Przerywające połączenie z internetem


(Reknes) #1

Od jakiegoś czasu (kilku dni) mam problem z łącznością z internetem, tzn jak gram w gry online z klientem, to co jakiś czas mam coś w rodzaju zamrożenia się gier (choć np mogę rozglądać się w grze, to jednak nie mogę nic innego robić, bo gra nie odpowiada), gdy gram w gry w przeglądarce (firefox), to ta przeglądarka mi się zacina. Coś podobnego mam z youtube: co jakiś czas filmiki mi przestaje się ładować, a odświeżanie strony trwa dłużej niż zwykle. Nawet niektóre strony przestają się na chwile ładować (lub po prostu nie potrafią się załadować).

Kilka dni przed zauważeniem tych problemów, miał kłopoty z dostawcą internetu (ponoć wybita studzienka kanalizacyjna miała wpływ ma instalację elektryczną i spowodowała problemy techniczne z połączeniem miedzy modemami i internetem), lecz wg mnie to nie ma znaczenia,

Problemy mam na laptopie dell latitude d630. Mam taką sytuację (jeśli chodzi o sposób połączenia z internetem): mam ruter z wifi (antenka wyciągnięta) do którego podłączony jest stary złom (pc) i router, zaś do routera wifi podłączony jest mój laptop (bezprzewodowo) i czasami przeglądam internet na swojej nokii e51 (podłączony bezprzewodowo do rutera).

Mój pc nie ma problemów z internetem, więc prawie na pewno mam problem z sterownikiem lub kartą sieciową (na laptopie).

P.S. Czasami urywa mi połączenie z internetem na dobre (by odzyskać połączenie, muszę zresetować system).

Dołączam swoje logi z OTL:

Extras.txt :

OTL Extras logfile created on: 2012-10-11 20:18:43 - Run 1

OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Andy\Moje dokumenty\Downloads

Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 8.0.6001.18702)

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd


1,99 Gb Total Physical Memory | 1,08 Gb Available Physical Memory | 54,29% Memory free

3,84 Gb Paging File | 3,02 Gb Available in Paging File | 78,75% Paging File free

Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]


%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 26,34 Gb Total Space | 7,19 Gb Free Space | 27,31% Space Free | Partition Type: NTFS

Drive E: | 48,18 Gb Total Space | 16,04 Gb Free Space | 33,29% Space Free | Partition Type: NTFS


Computer Name: LAPTOP | User Name: Andy | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: Current user

Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days


[color=#E56717]========== Extra Registry (SafeList) ==========[/color]



[color=#E56717]========== File Associations ==========[/color]


[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\]

.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

.html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)


[HKEY_CURRENT_USER\SOFTWARE\Classes\]

.html [@ = ChromeHTML] -- Reg Error: Key error. File not found


[color=#E56717]========== Shell Spawning ==========[/color]


[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command]

batfile [open] -- "%1" %*

cmdfile [open] -- "%1" %*

comfile [open] -- "%1" %*

cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

exefile [open] -- "%1" %*

htmlfile [edit] -- Reg Error: Key error.

http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)

https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)

piffile [open] -- "%1" %*

regfile [merge] -- Reg Error: Key error.

scrfile [config] -- "%1"

scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l

scrfile [open] -- "%1" /S

txtfile [edit] -- Reg Error: Key error.

Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1

Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()

Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()

Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)

Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)

Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)


[color=#E56717]========== Security Center Settings ==========[/color]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

"FirstRunDisabled" = 1

"AntiVirusDisableNotify" = 0

"FirewallDisableNotify" = 0

"UpdatesDisableNotify" = 0

"AntiVirusOverride" = 0

"FirewallOverride" = 0


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]


[color=#E56717]========== System Restore Settings ==========[/color]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]

"DisableSR" = 0


[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]

"Start" = 0


[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]

"Start" = 2


[color=#E56717]========== Firewall Settings ==========[/color]


[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

"DoNotAllowExceptions" = 0


[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

"57148:TCP" = 57148:TCP:*:Enabled:Pando Media Booster

"57148:UDP" = 57148:UDP:*:Enabled:Pando Media Booster


[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

"DoNotAllowExceptions" = 0


[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

"57148:TCP" = 57148:TCP:*:Enabled:Pando Media Booster

"57148:UDP" = 57148:UDP:*:Enabled:Pando Media Booster

"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007

"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

"2852:TCP" = 2852:TCP:*:Enabled:Akamai NetSession Interface

"5000:UDP" = 5000:UDP:*:Enabled:Akamai NetSession Interface


[color=#E56717]========== Authorized Applications List ==========[/color]


[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)

"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)

"C:\Program Files\Pando Networks\Media Booster\PMB.exe" = C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()


[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)

"C:\Program Files\BitTorrent\BitTorrent.exe" = C:\Program Files\BitTorrent\BitTorrent.exe:*:Enabled:BitTorrent -- (BitTorrent, Inc.)

"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)

"G:\Elsword_PL\data\x2.exe" = G:\Elsword_PL\data\x2.exe:*:Enabled:Elsword

"E:\GRY\Elsword_PL\data\x2.exe" = E:\GRY\Elsword_PL\data\x2.exe:*:Enabled:Elsword

"C:\Documents and Settings\Andy\Moje dokumenty\Downloads\SoulCaptor_CB.exe" = C:\Documents and Settings\Andy\Moje dokumenty\Downloads\SoulCaptor_CB.exe:*:Enabled:SoulCaptor_CB

"E:\GRY\soulcaptor\_sclauncher.exe" = E:\GRY\soulcaptor\_sclauncher.exe:*:Enabled:GPatchV2 N

"C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe" = [String data over 1000 bytes]

"C:\Program Files\Pando Networks\Media Booster\PMB.exe" = C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()

"C:\Documents and Settings\All Users\Dane aplikacji\NexonEU\NGM\NGM.exe" = C:\Documents and Settings\All Users\Dane aplikacji\NexonEU\NGM\NGM.exe:*:Enabled:Nexon Game Manager -- (Nexon)

"E:\GRY\Vindictus EU\en-EU\NMService.exe" = E:\GRY\Vindictus EU\en-EU\NMService.exe:*:Enabled:Nexon Messenger Core

"C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\Akamai\netsession_win.exe" = C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\Akamai\netsession_win.exe:*:Enabled:Akamai NetSession Client -- (Akamai Technologies, Inc.)

"E:\GRY\SoulSaverOnline\Game.exe" = E:\GRY\SoulSaverOnline\Game.exe:*:Enabled:SoulSaverOnline

"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" = C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation)

"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE" = C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove -- (Microsoft Corporation)

"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" = C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation)

"C:\Program Files\Mozilla Firefox\plugin-container.exe" = C:\Program Files\Mozilla Firefox\plugin-container.exe:*:Enabled:Plugin Container for Firefox -- (Mozilla Corporation)

"E:\GRY\MMDoC-PDCLive\Launcher\Launcher.exe" = E:\GRY\MMDoC-PDCLive\Launcher\Launcher.exe:*:Enabled:Launcher

"E:\GRY\MMDoC-PDCLive\GameData\Game.exe" = E:\GRY\MMDoC-PDCLive\GameData\Game.exe:*:Enabled:Might & Magic : Duel of Champions



[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended

"{1111706F-666A-4037-7777-211328764D10}" = JavaFX 2.1.1

"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319

"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

"{26A24AE4-039D-4CA4-87B4-2F83217007FF}" = Java 7 Update 7

"{289AC7E0-0AEE-4a7b-913C-709D9803D23E}" = Nexon Game Manager

"{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}" = Microsoft XNA Framework Redistributable 4.0

"{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP

"{3A9FC03D-C685-4831-94CF-4EDFD3749497}" = Microsoft SQL Server Compact 3.5 SP2 ENU

"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile

"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis

"{46F8CF66-AB83-38A7-99B2-A5BE507EE472}" = Microsoft Visual C++ 2010 Express - ENU

"{47C39E4A-28F2-33B1-B9B7-97F24E52D917}" = Microsoft Help Viewer 1.0

"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater

"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM

"{66103eec-4d45-4af6-a413-cbb2d4cc38ac}" = 

"{6A9EF6CF-7630-4E33-AE22-7D70F3AF4B05}" = AION Free-To-Play

"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable

"{759FF0F7-5C37-46B7-9360-F0E88B1DC323}" = SlimCleaner

"{82CE6B7B-9665-4E29-8CE0-DD993484B38D}" = Oprogramowanie Intel(R) PROSet/Wireless WiFi

"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable

"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight

"{90120000-0010-0415-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Polish) 12

"{90120000-0015-0415-0000-0000000FF1CE}" = Microsoft Office Access MUI (Polish) 2007

"{90120000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2007

"{90120000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2007

"{90120000-0019-0415-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Polish) 2007

"{90120000-001A-0415-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Polish) 2007

"{90120000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2007

"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007

"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007

"{90120000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2007

"{90120000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2007

"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007

"{90120000-0044-0415-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Polish) 2007

"{90120000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2007

"{90120000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2007

"{90120000-00BA-0415-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Polish) 2007

"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting

"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster

"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2

"{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}" = SigmaTel Audio

"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper

"{B7E38540-E355-3503-AFD7-635B2F2F76E1}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974

"{B93DCF58-AA57-41EC-8D69-B05C66C6312D}_is1" = SUPER © v2012.build.51 (April 7, 2012) wersja v2012.build.51

"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2

"{C336A3DB-FA32-42BE-97D0-FFD42D807FD6}" = Oz776 SCR Driver V1.1.4.2

"{C5DA59CF-2BB8-48D5-8E5B-17F2E0F0FEE4}" = System Requirements Lab for Intel

"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1

"{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}" = Microsoft .NET Framework 4 Multi-Targeting Pack

"{D3B3B9B2-FE73-44CB-8C0A-F737D92F991B}" = Broadcom Gigabit Integrated Controller

"{F53F0D83-C669-4569-9A5B-46A65DED85F5}" = Aeria Ignite

"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX

"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin

"Adobe Shockwave Player" = Adobe Shockwave Player 11.6

"Aeria Ignite" = Aeria Ignite

"Aeria Ignite 1.10.1721" = Aeria Ignite

"Alliance of Valiant Arms" = Alliance of Valiant Arms

"avast" = avast! Free Antivirus

"BandiMPEG1" = Bandisoft MPEG-1 Decoder

"BitTorrent" = BitTorrent

"CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2C06&SUBSYS_14F1000F" = Conexant HDA D330 MDC V.92 Modem

"DAEMON Tools Lite" = DAEMON Tools Lite

"EaseUS Partition Master Home Edition_is1" = EaseUS Partition Master 9.1.1 Home Edition

"ENTERPRISE" = Microsoft Office Enterprise 2007

"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20

"ffdshow_is1" = ffdshow v1.2.4466 [2012-07-02]

"Foxit Reader_is1" = Foxit Reader

"Free Studio_is1" = Free Studio version 5.6.3.706

"Google Chrome" = Google Chrome

"HDMI" = Intel(R) Graphics Media Accelerator Driver

"ie8" = Windows Internet Explorer 8

"InstallShield_{6A9EF6CF-7630-4E33-AE22-7D70F3AF4B05}" = AION Free-To-Play

"InstallShield_{C336A3DB-FA32-42BE-97D0-FFD42D807FD6}" = Oz776 SCR Driver V1.1.4.2

"KLiteCodecPack_is1" = K-Lite Codec Pack 8.9.5 (Full)

"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1

"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile

"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended

"Microsoft Help Viewer 1.0" = Microsoft Help Viewer 1.0

"Microsoft Visual C++ 2010 Express - ENU" = Microsoft Visual C++ 2010 Express - ENU

"Mozilla Firefox 15.0.1 (x86 pl)" = Mozilla Firefox 15.0.1 (x86 pl)

"MozillaMaintenanceService" = Mozilla Maintenance Service

"NCLauncher_GameForge" = NC Launcher (GameForge)

"ProInst" = Intel PROSet Wireless

"RealAlt_is1" = Real Alternative 2.0.2

"Star Downloader Free" = Star Downloader Free

"SysInfoMyWork" = SysInfoMyWork

"VLC media player" = VLC media player 2.0.3

"Windows XP Service Pack" = Windows XP Service Pack 3

"WinGimp-2.0_is1" = GIMP 2.6.11

"WinRAR archiver" = WinRAR 4.20 (32-bitowy)

"Ys Origin_is1" = Ys Origin version 1


[color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color]


[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

"Akamai" = Akamai NetSession Interface

"PhotoFiltre 7" = PhotoFiltre 7

"UnityWebPlayer" = Unity Web Player


[color=#E56717]========== Last 20 Event Log Errors ==========[/color]


[Application Events]

Error - 2012-07-10 09:28:33 | Computer Name = LAPTOP | Source = Application Error | ID = 1000

Description = Aplikacja powodująca błąd s4client.exe, wersja 0.8.32.49719, moduł

 powodujący błąd msvcr80.dll, wersja 8.0.50727.4053, adres błędu 0x00011eeb.


Error - 2012-07-15 04:25:08 | Computer Name = LAPTOP | Source = Application Error | ID = 1000

Description = Aplikacja powodująca błąd gta_sa.exe, wersja 0.0.0.0, moduł powodujący

 błąd gta_sa.exe, wersja 0.0.0.0, adres błędu 0x000dd5a3.


Error - 2012-07-18 06:18:45 | Computer Name = LAPTOP | Source = Application Error | ID = 1000

Description = Aplikacja powodująca błąd vindictus.exe, wersja 1.0.0.1, moduł powodujący

 błąd vindictus.exe, wersja 1.0.0.1, adres błędu 0x0008c730.


Error - 2012-07-20 09:45:00 | Computer Name = LAPTOP | Source = Application Hang | ID = 1002

Description = Aplikacja zawieszająca explorer.exe, wersja 6.0.2900.5512, moduł zawieszenia

 hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.


Error - 2012-07-22 11:59:56 | Computer Name = LAPTOP | Source = Application Hang | ID = 1002

Description = Aplikacja zawieszająca explorer.exe, wersja 6.0.2900.5512, moduł zawieszenia

 hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.


Error - 2012-08-03 06:31:25 | Computer Name = LAPTOP | Source = Application Error | ID = 1000

Description = Aplikacja powodująca błąd chrome.exe, wersja 21.0.1180.60, moduł powodujący

 błąd unknown, wersja 0.0.0.0, adres błędu 0x0110b180.


Error - 2012-08-09 13:15:38 | Computer Name = LAPTOP | Source = Application Error | ID = 1000

Description = Aplikacja powodująca błąd chrome.exe, wersja 21.0.1180.60, moduł powodujący

 błąd ntdll.dll, wersja 5.1.2600.6055, adres błędu 0x00010a19.


Error - 2012-08-16 13:19:35 | Computer Name = LAPTOP | Source = Application Error | ID = 1000

Description = Aplikacja powodująca błąd desmume.exe, wersja 0.0.0.0, moduł powodujący

 błąd desmume.exe, wersja 0.0.0.0, adres błędu 0x000c160d.


[System Events]

Error - 2012-10-10 11:10:03 | Computer Name = LAPTOP | Source = DCOM | ID = 10016

Description = Zgodnie z ustawieniami uprawnień domyślne ustawienia komputera nie

 jest udzielane uprawnienie Lokalne Aktywacja do aplikacji serwera COM z identyfikatorem

 klasy {A4199E55-EBB9-49E5-AF1A-7A5408B2E206} użytkownikowi ZARZĄDZANIE NT\USŁUGA

 SIECIOWA o identyfikatorze zabezpieczeń (S-1-5-20). To uprawnienie zabezpieczeń

 można modyfikować przy użyciu narzędzia administracyjnego usług składowych.


Error - 2012-10-10 15:56:51 | Computer Name = LAPTOP | Source = Service Control Manager | ID = 7000

Description = Nie można uruchomić usługi XAudioService z powodu następującego błędu:

   %%193


Error - 2012-10-10 15:56:57 | Computer Name = LAPTOP | Source = DCOM | ID = 10016

Description = Zgodnie z ustawieniami uprawnień domyślne ustawienia komputera nie

 jest udzielane uprawnienie Lokalne Aktywacja do aplikacji serwera COM z identyfikatorem

 klasy {A4199E55-EBB9-49E5-AF1A-7A5408B2E206} użytkownikowi ZARZĄDZANIE NT\USŁUGA

 SIECIOWA o identyfikatorze zabezpieczeń (S-1-5-20). To uprawnienie zabezpieczeń

 można modyfikować przy użyciu narzędzia administracyjnego usług składowych.


Error - 2012-10-10 15:56:58 | Computer Name = LAPTOP | Source = DCOM | ID = 10016

Description = Zgodnie z ustawieniami uprawnień domyślne ustawienia komputera nie

 jest udzielane uprawnienie Lokalne Aktywacja do aplikacji serwera COM z identyfikatorem

 klasy {A4199E55-EBB9-49E5-AF1A-7A5408B2E206} użytkownikowi ZARZĄDZANIE NT\USŁUGA

 SIECIOWA o identyfikatorze zabezpieczeń (S-1-5-20). To uprawnienie zabezpieczeń

 można modyfikować przy użyciu narzędzia administracyjnego usług składowych.


Error - 2012-10-10 15:56:58 | Computer Name = LAPTOP | Source = DCOM | ID = 10016

Description = Zgodnie z ustawieniami uprawnień domyślne ustawienia komputera nie

 jest udzielane uprawnienie Lokalne Aktywacja do aplikacji serwera COM z identyfikatorem

 klasy {A4199E55-EBB9-49E5-AF1A-7A5408B2E206} użytkownikowi ZARZĄDZANIE NT\USŁUGA

 SIECIOWA o identyfikatorze zabezpieczeń (S-1-5-20). To uprawnienie zabezpieczeń

 można modyfikować przy użyciu narzędzia administracyjnego usług składowych.


Error - 2012-10-11 04:27:13 | Computer Name = LAPTOP | Source = Service Control Manager | ID = 7000

Description = Nie można uruchomić usługi XAudioService z powodu następującego błędu:

   %%193


Error - 2012-10-11 04:27:41 | Computer Name = LAPTOP | Source = DCOM | ID = 10016

Description = Zgodnie z ustawieniami uprawnień domyślne ustawienia komputera nie

 jest udzielane uprawnienie Lokalne Aktywacja do aplikacji serwera COM z identyfikatorem

 klasy {A4199E55-EBB9-49E5-AF1A-7A5408B2E206} użytkownikowi ZARZĄDZANIE NT\USŁUGA

 SIECIOWA o identyfikatorze zabezpieczeń (S-1-5-20). To uprawnienie zabezpieczeń

 można modyfikować przy użyciu narzędzia administracyjnego usług składowych.


Error - 2012-10-11 04:27:42 | Computer Name = LAPTOP | Source = DCOM | ID = 10016

Description = Zgodnie z ustawieniami uprawnień domyślne ustawienia komputera nie

 jest udzielane uprawnienie Lokalne Aktywacja do aplikacji serwera COM z identyfikatorem

 klasy {A4199E55-EBB9-49E5-AF1A-7A5408B2E206} użytkownikowi ZARZĄDZANIE NT\USŁUGA

 SIECIOWA o identyfikatorze zabezpieczeń (S-1-5-20). To uprawnienie zabezpieczeń

 można modyfikować przy użyciu narzędzia administracyjnego usług składowych.


Error - 2012-10-11 04:27:42 | Computer Name = LAPTOP | Source = DCOM | ID = 10016

Description = Zgodnie z ustawieniami uprawnień domyślne ustawienia komputera nie

 jest udzielane uprawnienie Lokalne Aktywacja do aplikacji serwera COM z identyfikatorem

 klasy {A4199E55-EBB9-49E5-AF1A-7A5408B2E206} użytkownikowi ZARZĄDZANIE NT\USŁUGA

 SIECIOWA o identyfikatorze zabezpieczeń (S-1-5-20). To uprawnienie zabezpieczeń

 można modyfikować przy użyciu narzędzia administracyjnego usług składowych.


Error - 2012-10-11 06:56:05 | Computer Name = LAPTOP | Source = Service Control Manager | ID = 7000

Description = Nie można uruchomić usługi XAudioService z powodu następującego błędu:

   %%193



< End of report >

Drugi log poniżej (nie mogłem zmieścić dwóch logów w jednym poście)


(Agatonster) #2

Reknes ,

Zapoznaj się z tematem i popraw tytuł tematu na konkretny, mówiący o problemie. W celu dokonania zaleconej korekty proszę użyć przycisku Edytuj przy poście otwierającym ten temat.

Zignorowanie zalecenia będzie skutkowało przeniesieniem tematu do Kosza.


(Marcin1025) #3

daj logi OTL, HijackThis jest przestarzały


(Reknes) #4

Drugi log, OTL.txt :

OTL logfile created on: 2012-10-11 20:18:43 - Run 1

OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Andy\Moje dokumenty\Downloads

Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 8.0.6001.18702)

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd


1,99 Gb Total Physical Memory | 1,08 Gb Available Physical Memory | 54,29% Memory free

3,84 Gb Paging File | 3,02 Gb Available in Paging File | 78,75% Paging File free

Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]


%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 26,34 Gb Total Space | 7,19 Gb Free Space | 27,31% Space Free | Partition Type: NTFS

Drive E: | 48,18 Gb Total Space | 16,04 Gb Free Space | 33,29% Space Free | Partition Type: NTFS


Computer Name: LAPTOP | User Name: Andy | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: Current user

Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days


[color=#E56717]========== Processes (SafeList) ==========[/color]


PRC - [2012-10-11 20:00:26 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Andy\Moje dokumenty\Downloads\OTL.exe

PRC - [2012-10-10 12:06:17 | 001,239,064 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe

PRC - [2012-09-06 08:10:51 | 000,161,768 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe

PRC - [2012-08-21 11:12:26 | 004,282,728 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe

PRC - [2012-08-21 11:12:25 | 000,044,808 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe

PRC - [2012-08-10 18:59:52 | 004,440,896 | ---- | M] (Akamai Technologies, Inc.) -- C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\Akamai\netsession_win.exe

PRC - [2009-11-03 15:48:54 | 000,874,768 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe

PRC - [2009-11-03 15:45:52 | 000,348,160 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\WiFi\bin\WLKEEPER.exe

PRC - [2009-11-03 15:45:48 | 001,372,160 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\WiFi\bin\ZCfgSvc.exe

PRC - [2009-11-03 15:42:00 | 000,909,312 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\WiFi\bin\S24EvMon.exe

PRC - [2009-11-03 15:35:14 | 001,202,448 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe

PRC - [2009-11-03 15:33:48 | 000,473,360 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe

PRC - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe

PRC - [2007-05-10 10:23:50 | 000,094,208 | ---- | M] (SigmaTel, Inc.) -- C:\WINDOWS\system32\stacsv.exe

PRC - [2007-05-10 10:22:32 | 000,405,504 | ---- | M] (SigmaTel, Inc.) -- C:\Program Files\SigmaTel\C-Major Audio\WDM\stsystra.exe

PRC - [2005-08-09 15:26:47 | 000,100,352 | ---- | M] (Vetch Utilities) -- C:\Program Files\SysInfoMyWork\SysInfoMyWork.exe



[color=#E56717]========== Modules (No Company Name) ==========[/color]


MOD - [2012-10-11 10:21:26 | 001,816,064 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\12101100\algo.dll

MOD - [2012-10-10 12:06:15 | 000,460,312 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\22.0.1229.94\ppgooglenaclpluginchrome.dll

MOD - [2012-10-10 12:06:13 | 012,435,992 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\22.0.1229.94\PepperFlash\pepflashplayer.dll

MOD - [2012-10-10 12:06:12 | 004,005,912 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\22.0.1229.94\pdf.dll

MOD - [2012-10-10 12:04:44 | 000,156,712 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\22.0.1229.94\avutil-51.dll

MOD - [2012-10-10 12:04:43 | 000,275,496 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\22.0.1229.94\avformat-54.dll

MOD - [2012-10-10 12:04:42 | 002,168,360 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\22.0.1229.94\avcodec-54.dll

MOD - [2009-11-03 15:35:46 | 000,200,704 | ---- | M] () -- C:\Program Files\Intel\WiFi\bin\iWMSProv.dll

MOD - [2008-04-14 22:50:38 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll



[color=#E56717]========== Services (SafeList) ==========[/color]


SRV - [2012-10-08 22:02:29 | 000,250,808 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)

SRV - [2012-09-15 13:16:29 | 000,114,144 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)

SRV - [2012-09-06 08:10:51 | 000,161,768 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)

SRV - [2012-08-21 11:12:25 | 000,044,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)

SRV - [2012-07-20 16:07:45 | 000,665,184 | ---- | M] (Wellbia.com Co., Ltd.) [On_Demand | Stopped] -- C:\WINDOWS\system32\xsherlock.xem -- (xsherlock)

SRV - [2012-05-21 23:04:00 | 004,147,960 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\WINDOWS\system32\GameMon.des -- (npggsvc)

SRV - [2009-11-03 15:48:54 | 000,874,768 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)

SRV - [2009-11-03 15:45:52 | 000,348,160 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\WLKEEPER.exe -- (WLANKEEPER)

SRV - [2009-11-03 15:42:00 | 000,909,312 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\S24EvMon.exe -- (S24EventMonitor)

SRV - [2009-11-03 15:33:48 | 000,473,360 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)

SRV - [2007-05-10 10:23:50 | 000,094,208 | ---- | M] (SigmaTel, Inc.) [Auto | Running] -- C:\WINDOWS\system32\stacsv.exe -- (STacSV)



[color=#E56717]========== Driver Services (SafeList) ==========[/color]


DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\xhunter1.sys -- (xhunter1)

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\XDva398.sys -- (XDva398)

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\vtany.sys -- (vtany)

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)

DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)

DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)

DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\EagleXNt.sys -- (EagleXNt)

DRV - File not found [Kernel | System | Stopped] -- -- (Changer)

DRV - [2012-08-21 11:13:15 | 000,729,752 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)

DRV - [2012-08-21 11:13:15 | 000,355,632 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)

DRV - [2012-08-21 11:13:15 | 000,054,232 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)

DRV - [2012-08-21 11:13:14 | 000,097,608 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)

DRV - [2012-08-21 11:13:14 | 000,035,928 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (AswRdr)

DRV - [2012-08-21 11:13:13 | 000,025,256 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)

DRV - [2012-08-21 11:13:13 | 000,021,256 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)

DRV - [2012-07-08 12:20:11 | 000,033,824 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\oreans32.sys -- (oreans32)

DRV - [2012-07-08 12:07:52 | 000,242,240 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\dtsoftbus01.sys -- (dtsoftbus01)

DRV - [2011-07-29 13:54:56 | 000,013,192 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\epmntdrv.sys -- (epmntdrv)

DRV - [2011-07-29 13:54:56 | 000,008,456 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\EuGdiDrv.sys -- (EuGdiDrv)

DRV - [2011-06-02 11:08:34 | 000,011,336 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files\SystemRequirementsLab\cpudrv.sys -- (cpudrv)

DRV - [2009-10-26 05:47:30 | 004,221,952 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NETw5x32.sys -- (NETw5x32)

DRV - [2008-08-13 16:23:56 | 000,011,904 | ---- | M] (Intel Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\s24trans.sys -- (s24trans)

DRV - [2007-05-10 10:24:34 | 001,222,840 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA)

DRV - [2007-03-26 10:19:00 | 000,062,208 | ---- | M] (O2Micro) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\oz776.sys -- (guardian2)

DRV - [2007-02-16 15:46:00 | 000,160,256 | R--- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\b57xp32.sys -- (b57w2k)

DRV - [2006-08-04 16:39:10 | 000,008,192 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\XAudio.sys -- (XAudio)



[color=#E56717]========== Standard Registry (SafeList) ==========[/color]



[color=#E56717]========== Internet Explorer ==========[/color]


IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,DefaultNetworkProfile = 508880525

IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = 


[color=#E56717]========== FireFox ==========[/color]


FF - prefs.js..extensions.enabledAddons: {4DC70064-89E2-4a55-8FC6-E8CDEAE3618C}:0.7.7

FF - prefs.js..network.proxy.backup.ftp: "77.223.208.227"

FF - prefs.js..network.proxy.backup.ftp_port: 8080

FF - prefs.js..network.proxy.backup.socks: "77.223.208.227"

FF - prefs.js..network.proxy.backup.socks_port: 8080

FF - prefs.js..network.proxy.backup.ssl: "77.223.208.227"

FF - prefs.js..network.proxy.backup.ssl_port: 8080

FF - prefs.js..network.proxy.ftp: "95.143.37.178"

FF - prefs.js..network.proxy.ftp_port: 3128

FF - prefs.js..network.proxy.http: "95.143.37.178"

FF - prefs.js..network.proxy.http_port: 3128

FF - prefs.js..network.proxy.share_proxy_settings: true

FF - prefs.js..network.proxy.socks: "95.143.37.178"

FF - prefs.js..network.proxy.socks_port: 3128

FF - prefs.js..network.proxy.ssl: "95.143.37.178"

FF - prefs.js..network.proxy.ssl_port: 3128

FF - prefs.js..network.proxy.type: 4

FF - user.js - File not found


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_4_402_287.dll ()

FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw_1165635.dll (Adobe Systems, Inc.)

FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: C:\Program Files\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)

FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)

FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)

FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins\@ngm.nexoneu.com/NxGame: C:\Documents and Settings\All Users\Dane aplikacji\NexonEU\NGM\npNxGameeu.dll (Nexon)

FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.450: C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)

FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448: C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)

FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found

FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)

FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)

FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.3: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)

FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)


FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-08-27 13:35:38 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-09-15 13:16:30 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-10-02 17:30:10 | 000,000,000 | ---D | M]


[2012-07-08 20:42:56 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Andy\Dane aplikacji\Mozilla\Extensions

[2012-07-19 17:00:16 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Andy\Dane aplikacji\Mozilla\Firefox\Profiles\9vol8pva.default\extensions

[2012-07-10 10:46:54 | 000,000,000 | ---D | M] ("Free YouTube Download (Free Studio) Menu") -- C:\Documents and Settings\Andy\Dane aplikacji\Mozilla\Firefox\Profiles\9vol8pva.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}

[2012-07-19 17:00:16 | 000,013,345 | ---- | M] () (No name found) -- C:\Documents and Settings\Andy\Dane aplikacji\Mozilla\Firefox\Profiles\9vol8pva.default\extensions\{4DC70064-89E2-4a55-8FC6-E8CDEAE3618C}.xpi

[2012-07-08 09:49:58 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions

[2012-09-15 13:16:30 | 000,266,720 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll

[2012-06-15 01:13:23 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml

[2012-06-15 01:13:23 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml

[2012-06-15 01:13:23 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml

[2012-06-15 01:13:23 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml

[2012-06-15 01:13:23 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml

[2012-06-15 01:13:23 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml


[color=#E56717]========== Chrome ==========[/color]


CHR - homepage: http://www.google.pl/

CHR - default_search_provider: Google (Enabled)

CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}

CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms},

CHR - homepage: http://www.google.pl/

CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer

CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\22.0.1229.94\ppGoogleNaClPluginChrome.dll

CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\22.0.1229.94\pdf.dll

CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\22.0.1229.94\gcswf32.dll

CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll

CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll

CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll

CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll

CHR - Extension: Google Translate = C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb\1.2.4_0\

CHR - Extension: Entanglement = C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\aciahcmjmecflokailenpkdchphgkefd\2.7.9_0\

CHR - Extension: Beatlab = C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\alnfdikmbdfgkcbdodjcbmedanjinmkk\1.0.1_0\

CHR - Extension: WOT = C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp\1.3.4_0\

CHR - Extension: Szukaj w Google = C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\

CHR - Extension: Dead Frontier = C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\dglbaehakkaojfihjkgkpknbjldhhmmn\1.1_0\

CHR - Extension: Kalendarz Google = C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn\4.5.3_0\

CHR - Extension: PanicButton = C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm\0.14.2.2_0\

CHR - Extension: Pockie Ninja = C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\fnllmdekhoodfjggoncakndldjihiiol\1.71_0\

CHR - Extension: AdBlock = C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.45_0\

CHR - Extension: avast! WebRep = C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1466_0\

CHR - Extension: LineBall = C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\jeclmehkhpookgkhkecnaanahhoglakj\1.2.0_0\

CHR - Extension: T\u0142umacz Google dla Google+ = C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\jfppgkomfopklagggkjiaddgndkgopgl\1.1.7_0\

CHR - Extension: Sprawdzanie poczty Google = C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff\4.4.0_0\

CHR - Extension: Adapt or Die = C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\mkahjcgpeocklmichhgkfhjkfmogknkn\1.2.0_0\

CHR - Extension: Scientific Calculator = C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\npoipmeppdioagbkigdlnpmjphnolaog\0.9.19_0\

CHR - Extension: Greyscale = C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\penkfbldfkaelnnhblmfmajlggdielfm\1.0_0\

CHR - Extension: Gmail = C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\


O1 HOSTS File: ([2006-03-02 14:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts

O1 - Hosts: 127.0.0.1 localhost

O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)

O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)

O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

O2 - BHO: (no name) - {FFFFFEF0-5B30-21D4-945D-000000000000} - C:\Program Files\Star Downloader\SDIEInt.dll ()

O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)

O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)

O4 - HKLM..\Run: [IntelWireless] C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe (Intel(R) Corporation)

O4 - HKLM..\Run: [IntelZeroConfig] C:\Program Files\Intel\WiFi\bin\ZCfgSvc.exe (Intel(R) Corporation)

O4 - HKLM..\Run: [SigmatelSysTrayApp] C:\Program Files\SigmaTel\C-Major Audio\WDM\stsystra.exe (SigmaTel, Inc.)

O4 - HKCU..\Run: [Akamai NetSession Interface] C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\Akamai\netsession_win.exe (Akamai Technologies, Inc.)

O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)

O4 - HKCU..\Run: [KPeerNexonEU] C:\Nexon\NEXON_EU_Downloader\nxEULauncher.exe File not found

O4 - Startup: C:\Documents and Settings\Andy\Menu Start\Programy\Autostart\SysInfoMyWork.lnk = C:\Program Files\SysInfoMyWork\SysInfoMyWork.exe (Vetch Utilities)

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O8 - Extra context menu item: Download with Star Downloader - C:\Program Files\Star Downloader\sdie.htm ()

O8 - Extra context menu item: Free YouTube Download - C:\Documents and Settings\Andy\Dane aplikacji\DVDVideoSoftIEHelpers\freeytvdownloader.htm ()

O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Documents and Settings\Andy\Dane aplikacji\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()

O16 - DPF: {2F0D6743-3F5C-4039-8492-6E0B3590E3E1} http://guardian.globalgamecdn.com/guardian/DBlockActiveX.CAB (TheGuardianActiveX Control)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 217.113.224.134 217.113.224.135

O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{933F6FA8-5ECB-415C-853B-61BAE1E1EE6B}: DhcpNameServer = 217.113.224.134 217.113.224.135

O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)

O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)

O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home

O24 - Desktop WallPaper: C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp

O24 - Desktop BackupWallPaper: C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2012-07-07 19:40:58 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [NTFS]

O34 - HKLM BootExecute: (autocheck autochk *)

O35 - HKLM\..comfile [open] -- "%1" %*

O35 - HKLM\..exefile [open] -- "%1" %*

O37 - HKLM\...com [@ = comfile] -- "%1" %*

O37 - HKLM\...exe [@ = exefile] -- "%1" %*

O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)

O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)


[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]


[2012-10-11 18:40:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\SlimWare Utilities Inc

[2012-10-11 18:19:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\SlimCleaner

[2012-10-11 18:19:10 | 000,000,000 | ---D | C] -- C:\Program Files\SlimCleaner

[2012-10-11 18:19:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\Downloaded Installers

[2012-10-09 22:13:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\EaseUS Partition Master 9.1.1 Home Edition

[2012-10-09 22:12:46 | 000,000,000 | ---D | C] -- C:\Program Files\EaseUS Partition Master 9.1.1 Home Edition

[2012-10-09 21:46:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Gameforge

[2012-10-09 21:46:40 | 000,000,000 | ---D | C] -- C:\Program Files\Gameforge

[2012-10-09 10:59:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andy\.swt

[2012-10-05 11:12:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andy\Moje dokumenty\Drakensang

[2012-10-04 23:03:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andy\Moje dokumenty\Stubbs the Zombie

[2012-10-04 23:03:05 | 000,262,144 | ---- | C] (Creative Labs) -- C:\WINDOWS\System32\wrap_oal.dll

[2012-10-04 23:03:05 | 000,086,016 | ---- | C] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\WINDOWS\System32\OpenAL32.dll

[2012-10-04 21:53:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Ubisoft

[2012-10-04 21:31:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andy\Moje dokumenty\Moje gry

[2012-10-04 21:31:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\Gas Powered Games

[2012-10-01 15:50:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\beanfun! US

[2012-09-28 11:54:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\Chromium

[2012-09-27 20:38:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\Aeria Games

[2012-09-27 20:01:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andy\Menu Start\Programy\AeriaGames

[2012-09-27 19:46:12 | 000,000,000 | -HSD | C] -- C:\WINDOWS\System32\AI_RecycleBin

[2012-09-27 19:46:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\AeriaGames

[2012-09-27 19:46:10 | 000,000,000 | ---D | C] -- C:\Program Files\Aeria Games

[2012-09-27 19:46:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andy\Dane aplikacji\Aeria Games & Entertainment

[2012-09-26 14:58:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andy\Dane aplikacji\Unity

[2012-09-26 14:07:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\Unity

[2012-09-17 16:47:38 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DirectX

[2012-09-14 15:13:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andy\Pulpit\pulpit

[2012-09-14 14:39:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\Ubisoft

[2012-09-14 14:38:56 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Andy\wc

[2012-09-14 14:38:53 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Andy\Dane aplikacji\wyUpdate AU

[8 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp ->]

[6 C:\WINDOWS\Fonts\*.tmp files -> C:\WINDOWS\Fonts\*.tmp ->]

[243 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp ->]


[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]


[2012-10-11 20:02:00 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job

[2012-10-11 19:31:00 | 000,001,032 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

[2012-10-11 18:40:28 | 000,000,364 | -H-- | M] () -- C:\WINDOWS\tasks\avast! Emergency Update.job

[2012-10-11 18:40:25 | 000,002,231 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\SlimCleaner.lnk

[2012-10-11 18:39:55 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl

[2012-10-11 18:39:54 | 000,001,028 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job

[2012-10-11 18:39:48 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat

[2012-10-11 15:34:23 | 000,001,823 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Google Chrome.lnk

[2012-10-11 11:22:31 | 003,072,054 | ---- | M] () -- C:\Documents and Settings\Andy\Pulpit\new mission.bmp

[2012-10-10 09:59:43 | 000,000,508 | ---- | M] () -- C:\Documents and Settings\Andy\Pulpit\PokeMMO.lnk

[2012-10-10 08:38:04 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK

[2012-10-09 21:46:42 | 000,001,960 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\AION Free-To-Play.lnk

[2012-10-09 20:19:30 | 000,057,981 | ---- | M] () -- C:\Documents and Settings\Andy\Pulpit\mój avatar.jpg

[2012-10-08 22:02:29 | 000,696,760 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe

[2012-10-08 22:02:29 | 000,073,656 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl

[2012-10-05 14:20:25 | 000,019,258 | ---- | M] () -- C:\Documents and Settings\Andy\.recently-used.xbel

[2012-10-04 23:05:41 | 000,262,144 | ---- | M] (Creative Labs) -- C:\WINDOWS\System32\wrap_oal.dll

[2012-10-04 23:05:41 | 000,086,016 | ---- | M] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\WINDOWS\System32\OpenAL32.dll

[2012-10-04 23:00:14 | 000,003,584 | ---- | M] () -- C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2012-09-27 20:01:02 | 000,000,567 | ---- | M] () -- C:\Documents and Settings\Andy\Pulpit\Alliance of Valiant Arms.lnk

[2012-09-27 19:46:11 | 000,001,763 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Aeria Ignite.lnk

[2012-09-26 08:13:42 | 000,559,584 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat

[2012-09-26 08:13:42 | 000,496,828 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat

[2012-09-26 08:13:42 | 000,106,484 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat

[2012-09-26 08:13:42 | 000,085,312 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat

[2012-09-22 05:50:52 | 000,267,702 | ---- | M] () -- C:\Documents and Settings\Andy\Pulpit\77.bmp

[2012-09-22 05:45:13 | 001,449,054 | ---- | M] () -- C:\Documents and Settings\Andy\Pulpit\graniczna 27.bmp

[2012-09-17 16:38:11 | 000,065,536 | ---- | M] () -- C:\WINDOWS\IFinst27.exe

[8 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp ->]

[243 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp ->]


[color=#E56717]========== Files Created - No Company Name ==========[/color]


[2012-10-11 18:19:12 | 000,002,231 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\SlimCleaner.lnk

[2012-10-11 11:22:31 | 003,072,054 | ---- | C] () -- C:\Documents and Settings\Andy\Pulpit\new mission.bmp

[2012-10-10 09:59:43 | 000,000,508 | ---- | C] () -- C:\Documents and Settings\Andy\Pulpit\PokeMMO.lnk

[2012-10-09 22:13:14 | 000,019,840 | ---- | C] () -- C:\WINDOWS\System32\EuEpmGdi.dll

[2012-10-09 22:13:13 | 002,468,520 | ---- | C] () -- C:\WINDOWS\System32\BootMan.exe

[2012-10-09 22:13:13 | 000,086,408 | ---- | C] () -- C:\WINDOWS\System32\setupempdrv03.exe

[2012-10-09 22:13:13 | 000,013,192 | ---- | C] () -- C:\WINDOWS\System32\epmntdrv.sys

[2012-10-09 22:13:13 | 000,008,456 | ---- | C] () -- C:\WINDOWS\System32\EuGdiDrv.sys

[2012-10-09 21:46:42 | 000,001,960 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\AION Free-To-Play.lnk

[2012-10-09 20:19:28 | 000,057,981 | ---- | C] () -- C:\Documents and Settings\Andy\Pulpit\mój avatar.jpg

[2012-10-05 14:20:25 | 000,019,258 | ---- | C] () -- C:\Documents and Settings\Andy\.recently-used.xbel

[2012-10-04 23:00:13 | 000,003,584 | ---- | C] () -- C:\Documents and Settings\Andy\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2012-09-28 17:27:57 | 000,858,919 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\WPFFontCache_v0400-S-1-5-21-861567501-1972579041-725345543-1003-0.dat

[2012-09-27 23:15:26 | 000,275,242 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\WPFFontCache_v0400-System.dat

[2012-09-27 20:01:02 | 000,000,567 | ---- | C] () -- C:\Documents and Settings\Andy\Pulpit\Alliance of Valiant Arms.lnk

[2012-09-27 19:46:11 | 000,001,763 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Aeria Ignite.lnk

[2012-09-22 05:50:52 | 000,267,702 | ---- | C] () -- C:\Documents and Settings\Andy\Pulpit\77.bmp

[2012-09-22 05:45:13 | 001,449,054 | ---- | C] () -- C:\Documents and Settings\Andy\Pulpit\graniczna 27.bmp

[2012-09-17 16:38:11 | 000,065,536 | ---- | C] () -- C:\WINDOWS\IFinst27.exe

[2012-09-15 00:07:57 | 000,201,648 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat

[2012-09-02 11:50:07 | 000,107,520 | RHS- | C] () -- C:\WINDOWS\System32\TAKDSDecoder.dll

[2012-07-15 15:57:41 | 000,000,414 | RHS- | C] () -- C:\Documents and Settings\All Users\ntuser.pol

[2012-07-09 08:09:28 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll

[2012-07-08 12:20:11 | 000,033,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\oreans32.sys

[2012-07-08 11:09:00 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI

[2012-07-08 11:07:54 | 000,274,968 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT

[2012-07-08 10:06:30 | 000,112,640 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll

[2012-07-08 10:03:10 | 000,178,688 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll

[2012-07-08 09:39:13 | 001,498,560 | ---- | C] () -- C:\WINDOWS\System32\igkrng400.bin

[2012-07-08 09:24:00 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat

[2012-07-08 09:18:52 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat

[2011-05-31 08:39:50 | 000,058,368 | ---- | C] () -- C:\WINDOWS\System32\bdmpegv.dll

[2011-05-31 08:38:18 | 000,015,360 | ---- | C] () -- C:\WINDOWS\System32\bdmjpeg.dll


[color=#E56717]========== ZeroAccess Check ==========[/color]


[2012-07-08 17:18:38 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini


[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]


[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]


[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

"" = %SystemRoot%\system32\shdocvw.dll -- [2012-04-20 21:30:26 | 001,510,400 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Apartment


[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]

"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009-02-09 12:53:44 | 000,473,600 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Free


[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008-04-14 22:50:58 | 000,273,920 | ---- | M] (Microsoft Corporation)

"ThreadingModel" = Both


< End of report >