Komputer strasznie wolno chodzi

**Posty:** 154 · przez **Darkman0** 06 Paź 2012, 03:12

Witam. Mam problem z szybkością komputera. Konkretniej, strasznie długo się włącza i bardzo często reaguje z opóźnieniem (np. gdy załaduje się pulpit, można nacisnąć prawym przyciskiem gdziekolwiek, ale okno dialogowe wyskoczy np. 30 sekund później). Innym przykładem było powiedzmy zminimalizowanie gry, zmaksymalizowanie przeglądarki, która cały czas działała w tle i wpisywanie adresu strony w pasku. Można napisać cały adres, a na ekranie nie pojawi się ani jedna litera. Dopiero po kilkunastu sekundach załapuje i powoli się literki pojawiają jedna po drugiej.
Dodam, że wszystkie gry działają bardzo wydajnie, filmy też się odtwarzają całkiem spoko, ale na włączenie powiedzmy Panelu Sterowania muszę poczekać jakieś kilka sekund. Jak można rozwiązać ten problem ?

**Posty:** 39 · przez **polako** 06 Paź 2012, 21:18

moze podasz PELNY I DOKLADNY kofing kompa? sprawdz programem AIDA64. moze masz wirusa? przeskanuj antywirusem.

**Posty:** 154 · przez **Darkman0** 07 Paź 2012, 02:04

No to tutaj PEŁNY I DOKŁADNY konfig kompa

Wirusów nie mam, skanowałem Avastem.

**Posty:** 18165 · przez **wojtas** 08 Paź 2012, 16:33

Proszę zastosować się do obowiązkowych zasad w dziale bezpieczeństwo
- wstaw wymagane logi zgodnie ze swoim systemem
- wrzuć logi na forum w formie załącznika,

**Posty:** 154 · przez **Darkman0** 13 Paź 2012, 00:33

A no fakt, sorki, zapomniałem o tych logach, pisałem posta w nocy, śpiący byłem.

GMER:

Kod: Zaznacz wszystko: GMER 1.0.15.15641 - http://www.gmer.net Rootkit scan 2012-10-12 23:53:16 Windows 5.1.2600 Dodatek Service Pack 3 Harddisk1\DR1 -> \Device\Ide\IdeDeviceP0T1L0-c ST3802110A rev.3.AAE Running: gmer.exe; Driver: C:\DOCUME~1\Wojciech\USTAWI~1\Temp\awldapoc.sys ---- System - GMER 1.0.15 ---- SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwAddBootEntry [0xAB25E708] SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwAllocateVirtualMemory [0xAB3097C8] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwAssignProcessToJobObject [0xAB25F11C] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwClose [0xAB2A0401] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateEvent [0xAB269F28] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateEventPair [0xAB269F74] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateIoCompletion [0xAB26A0F6] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateKey [0xAB29FDB5] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateMutant [0xAB269E96] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateSection [0xAB269FB8] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateSemaphore [0xAB269EDE] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateThread [0xAB25F310] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwCreateTimer [0xAB26A0B0] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwDebugActiveProcess [0xAB25FA9C] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwDeleteBootEntry [0xAB25E756] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwDeleteKey [0xAB2A0AC7] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwDeleteValueKey [0xAB2A0D7D] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwDuplicateObject [0xAB2630E4] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwEnumerateKey [0xAB2A0932] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwEnumerateValueKey [0xAB2A079D] SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwFreeVirtualMemory [0xAB3098AC] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwLoadDriver [0xAB25E3BE] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwModifyBootEntry [0xAB25E7A4] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwNotifyChangeKey [0xAB263456] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwNotifyChangeMultipleKeys [0xAB260464] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenEvent [0xAB269F52] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenEventPair [0xAB269F96] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenIoCompletion [0xAB26A11A] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenKey [0xAB2A0111] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenMutant [0xAB269EBC] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenProcess [0xAB262C5A] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenSection [0xAB26A03A] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenSemaphore [0xAB269F06] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenThread [0xAB262E8C] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwOpenTimer [0xAB26A0D4] SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwProtectVirtualMemory [0xAB309A2C] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwQueryKey [0xAB2A0618] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwQueryObject [0xAB260330] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwQueryValueKey [0xAB2A046A] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwQueueApcThread [0xAB25FEDA] SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwRenameKey [0xAB31530E] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwRestoreKey [0xAB29F428] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwSetBootEntryOrder [0xAB25E7F2] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwSetBootOptions [0xAB25E840] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwSetContextThread [0xAB25F91C] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwSetSystemInformation [0xAB25E448] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwSetSystemPowerState [0xAB25E5F8] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwSetValueKey [0xAB2A0BCE] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwShutdownSystem [0xAB25E59E] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwSuspendProcess [0xAB25FBFE] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwSuspendThread [0xAB25FD5A] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwSystemDebugControl [0xAB25E668] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwTerminateProcess [0xAB25F632] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwTerminateThread [0xAB25F794] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwVdmControl [0xAB25E88E] SSDT \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ZwWriteVirtualMemory [0xAB25F160] Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwCreateProcessEx [0xAB321966] Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObInsertObject Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObMakeTemporaryObject ---- Kernel code sections - GMER 1.0.15 ---- .text ntoskrnl.exe!ZwYieldExecution + 3C2 804DDC1C 12 Bytes [F2, E7, 25, AB, 40, E8, 25, ...] .text ntoskrnl.exe!ZwYieldExecution + 46A 804DDCC4 12 Bytes [FE, FB, 25, AB, 5A, FD, 25, ...] .text ntoskrnl.exe!ZwYieldExecution + 4A6 804DDD00 4 Bytes [8E, E8, 25, AB] PAGE ntoskrnl.exe!ObInsertObject 80566A64 5 Bytes JMP AB320320 \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) PAGE ntoskrnl.exe!ZwReplyWaitReceivePortEx + 3CC 8056F705 4 Bytes CALL AB260AF1 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) PAGE ntoskrnl.exe!ZwCreateProcessEx 805847F4 7 Bytes JMP AB32196A \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) PAGE ntoskrnl.exe!ObMakeTemporaryObject 805D9536 5 Bytes JMP AB31E806 \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) .text C:\WINDOWS\system32\DRIVERS\ati2mtag.sys section is writeable [0xB7F31000, 0x1E2E6E, 0xE8000020] .text win32k.sys!EngFreeUserMem + 674 BF80991D 5 Bytes JMP AB264A6E \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) .text win32k.sys!EngFreeUserMem + 35D0 BF80C879 5 Bytes JMP AB26495E \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) .text win32k.sys!EngDeleteSurface + 45 BF813911 5 Bytes JMP AB264918 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) .text win32k.sys!BRUSHOBJ_pvAllocRbrush + 11D3 BF81C57B 5 Bytes JMP AB263FCA \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) .text win32k.sys!EngSetLastError + 79A8 BF8240EB 5 Bytes JMP AB2636E6 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) .text win32k.sys!EngCreateBitmap + F9C BF828A55 5 Bytes JMP AB264BD8 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) .text win32k.sys!EngUnmapFontFileFD + 2C50 BF8314A0 5 Bytes JMP AB264DE0 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) .text win32k.sys!EngUnmapFontFileFD + B687 BF839ED7 5 Bytes JMP AB26481E \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) .text win32k.sys!FONTOBJ_pxoGetXform + 84ED BF851765 5 Bytes JMP AB2635AA \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) .text win32k.sys!XLATEOBJ_iXlate + F17 BF85BC8A 5 Bytes JMP AB26408C \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) .text win32k.sys!XLATEOBJ_iXlate + 3581 BF85E2F4 5 Bytes JMP AB263B40 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) .text win32k.sys!XLATEOBJ_iXlate + 360C BF85E37F 5 Bytes JMP AB263E06 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) .text win32k.sys!EngCreatePalette + 88 BF85F5F0 5 Bytes JMP AB263592 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) .text win32k.sys!EngCreatePalette + 5457 BF8649BF 5 Bytes JMP AB2649A8 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) .text win32k.sys!EngGetCurrentCodePage + 35FB BF8731B9 5 Bytes JMP AB263C00 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) .text win32k.sys!EngGetCurrentCodePage + 4138 BF873CF6 5 Bytes JMP AB263DC0 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) .text win32k.sys!EngGetLastError + 1606 BF890DF1 5 Bytes JMP AB2640A4 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) .text win32k.sys!EngGradientFill + 26EE BF89439B 5 Bytes JMP AB264B20 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) .text win32k.sys!EngStretchBltROP + 583 BF894E73 5 Bytes JMP AB264D3E \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) .text win32k.sys!EngCopyBits + 3862 BF89C226 5 Bytes JMP AB263FB2 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) .text win32k.sys!EngCopyBits + 4DF7 BF89D7BB 5 Bytes JMP AB263756 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) .text win32k.sys!EngEraseSurface + A9E8 BF8C1D00 5 Bytes JMP AB263866 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) .text win32k.sys!EngFillPath + 1517 BF8CA191 5 Bytes JMP AB26393E \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) .text win32k.sys!EngFillPath + 1797 BF8CA411 5 Bytes JMP AB263A6A \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) .text win32k.sys!EngDeleteSemaphore + 3B33 BF8EBDCC 5 Bytes JMP AB26348C \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) .text win32k.sys!EngDeleteSemaphore + CB47 BF8F4DE0 5 Bytes JMP AB263FE2 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) .text win32k.sys!EngCreateClip + 1A2F BF9142F4 5 Bytes JMP AB263682 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) .text win32k.sys!EngCreateClip + 2603 BF914EC8 5 Bytes JMP AB263812 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) .text win32k.sys!EngCreateClip + 4F7C BF917841 5 Bytes JMP AB263F20 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) .text win32k.sys!EngPlgBlt + 1947 BF947973 5 Bytes JMP AB264C96 \SystemRoot\System32\Drivers\aswSnx.SYS (avast! Virtualization Driver/AVAST Software) ---- User code sections - GMER 1.0.15 ---- .text C:\Documents and Settings\All Users\Dane aplikacji\DatacardService\HWDeviceService.exe[160] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\Documents and Settings\All Users\Dane aplikacji\DatacardService\HWDeviceService.exe[160] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\Program Files\Java\jre7\bin\jqs.exe[196] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\Program Files\Java\jre7\bin\jqs.exe[196] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\Program Files\Gadu-Gadu\gg.exe[208] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\Program Files\Gadu-Gadu\gg.exe[208] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\WINDOWS\system32\ctfmon.exe[256] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\WINDOWS\system32\ctfmon.exe[256] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\Program Files\Messenger\msmsgs.exe[280] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\Program Files\Messenger\msmsgs.exe[280] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\Program Files\IObit\Game Booster 3\gbtray.exe[312] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\Program Files\IObit\Game Booster 3\gbtray.exe[312] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\Documents and Settings\Wojciech\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.123\GoogleCrashHandler.exe[468] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\Documents and Settings\Wojciech\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.123\GoogleCrashHandler.exe[468] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\WINDOWS\Explorer.EXE[472] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\WINDOWS\Explorer.EXE[472] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\Program Files\PLAY ONLINE\PLAY ONLINE.exe[484] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\Program Files\PLAY ONLINE\PLAY ONLINE.exe[484] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\WINDOWS\System32\smss.exe[644] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\WINDOWS\system32\PnkBstrA.exe[796] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\WINDOWS\system32\PnkBstrA.exe[796] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\WINDOWS\system32\csrss.exe[800] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\WINDOWS\system32\csrss.exe[800] KERNEL32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe[868] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe[868] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\WINDOWS\System32\svchost.exe[916] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\WINDOWS\System32\svchost.exe[916] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\WINDOWS\system32\winlogon.exe[1008] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\WINDOWS\system32\winlogon.exe[1008] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\WINDOWS\system32\services.exe[1060] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\WINDOWS\system32\services.exe[1060] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\WINDOWS\system32\lsass.exe[1080] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\WINDOWS\system32\lsass.exe[1080] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\WINDOWS\system32\Ati2evxx.exe[1260] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\WINDOWS\system32\Ati2evxx.exe[1260] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\WINDOWS\system32\svchost.exe[1280] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\WINDOWS\system32\svchost.exe[1280] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\WINDOWS\RTHDCPL.EXE[1360] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\WINDOWS\RTHDCPL.EXE[1360] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\WINDOWS\system32\svchost.exe[1376] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\WINDOWS\system32\svchost.exe[1376] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\WINDOWS\System32\svchost.exe[1416] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\WINDOWS\System32\svchost.exe[1416] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\WINDOWS\System32\svchost.exe[1540] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\WINDOWS\System32\svchost.exe[1540] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\WINDOWS\system32\Ati2evxx.exe[1588] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\WINDOWS\system32\Ati2evxx.exe[1588] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\WINDOWS\system32\svchost.exe[1608] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\WINDOWS\system32\svchost.exe[1608] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\Program Files\AVAST Software\Avast\AvastSvc.exe[1744] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\Program Files\AVAST Software\Avast\AvastSvc.exe[1744] kernel32.dll!SetUnhandledExceptionFilter 7C84495D 4 Bytes [C2, 04, 00, 90] {RET 0x4; NOP } .text C:\Program Files\AVAST Software\Avast\AvastSvc.exe[1744] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\WINDOWS\system32\rundll32.exe[1792] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\WINDOWS\system32\rundll32.exe[1792] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\Program Files\AVAST Software\Avast\avastUI.exe[1828] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\Program Files\AVAST Software\Avast\avastUI.exe[1828] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\WINDOWS\system32\spoolsv.exe[1852] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\WINDOWS\system32\spoolsv.exe[1852] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\WINDOWS\System32\svchost.exe[1924] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\WINDOWS\System32\svchost.exe[1924] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\WINDOWS\system32\svchost.exe[1976] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\WINDOWS\system32\svchost.exe[1976] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\WINDOWS\system32\wscntfy.exe[2176] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\WINDOWS\system32\wscntfy.exe[2176] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\WINDOWS\System32\wbem\wmiapsrv.exe[2184] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\WINDOWS\System32\wbem\wmiapsrv.exe[2184] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\WINDOWS\System32\alg.exe[2328] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\WINDOWS\System32\alg.exe[2328] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\WINDOWS\system32\wbem\wmiprvse.exe[2472] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\WINDOWS\system32\wbem\wmiprvse.exe[2472] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\Documents and Settings\Wojciech\Moje dokumenty\Downloads\gmer\gmer.exe[3964] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 001501F8 .text C:\Documents and Settings\Wojciech\Moje dokumenty\Downloads\gmer\gmer.exe[3964] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:\Documents and Settings\Wojciech\Moje dokumenty\Downloads\gmer\gmer.exe[3964] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 001503FC .text C:\Documents and Settings\Wojciech\Moje dokumenty\Downloads\gmer\gmer.exe[3964] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:\Documents and Settings\Wojciech\Moje dokumenty\Downloads\gmer\gmer.exe[3964] ADVAPI32.dll!SetServiceObjectSecurity 77E26D81 5 Bytes JMP 009C1014 .text C:\Documents and Settings\Wojciech\Moje dokumenty\Downloads\gmer\gmer.exe[3964] ADVAPI32.dll!ChangeServiceConfigA 77E26E69 5 Bytes JMP 009C0804 .text C:\Documents and Settings\Wojciech\Moje dokumenty\Downloads\gmer\gmer.exe[3964] ADVAPI32.dll!ChangeServiceConfigW 77E27001 5 Bytes JMP 009C0A08 .text C:\Documents and Settings\Wojciech\Moje dokumenty\Downloads\gmer\gmer.exe[3964] ADVAPI32.dll!ChangeServiceConfig2A 77E27101 5 Bytes JMP 009C0C0C .text C:\Documents and Settings\Wojciech\Moje dokumenty\Downloads\gmer\gmer.exe[3964] ADVAPI32.dll!ChangeServiceConfig2W 77E27189 5 Bytes JMP 009C0E10 .text C:\Documents and Settings\Wojciech\Moje dokumenty\Downloads\gmer\gmer.exe[3964] ADVAPI32.dll!CreateServiceA 77E27211 5 Bytes JMP 009C01F8 .text C:\Documents and Settings\Wojciech\Moje dokumenty\Downloads\gmer\gmer.exe[3964] ADVAPI32.dll!CreateServiceW 77E273A9 5 Bytes JMP 009C03FC .text C:\Documents and Settings\Wojciech\Moje dokumenty\Downloads\gmer\gmer.exe[3964] ADVAPI32.dll!DeleteService 77E274B1 5 Bytes JMP 009C0600 .text C:\Documents and Settings\Wojciech\Moje dokumenty\Downloads\gmer\gmer.exe[3964] USER32.dll!SetWindowsHookExW 7E37820F 5 Bytes JMP 009D0804 .text C:\Documents and Settings\Wojciech\Moje dokumenty\Downloads\gmer\gmer.exe[3964] USER32.dll!UnhookWindowsHookEx 7E37D5F3 5 Bytes JMP 009D0A08 .text C:\Documents and Settings\Wojciech\Moje dokumenty\Downloads\gmer\gmer.exe[3964] USER32.dll!SetWindowsHookExA 7E381211 5 Bytes JMP 009D0600 .text C:\Documents and Settings\Wojciech\Moje dokumenty\Downloads\gmer\gmer.exe[3964] USER32.dll!SetWinEventHook 7E3817F7 5 Bytes JMP 009D01F8 .text C:\Documents and Settings\Wojciech\Moje dokumenty\Downloads\gmer\gmer.exe[3964] USER32.dll!UnhookWinEvent 7E3818AC 5 Bytes JMP 009D03FC ---- User IAT/EAT - GMER 1.0.15 ---- IAT C:\WINDOWS\system32\services.exe[1060] @ C:\WINDOWS\system32\services.exe [ADVAPI32.dll!CreateProcessAsUserW] 003D0002 IAT C:\WINDOWS\system32\services.exe[1060] @ C:\WINDOWS\system32\services.exe [KERNEL32.dll!CreateProcessW] 003D0000 IAT C:\Program Files\AVAST Software\Avast\AvastSvc.exe[1744] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [64C8F6D0] C:\Program Files\AVAST Software\Avast\aswCmnBS.dll (Common functions/AVAST Software) IAT C:\Program Files\AVAST Software\Avast\avastUI.exe[1828] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] [64C8F6D0] C:\Program Files\AVAST Software\Avast\aswCmnBS.dll (Common functions/AVAST Software) ---- Devices - GMER 1.0.15 ---- Device \FileSystem\Ntfs \Ntfs aswSP.SYS (avast! self protection module/AVAST Software) AttachedDevice \FileSystem\Ntfs \Ntfs aswMon2.SYS (avast! File System Filter Driver for Windows XP/AVAST Software) Device \Driver\BTHUSB \Device\0000008f bthport.sys (Sterownik magistrali Bluetooth/Microsoft Corporation) AttachedDevice \Driver\Tcpip \Device\Ip aswTdi.SYS (avast! TDI Filter Driver/AVAST Software) AttachedDevice \Driver\Tcpip \Device\Tcp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software) Device \Driver\BTHUSB \Device\00000091 bthport.sys (Sterownik magistrali Bluetooth/Microsoft Corporation) AttachedDevice \Driver\Tcpip \Device\Udp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software) AttachedDevice \Driver\Tcpip \Device\RawIp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software) ---- Registry - GMER 1.0.15 ---- Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\0015833d0a57 Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\0015833d0a57@1887964d5891 0x2B 0xD3 0x2D 0x89 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0 C:\Program Files\Alcohol Soft\Alcohol 52\ Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0x9E 0x56 0x12 0xCF ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@a0 0x20 0x01 0x00 0x00 ... Reg HKLM\SYSTEM\ControlSet002\Services\BTHPORT\Parameters\Keys\0015833d0a57 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\Services\BTHPORT\Parameters\Keys\0015833d0a57@1887964d5891 0x2B 0xD3 0x2D 0x89 ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0 C:\Program Files\Alcohol Soft\Alcohol 52\ Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0 Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0x9E 0x56 0x12 0xCF ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@a0 0x20 0x01 0x00 0x00 ... ---- EOF - GMER 1.0.15 ----

OTL:

Kod: Zaznacz wszystko: OTL logfile created on: 2012-10-12 23:55:56 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Wojciech\Moje dokumenty\Downloads Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,21 Gb Available Physical Memory | 60,51% Memory free 3,85 Gb Paging File | 3,15 Gb Available in Paging File | 81,78% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 39,06 Gb Total Space | 7,81 Gb Free Space | 20,00% Space Free | Partition Type: NTFS Drive D: | 35,45 Gb Total Space | 35,39 Gb Free Space | 99,82% Space Free | Partition Type: NTFS Drive E: | 48,83 Gb Total Space | 30,75 Gb Free Space | 62,98% Space Free | Partition Type: NTFS Drive G: | 25,69 Gb Total Space | 25,60 Gb Free Space | 99,63% Space Free | Partition Type: NTFS Drive J: | 81,19 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS Drive K: | 33,12 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS Drive M: | 930,83 Gb Total Space | 429,40 Gb Free Space | 46,13% Space Free | Partition Type: NTFS Computer Name: DARKMAN | User Name: Wojciech | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2012-10-12 21:53:01 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Wojciech\Moje dokumenty\Downloads\OTL.exe PRC - [2012-10-10 12:06:17 | 001,239,064 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Wojciech\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe PRC - [2012-09-18 06:47:49 | 000,212,432 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Wojciech\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.123\GoogleCrashHandler.exe PRC - [2012-09-04 18:55:28 | 000,161,768 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe PRC - [2012-08-28 22:38:49 | 000,514,048 | ---- | M] () -- C:\Program Files\PLAY ONLINE\PLAY ONLINE.exe PRC - [2012-08-21 11:12:30 | 006,516,280 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\Setup\avast.setup PRC - [2012-08-21 11:12:26 | 004,282,728 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe PRC - [2012-08-21 11:12:25 | 000,044,808 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe PRC - [2012-02-21 14:05:22 | 000,632,664 | ---- | M] (IObit) -- C:\Program Files\IObit\Game Booster 3\gbtray.exe PRC - [2011-03-14 17:27:28 | 000,271,712 | ---- | M] () -- C:\Documents and Settings\All Users\Dane aplikacji\DatacardService\HWDeviceService.exe PRC - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2008-03-20 12:04:46 | 002,127,296 | ---- | M] (Gadu-Gadu S.A.) -- C:\Program Files\Gadu-Gadu\gg.exe PRC - [2007-05-28 18:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) -- C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2012-10-12 20:52:02 | 001,816,576 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\12101201\algo.dll MOD - [2012-10-10 12:06:15 | 000,460,312 | ---- | M] () -- C:\Documents and Settings\Wojciech\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\22.0.1229.94\ppgooglenaclpluginchrome.dll MOD - [2012-10-10 12:06:13 | 012,435,992 | ---- | M] () -- C:\Documents and Settings\Wojciech\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\22.0.1229.94\PepperFlash\pepflashplayer.dll MOD - [2012-10-10 12:06:12 | 004,005,912 | ---- | M] () -- C:\Documents and Settings\Wojciech\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\22.0.1229.94\pdf.dll MOD - [2012-10-10 12:04:57 | 000,578,072 | ---- | M] () -- C:\Documents and Settings\Wojciech\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\22.0.1229.94\libglesv2.dll MOD - [2012-10-10 12:04:55 | 000,123,928 | ---- | M] () -- C:\Documents and Settings\Wojciech\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\22.0.1229.94\libegl.dll MOD - [2012-10-10 12:04:44 | 000,156,712 | ---- | M] () -- C:\Documents and Settings\Wojciech\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\22.0.1229.94\avutil-51.dll MOD - [2012-10-10 12:04:43 | 000,275,496 | ---- | M] () -- C:\Documents and Settings\Wojciech\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\22.0.1229.94\avformat-54.dll MOD - [2012-10-10 12:04:42 | 002,168,360 | ---- | M] () -- C:\Documents and Settings\Wojciech\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\22.0.1229.94\avcodec-54.dll MOD - [2012-08-28 22:38:49 | 000,514,048 | ---- | M] () -- C:\Program Files\PLAY ONLINE\PLAY ONLINE.exe MOD - [2012-08-28 22:38:31 | 000,808,960 | ---- | M] () -- C:\Program Files\PLAY ONLINE\SMSUIPlugin.dll MOD - [2012-08-28 22:38:31 | 000,384,512 | ---- | M] () -- C:\Program Files\PLAY ONLINE\USSDUIPlugin.dll MOD - [2012-08-28 22:38:31 | 000,310,272 | ---- | M] () -- C:\Program Files\PLAY ONLINE\StatusBarMgrPlugin.dll MOD - [2012-08-28 22:38:31 | 000,240,128 | ---- | M] () -- C:\Program Files\PLAY ONLINE\ToolBarMgrPlugin.dll MOD - [2012-08-28 22:38:31 | 000,217,600 | ---- | M] () -- C:\Program Files\PLAY ONLINE\SmsSrvPlugin.dll MOD - [2012-08-28 22:38:31 | 000,190,464 | ---- | M] () -- C:\Program Files\PLAY ONLINE\XFramePlugin.dll MOD - [2012-08-28 22:38:31 | 000,159,232 | ---- | M] () -- C:\Program Files\PLAY ONLINE\XCodec.dll MOD - [2012-08-28 22:38:31 | 000,156,672 | ---- | M] () -- C:\Program Files\PLAY ONLINE\STKSrvPlugin.dll MOD - [2012-08-28 22:38:31 | 000,142,336 | ---- | M] () -- C:\Program Files\PLAY ONLINE\USSDSrvPlugin.dll MOD - [2012-08-28 22:38:31 | 000,135,168 | ---- | M] () -- C:\Program Files\PLAY ONLINE\Trace.dll MOD - [2012-08-28 22:38:31 | 000,106,496 | ---- | M] () -- C:\Program Files\PLAY ONLINE\Win7Support.dll MOD - [2012-08-28 22:38:30 | 009,515,520 | ---- | M] () -- C:\Program Files\PLAY ONLINE\QtGui4.dll MOD - [2012-08-28 22:38:30 | 001,148,416 | ---- | M] () -- C:\Program Files\PLAY ONLINE\QtNetwork4.dll MOD - [2012-08-28 22:38:30 | 000,670,720 | ---- | M] () -- C:\Program Files\PLAY ONLINE\SmsAppPlugin.dll MOD - [2012-08-28 22:38:30 | 000,370,176 | ---- | M] () -- C:\Program Files\PLAY ONLINE\plugins\imageformats\qtiff4.dll MOD - [2012-08-28 22:38:30 | 000,261,632 | ---- | M] () -- C:\Program Files\PLAY ONLINE\sdk.dll MOD - [2012-08-28 22:38:29 | 002,415,104 | ---- | M] () -- C:\Program Files\PLAY ONLINE\QtCore4.dll MOD - [2012-08-28 22:38:29 | 000,545,280 | ---- | M] () -- C:\Program Files\PLAY ONLINE\PluginContainer.dll MOD - [2012-08-28 22:38:29 | 000,381,952 | ---- | M] () -- C:\Program Files\PLAY ONLINE\Proxy.dll MOD - [2012-08-28 22:38:29 | 000,350,720 | ---- | M] () -- C:\Program Files\PLAY ONLINE\plugins\imageformats\qmng4.dll MOD - [2012-08-28 22:38:29 | 000,192,000 | ---- | M] () -- C:\Program Files\PLAY ONLINE\plugins\imageformats\qjpeg4.dll MOD - [2012-08-28 22:38:29 | 000,082,944 | ---- | M] () -- C:\Program Files\PLAY ONLINE\plugins\imageformats\qgif4.dll MOD - [2012-08-28 22:38:29 | 000,081,920 | ---- | M] () -- C:\Program Files\PLAY ONLINE\plugins\imageformats\qico4.dll MOD - [2012-08-28 22:38:29 | 000,065,536 | ---- | M] () -- C:\Program Files\PLAY ONLINE\OSPowerMgr.dll MOD - [2012-08-28 22:38:28 | 001,101,824 | ---- | M] () -- C:\Program Files\PLAY ONLINE\NDISAPI.dll MOD - [2012-08-28 22:38:28 | 000,483,328 | ---- | M] () -- C:\Program Files\PLAY ONLINE\NetInfoUIExPlugin.dll MOD - [2012-08-28 22:38:28 | 000,333,312 | ---- | M] () -- C:\Program Files\PLAY ONLINE\NetConnectPlugin.dll MOD - [2012-08-28 22:38:28 | 000,278,528 | ---- | M] () -- C:\Program Files\PLAY ONLINE\NetInfoSrvPlugin.dll MOD - [2012-08-28 22:38:28 | 000,249,344 | ---- | M] () -- C:\Program Files\PLAY ONLINE\MenuMgrPlugin.dll MOD - [2012-08-28 22:38:28 | 000,235,008 | ---- | M] () -- C:\Program Files\PLAY ONLINE\NetSrvPlugin.dll MOD - [2012-08-28 22:38:28 | 000,180,224 | ---- | M] () -- C:\Program Files\PLAY ONLINE\NDISPlugin.dll MOD - [2012-08-28 22:38:28 | 000,158,720 | ---- | M] () -- C:\Program Files\PLAY ONLINE\NetConnectSrvPlugin.dll MOD - [2012-08-28 22:38:28 | 000,133,120 | ---- | M] () -- C:\Program Files\PLAY ONLINE\OSDialup.dll MOD - [2012-08-28 22:38:28 | 000,131,072 | ---- | M] () -- C:\Program Files\PLAY ONLINE\OSNDIS.dll MOD - [2012-08-28 22:38:28 | 000,101,376 | ---- | M] () -- C:\Program Files\PLAY ONLINE\OSAdapt.dll MOD - [2012-08-28 22:38:28 | 000,093,184 | ---- | M] () -- C:\Program Files\PLAY ONLINE\NotifyServicePlugin.dll MOD - [2012-08-28 22:38:28 | 000,062,976 | ---- | M] () -- C:\Program Files\PLAY ONLINE\OSCall.dll MOD - [2012-08-28 22:38:28 | 000,011,362 | ---- | M] () -- C:\Program Files\PLAY ONLINE\mingwm10.dll MOD - [2012-08-28 22:38:27 | 000,495,104 | ---- | M] () -- C:\Program Files\PLAY ONLINE\DeviceMgrUIPlugin.dll MOD - [2012-08-28 22:38:27 | 000,428,032 | ---- | M] () -- C:\Program Files\PLAY ONLINE\core.dll MOD - [2012-08-28 22:38:27 | 000,427,008 | ---- | M] () -- C:\Program Files\PLAY ONLINE\DialupUIPlugin.dll MOD - [2012-08-28 22:38:27 | 000,338,432 | ---- | M] () -- C:\Program Files\PLAY ONLINE\DeviceAppPlugin.dll MOD - [2012-08-28 22:38:27 | 000,334,848 | ---- | M] () -- C:\Program Files\PLAY ONLINE\MainpagePlugin.dll MOD - [2012-08-28 22:38:27 | 000,301,056 | ---- | M] () -- C:\Program Files\PLAY ONLINE\DeviceSrvPlugin.dll MOD - [2012-08-28 22:38:27 | 000,269,824 | ---- | M] () -- C:\Program Files\PLAY ONLINE\LiveUpdateInterface.dll MOD - [2012-08-28 22:38:27 | 000,211,968 | ---- | M] () -- C:\Program Files\PLAY ONLINE\DialUpPlugin.dll MOD - [2012-08-28 22:38:27 | 000,157,184 | ---- | M] () -- C:\Program Files\PLAY ONLINE\DataServicePlugin.dll MOD - [2012-08-28 22:38:27 | 000,118,272 | ---- | M] () -- C:\Program Files\PLAY ONLINE\LayoutPlugin.dll MOD - [2012-08-28 22:38:27 | 000,043,008 | ---- | M] () -- C:\Program Files\PLAY ONLINE\libgcc_s_dw2-1.dll MOD - [2012-08-28 22:38:26 | 000,739,328 | ---- | M] () -- C:\Program Files\PLAY ONLINE\AddrBookUIPlugin.dll MOD - [2012-08-28 22:38:26 | 000,550,400 | ---- | M] () -- C:\Program Files\PLAY ONLINE\CallAppPlugin.dll MOD - [2012-08-28 22:38:26 | 000,547,840 | ---- | M] () -- C:\Program Files\PLAY ONLINE\CallLogSrvPlugin.dll MOD - [2012-08-28 22:38:26 | 000,238,080 | ---- | M] () -- C:\Program Files\PLAY ONLINE\AtCodec.dll MOD - [2012-08-28 22:38:26 | 000,218,112 | ---- | M] () -- C:\Program Files\PLAY ONLINE\Common.dll MOD - [2012-08-28 22:38:26 | 000,176,128 | ---- | M] () -- C:\Program Files\PLAY ONLINE\CallSrvPlugin.dll MOD - [2012-08-28 22:38:26 | 000,123,392 | ---- | M] () -- C:\Program Files\PLAY ONLINE\ATR2SMgr.dll MOD - [2012-08-28 22:38:25 | 001,077,248 | ---- | M] () -- C:\Program Files\PLAY ONLINE\AddrBookPlugin.dll MOD - [2012-08-28 22:38:25 | 000,264,704 | ---- | M] () -- C:\Program Files\PLAY ONLINE\AddrBookSrvPlugin.dll MOD - [2012-08-21 11:12:20 | 000,247,224 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\Setup\setiface.dll MOD - [2011-12-15 15:16:32 | 000,516,440 | ---- | M] () -- C:\Program Files\IObit\Game Booster 3\sqlite3.dll MOD - [2011-03-14 17:27:28 | 000,271,712 | ---- | M] () -- C:\Documents and Settings\All Users\Dane aplikacji\DatacardService\HWDeviceService.exe MOD - [2010-01-30 02:41:12 | 004,254,560 | ---- | M] () -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF MOD - [2008-04-14 22:50:38 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll MOD - [2008-03-20 11:17:48 | 000,106,496 | ---- | M] () -- C:\Program Files\Gadu-Gadu\libiax2.dll MOD - [2008-03-20 11:17:44 | 000,061,440 | ---- | M] () -- C:\Program Files\Gadu-Gadu\libjb.dll MOD - [2007-10-25 13:51:16 | 000,198,656 | ---- | M] () -- C:\Program Files\Gadu-Gadu\libcurl.dll [color=#E56717]========== Services (SafeList) ==========[/color] SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ) SRV - [2012-09-11 06:22:51 | 000,114,144 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2012-09-04 18:55:28 | 000,161,768 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService) SRV - [2012-08-28 22:38:25 | 000,246,112 | ---- | M] () [Auto | Stopped] -- C:\Program Files\PLAY ONLINE\UpdateDog\ouc.exe -- (PLAY ONLINE. RunOuc) SRV - [2012-08-21 11:12:25 | 000,044,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus) SRV - [2011-03-14 17:27:28 | 000,271,712 | ---- | M] () [Auto | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\DatacardService\HWDeviceService.exe -- (HWDeviceService.exe) SRV - [2010-03-25 10:25:22 | 030,969,208 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service) SRV - [2007-05-28 18:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) [Auto | Running] -- C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE) SRV - [2006-11-10 17:12:30 | 000,099,936 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA) DRV - File not found [Kernel | Disabled | Stopped] -- System32\Drivers\sptd.sys -- (sptd) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP) DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump) DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc) DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\Wojciech\USTAWI~1\Temp\cpuz130\cpuz_x32.sys -- (cpuz130) DRV - File not found [Kernel | System | Stopped] -- -- (Changer) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\Wojciech\USTAWI~1\Temp\catchme.sys -- (catchme) DRV - File not found [Kernel | On_Demand | Unknown] -- C:\DOCUME~1\Wojciech\USTAWI~1\Temp\awldapoc.sys -- (awldapoc) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\Wojciech\USTAWI~1\Temp\ALSysIO.sys -- (ALSysIO) DRV - [2012-08-28 22:38:32 | 000,102,784 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ew_hwusbdev.sys -- (ew_hwusbdev) DRV - [2012-08-28 22:38:32 | 000,089,856 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ew_jucdcacm.sys -- (huawei_cdcacm) DRV - [2012-08-28 22:38:32 | 000,073,984 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ew_jubusenum.sys -- (huawei_enumerator) DRV - [2012-08-28 22:38:32 | 000,066,688 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ew_jucdcecm.sys -- (huawei_cdcecm) DRV - [2012-08-28 22:38:32 | 000,026,624 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ew_juextctrl.sys -- (huawei_ext_ctrl) DRV - [2012-08-28 22:38:32 | 000,011,136 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ew_usbenumfilter.sys -- (ew_usbenumfilter) DRV - [2012-08-21 11:13:15 | 000,729,752 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx) DRV - [2012-08-21 11:13:15 | 000,355,632 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP) DRV - [2012-08-21 11:13:15 | 000,054,232 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi) DRV - [2012-08-21 11:13:14 | 000,097,608 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2) DRV - [2012-08-21 11:13:14 | 000,035,928 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (AswRdr) DRV - [2012-08-21 11:13:13 | 000,025,256 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4) DRV - [2012-08-21 11:13:13 | 000,021,256 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk) DRV - [2012-07-04 08:54:32 | 007,874,560 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag) DRV - [2012-05-14 08:12:12 | 000,103,040 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtihdXP3.sys -- (AtiHDAudioService) DRV - [2012-04-18 19:08:05 | 000,123,840 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nvhda32.sys -- (NVHDA) DRV - [2011-09-21 10:25:34 | 000,021,992 | ---- | M] (CPUID) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\cpuz135_x32.sys -- (cpuz135) DRV - [2009-12-30 11:20:54 | 000,027,064 | ---- | M] (VS Revo Group) [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\revoflt.sys -- (Revoflt) DRV - [2008-04-14 00:23:10 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm) DRV - [2007-08-10 13:52:44 | 004,603,904 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) DRV - [2007-05-02 11:11:18 | 000,109,704 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_mdm.sys -- (ss_mdm) DRV - [2007-05-02 11:11:18 | 000,015,112 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_mdfl.sys -- (ss_mdfl) DRV - [2007-05-02 11:11:16 | 000,083,592 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bus.sys -- (ss_bus) DRV - [2006-07-24 16:05:00 | 000,005,632 | ---- | M] () [File_System | System | Running] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen) DRV - [2006-03-01 10:25:12 | 000,008,704 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggsemc.sys -- (ggsemc) DRV - [2004-08-03 22:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rtl8139.sys -- (rtl8139) DRV - [2002-01-12 16:30:34 | 000,003,567 | ---- | M] (Beyond Logic http://www.beyondlogic.org) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PortTalk.sys -- (PortTalk) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-2052111302-2049760794-839522115-1003\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKU\S-1-5-21-2052111302-2049760794-839522115-1003\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC IE - HKU\S-1-5-21-2052111302-2049760794-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-2052111302-2049760794-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local> [color=#E56717]========== FireFox ==========[/color] FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_4_402_265.dll () FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Wojciech\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Wojciech\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-09-02 13:43:55 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-09-11 06:22:54 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-08-28 12:34:21 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Wojciech\Dane aplikacji\Mozilla\Extensions [2012-08-31 21:05:39 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Wojciech\Dane aplikacji\Mozilla\Firefox\Profiles\uvg0uemf.default\extensions [2012-08-28 11:57:42 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2012-09-11 06:22:53 | 000,266,720 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2012-09-11 06:22:47 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml [2012-09-11 06:22:47 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml [2012-09-11 06:22:47 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml [2012-09-11 06:22:47 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml [2012-09-11 06:22:47 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml [2012-09-11 06:22:47 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml [color=#E56717]========== Chrome ==========[/color] CHR - homepage: CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms} CHR - homepage: CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Wojciech\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\21.0.1180.83\PepperFlash\pepflashplayer.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\Wojciech\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\22.0.1229.94\gcswf32.dll CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\Wojciech\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\22.0.1229.94\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\Wojciech\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\22.0.1229.94\pdf.dll CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Wojciech\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.111\npGoogleUpdate3.dll CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL CHR - Extension: Battlefield Play4Free = C:\Documents and Settings\Wojciech\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\oiokahphinmbmakkehgelkmpolmnbkdh\1.0.80.5_0\ CHR - Extension: Google Reader = C:\Documents and Settings\Wojciech\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjjhlfkghdhmijklfnahfkpgmhcmfgcm\4.4_0\ O1 HOSTS File: ([2012-09-18 01:06:01 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software) O4 - HKLM..\Run: [BluetoothAuthenticationAgent] C:\WINDOWS\System32\bthprops.cpl (Microsoft Corporation) O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKU\S-1-5-21-2052111302-2049760794-839522115-1003..\Run: [Gadu-Gadu] C:\Program Files\Gadu-Gadu\gg.exe (Gadu-Gadu S.A.) O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-2052111302-2049760794-839522115-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-21-2052111302-2049760794-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\S-1-5-21-2052111302-2049760794-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-21-2052111302-2049760794-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.108.202.20 89.108.195.20 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{14330192-9DCC-4ED2-88B9-0040A77BDA34}: DhcpNameServer = 89.108.202.20 89.108.195.20 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1E477221-C866-43C3-8449-17F41BAE090D}: DhcpNameServer = 89.108.202.20 89.108.195.20 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{232FC9D4-918C-45CF-B45C-E075DE80A2F9}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{34A743AB-EBE8-4A9F-BD79-4D653C17A0D2}: DhcpNameServer = 89.108.202.20 89.108.195.20 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{731D5AFC-212B-44CD-A3DB-AB58E85FCC4D}: DhcpNameServer = 192.168.1.1 O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.) O20 - Winlogon\Notify\WgaLogon: DllName - (WgaLogon.dll) - File not found O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Wojciech\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Wojciech\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2012-08-28 01:14:17 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2012-10-09 20:56:37 | 000,000,000 | ---- | M] () - E:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2011-03-17 17:27:22 | 000,148,320 | R--- | M] () - K:\AutoRun.exe -- [ CDFS ] O32 - AutoRun File - [2008-10-10 19:12:34 | 000,000,045 | R--- | M] () - K:\AUTORUN.INF -- [ CDFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = ComFile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2012-10-12 21:33:14 | 000,003,567 | ---- | C] (Beyond Logic http://www.beyondlogic.org) -- C:\WINDOWS\System32\drivers\PortTalk.sys [2012-10-12 21:33:10 | 000,000,000 | ---D | C] -- C:\Victoria for Windows 4.3 [2012-10-12 21:04:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Wojciech\Dane aplikacji\HD Tune Pro [2012-10-12 21:03:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\HD Tune Pro [2012-10-12 21:03:48 | 000,000,000 | ---D | C] -- C:\Program Files\HD Tune Pro [2012-10-12 20:22:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Wojciech\Moje dokumenty\Images [2012-10-12 20:15:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Wojciech\Moje dokumenty\Android [2012-10-12 16:01:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\HTC [2012-10-12 16:01:27 | 000,000,000 | ---D | C] -- C:\Program Files\Spirent Communications [2012-10-12 16:01:17 | 000,000,000 | ---D | C] -- C:\Program Files\HTC [2012-10-12 00:36:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Wojciech\Gadu-Gadu [2012-10-07 01:54:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\FinalWire [2012-10-07 01:54:24 | 000,000,000 | ---D | C] -- C:\Program Files\FinalWire [2012-10-06 02:52:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ATI [2012-10-06 02:30:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Catalyst Control Center [2012-10-06 02:26:18 | 019,603,456 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\atioglxx.dll [2012-10-06 02:26:18 | 000,307,200 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\atiiiexx.dll [2012-10-06 02:26:18 | 000,163,840 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\Oemdspif.dll [2012-10-06 02:26:18 | 000,053,248 | ---- | C] ( ATI Technologies Inc.) -- C:\WINDOWS\System32\ATIDDC.DLL [2012-10-06 02:26:18 | 000,026,112 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\Ati2mdxx.exe [2012-10-06 02:26:18 | 000,024,064 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\ativcoxx.dll [2012-10-06 02:26:18 | 000,017,408 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\atitvo32.dll [2012-10-05 10:42:48 | 000,000,000 | ---D | C] -- C:\Program Files\ATI [2012-10-05 10:41:36 | 000,000,000 | ---D | C] -- C:\AMD [2012-10-05 01:41:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Wojciech\Moje dokumenty\FFOutput [2012-09-30 20:21:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Wojciech\Dane aplikacji\aerix [2012-09-27 20:03:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Wojciech\Ustawienia lokalne\Dane aplikacji\PunkBuster [2012-09-23 22:40:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Wojciech\Menu Start\Programy\123 Free Memory Card Games [2012-09-23 22:40:40 | 000,000,000 | ---D | C] -- C:\Program Files\123 Free Memory Card Games [2012-09-19 17:48:51 | 000,075,264 | ---- | C] (Nokia) -- C:\WINDOWS\System32\nmwcdcls.dll [2012-09-19 17:48:49 | 000,000,000 | ---D | C] -- C:\Program Files\Nokia [2012-09-19 17:22:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Wojciech\Dane aplikacji\Ashampoo [2012-09-18 14:50:01 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2012-09-18 01:54:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles [2012-09-18 01:54:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\EA Games [2012-09-18 01:11:58 | 000,000,000 | ---D | C] -- C:\Program Files\EA Games [2012-09-18 00:59:09 | 000,000,000 | RHSD | C] -- C:\cmdcons [2012-09-18 00:57:31 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe [2012-09-18 00:57:31 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe [2012-09-18 00:57:31 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe [2012-09-18 00:57:31 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe [2012-09-18 00:57:14 | 000,000,000 | ---D | C] -- C:\Qoobox [2012-09-18 00:56:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\erdnt [2012-09-18 00:25:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Wojciech\Dane aplikacji\Malwarebytes [2012-09-18 00:25:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Malwarebytes' Anti-Malware [2012-09-18 00:25:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes [2012-09-18 00:25:44 | 000,022,856 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2012-09-18 00:25:43 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2012-09-17 19:17:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\NVIDIA [2012-09-17 19:16:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\NVIDIA Corporation [2012-09-17 19:16:21 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspl.dll [2012-09-17 19:16:21 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsth.dll [2012-09-17 19:16:21 | 000,143,680 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcolor.exe [2012-09-17 19:16:18 | 000,108,352 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmctray.dll [2012-09-17 19:15:15 | 000,065,536 | ---- | C] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll [2012-09-17 19:14:42 | 000,123,840 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvhda32.sys [2012-09-17 19:14:42 | 000,027,968 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvhdap32.dll [2012-09-17 19:14:41 | 000,876,864 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvhdagenco3220103.dll [2012-09-17 19:14:36 | 006,012,928 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuda.dll [2012-09-17 19:14:36 | 002,530,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvid.dll [2012-09-17 19:14:36 | 002,445,120 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvenc.dll [2012-09-17 19:14:36 | 001,000,768 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispco32.dll [2012-09-17 19:14:36 | 000,883,008 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgenco32.dll [2012-09-17 19:14:32 | 017,543,168 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcompiler.dll [2012-09-17 19:14:32 | 002,359,808 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvapi.dll [2012-09-17 18:36:42 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys [2012-09-17 18:36:42 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinrvxx.sys [2012-09-17 18:36:40 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys [2012-09-17 18:36:40 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinsnxx.sys [2012-09-17 18:36:39 | 000,032,768 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ativtmxx.dll [2012-09-17 18:36:39 | 000,032,768 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativtmxx.dll [2012-09-17 18:36:39 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys [2012-09-17 18:36:39 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinxbxx.sys [2012-09-17 18:36:38 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atintuxx.sys [2012-09-17 18:36:38 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atintuxx.sys [2012-09-17 18:36:37 | 000,023,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ativmvxx.ax [2012-09-17 18:36:37 | 000,023,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativmvxx.ax [2012-09-17 18:36:35 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinbtxx.sys [2012-09-17 18:36:35 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinbtxx.sys [2012-09-16 19:06:07 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Wojciech\Menu Start\Programy\Narzędzia administracyjne [2012-09-15 23:02:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Wojciech\Ustawienia lokalne\Dane aplikacji\2K Games [2012-09-15 23:01:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\2K Games [2012-09-14 10:12:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\McAfee [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2012-10-12 23:52:00 | 000,001,144 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2052111302-2049760794-839522115-1003UA.job [2012-10-12 22:37:51 | 000,000,368 | -H-- | M] () -- C:\WINDOWS\tasks\avast! Emergency Update.job [2012-10-12 22:32:15 | 000,000,258 | ---- | M] () -- C:\WINDOWS\tasks\Game_Booster_Startup.job [2012-10-12 22:31:20 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2012-10-12 21:03:49 | 000,000,708 | ---- | M] () -- C:\Documents and Settings\Wojciech\Pulpit\HD Tune Pro.lnk [2012-10-12 20:34:30 | 000,117,760 | ---- | M] () -- C:\Documents and Settings\Wojciech\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012-10-12 15:55:00 | 000,002,327 | ---- | M] () -- C:\Documents and Settings\Wojciech\Pulpit\Google Chrome.lnk [2012-10-12 00:33:50 | 000,002,262 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2012-10-09 16:59:56 | 000,490,284 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2012-10-09 16:59:56 | 000,432,356 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2012-10-09 16:59:56 | 000,083,660 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2012-10-09 16:59:56 | 000,067,312 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2012-10-09 16:20:24 | 000,003,062 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\18a8d345abc1f518c78929e65eef8826.png [2012-10-09 14:20:50 | 000,022,950 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\1349785249135.png [2012-10-09 13:30:20 | 001,312,834 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0288.jpg [2012-10-08 14:30:34 | 002,018,172 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0287.jpg [2012-10-08 06:52:00 | 000,001,092 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2052111302-2049760794-839522115-1003Core.job [2012-10-07 09:41:59 | 000,000,327 | RHS- | M] () -- C:\boot.ini [2012-10-07 01:54:29 | 000,000,884 | ---- | M] () -- C:\Documents and Settings\Wojciech\Pulpit\AIDA64 Extreme Edition.lnk [2012-10-05 20:58:32 | 001,111,568 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0286.jpg [2012-10-05 20:58:26 | 001,108,789 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0285.jpg [2012-10-05 20:57:44 | 001,007,989 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0278.jpg [2012-10-05 20:51:34 | 001,223,987 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0277.jpg [2012-10-05 20:51:22 | 001,247,188 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0276.jpg [2012-10-05 20:51:04 | 001,247,086 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0275.jpg [2012-10-05 20:50:56 | 000,993,714 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0274.jpg [2012-10-05 20:35:32 | 001,297,280 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0273.jpg [2012-10-05 20:34:46 | 001,086,363 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0272.jpg [2012-10-05 20:23:22 | 001,241,714 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0271.jpg [2012-10-05 20:23:12 | 001,122,354 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0270.jpg [2012-10-05 20:22:52 | 000,725,099 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0269.jpg [2012-10-05 20:21:04 | 001,209,893 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0268.jpg [2012-10-05 20:20:58 | 001,424,067 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0267.jpg [2012-10-05 20:20:30 | 000,960,971 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0266.jpg [2012-10-05 18:40:36 | 001,693,439 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0265.jpg [2012-10-05 18:39:18 | 001,766,944 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0264.jpg [2012-10-05 16:09:52 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat [2012-10-04 18:05:32 | 000,825,633 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0263.jpg [2012-10-04 18:05:24 | 000,915,999 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0262.jpg [2012-10-04 18:04:54 | 000,047,722 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0261.jpg [2012-10-04 13:05:34 | 000,116,518 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0260.jpg [2012-10-04 13:05:26 | 000,087,052 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0259.jpg [2012-10-04 13:05:18 | 000,150,296 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0258.jpg [2012-10-04 13:02:48 | 000,121,608 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0257.jpg [2012-10-04 13:02:24 | 000,941,902 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0256.jpg [2012-10-03 21:27:04 | 000,606,723 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0255.jpg [2012-10-03 21:26:58 | 000,577,845 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0254.jpg [2012-10-03 21:26:04 | 000,642,973 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0253.jpg [2012-10-03 21:25:32 | 000,445,112 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0252.jpg [2012-10-03 21:24:36 | 000,422,512 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0251.jpg [2012-10-03 11:57:15 | 000,000,686 | ---- | M] () -- C:\Documents and Settings\Wojciech\Pulpit\To do list.lnk [2012-10-01 20:56:18 | 001,453,628 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0239.jpg [2012-09-30 13:30:34 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0238.jpg [2012-09-30 13:30:18 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0237.jpg [2012-09-30 13:29:56 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0236.jpg [2012-09-30 13:29:46 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0235.jpg [2012-09-30 13:29:14 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0234.jpg [2012-09-30 13:29:10 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0233.jpg [2012-09-30 13:28:48 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0232.jpg [2012-09-30 13:27:12 | 000,393,958 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0231.jpg [2012-09-30 13:27:00 | 000,462,560 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0230.jpg [2012-09-30 13:26:42 | 001,377,457 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0229.jpg [2012-09-30 13:25:22 | 000,855,020 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0228.jpg [2012-09-27 20:06:27 | 000,234,768 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.xtr [2012-09-26 21:40:12 | 001,409,156 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0219.jpg [2012-09-26 21:40:06 | 001,102,963 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0218.jpg [2012-09-26 21:39:16 | 001,523,138 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0217.jpg [2012-09-26 21:38:54 | 001,089,862 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0216.jpg [2012-09-26 09:52:08 | 000,998,817 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0215.jpg [2012-09-26 09:50:44 | 000,759,418 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0214.jpg [2012-09-24 21:07:26 | 001,778,444 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0213.jpg [2012-09-24 21:06:34 | 002,104,426 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0212.jpg [2012-09-24 21:04:58 | 001,967,748 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0211.jpg [2012-09-24 21:03:54 | 002,144,018 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0210.jpg [2012-09-24 21:02:34 | 001,467,517 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0209.jpg [2012-09-24 15:48:10 | 001,262,673 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0208.jpg [2012-09-24 15:47:18 | 001,388,013 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0207.jpg [2012-09-23 22:40:41 | 000,000,745 | ---- | M] () -- C:\Documents and Settings\Wojciech\Pulpit\123 Free Memory Card Games.lnk [2012-09-23 20:20:04 | 001,178,184 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0206.jpg [2012-09-23 20:19:50 | 001,288,100 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0205.jpg [2012-09-23 20:19:30 | 001,138,145 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0204.jpg [2012-09-22 06:20:53 | 000,196,960 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2012-09-21 18:28:12 | 000,705,900 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0203.jpg [2012-09-21 18:27:14 | 000,962,837 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0202.jpg [2012-09-21 18:26:58 | 001,028,340 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0201.jpg [2012-09-21 18:24:06 | 000,910,030 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0200.jpg [2012-09-21 18:23:38 | 000,843,344 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0199.jpg [2012-09-21 18:23:14 | 001,240,813 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0198.jpg [2012-09-20 11:02:50 | 001,261,164 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0194.jpg [2012-09-18 01:55:05 | 000,138,056 | ---- | M] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys [2012-09-18 01:55:05 | 000,138,056 | ---- | M] () -- C:\Documents and Settings\Wojciech\Dane aplikacji\PnkBstrK.sys [2012-09-18 01:06:01 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts [2012-09-18 00:25:46 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes Anti-Malware.lnk [2012-09-17 19:15:14 | 001,074,636 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin [2012-09-17 19:15:14 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin [2012-09-17 19:15:09 | 001,074,636 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin [2012-09-17 19:15:09 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\nvdrswr.lk [2012-09-17 01:14:40 | 000,761,204 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0193.jpg [2012-09-17 01:14:22 | 000,742,466 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0192.jpg [2012-09-17 01:13:48 | 000,330,443 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0191.jpg [2012-09-17 01:12:22 | 000,713,177 | ---- | M] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0190.jpg [2012-09-16 15:19:35 | 000,000,211 | ---- | M] () -- C:\Boot.bak [2012-09-15 23:01:37 | 000,000,806 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Mafia II.lnk [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2012-10-12 21:03:49 | 000,000,708 | ---- | C] () -- C:\Documents and Settings\Wojciech\Pulpit\HD Tune Pro.lnk [2012-10-12 20:14:41 | 000,003,062 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\18a8d345abc1f518c78929e65eef8826.png [2012-10-09 14:20:50 | 000,022,950 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\1349785249135.png [2012-10-09 13:30:20 | 001,312,834 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0288.jpg [2012-10-08 14:30:35 | 002,018,172 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0287.jpg [2012-10-07 01:54:29 | 000,000,884 | ---- | C] () -- C:\Documents and Settings\Wojciech\Pulpit\AIDA64 Extreme Edition.lnk [2012-10-05 20:58:33 | 001,111,568 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0286.jpg [2012-10-05 20:58:27 | 001,108,789 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0285.jpg [2012-10-05 20:57:45 | 001,007,989 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0278.jpg [2012-10-05 20:51:34 | 001,223,987 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0277.jpg [2012-10-05 20:51:23 | 001,247,188 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0276.jpg [2012-10-05 20:51:05 | 001,247,086 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0275.jpg [2012-10-05 20:50:57 | 000,993,714 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0274.jpg [2012-10-05 20:35:33 | 001,297,280 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0273.jpg [2012-10-05 20:34:47 | 001,086,363 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0272.jpg [2012-10-05 20:23:22 | 001,241,714 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0271.jpg [2012-10-05 20:23:12 | 001,122,354 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0270.jpg [2012-10-05 20:22:53 | 000,725,099 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0269.jpg [2012-10-05 20:21:04 | 001,209,893 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0268.jpg [2012-10-05 20:20:58 | 001,424,067 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0267.jpg [2012-10-05 20:20:30 | 000,960,971 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0266.jpg [2012-10-05 18:40:37 | 001,693,439 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0265.jpg [2012-10-05 18:39:18 | 001,766,944 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0264.jpg [2012-10-05 15:03:29 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2012-10-04 18:05:33 | 000,825,633 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0263.jpg [2012-10-04 18:05:25 | 000,915,999 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0262.jpg [2012-10-04 18:04:55 | 000,047,722 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0261.jpg [2012-10-04 13:05:34 | 000,116,518 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0260.jpg [2012-10-04 13:05:27 | 000,087,052 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0259.jpg [2012-10-04 13:05:19 | 000,150,296 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0258.jpg [2012-10-04 13:02:49 | 000,121,608 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0257.jpg [2012-10-04 13:02:24 | 000,941,902 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0256.jpg [2012-10-03 21:27:05 | 000,606,723 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0255.jpg [2012-10-03 21:26:58 | 000,577,845 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0254.jpg [2012-10-03 21:26:04 | 000,642,973 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0253.jpg [2012-10-03 21:25:33 | 000,445,112 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0252.jpg [2012-10-03 21:24:37 | 000,422,512 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0251.jpg [2012-10-03 11:56:32 | 000,000,686 | ---- | C] () -- C:\Documents and Settings\Wojciech\Pulpit\To do list.lnk [2012-10-01 20:56:18 | 001,453,628 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0239.jpg [2012-09-30 13:30:34 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0238.jpg [2012-09-30 13:30:18 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0237.jpg [2012-09-30 13:29:56 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0236.jpg [2012-09-30 13:29:46 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0235.jpg [2012-09-30 13:29:15 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0234.jpg [2012-09-30 13:29:10 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0233.jpg [2012-09-30 13:28:48 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0232.jpg [2012-09-30 13:27:13 | 000,393,958 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0231.jpg [2012-09-30 13:27:01 | 000,462,560 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0230.jpg [2012-09-30 13:26:43 | 001,377,457 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0229.jpg [2012-09-30 13:25:23 | 000,855,020 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0228.jpg [2012-09-27 20:06:27 | 000,234,768 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.xtr [2012-09-26 21:40:12 | 001,409,156 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0219.jpg [2012-09-26 21:40:06 | 001,102,963 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0218.jpg [2012-09-26 21:39:16 | 001,523,138 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0217.jpg [2012-09-26 21:38:55 | 001,089,862 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0216.jpg [2012-09-26 09:52:08 | 000,998,817 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0215.jpg [2012-09-26 09:50:45 | 000,759,418 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0214.jpg [2012-09-24 21:07:26 | 001,778,444 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0213.jpg [2012-09-24 21:06:34 | 002,104,426 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0212.jpg [2012-09-24 21:04:58 | 001,967,748 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0211.jpg [2012-09-24 21:03:54 | 002,144,018 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0210.jpg [2012-09-24 21:02:34 | 001,467,517 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0209.jpg [2012-09-24 15:48:11 | 001,262,673 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0208.jpg [2012-09-24 15:47:18 | 001,388,013 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0207.jpg [2012-09-23 22:40:41 | 000,000,751 | ---- | C] () -- C:\Documents and Settings\Wojciech\Menu Start\Programy\123 Free Memory Card Games.lnk [2012-09-23 22:40:41 | 000,000,745 | ---- | C] () -- C:\Documents and Settings\Wojciech\Pulpit\123 Free Memory Card Games.lnk [2012-09-23 20:20:04 | 001,178,184 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0206.jpg [2012-09-23 20:19:51 | 001,288,100 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0205.jpg [2012-09-23 20:19:30 | 001,138,145 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0204.jpg [2012-09-21 18:28:12 | 000,705,900 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0203.jpg [2012-09-21 18:27:15 | 000,962,837 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0202.jpg [2012-09-21 18:26:59 | 001,028,340 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0201.jpg [2012-09-21 18:24:06 | 000,910,030 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0200.jpg [2012-09-21 18:23:39 | 000,843,344 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0199.jpg [2012-09-21 18:23:15 | 001,240,813 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0198.jpg [2012-09-20 11:02:51 | 001,261,164 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0194.jpg [2012-09-18 01:55:05 | 000,138,056 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys [2012-09-18 01:55:05 | 000,138,056 | ---- | C] () -- C:\Documents and Settings\Wojciech\Dane aplikacji\PnkBstrK.sys [2012-09-18 01:54:42 | 000,234,768 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe [2012-09-18 01:54:38 | 000,075,136 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe [2012-09-18 00:59:14 | 000,262,400 | RHS- | C] () -- C:\cmldr [2012-09-18 00:57:31 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe [2012-09-18 00:57:31 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe [2012-09-18 00:57:31 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe [2012-09-18 00:57:31 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe [2012-09-18 00:57:31 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe [2012-09-18 00:25:46 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes Anti-Malware.lnk [2012-09-17 19:15:09 | 001,074,636 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin [2012-09-17 19:15:09 | 001,074,636 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin [2012-09-17 19:15:09 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin [2012-09-17 19:15:09 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\nvdrswr.lk [2012-09-17 19:14:36 | 002,807,708 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data [2012-09-17 19:14:36 | 000,010,264 | ---- | C] () -- C:\WINDOWS\System32\nvinfo.pb [2012-09-17 01:14:40 | 000,761,204 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0193.jpg [2012-09-17 01:14:22 | 000,742,466 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0192.jpg [2012-09-17 01:13:49 | 000,330,443 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0191.jpg [2012-09-17 01:12:23 | 000,713,177 | ---- | C] () -- C:\Documents and Settings\Wojciech\Moje dokumenty\IMAG0190.jpg [2012-09-15 23:01:37 | 000,000,806 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Mafia II.lnk [2012-09-02 18:54:17 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\LauncherAccess.dt [2012-09-02 18:52:44 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys [2012-08-29 18:37:12 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin [2012-08-29 18:36:43 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat [2012-08-29 18:36:42 | 000,618,823 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat [2012-08-29 18:36:42 | 000,000,003 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat [2012-08-28 18:49:32 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll [2012-08-28 14:06:34 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe [2012-08-28 14:03:38 | 000,001,769 | ---- | C] () -- C:\WINDOWS\Language_trs.ini [2012-08-28 13:44:34 | 000,117,760 | ---- | C] () -- C:\Documents and Settings\Wojciech\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012-08-28 02:03:59 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2012-08-28 02:02:34 | 000,196,960 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2012-08-28 01:16:05 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2012-08-28 01:11:36 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [color=#E56717]========== ZeroAccess Check ==========[/color] [2012-08-29 18:25:01 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shdocvw.dll -- [2012-06-28 23:33:23 | 001,510,400 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2009-02-09 12:53:44 | 000,473,600 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = %systemroot%\system32\wbem\wbemess.dll -- [2008-04-14 22:50:58 | 000,273,920 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [color=#E56717]========== LOP Check ==========[/color] [2012-08-28 12:34:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ashampoo [2012-09-02 13:43:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVAST Software [2012-08-28 11:59:55 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonBJ [2012-08-28 12:01:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonIJPLM [2012-08-28 22:41:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DatacardService [2012-09-06 00:18:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\EA Core [2012-09-06 00:18:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Electronic Arts [2012-08-28 11:55:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\IObit [2012-08-28 22:40:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PLAY ONLINE [2012-09-05 23:38:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Solidshield [2012-09-09 23:17:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\YouTube Downloader [2012-09-05 00:59:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Wojciech\Dane aplikacji\.oit [2012-09-30 20:21:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Wojciech\Dane aplikacji\aerix [2012-09-19 17:22:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Wojciech\Dane aplikacji\Ashampoo [2012-08-29 17:30:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Wojciech\Dane aplikacji\Gadu-Gadu [2012-08-28 11:46:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Wojciech\Dane aplikacji\GHISLER [2012-10-12 21:14:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Wojciech\Dane aplikacji\HD Tune Pro [2012-09-02 18:54:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Wojciech\Dane aplikacji\Samsung [2012-09-01 10:40:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Wojciech\Dane aplikacji\Systweak [color=#E56717]========== Purity Check ==========[/color] < End of report >

Extras:

Kod: Zaznacz wszystko: OTL Extras logfile created on: 2012-10-12 23:55:57 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Wojciech\Moje dokumenty\Downloads Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,21 Gb Available Physical Memory | 60,51% Memory free 3,85 Gb Paging File | 3,15 Gb Available in Paging File | 81,78% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 39,06 Gb Total Space | 7,81 Gb Free Space | 20,00% Space Free | Partition Type: NTFS Drive D: | 35,45 Gb Total Space | 35,39 Gb Free Space | 99,82% Space Free | Partition Type: NTFS Drive E: | 48,83 Gb Total Space | 30,75 Gb Free Space | 62,98% Space Free | Partition Type: NTFS Drive G: | 25,69 Gb Total Space | 25,60 Gb Free Space | 99,63% Space Free | Partition Type: NTFS Drive J: | 81,19 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS Drive K: | 33,12 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS Drive M: | 930,83 Gb Total Space | 429,40 Gb Free Space | 46,13% Space Free | Partition Type: NTFS Computer Name: DARKMAN | User Name: Wojciech | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* .url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l [HKEY_USERS\S-1-5-21-2052111302-2049760794-839522115-1003\SOFTWARE\Classes\<extension>] .html [@ = ChromeHTML.WJYOX5KJW3LH54QT7LL3AKXONA] -- C:\Documents and Settings\Wojciech\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe (Google Inc.) [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* exefile [open] -- "%1" %* htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office14\msohtmed.exe" %1 (Microsoft Corporation) InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List] "139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004 "445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005 "137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001 "138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004 "445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005 "137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001 "138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002 [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] "%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation) "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation) "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation) "C:\Program Files\BitTorrent\BitTorrent.exe" = C:\Program Files\BitTorrent\BitTorrent.exe:*:Enabled:BitTorrent -- (BitTorrent, Inc.) "C:\Program Files\Microsoft Office\Office14\GROOVE.EXE" = C:\Program Files\Microsoft Office\Office14\GROOVE.EXE:*:Enabled:Microsoft SharePoint Workspace -- (Microsoft Corporation) "C:\Documents and Settings\Wojciech\Ustawienia lokalne\Dane aplikacji\Akamai\netsession_win.exe" = C:\Documents and Settings\Wojciech\Ustawienia lokalne\Dane aplikacji\Akamai\netsession_win.exe:*:Enabled:Akamai NetSession Client -- (Akamai Technologies, Inc.) "D:\Program Files\Strategy First\Disciples II - Powrót Galleana\Discipl2.exe" = D:\Program Files\Strategy First\Disciples II - Powrót Galleana\Discipl2.exe:*:Enabled:Disciples II v2.01 "D:\Program Files\Electronic Arts\Need for Speed(TM) Hot Pursuit\Launcher.exe" = D:\Program Files\Electronic Arts\Need for Speed(TM) Hot Pursuit\Launcher.exe:*:Enabled:Need for Speed(TM) Hot Pursuit "D:\Program Files\Electronic Arts\Need for Speed(TM) Hot Pursuit\NFS11.exe" = D:\Program Files\Electronic Arts\Need for Speed(TM) Hot Pursuit\NFS11.exe:*:Enabled:Need for Speed(TM) Hot Pursuit Application "C:\WINDOWS\system32\PnkBstrA.exe" = C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA -- () "C:\WINDOWS\system32\PnkBstrB.exe" = C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB -- () "C:\Program Files\Gadu-Gadu\gg.exe" = C:\Program Files\Gadu-Gadu\gg.exe:*:Enabled:Gadu-Gadu - program główny -- (Gadu-Gadu S.A.) "C:\Program Files\EA Games\Battlefield Play4Free\BFP4f.exe" = C:\Program Files\EA Games\Battlefield Play4Free\BFP4f.exe:*:Enabled:BFP4f -- () [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{0807E67B-DACB-1739-A87E-3046FF40BA23}" = CCC Help Chinese Traditional "{0DF310E3-6C01-99DC-296F-1D021BA36C2D}" = CCC Help English "{105CFC7C-6992-11D5-BD9D-000102C10FD8}" = Lizardtech DjVu Control "{108433AC-4560-1E5B-682E-1145F173EF34}" = AMD Catalyst Install Manager "{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP1800_series" = Canon iP1800 series "{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}" = YouTube Downloader 3.5 "{1E8E87B5-4531-CEE3-4791-6AD9E72076EC}" = CCC Help Danish "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1" = Geeks3D.com FurMark 1.10.1 "{268723B7-A994-4286-9F85-B974D5CAFC7B}" = Ontrack EasyRecovery Professional "{26A24AE4-039D-4CA4-87B4-2F83217007FF}" = Java 7 Update 7 "{27596347-C945-B113-EF47-169D471CEB05}" = CCC Help Turkish "{2AA44AF4-C116-4219-B800-4573E7E6D421}_is1" = Advanced Disk Recovery 2011 "{350C97C2-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{3666DE18-A4CC-4E1E-8165-0D78758C2209}" = CCC Help Russian "{3B5C7583-F7DA-481E-9A0D-AFFCC972A139}" = Disciples II - Powrót Galleana "{479826D5-FE36-711F-8BE3-AB7B44440F66}" = ccc-utility "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4EB106F5-110F-4E96-BCBA-1687AE57A04E}" = FlatOut2 "{532669C6-3139-E755-B3B8-95F184EB27EB}" = CCC Help German "{56582EEA-3AEF-4D84-8B9D-C87A3CD9250F}" = GetDataBack for NTFS "{577F4DD2-ED68-690F-6328-8A8CAC8FCA75}" = CCC Help Polish "{637A3EC2-4299-67B2-E0D2-C25572F4D37A}" = CCC Help Thai "{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1" = Revo Uninstaller Pro 2.5.0 "{6D6664A9-3342-4948-9B7E-034EFE366F0F}" = HTC Driver Installer "{702F39B4-05FB-22F4-8426-E5FFFA330FF3}" = CCC Help Chinese Standard "{73FB391E-E800-CC82-D9BA-EF9CB8A939F3}" = CCC Help French "{747E2E56-A68B-15C6-BB77-31BFE0C031EF}" = CCC Help Spanish "{7A37A44B-968E-6CA3-278C-878D4D08B226}" = CCC Help Czech "{7C0FB04E-5A40-C63D-CC1B-B6C1B60FDDA3}" = CCC Help Japanese "{7D94796D-007E-45DE-CEAD-8E616D78E95B}" = CCC Help Dutch "{7E7C98D1-4F44-21D4-C351-25E2367027F3}" = Catalyst Control Center "{7F3AD00A-1819-4B15-BB7D-08B3586336D7}" = 3DMark06 "{83A606F5-BF6F-42ED-9F33-B9F74297CDED}" = Need for Speed(TM) Hot Pursuit "{87686C21-8A15-4b4d-A3F1-11141D9BE094}" = Battlefield Play4Free "{87A91A66-1566-714D-E1BE-1F3B040E65D5}" = CCC Help Swedish "{90140000-0010-0415-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Polish) 14 "{90140000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2010 "{90140000-0015-0415-0000-0000000FF1CE}" = Microsoft Office Access MUI (Polish) 2010 "{90140000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2010 "{90140000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2010 "{90140000-0019-0415-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Polish) 2010 "{90140000-001A-0415-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Polish) 2010 "{90140000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2010 "{90140000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2010 "{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010 "{90140000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2010 "{90140000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2010 "{90140000-0044-0415-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Polish) 2010 "{90140000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2010 "{90140000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2010 "{90140000-00BA-0415-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Polish) 2010 "{92F63D17-2A32-7184-B8D7-905E0E1BC2A9}" = CCC Help Hungarian "{95CEF602-B837-0C37-F5E6-49C8F3196998}" = CCC Help Greek "{97A39919-9FEA-48B7-AB2B-4F99212D1E98}" = HDD Regenerator "{97E1A4DE-82AB-0448-0AEA-77DC1DD9A492}" = Catalyst Control Center Localization All "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9DFD861E-2692-873F-BA2C-E4788648D966}" = CCC Help Italian "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable "{AC76BA86-7AD7-1033-7B44-AA1000000001}" = Adobe Reader X (10.1.4) "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panel sterowania NVIDIA 301.42 "{B50676DC-AAE9-20DF-01A5-DABCDECD6DFC}" = Catalyst Control Center Graphics Previews Common "{BEE64C14-BEF1-4610-8A68-A16EAA47B882}" = Futuremark SystemInfo "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{C4A4722E-79F9-417C-BD72-8D359A090C97}" = Samsung PC Studio 3 "{C79A37F3-C076-48BE-B290-F4C8676ABD74}" = Samsung PC Studio 3 "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{D22AFEDF-6A5B-459D-A9EA-D16E422E4C18}" = Nokia Connectivity Cable Driver "{D726D186-0BA7-8BC4-6273-A9AED17C7B8A}" = Application Profiles "{DD9F821E-7B8D-210F-A4AE-47C60870DEBE}" = CCC Help Norwegian "{E2F0AF23-FE2F-4222-9A43-55E63CC41EF1}" = Catalyst Control Center - Branding "{E6F42010-AA5A-B862-9620-8CBD23ACDED4}" = CCC Help Portuguese "{EAAE7669-947C-26DD-563D-863B63FFC1EA}" = CCC Help Finnish "{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}" = Samsung PC Studio 3 USB Driver Installer "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F296A4CD-54A2-1EEE-CE14-8F88A1D97083}" = CCC Help Korean "{FC4FF5F4-2265-4E18-8BBC-12CBA9794388}_is1" = DiskGenius 3.3 "123 Free Memory Card Games" = 123 Free Memory Card Games "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "AIDA64 Extreme Edition_is1" = AIDA64 Extreme Edition v2.60 "Ashampoo Burning Studio 2012_is1" = Ashampoo Burning Studio 2012 v10.0.15 "avast" = avast! Free Antivirus "BadCopy Pro" = BadCopy Pro "BitTorrent" = BitTorrent "Blender" = Blender "Budzik_is1" = Budzik 1.04 "CANONIJPLM100" = PIXMA Extended Survey Program "CPUID CPU-Z_is1" = CPUID CPU-Z 1.60 "Driver Cleaner" = Driver Cleaner 3 "Enclave_is1" = Enclave "EVEREST Home Edition_is1" = EVEREST Home Edition v2.20 "FormatFactory" = FormatFactory 2.60 "Fraps" = Fraps "Gadu-Gadu" = Gadu-Gadu 7.7 "Game Booster_is1" = Game Booster 3 "HD Tune Pro_is1" = HD Tune Pro 5.00 "ie8" = Windows Internet Explorer 8 "InstallShield_{268723B7-A994-4286-9F85-B974D5CAFC7B}" = Ontrack EasyRecovery Professional "Mafia II_is1" = Mafia II "Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware wersja 1.65.0.1400 "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Mozilla Firefox 15.0.1 (x86 pl)" = Mozilla Firefox 15.0.1 (x86 pl) "MozillaMaintenanceService" = Mozilla Maintenance Service "NapiProjekt_is1" = NapiProjekt 1.0.6.9 "Office14.PROPLUS" = Microsoft Office Professional Plus 2010 "OpenAL" = OpenAL "PLAY ONLINE" = PLAY ONLINE "PunkBusterSvc" = PunkBuster Services "Rejestracja użytkownika drukarki Canon iP1800 series" = Rejestracja użytkownika drukarki Canon iP1800 series "SAMSUNG Mobile Modem" = SAMSUNG Mobile Modem Driver Set "Samsung Mobile phone USB driver" = Samsung Mobile phone USB driver Software "SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software "SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software "Shut Down-O-Matic" = Shut Down-O-Matic "Totalcmd" = Total Commander (Remove or Repair) "VLC media player" = VLC media player 1.1.9 "Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7 "Windows XP Service Pack" = Windows XP Service Pack 3 "WinRAR archiver" = WinRAR 4.11 (32-bitowy) [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-2052111302-2049760794-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Akamai" = Akamai NetSession Interface "Google Chrome" = Google Chrome [color=#E56717]========== Last 20 Event Log Errors ==========[/color] [ Application Events ] Error - 2012-09-26 17:21:35 | Computer Name = DARKMAN | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd mafia2.exe, wersja 0.0.0.0, moduł powodujący błąd mafia2.exe, wersja 0.0.0.0, adres błędu 0x00175e9b. Error - 2012-09-27 11:49:53 | Computer Name = DARKMAN | Source = Chrome | ID = 1 Description = Error - 2012-10-04 10:03:09 | Computer Name = DARKMAN | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd mafia2.exe, wersja 0.0.0.0, moduł powodujący błąd mafia2.exe, wersja 0.0.0.0, adres błędu 0x0097bb4e. Error - 2012-10-04 13:02:46 | Computer Name = DARKMAN | Source = Microsoft Office 14 | ID = 5000 Description = EventType office11shipassert, P1 2jix, P2 14.0.4763.0, P3 NIL, P4 NIL, P5 NIL, P6 NIL, P7 NIL, P8 NIL, P9 NIL, P10 NIL. Error - 2012-10-06 05:24:13 | Computer Name = DARKMAN | Source = WmiAdapter | ID = 4099 Description = Otwarcie usługi nie powiodło się. Error - 2012-10-12 14:09:49 | Computer Name = DARKMAN | Source = Application Hang | ID = 1002 Description = Aplikacja zawieszająca vlc.exe, wersja 1.1.9.0, moduł zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000. Error - 2012-10-12 15:23:12 | Computer Name = DARKMAN | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd hdtunepro.exe, wersja 5.0.0.0, moduł powodujący błąd hdtunepro.exe, wersja 5.0.0.0, adres błędu 0x0005242b. [ System Events ] Error - 2012-10-12 16:25:58 | Computer Name = DARKMAN | Source = atapi | ID = 262153 Description = Urządzenie \Device\Ide\IdePort0 nie odpowiedziało w ramach ustalonego limitu czasu. Error - 2012-10-12 16:26:04 | Computer Name = DARKMAN | Source = atapi | ID = 262153 Description = Urządzenie \Device\Ide\IdePort0 nie odpowiedziało w ramach ustalonego limitu czasu. Error - 2012-10-12 16:26:05 | Computer Name = DARKMAN | Source = atapi | ID = 262153 Description = Urządzenie \Device\Ide\IdePort0 nie odpowiedziało w ramach ustalonego limitu czasu. Error - 2012-10-12 16:26:05 | Computer Name = DARKMAN | Source = atapi | ID = 262155 Description = Sterownik wykrył błąd kontrolera na \Device\Ide\IdePort0. Error - 2012-10-12 16:28:28 | Computer Name = DARKMAN | Source = atapi | ID = 262153 Description = Urządzenie \Device\Ide\IdePort0 nie odpowiedziało w ramach ustalonego limitu czasu. Error - 2012-10-12 16:34:31 | Computer Name = DARKMAN | Source = Service Control Manager | ID = 7009 Description = Limit czasu (30000 milisekund) podczas oczekiwania na połączenie się z usługą PLAY ONLINE. OUC. Error - 2012-10-12 16:34:31 | Computer Name = DARKMAN | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi PLAY ONLINE. OUC z powodu następującego błędu: %%1053 Error - 2012-10-12 16:35:34 | Computer Name = DARKMAN | Source = System Error | ID = 1003 Description = Kod błędu 100000d1, parametr 1 0000000c, parametr 2 00000007, parametr 3 00000001, parametr 4 f74a15f7. Error - 2012-10-12 16:40:26 | Computer Name = DARKMAN | Source = atapi | ID = 262153 Description = Urządzenie \Device\Ide\IdePort0 nie odpowiedziało w ramach ustalonego limitu czasu. Error - 2012-10-12 16:47:51 | Computer Name = DARKMAN | Source = atapi | ID = 262153 Description = Urządzenie \Device\Ide\IdePort0 nie odpowiedziało w ramach ustalonego limitu czasu. < End of report >

A jeśli chodzi o główną sprawę, doszedłem do wniosku, że to wina dysku. Na innym się nic takiego nie dzieje. Sprawdziłem swój dysk przez HD Tune Pro i jedna rzecz mnie zaniepokoiła. W zakładce Health wpis Ultra DMA CRC Error Count naliczyło mi 30 błędów (pisze , że to może wynikać z uszkodzenia kabla, ale zmieniłem kabel i dalej tyle samo). Co dziwniejsze, w moim drugim, dobrze działającym dysku naliczyło mi w tym samym wpisie aż 371 błędów. Czy to normalne?

**Posty:** 18165 · przez **wojtas** 13 Paź 2012, 16:12

nic takiego nie ma...

Uruchom OTL i w sekcji własne opcje skanowania / skrypt wklej:

:OTL
DRV - File not found [Kernel | Disabled | Stopped] -- System32\Drivers\sptd.sys -- (sptd)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\Wojciech\USTAWI~1\Temp\cpuz130\cpuz_x32.sys -- (cpuz130)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\Wojciech\USTAWI~1\Temp\catchme.sys -- (catchme)
DRV - File not found [Kernel | On_Demand | Unknown] -- C:\DOCUME~1\Wojciech\USTAWI~1\Temp\awldapoc.sys -- (awldapoc)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\Wojciech\USTAWI~1\Temp\ALSysIO.sys -- (ALSysIO)

:Commands
[emptytemp]

Kliknij wykonaj skrypt. I potwierdź reset komputera .

*Uruchom OTL z opcji sprzątanie.
* wykonaj optymalizację Windowsa ( instrukcja dla Windowsa XP, lecz w innych systemach jest podobnie )
* zrób pełny skan Malwarebytes Anti-Malware (zaktualizuj, gdy coś znajdzie pokaż raport, i usuń wszystko za pomocą tego programu )
* wykonaj kroki finalizujące temat

Klikasz prawym przyciskiem myszy na Mój komputer => Właściwości => Sprzęt => Menadżer urządzeń => Kontrolery IDE ATA/ATAPI => Podstawowy kanał IDE => Ustawienia zaawansowane i sprawdź czy dysk pracuje w trybie PIO czy DMA. Sprawdz tez w pomocniczym kanale IDE. Jeśli w którymś kanale jest tryb PIO to klikasz na niego PPM i Odinstaluj. Po restarcie sprawdz czy jest lepiej

Autor postu otrzymał pochwałę

**Posty:** 154 · przez **Darkman0** 17 Paź 2012, 23:00

Witam ponownie, w międzyczasie padł mi totalnie dysk twardy. Musiałem kupić nowy. Po zainstalowaniu systemu wszystko śmiga jak marzenie. W każdym razie dzięki za pomoc, temat do zamknięcia.

Kto jest na forum