04:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2009-07-14 04:04:57 | 000,001,405 | ---- | C] () -- C:\Windows\msdfmap.ini
[2009-07-14 04:04:23 | 000,000,478 | ---- | C] () -- C:\Windows\win.ini
[2009-07-14 04:04:23 | 000,000,219 | ---- | C] () -- C:\Windows\system.ini
[2009-07-14 04:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2009-07-14 02:55:09 | 000,587,776 | ---- | C] () -- C:\Windows\System32\hpotscl1.dll
[2009-07-14 01:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009-07-14 01:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009-07-14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009-07-13 23:41:05 | 000,000,718 | ---- | C] () -- C:\Windows\System32\mscdexnt.exe
[2009-07-13 23:41:04 | 000,002,842 | ---- | C] () -- C:\Windows\System32\redir.exe
[2009-07-13 23:41:02 | 000,000,882 | ---- | C] () -- C:\Windows\System32\share.exe
[2009-07-13 23:41:02 | 000,000,882 | ---- | C] () -- C:\Windows\System32\fastopen.exe
[2009-07-13 23:41:01 | 000,019,694 | ---- | C] () -- C:\Windows\System32\GRAPHICS.COM
[2009-07-13 23:40:59 | 000,014,710 | ---- | C] () -- C:\Windows\System32\KB16.COM
[2009-07-13 23:40:57 | 000,007,052 | ---- | C] () -- C:\Windows\System32\nlsfunc.exe
[2009-07-13 23:40:57 | 000,001,131 | ---- | C] () -- C:\Windows\System32\LOADFIX.COM
[2009-07-13 23:40:56 | 000,039,274 | ---- | C] () -- C:\Windows\System32\mem.exe
[2009-07-13 23:40:54 | 000,011,753 | ---- | C] () -- C:\Windows\System32\setver.exe
[2009-07-13 23:40:52 | 000,020,634 | ---- | C] () -- C:\Windows\System32\debug.exe
[2009-07-13 23:40:51 | 000,008,424 | ---- | C] () -- C:\Windows\System32\exe2bin.exe
[2009-07-13 23:40:50 | 000,012,642 | ---- | C] () -- C:\Windows\System32\edlin.exe
[2009-07-13 23:40:49 | 000,012,498 | ---- | C] () -- C:\Windows\System32\append.exe
[2009-07-13 23:40:48 | 000,050,648 | ---- | C] () -- C:\Windows\System32\COMMAND.COM
[2009-07-13 23:40:44 | 000,027,097 | ---- | C] () -- C:\Windows\System32\country.sys
[2009-07-13 23:40:43 | 000,042,809 | ---- | C] () -- C:\Windows\System32\KEY01.SYS
[2009-07-13 23:40:43 | 000,042,537 | ---- | C] () -- C:\Windows\System32\KEYBOARD.SYS
[2009-07-13 23:40:41 | 000,009,029 | ---- | C] () -- C:\Windows\System32\ANSI.SYS
[2009-07-13 23:40:40 | 000,004,768 | ---- | C] () -- C:\Windows\System32\HIMEM.SYS
[2009-07-13 23:40:39 | 000,029,274 | ---- | C] () -- C:\Windows\System32\NTDOS412.SYS
[2009-07-13 23:40:35 | 000,029,370 | ---- | C] () -- C:\Windows\System32\NTDOS411.SYS
[2009-07-13 23:40:31 | 000,029,146 | ---- | C] () -- C:\Windows\System32\NTDOS404.SYS
[2009-07-13 23:40:27 | 000,029,146 | ---- | C] () -- C:\Windows\System32\NTDOS804.SYS
[2009-07-13 23:40:23 | 000,027,866 | ---- | C] () -- C:\Windows\System32\NTDOS.SYS
[2009-07-13 23:40:19 | 000,035,536 | ---- | C] () -- C:\Windows\System32\NTIO412.SYS
[2009-07-13 23:40:17 | 000,035,776 | ---- | C] () -- C:\Windows\System32\NTIO411.SYS
[2009-07-13 23:40:15 | 000,034,672 | ---- | C] () -- C:\Windows\System32\NTIO404.SYS
[2009-07-13 23:40:13 | 000,034,672 | ---- | C] () -- C:\Windows\System32\NTIO804.SYS
[2009-07-13 23:40:11 | 000,033,952 | ---- | C] () -- C:\Windows\System32\NTIO.SYS
[2009-07-13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\System32\msjetoledb40.dll
[2009-07-13 22:29:46 | 000,013,312 | ---- | C] () -- C:\Windows\System32\win87em.dll
[2009-06-18 20:29:04 | 000,197,654 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2009-06-10 23:42:32 | 000,069,886 | ---- | C] () -- C:\Windows\System32\edit.com
[2009-06-10 23:39:59 | 000,060,124 | ---- | C] () -- C:\Windows\System32\tcpmon.ini
[2009-06-10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2009-04-26 11:53:48 | 000,000,579 | ---- | C] () -- C:\Windows\mn02.ini
[2009-02-18 18:55:22 | 000,294,912 | ---- | C] () -- C:\Windows\System32\ATIODE.exe
[2009-02-03 21:52:04 | 000,045,056 | ---- | C] () -- C:\Windows\System32\ATIODCLI.exe
[2008-12-07 13:44:54 | 000,030,088 | ---- | C] () -- C:\Windows\System32\drivers\btnetBus.sys
[2003-04-08 11:40:22 | 000,005,679 | ---- | C] () -- C:\Windows\System32\OUTLPERF.INI
[2003-01-09 05:03:28 | 000,000,841 | ---- | C] () -- C:\Windows\kaillera.ini
[2003-01-09 05:03:28 | 000,000,529 | ---- | C] () -- C:\Windows\n02.ini
[color=#E56717]========== LOP Check ==========[/color]
[2011-06-14 18:47:10 | 000,000,000 | ---D | M] -- C:\Users\W\AppData\Roaming\.oit
[2011-02-27 17:01:14 | 000,000,000 | ---D | M] -- C:\Users\W\AppData\Roaming\App64
[2011-02-22 11:36:58 | 000,000,000 | ---D | M] -- C:\Users\W\AppData\Roaming\BITS
[2009-12-28 15:23:19 | 000,000,000 | ---D | M] -- C:\Users\W\AppData\Roaming\DAEMON Tools Lite
[2010-05-10 20:29:37 | 000,000,000 | ---D | M] -- C:\Users\W\AppData\Roaming\DMCache
[2011-05-20 19:55:22 | 000,000,000 | ---D | M] -- C:\Users\W\AppData\Roaming\Fepym
[2010-10-18 22:50:36 | 000,000,000 | ---D | M] -- C:\Users\W\AppData\Roaming\FlashGet
[2010-10-18 22:50:21 | 000,000,000 | ---D | M] -- C:\Users\W\AppData\Roaming\FlashGetBHO
[2009-11-09 23:27:30 | 000,000,000 | ---D | M] -- C:\Users\W\AppData\Roaming\fltk.org
[2009-11-09 17:20:18 | 000,000,000 | ---D | M] -- C:\Users\W\AppData\Roaming\Gadu-Gadu
[2011-03-29 12:34:01 | 000,000,000 | ---D | M] -- C:\Users\W\AppData\Roaming\Gadu-Gadu 10
[2011-02-24 00:25:47 | 000,000,000 | ---D | M] -- C:\Users\W\AppData\Roaming\GetRightToGo
[2010-05-18 14:37:38 | 000,000,000 | ---D | M] -- C:\Users\W\AppData\Roaming\GHISLER
[2011-01-08 14:27:18 | 000,000,000 | ---D | M] -- C:\Users\W\AppData\Roaming\gtk-2.0
[2011-04-26 20:32:38 | 000,000,000 | ---D | M] -- C:\Users\W\AppData\Roaming\ipla
[2010-03-02 15:24:22 | 000,000,000 | ---D | M] -- C:\Users\W\AppData\Roaming\Lunascape
[2009-12-25 23:04:04 | 000,000,000 | ---D | M] -- C:\Users\W\AppData\Roaming\Nowe Gadu-Gadu
[2010-02-05 18:22:05 | 000,000,000 | ---D | M] -- C:\Users\W\AppData\Roaming\OpenFM
[2011-04-19 18:02:02 | 000,000,000 | ---D | M] -- C:\Users\W\AppData\Roaming\OpenOffice.org
[2010-02-28 21:31:08 | 000,000,000 | ---D | M] -- C:\Users\W\AppData\Roaming\Opera
[2011-03-19 17:56:52 | 000,000,000 | ---D | M] -- C:\Users\W\AppData\Roaming\Samsung
[2010-06-07 17:01:07 | 000,000,000 | ---D | M] -- C:\Users\W\AppData\Roaming\Thinstall
[2010-07-17 22:32:39 | 000,000,000 | ---D | M] -- C:\Users\W\AppData\Roaming\Ubisoft
[2011-03-03 13:15:14 | 000,000,000 | ---D | M] -- C:\Users\W\AppData\Roaming\uTorrent
[2011-03-03 19:00:33 | 000,000,000 | ---D | M] -- C:\Users\W\AppData\Roaming\WinBatch
[2011-04-05 11:25:37 | 000,000,000 | ---D | M] -- C:\Users\W\AppData\Roaming\YCanPDF
[2011-05-20 19:56:49 | 000,000,000 | ---D | M] -- C:\Users\W\AppData\Roaming\Yhka
[2010-04-09 23:19:57 | 000,032,608 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU(29).TXT
[2010-01-08 19:33:28 | 000,031,004 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU(38).TXT
[2011-05-06 12:34:43 | 000,032,604 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[color=#E56717]========== Purity Check ==========[/color]
< End of report >
