Seite 1 von 2 12 LetzteLetzte
Ergebnis 1 bis 10 von 20

Thema: Windows XP

  1. #1
    Einsteiger
    Registriert seit
    01.11.2011
    Beiträge
    10

    Windows XP

    Hallo liebe Gruppe, ich habe ein Problem mit Word-Dateien und Exsela haben, hat etwas ihr Format in die Dateien auf Ihrem Computer verändert. Beim Starten Sie die gepackte Datei win.rarem meine Botschaft Archiv beschädigt. Bringen Sie eine Datei mit dem Trend Micro HijackThis v2.0.4 lesen. Vielleicht etwas, das Sie helfen, weil ich die Fähigkeit, Dateien zu öffnen, verloren. Müssen Sie Disk-Format zu tun?
    Mit freundlichen Tedi58


    Code:
    Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 21:16:00, on 2011-11-01
    Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.17103)
    Boot mode: Normal
    
    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Intel\WiFi\bin\S24EvMon.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\system32\rundll32.exe
    C:\Program Files\ESET\ESET Smart Security\ekrn.exe
    C:\Program Files\Intel\WiFi\bin\EvtEng.exe
    C:\Program Files\Firebird\Firebird_1_5\bin\fbguard.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
    C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
    C:\WINDOWS\system32\slserv.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe
    C:\WINDOWS\system32\UTSCSI.EXE
    C:\Program Files\VIA\RAID\vialogsv.exe
    C:\Program Files\Firebird\Firebird_1_5\bin\fbserver.exe
    C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe
    C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
    C:\WINDOWS\system32\wbem\wmiapsrv.exe
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Program Files\Unlocker\UnlockerAssistant.exe
    C:\Program Files\ESET\ESET Smart Security\egui.exe
    C:\WINDOWS\SOUNDMAN.EXE
    C:\Program Files\Intel\WiFi\bin\ZCfgSvc.exe
    C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
    C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
    C:\Program Files\Common Files\Java\Java Update\jusched.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Microsoft ActiveSync\wcescomm.exe
    C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
    C:\PROGRA~1\MICROS~3\rapimgr.exe
    C:\WINDOWS\system32\wbem\unsecapp.exe
    C:\Program Files\Skype\Plugin Manager\skypePM.exe
    C:\Program Files\Skype\Phone\Skype.exe
    C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32.exe
    C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.onet.pl/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = 
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride =  127.0.0.1 127.0.0.1
    O3 - Toolbar: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
    O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
    O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe" -H
    O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
    O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\WiFi\bin\ZCfgSvc.exe"
    O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel Wireless Tray
    O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime
    O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\S-1-5-18\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - Global Startup: ATI CATALYST System Tray.lnk = C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
    O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
    O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O9 - Extra button: iOpus iMacros - {0483894E-2422-45E0-8384-021AFF1AF3CD} - C:\WINDOWS\system32\shdocvw.dll
    O9 - Extra 'Tools' menuitem: iMacros Web Automation - {0483894E-2422-45E0-8384-021AFF1AF3CD} - C:\WINDOWS\system32\shdocvw.dll
    O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
    O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
    O9 - Extra 'Tools' menuitem: Utwórz łącze Ulubione dla urządzenia przenośnego... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
    O9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O16 - DPF: {8FEFF364-6A5F-4966-A917-A3AC28411659} - http://download.sopcast.cn/download/SOPCORE.CAB
    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
    O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
    O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
    O23 - Service: Eset Trial Reset (.EsetTrialReset) -  - (no file)
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
    O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - (no file)
    O23 - Service: Diskeeper - Unknown owner - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe (file missing)
    O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
    O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
    O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
    O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - The Firebird Project - C:\Program Files\Firebird\Firebird_1_5\bin\fbguard.exe
    O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - The Firebird Project - C:\Program Files\Firebird\Firebird_1_5\bin\fbserver.exe
    O23 - Service: Usługa Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: Usługa Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
    O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe
    O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
    O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
    O23 - Service: Intel(R) PROSet/Wireless WiFi Service (S24EventMonitor) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\S24EvMon.exe
    O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
    O23 - Service: SmartLinkService (SLService) -   - C:\WINDOWS\SYSTEM32\slserv.exe
    O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe
    O23 - Service: CLCV0 (UTSCSI) - Unknown owner - C:\WINDOWS\system32\UTSCSI.EXE
    O23 - Service: VRAID Log Service - Unknown owner - C:\Program Files\VIA\RAID\vialogsv.exe
    
    --
    End of file - 9249 bytes

  2. #2
    Administrator Team-Mitglied Avatar von Petra
    Registriert seit
    03.05.2007
    Ort
    Nähe Düsseldorf
    Beiträge
    41.164

    AW: Windows XP


    Hallo Tedi58,

    zunächst bitte anklicken und aufmerksam durchlesen: Worauf muss ich während der Bereinigung achten?
    Bestätige mir bitte in Deiner nächsten Antwort, dass Du das gelesen und verstanden hast.

    Besonders wichtig ist, dass Du die Punkte in der vorgegebenen Reihenfolge abarbeitest und sofort stoppst und fragst, wenn etwas nicht funktioniert, damit ich die Anleitung ggfs. ändern kann!


    ===== Punkt 1 =====

    TuneUp

    Bei der Durchsicht der Logfiles habe ich gesehen, dass Du TuneUp installiert hast. Ich rate generell ab von solchen Tuning-Tools, weil man das alles ebensogut mit Bordmitteln machen kann. Muss aber jeder für sich selbst entscheiden.

    Die mit TuneUp evtl. gemachten Änderungen können uns bei der Bereinigung hinderlich sein. Alle mit TuneUp gemachten Änderungen müssen daher zunächst rückgängig gemacht werden. Das machst Du bei TuneUp im Rescue-Center. Nach Beendigung der Bereinigung kannst Du die Einstellungen wieder ändern.

    Alternativ kannst Du TuneUp auch gleich komplett über Systemsteuerung => Software deinstallieren.


    ===== Punkt 2 =====

    Bereinigung mit Malwarebytes' Anti-Malware (Vollständiger Suchlauf)

    Lade Malwarebytes Anti-Malware (ca. 8 MB) von einem dieser Downloadspiegel herunter:

    • Anwendbar auf Windows 2000, XP, Vista und Windows 7.
    • Installiere das Programm in den vorgegebenen Pfad.
    • Denke daran, bei Vista und Windows 7 das Programm als Admin zu starten, ansonsten per Doppelklick starten.
    • Lasse es online updaten (Reiter Updates), sofern sich das Programm bereits auf dem Rechner befand.
    • Aktiviere "Vollständigen Suchlauf durchführen" => Scan.
    • Wähle alle verfügbaren Laufwerke aus und starte den Scan.
    • Wenn der Scan beendet ist, klicke auf "Zeige Resultate".
    • Bei Funden in C:\System Volume Information den Haken entfernen.
      Ansonsten wird dieser Systemwiederherstellungspunkt nicht mehr funktionieren.
      Er könnte jedoch trotz Malware noch gebraucht werden.
    • Versichere Dich, dass ansonsten alle Funde markiert sind und drücke "Löschen".
    • Poste das Logfile, welches sich in Notepad öffnet, hier in den Thread.
    • Nachträglich kannst du den Bericht unter "Logdateien" finden.
    • Berichte, wie der Rechner nun läuft.

    Hier findest Du eine ausführliche und bebilderte Anleitung.


    ===== Punkt 3 =====

    Firebird SQL Server - MAGIX Edition

    Code:
    O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - The Firebird Project - C:\Program Files\Firebird\Firebird_1_5\bin\fbguard.exe
    O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - The Firebird Project - C:\Program Files\Firebird\Firebird_1_5\bin\fbserver.exe
    Benutzt Du diesen Firebird SQL-Server? Er wird automatisch und ungefragt bei der Installation der Magix-Programme mitinstalliert, aber von den meisten Usern gar nicht benötigt. Falls Du ihn nicht brauchst, bitte über Systemsteuerung => Software deinstallieren/entfernen.


    ===== Punkt 4 =====

    Systemscan mit OTL

    Lade (falls noch nicht vorhanden) OTL von Oldtimer herunter und speichere es auf Deinem Desktop.
    • Doppelklick auf die OTL.exe
    • Vista- und Windows 7-User starten mit Rechtsklick auf das Programm-Icon und wählen "Als Administrator ausführen".
    • Oben findest Du ein Kästchen mit Ausgabe.
      Wähle bitte Standard-Ausgabe
    • Unter Extra-Registrierung wähle bitte Benutze SafeList.
    • Mache Häckchen bei LOP- und Purity-Prüfung.
    • Klicke nun auf Scan links oben.



    • Wenn der Scan beendet wurde werden zwei Logfiles erstellt.
      Du findest die Logfiles auf Deinem Desktop => OTL.txt und Extras.txt
    • Poste die Logfiles in Code-Tags hier in den Thread.
    [°¿°] Ciao, Petra

    Neu hier? Bitte abarbeiten! | Malware-Bereinigung | Forenregeln
    Daten sichern! | Schulung | Kein Support per PN oder Mail! | Danke

  3. #3
    Einsteiger
    Registriert seit
    01.11.2011
    Beiträge
    10

    AW: Windows XP

    Ciao, Petra Ich habe 4 Punkte, die aus ich zwei Stücke daraus resultierenden nach dem Scannen der Computer-Software angegeben gesetzt Punkt. Auch entfernte den Firebird SQL Server - MAGIX Edition, gemäß den Anweisungen. Txt-Dateien, die ich auf die Analyse hinzufügen und schon danke ich Ihnen für Ihre Hilfe.

    Code:
    Malwarebytes' Anti-Malware 1.51.2.1300
    www.malwarebytes.org
    
    Wersja bazy: 8077
    
    Windows 5.1.2600 Dodatek Service Pack 3
    Internet Explorer 7.0.5730.11
    
    2011-11-03 20:57:00
    mbam-log-2011-11-03 (20-56-53).txt
    
    Typ skanowania: Pełne skanowanie (C:\|D:\|)
    Przeskanowano obiektów: 271285
    Upłynęło: 58 minut(y), 20 sekund(y)
    
    Zainfekowanych procesów w pamięci: 0
    Zainfekowanych modułów w pamięci: 0
    Zainfekowanych kluczy rejestru: 15
    Zainfekowanych wartości rejestru: 0
    Zainfekowane informacje rejestru systemowego: 1
    Zainfekowanych folderów: 1
    Zainfekowanych plików: 14
    
    Zainfekowanych procesów w pamięci:
    (Nie znaleziono zagrożeń)
    
    Zainfekowanych modułów w pamięci:
    (Nie znaleziono zagrożeń)
    
    Zainfekowanych kluczy rejestru:
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} (Adware.MyWebSearch) -> No action taken.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9D71D88C-C598-4935-C5D1-43AA4DB90836} (Trojan.Agent) -> No action taken.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MiNODLogin (Riskware.KG) -> No action taken.
    HKEY_CLASSES_ROOT\CLSID\NOD32KVBIT (Trojan.Frethog) -> No action taken.
    HKEY_CURRENT_USER\SOFTWARE\3XQZ6EO4AP (Trojan.FakeAlert.SA) -> No action taken.
    HKEY_CURRENT_USER\SOFTWARE\Bifrost (Bifrose.Trace) -> No action taken.
    HKEY_CURRENT_USER\SOFTWARE\NtWqIVLZEWZU (Trojan.FakeAlert) -> No action taken.
    HKEY_CURRENT_USER\SOFTWARE\QZAIB7KITK (Trojan.FakeAlert) -> No action taken.
    HKEY_CURRENT_USER\SOFTWARE\YDZ1QVAGOJ (Trojan.FakeAlert.SA) -> No action taken.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Handle (Malware.Trace) -> No action taken.
    HKEY_CURRENT_USER\Software\M5T8QL3YW3 (Trojan.FakeAlert) -> No action taken.
    HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\ (Hijack.Zones) -> No action taken.
    HKEY_LOCAL_MACHINE\SOFTWARE\Bifrost (Bifrose.Trace) -> No action taken.
    HKEY_LOCAL_MACHINE\SOFTWARE\Fun Web Products (Adware.MyWebSearch) -> No action taken.
    HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\SSHNAS (Trojan.Renos) -> No action taken.
    
    Zainfekowanych wartości rejestru:
    (Nie znaleziono zagrożeń)
    
    Zainfekowane informacje rejestru systemowego:
    HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\Startup (Hijack.Startup) -> Bad: (C:\Documents and Settings\All Users\My applications) Good: (%USERPROFILE%\Start Menu\Programs\Startup) -> No action taken.
    
    Zainfekowanych folderów:
    c:\WINDOWS\system32\Bifrost (Backdoor.Bifrose) -> No action taken.
    
    Zainfekowanych plików:
    c:\documents and settings\Ania\dane aplikacji\thinstall\data doctor recovery fat 3.0.1.5\400000d00002i\datadoctor-hdd.exe (Trojan.Agent) -> No action taken.
    c:\documents and settings\Ania\dane aplikacji\thinstall\symbian developer certificate request\4000005200002i\AcroRd32.exe (Trojan.IRCBot) -> No action taken.
    c:\documents and settings\Ania\dane aplikacji\thinstall\symbian developer certificate request\4000009c00002i\IEXPLORE.EXE (Trojan.IRCBot) -> No action taken.
    c:\program files\ESET\minodlogin\minodlogin.exe (Riskware.KG) -> No action taken.
    c:\program files\ESET\minodlogin\minodloginuninst.exe (Riskware.KG) -> No action taken.
    d:\system volume information\_restore{db450046-04f9-4612-9bdb-5abb6d4bb401}\RP703\A0217421.exe (RiskWare.Agent.CK) -> No action taken.
    d:\TV Sat\eset nod32 smart security key finder v8 final.exe (Riskware.KG) -> No action taken.
    d:\TV Sat\Eset\tnod-1.4.0.15-setup.exe (Trojan.Agent.CK) -> No action taken.
    d:\TV Sat\tnod-1.4.0.15\tnod-1.4.0.15.exe (Trojan.Agent.CK) -> No action taken.
    d:\programy edukacyjne\core-keygen.exe (RiskWare.Tool.HCK) -> No action taken.
    c:\documents and settings\Ania\dane aplikacji\addon.dat (Malware.Trace) -> No action taken.
    c:\documents and settings\Ania\dane aplikacji\addons.dat (Bifrose.Trace) -> No action taken.
    c:\WINDOWS\system32\regsvr.exe (Backdoor.Bot) -> No action taken.
    c:\WINDOWS\system32\Bifrost\logg.dat (Backdoor.Bifrose) -> No action taken.

    Code:
    OTL logfile created on: 2011-11-03 21:10:53 - Run 1
    OTL by OldTimer - Version 3.2.31.0     Folder = D:\
    Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
    Internet Explorer (Version = 7.0.5730.11)
    Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
     
    1.25 Gb Total Physical Memory | 0.58 Gb Available Physical Memory | 46.14% Memory free
    2.98 Gb Paging File | 2.41 Gb Available in Paging File | 80.79% Paging File free
    Paging file location(s): C:\pagefile.sys 1918 1918 [binary data]
     
    %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
    Drive C: | 19.53 Gb Total Space | 3.10 Gb Free Space | 15.86% Space Free | Partition Type: NTFS
    Drive D: | 36.35 Gb Total Space | 24.86 Gb Free Space | 68.40% Space Free | Partition Type: NTFS
     
    Computer Name: ANNA | User Name: Ania | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: Current user
    Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
     
    ========== Processes (SafeList) ==========
     
    PRC - [2011-11-03 20:12:04 | 000,584,192 | ---- | M] (OldTimer Tools) -- D:\OTL.exe
    PRC - [2011-06-14 14:51:20 | 000,671,552 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe
    PRC - [2011-06-14 14:49:04 | 001,524,544 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe
    PRC - [2010-04-07 21:07:24 | 000,810,120 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe
    PRC - [2010-04-07 21:07:04 | 002,145,000 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\egui.exe
    PRC - [2010-03-09 03:52:49 | 000,015,872 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerAssistant.exe
    PRC - [2009-10-07 01:47:34 | 000,154,136 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
    PRC - [2009-02-27 06:54:22 | 000,870,672 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe
    PRC - [2009-02-27 06:22:10 | 001,368,064 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\WiFi\bin\ZCfgSvc.exe
    PRC - [2009-02-27 05:55:20 | 000,909,312 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\WiFi\bin\S24EvMon.exe
    PRC - [2009-02-27 05:40:52 | 001,202,448 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
    PRC - [2009-02-27 05:38:38 | 000,473,360 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
    PRC - [2008-09-24 14:50:46 | 000,052,888 | ---- | M] () -- C:\Program Files\VIA\RAID\vialogsv.exe
    PRC - [2008-08-19 12:26:44 | 000,077,824 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE
    PRC - [2008-05-18 08:00:33 | 000,045,056 | ---- | M] () -- C:\WINDOWS\system32\UTSCSI.EXE
    PRC - [2008-04-14 18:21:16 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
    PRC - [2008-03-20 11:04:46 | 002,127,296 | ---- | M] (Gadu-Gadu S.A.) -- C:\Program Files\Gadu-Gadu\gg.exe
    PRC - [2005-08-12 14:43:58 | 000,045,056 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
    PRC - [2005-03-18 14:35:46 | 000,098,393 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
    PRC - [2005-02-07 17:42:26 | 000,057,344 | ---- | M] ( ) -- C:\WINDOWS\system32\slserv.exe
     
     
    ========== Modules (No Company Name) ==========
     
    MOD - [2011-10-11 19:43:41 | 003,391,488 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_98b1d0fc\mscorlib.dll
    MOD - [2011-10-11 19:43:35 | 000,835,584 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system.drawing\1.0.5000.0__b03f5f7f11d50a3a_3b7a4ba1\system.drawing.dll
    MOD - [2011-10-11 19:43:24 | 002,088,960 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system.xml\1.0.5000.0__b77a5c561934e089_7eeb3359\system.xml.dll
    MOD - [2011-10-11 19:43:14 | 003,018,752 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system.windows.forms\1.0.5000.0__b77a5c561934e089_7e067fc2\system.windows.forms.dll
    MOD - [2011-10-11 19:42:52 | 001,966,080 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system\1.0.5000.0__b77a5c561934e089_4da2976b\system.dll
    MOD - [2011-10-11 19:42:41 | 001,265,664 | ---- | M] () -- c:\windows\assembly\gac\system.web\1.0.5000.0__b03f5f7f11d50a3a\system.web.dll
    MOD - [2011-10-11 19:42:41 | 001,232,896 | ---- | M] () -- c:\windows\assembly\gac\system\1.0.5000.0__b77a5c561934e089\system.dll
    MOD - [2010-03-09 03:52:49 | 000,015,872 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerAssistant.exe
    MOD - [2009-02-27 05:51:14 | 000,200,704 | ---- | M] () -- C:\Program Files\Intel\WiFi\bin\iWMSProv.dll
    MOD - [2009-02-06 09:50:50 | 000,196,608 | ---- | M] () -- C:\Program Files\VIA\RAID\drvInterface.dll
    MOD - [2009-02-05 08:24:14 | 000,581,632 | ---- | M] () -- C:\Program Files\VIA\RAID\Language.dll
    MOD - [2008-09-24 14:50:46 | 000,052,888 | ---- | M] () -- C:\Program Files\VIA\RAID\vialogsv.exe
    MOD - [2008-05-18 08:00:33 | 000,045,056 | ---- | M] () -- C:\WINDOWS\system32\UTSCSI.EXE
    MOD - [2008-05-02 05:15:37 | 000,010,240 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerCOM.dll
    MOD - [2008-05-02 05:15:35 | 000,004,608 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerHook.dll
    MOD - [2008-03-20 10:17:48 | 000,106,496 | ---- | M] () -- C:\Program Files\Gadu-Gadu\libiax2.dll
    MOD - [2008-03-20 10:17:44 | 000,061,440 | ---- | M] () -- C:\Program Files\Gadu-Gadu\libjb.dll
    MOD - [2007-10-25 12:51:16 | 000,198,656 | ---- | M] () -- C:\Program Files\Gadu-Gadu\libcurl.dll
    MOD - [2007-08-13 20:37:28 | 000,372,736 | ---- | M] () -- c:\windows\assembly\gac\system.management\1.0.5000.0__b03f5f7f11d50a3a\system.management.dll
    MOD - [2007-08-13 20:37:27 | 001,339,392 | ---- | M] () -- c:\windows\assembly\gac\system.xml\1.0.5000.0__b77a5c561934e089\system.xml.dll
    MOD - [2007-08-13 20:37:26 | 000,323,584 | ---- | M] () -- c:\windows\assembly\gac\system.runtime.remoting\1.0.5000.0__b77a5c561934e089\system.runtime.remoting.dll
    MOD - [2007-08-13 20:37:25 | 000,466,944 | ---- | M] () -- c:\windows\assembly\gac\system.drawing\1.0.5000.0__b03f5f7f11d50a3a\system.drawing.dll
    MOD - [2007-08-13 20:37:24 | 002,052,096 | ---- | M] () -- c:\windows\assembly\gac\system.windows.forms\1.0.5000.0__b77a5c561934e089\system.windows.forms.dll
    MOD - [2006-06-27 00:51:54 | 000,017,704 | ---- | M] () -- C:\Program Files\Microsoft ActiveSync\rapiproxystub.dll
    MOD - [2006-05-27 07:30:25 | 000,237,568 | ---- | M] () -- c:\windows\assembly\gac\mscorlib.resources\1.0.5000.0_pl_b77a5c561934e089\mscorlib.resources.dll
    MOD - [2006-05-27 07:30:25 | 000,180,224 | ---- | M] () -- c:\windows\assembly\gac\system.windows.forms.resources\1.0.5000.0_pl_b77a5c561934e089\system.windows.forms.resources.dll
    MOD - [2006-05-27 07:30:25 | 000,081,920 | ---- | M] () -- c:\windows\assembly\gac\system.resources\1.0.5000.0_pl_b77a5c561934e089\system.resources.dll
    MOD - [2002-05-03 15:40:32 | 000,094,274 | ---- | M] () -- C:\WINDOWS\system32\HPBHEALR.DLL
     
     
    ========== Win32 Services (SafeList) ==========
     
    SRV - File not found [Unknown | Stopped] --  -- (SSHNAS)
    SRV - File not found [Auto | Stopped] --  -- (Diskeeper)
    SRV - File not found [Auto | Stopped] --  -- (CVPND)
    SRV - File not found [Auto | Stopped] --  -- (.EsetTrialReset)
    SRV - [2011-06-14 14:49:04 | 001,524,544 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc)
    SRV - [2011-06-14 14:44:40 | 000,029,504 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
    SRV - [2011-06-08 12:02:00 | 000,633,856 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
    SRV - [2010-04-07 21:10:38 | 000,033,560 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe -- (EhttpSrv)
    SRV - [2010-04-07 21:07:24 | 000,810,120 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe -- (ekrn)
    SRV - [2009-10-07 01:47:34 | 000,154,136 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)
    SRV - [2009-02-27 06:54:22 | 000,870,672 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng) Intel(R)
    SRV - [2009-02-27 05:55:20 | 000,909,312 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\S24EvMon.exe -- (S24EventMonitor) Intel(R)
    SRV - [2009-02-27 05:38:38 | 000,473,360 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc) Intel(R)
    SRV - [2008-09-24 14:50:46 | 000,052,888 | ---- | M] () [Auto | Running] -- C:\Program Files\VIA\RAID\vialogsv.exe -- (VRAID Log Service)
    SRV - [2008-05-18 08:00:33 | 000,045,056 | ---- | M] () [Auto | Running] -- C:\WINDOWS\system32\UTSCSI.EXE -- (UTSCSI)
    SRV - [2008-05-02 01:42:06 | 000,121,360 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe -- (LBTServ)
    SRV - [2005-02-07 17:42:26 | 000,057,344 | ---- | M] ( ) [Auto | Running] -- C:\WINDOWS\System32\slserv.exe -- (SLService)
     
     
    ========== Driver Services (SafeList) ==========
     
    DRV - [2011-06-03 15:33:49 | 000,130,432 | ---- | M] (Realtek Semiconductor Corporation                           ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
    DRV - [2011-05-18 09:12:38 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
    DRV - [2011-05-18 09:12:36 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
    DRV - [2011-05-18 09:12:32 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
    DRV - [2011-05-18 09:12:28 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
    DRV - [2011-05-18 09:09:48 | 000,137,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdnsu.sys -- (nmwcdnsu)
    DRV - [2011-05-18 09:09:48 | 000,008,576 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdnsuc.sys -- (nmwcdnsuc)
    DRV - [2011-02-10 09:22:58 | 000,010,064 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)
    DRV - [2010-04-07 21:08:08 | 000,055,232 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdi.sys -- (epfwtdi)
    DRV - [2010-04-07 21:08:06 | 000,032,584 | ---- | M] (ESET) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\epfwndis.sys -- (Epfwndis)
    DRV - [2010-04-07 21:08:04 | 000,134,488 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\epfw.sys -- (epfw)
    DRV - [2010-04-07 21:07:08 | 000,114,984 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)
    DRV - [2010-04-07 21:03:44 | 000,139,192 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
    DRV - [2009-10-07 01:46:36 | 000,025,752 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVPr2Mon.sys -- (LVPr2Mon)
    DRV - [2009-06-30 10:37:16 | 000,028,552 | ---- | M] (Panda Security, S.L.) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\pavboot.sys -- (pavboot)
    DRV - [2009-06-17 09:56:18 | 000,037,392 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt)
    DRV - [2009-06-17 09:56:06 | 000,035,472 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt)
    DRV - [2009-06-17 09:55:34 | 000,010,384 | ---- | M] (Logitech, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\LBeepKE.sys -- (LBeepKE)
    DRV - [2009-06-16 17:15:52 | 005,095,936 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
    DRV - [2009-02-25 23:58:57 | 003,565,568 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
    DRV - [2008-08-26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
    DRV - [2008-08-13 16:23:56 | 000,011,904 | ---- | M] (Intel Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\s24trans.sys -- (s24trans)
    DRV - [2008-01-07 13:36:16 | 002,216,064 | R--- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\w29n51.sys -- (w29n51) Sterownik karty Intel(R)
    DRV - [2007-10-14 08:07:18 | 000,081,408 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\SSHDRV86.sys -- (SSHDRV86)
    DRV - [2007-04-20 09:40:34 | 000,100,992 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbmdm.sys -- (hwdatacard)
    DRV - [2007-02-03 19:32:58 | 000,022,560 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lvuvcflt.sys -- (FilterService)
    DRV - [2007-02-03 19:32:45 | 001,939,360 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lvuvc.sys -- (LVUVC) QuickCam for Notebooks Deluxe(UVC)
    DRV - [2007-02-03 19:32:34 | 000,041,504 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LVUSBSta.sys -- (LVUSBSta)
    DRV - [2007-02-03 19:30:57 | 001,507,232 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lvpopflt.sys -- (lvpopflt)
    DRV - [2007-01-23 15:45:00 | 000,078,864 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LMouKE.Sys -- (LMouKE)
    DRV - [2007-01-23 15:44:00 | 000,062,992 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\L8042mou.Sys -- (L8042mou)
    DRV - [2007-01-23 15:44:00 | 000,020,496 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\L8042Kbd.sys -- (L8042Kbd)
    DRV - [2006-10-31 06:00:00 | 000,007,888 | ---- | M] (C. Ghisler & Co.) [Kernel | On_Demand | Stopped] -- C:\totalcmd\CGLPTNT.SYS -- (cglptnt)
    DRV - [2006-08-17 20:19:33 | 000,010,345 | ---- | M] (Applied Networking Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
    DRV - [2006-07-08 16:30:34 | 000,642,560 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
    DRV - [2006-05-10 08:56:54 | 000,027,264 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LHidKE.Sys -- (LHidKe)
    DRV - [2006-05-10 08:56:26 | 000,036,736 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LHidUsbK.sys -- (LHidUsbK)
    DRV - [2005-06-10 18:58:16 | 000,298,571 | ---- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\CVPNDRVA.sys -- (CVPNDRVA)
    DRV - [2005-05-17 03:51:34 | 000,005,315 | ---- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\CVirtA.sys -- (CVirtA)
    DRV - [2005-02-07 17:33:50 | 000,230,448 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SLDRV\slazldrv.sys -- (Slazldrv)
    DRV - [2005-02-07 17:14:40 | 000,014,520 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\SLDRV\RecAgent.sys -- (RecAgent)
    DRV - [2005-02-07 17:12:04 | 000,229,720 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SLDRV\mtlmnt5.sys -- (Mtlmnt5)
    DRV - [2005-02-07 17:07:04 | 000,101,136 | ---- | M] ( ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SLDRV\slnthal.sys -- (SlNtHal)
    DRV - [2005-02-07 17:05:28 | 001,396,048 | ---- | M] ( ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SLDRV\mtlstrm.sys -- (Mtlstrm)
    DRV - [2005-02-07 16:55:56 | 000,013,216 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SLDRV\slwdmsup.sys -- (SlWdmSup)
    DRV - [2005-01-26 03:22:20 | 000,280,344 | ---- | M] (Zone Labs LLC) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\vsdatant.sys -- (vsdatant)
    DRV - [2004-11-03 11:07:24 | 000,146,888 | ---- | M] (Deterministic Networks, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\dne2000.sys -- (DNE)
    DRV - [2004-10-27 14:21:30 | 000,145,920 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Hdaudio.sys -- (HdAudAddService)
    DRV - [2004-07-30 09:55:48 | 000,091,830 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\P0630Vid.sys -- (P0630VID)
    DRV - [2003-02-19 14:04:38 | 000,041,344 | ---- | M] (Prolific Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ser2pl.sys -- (Ser2pl)
    DRV - [2000-11-28 20:47:16 | 000,004,256 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\UserPort.sys -- (UserPort)
     
     
    ========== Standard Registry (SafeList) ==========
     
     
    ========== Internet Explorer ==========
     
     
    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Yahoo! Search
    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.onet.pl/
    IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
    IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" =  127.0.0.1 127.0.0.1
     
    ========== FireFox ==========
     
    FF - prefs.js..browser.search.defaultengine: "Ask.com"
    FF - prefs.js..browser.search.defaultenginename: "Ask.com"
    FF - prefs.js..browser.search.defaultthis.engineName: "Softonic Deutsch Customized Web Search"
    FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT1351351&SearchSource=3&q={searchTerms}"
    FF - prefs.js..browser.search.order.1: "Ask.com"
    FF - prefs.js..browser.search.order.2: "Yahoo"
    FF - prefs.js..browser.search.param.yahoo-fr: "megaup"
    FF - prefs.js..browser.search.param.yahoo-fr-cjkt: "megaup"
    FF - prefs.js..browser.search.selectedEngine: "Google"
    FF - prefs.js..browser.search.useDBForOrder: true
    FF - prefs.js..browser.startup.homepage: "http://www.google.pl/"
    FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
    FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
    FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
    FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
    FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
    FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
    FF - prefs.js..extensions.enabledItems: toolbar@ask.com:3.12.2.100006
    FF - prefs.js..extensions.enabledItems: {1FD91A9C-410C-4090-BBCC-55D3450EF433}:1.0
    FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26
     
     
    FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
    FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Picasa2\npPicasa3.dll (Google, Inc.)
    FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
    FF - HKLM\Software\MozillaPlugins\@macromedia.com/FlashPlayer8: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@pandasecurity.com/activescan: C:\Program Files\Panda Security\ActiveScan 2.0\npwrapper.dll (Panda Security, S.L.)
    FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll File not found
    FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll File not found
    FF - HKCU\Software\MozillaPlugins\@macromedia.com/FlashPlayer8: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
     
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\bkmrksync@nokia.com: C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ [2011-04-12 20:55:53 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-08-29 20:22:42 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-10-26 13:19:19 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2011-02-04 17:44:15 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\{CCB7D94B-CA92-4E3F-B79D-ADE0F07ADC74}: C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Thunderbird Connector\ThunderbirdExtension\ [2011-09-24 19:46:59 | 000,000,000 | ---D | M]
     
    [2008-07-10 11:35:43 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Extensions
    [2011-09-30 15:31:17 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Firefox\Profiles\7v77w59g.default\extensions
    [2010-08-26 10:28:43 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Firefox\Profiles\7v77w59g.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
    [2011-09-30 15:31:17 | 000,000,000 | ---D | M] (Softonic Deutsch Community Toolbar) -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Firefox\Profiles\7v77w59g.default\extensions\{8dbb6d8e-e4a6-4e3b-9753-af78b226441c}
    [2011-06-23 14:40:09 | 000,000,000 | ---D | M] (Searchqu Toolbar) -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Firefox\Profiles\7v77w59g.default\extensions\{99079a25-328f-4bd4-be04-00955acaa0a7}
    [2008-04-22 20:02:56 | 000,000,000 | ---D | M] (Megaupload Toolbar) -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Firefox\Profiles\7v77w59g.default\extensions\{991A772A-BA13-4c1d-A9EF-F897F31DEC7D}
    [2011-09-23 19:17:40 | 000,002,569 | ---- | M] () -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Firefox\Profiles\7v77w59g.default\searchplugins\askcom.xml
    [2009-10-06 16:03:36 | 000,000,894 | ---- | M] () -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Firefox\Profiles\7v77w59g.default\searchplugins\conduit.xml
    [2008-02-16 21:48:21 | 000,001,832 | ---- | M] () -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Firefox\Profiles\7v77w59g.default\searchplugins\LiveSearch.xml
    [2011-02-21 19:46:55 | 000,002,029 | ---- | M] () -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Firefox\Profiles\7v77w59g.default\searchplugins\MyStart Search.xml
    [2011-06-23 12:58:06 | 000,002,501 | ---- | M] () -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Firefox\Profiles\7v77w59g.default\searchplugins\SearchResults.xml
    [2011-10-26 13:49:46 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
    [2010-05-06 15:23:31 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
    [2010-08-20 11:42:49 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
    [2010-11-06 16:13:07 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
    [2011-01-06 16:12:28 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
    [2011-03-05 20:34:22 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
    [2011-07-05 18:57:42 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
    [2011-10-26 13:49:46 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}
    [2008-12-01 20:17:18 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
    [2011-08-12 07:32:21 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
    [2011-10-03 04:06:04 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
    [2011-08-12 04:51:25 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
    [2011-08-12 04:51:25 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
    [2011-08-12 04:51:25 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
    [2011-08-12 04:51:25 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
    [2011-06-23 12:58:06 | 000,002,501 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\SearchResults.xml
    [2011-08-12 04:51:25 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
    [2011-08-12 04:51:25 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml
     
    ========== Chrome  ==========
     
    CHR - default_search_provider: Yahoo! Search ()
    CHR - default_search_provider: search_url = http://search.yahoo.com/search?ei=ISO-8859-1&fr=megaup&q={searchTerms}
    CHR - default_search_provider: suggest_url = 
     
    O1 HOSTS File: ([2011-10-31 13:08:26 | 000,000,039 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
    O3 - HKLM\..\Toolbar: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found.
    O4 - HKLM..\Run: [AlcWzrd] C:\WINDOWS\ALCWZRD.EXE (RealTek Semicoductor Corp.)
    O4 - HKLM..\Run: [ATICCC] C:\Program Files\ATI Technologies\ATI.ACE\cli.exe (ATI Technologies Inc.)
    O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
    O4 - HKLM..\Run: [IntelWireless] C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe (Intel(R) Corporation)
    O4 - HKLM..\Run: [IntelZeroConfig] C:\Program Files\Intel\WiFi\bin\ZCfgSvc.exe (Intel(R) Corporation)
    O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found
    O4 - HKLM..\Run: [Malwarebytes' Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
    O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
    O4 - HKLM..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe (Synaptics, Inc.)
    O4 - HKLM..\Run: [UnlockerAssistant] C:\Program Files\Unlocker\UnlockerAssistant.exe ()
    O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
    O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
    O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
    O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
    O8 - Extra context menu item: &Download All using 4shared Desktop - Reg Error: Value error. File not found
    O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
    O8 - Extra context menu item: Funkcja Google Sidewiki - Reg Error: Value error. File not found
    O9 - Extra Button: iOpus iMacros - {0483894E-2422-45E0-8384-021AFF1AF3CD} - Reg Error: Key error. File not found
    O9 - Extra 'Tools' menuitem : iMacros Web Automation - {0483894E-2422-45E0-8384-021AFF1AF3CD} - Reg Error: Value error. File not found
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool)
    O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.)
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
    O16 - DPF: {8FEFF364-6A5F-4966-A917-A3AC28411659} http://download.sopcast.cn/download/SOPCORE.CAB (Reg Error: Key error.)
    O16 - DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} http://acs.pandasoftware.com/activescan/cabs/as2stubie.cab (ActiveScan 2.0 Installer Class)
    O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_09-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_10-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_11-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_01-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_04-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 194.204.159.1 194.204.152.34 192.168.0.1
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{572C0FFB-7714-42A5-8D70-DF6C4C1BF87B}: DhcpNameServer = 194.204.159.1 194.204.152.34 192.168.0.1
    O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (Logitech Inc.)
    O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
    O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
    O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
    O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
    O20 - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logitech\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\Logitech\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
    O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
    O24 - Desktop WallPaper: C:\Documents and Settings\Ania\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
    O24 - Desktop BackupWallPaper: C:\Documents and Settings\Ania\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
    O32 - HKLM CDRom: AutoRun - 1
    O32 - AutoRun File - [2006-05-27 07:27:16 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
    O33 - MountPoints2\{8932dff8-b943-11e0-90ba-0012f04f07e3}\Shell - "" = AutoRun
    O33 - MountPoints2\{afdad96c-a18e-11df-8dbd-0012f04f07e3}\Shell - "" = AutoRun
    O33 - MountPoints2\{d1d392ba-9cb7-11df-8d87-0012f04f07e3}\Shell - "" = AutoRun
    O33 - MountPoints2\{ec768c34-b940-11e0-90b9-0012f04f07e3}\Shell - "" = AutoRun
    O34 - HKLM BootExecute: (autocheck autochk *)
    O34 - HKLM BootExecute: (autocheck OODBS)
    O35 - HKLM\..comfile [open] -- "%1" %*
    O35 - HKLM\..exefile [open] -- "%1" %*
    O37 - HKLM\...com [@ = ComFile] -- "%1" %*
    O37 - HKLM\...exe [@ = exefile] -- "%1" %*
     
    ========== Files/Folders - Created Within 30 Days ==========
     
    [2011-11-03 19:53:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ania\Dane aplikacji\Malwarebytes
    [2011-11-03 19:53:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Malwarebytes' Anti-Malware
    [2011-11-03 19:53:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes
    [2011-11-03 19:53:05 | 000,022,216 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
    [2011-11-03 19:53:05 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
    [2011-11-02 20:32:10 | 000,028,552 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\pavboot.sys
    [2011-11-02 20:32:03 | 000,000,000 | ---D | C] -- C:\Program Files\Panda Security
    [2011-10-31 12:51:59 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
    [2011-10-26 19:41:23 | 000,014,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll
    [2011-10-26 13:20:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Microsoft Office
    [2011-10-26 13:19:47 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
    [2011-10-26 07:32:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW
    [2011-10-25 20:43:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ania\Dane aplikacji\ElevatedDiagnostics
    [2011-10-25 20:42:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\windowspowershell
    [2011-10-25 13:10:02 | 000,000,000 | ---D | C] -- C:\rootsetup
    [2011-10-22 22:17:12 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
    [2011-10-22 22:17:12 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
    [2011-10-22 22:17:12 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
    [2011-10-13 20:10:38 | 000,000,000 | ---D | C] -- C:\MyS2GApp
    [2011-10-11 20:40:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Adobe
    [2011-10-11 19:39:29 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
    [2006-05-27 07:44:50 | 000,014,976 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\winddx.sys
    [2006-05-27 07:41:19 | 000,057,344 | ---- | C] ( ) -- C:\WINDOWS\System32\slserv.exe
    [5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
     
    ========== Files - Modified Within 30 Days ==========
     
    [2011-11-03 20:57:33 | 000,054,016 | ---- | M] () -- C:\WINDOWS\System32\drivers\gcbsa.sys
    [2011-11-03 20:57:01 | 000,001,032 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
    [2011-11-03 19:57:00 | 000,001,028 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
    [2011-11-03 19:53:10 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk
    [2011-11-03 18:24:54 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
    [2011-11-03 18:24:13 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
    [2011-10-31 12:23:01 | 000,000,480 | ---- | M] () -- C:\Documents and Settings\Ania\SDIGMICROSOFTINTERNETEXPLORER.CFG
    [2011-10-28 14:49:55 | 000,003,396 | ---- | M] () -- C:\WINDOWS\wincmd.ini
    [2011-10-28 14:49:39 | 000,000,196 | ---- | M] () -- C:\WINDOWS\wcx_ftp.ini
    [2011-10-28 09:53:00 | 000,000,527 | ---- | M] () -- C:\Documents and Settings\Ania\SDIGMICROSOFTINTERNETEXPLORER.CFG.err
    [2011-10-26 19:41:03 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
    [2011-10-26 19:41:03 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
    [2011-10-26 17:41:36 | 000,000,421 | ---- | M] () -- C:\WINDOWS\ODBC.INI
    [2011-10-26 13:38:06 | 000,014,242 | ---- | M] () -- C:\WINDOWS\System32\cleartmp.cmd
    [2011-10-26 13:25:43 | 000,160,344 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
    [2011-10-26 10:11:58 | 000,008,192 | ---- | M] () -- C:\Documents and Settings\Ania\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2011-10-25 19:58:25 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
    [2011-10-25 16:40:37 | 000,077,428 | ---- | M] () -- C:\Documents and Settings\Ania\Moje dokumenty\polityki.zip
    [2011-10-25 16:33:36 | 000,053,268 | ---- | M] () -- C:\Documents and Settings\Ania\Dane aplikacji\chrtmp
    [2011-10-19 14:56:00 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
    [2011-10-11 19:56:10 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
    [2011-10-11 19:46:16 | 001,002,988 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
    [2011-10-11 19:46:16 | 000,859,156 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
    [2011-10-11 19:46:16 | 000,347,170 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
    [2011-10-11 19:46:16 | 000,274,592 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
    [5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
     
    ========== Files Created - No Company Name ==========
     
    [2011-11-03 20:57:33 | 000,054,016 | ---- | C] () -- C:\WINDOWS\System32\drivers\gcbsa.sys
    [2011-11-03 19:53:10 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk
    [2011-10-28 09:52:50 | 000,000,527 | ---- | C] () -- C:\Documents and Settings\Ania\SDIGMICROSOFTINTERNETEXPLORER.CFG.err
    [2011-10-27 11:21:34 | 000,002,508 | ---- | C] () -- C:\Documents and Settings\NetworkService\Dane aplikacji\$_hpcst$.hpc
    [2011-10-26 13:24:36 | 000,014,242 | ---- | C] () -- C:\WINDOWS\System32\cleartmp.cmd
    [2011-10-11 19:41:45 | 000,001,393 | ---- | C] () -- C:\WINDOWS\imsins.BAK
    [2011-08-05 15:44:05 | 000,008,192 | ---- | C] () -- C:\Documents and Settings\Ania\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2011-06-23 13:24:32 | 000,000,006 | ---- | C] () -- C:\Documents and Settings\Ania\Dane aplikacji\completescan
    [2011-06-23 13:19:44 | 000,000,010 | ---- | C] () -- C:\Documents and Settings\Ania\Dane aplikacji\install
    [2011-06-23 13:16:58 | 000,001,876 | ---- | C] () -- C:\Documents and Settings\Ania\Dane aplikacji\1.gif
    [2011-06-23 13:16:57 | 000,000,012 | ---- | C] () -- C:\Documents and Settings\Ania\Dane aplikacji\ct_start
    [2011-06-06 20:10:40 | 000,075,776 | ---- | C] () -- C:\WINDOWS\System32\kbdczw.dll
    [2011-06-06 18:50:47 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\Ania\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
    [2011-06-06 17:14:29 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
    [2011-06-06 17:07:40 | 000,593,920 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe
    [2011-06-03 15:33:49 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\RtNicProp32.dll
    [2011-05-30 20:18:28 | 000,053,268 | ---- | C] () -- C:\Documents and Settings\Ania\Dane aplikacji\chrtmp
    [2011-05-13 20:15:07 | 000,426,236 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
    [2011-02-13 11:12:42 | 000,790,528 | ---- | C] () -- C:\WINDOWS\System32\FREEIMAGEX.DLL
    [2010-09-22 16:42:54 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
    [2010-08-03 16:18:21 | 000,000,022 | ---- | C] () -- C:\WINDOWS\System32\winStudio.bin
    [2010-08-02 13:49:38 | 000,000,155 | ---- | C] () -- C:\WINDOWS\PhotoGraffiti.ini
    [2010-02-21 10:33:31 | 000,000,600 | ---- | C] () -- C:\Documents and Settings\Ania\Dane aplikacji\winscp.rnd
    [2009-12-27 23:23:35 | 000,000,237 | ---- | C] () -- C:\WINDOWS\System32\regsvr-alo.ini
    [2009-11-29 12:34:18 | 000,000,843 | ---- | C] () -- C:\WINDOWS\ARPR.INI
    [2009-11-27 14:02:16 | 000,012,747 | ---- | C] () -- C:\WINDOWS\unins000.dat
    [2009-10-15 17:14:41 | 000,000,062 | ---- | C] () -- C:\WINDOWS\wininit.ini
    [2009-10-07 01:46:36 | 000,025,752 | ---- | C] () -- C:\WINDOWS\System32\drivers\LVPr2Mon.sys
    [2009-10-07 01:23:08 | 000,013,584 | ---- | C] () -- C:\WINDOWS\System32\drivers\iKeyLFT2.dll
    [2009-10-03 19:13:42 | 000,000,107 | ---- | C] () -- C:\WINDOWS\IfoEdit.INI
    [2009-07-10 13:19:18 | 000,155,136 | ---- | C] () -- C:\WINDOWS\PEV.exe
    [2009-07-10 12:43:12 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
    [2009-07-10 12:43:12 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
    [2009-07-10 12:43:12 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
    [2009-07-09 20:26:13 | 000,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat
    [2009-02-25 21:58:44 | 003,107,788 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat
    [2009-02-25 21:58:44 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat
    [2009-02-11 10:09:45 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.INI
    [2009-01-25 12:38:24 | 000,000,021 | ---- | C] () -- C:\WINDOWS\progman.ini
    [2009-01-25 12:38:23 | 000,000,266 | ---- | C] () -- C:\WINDOWS\HAFASWIN.INI
    [2009-01-23 10:34:01 | 000,000,144 | ---- | C] () -- C:\WINDOWS\ZUS_PIT11.INI
    [2008-08-26 19:15:56 | 000,004,256 | ---- | C] () -- C:\WINDOWS\System32\drivers\UserPort.sys
    [2008-07-31 19:57:00 | 000,065,552 | ---- | C] () -- C:\WINDOWS\System32\Ke386.DLL
    [2008-07-31 19:35:27 | 000,065,552 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\Desktop.lnk
    [2008-07-16 17:42:17 | 000,090,112 | ---- | C] () -- C:\WINDOWS\RSetupCE.exe
    [2008-05-18 08:39:02 | 000,000,101 | ---- | C] () -- C:\WINDOWS\winzipme.ini
    [2008-05-18 08:00:33 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\UTSCSI.EXE
    [2008-03-29 21:00:25 | 000,162,304 | ---- | C] () -- C:\WINDOWS\System32\ztvunrar36.dll
    [2008-03-29 21:00:25 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\UNRAR3.dll
    [2008-03-29 21:00:25 | 000,077,312 | ---- | C] () -- C:\WINDOWS\System32\ztvunace26.dll
    [2008-03-29 21:00:25 | 000,075,264 | ---- | C] () -- C:\WINDOWS\System32\unacev2.dll
    [2008-03-07 21:04:31 | 000,050,127 | R--- | C] () -- C:\WINDOWS\System32\lvcoinst.ini
    [2008-03-04 09:03:22 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\ezsid.dat
    [2008-02-26 16:00:31 | 000,008,544 | ---- | C] () -- C:\WINDOWS\UCORESYS.SYS
    [2008-02-16 19:03:57 | 000,000,000 | ---- | C] () -- C:\WINDOWS\oodcnt.INI
    [2007-11-25 16:36:08 | 000,164,352 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
    [2007-11-25 16:35:55 | 001,559,040 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
    [2007-11-25 16:35:55 | 000,282,624 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
    [2007-11-25 16:35:54 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
    [2007-11-25 16:35:49 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
    [2007-10-14 08:07:17 | 000,081,408 | ---- | C] () -- C:\WINDOWS\System32\drivers\SSHDRV86.sys
    [2007-09-11 18:15:58 | 000,000,950 | ---- | C] () -- C:\WINDOWS\UAMedytor.ini
    [2007-08-22 21:27:36 | 000,002,508 | ---- | C] () -- C:\Documents and Settings\LocalService\Dane aplikacji\$_hpcst$.hpc
    [2007-05-03 19:51:04 | 000,000,196 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
    [2007-05-03 19:46:06 | 000,003,396 | ---- | C] () -- C:\WINDOWS\wincmd.ini
    [2007-02-24 15:52:07 | 000,022,528 | ---- | C] () -- C:\WINDOWS\System32\wsc32.dll
    [2006-10-31 03:36:48 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\snipit.dll
    [2006-08-22 18:58:59 | 000,000,020 | ---- | C] () -- C:\WINDOWS\naglos.INI
    [2006-08-16 21:11:04 | 000,002,508 | ---- | C] () -- C:\Documents and Settings\Ania\Dane aplikacji\$_hpcst$.hpc
    [2006-08-05 20:47:05 | 000,000,047 | ---- | C] () -- C:\WINDOWS\System32\imon1.dat
    [2006-07-13 09:20:01 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
    [2006-07-08 16:30:34 | 000,096,384 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd8365.sys
    [2006-07-02 15:18:22 | 000,000,000 | ---- | C] () -- C:\WINDOWS\epcmonitor.INI
    [2006-07-02 15:17:56 | 000,143,360 | ---- | C] () -- C:\WINDOWS\System32\XNMHB425.DLL
    [2006-07-02 15:17:56 | 000,092,672 | ---- | C] () -- C:\WINDOWS\System32\XNMHB458.DLL
    [2006-07-02 15:17:56 | 000,066,560 | ---- | C] () -- C:\WINDOWS\System32\XNMHN425.DLL
    [2006-07-02 15:17:56 | 000,064,512 | ---- | C] () -- C:\WINDOWS\System32\XNMTE458.DLL
    [2006-07-02 15:17:56 | 000,056,320 | ---- | C] () -- C:\WINDOWS\System32\XNMTE425.DLL
    [2006-07-02 15:17:56 | 000,025,600 | ---- | C] () -- C:\WINDOWS\System32\XNMHN458.DLL
    [2006-07-02 15:17:56 | 000,006,848 | ---- | C] () -- C:\WINDOWS\System32\drivers\DS1410D.SYS
    [2006-07-02 15:17:55 | 000,360,448 | ---- | C] () -- C:\WINDOWS\System32\XNMBA458.DLL
    [2006-07-02 15:17:55 | 000,303,616 | ---- | C] () -- C:\WINDOWS\System32\XNMBA425.DLL
    [2006-07-02 15:17:54 | 000,006,848 | ---- | C] () -- C:\WINDOWS\System32\DS1410D.SYS
    [2006-06-28 19:10:52 | 000,000,711 | ---- | C] () -- C:\WINDOWS\NedroFun.ini
    [2006-06-26 20:17:35 | 000,018,752 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
    [2006-05-27 09:19:40 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
    [2006-05-27 09:18:27 | 000,160,344 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
    [2006-05-27 08:28:23 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI
    [2006-05-27 08:25:18 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
    [2006-05-27 08:24:55 | 000,002,951 | ---- | C] () -- C:\WINDOWS\mozver.dat
    [2006-05-27 07:44:50 | 000,540,672 | ---- | C] () -- C:\WINDOWS\System32\SLLights.dll
    [2006-05-27 07:44:50 | 000,380,928 | ---- | C] () -- C:\WINDOWS\System32\slmh.exe
    [2006-05-27 07:44:50 | 000,221,184 | ---- | C] () -- C:\WINDOWS\System32\amr_cpl.dll
    [2006-05-27 07:44:50 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\minirec.exe
    [2006-05-27 07:44:50 | 000,151,552 | ---- | C] () -- C:\WINDOWS\System32\SLMOHServ.dll
    [2006-05-27 07:44:50 | 000,077,824 | ---- | C] () -- C:\WINDOWS\SmCfg.exe
    [2006-05-27 07:44:08 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
    [2006-05-27 07:41:21 | 000,182,995 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
    [2006-05-27 07:41:19 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\slextspk.dll
    [2006-05-27 07:41:19 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\SLGen.dll
    [2006-05-27 07:41:19 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\slcoinst.dll
    [2006-05-27 07:41:19 | 000,036,864 | ---- | C] () -- C:\WINDOWS\slrundll.exe
    [2006-05-27 07:34:23 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
    [2006-05-27 07:31:18 | 000,000,996 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
    [2006-05-27 07:24:05 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
    [2005-06-10 18:59:54 | 000,177,152 | ---- | C] () -- C:\WINDOWS\System32\CSGina.dll
    [2005-06-10 18:53:52 | 000,163,840 | ---- | C] () -- C:\WINDOWS\System32\vpnapi.dll
    [2004-08-04 13:00:00 | 001,002,988 | ---- | C] () -- C:\WINDOWS\System32\perfh015.dat
    [2004-08-04 13:00:00 | 000,859,156 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
    [2004-08-04 13:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
    [2004-08-04 13:00:00 | 000,347,170 | ---- | C] () -- C:\WINDOWS\System32\perfc015.dat
    [2004-08-04 13:00:00 | 000,313,828 | ---- | C] () -- C:\WINDOWS\System32\perfi015.dat
    [2004-08-04 13:00:00 | 000,274,592 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
    [2004-08-04 13:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
    [2004-08-04 13:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
    [2004-08-04 13:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
    [2004-08-04 13:00:00 | 000,034,990 | ---- | C] () -- C:\WINDOWS\System32\perfd015.dat
    [2004-08-04 13:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
    [2004-08-04 13:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
    [2004-08-04 13:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
    [2004-08-04 13:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
    [2004-03-15 12:02:38 | 000,000,412 | ---- | C] () -- C:\WINDOWS\System32\HP3AIOZ6.dat
    [2004-03-03 05:06:00 | 000,221,184 | ---- | C] () -- C:\WINDOWS\System32\HP3AIOZ6.dll
    [2003-07-30 10:48:28 | 000,004,711 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
    [2003-07-30 09:49:22 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
    [2003-04-08 10:40:22 | 000,005,679 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
    [2002-05-03 15:40:32 | 000,094,274 | ---- | C] () -- C:\WINDOWS\System32\HPBHEALR.DLL
    [2001-08-29 18:57:40 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\addurl41.DLL
    [2001-07-10 13:43:16 | 000,018,432 | ---- | C] () -- C:\WINDOWS\System32\winwatch.DLL
     
    ========== LOP Check ==========
     
    [2010-03-21 11:56:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Blumentals
    [2011-06-23 14:38:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\boost_interprocess
    [2007-04-11 19:47:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Downloaded Installations
    [2011-06-06 20:00:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Easy Driver Pro
    [2011-02-04 17:44:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET
    [2011-06-03 21:59:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Fighters
    [2008-11-08 18:17:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\GARMIN
    [2010-08-25 16:25:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Icon Constructor 3
    [2011-02-21 19:48:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\IM
    [2011-02-21 19:47:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\IncrediMail
    [2011-09-24 20:40:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations
    [2008-02-16 19:48:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\iolo
    [2007-04-11 20:13:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Nokia
    [2010-08-04 11:40:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\NokiaInstallerCache
    [2008-01-06 10:34:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite
    [2011-08-19 19:23:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Registry First Aid
    [2011-10-30 14:47:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\RFA_Backups
    [2009-11-10 22:20:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
    [2011-06-05 19:10:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TuneUp Software
    [2011-08-02 06:25:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\YoWindow
    [2011-06-06 16:03:45 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
    [2010-03-01 20:29:18 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
    [2008-11-21 17:40:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\anpo.republika.pl
    [2006-07-01 21:38:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\AutoUpdate
    [2009-11-13 20:07:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Blender Foundation
    [2010-07-31 16:49:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\blueconnect
    [2007-03-24 16:22:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Datalayer
    [2011-02-04 19:31:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Desktopicon
    [2011-08-22 20:04:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\DMCache
    [2010-11-08 21:54:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\dreamload
    [2011-10-25 20:43:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\ElevatedDiagnostics
    [2011-02-04 17:45:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\ESET
    [2011-05-30 20:26:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Fighters
    [2009-11-06 09:28:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\FileZilla
    [2008-11-21 17:39:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\fltk.org
    [2010-02-20 19:09:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Gadu-Gadu
    [2008-11-08 18:41:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\GARMIN
    [2007-10-12 17:17:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\GeoVid
    [2011-08-22 20:06:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\IDM
    [2007-06-14 09:11:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Leadertech
    [2008-10-28 12:40:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Leica Virtual Explorer
    [2011-05-12 16:39:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Mobile Atlas Creator
    [2010-08-11 07:46:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\mojosoft
    [2010-07-27 19:00:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\nod32 updater
    [2010-08-08 10:15:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Nokia
    [2011-02-17 20:44:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Notepad++
    [2009-09-24 20:08:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\ooVoo Details
    [2011-05-13 18:03:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\OpenCandy
    [2011-04-11 21:00:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\PC Suite
    [2008-11-26 20:36:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\RapidGet
    [2011-08-21 16:03:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\SatChannelListEditor
    [2011-06-23 14:40:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\searchqutoolbar
    [2008-03-29 21:00:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Simply Super Software
    [2011-05-21 21:13:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Softplicity
    [2011-09-09 15:54:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\TeamViewer
    [2009-08-03 21:41:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Thinstall
    [2011-06-18 19:08:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\TuneUp Software
    [2011-06-04 10:53:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Uniblue
    [2009-01-25 10:44:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\VitySoft
    [2011-05-16 09:46:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\YoWindow
     
    ========== Purity Check ==========
     
     
     
    ========== Alternate Data Streams ==========
     
    @Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:CB0AACC9
    @Alternate Data Stream - 117 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:C8B8CEBD
    
    < End of report >

  4. #4
    Einsteiger
    Registriert seit
    01.11.2011
    Beiträge
    10

    AW: Windows XP

    Ciao, Petra
    Ich habe 4 Punkte, die aus ich zwei Stücke daraus resultierenden nach dem Scannen der Computer-Software angegeben gesetzt Punkt. Auch entfernte den Firebird SQL Server - MAGIX Edition, gemäß den Anweisungen. Txt-Dateien, die ich auf die Analyse hinzufügen und schon danke ich Ihnen für Ihre Hilfe.

    Code:
    Malwarebytes' Anti-Malware 1.51.2.1300
    www.malwarebytes.org
    
    Wersja bazy: 8077
    
    Windows 5.1.2600 Dodatek Service Pack 3
    Internet Explorer 7.0.5730.11
    
    2011-11-03 20:57:00
    mbam-log-2011-11-03 (20-56-53).txt
    
    Typ skanowania: Pełne skanowanie (C:\|D:\|)
    Przeskanowano obiektów: 271285
    Upłynęło: 58 minut(y), 20 sekund(y)
    
    Zainfekowanych procesów w pamięci: 0
    Zainfekowanych modułów w pamięci: 0
    Zainfekowanych kluczy rejestru: 15
    Zainfekowanych wartości rejestru: 0
    Zainfekowane informacje rejestru systemowego: 1
    Zainfekowanych folderów: 1
    Zainfekowanych plików: 14
    
    Zainfekowanych procesów w pamięci:
    (Nie znaleziono zagrożeń)
    
    Zainfekowanych modułów w pamięci:
    (Nie znaleziono zagrożeń)
    
    Zainfekowanych kluczy rejestru:
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} (Adware.MyWebSearch) -> No action taken.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9D71D88C-C598-4935-C5D1-43AA4DB90836} (Trojan.Agent) -> No action taken.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MiNODLogin (Riskware.KG) -> No action taken.
    HKEY_CLASSES_ROOT\CLSID\NOD32KVBIT (Trojan.Frethog) -> No action taken.
    HKEY_CURRENT_USER\SOFTWARE\3XQZ6EO4AP (Trojan.FakeAlert.SA) -> No action taken.
    HKEY_CURRENT_USER\SOFTWARE\Bifrost (Bifrose.Trace) -> No action taken.
    HKEY_CURRENT_USER\SOFTWARE\NtWqIVLZEWZU (Trojan.FakeAlert) -> No action taken.
    HKEY_CURRENT_USER\SOFTWARE\QZAIB7KITK (Trojan.FakeAlert) -> No action taken.
    HKEY_CURRENT_USER\SOFTWARE\YDZ1QVAGOJ (Trojan.FakeAlert.SA) -> No action taken.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Handle (Malware.Trace) -> No action taken.
    HKEY_CURRENT_USER\Software\M5T8QL3YW3 (Trojan.FakeAlert) -> No action taken.
    HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\ (Hijack.Zones) -> No action taken.
    HKEY_LOCAL_MACHINE\SOFTWARE\Bifrost (Bifrose.Trace) -> No action taken.
    HKEY_LOCAL_MACHINE\SOFTWARE\Fun Web Products (Adware.MyWebSearch) -> No action taken.
    HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\SSHNAS (Trojan.Renos) -> No action taken.
    
    Zainfekowanych wartości rejestru:
    (Nie znaleziono zagrożeń)
    
    Zainfekowane informacje rejestru systemowego:
    HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders\Startup (Hijack.Startup) -> Bad: (C:\Documents and Settings\All Users\My applications) Good: (%USERPROFILE%\Start Menu\Programs\Startup) -> No action taken.
    
    Zainfekowanych folderów:
    c:\WINDOWS\system32\Bifrost (Backdoor.Bifrose) -> No action taken.
    
    Zainfekowanych plików:
    c:\documents and settings\Ania\dane aplikacji\thinstall\data doctor recovery fat 3.0.1.5\400000d00002i\datadoctor-hdd.exe (Trojan.Agent) -> No action taken.
    c:\documents and settings\Ania\dane aplikacji\thinstall\symbian developer certificate request\4000005200002i\AcroRd32.exe (Trojan.IRCBot) -> No action taken.
    c:\documents and settings\Ania\dane aplikacji\thinstall\symbian developer certificate request\4000009c00002i\IEXPLORE.EXE (Trojan.IRCBot) -> No action taken.
    c:\program files\ESET\minodlogin\minodlogin.exe (Riskware.KG) -> No action taken.
    c:\program files\ESET\minodlogin\minodloginuninst.exe (Riskware.KG) -> No action taken.
    d:\system volume information\_restore{db450046-04f9-4612-9bdb-5abb6d4bb401}\RP703\A0217421.exe (RiskWare.Agent.CK) -> No action taken.
    d:\TV Sat\eset nod32 smart security key finder v8 final.exe (Riskware.KG) -> No action taken.
    d:\TV Sat\Eset\tnod-1.4.0.15-setup.exe (Trojan.Agent.CK) -> No action taken.
    d:\TV Sat\tnod-1.4.0.15\tnod-1.4.0.15.exe (Trojan.Agent.CK) -> No action taken.
    d:\programy edukacyjne\core-keygen.exe (RiskWare.Tool.HCK) -> No action taken.
    c:\documents and settings\Ania\dane aplikacji\addon.dat (Malware.Trace) -> No action taken.
    c:\documents and settings\Ania\dane aplikacji\addons.dat (Bifrose.Trace) -> No action taken.
    c:\WINDOWS\system32\regsvr.exe (Backdoor.Bot) -> No action taken.
    c:\WINDOWS\system32\Bifrost\logg.dat (Backdoor.Bifrose) -> No action taken.
    Code:
    OTL logfile created on: 2011-11-03 21:10:53 - Run 1
    OTL by OldTimer - Version 3.2.31.0     Folder = D:\
    Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
    Internet Explorer (Version = 7.0.5730.11)
    Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
     
    1.25 Gb Total Physical Memory | 0.58 Gb Available Physical Memory | 46.14% Memory free
    2.98 Gb Paging File | 2.41 Gb Available in Paging File | 80.79% Paging File free
    Paging file location(s): C:\pagefile.sys 1918 1918 [binary data]
     
    %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
    Drive C: | 19.53 Gb Total Space | 3.10 Gb Free Space | 15.86% Space Free | Partition Type: NTFS
    Drive D: | 36.35 Gb Total Space | 24.86 Gb Free Space | 68.40% Space Free | Partition Type: NTFS
     
    Computer Name: ANNA | User Name: Ania | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: Current user
    Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
     
    ========== Processes (SafeList) ==========
     
    PRC - [2011-11-03 20:12:04 | 000,584,192 | ---- | M] (OldTimer Tools) -- D:\OTL.exe
    PRC - [2011-06-14 14:51:20 | 000,671,552 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe
    PRC - [2011-06-14 14:49:04 | 001,524,544 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe
    PRC - [2010-04-07 21:07:24 | 000,810,120 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe
    PRC - [2010-04-07 21:07:04 | 002,145,000 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\egui.exe
    PRC - [2010-03-09 03:52:49 | 000,015,872 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerAssistant.exe
    PRC - [2009-10-07 01:47:34 | 000,154,136 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
    PRC - [2009-02-27 06:54:22 | 000,870,672 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe
    PRC - [2009-02-27 06:22:10 | 001,368,064 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\WiFi\bin\ZCfgSvc.exe
    PRC - [2009-02-27 05:55:20 | 000,909,312 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\WiFi\bin\S24EvMon.exe
    PRC - [2009-02-27 05:40:52 | 001,202,448 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
    PRC - [2009-02-27 05:38:38 | 000,473,360 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
    PRC - [2008-09-24 14:50:46 | 000,052,888 | ---- | M] () -- C:\Program Files\VIA\RAID\vialogsv.exe
    PRC - [2008-08-19 12:26:44 | 000,077,824 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE
    PRC - [2008-05-18 08:00:33 | 000,045,056 | ---- | M] () -- C:\WINDOWS\system32\UTSCSI.EXE
    PRC - [2008-04-14 18:21:16 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
    PRC - [2008-03-20 11:04:46 | 002,127,296 | ---- | M] (Gadu-Gadu S.A.) -- C:\Program Files\Gadu-Gadu\gg.exe
    PRC - [2005-08-12 14:43:58 | 000,045,056 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
    PRC - [2005-03-18 14:35:46 | 000,098,393 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
    PRC - [2005-02-07 17:42:26 | 000,057,344 | ---- | M] ( ) -- C:\WINDOWS\system32\slserv.exe
     
     
    ========== Modules (No Company Name) ==========
     
    MOD - [2011-10-11 19:43:41 | 003,391,488 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_98b1d0fc\mscorlib.dll
    MOD - [2011-10-11 19:43:35 | 000,835,584 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system.drawing\1.0.5000.0__b03f5f7f11d50a3a_3b7a4ba1\system.drawing.dll
    MOD - [2011-10-11 19:43:24 | 002,088,960 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system.xml\1.0.5000.0__b77a5c561934e089_7eeb3359\system.xml.dll
    MOD - [2011-10-11 19:43:14 | 003,018,752 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system.windows.forms\1.0.5000.0__b77a5c561934e089_7e067fc2\system.windows.forms.dll
    MOD - [2011-10-11 19:42:52 | 001,966,080 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system\1.0.5000.0__b77a5c561934e089_4da2976b\system.dll
    MOD - [2011-10-11 19:42:41 | 001,265,664 | ---- | M] () -- c:\windows\assembly\gac\system.web\1.0.5000.0__b03f5f7f11d50a3a\system.web.dll
    MOD - [2011-10-11 19:42:41 | 001,232,896 | ---- | M] () -- c:\windows\assembly\gac\system\1.0.5000.0__b77a5c561934e089\system.dll
    MOD - [2010-03-09 03:52:49 | 000,015,872 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerAssistant.exe
    MOD - [2009-02-27 05:51:14 | 000,200,704 | ---- | M] () -- C:\Program Files\Intel\WiFi\bin\iWMSProv.dll
    MOD - [2009-02-06 09:50:50 | 000,196,608 | ---- | M] () -- C:\Program Files\VIA\RAID\drvInterface.dll
    MOD - [2009-02-05 08:24:14 | 000,581,632 | ---- | M] () -- C:\Program Files\VIA\RAID\Language.dll
    MOD - [2008-09-24 14:50:46 | 000,052,888 | ---- | M] () -- C:\Program Files\VIA\RAID\vialogsv.exe
    MOD - [2008-05-18 08:00:33 | 000,045,056 | ---- | M] () -- C:\WINDOWS\system32\UTSCSI.EXE
    MOD - [2008-05-02 05:15:37 | 000,010,240 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerCOM.dll
    MOD - [2008-05-02 05:15:35 | 000,004,608 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerHook.dll
    MOD - [2008-03-20 10:17:48 | 000,106,496 | ---- | M] () -- C:\Program Files\Gadu-Gadu\libiax2.dll
    MOD - [2008-03-20 10:17:44 | 000,061,440 | ---- | M] () -- C:\Program Files\Gadu-Gadu\libjb.dll
    MOD - [2007-10-25 12:51:16 | 000,198,656 | ---- | M] () -- C:\Program Files\Gadu-Gadu\libcurl.dll
    MOD - [2007-08-13 20:37:28 | 000,372,736 | ---- | M] () -- c:\windows\assembly\gac\system.management\1.0.5000.0__b03f5f7f11d50a3a\system.management.dll
    MOD - [2007-08-13 20:37:27 | 001,339,392 | ---- | M] () -- c:\windows\assembly\gac\system.xml\1.0.5000.0__b77a5c561934e089\system.xml.dll
    MOD - [2007-08-13 20:37:26 | 000,323,584 | ---- | M] () -- c:\windows\assembly\gac\system.runtime.remoting\1.0.5000.0__b77a5c561934e089\system.runtime.remoting.dll
    MOD - [2007-08-13 20:37:25 | 000,466,944 | ---- | M] () -- c:\windows\assembly\gac\system.drawing\1.0.5000.0__b03f5f7f11d50a3a\system.drawing.dll
    MOD - [2007-08-13 20:37:24 | 002,052,096 | ---- | M] () -- c:\windows\assembly\gac\system.windows.forms\1.0.5000.0__b77a5c561934e089\system.windows.forms.dll
    MOD - [2006-06-27 00:51:54 | 000,017,704 | ---- | M] () -- C:\Program Files\Microsoft ActiveSync\rapiproxystub.dll
    MOD - [2006-05-27 07:30:25 | 000,237,568 | ---- | M] () -- c:\windows\assembly\gac\mscorlib.resources\1.0.5000.0_pl_b77a5c561934e089\mscorlib.resources.dll
    MOD - [2006-05-27 07:30:25 | 000,180,224 | ---- | M] () -- c:\windows\assembly\gac\system.windows.forms.resources\1.0.5000.0_pl_b77a5c561934e089\system.windows.forms.resources.dll
    MOD - [2006-05-27 07:30:25 | 000,081,920 | ---- | M] () -- c:\windows\assembly\gac\system.resources\1.0.5000.0_pl_b77a5c561934e089\system.resources.dll
    MOD - [2002-05-03 15:40:32 | 000,094,274 | ---- | M] () -- C:\WINDOWS\system32\HPBHEALR.DLL
     
     
    ========== Win32 Services (SafeList) ==========
     
    SRV - File not found [Unknown | Stopped] --  -- (SSHNAS)
    SRV - File not found [Auto | Stopped] --  -- (Diskeeper)
    SRV - File not found [Auto | Stopped] --  -- (CVPND)
    SRV - File not found [Auto | Stopped] --  -- (.EsetTrialReset)
    SRV - [2011-06-14 14:49:04 | 001,524,544 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc)
    SRV - [2011-06-14 14:44:40 | 000,029,504 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
    SRV - [2011-06-08 12:02:00 | 000,633,856 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
    SRV - [2010-04-07 21:10:38 | 000,033,560 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe -- (EhttpSrv)
    SRV - [2010-04-07 21:07:24 | 000,810,120 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe -- (ekrn)
    SRV - [2009-10-07 01:47:34 | 000,154,136 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)
    SRV - [2009-02-27 06:54:22 | 000,870,672 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng) Intel(R)
    SRV - [2009-02-27 05:55:20 | 000,909,312 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\S24EvMon.exe -- (S24EventMonitor) Intel(R)
    SRV - [2009-02-27 05:38:38 | 000,473,360 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc) Intel(R)
    SRV - [2008-09-24 14:50:46 | 000,052,888 | ---- | M] () [Auto | Running] -- C:\Program Files\VIA\RAID\vialogsv.exe -- (VRAID Log Service)
    SRV - [2008-05-18 08:00:33 | 000,045,056 | ---- | M] () [Auto | Running] -- C:\WINDOWS\system32\UTSCSI.EXE -- (UTSCSI)
    SRV - [2008-05-02 01:42:06 | 000,121,360 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe -- (LBTServ)
    SRV - [2005-02-07 17:42:26 | 000,057,344 | ---- | M] ( ) [Auto | Running] -- C:\WINDOWS\System32\slserv.exe -- (SLService)
     
     
    ========== Driver Services (SafeList) ==========
     
    DRV - [2011-06-03 15:33:49 | 000,130,432 | ---- | M] (Realtek Semiconductor Corporation                           ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
    DRV - [2011-05-18 09:12:38 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
    DRV - [2011-05-18 09:12:36 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
    DRV - [2011-05-18 09:12:32 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
    DRV - [2011-05-18 09:12:28 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
    DRV - [2011-05-18 09:09:48 | 000,137,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdnsu.sys -- (nmwcdnsu)
    DRV - [2011-05-18 09:09:48 | 000,008,576 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdnsuc.sys -- (nmwcdnsuc)
    DRV - [2011-02-10 09:22:58 | 000,010,064 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)
    DRV - [2010-04-07 21:08:08 | 000,055,232 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdi.sys -- (epfwtdi)
    DRV - [2010-04-07 21:08:06 | 000,032,584 | ---- | M] (ESET) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\epfwndis.sys -- (Epfwndis)
    DRV - [2010-04-07 21:08:04 | 000,134,488 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\epfw.sys -- (epfw)
    DRV - [2010-04-07 21:07:08 | 000,114,984 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)
    DRV - [2010-04-07 21:03:44 | 000,139,192 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
    DRV - [2009-10-07 01:46:36 | 000,025,752 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVPr2Mon.sys -- (LVPr2Mon)
    DRV - [2009-06-30 10:37:16 | 000,028,552 | ---- | M] (Panda Security, S.L.) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\pavboot.sys -- (pavboot)
    DRV - [2009-06-17 09:56:18 | 000,037,392 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt)
    DRV - [2009-06-17 09:56:06 | 000,035,472 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt)
    DRV - [2009-06-17 09:55:34 | 000,010,384 | ---- | M] (Logitech, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\LBeepKE.sys -- (LBeepKE)
    DRV - [2009-06-16 17:15:52 | 005,095,936 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
    DRV - [2009-02-25 23:58:57 | 003,565,568 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
    DRV - [2008-08-26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
    DRV - [2008-08-13 16:23:56 | 000,011,904 | ---- | M] (Intel Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\s24trans.sys -- (s24trans)
    DRV - [2008-01-07 13:36:16 | 002,216,064 | R--- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\w29n51.sys -- (w29n51) Sterownik karty Intel(R)
    DRV - [2007-10-14 08:07:18 | 000,081,408 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\SSHDRV86.sys -- (SSHDRV86)
    DRV - [2007-04-20 09:40:34 | 000,100,992 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbmdm.sys -- (hwdatacard)
    DRV - [2007-02-03 19:32:58 | 000,022,560 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lvuvcflt.sys -- (FilterService)
    DRV - [2007-02-03 19:32:45 | 001,939,360 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lvuvc.sys -- (LVUVC) QuickCam for Notebooks Deluxe(UVC)
    DRV - [2007-02-03 19:32:34 | 000,041,504 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LVUSBSta.sys -- (LVUSBSta)
    DRV - [2007-02-03 19:30:57 | 001,507,232 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lvpopflt.sys -- (lvpopflt)
    DRV - [2007-01-23 15:45:00 | 000,078,864 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LMouKE.Sys -- (LMouKE)
    DRV - [2007-01-23 15:44:00 | 000,062,992 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\L8042mou.Sys -- (L8042mou)
    DRV - [2007-01-23 15:44:00 | 000,020,496 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\L8042Kbd.sys -- (L8042Kbd)
    DRV - [2006-10-31 06:00:00 | 000,007,888 | ---- | M] (C. Ghisler & Co.) [Kernel | On_Demand | Stopped] -- C:\totalcmd\CGLPTNT.SYS -- (cglptnt)
    DRV - [2006-08-17 20:19:33 | 000,010,345 | ---- | M] (Applied Networking Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
    DRV - [2006-07-08 16:30:34 | 000,642,560 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
    DRV - [2006-05-10 08:56:54 | 000,027,264 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LHidKE.Sys -- (LHidKe)
    DRV - [2006-05-10 08:56:26 | 000,036,736 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LHidUsbK.sys -- (LHidUsbK)
    DRV - [2005-06-10 18:58:16 | 000,298,571 | ---- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\CVPNDRVA.sys -- (CVPNDRVA)
    DRV - [2005-05-17 03:51:34 | 000,005,315 | ---- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\CVirtA.sys -- (CVirtA)
    DRV - [2005-02-07 17:33:50 | 000,230,448 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SLDRV\slazldrv.sys -- (Slazldrv)
    DRV - [2005-02-07 17:14:40 | 000,014,520 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\SLDRV\RecAgent.sys -- (RecAgent)
    DRV - [2005-02-07 17:12:04 | 000,229,720 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SLDRV\mtlmnt5.sys -- (Mtlmnt5)
    DRV - [2005-02-07 17:07:04 | 000,101,136 | ---- | M] ( ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SLDRV\slnthal.sys -- (SlNtHal)
    DRV - [2005-02-07 17:05:28 | 001,396,048 | ---- | M] ( ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SLDRV\mtlstrm.sys -- (Mtlstrm)
    DRV - [2005-02-07 16:55:56 | 000,013,216 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SLDRV\slwdmsup.sys -- (SlWdmSup)
    DRV - [2005-01-26 03:22:20 | 000,280,344 | ---- | M] (Zone Labs LLC) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\vsdatant.sys -- (vsdatant)
    DRV - [2004-11-03 11:07:24 | 000,146,888 | ---- | M] (Deterministic Networks, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\dne2000.sys -- (DNE)
    DRV - [2004-10-27 14:21:30 | 000,145,920 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Hdaudio.sys -- (HdAudAddService)
    DRV - [2004-07-30 09:55:48 | 000,091,830 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\P0630Vid.sys -- (P0630VID)
    DRV - [2003-02-19 14:04:38 | 000,041,344 | ---- | M] (Prolific Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ser2pl.sys -- (Ser2pl)
    DRV - [2000-11-28 20:47:16 | 000,004,256 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\UserPort.sys -- (UserPort)
     
     
    ========== Standard Registry (SafeList) ==========
     
     
    ========== Internet Explorer ==========
     
     
    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Yahoo! Search
    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.onet.pl/
    IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
    IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" =  127.0.0.1 127.0.0.1
     
    ========== FireFox ==========
     
    FF - prefs.js..browser.search.defaultengine: "Ask.com"
    FF - prefs.js..browser.search.defaultenginename: "Ask.com"
    FF - prefs.js..browser.search.defaultthis.engineName: "Softonic Deutsch Customized Web Search"
    FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT1351351&SearchSource=3&q={searchTerms}"
    FF - prefs.js..browser.search.order.1: "Ask.com"
    FF - prefs.js..browser.search.order.2: "Yahoo"
    FF - prefs.js..browser.search.param.yahoo-fr: "megaup"
    FF - prefs.js..browser.search.param.yahoo-fr-cjkt: "megaup"
    FF - prefs.js..browser.search.selectedEngine: "Google"
    FF - prefs.js..browser.search.useDBForOrder: true
    FF - prefs.js..browser.startup.homepage: "http://www.google.pl/"
    FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
    FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
    FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
    FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
    FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
    FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
    FF - prefs.js..extensions.enabledItems: toolbar@ask.com:3.12.2.100006
    FF - prefs.js..extensions.enabledItems: {1FD91A9C-410C-4090-BBCC-55D3450EF433}:1.0
    FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26
     
     
    FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
    FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Picasa2\npPicasa3.dll (Google, Inc.)
    FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
    FF - HKLM\Software\MozillaPlugins\@macromedia.com/FlashPlayer8: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@pandasecurity.com/activescan: C:\Program Files\Panda Security\ActiveScan 2.0\npwrapper.dll (Panda Security, S.L.)
    FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll File not found
    FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll File not found
    FF - HKCU\Software\MozillaPlugins\@macromedia.com/FlashPlayer8: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
     
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\bkmrksync@nokia.com: C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ [2011-04-12 20:55:53 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-08-29 20:22:42 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-10-26 13:19:19 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2011-02-04 17:44:15 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\{CCB7D94B-CA92-4E3F-B79D-ADE0F07ADC74}: C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Thunderbird Connector\ThunderbirdExtension\ [2011-09-24 19:46:59 | 000,000,000 | ---D | M]
     
    [2008-07-10 11:35:43 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Extensions
    [2011-09-30 15:31:17 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Firefox\Profiles\7v77w59g.default\extensions
    [2010-08-26 10:28:43 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Firefox\Profiles\7v77w59g.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
    [2011-09-30 15:31:17 | 000,000,000 | ---D | M] (Softonic Deutsch Community Toolbar) -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Firefox\Profiles\7v77w59g.default\extensions\{8dbb6d8e-e4a6-4e3b-9753-af78b226441c}
    [2011-06-23 14:40:09 | 000,000,000 | ---D | M] (Searchqu Toolbar) -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Firefox\Profiles\7v77w59g.default\extensions\{99079a25-328f-4bd4-be04-00955acaa0a7}
    [2008-04-22 20:02:56 | 000,000,000 | ---D | M] (Megaupload Toolbar) -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Firefox\Profiles\7v77w59g.default\extensions\{991A772A-BA13-4c1d-A9EF-F897F31DEC7D}
    [2011-09-23 19:17:40 | 000,002,569 | ---- | M] () -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Firefox\Profiles\7v77w59g.default\searchplugins\askcom.xml
    [2009-10-06 16:03:36 | 000,000,894 | ---- | M] () -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Firefox\Profiles\7v77w59g.default\searchplugins\conduit.xml
    [2008-02-16 21:48:21 | 000,001,832 | ---- | M] () -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Firefox\Profiles\7v77w59g.default\searchplugins\LiveSearch.xml
    [2011-02-21 19:46:55 | 000,002,029 | ---- | M] () -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Firefox\Profiles\7v77w59g.default\searchplugins\MyStart Search.xml
    [2011-06-23 12:58:06 | 000,002,501 | ---- | M] () -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Firefox\Profiles\7v77w59g.default\searchplugins\SearchResults.xml
    [2011-10-26 13:49:46 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
    [2010-05-06 15:23:31 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
    [2010-08-20 11:42:49 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
    [2010-11-06 16:13:07 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
    [2011-01-06 16:12:28 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
    [2011-03-05 20:34:22 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
    [2011-07-05 18:57:42 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
    [2011-10-26 13:49:46 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}
    [2008-12-01 20:17:18 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
    [2011-08-12 07:32:21 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
    [2011-10-03 04:06:04 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
    [2011-08-12 04:51:25 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
    [2011-08-12 04:51:25 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
    [2011-08-12 04:51:25 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
    [2011-08-12 04:51:25 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
    [2011-06-23 12:58:06 | 000,002,501 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\SearchResults.xml
    [2011-08-12 04:51:25 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
    [2011-08-12 04:51:25 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml
     
    ========== Chrome  ==========
     
    CHR - default_search_provider: Yahoo! Search ()
    CHR - default_search_provider: search_url = http://search.yahoo.com/search?ei=ISO-8859-1&fr=megaup&q={searchTerms}
    CHR - default_search_provider: suggest_url = 
     
    O1 HOSTS File: ([2011-10-31 13:08:26 | 000,000,039 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
    O3 - HKLM\..\Toolbar: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found.
    O4 - HKLM..\Run: [AlcWzrd] C:\WINDOWS\ALCWZRD.EXE (RealTek Semicoductor Corp.)
    O4 - HKLM..\Run: [ATICCC] C:\Program Files\ATI Technologies\ATI.ACE\cli.exe (ATI Technologies Inc.)
    O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
    O4 - HKLM..\Run: [IntelWireless] C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe (Intel(R) Corporation)
    O4 - HKLM..\Run: [IntelZeroConfig] C:\Program Files\Intel\WiFi\bin\ZCfgSvc.exe (Intel(R) Corporation)
    O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found
    O4 - HKLM..\Run: [Malwarebytes' Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
    O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
    O4 - HKLM..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe (Synaptics, Inc.)
    O4 - HKLM..\Run: [UnlockerAssistant] C:\Program Files\Unlocker\UnlockerAssistant.exe ()
    O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
    O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
    O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
    O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
    O8 - Extra context menu item: &Download All using 4shared Desktop - Reg Error: Value error. File not found
    O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
    O8 - Extra context menu item: Funkcja Google Sidewiki - Reg Error: Value error. File not found
    O9 - Extra Button: iOpus iMacros - {0483894E-2422-45E0-8384-021AFF1AF3CD} - Reg Error: Key error. File not found
    O9 - Extra 'Tools' menuitem : iMacros Web Automation - {0483894E-2422-45E0-8384-021AFF1AF3CD} - Reg Error: Value error. File not found
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool)
    O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.)
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
    O16 - DPF: {8FEFF364-6A5F-4966-A917-A3AC28411659} http://download.sopcast.cn/download/SOPCORE.CAB (Reg Error: Key error.)
    O16 - DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} http://acs.pandasoftware.com/activescan/cabs/as2stubie.cab (ActiveScan 2.0 Installer Class)
    O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_09-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_10-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_11-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_01-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_04-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 194.204.159.1 194.204.152.34 192.168.0.1
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{572C0FFB-7714-42A5-8D70-DF6C4C1BF87B}: DhcpNameServer = 194.204.159.1 194.204.152.34 192.168.0.1
    O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (Logitech Inc.)
    O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
    O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
    O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
    O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
    O20 - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logitech\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\Logitech\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
    O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
    O24 - Desktop WallPaper: C:\Documents and Settings\Ania\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
    O24 - Desktop BackupWallPaper: C:\Documents and Settings\Ania\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
    O32 - HKLM CDRom: AutoRun - 1
    O32 - AutoRun File - [2006-05-27 07:27:16 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
    O33 - MountPoints2\{8932dff8-b943-11e0-90ba-0012f04f07e3}\Shell - "" = AutoRun
    O33 - MountPoints2\{afdad96c-a18e-11df-8dbd-0012f04f07e3}\Shell - "" = AutoRun
    O33 - MountPoints2\{d1d392ba-9cb7-11df-8d87-0012f04f07e3}\Shell - "" = AutoRun
    O33 - MountPoints2\{ec768c34-b940-11e0-90b9-0012f04f07e3}\Shell - "" = AutoRun
    O34 - HKLM BootExecute: (autocheck autochk *)
    O34 - HKLM BootExecute: (autocheck OODBS)
    O35 - HKLM\..comfile [open] -- "%1" %*
    O35 - HKLM\..exefile [open] -- "%1" %*
    O37 - HKLM\...com [@ = ComFile] -- "%1" %*
    O37 - HKLM\...exe [@ = exefile] -- "%1" %*
     
    ========== Files/Folders - Created Within 30 Days ==========
     
    [2011-11-03 19:53:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ania\Dane aplikacji\Malwarebytes
    [2011-11-03 19:53:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Malwarebytes' Anti-Malware
    [2011-11-03 19:53:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes
    [2011-11-03 19:53:05 | 000,022,216 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
    [2011-11-03 19:53:05 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
    [2011-11-02 20:32:10 | 000,028,552 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\pavboot.sys
    [2011-11-02 20:32:03 | 000,000,000 | ---D | C] -- C:\Program Files\Panda Security
    [2011-10-31 12:51:59 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
    [2011-10-26 19:41:23 | 000,014,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll
    [2011-10-26 13:20:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Microsoft Office
    [2011-10-26 13:19:47 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
    [2011-10-26 07:32:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW
    [2011-10-25 20:43:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ania\Dane aplikacji\ElevatedDiagnostics
    [2011-10-25 20:42:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\windowspowershell
    [2011-10-25 13:10:02 | 000,000,000 | ---D | C] -- C:\rootsetup
    [2011-10-22 22:17:12 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
    [2011-10-22 22:17:12 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
    [2011-10-22 22:17:12 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
    [2011-10-13 20:10:38 | 000,000,000 | ---D | C] -- C:\MyS2GApp
    [2011-10-11 20:40:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Adobe
    [2011-10-11 19:39:29 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
    [2006-05-27 07:44:50 | 000,014,976 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\winddx.sys
    [2006-05-27 07:41:19 | 000,057,344 | ---- | C] ( ) -- C:\WINDOWS\System32\slserv.exe
    [5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
     
    ========== Files - Modified Within 30 Days ==========
     
    [2011-11-03 20:57:33 | 000,054,016 | ---- | M] () -- C:\WINDOWS\System32\drivers\gcbsa.sys
    [2011-11-03 20:57:01 | 000,001,032 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
    [2011-11-03 19:57:00 | 000,001,028 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
    [2011-11-03 19:53:10 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk
    [2011-11-03 18:24:54 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
    [2011-11-03 18:24:13 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
    [2011-10-31 12:23:01 | 000,000,480 | ---- | M] () -- C:\Documents and Settings\Ania\SDIGMICROSOFTINTERNETEXPLORER.CFG
    [2011-10-28 14:49:55 | 000,003,396 | ---- | M] () -- C:\WINDOWS\wincmd.ini
    [2011-10-28 14:49:39 | 000,000,196 | ---- | M] () -- C:\WINDOWS\wcx_ftp.ini
    [2011-10-28 09:53:00 | 000,000,527 | ---- | M] () -- C:\Documents and Settings\Ania\SDIGMICROSOFTINTERNETEXPLORER.CFG.err
    [2011-10-26 19:41:03 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
    [2011-10-26 19:41:03 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
    [2011-10-26 17:41:36 | 000,000,421 | ---- | M] () -- C:\WINDOWS\ODBC.INI
    [2011-10-26 13:38:06 | 000,014,242 | ---- | M] () -- C:\WINDOWS\System32\cleartmp.cmd
    [2011-10-26 13:25:43 | 000,160,344 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
    [2011-10-26 10:11:58 | 000,008,192 | ---- | M] () -- C:\Documents and Settings\Ania\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2011-10-25 19:58:25 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
    [2011-10-25 16:40:37 | 000,077,428 | ---- | M] () -- C:\Documents and Settings\Ania\Moje dokumenty\polityki.zip
    [2011-10-25 16:33:36 | 000,053,268 | ---- | M] () -- C:\Documents and Settings\Ania\Dane aplikacji\chrtmp
    [2011-10-19 14:56:00 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
    [2011-10-11 19:56:10 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
    [2011-10-11 19:46:16 | 001,002,988 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
    [2011-10-11 19:46:16 | 000,859,156 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
    [2011-10-11 19:46:16 | 000,347,170 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
    [2011-10-11 19:46:16 | 000,274,592 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
    [5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
     
    ========== Files Created - No Company Name ==========
     
    [2011-11-03 20:57:33 | 000,054,016 | ---- | C] () -- C:\WINDOWS\System32\drivers\gcbsa.sys
    [2011-11-03 19:53:10 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk
    [2011-10-28 09:52:50 | 000,000,527 | ---- | C] () -- C:\Documents and Settings\Ania\SDIGMICROSOFTINTERNETEXPLORER.CFG.err
    [2011-10-27 11:21:34 | 000,002,508 | ---- | C] () -- C:\Documents and Settings\NetworkService\Dane aplikacji\$_hpcst$.hpc
    [2011-10-26 13:24:36 | 000,014,242 | ---- | C] () -- C:\WINDOWS\System32\cleartmp.cmd
    [2011-10-11 19:41:45 | 000,001,393 | ---- | C] () -- C:\WINDOWS\imsins.BAK
    [2011-08-05 15:44:05 | 000,008,192 | ---- | C] () -- C:\Documents and Settings\Ania\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2011-06-23 13:24:32 | 000,000,006 | ---- | C] () -- C:\Documents and Settings\Ania\Dane aplikacji\completescan
    [2011-06-23 13:19:44 | 000,000,010 | ---- | C] () -- C:\Documents and Settings\Ania\Dane aplikacji\install
    [2011-06-23 13:16:58 | 000,001,876 | ---- | C] () -- C:\Documents and Settings\Ania\Dane aplikacji\1.gif
    [2011-06-23 13:16:57 | 000,000,012 | ---- | C] () -- C:\Documents and Settings\Ania\Dane aplikacji\ct_start
    [2011-06-06 20:10:40 | 000,075,776 | ---- | C] () -- C:\WINDOWS\System32\kbdczw.dll
    [2011-06-06 18:50:47 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\Ania\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
    [2011-06-06 17:14:29 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
    [2011-06-06 17:07:40 | 000,593,920 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe
    [2011-06-03 15:33:49 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\RtNicProp32.dll
    [2011-05-30 20:18:28 | 000,053,268 | ---- | C] () -- C:\Documents and Settings\Ania\Dane aplikacji\chrtmp
    [2011-05-13 20:15:07 | 000,426,236 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
    [2011-02-13 11:12:42 | 000,790,528 | ---- | C] () -- C:\WINDOWS\System32\FREEIMAGEX.DLL
    [2010-09-22 16:42:54 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
    [2010-08-03 16:18:21 | 000,000,022 | ---- | C] () -- C:\WINDOWS\System32\winStudio.bin
    [2010-08-02 13:49:38 | 000,000,155 | ---- | C] () -- C:\WINDOWS\PhotoGraffiti.ini
    [2010-02-21 10:33:31 | 000,000,600 | ---- | C] () -- C:\Documents and Settings\Ania\Dane aplikacji\winscp.rnd
    [2009-12-27 23:23:35 | 000,000,237 | ---- | C] () -- C:\WINDOWS\System32\regsvr-alo.ini
    [2009-11-29 12:34:18 | 000,000,843 | ---- | C] () -- C:\WINDOWS\ARPR.INI
    [2009-11-27 14:02:16 | 000,012,747 | ---- | C] () -- C:\WINDOWS\unins000.dat
    [2009-10-15 17:14:41 | 000,000,062 | ---- | C] () -- C:\WINDOWS\wininit.ini
    [2009-10-07 01:46:36 | 000,025,752 | ---- | C] () -- C:\WINDOWS\System32\drivers\LVPr2Mon.sys
    [2009-10-07 01:23:08 | 000,013,584 | ---- | C] () -- C:\WINDOWS\System32\drivers\iKeyLFT2.dll
    [2009-10-03 19:13:42 | 000,000,107 | ---- | C] () -- C:\WINDOWS\IfoEdit.INI
    [2009-07-10 13:19:18 | 000,155,136 | ---- | C] () -- C:\WINDOWS\PEV.exe
    [2009-07-10 12:43:12 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
    [2009-07-10 12:43:12 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
    [2009-07-10 12:43:12 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
    [2009-07-09 20:26:13 | 000,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat
    [2009-02-25 21:58:44 | 003,107,788 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat
    [2009-02-25 21:58:44 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat
    [2009-02-11 10:09:45 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.INI
    [2009-01-25 12:38:24 | 000,000,021 | ---- | C] () -- C:\WINDOWS\progman.ini
    [2009-01-25 12:38:23 | 000,000,266 | ---- | C] () -- C:\WINDOWS\HAFASWIN.INI
    [2009-01-23 10:34:01 | 000,000,144 | ---- | C] () -- C:\WINDOWS\ZUS_PIT11.INI
    [2008-08-26 19:15:56 | 000,004,256 | ---- | C] () -- C:\WINDOWS\System32\drivers\UserPort.sys
    [2008-07-31 19:57:00 | 000,065,552 | ---- | C] () -- C:\WINDOWS\System32\Ke386.DLL
    [2008-07-31 19:35:27 | 000,065,552 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\Desktop.lnk
    [2008-07-16 17:42:17 | 000,090,112 | ---- | C] () -- C:\WINDOWS\RSetupCE.exe
    [2008-05-18 08:39:02 | 000,000,101 | ---- | C] () -- C:\WINDOWS\winzipme.ini
    [2008-05-18 08:00:33 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\UTSCSI.EXE
    [2008-03-29 21:00:25 | 000,162,304 | ---- | C] () -- C:\WINDOWS\System32\ztvunrar36.dll
    [2008-03-29 21:00:25 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\UNRAR3.dll
    [2008-03-29 21:00:25 | 000,077,312 | ---- | C] () -- C:\WINDOWS\System32\ztvunace26.dll
    [2008-03-29 21:00:25 | 000,075,264 | ---- | C] () -- C:\WINDOWS\System32\unacev2.dll
    [2008-03-07 21:04:31 | 000,050,127 | R--- | C] () -- C:\WINDOWS\System32\lvcoinst.ini
    [2008-03-04 09:03:22 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\ezsid.dat
    [2008-02-26 16:00:31 | 000,008,544 | ---- | C] () -- C:\WINDOWS\UCORESYS.SYS
    [2008-02-16 19:03:57 | 000,000,000 | ---- | C] () -- C:\WINDOWS\oodcnt.INI
    [2007-11-25 16:36:08 | 000,164,352 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
    [2007-11-25 16:35:55 | 001,559,040 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
    [2007-11-25 16:35:55 | 000,282,624 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
    [2007-11-25 16:35:54 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
    [2007-11-25 16:35:49 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
    [2007-10-14 08:07:17 | 000,081,408 | ---- | C] () -- C:\WINDOWS\System32\drivers\SSHDRV86.sys
    [2007-09-11 18:15:58 | 000,000,950 | ---- | C] () -- C:\WINDOWS\UAMedytor.ini
    [2007-08-22 21:27:36 | 000,002,508 | ---- | C] () -- C:\Documents and Settings\LocalService\Dane aplikacji\$_hpcst$.hpc
    [2007-05-03 19:51:04 | 000,000,196 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
    [2007-05-03 19:46:06 | 000,003,396 | ---- | C] () -- C:\WINDOWS\wincmd.ini
    [2007-02-24 15:52:07 | 000,022,528 | ---- | C] () -- C:\WINDOWS\System32\wsc32.dll
    [2006-10-31 03:36:48 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\snipit.dll
    [2006-08-22 18:58:59 | 000,000,020 | ---- | C] () -- C:\WINDOWS\naglos.INI
    [2006-08-16 21:11:04 | 000,002,508 | ---- | C] () -- C:\Documents and Settings\Ania\Dane aplikacji\$_hpcst$.hpc
    [2006-08-05 20:47:05 | 000,000,047 | ---- | C] () -- C:\WINDOWS\System32\imon1.dat
    [2006-07-13 09:20:01 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
    [2006-07-08 16:30:34 | 000,096,384 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd8365.sys
    [2006-07-02 15:18:22 | 000,000,000 | ---- | C] () -- C:\WINDOWS\epcmonitor.INI
    [2006-07-02 15:17:56 | 000,143,360 | ---- | C] () -- C:\WINDOWS\System32\XNMHB425.DLL
    [2006-07-02 15:17:56 | 000,092,672 | ---- | C] () -- C:\WINDOWS\System32\XNMHB458.DLL
    [2006-07-02 15:17:56 | 000,066,560 | ---- | C] () -- C:\WINDOWS\System32\XNMHN425.DLL
    [2006-07-02 15:17:56 | 000,064,512 | ---- | C] () -- C:\WINDOWS\System32\XNMTE458.DLL
    [2006-07-02 15:17:56 | 000,056,320 | ---- | C] () -- C:\WINDOWS\System32\XNMTE425.DLL
    [2006-07-02 15:17:56 | 000,025,600 | ---- | C] () -- C:\WINDOWS\System32\XNMHN458.DLL
    [2006-07-02 15:17:56 | 000,006,848 | ---- | C] () -- C:\WINDOWS\System32\drivers\DS1410D.SYS
    [2006-07-02 15:17:55 | 000,360,448 | ---- | C] () -- C:\WINDOWS\System32\XNMBA458.DLL
    [2006-07-02 15:17:55 | 000,303,616 | ---- | C] () -- C:\WINDOWS\System32\XNMBA425.DLL
    [2006-07-02 15:17:54 | 000,006,848 | ---- | C] () -- C:\WINDOWS\System32\DS1410D.SYS
    [2006-06-28 19:10:52 | 000,000,711 | ---- | C] () -- C:\WINDOWS\NedroFun.ini
    [2006-06-26 20:17:35 | 000,018,752 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
    [2006-05-27 09:19:40 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
    [2006-05-27 09:18:27 | 000,160,344 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
    [2006-05-27 08:28:23 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI
    [2006-05-27 08:25:18 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
    [2006-05-27 08:24:55 | 000,002,951 | ---- | C] () -- C:\WINDOWS\mozver.dat
    [2006-05-27 07:44:50 | 000,540,672 | ---- | C] () -- C:\WINDOWS\System32\SLLights.dll
    [2006-05-27 07:44:50 | 000,380,928 | ---- | C] () -- C:\WINDOWS\System32\slmh.exe
    [2006-05-27 07:44:50 | 000,221,184 | ---- | C] () -- C:\WINDOWS\System32\amr_cpl.dll
    [2006-05-27 07:44:50 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\minirec.exe
    [2006-05-27 07:44:50 | 000,151,552 | ---- | C] () -- C:\WINDOWS\System32\SLMOHServ.dll
    [2006-05-27 07:44:50 | 000,077,824 | ---- | C] () -- C:\WINDOWS\SmCfg.exe
    [2006-05-27 07:44:08 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
    [2006-05-27 07:41:21 | 000,182,995 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
    [2006-05-27 07:41:19 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\slextspk.dll
    [2006-05-27 07:41:19 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\SLGen.dll
    [2006-05-27 07:41:19 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\slcoinst.dll
    [2006-05-27 07:41:19 | 000,036,864 | ---- | C] () -- C:\WINDOWS\slrundll.exe
    [2006-05-27 07:34:23 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
    [2006-05-27 07:31:18 | 000,000,996 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
    [2006-05-27 07:24:05 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
    [2005-06-10 18:59:54 | 000,177,152 | ---- | C] () -- C:\WINDOWS\System32\CSGina.dll
    [2005-06-10 18:53:52 | 000,163,840 | ---- | C] () -- C:\WINDOWS\System32\vpnapi.dll
    [2004-08-04 13:00:00 | 001,002,988 | ---- | C] () -- C:\WINDOWS\System32\perfh015.dat
    [2004-08-04 13:00:00 | 000,859,156 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
    [2004-08-04 13:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
    [2004-08-04 13:00:00 | 000,347,170 | ---- | C] () -- C:\WINDOWS\System32\perfc015.dat
    [2004-08-04 13:00:00 | 000,313,828 | ---- | C] () -- C:\WINDOWS\System32\perfi015.dat
    [2004-08-04 13:00:00 | 000,274,592 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
    [2004-08-04 13:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
    [2004-08-04 13:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
    [2004-08-04 13:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
    [2004-08-04 13:00:00 | 000,034,990 | ---- | C] () -- C:\WINDOWS\System32\perfd015.dat
    [2004-08-04 13:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
    [2004-08-04 13:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
    [2004-08-04 13:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
    [2004-08-04 13:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
    [2004-03-15 12:02:38 | 000,000,412 | ---- | C] () -- C:\WINDOWS\System32\HP3AIOZ6.dat
    [2004-03-03 05:06:00 | 000,221,184 | ---- | C] () -- C:\WINDOWS\System32\HP3AIOZ6.dll
    [2003-07-30 10:48:28 | 000,004,711 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
    [2003-07-30 09:49:22 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
    [2003-04-08 10:40:22 | 000,005,679 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
    [2002-05-03 15:40:32 | 000,094,274 | ---- | C] () -- C:\WINDOWS\System32\HPBHEALR.DLL
    [2001-08-29 18:57:40 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\addurl41.DLL
    [2001-07-10 13:43:16 | 000,018,432 | ---- | C] () -- C:\WINDOWS\System32\winwatch.DLL
     
    ========== LOP Check ==========
     
    [2010-03-21 11:56:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Blumentals
    [2011-06-23 14:38:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\boost_interprocess
    [2007-04-11 19:47:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Downloaded Installations
    [2011-06-06 20:00:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Easy Driver Pro
    [2011-02-04 17:44:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET
    [2011-06-03 21:59:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Fighters
    [2008-11-08 18:17:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\GARMIN
    [2010-08-25 16:25:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Icon Constructor 3
    [2011-02-21 19:48:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\IM
    [2011-02-21 19:47:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\IncrediMail
    [2011-09-24 20:40:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations
    [2008-02-16 19:48:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\iolo
    [2007-04-11 20:13:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Nokia
    [2010-08-04 11:40:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\NokiaInstallerCache
    [2008-01-06 10:34:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite
    [2011-08-19 19:23:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Registry First Aid
    [2011-10-30 14:47:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\RFA_Backups
    [2009-11-10 22:20:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
    [2011-06-05 19:10:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TuneUp Software
    [2011-08-02 06:25:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\YoWindow
    [2011-06-06 16:03:45 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
    [2010-03-01 20:29:18 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
    [2008-11-21 17:40:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\anpo.republika.pl
    [2006-07-01 21:38:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\AutoUpdate
    [2009-11-13 20:07:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Blender Foundation
    [2010-07-31 16:49:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\blueconnect
    [2007-03-24 16:22:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Datalayer
    [2011-02-04 19:31:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Desktopicon
    [2011-08-22 20:04:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\DMCache
    [2010-11-08 21:54:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\dreamload
    [2011-10-25 20:43:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\ElevatedDiagnostics
    [2011-02-04 17:45:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\ESET
    [2011-05-30 20:26:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Fighters
    [2009-11-06 09:28:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\FileZilla
    [2008-11-21 17:39:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\fltk.org
    [2010-02-20 19:09:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Gadu-Gadu
    [2008-11-08 18:41:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\GARMIN
    [2007-10-12 17:17:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\GeoVid
    [2011-08-22 20:06:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\IDM
    [2007-06-14 09:11:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Leadertech
    [2008-10-28 12:40:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Leica Virtual Explorer
    [2011-05-12 16:39:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Mobile Atlas Creator
    [2010-08-11 07:46:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\mojosoft
    [2010-07-27 19:00:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\nod32 updater
    [2010-08-08 10:15:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Nokia
    [2011-02-17 20:44:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Notepad++
    [2009-09-24 20:08:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\ooVoo Details
    [2011-05-13 18:03:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\OpenCandy
    [2011-04-11 21:00:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\PC Suite
    [2008-11-26 20:36:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\RapidGet
    [2011-08-21 16:03:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\SatChannelListEditor
    [2011-06-23 14:40:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\searchqutoolbar
    [2008-03-29 21:00:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Simply Super Software
    [2011-05-21 21:13:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Softplicity
    [2011-09-09 15:54:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\TeamViewer
    [2009-08-03 21:41:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Thinstall
    [2011-06-18 19:08:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\TuneUp Software
    [2011-06-04 10:53:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Uniblue
    [2009-01-25 10:44:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\VitySoft
    [2011-05-16 09:46:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\YoWindow
     
    ========== Purity Check ==========
     
     
     
    ========== Alternate Data Streams ==========
     
    @Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:CB0AACC9
    @Alternate Data Stream - 117 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:C8B8CEBD
    
    < End of report >

  5. #5
    Administrator Team-Mitglied Avatar von Petra
    Registriert seit
    03.05.2007
    Ort
    Nähe Düsseldorf
    Beiträge
    41.164

    AW: Windows XP

    Hallo Tedi58,

    hast Du die Funde von Malwarebytes' nicht entfernen lassen? Ich frage, weil ich lese: No action taken.

    Falls Du die Funde von Malwarebytes noch nicht hast entfernen lassen, hole das bitte noch nach und gebe mir dann Rückmeldung.


    ===== Punkt 1 =====

    Weiterer Support fraglich

    Code:
    d:\programy edukacyjne\core-keygen.exe (RiskWare.Tool.HCK)

    Eine weitere Hilfestellung ist aufgrund unserer Foren-Richtlinien fraglich. Die Nutzung von Cracks, Keygens und/oder Patchs, die das Ziel haben, Bezahlsoftware ohne Bezahlung nutzbar zu machen, ist illegal und wir haben uns darauf geeinigt, dass wir uns nicht der Beihilfe schuldig machen werden. Dieses Forum unterliegt deutschen Gesetzen und die sind diesbezüglich sehr streng.

    Dass Cracks und Keygens im Wesentlichen dazu dienen, um auf den Computern Malware und Backdoors unterzubringen, ist kein Geheimnis und muss jedem klar sein.

    Du hast jetzt zwei Möglichkeiten: Entweder Du entfernst konsequent und rückstandlos jede Software, die auf diese Weise genutzt wird und verzichtest in Zukunft darauf, oder ich stelle den Support an dieser Stelle komplett ein.
    [°¿°] Ciao, Petra

    Neu hier? Bitte abarbeiten! | Malware-Bereinigung | Forenregeln
    Daten sichern! | Schulung | Kein Support per PN oder Mail! | Danke

  6. #6
    Einsteiger
    Registriert seit
    01.11.2011
    Beiträge
    10

    AW: Windows XP

    Hallo Petra, vielen Dank für eure Hilfe, ich weiß nicht, miemieckiego und schreiben mit einem Übersetzer. Es scheint, dass das System sauber ist, aber ich habe bereits erwähnten, kann ich nicht öffnen Word-Dateien, und ich habe eine Nachricht exel-Datei beschädigt oder geändert Format. Ich neu installiert Office 2003, aber ohne Erfolg.
    Ich lege eine Datei Malwarebytes 'Anti-Malware 1.51.2.1300, wenn ich die Festplatte formatieren zu tun haben

    Code:
    Malwarebytes' Anti-Malware 1.51.2.1300
    www.malwarebytes.org
    
    Wersja bazy: 8083
    
    Windows 5.1.2600 Dodatek Service Pack 3
    Internet Explorer 7.0.5730.11
    
    2011-11-04 17:47:17
    mbam-log-2011-11-04 (17-47-05).txt
    
    Typ skanowania: Pełne skanowanie (C:\|D:\|)
    Przeskanowano obiektów: 270426
    Upłynęło: 53 minut(y), 4 sekund(y)
    
    Zainfekowanych procesów w pamięci: 0
    Zainfekowanych modułów w pamięci: 0
    Zainfekowanych kluczy rejestru: 0
    Zainfekowanych wartości rejestru: 0
    Zainfekowane informacje rejestru systemowego: 0
    Zainfekowanych folderów: 0
    
    Zainfekowanych procesów w pamięci:
    (Nie znaleziono zagrożeń)
    
    Zainfekowanych modułów w pamięci:
    (Nie znaleziono zagrożeń)
    
    Zainfekowanych kluczy rejestru:
    (Nie znaleziono zagrożeń)
    
    Zainfekowanych wartości rejestru:
    (Nie znaleziono zagrożeń)
    
    Zainfekowane informacje rejestru systemowego:
    (Nie znaleziono zagrożeń)
    
    Zainfekowanych folderów:
    (Nie znaleziono zagrożeń)

  7. #7
    Administrator Team-Mitglied Avatar von Petra
    Registriert seit
    03.05.2007
    Ort
    Nähe Düsseldorf
    Beiträge
    41.164

    AW: Windows XP

    Perhaps for you it is more simple in English?


    ===== Punkt 1 =====

    SReng2 - System Repair Engineer 2.x

    Repair File Associations

    Download sreng2.zip from Smallfrogs (KZTechs.com). and save the .zip file to your desktop.
    1. Extract SREngLdr.EXE to your Desktop...then double-click to run it
    2. Select System Repair from the left pane.
    3. Click on the File Association...tab.
    4. Check each entry that has an Error status...then click the Repair button.
    5. Refer to this image for an example:
    6. In the above example (only) ... it would be .TXT, .REG, .SCR and .INI file associations that need repairing.
      Your case may be different...
    7. Once finished...Close, exit SREng.





    ===== Punkt 2 =====

    1. Please download System Repair Engine by smallfrogs (SREng 2.7) from kztechs.com to your desktop.
    2. Right click on it and select Extract All....
    3. Click Next on seeing the Welcome to the Compressed (zipped) Folders Extraction Wizard.
    4. Click on the Browse button. Click on Desktop. Then click OK.
    5. Check (tick) the Show extracted files box.
    6. Double click on SREngLdr.EXE to run it.
    7. Select Smart Scan on the left.
    8. Ensure that the Verify digital signatures of process modules box is checked.
    9. Click on Scan.
    10. When done, a new window will open. Click on Save Reports to save it to a convenient location.
    11. Close SREng.
    12. Please attach this log in your next reply.



    [°¿°] Ciao, Petra

    Neu hier? Bitte abarbeiten! | Malware-Bereinigung | Forenregeln
    Daten sichern! | Schulung | Kein Support per PN oder Mail! | Danke

  8. #8
    Einsteiger
    Registriert seit
    01.11.2011
    Beiträge
    10

    AW: Windows XP

    Helo Petr einen Bericht, wie man wollte, vielen Dank für deine Hilfe, bis ich neugierig, ob etwas repariert habe. Irgendwie schaffen wir die Übersetzung, so dass sie sein werden.
    Ihre
    Tedi58


    Code:
    2011-11-05,16:25:08
    
    System Repair Engineer 2.8.4.1331
    Smallfrogs (http://www.KZTechs.com)
    
    Windows XP Home Edition Dodatek Service Pack 3 (Build 2600) - Administrative User - Completed Functions Allowed
    
    Follow item(s) have been selected:
        All Boot Items (Including Registry, Startup Folders, Services and so on)
        Browser Add-ons
        Running Processes (Including process model information)
        File Associations
        Winsock Provider
        Autorun.Inf
        HOSTS File
        Process Privileges Scan
        Scheduled Tasks
        Windows Security Update Check
        API HOOK
        Hidden Process
    
    
    Boot Items
    Registry
    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
        <ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>  [(Verified)Microsoft Windows Component Publisher]
        <H/PC Connection Agent><"C:\Program Files\Microsoft ActiveSync\wcescomm.exe">  [(Verified)Microsoft Corporation]
    [HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
        <load><>  [N/A]
        <run><>  [N/A]
    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
        <SynTPLpr><C:\Program Files\Synaptics\SynTP\SynTPLpr.exe>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
        <SynTPEnh><C:\Program Files\Synaptics\SynTP\SynTPEnh.exe>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
        <UnlockerAssistant><"C:\Program Files\Unlocker\UnlockerAssistant.exe" -H>  []
        <egui><"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice>  [(Verified)ESET, spol. s r.o.]
        <SoundMan><SOUNDMAN.EXE>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
        <AlcWzrd><ALCWZRD.EXE>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
        <IntelZeroConfig><"C:\Program Files\Intel\WiFi\bin\ZCfgSvc.exe">  [Intel(R) Corporation]
        <IntelWireless><"C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel Wireless Tray>  [(Verified)Intel Corporation - Mobile Wireless Group]
        <ATICCC><"C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime>  [File is missing]
        <KernelFaultCheck><%systemroot%\system32\dumprep 0 -k>  [File is missing]
        <SunJavaUpdateSched><"C:\Program Files\Common Files\Java\Java Update\jusched.exe">  [(Verified)Sun Microsystems, Inc.]
        <Malwarebytes' Anti-Malware><"C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray>  [(Verified)Malwarebytes Corporation]
    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
        <shell><Explorer.exe>  [(Verified)Microsoft Windows Component Publisher]
        <Userinit><C:\WINDOWS\system32\userinit.exe,>  [(Verified)Microsoft Windows Component Publisher]
    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
        <AppInit_DLLs><>  [N/A]
    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
        <UIHost><logonui.exe>  [(Verified)Microsoft Windows Component Publisher]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
        <{AEB6717E-7E19-11d0-97EE-00C04FD91972}><shell32.dll>  [(Verified)Microsoft Windows Component Publisher]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
        <PostBootReminder><%SystemRoot%\system32\SHELL32.dll>  [(Verified)Microsoft Windows Component Publisher]
        <CDBurn><%SystemRoot%\system32\SHELL32.dll>  [(Verified)Microsoft Windows Component Publisher]
        <WebCheck><C:\WINDOWS\system32\webcheck.dll>  [(Verified)Microsoft Windows Component Publisher]
        <SysTray><%systemroot%\system32\stobject.dll>  [(Verified)Microsoft Windows Component Publisher]
        <WPDShServiceObj><C:\WINDOWS\system32\WPDShServiceObj.dll>  [(Verified)Microsoft Windows]
        <UPnPMonitor><C:\WINDOWS\system32\upnpui.dll>  [(Verified)Microsoft Windows Component Publisher]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
        <WinlogonNotify: crypt32chain><crypt32.dll>  [(Verified)Microsoft Windows Component Publisher]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
        <WinlogonNotify: cryptnet><cryptnet.dll>  [(Verified)Microsoft Windows Component Publisher]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
        <WinlogonNotify: cscdll><cscdll.dll>  [(Verified)Microsoft Windows Component Publisher]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dimsntfy]
        <WinlogonNotify: dimsntfy><%SystemRoot%\System32\dimsntfy.dll>  [(Verified)Microsoft Windows Component Publisher]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
        <WinlogonNotify: LBTWlgn><c:\program files\common files\logitech\bluetooth\LBTWlgn.dll>  [(Verified)Logitech]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
        <WinlogonNotify: ScCertProp><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
        <WinlogonNotify: Schedule><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
        <WinlogonNotify: sclgntfy><sclgntfy.dll>  [(Verified)Microsoft Windows Component Publisher]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
        <WinlogonNotify: SensLogn><WlNotify.dll>  [(Verified)Microsoft Windows Component Publisher]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
        <WinlogonNotify: termsrv><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
        <WinlogonNotify: WgaLogon><WgaLogon.dll>  [(Verified)Microsoft Corporation]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
        <WinlogonNotify: wlballoon><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
        <{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\system32\browseui.dll>  [(Verified)Microsoft Windows Component Publisher]
        <{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\system32\browseui.dll>  [(Verified)Microsoft Windows Component Publisher]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}]
        <IE7 Uninstall Stub><C:\WINDOWS\system32\ieudinit.exe>  [(Verified)Microsoft Windows Component Publisher]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
        <Microsoft Windows Media Player><C:\WINDOWS\inf\unregmp2.exe /ShowWMP>  [(Verified)Microsoft Windows Component Publisher]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
        <Internet Explorer><%systemroot%\system32\shmgrate.exe OCInstallUserConfigIE>  [File is missing]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
        <Browser Customizations><RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP>  [(Verified)Microsoft Windows Component Publisher]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS]
        <Dostosowywanie przeglądarki><RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP>  [(Verified)Microsoft Windows Component Publisher]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
        <Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE>  [File is missing]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
        <Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll>  [File is missing]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
        <Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install>  [File is missing]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
        <NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT>  [(Verified)Microsoft Windows Component Publisher]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
        <Windows Messenger 4.7><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser>  [(Verified)Microsoft Windows Component Publisher]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
        <Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp11.inf,PerUserStub>  [(Verified)Microsoft Windows Component Publisher]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
        <Książka adresowa 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install>  [File is missing]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
        <Aktualizacja pulpitu Windows><regsvr32.exe /s /n /i:U shell32.dll>  [(Verified)Microsoft Windows Component Publisher]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
        <Internet Explorer><C:\WINDOWS\system32\ie4uinit.exe -BaseSettings>  [(Verified)Microsoft Windows Component Publisher]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
        <N/A><C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install>  [(Verified)Microsoft Corporation]
    [HKEY_CURRENT_USER\Control Panel\Desktop]
        <SCRNSAVE.EXE><C:\WINDOWS\system32\yowindow.scr>  [repkasoft]
    
    ==================================
    Startup Folders
    [ATI CATALYST System Tray]
      <C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\ATI CATALYST System Tray.lnk --> C:\PROGRA~1\ATITEC~1\ATI.ACE\CLI.exe [ATI Technologies Inc.]><N>
    
    ==================================
    Services
    [Eset Trial Reset / .EsetTrialReset][Stopped/Auto Start]
      <><(File is missing)>
    [Ati HotKey Poller / Ati HotKey Poller][Running/Auto Start]
      <C:\WINDOWS\system32\Ati2evxx.exe><ATI Technologies Inc.>
    [ATI Smart / ATI Smart][Stopped/Auto Start]
      <C:\WINDOWS\system32\ati2sgag.exe><>
    [Cisco Systems, Inc. VPN Service / CVPND][Stopped/Auto Start]
      <><(File is missing)>
    [ESET HTTP Server / EhttpSrv][Stopped/Manual Start]
      <"C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe"><ESET>
    [ESET Service / ekrn][Running/Auto Start]
      <"C:\Program Files\ESET\ESET Smart Security\ekrn.exe"><ESET>
    [Intel(R) PROSet/Wireless Event Log / EvtEng][Running/Auto Start]
      <C:\Program Files\Intel\WiFi\bin\EvtEng.exe><Intel(R) Corporation>
    [Usługa Google Update (gupdate) / gupdate][Stopped/Auto Start]
      <C:\Program Files\Google\Update\GoogleUpdate.exe /svc><Google Inc.>
    [Usługa Google Update (gupdatem) / gupdatem][Stopped/Manual Start]
      <C:\Program Files\Google\Update\GoogleUpdate.exe /medsvc><Google Inc.>
    [Google Software Updater / gusvc][Stopped/Manual Start]
      <"C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe"><Google>
    [Java Quick Starter / JavaQuickStarterService][Running/Auto Start]
      <"C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf"><Sun Microsystems, Inc.>
    [Logitech Bluetooth Service / LBTServ][Stopped/Manual Start]
      <C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe><Logitech, Inc.>
    [Process Monitor / LVPrcSrv][Running/Auto Start]
      <"C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe"><Logitech Inc.>
    [MBAMService / MBAMService][Running/Auto Start]
      <"C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe"><Malwarebytes Corporation>
    [Intel(R) PROSet/Wireless Registry Service / RegSrvc][Running/Auto Start]
      <C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe><Intel(R) Corporation>
    [Intel(R) PROSet/Wireless WiFi Service / S24EventMonitor][Running/Auto Start]
      <C:\Program Files\Intel\WiFi\bin\S24EvMon.exe><Intel(R) Corporation>
    [ServiceLayer / ServiceLayer][Stopped/Manual Start]
      <"C:\Program Files\PC Connectivity Solution\ServiceLayer.exe"><Nokia>
    [SmartLinkService / SLService][Running/Auto Start]
      <slserv.exe><>
    [TuneUp Utilities Service / TuneUp.UtilitiesSvc][Running/Auto Start]
      <"C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe"><TuneUp Software>
    [CLCV0 / UTSCSI][Running/Auto Start]
      <C:\WINDOWS\system32\UTSCSI.EXE><>
    [VRAID Log Service / VRAID Log Service][Running/Auto Start]
      <C:\Program Files\VIA\RAID\vialogsv.exe><N/A>
    
    ==================================
    Drivers
    [ati2mtag / ati2mtag][Running/Manual Start]
      <system32\DRIVERS\ati2mtag.sys><ATI Technologies Inc.>
    [cglptnt / cglptnt][Stopped/Manual Start]
      <\??\C:\totalcmd\cglptnt.sys><C. Ghisler & Co.>
    [cpu / cpu][Stopped/Manual Start]
      <\??\C:\cpu.sys><N/A>
    [cpudriver / cpudriver][Stopped/Auto Start]
      <\??\C:\Program Files\Temporary\cpu.sys><N/A>
    [Cisco Systems VPN Adapter / CVirtA][Stopped/Manual Start]
      <system32\DRIVERS\CVirtA.sys><Cisco Systems, Inc.>
    [Cisco Systems Inc. IPSec Driver / CVPNDRVA][Stopped/Manual Start]
      <\??\C:\WINDOWS\system32\Drivers\CVPNDRVA.sys><Cisco Systems, Inc.>
    [Deterministic Network Enhancer Miniport / DNE][Running/Manual Start]
      <system32\DRIVERS\dne2000.sys><Deterministic Networks, Inc.>
    [eamon / eamon][Running/Auto Start]
      <system32\DRIVERS\eamon.sys><ESET>
    [ehdrv / ehdrv][Running/System Start]
      <system32\DRIVERS\ehdrv.sys><ESET>
    [epfw / epfw][Running/Auto Start]
      <system32\DRIVERS\epfw.sys><ESET>
    [Eset Personal Firewall / Epfwndis][Running/Manual Start]
      <system32\DRIVERS\Epfwndis.sys><ESET>
    [epfwtdi / epfwtdi][Running/System Start]
      <system32\DRIVERS\epfwtdi.sys><ESET>
    [esihdrv / esihdrv][Stopped/Manual Start]
      <\??\C:\DOCUME~1\Ania\USTAWI~1\Temp\esihdrv.sys><N/A>
    [UVC Filter Service / FilterService][Stopped/Manual Start]
      <system32\DRIVERS\lvuvcflt.sys><Logitech Inc.>
    [filtertdidriver / filtertdidriver][Stopped/Manual Start]
      <system32\drivers\ewfiltertdidriver.sys><N/A>
    [Hamachi Network Interface / hamachi][Stopped/Manual Start]
      <system32\DRIVERS\hamachi.sys><Applied Networking Inc.>
    [Microsoft UAA Function Driver for High Definition Audio Service / HdAudAddService][Stopped/Manual Start]
      <system32\drivers\HdAudio.sys><Windows (R) Server 2003 DDK provider>
    [Sterownik magistrali Microsoft UAA dla High Definition Audio / HDAudBus][Running/Manual Start]
      <system32\DRIVERS\HDAudBus.sys><Windows (R) Server 2003 DDK provider>
    [Huawei DataCard USB Modem and USB Serial / hwdatacard][Stopped/Manual Start]
      <system32\DRIVERS\ewusbmdm.sys><Huawei Technologies Co., Ltd.>
    [HWIONT / HWIONT][Stopped/Manual Start]
      <\??\D:\Polsat AU\CYFRA + up by stade\MoreTv\HWIONT.sys><N/A>
    [Huawei DataCard USB PNP Device / hwusbdev][Stopped/Manual Start]
      <system32\DRIVERS\ewusbdev.sys><N/A>
    [Service for Realtek HD Audio (WDM) / IntcAzAudAddService][Running/Manual Start]
      <system32\drivers\RtkHDAud.sys><Realtek Semiconductor Corp.>
    [ioperm support for Cygwin driver / ioperm][Stopped/Auto Start]
      <\??\D:\+SSSP_Jungle_multiprotocolo\mbox\ioperm.sys><N/A>
    [Logitech SetPoint Keyboard Driver / L8042Kbd][Running/Manual Start]
      <system32\DRIVERS\L8042Kbd.sys><Logitech Inc.>
    [SetPoint PS/2 Mouse Filter Driver / L8042mou][Stopped/Manual Start]
      <system32\DRIVERS\L8042mou.Sys><Logitech Inc.>
    [LBeepKE / LBeepKE][Running/Auto Start]
      <System32\Drivers\LBeepKE.sys><Logitech, Inc.>
    [Logitech SetPoint KMDF HID Filter Driver / LHidFilt][Running/Manual Start]
      <system32\DRIVERS\LHidFilt.Sys><Logitech, Inc.>
    [Logitech SetPoint HID Mouse Filter Driver / LHidKe][Stopped/Manual Start]
      <system32\DRIVERS\LHidKE.Sys><Logitech, Inc.>
    [Logitech SetPoint USB Receiver device driver / LHidUsbK][Stopped/Manual Start]
      <System32\Drivers\LHidUsbK.Sys><Logitech, Inc.>
    [Logitech SetPoint KMDF Mouse Filter Driver / LMouFilt][Running/Manual Start]
      <system32\DRIVERS\LMouFilt.Sys><Logitech, Inc.>
    [SetPoint Mouse Filter Driver / LMouKE][Stopped/Manual Start]
      <system32\DRIVERS\LMouKE.Sys><Logitech Inc.>
    [Logitech POP Suppression Filter / lvpopflt][Stopped/Manual Start]
      <system32\DRIVERS\lvpopflt.sys><Logitech Inc.>
    [Logitech LVPr2Mon Driver / LVPr2Mon][Running/Manual Start]
      <system32\DRIVERS\LVPr2Mon.sys><>
    [Logitech USB Monitor Filter / LVUSBSta][Stopped/Manual Start]
      <system32\drivers\LVUSBSta.sys><Logitech Inc.>
    [QuickCam for Notebooks Deluxe(UVC) / LVUVC][Stopped/Manual Start]
      <system32\DRIVERS\lvuvc.sys><Logitech Inc.>
    [MBAMProtector / MBAMProtector][Running/Manual Start]
      <\??\C:\WINDOWS\system32\drivers\mbam.sys><Malwarebytes Corporation>
    [Mtlmnt5 / Mtlmnt5][Running/Manual Start]
      <system32\DRIVERS\SLDRV\Mtlmnt5.sys><>
    [Mtlstrm / Mtlstrm][Stopped/Manual Start]
      <system32\DRIVERS\SLDRV\Mtlstrm.sys><>
    [Nokia USB Phone Parent Driver / nmwcd][Stopped/Manual Start]
      <system32\drivers\ccdcmb.sys><Nokia>
    [Nokia USB Communication Driver / nmwcdc][Stopped/Manual Start]
      <system32\drivers\ccdcmbo.sys><Nokia>
    [Nokia USB Flashing Phone Parent / nmwcdnsu][Stopped/Manual Start]
      <system32\drivers\nmwcdnsu.sys><Nokia>
    [Nokia USB Flashing Generic / nmwcdnsuc][Stopped/Manual Start]
      <system32\drivers\nmwcdnsuc.sys><Nokia>
    [Netgroup Packet Filter / NPF][Stopped/Manual Start]
      <system32\drivers\npf.sys><N/A>
    [Creative WebCam Live! / P0630VID][Stopped/Manual Start]
      <system32\DRIVERS\P0630Vid.sys><Creative Technology Ltd.>
    [PCCS Mode Change Filter Driver / pccsmcfd][Stopped/Manual Start]
      <system32\DRIVERS\pccsmcfd.sys><Nokia>
    [Sterownik bezpośredniego połączenia kablowego / Ptilink][Running/Manual Start]
      <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
    [PxHelp20 / PxHelp20][Running/Boot Start]
      <\SystemRoot\System32\Drivers\PxHelp20.sys><Sonic Solutions>
    [RecAgent / RecAgent][Running/Boot Start]
      <\SystemRoot\system32\DRIVERS\SLDRV\RecAgent.sys><>
    [Realtek 10/100/1000 PCI NIC Family NDIS XP Driver / RTL8023xp][Running/Manual Start]
      <system32\DRIVERS\Rtnicxp.sys><Realtek Semiconductor Corporation>
    [Transport WLAN / s24trans][Running/Auto Start]
      <system32\DRIVERS\s24trans.sys><Intel Corporation>
    [Secdrv / Secdrv][Stopped/Manual Start]
      <system32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>
    [Prolific Serial port driver / Ser2pl][Stopped/Manual Start]
      <system32\DRIVERS\ser2pl.sys><Prolific Technology Inc.>
    [SmartLink AMR_PCI Driver / Slazldrv][Running/Manual Start]
      <system32\DRIVERS\SLDRV\slazldrv.sys><>
    [SlNtHal / SlNtHal][Stopped/Manual Start]
      <system32\DRIVERS\SLDRV\Slnthal.sys><>
    [SlWdmSup / SlWdmSup][Running/Manual Start]
      <system32\DRIVERS\SLDRV\SlWdmSup.sys><>
    [sptd / sptd][Running/Boot Start]
      <\SystemRoot\System32\Drivers\sptd.sys><N/A>
    [SSHDRV86 / SSHDRV86][Running/System Start]
      <\??\C:\WINDOWS\system32\drivers\SSHDRV86.sys><>
    [Synaptics TouchPad Driver / SynTP][Running/Manual Start]
      <system32\DRIVERS\SynTP.sys><Synaptics, Inc.>
    [TuneUpUtilitiesDrv / TuneUpUtilitiesDrv][Running/Manual Start]
      <\??\C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys><TuneUp Software>
    [upperdev / upperdev][Stopped/Manual Start]
      <system32\DRIVERS\usbser_lowerflt.sys><Nokia>
    [UsbserFilt / UsbserFilt][Stopped/Manual Start]
      <system32\DRIVERS\usbser_lowerfltj.sys><Nokia>
    [UserPort / UserPort][Running/System Start]
      <\??\C:\WINDOWS\system32\Drivers\UserPort.sys><N/A>
    [viamraid / viamraid][Running/Boot Start]
      <\SystemRoot\system32\DRIVERS\viamraid.sys><VIA Technologies inc,.ltd>
    [vsdatant / vsdatant][Stopped/Manual Start]
      <\??\C:\WINDOWS\system32\vsdatant.sys><Zone Labs LLC>
    [Sterownik karty Intel(R) PRO/Wireless 2200BG Network Connection dla systemu Windows XP / w29n51][Running/Manual Start]
      <system32\DRIVERS\w29n51.sys><Intel® Corporation>
    
    ==================================
    Browser Add-ons
    [iOpus iMacros]
      {0483894E-2422-45E0-8384-021AFF1AF3CD} <, >
    [Create Mobile Favorite]
      {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} <C:\PROGRA~1\MICROS~3\INetRepl.dll, (Signed) Microsoft Corporation>
    [Create Mobile Favorite]
      {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} <C:\PROGRA~1\MICROS~3\INetRepl.dll, (Signed) Microsoft Corporation>
    [&Badanie]
      {92780B25-18CC-41C8-B9BE-3C9C571A8263} <C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL, (Signed) Microsoft Corporation>
    []
      {e2e2dd38-d088-4134-82b7-f2ba38496583} <%windir%\Network Diagnostic\xpnetdiag.exe, (Signed) N/A>
    []
      {D4027C7F-154A-4066-A1AD-4243D8127440} <, >
    [Windows Genuine Advantage Validation Tool]
      {17492023-C23A-453E-A040-C7C580BBF700} <C:\WINDOWS\system32\LegitCheckControl.DLL, (Signed) Microsoft Corporation>
    []
      {7530BFB8-7293-4D34-9923-61A11451AFC5} <, >
    [Java Plug-in 1.6.0_29]
      {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
    []
      {8FEFF364-6A5F-4966-A917-A3AC28411659} <, >
    [Java Plug-in 1.5.0_06]
      {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
    [Java Plug-in 1.5.0_09]
      {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
    [Java Plug-in 1.5.0_10]
      {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
    [Java Plug-in 1.5.0_11]
      {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
    [Java Plug-in 1.6.0_01]
      {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
    [Java Plug-in 1.6.0_02]
      {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
    [Java Plug-in 1.6.0_03]
      {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
    [Java Plug-in 1.6.0_04]
      {CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
    [Java Plug-in 1.6.0_05]
      {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
    [Java Plug-in 1.6.0_07]
      {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
    [Java Plug-in 1.6.0_29]
      {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
    [Java Plug-in 1.6.0_29]
      {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\npjpi160_29.dll, (Signed) Sun Microsystems, Inc.>
    []
      {E2883E8F-472F-4FB0-9522-AC9BF37916A7} <, >
    []
      {00000000-0000-0000-0000-000000000000} <, >
    [Microsoft Outlook 8.0 Object Library]
      {0006F033-0000-0000-C000-000000000046} <, >
    [Microsoft Office Outlook]
      {0006F03A-0000-0000-C000-000000000046} <, >
    [IDM integration (IDMIEHlprObj Class)]
      {0055C089-8582-441B-A0BF-17B458C2A3A8} <, >
    []
      {00EF2092-6AC5-47C0-BD25-CF2D5D657FEB} <, >
    [Yahoo! Toolbar Helper]
      {02478D38-C3F9-4EFB-9B51-7695ECA05670} <, >
    [iOpus iMacros]
      {0483894E-2422-45E0-8384-021AFF1AF3CD} <, >
    [Adobe PDF Reader Link Helper]
      {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll, (Signed) Adobe Systems Incorporated>
    []
      {08B0E5C0-4FCB-11CF-AAA5-00401C608501} <, >
    [PeerDraw Class]
      {10072CEC-8CC1-11D1-986E-00A0C955B42E} <%CommonProgramFiles%\Microsoft Shared\VGX\vgx.dll, (Signed) N/A>
    [Fade]
      {16B280C5-EE70-11D1-9066-00C04FD9189D} <C:\WINDOWS\system32\Dxtmsft.dll, (Signed) Microsoft Corporation>
    [Windows Genuine Advantage Validation Tool]
      {17492023-C23A-453E-A040-C7C580BBF700} <C:\WINDOWS\system32\LegitCheckControl.DLL, (Signed) Microsoft Corporation>
    []
      {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} <, >
    []
      {215B8138-A3CF-44C5-803F-8226143CFC0A} <, >
    [Windows Media Player]
      {22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, (Signed) Microsoft Corporation>
    []
      {2318C2B1-4965-11D4-9B18-009027A5CD4F} <, >
    [HTML Document]
      {25336920-03F9-11CF-8FD0-00AA00686F13} <C:\WINDOWS\system32\mshtml.dll, (Signed) Microsoft Corporation>
    [Microsoft HTML Document 6.0]
      {25336921-03F9-11CF-8FD0-00AA00686F13} <C:\WINDOWS\system32\mshtml.dll, (Signed) Microsoft Corporation>
    []
      {25CEE8EC-5730-41BC-8B58-22DDC8AB8C20} <, >
    [XML DOM Document]
      {2933BF90-7B36-11D2-B20E-00C04F983E60} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
    [XSL Template]
      {2933BF94-7B36-11D2-B20E-00C04F983E60} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
    []
      {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} <, >
    [DHTML Edit Control Safe for Scripting for IE5]
      {2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\Program Files\Common Files\Microsoft Shared\Triedit\dhtmled.ocx, (Signed) Microsoft Corporation>
    []
      {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} <, >
    []
      {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} <, >
    [Tabular Data Control]
      {333C7BC4-460F-11D0-BC04-0080C7055A83} <C:\WINDOWS\system32\tdc.ocx, (Signed) Microsoft Corporation>
    [IETag Factory]
      {38481807-CA0E-42D2-BF39-B33AF135CC4D} <C:\PROGRA~1\COMMON~1\MICROS~1\SMARTT~1\IETAG.DLL, (Signed) Microsoft Corporation>
    []
      {3D8700FB-86A4-4CB4-B738-6F0FC016AC7D} <, >
    []
      {3EA4FA88-E0BE-419A-A732-9B79B87A6ED0} <, >
    []
      {41524153-46FB-488C-8E53-7624AB83C46F} <, >
    [Microsoft Office Control]
      {4453D895-F2A1-4A38-A285-1EF9BD3F6D5D} <C:\PROGRA~1\MICROS~2\OFFICE11\AUTHZAX.DLL, (Signed) Microsoft Corporation>
    [XML Document]
      {48123BC4-99D9-11D1-A6B3-00C04FD91555} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
    []
      {4B3803EA-5230-4DC3-A7FC-33638F3D3542} <, >
    []
      {4D6211AB-1679-4446-B65C-78DF8C43D3B3} <, >
    []
      {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} <, >
    [Microsoft Terminal Services Client Control (redist)]
      {4eb89ff4-7f78-4a0f-8b8d-2bf02e94e4b2} <%systemroot%\system32\mstscax.dll, (Signed) N/A>
    [Microsoft Terminal Services Client Control (redist)]
      {4EDCB26C-D24C-4e72-AF07-B576699AC0DE} <%systemroot%\system32\mstscax.dll, (Signed) N/A>
    []
      {4FEE6316-7B6F-4A6C-BD4E-4157C59A9E9D} <, >
    [Shell Name Space]
      {55136805-B2DE-11D1-B9F2-00A0C98BC547} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation>
    []
      {58445C1E-373E-4A27-8D2E-DA2C265FBBB0} <, >
    [isInstalled Class]
      {5852F5ED-8BF4-11D4-A245-0080C6F74284} <C:\Program Files\Java\jre6\bin\wsdetect.dll, (Signed) Sun Microsystems, Inc.>
    []
      {631FF594-EC25-4CFF-B869-402DF294E1D6} <, >
    [WUWebControl Class]
      {6414512B-B978-451D-A0D8-FCFDF33E833C} <C:\WINDOWS\system32\wuweb.dll, (Signed) Microsoft Corporation>
    []
      {644E432F-49D3-41A1-8DD5-E099162EEEC5} <, >
    [Microsoft Shell UI Helper]
      {64AB4BB7-111E-11D1-8F79-00C04FC2FBE1} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation>
    [MksSkanerOnline Class]
      {68282C51-9459-467B-95BF-3C0E89627E55} <, >
    [Windows Media Player]
      {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
    []
      {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} <, >
    [Microsoft Terminal Services Client Control (redist)]
      {7390f3d8-0439-4c05-91e3-cf5cb290c3d0} <%systemroot%\system32\mstscax.dll, (Signed) N/A>
    []
      {7530BFB8-7293-4D34-9923-61A11451AFC5} <, >
    [Microsoft Terminal Services Client Control (redist)]
      {7584c670-2274-4efb-b00b-d6aaba6d3850} <%systemroot%\system32\mstscax.dll, (Signed) N/A>
    []
      {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <, >
    []
      {8736C681-37A0-40C6-A0F0-4C083409151C} <, >
    [Microsoft Web Browser]
      {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation>
    [XML DOM Document 4.0]
      {88D969C0-F192-11D4-A65F-0040963251E5} <C:\WINDOWS\system32\msxml4.dll, (Signed) Microsoft Corporation>
    [Free Threaded XML DOM Document 4.0]
      {88D969C1-F192-11D4-A65F-0040963251E5} <C:\WINDOWS\system32\msxml4.dll, (Signed) Microsoft Corporation>
    [XSL Template 4.0]
      {88D969C3-F192-11D4-A65F-0040963251E5} <C:\WINDOWS\system32\msxml4.dll, (Signed) Microsoft Corporation>
    [XML HTTP 4.0]
      {88D969C5-F192-11D4-A65F-0040963251E5} <C:\WINDOWS\system32\msxml4.dll, (Signed) Microsoft Corporation>
    [XML DOM Document 5.0]
      {88D969E5-F192-11D4-A65F-0040963251E5} <C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSXML5.DLL, Microsoft Corporation>
    [Free Threaded XML DOM Document 5.0]
      {88D969E6-F192-11D4-A65F-0040963251E5} <C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSXML5.DLL, Microsoft Corporation>
    [XSL Template 5.0]
      {88D969E8-F192-11D4-A65F-0040963251E5} <C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSXML5.DLL, Microsoft Corporation>
    [XML HTTP 5.0]
      {88D969EA-F192-11D4-A65F-0040963251E5} <C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSXML5.DLL, Microsoft Corporation>
    [XML DOM Document 6.0]
      {88D96A05-F192-11D4-A65F-0040963251E5} <C:\WINDOWS\system32\msxml6.dll, (Signed) Microsoft Corporation>
    [Free Threaded XML DOM Document 6.0]
      {88D96A06-F192-11D4-A65F-0040963251E5} <C:\WINDOWS\system32\msxml6.dll, (Signed) Microsoft Corporation>
    [XSL Template 6.0]
      {88D96A08-F192-11D4-A65F-0040963251E5} <C:\WINDOWS\system32\msxml6.dll, (Signed) Microsoft Corporation>
    [XML HTTP 6.0]
      {88D96A0A-F192-11D4-A65F-0040963251E5} <C:\WINDOWS\system32\msxml6.dll, (Signed) Microsoft Corporation>
    [Java Plug-in 1.6.0_29]
      {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
    []
      {8DBB6D8E-E4A6-4E3B-9753-AF78B226441C} <, >
    []
      {8FEFF364-6A5F-4966-A917-A3AC28411659} <, >
    [Microsoft Terminal Services Client Control (redist)]
      {9059f30f-4eb1-4bd2-9fdc-36f43a218f4a} <%systemroot%\system32\mstscax.dll, (Signed) N/A>
    []
      {9191F686-7F0A-441D-8A98-2FE3AC1BD913} <, >
    []
      {92780B25-18CC-41C8-B9BE-3C9C571A8263} <, >
    []
      {92ECE6FA-AC2E-4042-BFAE-0C8608E52A41} <, >
    []
      {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} <, >
    [VideoLAN VLC ActiveX Plugin v2]
      {9BE31822-FDAD-461B-AD51-BE1D1C159921} <C:\Program Files\VideoLAN\VLC\axvlc.dll, >
    []
      {9E385F0A-0BA2-430C-96AA-4399C5E40F6C} <, >
    [RMGetLicense Class]
      {A9FC132B-096D-460B-B7D5-1DB0FAE0C062} <C:\WINDOWS\system32\msnetobj.dll, (Signed) Microsoft Corporation>
    []
      {AA58ED58-01DD-4D91-8333-CF10577473F7} <, >
    [Microsoft Scriptlet Component]
      {AE24FDAE-03C6-11D1-8B76-0080C744F389} <C:\WINDOWS\system32\mshtml.dll, (Signed) Microsoft Corporation>
    []
      {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} <, >
    [SearchAssistantOC]
      {B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, (Signed) N/A>
    [RDS.DataSpace]
      {BD96C556-65A3-11D0-983A-00C04FC29E36} <C:\Program Files\Common Files\System\msadc\msadco.dll, (Signed) Microsoft Corporation>
    []
      {C3881663-B3FA-49F4-BA57-183B02F47280} <, >
    [Adobe PDF Reader]
      {CA8A9780-280D-11CF-A24D-444553540000} <C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroPDF.dll, (Signed) Adobe Systems, Inc.>
    [Java Plug-in 1.6.0_02]
      {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
    [Java Plug-in 1.6.0_03]
      {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
    [Java Plug-in 1.6.0_04]
      {CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
    [Java Plug-in 1.6.0_05]
      {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
    [Java Plug-in 1.6.0_07]
      {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
    [Java Plug-in 1.6.0_17]
      {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
    [Java Plug-in 1.6.0_26]
      {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
    [Deployment Toolkit]
      {CAFEEFAC-DEC7-0000-0000-ABCDEFFEDCBA} <C:\WINDOWS\system32\deployJava1.dll, (Signed) Sun Microsystems, Inc.>
    [Deployment Toolkit]
      {CAFEEFAC-DEC7-0000-0001-ABCDEFFEDCBA} <C:\WINDOWS\system32\deployJava1.dll, (Signed) Sun Microsystems, Inc.>
    [AUDIO__MID Moniker Class]
      {CD3AFA74-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
    [AUDIO__MP3 Moniker Class]
      {CD3AFA76-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
    [AUDIO__WAV Moniker Class]
      {CD3AFA7B-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
    [AUDIO__X_MS_WMA Moniker Class]
      {CD3AFA84-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
    [VIDEO__X_MS_ASF Moniker Class]
      {CD3AFA8F-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
    [VIDEO__X_MS_WMV Moniker Class]
      {CD3AFA94-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
    []
      {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} <, >
    [Msxml]
      {CFC399AF-D876-11D0-9C10-00C04FC99C8E} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
    [Shockwave Flash Object]
      {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash11c.ocx, (Signed) Adobe Systems, Inc.>
    []
      {D2982A7F-489A-47F5-A319-FC1F14EBC245} <, >
    []
      {D4027C7F-154A-4066-A1AD-4243D8127440} <, >
    []
      {DBC80044-A445-435B-BC74-9C25C1C588A9} <, >
    [NameCtrl Class]
      {E18FEC31-2EA1-49A2-A7A6-902DC0D1FF05} <C:\Program Files\Microsoft Office\OFFICE11\NAME.DLL, (Signed) Microsoft Corporation>
    []
      {E2E2DD38-D088-4134-82B7-F2BA38496583} <, >
    [WebViewFolderIcon Class]
      {E5DF9D10-3B52-11D1-83E8-00A0C90DC849} <C:\WINDOWS\system32\webvw.dll, (Signed) Microsoft Corporation>
    []
      {E7E6F031-17CE-4C07-BC86-EABFE594F69C} <, >
    []
      {E9DA06F1-632C-462F-98B3-AF74B47DA727} <, >
    []
      {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} <, >
    [XML HTTP Request]
      {ED8C108E-4349-11D2-91A4-00C04F7969E8} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
    [Yahoo! Toolbar]
      {EF99BD32-C1FB-11D2-892F-0090271D4F88} <, >
    [JScript Language]
      {F414C260-6AC0-11CF-B6D1-00AA00BBBB58} <C:\WINDOWS\system32\jscript.dll, (Signed) Microsoft Corporation>
    [XML DOM Document 3.0]
      {F5078F32-C551-11D3-89B9-0000F81FE221} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
    [XML HTTP 3.0]
      {F5078F35-C551-11D3-89B9-0000F81FE221} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
    [XML DOM Document]
      {F6D90F11-9C73-11D3-B32E-00C04F990BB4} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
    [Free Threaded XML DOM Document]
      {F6D90F12-9C73-11D3-B32E-00C04F990BB4} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
    [XML HTTP]
      {F6D90F16-9C73-11D3-B32E-00C04F990BB4} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
    []
      {F9152AEC-3462-4632-8087-EEE3C3CDDA24} <, >
    []
      {FB5F1910-F110-11D2-BB9E-00C04F795683} <, >
    [&Download All using 4shared Desktop]
      <{FB5F1910-F110-11D2-BB9E-00C04F795683}, N/A>
    [Add to Google Photos Screensa&ver]
      <res://C:\WINDOWS\system32\GPhotos.scr/200, N/A>
    [E&ksport do programu Microsoft Excel]
      <res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A>
    [Funkcja Google Sidewiki]
      <, >
    
    ==================================
    Running Processes
    [PID: 1932 / SYSTEM][\SystemRoot\System32\smss.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
    [PID: 372 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
    [PID: 588 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
        [C:\WINDOWS\system32\Ati2evxx.dll]  [ATI Technologies Inc., 6.14.10.4178]
        [c:\program files\common files\logitech\bluetooth\LBTWlgn.dll]  [Logitech, Inc., 4.60.122]
        [c:\program files\common files\logitech\bluetooth\LBTServ.dll]  [Logitech, Inc., 4.60.122]
        [C:\WINDOWS\system32\netprovcredman.dll]  [Intel(R) Corporation, 12, 4, 0, 0]
    [PID: 636 / SYSTEM][C:\WINDOWS\system32\services.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_gdr.090206-1234)]
    [PID: 648 / SYSTEM][C:\WINDOWS\system32\lsass.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
    [PID: 904 / SYSTEM][C:\WINDOWS\system32\Ati2evxx.exe]  [ATI Technologies Inc., 6.14.10.4222]
        [C:\WINDOWS\system32\Ati2edxx.dll]  [ATI Technologies, Inc., 6, 14, 10, 2514]
        [C:\WINDOWS\system32\atipdlxx.dll]  [ATI Technologies, Inc., 6, 14, 10, 2550]
    [PID: 920 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
    [PID: 1124 / USŁUGA SIECIOWA][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
    [PID: 1164 / SYSTEM][C:\WINDOWS\System32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
        [c:\windows\system32\uxtuneup.dll]  [TuneUp Software, 10.0.4200.159]
    [PID: 1200 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
    [PID: 1304 / SYSTEM][C:\WINDOWS\system32\Ati2evxx.exe]  [ATI Technologies Inc., 6.14.10.4222]
        [C:\WINDOWS\system32\Ati2edxx.dll]  [ATI Technologies, Inc., 6, 14, 10, 2514]
        [C:\WINDOWS\system32\atipdlxx.dll]  [ATI Technologies, Inc., 6, 14, 10, 2550]
        [C:\WINDOWS\system32\ati2evxx.dll]  [ATI Technologies Inc., 6.14.10.4178]
    [PID: 1656 / Ania][C:\WINDOWS\Explorer.EXE]  [(Verified) Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
        [C:\WINDOWS\TEMP\logishrd\LVPrcInj01.dll]  [Logitech Inc., 12.10.1110.0]
        [C:\Program Files\Unlocker\UnlockerHook.dll]  [N/A, ]
        [C:\WINDOWS\system32\netprovcredman.dll]  [Intel(R) Corporation, 12, 4, 0, 0]
        [C:\Program Files\Gadu-Gadu\ggwhook.dll]  [Gadu-Gadu S.A., 7,6,0,1578]
    [PID: 1760 / SYSTEM][C:\Program Files\Intel\WiFi\bin\S24EvMon.exe]  [Intel(R) Corporation, 12, 4, 0, 10]
        [C:\Program Files\Intel\WiFi\bin\IntStngs.dll]  [Intel(R) Corporation, 12, 4, 0, 0]
        [C:\Program Files\Intel\WiFi\bin\IWMSPROV.DLL]  [N/A, ]
        [C:\Program Files\Common Files\Intel\WirelessCommon\PsRegApi.dll]  [Intel(R) Corporation, 12, 4, 0, 0]
        [C:\Program Files\Common Files\Intel\WirelessCommon\TraceApi.dll]  [Intel(R) Corporation, 12, 4, 0, 2]
        [C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll]  [The OpenSSL Project, http://www.openssl.org/, 0.9.8]
        [C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\SupplicantPlugin.dll]  [Intel(R) Corporation, 12, 4, 0, 15]
        [C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\WSCPlugin.dll]  [Intel(R) Corporation, 12, 4, 0, 6]
        [C:\Program Files\Intel\WiFi\bin\supplicant.dll]  [Devicescape Software, Inc., 1, 0, 73, 0]
    [PID: 1968 / USŁUGA SIECIOWA][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
    [PID: 480 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe]  [(Verified) Microsoft Corporation, 5.1.2600.6024 (xpsp_sp3_gdr.100817-1626)]
        [C:\WINDOWS\system32\HPBMMON.DLL]  [Hewlett-Packard, 10.00.14]
        [C:\WINDOWS\system32\hpdomon.dll]  [Hewlett-Packard, 03.42.00]
        [C:\WINDOWS\system32\HPBHealr.dll]  [N/A, ]
        [C:\WINDOWS\system32\mdimon.dll]  [Microsoft Corporation, 11.3.1897.0]
        [C:\WINDOWS\System32\spool\PRTPROCS\W32X86\HPPRN05.DLL]  [Hewlett-Packard Corporation, 60.05.72.21]
        [C:\WINDOWS\System32\spool\PRTPROCS\W32X86\mdippr.dll]  [Microsoft Corporation, 11.3.1897.0]
    [PID: 980 / SYSTEM][C:\Program Files\ESET\ESET Smart Security\ekrn.exe]  [ESET, 4.2.40.10 ]
        [C:\Program Files\ESET\ESET Smart Security\ekrnScan.dll]  [ESET, 4.2.40.10 ]
        [C:\Program Files\ESET\ESET Smart Security\ekrnAmon.dll]  [ESET, 4.2.40.10 ]
        [C:\Program Files\ESET\ESET Smart Security\ekrnEmon.dll]  [ESET, 4.2.40.10 ]
        [C:\Program Files\ESET\ESET Smart Security\ekrnDmon.dll]  [ESET, 4.2.40.10 ]
        [C:\Program Files\ESET\ESET Smart Security\ekrnEpfw.dll]  [ESET, 4.2.40.10 ]
        [C:\Program Files\ESET\ESET Smart Security\ekrnSmon.dll]  [ESET, 4.2.40.10 ]
        [C:\Program Files\ESET\ESET Smart Security\ekrnUpdate.dll]  [ESET, 4.2.40.10 ]
        [C:\Program Files\ESET\ESET Smart Security\updater.dll]  [ESET, 4.2.40.10 ]
        [C:\Program Files\ESET\ESET Smart Security\ekrnMailPlugins.dll]  [ESET, 4.2.40.10 ]
    [PID: 1448 / SYSTEM][C:\Program Files\Intel\WiFi\bin\EvtEng.exe]  [Intel(R) Corporation, 12, 4, 0, 0]
        [C:\Program Files\Intel\WiFi\bin\PfMgrApi.dll]  [Intel(R) Corporation, 12, 4, 0, 2]
        [C:\Program Files\Intel\WiFi\bin\MurocApi.dll]  [Intel(R) Corporation, 12, 4, 0, 6]
        [C:\Program Files\Intel\WiFi\bin\IntStngs.dll]  [Intel(R) Corporation, 12, 4, 0, 0]
        [C:\Program Files\Intel\WiFi\bin\PfQOSMgr.dll]  [Intel(R) Corporation, 12, 4, 0, 0]
        [C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll]  [The OpenSSL Project, http://www.openssl.org/, 0.9.8]
        [C:\Program Files\Common Files\Intel\WirelessCommon\PsRegApi.dll]  [Intel(R) Corporation, 12, 4, 0, 0]
        [C:\Program Files\Common Files\Intel\WirelessCommon\TraceApi.dll]  [Intel(R) Corporation, 12, 4, 0, 2]
        [C:\Program Files\Intel\WiFi\bin\S24MUDLL.dll]  [Intel(R) Corporation, 12, 4, 0, 1]
    [PID: 1692 / SYSTEM][C:\Program Files\Java\jre6\bin\jqs.exe]  [Sun Microsystems, Inc., 6.0.290.11]
        [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll]  [Microsoft Corporation, 1.1.4322.2490]
    [PID: 1784 / SYSTEM][C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe]  [Logitech Inc., 12.10.1110.0]
    [PID: 1888 / SYSTEM][C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe]  [Malwarebytes Corporation, 1.51.1.0000]
        [C:\Program Files\Malwarebytes' Anti-Malware\mbam.dll]  [Malwarebytes Corporation, 1.51.0.0023]
        [C:\Program Files\Malwarebytes' Anti-Malware\mbamnet.dll]  [Malwarebytes Corporation, 1.51.2.0000]
    [PID: 288 / SYSTEM][C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe]  [Intel(R) Corporation, 12, 4, 0, 0]
    [PID: 344 / SYSTEM][C:\WINDOWS\system32\slserv.exe]  [ , 4.00.08]
    [PID: 800 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
    [PID: 876 / SYSTEM][C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe]  [TuneUp Software, 10.0.4200.159]
    [PID: 932 / SYSTEM][C:\WINDOWS\system32\UTSCSI.EXE]  [, 1, 0, 0, 2]
    [PID: 1068 / SYSTEM][C:\Program Files\VIA\RAID\vialogsv.exe]  [N/A, ]
        [C:\Program Files\VIA\RAID\drvInterface.dll]  [, 5, 8, 5, 0]
        [C:\Program Files\VIA\RAID\language.dll]  [, 5, 8, 5, 0]
    [PID: 1680 / SYSTEM][C:\WINDOWS\system32\wbem\wmiprvse.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_gdr.090206-1234)]
    [PID: 4052 / Ania][C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe]  [TuneUp Software, 10.0.4200.159]
        [C:\Program Files\Unlocker\UnlockerHook.dll]  [N/A, ]
        [C:\Program Files\Gadu-Gadu\ggwhook.dll]  [Gadu-Gadu S.A., 7,6,0,1578]
    [PID: 4060 / Ania][C:\Program Files\Synaptics\SynTP\SynTPLpr.exe]  [Synaptics, Inc., 8.0.0 18Mar05]
        [C:\WINDOWS\system32\SynCOM.dll]  [Synaptics, Inc., 8.0.0 18Mar05]
        [C:\Program Files\Gadu-Gadu\ggwhook.dll]  [Gadu-Gadu S.A., 7,6,0,1578]
    [PID: 4068 / USŁUGA LOKALNA][C:\WINDOWS\System32\alg.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
    [PID: 336 / Ania][C:\Program Files\Synaptics\SynTP\SynTPEnh.exe]  [Synaptics, Inc., 8.0.0 18Mar05]
        [C:\WINDOWS\system32\SynCOM.dll]  [Synaptics, Inc., 8.0.0 18Mar05]
        [C:\Program Files\Unlocker\UnlockerHook.dll]  [N/A, ]
        [C:\WINDOWS\system32\SynTPAPI.dll]  [Synaptics, Inc., 8.0.0 18Mar05]
        [C:\Program Files\Gadu-Gadu\ggwhook.dll]  [Gadu-Gadu S.A., 7,6,0,1578]
    [PID: 388 / Ania][C:\Program Files\Unlocker\UnlockerAssistant.exe]  [N/A, ]
        [C:\Program Files\Unlocker\UnlockerHook.dll]  [N/A, ]
        [C:\Program Files\Gadu-Gadu\ggwhook.dll]  [Gadu-Gadu S.A., 7,6,0,1578]
    [PID: 428 / Ania][C:\Program Files\ESET\ESET Smart Security\egui.exe]  [ESET, 4.2.40.10 ]
        [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_b77cec8e\MFC80U.DLL]  [Microsoft Corporation, 8.00.50727.4053]
        [C:\Program Files\Unlocker\UnlockerHook.dll]  [N/A, ]
        [C:\Program Files\ESET\ESET Smart Security\eguiScan.dll]  [ESET, 4.2.40.10 ]
        [C:\Program Files\ESET\ESET Smart Security\eguiAmon.dll]  [ESET, 4.2.40.10 ]
        [C:\Program Files\ESET\ESET Smart Security\eguiEmon.dll]  [ESET, 4.2.40.10 ]
        [C:\Program Files\ESET\ESET Smart Security\eguiDmon.dll]  [ESET, 4.2.40.10 ]
        [C:\Program Files\ESET\ESET Smart Security\eguiEpfw.dll]  [ESET, 4.2.40.10 ]
        [C:\Program Files\ESET\ESET Smart Security\eguiSmon.dll]  [ESET, 4.2.40.10 ]
        [C:\Program Files\ESET\ESET Smart Security\eguiUpdate.dll]  [ESET, 4.2.40.10 ]
        [C:\Program Files\ESET\ESET Smart Security\eguiMailPlugins.dll]  [ESET, 4.2.40.10 ]
        [C:\Program Files\Gadu-Gadu\ggwhook.dll]  [Gadu-Gadu S.A., 7,6,0,1578]
    [PID: 572 / Ania][C:\WINDOWS\SOUNDMAN.EXE]  [Realtek Semiconductor Corp., 1, 0, 0, 32]
        [C:\Program Files\Unlocker\UnlockerHook.dll]  [N/A, ]
        [C:\Program Files\Gadu-Gadu\ggwhook.dll]  [Gadu-Gadu S.A., 7,6,0,1578]
    [PID: 1240 / Ania][C:\Program Files\Intel\WiFi\bin\ZCfgSvc.exe]  [Intel(R) Corporation, 12.4.0.9]
        [C:\Program Files\Intel\WiFi\bin\PfQOSMgr.dll]  [Intel(R) Corporation, 12, 4, 0, 0]
        [C:\Program Files\Common Files\Intel\WirelessCommon\PsRegApi.dll]  [Intel(R) Corporation, 12, 4, 0, 0]
        [C:\Program Files\Common Files\Intel\WirelessCommon\TraceApi.dll]  [Intel(R) Corporation, 12, 4, 0, 2]
        [C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll]  [The OpenSSL Project, http://www.openssl.org/, 0.9.8]
        [C:\Program Files\Intel\WiFi\bin\LangResources\PLK\ZcSvcPLK.dll]  [Intel(R) Corporation, 12.4.0.9]
        [C:\Program Files\Unlocker\UnlockerHook.dll]  [N/A, ]
        [C:\Program Files\Intel\WiFi\bin\MurocApi.dll]  [Intel(R) Corporation, 12, 4, 0, 6]
        [C:\Program Files\Intel\WiFi\bin\IntStngs.dll]  [Intel(R) Corporation, 12, 4, 0, 0]
        [C:\Program Files\Intel\WiFi\bin\S24MUDLL.dll]  [Intel(R) Corporation, 12, 4, 0, 1]
        [C:\Program Files\Intel\WiFi\bin\PfMgrApi.dll]  [Intel(R) Corporation, 12, 4, 0, 2]
        [C:\Program Files\Intel\WiFi\bin\DbEngine.dll]  [Intel(R) Corporation, 12, 4, 0, 0]
        [C:\Program Files\Gadu-Gadu\ggwhook.dll]  [Gadu-Gadu S.A., 7,6,0,1578]
    [PID: 1280 / Ania][C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe]  [Intel(R) Corporation, 12, 4, 0, 0]
        [C:\Program Files\Common Files\Intel\WirelessCommon\PsRegApi.dll]  [Intel(R) Corporation, 12, 4, 0, 0]
        [C:\Program Files\Common Files\Intel\WirelessCommon\LIBEAY32.dll]  [The OpenSSL Project, http://www.openssl.org/, 0.9.8]
        [C:\Program Files\Common Files\Intel\WirelessCommon\LangResources\PLK\FrWrkPLK.dll]  [Intel(R) Corporation, 12, 4, 0, 0]
        [C:\Program Files\Unlocker\UnlockerHook.dll]  [N/A, ]
        [C:\Program Files\Common Files\Intel\WirelessCommon\FrameworkPlugins\WiWiTray.dll]  [Intel(R) Corporation, 12, 4, 0, 1]
        [C:\Program Files\Common Files\Intel\WirelessCommon\LangResources\PLK\WiTrPLK.dll]  [Intel(R) Corporation, 12, 4, 0, 1]
        [C:\Program Files\Common Files\Intel\WirelessCommon\FrameworkPlugins\ConnMgr.dll]  [Intel(R) Corporation, 12.4.0.11]
        [C:\Program Files\Intel\WiFi\bin\LangResources\PLK\IntWAPLK.dll]  [Intel(R) Corporation, 12.4.0.11]
        [C:\Program Files\Common Files\Intel\WirelessCommon\TraceAPI.DLL]  [Intel(R) Corporation, 12, 4, 0, 2]
        [C:\Program Files\Intel\WiFi\bin\MurocApi.dll]  [Intel(R) Corporation, 12, 4, 0, 6]
        [C:\Program Files\Intel\WiFi\bin\IntStngs.dll]  [Intel(R) Corporation, 12, 4, 0, 0]
        [C:\Program Files\Intel\WiFi\bin\S24MUDLL.dll]  [Intel(R) Corporation, 12, 4, 0, 1]
        [C:\Program Files\Intel\WiFi\bin\PfMgrApi.dll]  [Intel(R) Corporation, 12, 4, 0, 2]
        [C:\Program Files\Intel\WiFi\bin\DbEngine.dll]  [Intel(R) Corporation, 12, 4, 0, 0]
        [C:\Program Files\Gadu-Gadu\ggwhook.dll]  [Gadu-Gadu S.A., 7,6,0,1578]
    [PID: 1284 / Ania][C:\Program Files\ATI Technologies\ATI.ACE\cli.exe]  [ATI Technologies Inc., 1.11.0.0]
        [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\fusion.dll]  [Microsoft Corporation, 1.1.4322.2032]
        [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll]  [Microsoft Corporation, 1.1.4322.2490]
        [c:\windows\microsoft.net\framework\v1.1.4322\mscorlib.dll]  [Microsoft Corporation, 1.1.4322.2490]
        [c:\windows\assembly\nativeimages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_98b1d0fc\mscorlib.dll]  [N/A, ]
        [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorsn.dll]  [Microsoft Corporation, 1.1.4322.2490]
        [C:\Program Files\Unlocker\UnlockerHook.dll]  [N/A, ]
        [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MSCORJIT.DLL]  [Microsoft Corporation, 1.1.4322.2490]
        [c:\windows\assembly\gac\system.windows.forms\1.0.5000.0__b77a5c561934e089\system.windows.forms.dll]  [Microsoft Corporation, 1.1.4322.2032]
        [c:\windows\assembly\nativeimages1_v1.1.4322\system.windows.forms\1.0.5000.0__b77a5c561934e089_7e067fc2\system.windows.forms.dll]  [N/A, ]
        [c:\program files\ati technologies\ati.ace\cli.implementation.dll]  [ATI Technologies Inc., 1.2.2084.75]
        [c:\program files\ati technologies\ati.ace\log.foundation.dll]  [ATI Technologies Inc., 1.2.2026.29944]
        [c:\program files\ati technologies\ati.ace\cli.foundation.dll]  [ATI Technologies Inc., 1.2.2026.29944]
        [c:\program files\ati technologies\ati.ace\log.foundation.service.dll]  [ATI Technologies Inc., 1.2.2084.74]
        [c:\program files\ati technologies\ati.ace\log.foundation.shared.dll]  [ATI Technologies Inc., 1.2.2026.29970]
        [c:\windows\assembly\gac\system\1.0.5000.0__b77a5c561934e089\system.dll]  [Microsoft Corporation, 1.1.4322.2490]
        [c:\windows\assembly\nativeimages1_v1.1.4322\system\1.0.5000.0__b77a5c561934e089_4da2976b\system.dll]  [N/A, ]
        [c:\program files\ati technologies\ati.ace\cli.foundation.xmanifestation.dll]  [ATI Technologies Inc., 1.2.2084.74]
        [c:\windows\assembly\gac\system.xml\1.0.5000.0__b77a5c561934e089\system.xml.dll]  [Microsoft Corporation, 1.1.4322.2032]
        [c:\windows\assembly\nativeimages1_v1.1.4322\system.xml\1.0.5000.0__b77a5c561934e089_7eeb3359\system.xml.dll]  [N/A, ]
        [c:\windows\assembly\gac\system.runtime.remoting\1.0.5000.0__b77a5c561934e089\system.runtime.remoting.dll]  [Microsoft Corporation, 1.1.4322.2032]
        [c:\program files\ati technologies\ati.ace\cli.component.runtime.dll]  [ATI Technologies Inc., 1.2.2084.75]
        [c:\program files\ati technologies\ati.ace\aem.foundation.dll]  [ATI Technologies Inc., 1.2.2026.29944]
        [c:\windows\assembly\gac\system.drawing\1.0.5000.0__b03f5f7f11d50a3a\system.drawing.dll]  [Microsoft Corporation, 1.1.4322.2032]
        [c:\windows\assembly\nativeimages1_v1.1.4322\system.drawing\1.0.5000.0__b03f5f7f11d50a3a_3b7a4ba1\system.drawing.dll]  [N/A, ]
        [c:\windows\assembly\gac\system.windows.forms.resources\1.0.5000.0_pl_b77a5c561934e089\system.windows.forms.resources.dll]  [Microsoft Corporation, 1.1.4322.573]
        [c:\program files\ati technologies\ati.ace\cli.caste.graphics.runtime.dll]  [ATI Technologies Inc., 1.2.2084.68]
        [c:\program files\ati technologies\ati.ace\cli.component.runtime.shared.dll]  [ATI Technologies Inc., 1.2.2026.29946]
        [c:\program files\ati technologies\ati.ace\cli.caste.graphics.shared.dll]  [ATI Technologies Inc., 1.2.2028.21076]
        [c:\program files\ati technologies\ati.ace\dem.foundation.dll]  [ATI Technologies Inc., 1.2.2026.29944]
        [c:\program files\ati technologies\ati.ace\dem.graphics.displaysmanager.shared.dll]  [ATI Technologies Inc., 1.2.2026.29945]
        [c:\program files\ati technologies\ati.ace\dem.graphics.demosinfo.dll]  [ATI Technologies Inc., 1.2.2026.29947]
        [c:\program files\ati technologies\ati.ace\dem.graphics.demosadapterinfo.dll]  [ATI Technologies Inc., 1.2.2026.29960]
        [c:\program files\ati technologies\ati.ace\dem.graphics.dematiadapterinfo.dll]  [ATI Technologies Inc., 1.2.2026.29953]
        [c:\program files\ati technologies\ati.ace\dem.graphics.demdriversettings.dll]  [ATI Technologies Inc., 1.2.2026.29947]
        [c:\windows\assembly\gac\mscorlib.resources\1.0.5000.0_pl_b77a5c561934e089\mscorlib.resources.dll]  [Microsoft Corporation, 1.1.4322.573]
        [c:\windows\assembly\gac\system.web\1.0.5000.0__b03f5f7f11d50a3a\system.web.dll]  [Microsoft Corporation, 1.1.4322.2490]
        [c:\program files\ati technologies\ati.ace\atidemgr.dll]  [ATI Technologies Inc., 1.2.2083.43054]
        [c:\windows\assembly\gac\system.management\1.0.5000.0__b03f5f7f11d50a3a\system.management.dll]  [Microsoft Corporation, 1.1.4322.2032]
        [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\WMINet_Utils.dll]  [Microsoft Corporation, 1.1.4322.2032]
        [c:\program files\ati technologies\ati.ace\dem.graphics.demosmodeinfo.dll]  [ATI Technologies Inc., 1.2.2026.29950]
        [c:\program files\ati technologies\ati.ace\dem.graphics.dematidisplaysmanagersettings.dll]  [ATI Technologies Inc., 1.2.2026.29951]
        [c:\program files\ati technologies\ati.ace\dem.graphics.demverylargedesktopsettings.dll]  [ATI Technologies Inc., 1.2.2026.30965]
        [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll]  [Microsoft Corporation, 1.1.4322.2490]
        [c:\program files\ati technologies\ati.ace\cli.aspect.multivpu.graphics.runtime.dll]  [ATI Technologies Inc., 1.2.2083.43149]
        [c:\program files\ati technologies\ati.ace\cli.aspect.multivpu.graphics.shared.dll]  [ATI Technologies Inc., 1.2.2082.25148]
        [c:\program files\ati technologies\ati.ace\cli.aspect.verylargedesktop.graphics.runtime.dll]  [ATI Technologies Inc., 1.2.2083.43111]
        [c:\program files\ati technologies\ati.ace\cli.aspect.verylargedesktop.graphics.shared.dll]  [ATI Technologies Inc., 1.2.2040.18973]
        [c:\program files\ati technologies\ati.ace\cli.aspect.radeon3d.graphics.runtime.dll]  [ATI Technologies Inc., 1.2.2083.43172]
        [c:\program files\ati technologies\ati.ace\cli.aspect.radeon3dlegacy.graphics.runtime.dll]  [ATI Technologies Inc., 1.2.2083.43167]
        [c:\program files\ati technologies\ati.ace\cli.aspect.radeon3dlegacy.graphics.shared.dll]  [ATI Technologies Inc., 1.2.2042.16922]
        [c:\program files\ati technologies\ati.ace\cli.aspect.displayscolour2.graphics.runtime.dll]  [ATI Technologies Inc., 1.2.2083.43124]
        [c:\program files\ati technologies\ati.ace\cli.aspect.displayscolour2.graphics.shared.dll]  [ATI Technologies Inc., 1.2.2026.29953]
        [c:\program files\ati technologies\ati.ace\dem.graphics.demdisplayscoloursettings.dll]  [ATI Technologies Inc., 1.2.2026.29948]
        [c:\program files\ati technologies\ati.ace\cli.aspect.displayscolour.graphics.runtime.dll]  [ATI Technologies Inc., 1.2.2084.13]
        [c:\program files\ati technologies\ati.ace\cli.aspect.displayscolour.graphics.shared.dll]  [ATI Technologies Inc., 1.2.2026.29947]
        [c:\program files\ati technologies\ati.ace\cli.aspect.mmvideo.graphics.runtime.dll]  [ATI Technologies Inc., 1.2.2083.43191]
        [c:\program files\ati technologies\ati.ace\cli.aspect.mmvideo.graphics.shared.dll]  [ATI Technologies Inc., 1.2.2026.29962]
        [c:\program files\ati technologies\ati.ace\dem.graphics.mmdeintlacingsettings.dll]  [ATI Technologies Inc., 1.2.2026.29968]
        [c:\program files\ati technologies\ati.ace\cli.aspect.videooverlay.graphics.runtime.dll]  [ATI Technologies Inc., 1.2.2083.43159]
        [c:\program files\ati technologies\ati.ace\cli.aspect.videooverlay.graphics.runtime.shared.dll]  [ATI Technologies Inc., 1.2.2026.29952]
        [c:\program files\ati technologies\ati.ace\dem.graphics.videooverlay.shared.dll]  [ATI Technologies Inc., 1.2.2026.29945]
        [c:\program files\ati technologies\ati.ace\cli.aspect.smartgart.graphics.runtime.dll]  [ATI Technologies Inc., 1.2.2083.43163]
        [c:\program files\ati technologies\ati.ace\dem.graphics.demsmartgartsettings.dll]  [ATI Technologies Inc., 1.2.2026.29951]
        [c:\program files\ati technologies\ati.ace\cli.aspect.vpurecover.graphics.runtime.dll]  [ATI Technologies Inc., 1.2.2083.43155]
        [c:\program files\ati technologies\ati.ace\cli.aspect.vpurecover.graphics.shared.dll]  [ATI Technologies Inc., 1.2.2026.29949]
        [c:\program files\ati technologies\ati.ace\cli.aspect.workstationconfig.graphics.runtime.dll]  [ATI Technologies Inc., 1.2.2083.43152]
        [c:\program files\ati technologies\ati.ace\cli.aspect.devicecrt.graphics.runtime.dll]  [ATI Technologies Inc., 1.2.2084.40]
        [c:\program files\ati technologies\ati.ace\cli.aspect.devicecrt2.graphics.runtime.dll]  [ATI Technologies Inc., 1.2.2083.43133]
        [c:\program files\ati technologies\ati.ace\cli.aspect.devicelcd.graphics.runtime.dll]  [ATI Technologies Inc., 1.2.2084.28]
        [c:\program files\ati technologies\ati.ace\cli.aspect.devicelcd.graphics.shared.dll]  [ATI Technologies Inc., 1.2.2026.29969]
        [c:\program files\ati technologies\ati.ace\cli.aspect.devicelcd2.graphics.runtime.dll]  [ATI Technologies Inc., 1.2.2083.43124]
        [c:\program files\ati technologies\ati.ace\cli.aspect.devicelcd2.graphics.shared.dll]  [ATI Technologies Inc., 1.2.2026.29949]
        [c:\program files\ati technologies\ati.ace\cli.aspect.devicecv.graphics.runtime.dll]  [ATI Technologies Inc., 1.2.2084.35]
        [c:\program files\ati technologies\ati.ace\cli.aspect.devicecv.graphics.shared.dll]  [ATI Technologies Inc., 1.2.2033.19041]
        [c:\program files\ati technologies\ati.ace\cli.aspect.customformats.graphics.shared.dll]  [ATI Technologies Inc., 1.2.2026.29945]
        [c:\program files\ati technologies\ati.ace\cli.aspect.devicecv2.graphics.runtime.dll]  [ATI Technologies Inc., 1.2.2083.43136]
        [c:\program files\ati technologies\ati.ace\cli.aspect.devicecv2.graphics.shared.dll]  [ATI Technologies Inc., 1.2.2033.19045]
        [c:\program files\ati technologies\ati.ace\cli.aspect.devicetv2.graphics.runtime.dll]  [ATI Technologies Inc., 1.2.2084.22]
        [c:\program files\ati technologies\ati.ace\cli.aspect.devicetv.graphics.runtime.dll]  [ATI Technologies Inc., 1.2.2084.17]
        [c:\program files\ati technologies\ati.ace\dem.graphics.demdevicetvsettings.dll]  [ATI Technologies Inc., 1.2.2026.29961]
        [c:\program files\ati technologies\ati.ace\cli.aspect.devicedfp.graphics.runtime.dll]  [ATI Technologies Inc., 1.2.2084.31]
        [c:\program files\ati technologies\ati.ace\cli.aspect.devicedfp.graphics.shared.dll]  [ATI Technologies Inc., 1.2.2026.29970]
        [c:\program files\ati technologies\ati.ace\cli.aspect.devicedfp2.graphics.runtime.dll]  [ATI Technologies Inc., 1.2.2083.43128]
        [c:\program files\ati technologies\ati.ace\cli.aspect.devicedfp2.graphics.shared.dll]  [ATI Technologies Inc., 1.2.2026.29949]
        [c:\program files\ati technologies\ati.ace\cli.aspect.overdrive3.graphics.runtime.dll]  [ATI Technologies Inc., 1.2.2083.43180]
        [c:\program files\ati technologies\ati.ace\cli.aspect.overdrive3.graphics.shared.dll]  [ATI Technologies Inc., 1.2.2026.29969]
        [c:\program files\ati technologies\ati.ace\cli.aspect.overdrive2.graphics.runtime.dll]  [ATI Technologies Inc., 1.2.2083.43188]
        [c:\program files\ati technologies\ati.ace\dem.graphics.demoverdrivesettings.dll]  [ATI Technologies Inc., 1.2.2026.29969]
        [c:\program files\ati technologies\ati.ace\cli.aspect.powerplay3.graphics.runtime.dll]  [ATI Technologies Inc., 1.2.2083.43176]
        [c:\program files\ati technologies\ati.ace\cli.aspect.powerplay3.graphics.shared.dll]  [ATI Technologies Inc., 1.2.2026.29951]
        [c:\program files\ati technologies\ati.ace\dem.graphics.dempowerplaysettings.dll]  [ATI Technologies Inc., 1.2.2026.29969]
        [c:\program files\ati technologies\ati.ace\cli.aspect.displaysoptions.graphics.runtime.dll]  [ATI Technologies Inc., 1.2.2084.4]
        [c:\program files\ati technologies\ati.ace\cli.aspect.integratedumaframebuffer.graphics.runtime.dll]  [ATI Technologies Inc., 1.2.2083.43196]
        [c:\program files\ati technologies\ati.ace\cli.aspect.infocentre.graphics.runtime.dll]  [ATI Technologies Inc., 1.2.2084.0]
        [c:\program files\ati technologies\ati.ace\cli.aspect.infocentre.graphics.shared.dll]  [ATI Technologies Inc., 1.2.2026.29953]
        [c:\program files\ati technologies\ati.ace\cli.aspect.hotkeyshandling.graphics.runtime.dll]  [ATI Technologies Inc., 1.2.2083.43141]
        [c:\program files\ati technologies\ati.ace\cli.aspect.hotkeyshandling.graphics.shared.dll]  [ATI Technologies Inc., 1.2.2036.20028]
        [c:\program files\ati technologies\ati.ace\dem.graphics.demmultivpusettings.dll]  [ATI Technologies Inc., 1.2.2032.14723]
        [c:\program files\ati technologies\ati.ace\cli.aspect.radeon3d.graphics.shared.dll]  [ATI Technologies Inc., 1.2.2049.17711]
        [c:\program files\ati technologies\ati.ace\dem.graphics.mmoverlaysettings.dll]  [ATI Technologies Inc., 1.2.2026.29967]
        [c:\windows\assembly\gac\system.resources\1.0.5000.0_pl_b77a5c561934e089\system.resources.dll]  [Microsoft Corporation, 1.1.4322.573]
        [c:\program files\ati technologies\ati.ace\dem.graphics.demvideotheatermodesettings.dll]  [ATI Technologies Inc., 1.2.2026.29967]
        [c:\program files\ati technologies\ati.ace\dem.graphics.demvideooverlaysettings.dll]  [ATI Technologies Inc., 1.2.2026.29950]
        [c:\program files\ati technologies\ati.ace\dem.graphics.demvpurecoverinfo.dll]  [ATI Technologies Inc., 1.2.2026.29968]
        [c:\program files\ati technologies\ati.ace\dem.graphics.workstationsettings.dll]  [ATI Technologies Inc., 1.2.2026.29960]
        [c:\program files\ati technologies\ati.ace\cli.aspect.deviceproperty.graphics.shared.dll]  [ATI Technologies Inc., 1.2.2026.29946]
        [c:\program files\ati technologies\ati.ace\dem.graphics.demdevicecrtsettings.dll]  [ATI Technologies Inc., 1.2.2026.29969]
        [c:\program files\ati technologies\ati.ace\dem.graphics.demdevicecommonsettings.dll]  [ATI Technologies Inc., 1.2.2026.29968]
        [c:\program files\ati technologies\ati.ace\cli.aspect.devicecrt.graphics.shared.dll]  [ATI Technologies Inc., 1.2.2026.29960]
        [c:\program files\ati technologies\ati.ace\cli.aspect.deviceproperty2.graphics.shared.dll]  [ATI Technologies Inc., 1.2.2026.29946]
        [c:\program files\ati technologies\ati.ace\dem.graphics.demdevicecommon2settings.dll]  [ATI Technologies Inc., 1.2.2026.29947]
        [c:\program files\ati technologies\ati.ace\dem.graphics.demdevicelcdsettings.dll]  [ATI Technologies Inc., 1.2.2026.29967]
        [c:\program files\ati technologies\ati.ace\dem.graphics.demdevicecomponentvideosettings.dll]  [ATI Technologies Inc., 1.2.2026.29946]
        [c:\program files\ati technologies\ati.ace\dem.graphics.demdevicetv2settings.dll]  [ATI Technologies Inc., 1.2.2026.29961]
        [c:\program files\ati technologies\ati.ace\cli.aspect.devicetv.graphics.shared.dll]  [ATI Technologies Inc., 1.2.2026.29970]
        [c:\program files\ati technologies\ati.ace\dem.graphics.demdevicedfpsettings.dll]  [ATI Technologies Inc., 1.2.2026.29968]
        [c:\program files\ati technologies\ati.ace\dem.graphics.demdevicedfp2settings.dll]  [ATI Technologies Inc., 1.2.2026.29948]
        [c:\program files\ati technologies\ati.ace\dem.graphics.demoverdrive3settings.dll]  [ATI Technologies Inc., 1.2.2026.29970]
        [c:\program files\ati technologies\ati.ace\dem.graphics.demdisplaysmanageroptionssettings.dll]  [ATI Technologies Inc., 1.2.2026.29952]
        [c:\program files\ati technologies\ati.ace\cli.aspect.displaysoptions.graphics.shared.dll]  [ATI Technologies Inc., 1.2.2026.29961]
        [c:\program files\ati technologies\ati.ace\dem.graphics.demumaframebuffersettings.dll]  [ATI Technologies Inc., 1.2.2026.29951]
        [c:\program files\ati technologies\ati.ace\apm.foundation.dll]  [ATI Technologies Inc., 1.2.2026.29959]
        [C:\Program Files\Gadu-Gadu\ggwhook.dll]  [Gadu-Gadu S.A., 7,6,0,1578]
    [PID: 1724 / Ania][C:\Program Files\Common Files\Java\Java Update\jusched.exe]  [Sun Microsystems, Inc., 2.0.6.1]
        [C:\Program Files\Unlocker\UnlockerHook.dll]  [N/A, ]
    [PID: 1992 / Ania][C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe]  [Malwarebytes Corporation, 1.51.0.0038]
        [C:\Program Files\Malwarebytes' Anti-Malware\mbam.dll]  [Malwarebytes Corporation, 1.51.0.0023]
        [C:\Program Files\Malwarebytes' Anti-Malware\mbamnet.dll]  [Malwarebytes Corporation, 1.51.2.0000]
        [C:\Program Files\Unlocker\UnlockerHook.dll]  [N/A, ]
        [C:\Program Files\Gadu-Gadu\ggwhook.dll]  [Gadu-Gadu S.A., 7,6,0,1578]
    [PID: 2104 / Ania][C:\WINDOWS\system32\ctfmon.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
        [C:\Program Files\Unlocker\UnlockerHook.dll]  [N/A, ]
        [C:\Program Files\Gadu-Gadu\ggwhook.dll]  [Gadu-Gadu S.A., 7,6,0,1578]
    [PID: 2184 / Ania][C:\Program Files\Microsoft ActiveSync\wcescomm.exe]  [Microsoft Corporation, 4.2.4876.0]
        [C:\Program Files\Unlocker\UnlockerHook.dll]  [N/A, ]
        [C:\Program Files\Microsoft ActiveSync\rapiproxystub.dll]  [N/A, ]
        [C:\Program Files\Gadu-Gadu\ggwhook.dll]  [Gadu-Gadu S.A., 7,6,0,1578]
    [PID: 2472 / Ania][C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe]  [ATI Technologies Inc., 1.11.0.0]
        [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\fusion.dll]  [Microsoft Corporation, 1.1.4322.2032]
        [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll]  [Microsoft Corporation, 1.1.4322.2490]
        [c:\windows\microsoft.net\framework\v1.1.4322\mscorlib.dll]  [Microsoft Corporation, 1.1.4322.2490]
        [c:\windows\assembly\nativeimages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_98b1d0fc\mscorlib.dll]  [N/A, ]
        [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorsn.dll]  [Microsoft Corporation, 1.1.4322.2490]
        [C:\Program Files\Unlocker\UnlockerHook.dll]  [N/A, ]
        [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MSCORJIT.DLL]  [Microsoft Corporation, 1.1.4322.2490]
        [c:\windows\assembly\gac\system.windows.forms\1.0.5000.0__b77a5c561934e089\system.windows.forms.dll]  [Microsoft Corporation, 1.1.4322.2032]
        [c:\windows\assembly\nativeimages1_v1.1.4322\system.windows.forms\1.0.5000.0__b77a5c561934e089_7e067fc2\system.windows.forms.dll]  [N/A, ]
        [c:\program files\ati technologies\ati.ace\cli.implementation.dll]  [ATI Technologies Inc., 1.2.2084.75]
        [c:\program files\ati technologies\ati.ace\log.foundation.dll]  [ATI Technologies Inc., 1.2.2026.29944]
        [c:\program files\ati technologies\ati.ace\cli.foundation.dll]  [ATI Technologies Inc., 1.2.2026.29944]
        [c:\program files\ati technologies\ati.ace\log.foundation.service.dll]  [ATI Technologies Inc., 1.2.2084.74]
        [c:\program files\ati technologies\ati.ace\log.foundation.shared.dll]  [ATI Technologies Inc., 1.2.2026.29970]
        [c:\windows\assembly\gac\system\1.0.5000.0__b77a5c561934e089\system.dll]  [Microsoft Corporation, 1.1.4322.2490]
        [c:\windows\assembly\nativeimages1_v1.1.4322\system\1.0.5000.0__b77a5c561934e089_4da2976b\system.dll]  [N/A, ]
        [c:\program files\ati technologies\ati.ace\cli.foundation.xmanifestation.dll]  [ATI Technologies Inc., 1.2.2084.74]
        [c:\windows\assembly\gac\system.xml\1.0.5000.0__b77a5c561934e089\system.xml.dll]  [Microsoft Corporation, 1.1.4322.2032]
        [c:\windows\assembly\nativeimages1_v1.1.4322\system.xml\1.0.5000.0__b77a5c561934e089_7eeb3359\system.xml.dll]  [N/A, ]
        [c:\windows\assembly\gac\system.runtime.remoting\1.0.5000.0__b77a5c561934e089\system.runtime.remoting.dll]  [Microsoft Corporation, 1.1.4322.2032]
        [c:\program files\ati technologies\ati.ace\cli.component.systemtray.dll]  [ATI Technologies Inc., 1.2.2084.50]
        [c:\program files\ati technologies\ati.ace\cli.caste.graphics.shared.dll]  [ATI Technologies Inc., 1.2.2028.21076]
        [c:\program files\ati technologies\ati.ace\dem.graphics.displaysmanager.shared.dll]  [ATI Technologies Inc., 1.2.2026.29945]
        [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\diasymreader.dll]  [Microsoft Corporation, 7.10.3052.4]
        [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll]  [Microsoft Corporation, 1.1.4322.2490]
        [c:\windows\assembly\gac\system.resources\1.0.5000.0_pl_b77a5c561934e089\system.resources.dll]  [Microsoft Corporation, 1.1.4322.573]
        [c:\windows\assembly\gac\mscorlib.resources\1.0.5000.0_pl_b77a5c561934e089\mscorlib.resources.dll]  [Microsoft Corporation, 1.1.4322.573]
        [c:\program files\ati technologies\ati.ace\cli.component.runtime.dll]  [ATI Technologies Inc., 1.2.2084.75]
        [c:\program files\ati technologies\ati.ace\apm.foundation.dll]  [ATI Technologies Inc., 1.2.2026.29959]
        [c:\windows\assembly\gac\system.drawing\1.0.5000.0__b03f5f7f11d50a3a\system.drawing.dll]  [Microsoft Corporation, 1.1.4322.2032]
        [c:\windows\assembly\nativeimages1_v1.1.4322\system.drawing\1.0.5000.0__b03f5f7f11d50a3a_3b7a4ba1\system.drawing.dll]  [N/A, ]
        [c:\windows\assembly\gac\system.web\1.0.5000.0__b03f5f7f11d50a3a\system.web.dll]  [Microsoft Corporation, 1.1.4322.2490]
        [C:\Program Files\Gadu-Gadu\ggwhook.dll]  [Gadu-Gadu S.A., 7,6,0,1578]
    [PID: 2584 / Ania][C:\PROGRA~1\MICROS~3\rapimgr.exe]  [Microsoft Corporation, 4.2.4876.0]
        [C:\PROGRA~1\MICROS~3\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
        [C:\Program Files\Unlocker\UnlockerHook.dll]  [N/A, ]
        [C:\Program Files\Microsoft ActiveSync\rapiproxystub.dll]  [N/A, ]
        [C:\Program Files\Gadu-Gadu\ggwhook.dll]  [Gadu-Gadu S.A., 7,6,0,1578]
    [PID: 2692 / SYSTEM][C:\WINDOWS\system32\wbem\wmiapsrv.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2108)]
    [PID: 2320 / Ania][C:\WINDOWS\system32\wbem\unsecapp.exe]  [(Verified) Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
        [C:\Program Files\Unlocker\UnlockerHook.dll]  [N/A, ]
        [C:\Program Files\Gadu-Gadu\ggwhook.dll]  [Gadu-Gadu S.A., 7,6,0,1578]
    [PID: 2944 / USŁUGA SIECIOWA][C:\WINDOWS\system32\wbem\wmiprvse.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_gdr.090206-1234)]
    [PID: 1376 / USŁUGA SIECIOWA][C:\WINDOWS\system32\wbem\wmiprvse.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_gdr.090206-1234)]
        [C:\Program Files\Intel\WiFi\bin\iWMSProv.dll]  [N/A, ]
        [C:\Program Files\Common Files\Intel\WirelessCommon\PsRegApi.dll]  [Intel(R) Corporation, 12, 4, 0, 0]
        [C:\Program Files\Common Files\Intel\WirelessCommon\TraceApi.dll]  [Intel(R) Corporation, 12, 4, 0, 2]
    [PID: 1096 / Ania][C:\Program Files\Gadu-Gadu\gg.exe]  [Gadu-Gadu S.A., 7,7,0,3746]
        [C:\Program Files\Gadu-Gadu\Crypto.dll]  [sms-express.com, 1, 0, 0, 0]
        [C:\Program Files\Gadu-Gadu\LIBEAY32.dll]  [The OpenSSL Project, http://www.openssl.org/, 0.9.8e]
        [C:\Program Files\Gadu-Gadu\MSVCR71.dll]  [Microsoft Corporation, 7.10.6030.0]
        [C:\Program Files\Gadu-Gadu\SSLEAY32.dll]  [The OpenSSL Project, http://www.openssl.org/, 0.9.8e]
        [C:\Program Files\Gadu-Gadu\ggwhook.dll]  [Gadu-Gadu S.A., 7,6,0,1578]
        [C:\Program Files\Gadu-Gadu\dbghelp.dll]  [Microsoft Corporation, 6.2.0013.1 (DbgBuild.030619-2209)]
        [C:\Program Files\Gadu-Gadu\libcurl.dll]  [N/A, ]
        [C:\Program Files\Gadu-Gadu\libssl32.dll]  [The OpenSSL Project, http://www.openssl.org/, 0.9.8e]
        [C:\Program Files\Gadu-Gadu\Lang.PL.dll]  [Gadu-Gadu S.A., 7,7,0,2976]
        [C:\Program Files\Unlocker\UnlockerHook.dll]  [N/A, ]
        [C:\Program Files\Gadu-Gadu\archives.dll]  [n0ne, 1, 0, 0, 2]
        [C:\Program Files\Gadu-Gadu\GGMedia.dll]  [Gadu-Gadu S.A., 7,6,0,3433]
        [C:\Program Files\Gadu-Gadu\libiax2.dll]  [N/A, ]
        [C:\Program Files\Gadu-Gadu\libjb.dll]  [N/A, ]
        [C:\WINDOWS\system32\Macromed\Flash\Flash11c.ocx]  [Adobe Systems, Inc., 11,0,1,152]
    [PID: 2392 / Ania][C:\Program Files\internet explorer\iexplore.exe]  [Microsoft Corporation, 7.00.6000.17103 (vista_gdr.110816-1000)]
        [C:\Program Files\Unlocker\UnlockerHook.dll]  [N/A, ]
        [C:\Program Files\Gadu-Gadu\ggwhook.dll]  [Gadu-Gadu S.A., 7,6,0,1578]
        [C:\WINDOWS\system32\Macromed\Flash\Flash11c.ocx]  [Adobe Systems, Inc., 11,0,1,152]
    [PID: 4468 / Ania][C:\Program Files\Skype\Phone\Skype.exe]  [Skype Technologies S.A., 5.0.0.105]
        [C:\WINDOWS\TEMP\logishrd\LVPrcInj01.dll]  [Logitech Inc., 12.10.1110.0]
        [C:\Program Files\Unlocker\UnlockerHook.dll]  [N/A, ]
        [C:\Program Files\Gadu-Gadu\ggwhook.dll]  [Gadu-Gadu S.A., 7,6,0,1578]
        [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll]  [Microsoft Corporation, 1.1.4322.2490]
        [C:\WINDOWS\system32\msdmo.dll]  [, ]
    [PID: 5980 / Ania][C:\Program Files\Skype\Plugin Manager\skypePM.exe]  [Skype Technologies, 3.0.0.5]
        [C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll]  [EasyBits Media AS, 3.0.0.91]
        [C:\Program Files\Unlocker\UnlockerHook.dll]  [N/A, ]
        [C:\Program Files\Gadu-Gadu\ggwhook.dll]  [Gadu-Gadu S.A., 7,6,0,1578]
        [C:\Documents and Settings\All Users\Dane aplikacji\Skype\Plugins\Plugins\F57B48ADF2224F088EDD1A2B9BAD84E8\Games\53F537B72987463CB06D78F5541A3239\skGamesUpdate.dll]  [EasyBits Software AS, 1.0.16.7]
    [PID: 4168 / Ania][C:\Program Files\internet explorer\iexplore.exe]  [Microsoft Corporation, 7.00.6000.17103 (vista_gdr.110816-1000)]
        [C:\Program Files\Unlocker\UnlockerHook.dll]  [N/A, ]
        [C:\Program Files\Gadu-Gadu\ggwhook.dll]  [Gadu-Gadu S.A., 7,6,0,1578]
        [C:\WINDOWS\system32\Macromed\Flash\Flash11c.ocx]  [Adobe Systems, Inc., 11,0,1,152]
        [C:\WINDOWS\system32\netprovcredman.dll]  [Intel(R) Corporation, 12, 4, 0, 0]
    [PID: 1740 / Ania][D:\SRE6cece668.EXE]  [Smallfrogs Studio, 2.8.4.1331]
        [C:\Program Files\Unlocker\UnlockerHook.dll]  [N/A, ]
        [C:\Program Files\Gadu-Gadu\ggwhook.dll]  [Gadu-Gadu S.A., 7,6,0,1578]
    
    ==================================
    File Associations
    .TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
    .EXE  OK. ["%1" %*]
    .COM  OK. ["%1" %*]
    .PIF  OK. ["%1" %*]
    .REG  OK. [regedit.exe "%1"]
    .BAT  OK. ["%1" %*]
    .SCR  OK. ["%1" /S]
    .CHM  OK. ["C:\WINDOWS\hh.exe" %1]
    .HLP  OK. [%SystemRoot%\system32\winhlp32.exe %1]
    .INI  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
    .INF  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
    .VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
    .JS   OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
    .LNK  OK. [{00021401-0000-0000-C000-000000000046}]
    
    ==================================
    Winsock Provider
    N/A
    
    ==================================
    Autorun.Inf
    N/A
    
    ==================================
    HOSTS File
    N/A
    
    ==================================
    Process Privileges Scan
    Special Privileges Enabled: SeLoadDriverPrivilege [PID = 1760, C:\PROGRAM FILES\INTEL\WIFI\BIN\S24EVMON.EXE]
    
    ==================================
    Scheduled Tasks
    [Enabled] GoogleUpdateTaskMachineUA.job
            C:\Program Files\Google\Update\GoogleUpdate.exe 
    [Enabled] GoogleUpdateTaskMachineCore.job
            C:\Program Files\Google\Update\GoogleUpdate.exe 
    
    ==================================
    Windows Security Update Check
    KB940157,  Usługa wyszukiwania systemu Windows 4.0 dla systemu Windows XP (KB940157) 
    KB928416,  Microsoft .NET Framework 3.0: pakiet językowy dla komputerów z procesorem x86 (KB928416) 
    KB909520,  Pakiet Podstawowy dostawca usług kryptograficznych dla kart inteligentnych firmy Microsoft: x86 (KB909520) 
    KB944036,  Internet Explorer 8 dla systemu Windows XP 
    KB968930,  Programy Windows PowerShell 2.0 i WinRM 2.0 dla systemów Windows XP i Windows Embedded (KB968930) 
    KB2492386,  Aktualizacja systemu Windows XP (KB2492386) 
    KB2533523,  Aktualizacja dla programu Microsoft .NET Framework 4 w systemach Windows XP, Windows Server 2003, Windows Vista, Windows 7 i Windows Server 2008 x86 (KB2533523) 
    KB2468871,  Aktualizacja dla programu Microsoft .NET Framework 4 w systemach Windows XP, Windows Server 2003, Windows Vista, Windows 7 i Windows Server 2008 x86 (KB2468871) 
    KB931125,  Aktualizacja certyfikatów glównych [październik 2011] (KB931125) 
    
    ==================================
    API HOOK
    N/A
    
    ==================================
    Hidden Process
    N/A
    
    ==================================
    Geändert von Petra (05.11.2011 um 15:39 Uhr) Grund: doppelte Code-Tags gelöscht

  9. #9
    Administrator Team-Mitglied Avatar von Petra
    Registriert seit
    03.05.2007
    Ort
    Nähe Düsseldorf
    Beiträge
    41.164

    AW: Windows XP

    Welche Version von Office ist installiert?


    ===== Punkt 1 =====

    Systemscan mit OTL

    Lade (falls noch nicht vorhanden) OTL von Oldtimer herunter und speichere es auf Deinem Desktop.
    • Doppelklick auf die OTL.exe
    • Vista- und Windows 7-User starten mit Rechtsklick auf das Programm-Icon und wählen "Als Administrator ausführen".
    • Oben findest Du ein Kästchen mit Ausgabe.
      Wähle bitte Standard-Ausgabe
    • Unter Extra-Registrierung wähle bitte Benutze SafeList.
    • Mache Häckchen bei LOP- und Purity-Prüfung.
    • Klicke nun auf Scan links oben.



    • Wenn der Scan beendet wurde werden zwei Logfiles erstellt.
      Du findest die Logfiles auf Deinem Desktop => OTL.txt und Extras.txt
    • Poste die Logfiles in Code-Tags hier in den Thread.



    Hier ist mir die extras.txt besonders wichtig!
    [°¿°] Ciao, Petra

    Neu hier? Bitte abarbeiten! | Malware-Bereinigung | Forenregeln
    Daten sichern! | Schulung | Kein Support per PN oder Mail! | Danke

  10. #10
    Einsteiger
    Registriert seit
    01.11.2011
    Beiträge
    10

    AW: Windows XP

    Hehe langsam verlor ich nicht nach dieser Reinigung wissen, wie Sie dieses Feld ist und was nicht. hehe

    Code:
    OTL Extras logfile created on: 2011-11-05 16:53:46 - Run 1
    OTL by OldTimer - Version 3.2.31.0     Folder = D:\
    Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
    Internet Explorer (Version = 7.0.5730.11)
    Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
     
    1.25 Gb Total Physical Memory | 0.44 Gb Available Physical Memory | 34.94% Memory free
    2.98 Gb Paging File | 2.28 Gb Available in Paging File | 76.73% Paging File free
    Paging file location(s): C:\pagefile.sys 1918 1918 [binary data]
     
    %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
    Drive C: | 19.53 Gb Total Space | 3.17 Gb Free Space | 16.23% Space Free | Partition Type: NTFS
    Drive D: | 36.35 Gb Total Space | 25.23 Gb Free Space | 69.41% Space Free | Partition Type: NTFS
     
    Computer Name: ANNA | User Name: Ania | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: Current user
    Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
     
    ========== Extra Registry (SafeList) ==========
     
     
    ========== File Associations ==========
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
    .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
    .url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
     
    ========== Shell Spawning ==========
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
    batfile [open] -- "%1" %*
    cmdfile [open] -- "%1" %*
    comfile [open] -- "%1" %*
    cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
    exefile [open] -- "%1" %*
    InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
    piffile [open] -- "%1" %*
    regfile [merge] -- Reg Error: Key error.
    scrfile [config] -- "%1"
    scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
    scrfile [open] -- "%1" /S
    txtfile [edit] -- Reg Error: Key error.
    Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
    Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
    Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
    Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
    Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
    Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft)
    Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft)
    Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
    Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
    Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
     
    ========== Security Center Settings ==========
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
    "FirstRunDisabled" = 1
    "AntiVirusDisableNotify" = 0
    "FirewallDisableNotify" = 0
    "UpdatesDisableNotify" = 0
    "AntiVirusOverride" = 0
    "FirewallOverride" = 0
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
     
    ========== System Restore Settings ==========
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
    "DisableSR" = 0
     
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
    "Start" = 0
     
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
    "Start" = 2
     
    ========== Firewall Settings ==========
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
     
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
    "EnableFirewall" = 0
     
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
    "26675:TCP" = 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
    "139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
    "445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
    "137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
    "138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
    "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
    "2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
     
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
    "EnableFirewall" = 0
    "DoNotAllowExceptions" = 0
    "DisableNotifications" = 0
     
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
    "23129:TCP" = 23129:TCP:*:Enabled:BitComet 23129 TCP
    "23129:UDP" = 23129:UDP:*:Enabled:BitComet 23129 UDP
    "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
    "2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
    "26675:TCP" = 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
    "8461:TCP" = 8461:TCP:*:Enabled:GoD High Port
    "8462:TCP" = 8462:TCP:*:Enabled:GoD Low Port
    "443:TCP" = 443:TCP:*:Disabled:ooVoo TCP port 443
    "443:UDP" = 443:UDP:*:Disabled:ooVoo UDP port 443
    "37674:TCP" = 37674:TCP:*:Disabled:ooVoo TCP port 37674
    "37674:UDP" = 37674:UDP:*:Disabled:ooVoo UDP port 37674
    "37675:UDP" = 37675:UDP:*:Disabled:ooVoo UDP port 37675
    "80:TCP" = 80:TCP:*:Enabled:HTTP
    "139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
    "445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
    "137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
    "138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
     
    ========== Authorized Applications List ==========
     
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
    "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger -- (Logitech Inc.)
     
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
    "C:\Program Files\Gadu-Gadu\gg.exe" = C:\Program Files\Gadu-Gadu\gg.exe:*:Enabled:Gadu-Gadu - program glowny -- (Gadu-Gadu S.A.)
    "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger -- (Logitech Inc.)
    "C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
    "C:\Program Files\Java\jre6\bin\javaw.exe" = C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
    "C:\WINDOWS\system32\mmc.exe" = C:\WINDOWS\system32\mmc.exe:*:Enabled:Microsoft Management Console -- (Microsoft Corporation)
    "D:\Drembox\DCC.exe" = D:\Drembox\DCC.exe:*:Enabled:Dreambox Control Center -- (BernyR)
    "C:\Program Files\Java\jre6\bin\java.exe" = C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
    "D:\Drembox\Nowy folder\DCC_E2.exe" = D:\Drembox\Nowy folder\DCC_E2.exe:*:Enabled:Dreambox Control Center -- (BernyR)
    "C:\Program Files\TeamViewer\Version6\TeamViewer.exe" = C:\Program Files\TeamViewer\Version6\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application -- (TeamViewer GmbH)
    "C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe" = C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service -- (TeamViewer GmbH)
     
     
    ========== HKEY_LOCAL_MACHINE Uninstall List ==========
     
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
    "{07D77970-B205-460C-84E4-263F30455597}" = Nokia Ovi Suite
    "{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
    "{0C826C5B-B131-423A-A229-C71B3CACCD6A}" = CDDRV_Installer
    "{12451AF7-EFF8-4B5B-8255-282D7CC7CAEE}" = OviMPlatform
    "{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
    "{212748BB-0DA5-46DE-82A1-403736DC9F27}" = MSVC80_x86
    "{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}" = TuneUp Utilities 2011
    "{26A24AE4-039D-4CA4-87B4-2F83216010FF}" = Java(TM) 6 Update 29
    "{2AFF2951-86B1-3C53-B34D-B440F11E7D0A}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - PLK
    "{2CC53A53-44F4-4667-8584-2FFC9ACB2242}" = Ovi Desktop Sync Engine
    "{2D99A593-C841-43A7-B7C9-D6F3AE70B756}" = Nokia Connectivity Cable Driver
    "{3101CB58-3482-4D21-AF1A-7057FC935355}" = KhalInstallWrapper
    "{3248F0A8-6813-11D6-A77B-00B0D0150000}" = J2SE Runtime Environment 5.0
    "{3248F0A8-6813-11D6-A77B-00B0D0150060}" = J2SE Runtime Environment 5.0 Update 6
    "{3248F0A8-6813-11D6-A77B-00B0D0150090}" = J2SE Runtime Environment 5.0 Update 9
    "{3248F0A8-6813-11D6-A77B-00B0D0150100}" = J2SE Runtime Environment 5.0 Update 10
    "{3248F0A8-6813-11D6-A77B-00B0D0150110}" = J2SE Runtime Environment 5.0 Update 11
    "{3248F0A8-6813-11D6-A77B-00B0D0160010}" = Java(TM) SE Runtime Environment 6 Update 1
    "{3248F0A8-6813-11D6-A77B-00B0D0160020}" = Java(TM) 6 Update 2
    "{3248F0A8-6813-11D6-A77B-00B0D0160030}" = Java(TM) 6 Update 3
    "{3248F0A8-6813-11D6-A77B-00B0D0160040}" = Java(TM) 6 Update 4
    "{3248F0A8-6813-11D6-A77B-00B0D0160050}" = Java(TM) 6 Update 5
    "{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java(TM) 6 Update 7
    "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
    "{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
    "{3EAAC5FD-E209-4856-8C49-D4EA40F85032}" = Mobile Connect
    "{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
    "{489C4FA2-F9C9-4FD4-BC9D-945218FFC6CD}" = ATI Catalyst Control Center
    "{48A25E19-D9AE-4BBE-9411-6F4C5D328B39}" = Skype™ Beta 5.0
    "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
    "{4CFB3821-1582-4F3B-BF8D-30986923B36B}" = Nokia Multimedia Factory
    "{5A0DDC27-88E5-3CAD-BC3D-28FFD05CA6B9}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - PLK
    "{64CB2553-C109-4132-AA51-1F421B515FD1}" = Microsoft .NET Framework 1.1 Polish Language Pack
    "{6BCBF099-BC3F-4832-BC0D-0AD07D4A5FE9}" = ESET Smart Security
    "{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
    "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
    "{85767617-E6B1-499E-8C1B-C92E2AAFF586}" = TuneUp Utilities Language Pack (pl-PL)
    "{8BCD7AE7-F713-4D50-BAB9-7839B9386870}" = ImageShack Uploader 2.2.0
    "{90110415-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
    "{92D64818-A58F-4EE0-8A00-A113EEAEE7A8}_is1" = Satkeynet-CCcamInfoPHP wersja 1.1
    "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    "{9EFDFBA8-9174-3C61-8645-28376C5CA994}" = Microsoft .NET Framework 3.5 Language Pack SP1 - plk
    "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
    "{A8F7FCEF-3CA6-4CE9-8FEA-8BB18F8686F0}" = Nokia Ovi Suite Software Updater
    "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
    "{AA721D14-CFE2-410E-B975-79FE5F82F99F}" = MSVCMergeModules
    "{AC76BA86-7AD7-1033-7B44-A83000000003}" = Adobe Reader 8.3.1
    "{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
    "{B208806F-A231-4FA0-AB3F-5C1B8979223E}" = Microsoft ActiveSync 4.0
    "{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
    "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
    "{C27BC2A2-30DD-4014-B22E-63EB0DB572F9}" = Logitech Webcam Software
    "{C373F7C4-05D2-4047-96D1-6AF30661C6AA}" = PC Connectivity Solution
    "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
    "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
    "{D3120436-1358-4253-9EB2-257FFE8CE1D9}" = Logitech SetPoint 5.20
    "{DD070C1A-30D4-4344-8F67-986468D0A65E}" = TuneUp Utilities Language Pack (pl-PL)
    "{EDDF99D9-9FE3-4871-A7DB-D1522C51EE9A}" = Microsoft .NET Compact Framework 2.0 SP2
    "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
    "{F22FD942-651D-4EE8-BD6F-7E0AF5E17625}" = Oprogramowanie Intel(R) PROSet/Wireless WiFi
    "{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
    "{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
    "0C5EDC3653FED5B121F464339EAC12534D253B25" = Windows Driver Package - Nokia Modem  (02/15/2007 3.1)
    "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
    "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
    "All ATI Software" = ATI - Software Uninstall Utility
    "ATI Display Driver" = ATI Display Driver
    "Creative PD0630" = Creative WebCam Live! Driver (1.01.01.0730)
    "DreamBoxEdit" = DreamBoxEdit -- The one and only settings editor for your Dreambox
    "Gadu-Gadu" = Gadu-Gadu 7.7
    "HijackThis" = HijackThis 2.0.2
    "IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
    "ie7" = Windows Internet Explorer 7
    "InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platforma Menedżera urządzeń
    "KLiteCodecPack_is1" = K-Lite Codec Pack 3.5.7 Full
    "legacyqcam_10.51" = Pakiet sterowników: Logitech Legacy USB Camera
    "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware wersja 1.51.2.1300
    "Microsoft .NET Framework 1.1  (1033)" = Microsoft .NET Framework 1.1
    "Microsoft .NET Framework 3.5 Language Pack SP1 - plk" = Pakiet językowy programu Microsoft .NET Framework 3.5 z dodatkiem SP1 — PLK
    "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
    "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
    "Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
    "Mozilla Firefox 6.0 (x86 pl)" = Mozilla Firefox 6.0 (x86 pl)
    "NeroMultiInstaller!UninstallKey" = Nero Suite
    "NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
    "Nokia Ovi Suite" = Nokia Ovi Suite
    "Nokia PC Suite" = Nokia PC Suite
    "Picasa 3" = Picasa 3
    "ProInst" = Intel PROSet Wireless
    "Registry First Aid_is1" = Registry First Aid
    "SLAMRNTV" = Smart Link 56K Voice Modem
    "SynTPDeinstKey" = Synaptics Pointing Device Driver
    "TeamViewer 6" = TeamViewer 6
    "Totalcmd" = Total Commander (Remove or Repair)
    "TuneUp Utilities 2011" = TuneUp Utilities 2011
    "Unlocker" = Unlocker 1.8.7
    "VLC media player" = VLC media player 1.1.6
    "Wdf01009" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
    "Winamp" = Winamp
    "Windows Media Format Runtime" = Windows Media Format 11 runtime
    "Windows Media Player" = Windows Media Player 11
    "WinRAR archiver" = Archiwizator WinRAR
    "XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
    "yowindow" = YoWindow
     
    ========== Last 10 Event Log Errors ==========
     
    [ Application Events ]
    Error - 2011-10-26 08:32:42 | Computer Name = ANNA | Source = MsiInstaller | ID = 11500
    Description = Product: Java(TM) 6 Update 29 -- Error 1500.Another installation is
     in progress. You must complete that installation before continuing this one.
     
    Error - 2011-10-26 08:32:44 | Computer Name = ANNA | Source = MsiInstaller | ID = 11500
    Description = Product: Java(TM) 6 Update 29 -- Error 1500.Another installation is
     in progress. You must complete that installation before continuing this one.
     
    Error - 2011-10-26 14:06:57 | Computer Name = ANNA | Source = Application Error | ID = 1000
    Description = Aplikacja powodująca błąd skype.exe, wersja 5.0.0.105, moduł powodujący
     błąd skype.exe, wersja 5.0.0.105, adres błędu 0x0052e6df.
     
    Error - 2011-10-26 14:07:16 | Computer Name = ANNA | Source = LoadPerf | ID = 3012
    Description = Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy
       proces Performance dostawcę licznika rozszerzeń. Wartość BaseIndex z rejestru   wydajności
     to pierwszy wpis DWORD w sekcji danych (Data, wartość LastCounter  to drugi wpis 
    DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data.
     
    Error - 2011-10-26 14:07:16 | Computer Name = ANNA | Source = LoadPerf | ID = 3012
    Description = Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy
       proces Performance dostawcę licznika rozszerzeń. Wartość BaseIndex z rejestru   wydajności
     to pierwszy wpis DWORD w sekcji danych (Data, wartość LastCounter  to drugi wpis 
    DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data.
     
    Error - 2011-10-26 14:07:16 | Computer Name = ANNA | Source = LoadPerf | ID = 3011
    Description = Nie można usunąć z pamięci ciągów licznika wydajności dla usługi outlook
     (outlook).   Kod błędu to pierwszy wpis DWORD w sekcji danych (Data).
     
    Error - 2011-10-26 16:12:34 | Computer Name = ANNA | Source = Application Error | ID = 1000
    Description = Aplikacja powodująca błąd iexplore.exe, wersja 7.0.6000.17103, moduł
     powodujący błąd mshtml.dll, wersja 7.0.6000.17104, adres błędu 0x000b1ce6.
     
    Error - 2011-10-27 14:47:52 | Computer Name = ANNA | Source = crypt32 | ID = 131083
    Description = Nie można wyodrębnić głównej listy innych firm z pliku cab automatycznej
     aktualizacji z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>,
     wystąpił błąd: Nieprawidłowe dane.  
     
    Error - 2011-11-02 15:36:15 | Computer Name = ANNA | Source = Application Error | ID = 1000
    Description = Aplikacja powodująca błąd iexplore.exe, wersja 7.0.6000.17103, moduł
     powodujący błąd jvm.dll, wersja 20.4.0.2, adres błędu 0x0005e4e2.
     
    Error - 2011-11-04 11:45:14 | Computer Name = ANNA | Source = MsiInstaller | ID = 11905
    Description = Product: Diskeeper 2009 Pro Premier -- Error 1905.Module C:\Program
     Files\Common Files\Diskeeper Corporation\MJS\MJSCR.dll failed to unregister.  HRESULT
     -2147220472.  Contact your support personnel.
     
    [ System Events ]
    Error - 2011-11-04 15:25:03 | Computer Name = ANNA | Source = Service Control Manager | ID = 7000
    Description = Nie można uruchomić usługi IC-Prog Driver z powodu następującego błędu:
       %%2
     
    Error - 2011-11-04 15:25:03 | Computer Name = ANNA | Source = Service Control Manager | ID = 7009
    Description = Limit czasu (30000 milisekund) podczas oczekiwania na połączenie się
     z usługą Usługa Google Update (gupdate).
     
    Error - 2011-11-04 15:25:03 | Computer Name = ANNA | Source = Service Control Manager | ID = 7000
    Description = Nie można uruchomić usługi Usługa Google Update (gupdate) z powodu
     następującego błędu:   %%1053
     
    Error - 2011-11-04 15:25:03 | Computer Name = ANNA | Source = Service Control Manager | ID = 7000
    Description = Nie można uruchomić usługi ioperm support for Cygwin driver z powodu
     następującego błędu:   %%3
     
    Error - 2011-11-05 10:56:17 | Computer Name = ANNA | Source = Service Control Manager | ID = 7000
    Description = Nie można uruchomić usługi Eset Trial Reset z powodu następującego
     błędu:   %%3
     
    Error - 2011-11-05 10:56:17 | Computer Name = ANNA | Source = Service Control Manager | ID = 7000
    Description = Nie można uruchomić usługi cpudriver z powodu następującego błędu:
       %%3
     
    Error - 2011-11-05 10:56:17 | Computer Name = ANNA | Source = Service Control Manager | ID = 7000
    Description = Nie można uruchomić usługi IC-Prog Driver z powodu następującego błędu:
       %%2
     
    Error - 2011-11-05 10:56:17 | Computer Name = ANNA | Source = Service Control Manager | ID = 7009
    Description = Limit czasu (30000 milisekund) podczas oczekiwania na połączenie się
     z usługą Usługa Google Update (gupdate).
     
    Error - 2011-11-05 10:56:17 | Computer Name = ANNA | Source = Service Control Manager | ID = 7000
    Description = Nie można uruchomić usługi Usługa Google Update (gupdate) z powodu
     następującego błędu:   %%1053
     
    Error - 2011-11-05 10:56:17 | Computer Name = ANNA | Source = Service Control Manager | ID = 7000
    Description = Nie można uruchomić usługi ioperm support for Cygwin driver z powodu
     następującego błędu:   %%3
     
     
    < End of report >


    Code:
    OTL logfile created on: 2011-11-05 16:53:46 - Run 1
    OTL by OldTimer - Version 3.2.31.0     Folder = D:\
    Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
    Internet Explorer (Version = 7.0.5730.11)
    Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
     
    1.25 Gb Total Physical Memory | 0.44 Gb Available Physical Memory | 34.94% Memory free
    2.98 Gb Paging File | 2.28 Gb Available in Paging File | 76.73% Paging File free
    Paging file location(s): C:\pagefile.sys 1918 1918 [binary data]
     
    %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
    Drive C: | 19.53 Gb Total Space | 3.17 Gb Free Space | 16.23% Space Free | Partition Type: NTFS
    Drive D: | 36.35 Gb Total Space | 25.23 Gb Free Space | 69.41% Space Free | Partition Type: NTFS
     
    Computer Name: ANNA | User Name: Ania | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: Current user
    Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
     
    ========== Processes (SafeList) ==========
     
    PRC - [2011-11-05 16:50:43 | 000,584,192 | ---- | M] (OldTimer Tools) -- D:\OTL.exe
    PRC - [2011-08-31 17:00:48 | 000,449,608 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
    PRC - [2011-08-31 17:00:48 | 000,366,152 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
    PRC - [2011-06-14 14:51:20 | 000,671,552 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe
    PRC - [2011-06-14 14:49:04 | 001,524,544 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe
    PRC - [2010-04-07 21:07:24 | 000,810,120 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe
    PRC - [2010-04-07 21:07:04 | 002,145,000 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\egui.exe
    PRC - [2010-03-09 03:52:49 | 000,015,872 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerAssistant.exe
    PRC - [2009-10-07 01:47:34 | 000,154,136 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
    PRC - [2009-02-27 06:54:22 | 000,870,672 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe
    PRC - [2009-02-27 06:22:10 | 001,368,064 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\WiFi\bin\ZCfgSvc.exe
    PRC - [2009-02-27 05:55:20 | 000,909,312 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\WiFi\bin\S24EvMon.exe
    PRC - [2009-02-27 05:40:52 | 001,202,448 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
    PRC - [2009-02-27 05:38:38 | 000,473,360 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
    PRC - [2008-09-24 14:50:46 | 000,052,888 | ---- | M] () -- C:\Program Files\VIA\RAID\vialogsv.exe
    PRC - [2008-08-19 12:26:44 | 000,077,824 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE
    PRC - [2008-05-18 08:00:33 | 000,045,056 | ---- | M] () -- C:\WINDOWS\system32\UTSCSI.EXE
    PRC - [2008-04-14 18:21:16 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
    PRC - [2008-03-20 11:04:46 | 002,127,296 | ---- | M] (Gadu-Gadu S.A.) -- C:\Program Files\Gadu-Gadu\gg.exe
    PRC - [2005-08-12 14:43:58 | 000,045,056 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
    PRC - [2005-03-18 14:35:46 | 000,098,393 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
    PRC - [2005-02-07 17:42:26 | 000,057,344 | ---- | M] ( ) -- C:\WINDOWS\system32\slserv.exe
     
     
    ========== Modules (No Company Name) ==========
     
    MOD - [2011-10-11 19:43:41 | 003,391,488 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_98b1d0fc\mscorlib.dll
    MOD - [2011-10-11 19:43:35 | 000,835,584 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system.drawing\1.0.5000.0__b03f5f7f11d50a3a_3b7a4ba1\system.drawing.dll
    MOD - [2011-10-11 19:43:24 | 002,088,960 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system.xml\1.0.5000.0__b77a5c561934e089_7eeb3359\system.xml.dll
    MOD - [2011-10-11 19:43:14 | 003,018,752 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system.windows.forms\1.0.5000.0__b77a5c561934e089_7e067fc2\system.windows.forms.dll
    MOD - [2011-10-11 19:42:52 | 001,966,080 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system\1.0.5000.0__b77a5c561934e089_4da2976b\system.dll
    MOD - [2011-10-11 19:42:41 | 001,265,664 | ---- | M] () -- c:\windows\assembly\gac\system.web\1.0.5000.0__b03f5f7f11d50a3a\system.web.dll
    MOD - [2011-10-11 19:42:41 | 001,232,896 | ---- | M] () -- c:\windows\assembly\gac\system\1.0.5000.0__b77a5c561934e089\system.dll
    MOD - [2010-03-09 03:52:49 | 000,015,872 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerAssistant.exe
    MOD - [2009-02-27 05:51:14 | 000,200,704 | ---- | M] () -- C:\Program Files\Intel\WiFi\bin\iWMSProv.dll
    MOD - [2009-02-06 09:50:50 | 000,196,608 | ---- | M] () -- C:\Program Files\VIA\RAID\drvInterface.dll
    MOD - [2009-02-05 08:24:14 | 000,581,632 | ---- | M] () -- C:\Program Files\VIA\RAID\Language.dll
    MOD - [2008-09-24 14:50:46 | 000,052,888 | ---- | M] () -- C:\Program Files\VIA\RAID\vialogsv.exe
    MOD - [2008-05-18 08:00:33 | 000,045,056 | ---- | M] () -- C:\WINDOWS\system32\UTSCSI.EXE
    MOD - [2008-05-02 05:15:35 | 000,004,608 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerHook.dll
    MOD - [2008-04-14 18:20:37 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
    MOD - [2008-03-20 10:17:48 | 000,106,496 | ---- | M] () -- C:\Program Files\Gadu-Gadu\libiax2.dll
    MOD - [2008-03-20 10:17:44 | 000,061,440 | ---- | M] () -- C:\Program Files\Gadu-Gadu\libjb.dll
    MOD - [2007-10-25 12:51:16 | 000,198,656 | ---- | M] () -- C:\Program Files\Gadu-Gadu\libcurl.dll
    MOD - [2007-08-13 20:37:28 | 000,372,736 | ---- | M] () -- c:\windows\assembly\gac\system.management\1.0.5000.0__b03f5f7f11d50a3a\system.management.dll
    MOD - [2007-08-13 20:37:27 | 001,339,392 | ---- | M] () -- c:\windows\assembly\gac\system.xml\1.0.5000.0__b77a5c561934e089\system.xml.dll
    MOD - [2007-08-13 20:37:26 | 000,323,584 | ---- | M] () -- c:\windows\assembly\gac\system.runtime.remoting\1.0.5000.0__b77a5c561934e089\system.runtime.remoting.dll
    MOD - [2007-08-13 20:37:25 | 000,466,944 | ---- | M] () -- c:\windows\assembly\gac\system.drawing\1.0.5000.0__b03f5f7f11d50a3a\system.drawing.dll
    MOD - [2007-08-13 20:37:24 | 002,052,096 | ---- | M] () -- c:\windows\assembly\gac\system.windows.forms\1.0.5000.0__b77a5c561934e089\system.windows.forms.dll
    MOD - [2006-06-27 00:51:54 | 000,017,704 | ---- | M] () -- C:\Program Files\Microsoft ActiveSync\rapiproxystub.dll
    MOD - [2006-05-27 07:30:25 | 000,237,568 | ---- | M] () -- c:\windows\assembly\gac\mscorlib.resources\1.0.5000.0_pl_b77a5c561934e089\mscorlib.resources.dll
    MOD - [2006-05-27 07:30:25 | 000,180,224 | ---- | M] () -- c:\windows\assembly\gac\system.windows.forms.resources\1.0.5000.0_pl_b77a5c561934e089\system.windows.forms.resources.dll
    MOD - [2006-05-27 07:30:25 | 000,081,920 | ---- | M] () -- c:\windows\assembly\gac\system.resources\1.0.5000.0_pl_b77a5c561934e089\system.resources.dll
    MOD - [2002-05-03 15:40:32 | 000,094,274 | ---- | M] () -- C:\WINDOWS\system32\HPBHEALR.DLL
     
     
    ========== Win32 Services (SafeList) ==========
     
    SRV - File not found [Auto | Stopped] --  -- (CVPND)
    SRV - File not found [Auto | Stopped] --  -- (.EsetTrialReset)
    SRV - [2011-08-31 17:00:48 | 000,366,152 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
    SRV - [2011-06-14 14:49:04 | 001,524,544 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc)
    SRV - [2011-06-14 14:44:40 | 000,029,504 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
    SRV - [2011-06-08 12:02:00 | 000,633,856 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
    SRV - [2010-04-07 21:10:38 | 000,033,560 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe -- (EhttpSrv)
    SRV - [2010-04-07 21:07:24 | 000,810,120 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe -- (ekrn)
    SRV - [2009-10-07 01:47:34 | 000,154,136 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)
    SRV - [2009-02-27 06:54:22 | 000,870,672 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng) Intel(R)
    SRV - [2009-02-27 05:55:20 | 000,909,312 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\S24EvMon.exe -- (S24EventMonitor) Intel(R)
    SRV - [2009-02-27 05:38:38 | 000,473,360 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc) Intel(R)
    SRV - [2008-09-24 14:50:46 | 000,052,888 | ---- | M] () [Auto | Running] -- C:\Program Files\VIA\RAID\vialogsv.exe -- (VRAID Log Service)
    SRV - [2008-05-18 08:00:33 | 000,045,056 | ---- | M] () [Auto | Running] -- C:\WINDOWS\system32\UTSCSI.EXE -- (UTSCSI)
    SRV - [2008-05-02 01:42:06 | 000,121,360 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe -- (LBTServ)
    SRV - [2005-02-07 17:42:26 | 000,057,344 | ---- | M] ( ) [Auto | Running] -- C:\WINDOWS\System32\slserv.exe -- (SLService)
     
     
    ========== Driver Services (SafeList) ==========
     
    DRV - [2011-08-31 17:00:50 | 000,022,216 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
    DRV - [2011-06-03 15:33:49 | 000,130,432 | ---- | M] (Realtek Semiconductor Corporation                           ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtnicxp.sys -- (RTL8023xp)
    DRV - [2011-05-18 09:12:38 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
    DRV - [2011-05-18 09:12:36 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
    DRV - [2011-05-18 09:12:32 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
    DRV - [2011-05-18 09:12:28 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
    DRV - [2011-05-18 09:09:48 | 000,137,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdnsu.sys -- (nmwcdnsu)
    DRV - [2011-05-18 09:09:48 | 000,008,576 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdnsuc.sys -- (nmwcdnsuc)
    DRV - [2011-02-10 09:22:58 | 000,010,064 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)
    DRV - [2010-04-07 21:08:08 | 000,055,232 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdi.sys -- (epfwtdi)
    DRV - [2010-04-07 21:08:06 | 000,032,584 | ---- | M] (ESET) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\epfwndis.sys -- (Epfwndis)
    DRV - [2010-04-07 21:08:04 | 000,134,488 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\epfw.sys -- (epfw)
    DRV - [2010-04-07 21:07:08 | 000,114,984 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)
    DRV - [2010-04-07 21:03:44 | 000,139,192 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
    DRV - [2009-10-07 01:46:36 | 000,025,752 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVPr2Mon.sys -- (LVPr2Mon)
    DRV - [2009-06-17 09:56:18 | 000,037,392 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt)
    DRV - [2009-06-17 09:56:06 | 000,035,472 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt)
    DRV - [2009-06-17 09:55:34 | 000,010,384 | ---- | M] (Logitech, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\LBeepKE.sys -- (LBeepKE)
    DRV - [2009-06-16 17:15:52 | 005,095,936 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
    DRV - [2009-02-25 23:58:57 | 003,565,568 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
    DRV - [2008-08-26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
    DRV - [2008-08-13 16:23:56 | 000,011,904 | ---- | M] (Intel Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\s24trans.sys -- (s24trans)
    DRV - [2008-01-07 13:36:16 | 002,216,064 | R--- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\w29n51.sys -- (w29n51) Sterownik karty Intel(R)
    DRV - [2007-10-14 08:07:18 | 000,081,408 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\SSHDRV86.sys -- (SSHDRV86)
    DRV - [2007-04-20 09:40:34 | 000,100,992 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbmdm.sys -- (hwdatacard)
    DRV - [2007-02-03 19:32:58 | 000,022,560 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lvuvcflt.sys -- (FilterService)
    DRV - [2007-02-03 19:32:45 | 001,939,360 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lvuvc.sys -- (LVUVC) QuickCam for Notebooks Deluxe(UVC)
    DRV - [2007-02-03 19:32:34 | 000,041,504 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LVUSBSta.sys -- (LVUSBSta)
    DRV - [2007-02-03 19:30:57 | 001,507,232 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lvpopflt.sys -- (lvpopflt)
    DRV - [2007-01-23 15:45:00 | 000,078,864 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LMouKE.Sys -- (LMouKE)
    DRV - [2007-01-23 15:44:00 | 000,062,992 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\L8042mou.Sys -- (L8042mou)
    DRV - [2007-01-23 15:44:00 | 000,020,496 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\L8042Kbd.sys -- (L8042Kbd)
    DRV - [2006-10-31 06:00:00 | 000,007,888 | ---- | M] (C. Ghisler & Co.) [Kernel | On_Demand | Stopped] -- C:\totalcmd\CGLPTNT.SYS -- (cglptnt)
    DRV - [2006-08-17 20:19:33 | 000,010,345 | ---- | M] (Applied Networking Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
    DRV - [2006-07-08 16:30:34 | 000,642,560 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
    DRV - [2006-05-10 08:56:54 | 000,027,264 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LHidKE.Sys -- (LHidKe)
    DRV - [2006-05-10 08:56:26 | 000,036,736 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LHidUsbK.sys -- (LHidUsbK)
    DRV - [2005-06-10 18:58:16 | 000,298,571 | ---- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\CVPNDRVA.sys -- (CVPNDRVA)
    DRV - [2005-05-17 03:51:34 | 000,005,315 | ---- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\CVirtA.sys -- (CVirtA)
    DRV - [2005-02-07 17:33:50 | 000,230,448 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SLDRV\slazldrv.sys -- (Slazldrv)
    DRV - [2005-02-07 17:14:40 | 000,014,520 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\SLDRV\RecAgent.sys -- (RecAgent)
    DRV - [2005-02-07 17:12:04 | 000,229,720 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SLDRV\mtlmnt5.sys -- (Mtlmnt5)
    DRV - [2005-02-07 17:07:04 | 000,101,136 | ---- | M] ( ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SLDRV\slnthal.sys -- (SlNtHal)
    DRV - [2005-02-07 17:05:28 | 001,396,048 | ---- | M] ( ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SLDRV\mtlstrm.sys -- (Mtlstrm)
    DRV - [2005-02-07 16:55:56 | 000,013,216 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SLDRV\slwdmsup.sys -- (SlWdmSup)
    DRV - [2005-01-26 03:22:20 | 000,280,344 | ---- | M] (Zone Labs LLC) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\vsdatant.sys -- (vsdatant)
    DRV - [2004-11-03 11:07:24 | 000,146,888 | ---- | M] (Deterministic Networks, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\dne2000.sys -- (DNE)
    DRV - [2004-10-27 14:21:30 | 000,145,920 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Hdaudio.sys -- (HdAudAddService)
    DRV - [2004-07-30 09:55:48 | 000,091,830 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\P0630Vid.sys -- (P0630VID)
    DRV - [2003-02-19 14:04:38 | 000,041,344 | ---- | M] (Prolific Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ser2pl.sys -- (Ser2pl)
    DRV - [2000-11-28 20:47:16 | 000,004,256 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\UserPort.sys -- (UserPort)
     
     
    ========== Standard Registry (SafeList) ==========
     
     
    ========== Internet Explorer ==========
     
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
     
    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Yahoo! Search
    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
    IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
    IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" =  127.0.0.1 127.0.0.1
     
    ========== FireFox ==========
     
    FF - prefs.js..browser.search.defaultengine: "Ask.com"
    FF - prefs.js..browser.search.defaultenginename: "Ask.com"
    FF - prefs.js..browser.search.defaultthis.engineName: "Softonic Deutsch Customized Web Search"
    FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT1351351&SearchSource=3&q={searchTerms}"
    FF - prefs.js..browser.search.order.1: "Ask.com"
    FF - prefs.js..browser.search.order.2: "Yahoo"
    FF - prefs.js..browser.search.param.yahoo-fr: "megaup"
    FF - prefs.js..browser.search.param.yahoo-fr-cjkt: "megaup"
    FF - prefs.js..browser.search.selectedEngine: "Google"
    FF - prefs.js..browser.search.useDBForOrder: true
    FF - prefs.js..browser.startup.homepage: "http://www.google.pl/"
    FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
    FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
    FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
    FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
    FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
    FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
    FF - prefs.js..extensions.enabledItems: toolbar@ask.com:3.12.2.100006
    FF - prefs.js..extensions.enabledItems: {1FD91A9C-410C-4090-BBCC-55D3450EF433}:1.0
    FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26
     
     
    FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
    FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Picasa2\npPicasa3.dll (Google, Inc.)
    FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
    FF - HKLM\Software\MozillaPlugins\@macromedia.com/FlashPlayer8: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll File not found
    FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll File not found
    FF - HKCU\Software\MozillaPlugins\@macromedia.com/FlashPlayer8: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
     
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\bkmrksync@nokia.com: C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ [2011-04-12 20:55:53 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-08-29 20:22:42 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-10-26 13:19:19 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2011-02-04 17:44:15 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\{CCB7D94B-CA92-4E3F-B79D-ADE0F07ADC74}: C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Thunderbird Connector\ThunderbirdExtension\ [2011-09-24 19:46:59 | 000,000,000 | ---D | M]
     
    [2008-07-10 11:35:43 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Extensions
    [2011-09-30 15:31:17 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Firefox\Profiles\7v77w59g.default\extensions
    [2010-08-26 10:28:43 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Firefox\Profiles\7v77w59g.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
    [2011-09-30 15:31:17 | 000,000,000 | ---D | M] (Softonic Deutsch Community Toolbar) -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Firefox\Profiles\7v77w59g.default\extensions\{8dbb6d8e-e4a6-4e3b-9753-af78b226441c}
    [2011-06-23 14:40:09 | 000,000,000 | ---D | M] (Searchqu Toolbar) -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Firefox\Profiles\7v77w59g.default\extensions\{99079a25-328f-4bd4-be04-00955acaa0a7}
    [2008-04-22 20:02:56 | 000,000,000 | ---D | M] (Megaupload Toolbar) -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Firefox\Profiles\7v77w59g.default\extensions\{991A772A-BA13-4c1d-A9EF-F897F31DEC7D}
    [2011-09-23 19:17:40 | 000,002,569 | ---- | M] () -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Firefox\Profiles\7v77w59g.default\searchplugins\askcom.xml
    [2009-10-06 16:03:36 | 000,000,894 | ---- | M] () -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Firefox\Profiles\7v77w59g.default\searchplugins\conduit.xml
    [2008-02-16 21:48:21 | 000,001,832 | ---- | M] () -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Firefox\Profiles\7v77w59g.default\searchplugins\LiveSearch.xml
    [2011-02-21 19:46:55 | 000,002,029 | ---- | M] () -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Firefox\Profiles\7v77w59g.default\searchplugins\MyStart Search.xml
    [2011-06-23 12:58:06 | 000,002,501 | ---- | M] () -- C:\Documents and Settings\Ania\Dane aplikacji\Mozilla\Firefox\Profiles\7v77w59g.default\searchplugins\SearchResults.xml
    [2011-10-26 13:49:46 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
    [2010-05-06 15:23:31 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
    [2010-08-20 11:42:49 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
    [2010-11-06 16:13:07 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
    [2011-01-06 16:12:28 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
    [2011-03-05 20:34:22 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
    [2011-07-05 18:57:42 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
    [2011-10-26 13:49:46 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}
    [2008-12-01 20:17:18 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
    [2011-08-12 07:32:21 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
    [2011-10-03 04:06:04 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
    [2011-08-12 04:51:25 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
    [2011-08-12 04:51:25 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
    [2011-08-12 04:51:25 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
    [2011-08-12 04:51:25 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
    [2011-06-23 12:58:06 | 000,002,501 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\SearchResults.xml
    [2011-08-12 04:51:25 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
    [2011-08-12 04:51:25 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml
     
    ========== Chrome  ==========
     
    CHR - default_search_provider: Yahoo! Search ()
    CHR - default_search_provider: search_url = http://search.yahoo.com/search?ei=ISO-8859-1&fr=megaup&q={searchTerms}
    CHR - default_search_provider: suggest_url = 
     
    O1 HOSTS File: ([2011-10-31 13:08:26 | 000,000,039 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
    O3 - HKLM\..\Toolbar: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found.
    O4 - HKLM..\Run: [AlcWzrd] C:\WINDOWS\ALCWZRD.EXE (RealTek Semicoductor Corp.)
    O4 - HKLM..\Run: [ATICCC] C:\Program Files\ATI Technologies\ATI.ACE\cli.exe (ATI Technologies Inc.)
    O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
    O4 - HKLM..\Run: [IntelWireless] C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe (Intel(R) Corporation)
    O4 - HKLM..\Run: [IntelZeroConfig] C:\Program Files\Intel\WiFi\bin\ZCfgSvc.exe (Intel(R) Corporation)
    O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found
    O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
    O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
    O4 - HKLM..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe (Synaptics, Inc.)
    O4 - HKLM..\Run: [UnlockerAssistant] C:\Program Files\Unlocker\UnlockerAssistant.exe ()
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
    O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
    O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
    O8 - Extra context menu item: &Download All using 4shared Desktop - Reg Error: Value error. File not found
    O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
    O8 - Extra context menu item: Funkcja Google Sidewiki - Reg Error: Value error. File not found
    O9 - Extra Button: iOpus iMacros - {0483894E-2422-45E0-8384-021AFF1AF3CD} - Reg Error: Key error. File not found
    O9 - Extra 'Tools' menuitem : iMacros Web Automation - {0483894E-2422-45E0-8384-021AFF1AF3CD} - Reg Error: Value error. File not found
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool)
    O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.)
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
    O16 - DPF: {8FEFF364-6A5F-4966-A917-A3AC28411659} http://download.sopcast.cn/download/SOPCORE.CAB (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_09-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_10-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_11-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_01-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_04-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 194.204.159.1 194.204.152.34 192.168.0.1
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{572C0FFB-7714-42A5-8D70-DF6C4C1BF87B}: DhcpNameServer = 194.204.159.1 194.204.152.34 192.168.0.1
    O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (Logitech Inc.)
    O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
    O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
    O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
    O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
    O20 - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logitech\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\Logitech\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
    O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
    O24 - Desktop WallPaper: C:\Documents and Settings\Ania\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
    O24 - Desktop BackupWallPaper: C:\Documents and Settings\Ania\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
    O32 - HKLM CDRom: AutoRun - 1
    O32 - AutoRun File - [2006-05-27 07:27:16 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
    O33 - MountPoints2\{8932dff8-b943-11e0-90ba-0012f04f07e3}\Shell - "" = AutoRun
    O33 - MountPoints2\{afdad96c-a18e-11df-8dbd-0012f04f07e3}\Shell - "" = AutoRun
    O33 - MountPoints2\{d1d392ba-9cb7-11df-8d87-0012f04f07e3}\Shell - "" = AutoRun
    O33 - MountPoints2\{ec768c34-b940-11e0-90b9-0012f04f07e3}\Shell - "" = AutoRun
    O34 - HKLM BootExecute: (autocheck autochk *)
    O34 - HKLM BootExecute: (autocheck OODBS)
    O35 - HKLM\..comfile [open] -- "%1" %*
    O35 - HKLM\..exefile [open] -- "%1" %*
    O37 - HKLM\...com [@ = comfile] -- "%1" %*
    O37 - HKLM\...exe [@ = exefile] -- "%1" %*
     
    ========== Files/Folders - Created Within 30 Days ==========
     
    [2011-11-04 15:39:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ania\Start Menu\Programs\Startup
    [2011-11-04 15:39:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ania\Start Menu
    [2011-11-03 19:53:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ania\Dane aplikacji\Malwarebytes
    [2011-11-03 19:53:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Malwarebytes' Anti-Malware
    [2011-11-03 19:53:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes
    [2011-11-03 19:53:05 | 000,022,216 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
    [2011-11-03 19:53:05 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
    [2011-10-31 12:51:59 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
    [2011-10-26 19:41:23 | 000,014,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll
    [2011-10-26 13:20:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Microsoft Office
    [2011-10-26 13:19:47 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
    [2011-10-26 07:32:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW
    [2011-10-25 20:43:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Ania\Dane aplikacji\ElevatedDiagnostics
    [2011-10-25 20:42:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\windowspowershell
    [2011-10-25 13:10:02 | 000,000,000 | ---D | C] -- C:\rootsetup
    [2011-10-22 22:17:12 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
    [2011-10-22 22:17:12 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
    [2011-10-22 22:17:12 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
    [2011-10-19 07:28:06 | 000,689,664 | ---- | C] (repkasoft) -- C:\WINDOWS\System32\yowindow.scr
    [2011-10-11 20:40:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Adobe
    [2011-10-11 19:39:29 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
    [2006-05-27 07:44:50 | 000,014,976 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\winddx.sys
    [2006-05-27 07:41:19 | 000,057,344 | ---- | C] ( ) -- C:\WINDOWS\System32\slserv.exe
    [5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
     
    ========== Files - Modified Within 30 Days ==========
     
    [2011-11-05 16:57:00 | 000,001,032 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
    [2011-11-05 15:57:04 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
    [2011-11-05 15:56:15 | 000,001,028 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
    [2011-11-05 15:56:09 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
    [2011-11-04 20:24:47 | 000,160,344 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
    [2011-11-03 19:53:10 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk
    [2011-10-31 12:23:01 | 000,000,480 | ---- | M] () -- C:\Documents and Settings\Ania\SDIGMICROSOFTINTERNETEXPLORER.CFG
    [2011-10-28 14:49:55 | 000,003,396 | ---- | M] () -- C:\WINDOWS\wincmd.ini
    [2011-10-28 14:49:39 | 000,000,196 | ---- | M] () -- C:\WINDOWS\wcx_ftp.ini
    [2011-10-28 09:53:00 | 000,000,527 | ---- | M] () -- C:\Documents and Settings\Ania\SDIGMICROSOFTINTERNETEXPLORER.CFG.err
    [2011-10-26 19:41:03 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
    [2011-10-26 19:41:03 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
    [2011-10-26 17:41:36 | 000,000,421 | ---- | M] () -- C:\WINDOWS\ODBC.INI
    [2011-10-26 13:38:06 | 000,014,242 | ---- | M] () -- C:\WINDOWS\System32\cleartmp.cmd
    [2011-10-26 10:11:58 | 000,008,192 | ---- | M] () -- C:\Documents and Settings\Ania\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2011-10-25 19:58:25 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
    [2011-10-25 16:40:37 | 000,077,428 | ---- | M] () -- C:\Documents and Settings\Ania\Moje dokumenty\polityki.zip
    [2011-10-25 16:33:36 | 000,053,268 | ---- | M] () -- C:\Documents and Settings\Ania\Dane aplikacji\chrtmp
    [2011-10-19 14:56:00 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
    [2011-10-19 07:28:06 | 000,689,664 | ---- | M] (repkasoft) -- C:\WINDOWS\System32\yowindow.scr
    [2011-10-11 19:56:10 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
    [2011-10-11 19:46:16 | 001,002,988 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
    [2011-10-11 19:46:16 | 000,859,156 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
    [2011-10-11 19:46:16 | 000,347,170 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
    [2011-10-11 19:46:16 | 000,274,592 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
    [5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
     
    ========== Files Created - No Company Name ==========
     
    [2011-11-03 19:53:10 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk
    [2011-10-28 09:52:50 | 000,000,527 | ---- | C] () -- C:\Documents and Settings\Ania\SDIGMICROSOFTINTERNETEXPLORER.CFG.err
    [2011-10-27 11:21:34 | 000,002,508 | ---- | C] () -- C:\Documents and Settings\NetworkService\Dane aplikacji\$_hpcst$.hpc
    [2011-10-26 13:24:36 | 000,014,242 | ---- | C] () -- C:\WINDOWS\System32\cleartmp.cmd
    [2011-10-11 19:41:45 | 000,001,393 | ---- | C] () -- C:\WINDOWS\imsins.BAK
    [2011-08-05 15:44:05 | 000,008,192 | ---- | C] () -- C:\Documents and Settings\Ania\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2011-06-23 13:24:32 | 000,000,006 | ---- | C] () -- C:\Documents and Settings\Ania\Dane aplikacji\completescan
    [2011-06-23 13:19:44 | 000,000,010 | ---- | C] () -- C:\Documents and Settings\Ania\Dane aplikacji\install
    [2011-06-23 13:16:58 | 000,001,876 | ---- | C] () -- C:\Documents and Settings\Ania\Dane aplikacji\1.gif
    [2011-06-23 13:16:57 | 000,000,012 | ---- | C] () -- C:\Documents and Settings\Ania\Dane aplikacji\ct_start
    [2011-06-06 20:10:40 | 000,075,776 | ---- | C] () -- C:\WINDOWS\System32\kbdczw.dll
    [2011-06-06 18:50:47 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\Ania\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
    [2011-06-06 17:14:29 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
    [2011-06-06 17:07:40 | 000,593,920 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe
    [2011-06-03 15:33:49 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\RtNicProp32.dll
    [2011-05-30 20:18:28 | 000,053,268 | ---- | C] () -- C:\Documents and Settings\Ania\Dane aplikacji\chrtmp
    [2011-05-13 20:15:07 | 000,426,236 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
    [2011-02-13 11:12:42 | 000,790,528 | ---- | C] () -- C:\WINDOWS\System32\FREEIMAGEX.DLL
    [2010-09-22 16:42:54 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
    [2010-08-03 16:18:21 | 000,000,022 | ---- | C] () -- C:\WINDOWS\System32\winStudio.bin
    [2010-08-02 13:49:38 | 000,000,155 | ---- | C] () -- C:\WINDOWS\PhotoGraffiti.ini
    [2010-02-21 10:33:31 | 000,000,600 | ---- | C] () -- C:\Documents and Settings\Ania\Dane aplikacji\winscp.rnd
    [2009-12-27 23:23:35 | 000,000,237 | ---- | C] () -- C:\WINDOWS\System32\regsvr-alo.ini
    [2009-11-29 12:34:18 | 000,000,843 | ---- | C] () -- C:\WINDOWS\ARPR.INI
    [2009-11-27 14:02:16 | 000,012,747 | ---- | C] () -- C:\WINDOWS\unins000.dat
    [2009-10-15 17:14:41 | 000,000,062 | ---- | C] () -- C:\WINDOWS\wininit.ini
    [2009-10-07 01:46:36 | 000,025,752 | ---- | C] () -- C:\WINDOWS\System32\drivers\LVPr2Mon.sys
    [2009-10-07 01:23:08 | 000,013,584 | ---- | C] () -- C:\WINDOWS\System32\drivers\iKeyLFT2.dll
    [2009-10-03 19:13:42 | 000,000,107 | ---- | C] () -- C:\WINDOWS\IfoEdit.INI
    [2009-07-09 20:26:13 | 000,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat
    [2009-02-25 21:58:44 | 003,107,788 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat
    [2009-02-25 21:58:44 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat
    [2009-02-11 10:09:45 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.INI
    [2009-01-25 12:38:24 | 000,000,021 | ---- | C] () -- C:\WINDOWS\progman.ini
    [2009-01-25 12:38:23 | 000,000,266 | ---- | C] () -- C:\WINDOWS\HAFASWIN.INI
    [2009-01-23 10:34:01 | 000,000,144 | ---- | C] () -- C:\WINDOWS\ZUS_PIT11.INI
    [2008-08-26 19:15:56 | 000,004,256 | ---- | C] () -- C:\WINDOWS\System32\drivers\UserPort.sys
    [2008-07-31 19:57:00 | 000,065,552 | ---- | C] () -- C:\WINDOWS\System32\Ke386.DLL
    [2008-07-31 19:35:27 | 000,065,552 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\Desktop.lnk
    [2008-07-16 17:42:17 | 000,090,112 | ---- | C] () -- C:\WINDOWS\RSetupCE.exe
    [2008-05-18 08:39:02 | 000,000,101 | ---- | C] () -- C:\WINDOWS\winzipme.ini
    [2008-05-18 08:00:33 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\UTSCSI.EXE
    [2008-03-29 21:00:25 | 000,162,304 | ---- | C] () -- C:\WINDOWS\System32\ztvunrar36.dll
    [2008-03-29 21:00:25 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\UNRAR3.dll
    [2008-03-29 21:00:25 | 000,077,312 | ---- | C] () -- C:\WINDOWS\System32\ztvunace26.dll
    [2008-03-29 21:00:25 | 000,075,264 | ---- | C] () -- C:\WINDOWS\System32\unacev2.dll
    [2008-03-07 21:04:31 | 000,050,127 | R--- | C] () -- C:\WINDOWS\System32\lvcoinst.ini
    [2008-03-04 09:03:22 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\ezsid.dat
    [2008-02-26 16:00:31 | 000,008,544 | ---- | C] () -- C:\WINDOWS\UCORESYS.SYS
    [2008-02-16 19:03:57 | 000,000,000 | ---- | C] () -- C:\WINDOWS\oodcnt.INI
    [2007-11-25 16:36:08 | 000,164,352 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
    [2007-11-25 16:35:55 | 001,559,040 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
    [2007-11-25 16:35:55 | 000,282,624 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
    [2007-11-25 16:35:54 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
    [2007-11-25 16:35:49 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
    [2007-10-14 08:07:17 | 000,081,408 | ---- | C] () -- C:\WINDOWS\System32\drivers\SSHDRV86.sys
    [2007-09-11 18:15:58 | 000,000,950 | ---- | C] () -- C:\WINDOWS\UAMedytor.ini
    [2007-08-22 21:27:36 | 000,002,508 | ---- | C] () -- C:\Documents and Settings\LocalService\Dane aplikacji\$_hpcst$.hpc
    [2007-05-03 19:51:04 | 000,000,196 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
    [2007-05-03 19:46:06 | 000,003,396 | ---- | C] () -- C:\WINDOWS\wincmd.ini
    [2007-02-24 15:52:07 | 000,022,528 | ---- | C] () -- C:\WINDOWS\System32\wsc32.dll
    [2006-10-31 03:36:48 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\snipit.dll
    [2006-08-22 18:58:59 | 000,000,020 | ---- | C] () -- C:\WINDOWS\naglos.INI
    [2006-08-16 21:11:04 | 000,002,508 | ---- | C] () -- C:\Documents and Settings\Ania\Dane aplikacji\$_hpcst$.hpc
    [2006-08-05 20:47:05 | 000,000,047 | ---- | C] () -- C:\WINDOWS\System32\imon1.dat
    [2006-07-13 09:20:01 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
    [2006-07-08 16:30:34 | 000,096,384 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd8365.sys
    [2006-07-02 15:18:22 | 000,000,000 | ---- | C] () -- C:\WINDOWS\epcmonitor.INI
    [2006-07-02 15:17:56 | 000,143,360 | ---- | C] () -- C:\WINDOWS\System32\XNMHB425.DLL
    [2006-07-02 15:17:56 | 000,092,672 | ---- | C] () -- C:\WINDOWS\System32\XNMHB458.DLL
    [2006-07-02 15:17:56 | 000,066,560 | ---- | C] () -- C:\WINDOWS\System32\XNMHN425.DLL
    [2006-07-02 15:17:56 | 000,064,512 | ---- | C] () -- C:\WINDOWS\System32\XNMTE458.DLL
    [2006-07-02 15:17:56 | 000,056,320 | ---- | C] () -- C:\WINDOWS\System32\XNMTE425.DLL
    [2006-07-02 15:17:56 | 000,025,600 | ---- | C] () -- C:\WINDOWS\System32\XNMHN458.DLL
    [2006-07-02 15:17:56 | 000,006,848 | ---- | C] () -- C:\WINDOWS\System32\drivers\DS1410D.SYS
    [2006-07-02 15:17:55 | 000,360,448 | ---- | C] () -- C:\WINDOWS\System32\XNMBA458.DLL
    [2006-07-02 15:17:55 | 000,303,616 | ---- | C] () -- C:\WINDOWS\System32\XNMBA425.DLL
    [2006-07-02 15:17:54 | 000,006,848 | ---- | C] () -- C:\WINDOWS\System32\DS1410D.SYS
    [2006-06-28 19:10:52 | 000,000,711 | ---- | C] () -- C:\WINDOWS\NedroFun.ini
    [2006-06-26 20:17:35 | 000,018,752 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
    [2006-05-27 09:19:40 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
    [2006-05-27 09:18:27 | 000,160,344 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
    [2006-05-27 08:28:23 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI
    [2006-05-27 08:25:18 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
    [2006-05-27 08:24:55 | 000,002,951 | ---- | C] () -- C:\WINDOWS\mozver.dat
    [2006-05-27 07:44:50 | 000,540,672 | ---- | C] () -- C:\WINDOWS\System32\SLLights.dll
    [2006-05-27 07:44:50 | 000,380,928 | ---- | C] () -- C:\WINDOWS\System32\slmh.exe
    [2006-05-27 07:44:50 | 000,221,184 | ---- | C] () -- C:\WINDOWS\System32\amr_cpl.dll
    [2006-05-27 07:44:50 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\minirec.exe
    [2006-05-27 07:44:50 | 000,151,552 | ---- | C] () -- C:\WINDOWS\System32\SLMOHServ.dll
    [2006-05-27 07:44:50 | 000,077,824 | ---- | C] () -- C:\WINDOWS\SmCfg.exe
    [2006-05-27 07:44:08 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
    [2006-05-27 07:41:21 | 000,182,995 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
    [2006-05-27 07:41:19 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\slextspk.dll
    [2006-05-27 07:41:19 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\SLGen.dll
    [2006-05-27 07:41:19 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\slcoinst.dll
    [2006-05-27 07:41:19 | 000,036,864 | ---- | C] () -- C:\WINDOWS\slrundll.exe
    [2006-05-27 07:34:23 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
    [2006-05-27 07:31:18 | 000,000,996 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
    [2006-05-27 07:24:05 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
    [2005-06-10 18:59:54 | 000,177,152 | ---- | C] () -- C:\WINDOWS\System32\CSGina.dll
    [2005-06-10 18:53:52 | 000,163,840 | ---- | C] () -- C:\WINDOWS\System32\vpnapi.dll
    [2004-08-04 13:00:00 | 001,002,988 | ---- | C] () -- C:\WINDOWS\System32\perfh015.dat
    [2004-08-04 13:00:00 | 000,859,156 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
    [2004-08-04 13:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
    [2004-08-04 13:00:00 | 000,347,170 | ---- | C] () -- C:\WINDOWS\System32\perfc015.dat
    [2004-08-04 13:00:00 | 000,313,828 | ---- | C] () -- C:\WINDOWS\System32\perfi015.dat
    [2004-08-04 13:00:00 | 000,274,592 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
    [2004-08-04 13:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
    [2004-08-04 13:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
    [2004-08-04 13:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
    [2004-08-04 13:00:00 | 000,034,990 | ---- | C] () -- C:\WINDOWS\System32\perfd015.dat
    [2004-08-04 13:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
    [2004-08-04 13:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
    [2004-08-04 13:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
    [2004-08-04 13:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
    [2004-03-15 12:02:38 | 000,000,412 | ---- | C] () -- C:\WINDOWS\System32\HP3AIOZ6.dat
    [2004-03-03 05:06:00 | 000,221,184 | ---- | C] () -- C:\WINDOWS\System32\HP3AIOZ6.dll
    [2003-07-30 10:48:28 | 000,004,711 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
    [2003-07-30 09:49:22 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
    [2003-04-08 10:40:22 | 000,005,679 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
    [2002-05-03 15:40:32 | 000,094,274 | ---- | C] () -- C:\WINDOWS\System32\HPBHEALR.DLL
    [2001-08-29 18:57:40 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\addurl41.DLL
    [2001-07-10 13:43:16 | 000,018,432 | ---- | C] () -- C:\WINDOWS\System32\winwatch.DLL
     
    ========== LOP Check ==========
     
    [2010-03-21 11:56:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Blumentals
    [2011-06-23 14:38:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\boost_interprocess
    [2007-04-11 19:47:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Downloaded Installations
    [2011-06-06 20:00:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Easy Driver Pro
    [2011-02-04 17:44:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET
    [2011-06-03 21:59:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Fighters
    [2008-11-08 18:17:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\GARMIN
    [2010-08-25 16:25:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Icon Constructor 3
    [2011-02-21 19:48:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\IM
    [2011-02-21 19:47:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\IncrediMail
    [2011-09-24 20:40:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations
    [2008-02-16 19:48:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\iolo
    [2007-04-11 20:13:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Nokia
    [2010-08-04 11:40:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\NokiaInstallerCache
    [2008-01-06 10:34:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite
    [2011-08-19 19:23:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Registry First Aid
    [2011-10-30 14:47:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\RFA_Backups
    [2009-11-10 22:20:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
    [2011-06-05 19:10:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TuneUp Software
    [2011-08-02 06:25:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\YoWindow
    [2011-06-06 16:03:45 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
    [2010-03-01 20:29:18 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
    [2008-11-21 17:40:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\anpo.republika.pl
    [2006-07-01 21:38:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\AutoUpdate
    [2009-11-13 20:07:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Blender Foundation
    [2010-07-31 16:49:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\blueconnect
    [2007-03-24 16:22:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Datalayer
    [2011-02-04 19:31:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Desktopicon
    [2011-08-22 20:04:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\DMCache
    [2010-11-08 21:54:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\dreamload
    [2011-10-25 20:43:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\ElevatedDiagnostics
    [2011-02-04 17:45:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\ESET
    [2011-05-30 20:26:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Fighters
    [2009-11-06 09:28:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\FileZilla
    [2008-11-21 17:39:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\fltk.org
    [2010-02-20 19:09:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Gadu-Gadu
    [2008-11-08 18:41:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\GARMIN
    [2007-10-12 17:17:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\GeoVid
    [2011-08-22 20:06:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\IDM
    [2007-06-14 09:11:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Leadertech
    [2008-10-28 12:40:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Leica Virtual Explorer
    [2011-05-12 16:39:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Mobile Atlas Creator
    [2010-08-11 07:46:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\mojosoft
    [2010-07-27 19:00:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\nod32 updater
    [2010-08-08 10:15:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Nokia
    [2011-02-17 20:44:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Notepad++
    [2009-09-24 20:08:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\ooVoo Details
    [2011-05-13 18:03:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\OpenCandy
    [2011-04-11 21:00:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\PC Suite
    [2008-11-26 20:36:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\RapidGet
    [2011-08-21 16:03:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\SatChannelListEditor
    [2011-06-23 14:40:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\searchqutoolbar
    [2008-03-29 21:00:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Simply Super Software
    [2011-05-21 21:13:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Softplicity
    [2011-09-09 15:54:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\TeamViewer
    [2009-08-03 21:41:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Thinstall
    [2011-06-18 19:08:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\TuneUp Software
    [2011-06-04 10:53:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\Uniblue
    [2009-01-25 10:44:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\VitySoft
    [2011-05-16 09:46:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ania\Dane aplikacji\YoWindow
     
    ========== Purity Check ==========
     
     
     
    ========== Alternate Data Streams ==========
     
    @Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:CB0AACC9
    @Alternate Data Stream - 117 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:C8B8CEBD
    
    < End of report >



Seite 1 von 2 12 LetzteLetzte

Aktive Benutzer

Aktive Benutzer

Aktive Benutzer in diesem Thema: 1 (Registrierte Benutzer: 0, Gäste: 1)

Ähnliche Themen

  1. Antworten: 7
    Letzter Beitrag: 15.08.2012, 09:31
  2. Antworten: 0
    Letzter Beitrag: 18.07.2011, 11:50
  3. Antworten: 0
    Letzter Beitrag: 09.04.2011, 09:30
  4. Antworten: 2
    Letzter Beitrag: 05.08.2010, 11:16
  5. Antworten: 2
    Letzter Beitrag: 11.10.2007, 17:29

Berechtigungen

  • Neue Themen erstellen: Nein
  • Themen beantworten: Nein
  • Anhänge hochladen: Nein
  • Beiträge bearbeiten: Nein
  •