Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

My laptop is getting slower every day


  • Please log in to reply
4 replies to this topic

#1 Vanahomena

Vanahomena

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:05:00 AM

Posted 14 January 2013 - 02:06 PM

Hello everyone. It's my first post here, so i hope i will tell u what's my problem.

So the main problem is that my laptop is getting slower and slower. I've already used ComboFix.

Here's my scan (some phrases are in Polish language, i hope it will not cause problems)

ComboFix 13-01-13.01 - user 2013-01-14 11:06:09.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.48.1045.18.4002.2416 [GMT 1:00]
Uruchomiony z: c:\users\user\Downloads\ComboFix.exe
AV: Microsoft Security Essentials *Enabled/Updated* {B140BF4E-23BB-4198-90AB-A51A4C60A69C}
SP: Microsoft Security Essentials *Enabled/Updated* {0A215EAA-0581-4E16-AA1B-9E6837E7EC21}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Utworzono nowy punkt przywracania
.
.
((((((((((((((((((((((((((((((((((((((( Usunięto )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\prefs.js
c:\program files (x86)\intellidownload\gunzip.exe
c:\programdata\ntuser.dat
c:\programdata\PCDr\5907\Downloads\08c66698-ac37-420c-8ea0-a63d0e691e3a.dll
c:\programdata\PCDr\5907\Downloads\918ee45c-eb0a-4e61-97ad-c1849c2623ee.dll
c:\programdata\Roaming
c:\users\user\AppData\Local\TempDIR
c:\users\user\AppData\Local\TempDIR\cacert.crt
.
.
((((((((((((((((((((((((( Pliki utworzone od 2012-12-14 do 2013-01-14 )))))))))))))))))))))))))))))))
.
.
2013-01-13 10:20 . 2012-11-08 17:24 9125352 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{262D5016-4E32-447F-AAAB-9CDAD9E39EF4}\mpengine.dll
2013-01-11 17:28 . 2012-11-08 17:24 9125352 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2013-01-10 17:15 . 2013-01-10 17:15 -------- d-----w- c:\program files\CCleaner
2013-01-07 16:46 . 2013-01-07 16:46 -------- d-----w- c:\program files (x86)\Dzielenie i laczenie plikow
2013-01-07 16:38 . 2013-01-07 16:38 -------- d-----w- c:\users\user\AppData\Local\AVG Secure Search
2013-01-07 16:38 . 2013-01-07 16:38 -------- d-----w- c:\programdata\AVG Secure Search
2013-01-07 16:38 . 2013-01-07 16:38 30568 ----a-w- c:\windows\system32\drivers\avgtpx64.sys
2013-01-07 16:38 . 2013-01-07 16:38 -------- d-----w- c:\program files\WinRAR
2013-01-07 16:38 . 2013-01-07 16:38 -------- d-----w- c:\program files (x86)\Common Files\AVG Secure Search
2013-01-07 16:38 . 2013-01-07 16:38 -------- d-----w- c:\program files (x86)\AVG Secure Search
2013-01-07 16:38 . 2013-01-07 16:38 -------- d--h--w- c:\programdata\Common Files
2013-01-05 21:19 . 2013-01-07 13:49 -------- d-----w- C:\dsj2
2012-12-31 14:18 . 2012-12-31 14:18 -------- d-----w- c:\programdata\IObit
2012-12-31 14:18 . 2012-12-31 14:18 -------- d-----w- c:\program files (x86)\IObit
2012-12-31 13:56 . 2012-12-31 13:56 -------- d--h--w- c:\program files (x86)\Common Files\EAInstaller
2012-12-30 16:18 . 2012-12-30 16:18 -------- d-----w- c:\programdata\Premium
2012-12-25 21:19 . 2012-12-25 21:19 -------- d-----w- C:\Downloads
2012-12-25 21:18 . 2012-12-30 16:13 -------- d-----w- c:\users\user\AppData\Roaming\BitComet
2012-12-25 21:13 . 2012-12-25 21:13 -------- d-----w- c:\program files (x86)\PrivitizeVPN
2012-12-25 21:13 . 2012-12-25 21:13 -------- d-----w- c:\programdata\WoW Worldwide Software LTD
2012-12-25 21:13 . 2012-12-25 21:13 -------- d-----w- c:\program files (x86)\ZoomEx
2012-12-25 21:13 . 2013-01-11 19:59 -------- d-----w- c:\programdata\Zoomex
2012-12-25 21:12 . 2012-12-30 16:18 -------- d-----w- c:\programdata\InstallMate
2012-12-25 21:07 . 2012-12-28 19:02 -------- d-----w- c:\program files (x86)\uTorrent
2012-12-25 21:06 . 2013-01-14 09:24 -------- d-----w- c:\users\user\AppData\Roaming\uTorrent
2012-12-22 17:08 . 2012-12-22 17:08 -------- d-----w- c:\program files (x86)\Unlocker
2012-12-22 16:58 . 2012-12-22 16:58 283200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2012-12-22 16:58 . 2013-01-10 17:18 -------- d-----w- c:\users\user\AppData\Roaming\DAEMON Tools Lite
2012-12-22 16:58 . 2012-12-22 16:58 -------- d-----w- c:\program files (x86)\DAEMON Tools Lite
2012-12-22 16:56 . 2012-12-22 17:00 -------- d-----w- c:\programdata\DAEMON Tools Lite
2012-12-21 11:39 . 2012-12-16 14:13 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
2012-12-21 11:39 . 2012-12-16 17:11 46080 ----a-w- c:\windows\system32\atmlib.dll
2012-12-21 11:39 . 2012-12-16 14:45 367616 ----a-w- c:\windows\system32\atmfd.dll
2012-12-21 11:39 . 2012-12-16 14:13 295424 ----a-w- c:\windows\SysWow64\atmfd.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Sekcja Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-12-26 10:50 . 2012-06-02 20:01 697272 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-12-26 10:50 . 2012-01-12 11:18 73656 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-12-12 14:14 . 2012-05-30 14:18 67413224 ----a-w- c:\windows\system32\MRT.exe
2012-12-02 10:21 . 2012-12-02 10:21 972264 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{CB271B71-A599-485F-A94C-BB512681BB30}\gapaengine.dll
2012-11-22 03:26 . 2012-12-12 12:50 3149824 ----a-w- c:\windows\system32\win32k.sys
2012-11-14 07:06 . 2012-12-12 14:12 17811968 ----a-w- c:\windows\system32\mshtml.dll
2012-11-14 06:32 . 2012-12-12 14:12 10925568 ----a-w- c:\windows\system32\ieframe.dll
2012-11-14 06:11 . 2012-12-12 14:12 2312704 ----a-w- c:\windows\system32\jscript9.dll
2012-11-14 06:04 . 2012-12-12 14:12 1346048 ----a-w- c:\windows\system32\urlmon.dll
2012-11-14 06:04 . 2012-12-12 14:12 1392128 ----a-w- c:\windows\system32\wininet.dll
2012-11-14 06:02 . 2012-12-12 14:12 1494528 ----a-w- c:\windows\system32\inetcpl.cpl
2012-11-14 06:02 . 2012-12-12 14:13 237056 ----a-w- c:\windows\system32\url.dll
2012-11-14 05:59 . 2012-12-12 14:12 85504 ----a-w- c:\windows\system32\jsproxy.dll
2012-11-14 05:58 . 2012-12-12 14:12 816640 ----a-w- c:\windows\system32\jscript.dll
2012-11-14 05:57 . 2012-12-12 14:12 599040 ----a-w- c:\windows\system32\vbscript.dll
2012-11-14 05:57 . 2012-12-12 14:13 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2012-11-14 05:55 . 2012-12-12 14:12 2144768 ----a-w- c:\windows\system32\iertutil.dll
2012-11-14 05:55 . 2012-12-12 14:12 729088 ----a-w- c:\windows\system32\msfeeds.dll
2012-11-14 05:53 . 2012-12-12 14:13 96768 ----a-w- c:\windows\system32\mshtmled.dll
2012-11-14 05:52 . 2012-12-12 14:13 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2012-11-14 05:46 . 2012-12-12 14:13 248320 ----a-w- c:\windows\system32\ieui.dll
2012-11-14 02:09 . 2012-12-12 14:12 1800704 ----a-w- c:\windows\SysWow64\jscript9.dll
2012-11-14 01:58 . 2012-12-12 14:12 1427968 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2012-11-14 01:57 . 2012-12-12 14:12 1129472 ----a-w- c:\windows\SysWow64\wininet.dll
2012-11-14 01:49 . 2012-12-12 14:13 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2012-11-14 01:48 . 2012-12-12 14:13 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
2012-11-14 01:44 . 2012-12-12 14:13 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
2012-11-09 05:45 . 2012-12-12 12:50 2048 ----a-w- c:\windows\system32\tzres.dll
2012-11-09 04:42 . 2012-12-12 12:50 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2012-11-02 05:59 . 2012-12-12 12:49 478208 ----a-w- c:\windows\system32\dpnet.dll
2012-11-02 05:11 . 2012-12-12 12:49 376832 ----a-w- c:\windows\SysWow64\dpnet.dll
2012-11-01 17:47 . 2012-11-01 17:47 0 ----a-w- c:\windows\SysWow64\REN5FFF.tmp
2012-11-01 17:47 . 2012-11-01 17:47 0 ----a-w- c:\windows\SysWow64\REN5FFE.tmp
.
.
((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{00000000-6E41-4FD3-8538-502F5495E5FC}"= "c:\program files (x86)\Ask.com\GenericAskToolbar.dll" [2012-10-16 1521352]
"{759472df-2856-4414-bd87-8e99b2b84ba1}"= "c:\program files (x86)\BrotherSoft_SPC\prxtbBro0.dll" [2011-05-09 176936]
"{62d40876-df18-411f-9d34-a9dd7a197bc5}"= "c:\program files (x86)\BrotherSoft_Extreme3\prxtbBro0.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{00000000-6e41-4fd3-8538-502f5495e5fc}]
.
[HKEY_CLASSES_ROOT\clsid\{759472df-2856-4414-bd87-8e99b2b84ba1}]
.
[HKEY_CLASSES_ROOT\clsid\{62d40876-df18-411f-9d34-a9dd7a197bc5}]
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{62d40876-df18-411f-9d34-a9dd7a197bc5}]
2011-05-09 09:49 176936 ----a-w- c:\program files (x86)\BrotherSoft_Extreme3\prxtbBro0.dll
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{759472df-2856-4414-bd87-8e99b2b84ba1}]
2011-05-09 09:49 176936 ----a-w- c:\program files (x86)\BrotherSoft_SPC\prxtbBro0.dll
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
2013-01-07 16:38 1828808 ----a-w- c:\program files (x86)\AVG Secure Search\13.3.0.17\AVG Secure Search_toolbar.dll
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{A6C5FD41-6DFE-9ADE-548C-B6ADE4336753}]
2012-12-30 16:37 118272 ----a-w- c:\programdata\Zoomex\50e06dd7e346f.dll
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2012-10-16 23:46 1521352 ----a-w- c:\program files (x86)\Ask.com\GenericAskToolbar.dll
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{D4A31B68-3519-A8C1-8B2A-3D68DD9F4546}]
2012-12-25 21:31 118272 ----a-w- c:\programdata\Zoomex\50da1b3b15fa5.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{759472df-2856-4414-bd87-8e99b2b84ba1}"= "c:\program files (x86)\BrotherSoft_SPC\prxtbBro0.dll" [2011-05-09 176936]
"{62d40876-df18-411f-9d34-a9dd7a197bc5}"= "c:\program files (x86)\BrotherSoft_Extreme3\prxtbBro0.dll" [2011-05-09 176936]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files (x86)\Ask.com\GenericAskToolbar.dll" [2012-10-16 1521352]
"{95B7759C-8C7F-4BF1-B163-73684A933233}"= "c:\program files (x86)\AVG Secure Search\13.3.0.17\AVG Secure Search_toolbar.dll" [2013-01-07 1828808]
.
[HKEY_CLASSES_ROOT\clsid\{759472df-2856-4414-bd87-8e99b2b84ba1}]
.
[HKEY_CLASSES_ROOT\clsid\{62d40876-df18-411f-9d34-a9dd7a197bc5}]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"="c:\program files (x86)\uTorrent\uTorrent.exe" [2012-12-28 969104]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" [2010-11-06 283160]
"Dell Registration"="c:\program files (x86)\System Registration\prodreg.exe" [2011-08-04 4165440]
"RoxWatchTray"="c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe" [2010-11-25 240112]
"GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"UnlockerAssistant"="c:\program files (x86)\Unlocker\UnlockerAssistant.exe" [2010-07-04 17408]
"vProt"="c:\program files (x86)\AVG Secure Search\vprot.exe" [2013-01-07 1046984]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll c:\windows\SysWOW64\nvinit.dll c:\progra~2\ZoomEx\sprotector.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 Freemake Improver;Freemake Improver;c:\programdata\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [2012-06-27 96768]
R2 RoxWatch12;Roxio Hard Drive Watcher 12;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [2010-11-25 219632]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-06-07 160944]
R3 AMPPALP;Protokół Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed;c:\windows\system32\DRIVERS\amppal.sys [2011-09-15 299008]
R3 intaud_WaveExtensible;Intel WiDi Audio Device;c:\windows\system32\drivers\intelaud.sys [2011-06-21 34200]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [2011-09-16 340240]
R3 RoxMediaDB12OEM;RoxMediaDB12OEM;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [2010-11-25 1116656]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2010-10-30 250984]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
R3 TurboBoost;Intel® Turbo Boost Technology Monitor 2.0;c:\program files\Intel\TurboBoost\TurboBoost.exe [2010-11-29 149504]
R3 WatAdminSvc;Usługa Technologie aktywacji systemu Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-05-30 1255736]
R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\program files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [2010-11-01 14544]
R3 X6va006;X6va006;c:\users\user\AppData\Local\Temp\00634A8.tmp [x]
R3 X6va008;X6va008;c:\users\user\AppData\Local\Temp\008AC0.tmp [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [2011-04-22 25960]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2010-03-19 55856]
S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx64.sys [2013-01-07 30568]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-12-22 283200]
S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe [2009-03-03 89600]
S2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe [2011-09-15 1166848]
S2 Bluetooth Device Monitor;Bluetooth Device Monitor;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe [2011-05-19 921664]
S2 Bluetooth OBEX Service;Bluetooth OBEX Service;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe [2011-05-19 995392]
S2 BTHSSecurityMgr;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Security Service;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2011-06-03 134928]
S2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-11-06 13336]
S2 MySQL55;MySQL55;c:\program files\MySQL\MySQL Server 5.5\bin\mysqld --defaults-file=c:\programdata\MySQL\MySQL Server 5.5\my.ini MySQL55 [x]
S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2011-11-25 687400]
S2 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2012-08-30 128456]
S2 SftService;SoftThinks Agent Service;c:\program files (x86)\Dell DataSafe Local Backup\sftservice.EXE [2011-08-18 1692480]
S2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-10-02 3064000]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-05-15 382272]
S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys [2010-11-29 16120]
S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2010-10-06 2655768]
S2 vToolbarUpdater13.3.2;vToolbarUpdater13.3.2;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.3.2\ToolbarUpdater.exe [2013-01-07 894920]
S3 AMPPAL;Karta wirtualna Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed;c:\windows\system32\DRIVERS\AMPPAL.sys [2011-09-15 299008]
S3 Bluetooth Media Service;Bluetooth Media Service;c:\program files (x86)\Intel\Bluetooth\mediasrv.exe [2011-05-19 1335360]
S3 btmaudio;Intel Bluetooth Audio Service;c:\windows\system32\drivers\btmaud.sys [2011-05-19 51712]
S3 btmaux;Intel Bluetooth Auxiliary Service;c:\windows\system32\DRIVERS\btmaux.sys [2011-05-19 53248]
S3 btmhsf;btmhsf;c:\windows\system32\DRIVERS\btmhsf.sys [2011-07-19 282624]
S3 CtClsFlt;Creative Camera Class Upper Filter Driver;c:\windows\system32\DRIVERS\CtClsFlt.sys [2011-01-20 176096]
S3 iBtFltCoex;iBtFltCoex;c:\windows\system32\DRIVERS\iBtFltCoex.sys [2011-07-20 59904]
S3 iwdbus;IWD Bus Enumerator;c:\windows\system32\DRIVERS\iwdbus.sys [2011-06-21 25496]
S3 NisSrv;Inspekcja sieci firmy Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe [2012-09-12 368896]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2010-10-26 406632]
S3 tihub3;TI USB3 Hub Service;c:\windows\system32\DRIVERS\tihub3.sys [2011-07-20 136000]
S3 tixhci;TI XHCI Service;c:\windows\system32\DRIVERS\tixhci.sys [2011-07-20 406336]
S3 VCSVADHWSer;Avnex Virtual Audio Device (WDM);c:\windows\system32\DRIVERS\vcsvad.sys [2008-12-26 21504]
.
.
--- Inne Usługi/Sterowniki w Pamięci ---
.
*NewlyCreated* - WS2IFSL
.
Zawartość folderu 'Zaplanowane zadania'
.
2012-12-26 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-06-02 10:50]
.
2012-09-17 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4094473463-618024080-4171821884-1001Core1cd94f4919b9a0b.job
- c:\users\user\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-03 16:08]
.
2012-07-11 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4094473463-618024080-4171821884-1001UA.job
- c:\users\user\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-03 16:08]
.
2012-10-03 c:\windows\Tasks\Norton Product Installer.job
- c:\windows\SysWOW64\Adobe\Shockwave 11\SymInstallStub.exe [2012-09-26 11:56]
.
2012-09-27 c:\windows\Tasks\Norton Product InstallerIdle.job
- c:\windows\SysWOW64\Adobe\Shockwave 11\SymInstallStub.exe [2012-09-26 11:56]
.
2012-06-28 c:\windows\Tasks\PCDoctorBackgroundMonitorTask.job
- c:\program files\Dell Support Center\uaclauncher.exe [2012-05-22 07:16]
.
2012-11-01 c:\windows\Tasks\Scheduled Update for Ask Toolbar.job
- c:\program files (x86)\Ask.com\UpdateTask.exe [2012-10-16 23:46]
.
2012-07-11 c:\windows\Tasks\SystemToolsDailyTest.job
- c:\program files\Dell Support Center\uaclauncher.exe [2012-05-22 07:16]
.
2012-12-30 c:\windows\Tasks\ZoomExUpdaterTask{D42374C3-AA98-4BBB-A096-0C755058C9F3}.job
- c:\programdata\Premium\ZoomEx\ZoomEx.exe [2012-12-30 09:39]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-04-20 168216]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-04-20 392472]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-04-20 416024]
"Apoint"="c:\program files\DellTPad\Apoint.exe" [2011-04-12 609144]
"IntelTBRunOnce"="wscript.exe" [2009-07-14 168960]
"IntelPAN"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2011-09-16 1935120]
"BTMTrayAgent"="c:\program files (x86)\Intel\Bluetooth\btmshell.dll" [2011-05-19 10365952]
"DellStage"="c:\program files (x86)\Dell Stage\Dell Stage\stage_primary.exe" [2011-04-30 2055016]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-09-12 1289704]
"NVHotkey"="c:\windows\system32\nvHotkey.dll" [2011-04-21 312936]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2011-01-25 525312]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll c:\windows\System32\nvinitx.dll
.
------- Skan uzupełniający -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://isearch.avg.com/?cid={BBFA2D64-D80A-4184-A9C1-7C02123A89EF}&mid=cb82fda54efb47d08fc29dc9d565a0d6-cd2a1b8facad1333b9195682ad1e0c7dda5339c3&lang=pl&ds=xn011&pr=sa&d=2013-01-07 17:38&v=13.3.0.17&sap=hp
mDefault_Page_URL = about:blank
mStart Page = hxxp://searchab.com/?aff=7&uid=cb083248-4ed7-11e2-a98e-4c8093814925
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&ksportuj do programu Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.10.0.1
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\13.3.2\ViProtocol.dll
.
- - - - USUNIĘTO PUSTE WPISY - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
WebBrowser-{62D40876-DF18-411F-9D34-A9DD7A197BC5} - (no file)
WebBrowser-{759472DF-2856-4414-BD87-8E99B2B84BA1} - (no file)
AddRemove-Virtual DJ Pro Full - Atomix Productions - d:\virtua~2\\UNWISE.EXE
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\MySQL55]
"ImagePath"="\"c:\program files\MySQL\MySQL Server 5.5\bin\mysqld\" --defaults-file=\"c:\programdata\MySQL\MySQL Server 5.5\my.ini\" MySQL55"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\X6va006]
"ImagePath"="\??\c:\users\user\AppData\Local\Temp\00634A8.tmp"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\X6va008]
"ImagePath"="\??\c:\users\user\AppData\Local\Temp\008AC0.tmp"
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------
.
[HKEY_USERS\S-1-5-21-4094473463-618024080-4171821884-1001\Software\SecuROM\License information*]
"datasecu"=hex:3e,a2,60,9a,10,7c,2f,a3,fa,19,e7,ae,05,c2,88,12,fe,69,3f,85,93,
08,08,dd,85,50,ab,05,04,fd,95,e1,7a,da,bf,4c,40,a2,37,f4,de,e0,40,7c,c5,f3,\
"rkeysecu"=hex:2f,0f,d5,3e,02,2b,06,63,b1,0b,dd,b6,71,e2,54,98
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_135_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_135_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{BEB3C0C7-B648-4257-96D9-B5D024816E27}\Version*Version]
"Version"=hex:53,37,f6,6e,db,63,3b,e5,59,a2,7f,fb,2b,3e,48,de,43,07,32,c0,f9,
f6,8d,f2,5a,c0,fb,c3,0b,be,6e,6a,df,3f,6a,ee,87,03,ba,c7,89,55,ac,56,71,ce,\
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_135_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_135_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_135.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_135.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_135.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_135.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\software\Minnetonka Audio Software\SurCode Dolby Digital Premiere\Version*Version]
"Version"=hex:53,37,f6,6e,db,63,3b,e5,59,a2,7f,fb,2b,3e,48,de,43,07,32,c0,f9,
f6,8d,f2,5a,c0,fb,c3,0b,be,6e,6a,df,3f,6a,ee,87,03,ba,c7,89,55,ac,56,71,ce,\
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Pozostałe uruchomione procesy ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
c:\program files (x86)\Dell DataSafe Local Backup\TOASTER.EXE
c:\program files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
c:\program files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
c:\program files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe
c:\program files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
c:\program files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
.
**************************************************************************
.
Czas ukończenia: 2013-01-14 11:19:35 - komputer został uruchomiony ponownie
ComboFix-quarantined-files.txt 2013-01-14 10:19
.
Przed: 177 265 127 424 bajtów wolnych
Po: 177 160 224 768 bajtów wolnych
.
- - End Of File - - 6659977D11400EEAE951B735ACA7BBB6


If there's anything i can tell you, just answer.
Regards.

Since there is a Combofix Log, Moving to the appropriate forum from AII.
Roger

Edited by rotor123, 14 January 2013 - 02:27 PM.


BC AdBot (Login to Remove)

 


#2 nasdaq

nasdaq

  • Malware Response Team
  • 40,464 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:11:00 PM

Posted 16 January 2013 - 02:47 PM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps.
===

Please download and run this DDS Scanning Tool. Nothing will be deleted. It will just give me some additional information about your system.

  • Download DDS by sUBs from one of the following links if you no longer have it available. Save it to your desktop.
    • DDS.scr <- not recommended if you use Chrome to download this .scr file. Use the other options.
    • DDS.pif
    • DDS.COM
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
Please note: You may have to disable any script protection running if the scan fails to run.

Posted Image

Please just paste the contents of the DDS.txt log in your next post. DO NOT attach the log.

===

Third party programs if not up to date can be the cause infiltration of an infection.

Please run this security check for my review.

Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
===

Please download AdwCleaner by Xplode onto your Desktop.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Search.
  • A log file will automatically open after the scan has finished.
  • Please post the content of that log file with your next answer.
  • You can find the log file at C:\AdwCleaner[Rn].txt (n is a number).

Please post the logs for my review.

#3 Vanahomena

Vanahomena
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:05:00 AM

Posted 16 January 2013 - 03:21 PM

DDS.txt

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 9.0.8112.16457 BrowserJavaVersion: 10.5.1
Run by user at 21:14:35 on 2013-01-16
#Option Extended Search is enabled.
#Option Whitelisting is disabled.
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.48.1045.18.4002.1682 [GMT 1:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {B140BF4E-23BB-4198-90AB-A51A4C60A69C}
SP: Microsoft Security Essentials *Enabled/Updated* {0A215EAA-0581-4E16-AA1B-9E6837E7EC21}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\nvvsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\windows\system32\svchost.exe -k RPCSS
C:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\Program Files\IDT\WDM\STacSV64.exe
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k NetworkService
C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
C:\windows\system32\nvvsvc.exe
C:\windows\system32\WLANExt.exe
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\windows\system32\Dwm.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\windows\Explorer.EXE
C:\Program Files\IDT\WDM\AESTSr64.exe
C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
C:\windows\system32\svchost.exe -k bthsvcs
C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
C:\Program Files\MySQL\MySQL Server 5.5\bin\mysqld.exe
C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.3.2\ToolbarUpdater.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
C:\windows\system32\wbem\unsecapp.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
C:\Program Files\Microsoft Security Client\NisSrv.exe
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\System32\rundll32.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\DellTPad\Apoint.exe
C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\IDT\WDM\sttray64.exe
C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe
C:\windows\system32\wbem\unsecapp.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
C:\windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\AVG Secure Search\vprot.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Nero\Update\NASvc.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
C:\Program Files (x86)\Ask.com\Updater\Updater.exe
C:\Program Files\K2T\WTW\wtw.exe
C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe
C:\windows\system32\SearchProtocolHost.exe
C:\windows\system32\SearchFilterHost.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://isearch.avg.com/?cid={BBFA2D64-D80A-4184-A9C1-7C02123A89EF}&mid=cb82fda54efb47d08fc29dc9d565a0d6-cd2a1b8facad1333b9195682ad1e0c7dda5339c3&lang=pl&ds=xn011&pr=sa&d=2013-01-07 17:38:14&v=13.3.0.17&sap=hp
uLocal Page = C:\windows\System32\blank.htm
uSearch Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
mStart Page = hxxp://searchab.com/?aff=7&uid=cb083248-4ed7-11e2-a98e-4c8093814925
mLocal Page = C:\Windows\SysWOW64\blank.htm
mSearch Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
mDefault_Page_URL = about:blank
mDefault_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896
uURLSearchHooks: UrlSearchHook Class: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
uURLSearchHooks: Microsoft Url Search Hook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll
uURLSearchHooks: BrotherSoft SPC Toolbar: {759472df-2856-4414-bd87-8e99b2b84ba1} - C:\Program Files (x86)\BrotherSoft_SPC\prxtbBro0.dll
uURLSearchHooks: BrotherSoft Extreme3 Toolbar: {62d40876-df18-411f-9d34-a9dd7a197bc5} - C:\Program Files (x86)\BrotherSoft_Extreme3\prxtbBro0.dll
mURLSearchHooks: BrotherSoft SPC Toolbar: {759472df-2856-4414-bd87-8e99b2b84ba1} - C:\Program Files (x86)\BrotherSoft_SPC\prxtbBro0.dll
mURLSearchHooks: BrotherSoft Extreme3 Toolbar: {62d40876-df18-411f-9d34-a9dd7a197bc5} - C:\Program Files (x86)\BrotherSoft_Extreme3\prxtbBro0.dll
mWinlogon: Shell = explorer.exe
mWinlogon: Userinit = C:\windows\System32\userinit.exe,
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: BrotherSoft Extreme3 Toolbar: {62d40876-df18-411f-9d34-a9dd7a197bc5} - C:\Program Files (x86)\BrotherSoft_Extreme3\prxtbBro0.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
BHO: BrotherSoft SPC Toolbar: {759472df-2856-4414-bd87-8e99b2b84ba1} - C:\Program Files (x86)\BrotherSoft_SPC\prxtbBro0.dll
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
BHO: Pomocnik logowania za pomocą identyfikatora Windows Live: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\13.3.0.17\AVG Secure Search_toolbar.dll
BHO: Zoomex: {A6C5FD41-6DFE-9ADE-548C-B6ADE4336753} - C:\ProgramData\Zoomex\50e06dd7e346f.dll
BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -
BHO: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
BHO: Zoomex: {D4A31B68-3519-A8C1-8B2A-3D68DD9F4546} - C:\ProgramData\Zoomex\50da1b3b15fa5.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
TB: BrotherSoft Extreme3 Toolbar: {62D40876-DF18-411F-9D34-A9DD7A197BC5} - C:\Program Files (x86)\BrotherSoft_Extreme3\prxtbBro0.dll
TB: BrotherSoft SPC Toolbar: {759472DF-2856-4414-BD87-8E99B2B84BA1} - C:\Program Files (x86)\BrotherSoft_SPC\prxtbBro0.dll
TB: BrotherSoft SPC Toolbar: {759472df-2856-4414-bd87-8e99b2b84ba1} - C:\Program Files (x86)\BrotherSoft_SPC\prxtbBro0.dll
TB: BrotherSoft Extreme3 Toolbar: {62d40876-df18-411f-9d34-a9dd7a197bc5} - C:\Program Files (x86)\BrotherSoft_Extreme3\prxtbBro0.dll
TB: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
TB: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\13.3.0.17\AVG Secure Search_toolbar.dll
uRun: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
uRunOnce: [FlashPlayerUpdate] C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_135_Plugin.exe -update plugin
mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
mRun: [Dell Registration] C:\Program Files (x86)\System Registration\prodreg.exe /boot
mRun: [RoxWatchTray] "c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe"
mRun: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [UnlockerAssistant] "C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe"
mRun: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe"
mRun: [ApnUpdater] "C:\Program Files (x86)\Ask.com\Updater\Updater.exe"
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableInstallerDetection = dword:1
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableSecureUIAPaths = dword:1
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: EnableVirtualization = dword:1
mPolicies-System: PromptOnSecureDesktop = dword:0
mPolicies-System: ValidateAdminCodeSignatures = dword:0
mPolicies-System: dontdisplaylastusername = dword:0
mPolicies-System: scforceoption = dword:0
mPolicies-System: shutdownwithoutlogon = dword:1
mPolicies-System: undockwithoutlogon = dword:1
mPolicies-System: FilterAdministratorToken = dword:0
mPolicies-System: DisableRegistryTools = dword:0
IE: E&ksportuj do programu Microsoft Excel - C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} -
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
LSP: %SystemRoot%\system32\mswsock.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0-windows-i586.cab
TCP: NameServer = 10.10.0.1
TCP: Interfaces\{548BB0C0-A140-4580-AEF8-37EF96A9BC65} : DHCPNameServer = 10.10.0.1
TCP: Interfaces\{548BB0C0-A140-4580-AEF8-37EF96A9BC65}\2626 : DHCPNameServer = 10.10.0.1
TCP: Interfaces\{832A338E-1703-44E7-BE10-15837A59121C} : DHCPNameServer = 192.168.1.1
Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} -
Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} -
Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} -
Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL
Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll
Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll
Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\MSVidCtl.dll
Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll
Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll
Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll
Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\windows\System32\itss.dll
Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll
Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll
Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\windows\System32\inetcomm.dll
Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll
Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll
Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\windows\System32\itss.dll
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysWOW64\MSVidCtl.dll
Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\13.3.2\ViProtocol.dll
Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
Name-Space Handler: mk\* - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\windows\System32\itss.dll
AppInit_DLLs= c:\Windows\SysWOW64\nvinit.dll c:\Windows\SysWOW64\nvinit.dll c:\PROGRA~2\ZoomEx\sprotector.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
SecurityProviders: SecurityProviders = credssp.dll
LSA: Authentication Packages = msv1_0
LSA: Notification Packages = scecli
LSA: Security Packages = kerberos msv1_0 schannel wdigest tspkg pku2u livessp
SubSystems: Windows = basesrv,1 winsrv:UserServerDllInitialization,3 winsrv:ConServerDllInitialization,2 sxssrv,4
mASetup: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\windows\System32\unregmp2.exe /ShowWMP
mASetup: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\SysWOW64\ie4uinit.exe -UserIconConfig
mASetup: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\SysWOW64\rundll32.exe" "C:\Windows\SysWOW64\iedkcs32.dll",BrandIEActiveSetup SIGNUP
mASetup: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - C:\windows\System32\regsvr32.exe /s /n /i:/UserInstall C:\windows\System32\themeui.dll
mASetup: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "C:\Program Files (x86)\Windows Mail\WinMail.exe" OCInstallUserConfigOE
mASetup: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - C:\windows\System32\unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI
mASetup: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
mASetup: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\SysWOW64\ie4uinit.exe -BaseSettings
mASetup: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\windows\System32\shell32.dll
x64-mStart Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157
x64-mLocal Page = C:\windows\System32\blank.htm
x64-mSearch Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
x64-mDefault_Page_URL = hxxp://go.microsoft.com/fwlink/?LinkId=69157
x64-mDefault_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896
x64-mSearchAssistant = hxxp://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
x64-mCustomizeSearch = hxxp://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
x64-mWinlogon: Shell = Explorer.exe
x64-mWinlogon: Userinit = C:\windows\System32\userinit.exe,
x64-mWinlogon: SFCDisable = dword:0
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Skype add-on for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -
x64-BHO: {DBC80044-A445-435b-BC74-9C25C1C588A9} - <orphaned>
x64-Run: [IgfxTray] C:\windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\windows\System32\igfxpers.exe
x64-Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe
x64-Run: [IntelTBRunOnce] wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
x64-Run: [IntelPAN] "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PAN Tray
x64-Run: [BTMTrayAgent] rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
x64-Run: [DellStage] "C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\start.umj" --startup
x64-Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
x64-Run: [NVHotkey] rundll32.exe C:\windows\System32\nvHotkey.dll,Start
x64-Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe
x64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} -
x64-DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
x64-Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} -
x64-Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} -
x64-Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} -
x64-Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL
x64-Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\windows\System32\mshtml.dll
x64-Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\windows\System32\urlmon.dll
x64-Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\windows\System32\MSVidCtl.dll
x64-Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\windows\System32\urlmon.dll
x64-Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\windows\System32\urlmon.dll
x64-Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - <orphaned>
x64-Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\windows\System32\urlmon.dll
x64-Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\windows\System32\urlmon.dll
x64-Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\windows\System32\itss.dll
x64-Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\windows\System32\mshtml.dll
x64-Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - <orphaned>
x64-Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\windows\System32\urlmon.dll
x64-Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\windows\System32\mshtml.dll
x64-Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\windows\System32\inetcomm.dll
x64-Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\windows\System32\urlmon.dll
x64-Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - <orphaned>
x64-Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\windows\System32\itss.dll
x64-Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - <orphaned>
x64-Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\windows\System32\mshtml.dll
x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\windows\System32\MSVidCtl.dll
x64-Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\windows\System32\mshtml.dll
x64-Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - <orphaned>
x64-Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Name-Space Handler: mk\* - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\windows\System32\itss.dll
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
x64-mASetup: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\windows\System32\unregmp2.exe /ShowWMP
x64-mASetup: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\windows\System32\ie4uinit.exe -UserIconConfig
x64-mASetup: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\windows\System32\rundll32.exe" "C:\windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
x64-mASetup: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - C:\windows\System32\regsvr32.exe /s /n /i:/UserInstall C:\windows\System32\themeui.dll
x64-mASetup: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "C:\Program Files (x86)\Windows Mail\WinMail.exe" OCInstallUserConfigOE
x64-mASetup: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - C:\windows\System32\unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI
x64-mASetup: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
x64-mASetup: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\windows\System32\ie4uinit.exe -BaseSettings
x64-mASetup: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\windows\System32\Rundll32.exe C:\windows\System32\mscories.dll,Install
x64-CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\windows\System32\shell32.dll
.
============= SERVICES / DRIVERS ===============
.
R0 ACPI;Sterownik Microsoft ACPI;C:\windows\System32\drivers\acpi.sys [2010-11-21 334208]
R0 amdxata;amdxata;C:\windows\System32\drivers\amdxata.sys [2011-11-16 27008]
R0 atapi;Kanał IDE;C:\windows\System32\drivers\atapi.sys [2009-7-14 24128]
R0 CLFS;System Common Log (CLFS);C:\windows\System32\clfs.sys [2009-7-14 367696]
R0 CNG;CNG;C:\windows\System32\drivers\cng.sys [2012-7-11 458704]
R0 Compbatt;Sterownik baterii kompozytowej Microsoft;C:\windows\System32\drivers\compbatt.sys [2009-7-14 21584]
R0 Disk;Sterownik dysku;C:\windows\System32\drivers\disk.sys [2009-7-14 73280]
R0 FileInfo;File Information FS MiniFilter;C:\windows\System32\drivers\fileinfo.sys [2009-7-14 70224]
R0 FltMgr;FltMgr;C:\windows\System32\drivers\fltMgr.sys [2010-11-21 289664]
R0 fvevol;Sterownik filtru szyfrowania dysków funkcją BitLocker;C:\windows\System32\drivers\fvevol.sys [2010-11-21 223248]
R0 hwpolicy;Hardware Policy Driver;C:\windows\System32\drivers\hwpolicy.sys [2010-11-21 14720]
R0 iaStor;Intel AHCI Controller;C:\windows\System32\drivers\iaStor.sys [2012-1-12 438808]
R0 KSecDD;KSecDD;C:\windows\System32\drivers\ksecdd.sys [2012-7-11 95600]
R0 KSecPkg;KSecPkg;C:\windows\System32\drivers\ksecpkg.sys [2012-7-11 151920]
R0 mountmgr;Menedżer punktów instalacji;C:\windows\System32\drivers\mountmgr.sys [2010-11-21 94592]
R0 MpFilter;Microsoft Malware Protection Driver;C:\windows\System32\drivers\MpFilter.sys [2012-8-30 228768]
R0 msahci;msahci;C:\windows\System32\drivers\msahci.sys [2010-11-21 31104]
R0 msisadrv;msisadrv;C:\windows\System32\drivers\msisadrv.sys [2009-7-14 15424]
R0 Mup;Mup;C:\windows\System32\drivers\mup.sys [2009-7-14 60496]
R0 NDIS;Sterownik systemowy NDIS;C:\windows\System32\drivers\ndis.sys [2012-9-12 950128]
R0 nvpciflt;nvpciflt;C:\windows\System32\drivers\nvpciflt.sys [2012-1-12 25960]
R0 partmgr;Menedżer partycji;C:\windows\System32\drivers\partmgr.sys [2012-5-30 75120]
R0 pci;Sterownik magistrali PCI;C:\windows\System32\drivers\pci.sys [2010-11-21 184704]
R0 pcw;Performance Counters for Windows Driver;C:\windows\System32\drivers\pcw.sys [2009-7-14 50768]
R0 PxHlpa64;PxHlpa64;C:\windows\System32\drivers\PxHlpa64.sys [2012-1-12 55856]
R0 rdyboost;ReadyBoost;C:\windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 spldr;Security Processor Loader Driver;C:\windows\System32\drivers\spldr.sys [2009-7-13 19008]
R0 Tcpip;Sterownik protokołu TCP/IP;C:\windows\System32\drivers\tcpip.sys [2012-11-16 1914248]
R0 vdrvroot;Sterownik modułu wyliczającego dysku wirtualnego Microsoft;C:\windows\System32\drivers\vdrvroot.sys [2009-7-14 36432]
R0 volmgr;Sterownik Menedżera woluminów;C:\windows\System32\drivers\volmgr.sys [2010-11-21 71552]
R0 volmgrx;Menedżer woluminów dynamicznych;C:\windows\System32\drivers\volmgrx.sys [2010-11-21 363392]
R0 volsnap;Woluminy magazynu;C:\windows\System32\drivers\volsnap.sys [2010-11-21 295808]
R0 Wdf01000;Usługa struktur sterowników trybu jądra;C:\windows\System32\drivers\Wdf01000.sys [2012-11-16 785512]
R1 AFD;Ancillary Function Driver for Winsock;C:\windows\System32\drivers\afd.sys [2012-5-30 498688]
R1 avgtp;avgtp;C:\windows\System32\drivers\avgtpx64.sys [2013-1-7 30568]
R1 Beep;Beep;C:\windows\System32\drivers\beep.sys [2009-7-14 6656]
R1 blbdrive;blbdrive;C:\windows\System32\drivers\blbdrive.sys [2009-7-14 45056]
R1 cdrom;Sterownik stacji dysków CD-ROM;C:\windows\System32\drivers\cdrom.sys [2010-11-21 147456]
R1 DfsC;DFS Namespace Client Driver;C:\windows\System32\drivers\dfsc.sys [2010-11-21 102400]
R1 discache;System Attribute Cache;C:\windows\System32\drivers\discache.sys [2009-7-14 40448]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\windows\System32\drivers\dtsoftbus01.sys [2012-12-22 283200]
R1 Msfs;Msfs;C:\windows\System32\drivers\msfs.sys [2009-7-14 26112]
R1 mssmbios;Sterownik BIOS zarządzania systemem firmy Microsoft;C:\windows\System32\drivers\mssmbios.sys [2009-7-14 32320]
R1 NetBIOS;NetBIOS Interface;C:\windows\System32\drivers\netbios.sys [2009-7-14 44544]
R1 NetBT;NetBT;C:\windows\System32\drivers\netbt.sys [2010-11-21 261632]
R1 Npfs;Npfs;C:\windows\System32\drivers\npfs.sys [2009-7-14 44032]
R1 nsiproxy;NSI proxy service driver.;C:\windows\System32\drivers\nsiproxy.sys [2009-7-14 24576]
R1 Null;Null;C:\windows\System32\drivers\null.sys [2009-7-14 6144]
R1 Psched;Harmonogram pakietów QoS;C:\windows\System32\drivers\pacer.sys [2010-11-21 131584]
R1 rdbss;Podsystem buforowania przekierowywanych danych;C:\windows\System32\drivers\rdbss.sys [2010-11-21 309248]
R1 RDPCDD;RDPCDD;C:\windows\System32\drivers\RDPCDD.sys [2009-7-14 7680]
R1 RDPENCDD;RDP Encoder Mirror Driver;C:\windows\System32\drivers\RDPENCDD.sys [2009-7-14 7680]
R1 RDPREFMP;Reflector Display Driver used to gain access to graphics data;C:\windows\System32\drivers\RDPREFMP.sys [2009-7-14 8192]
R1 tdx;Sterownik obsługi starszych urządzeń TDI NetIO;C:\windows\System32\drivers\tdx.sys [2010-11-21 119296]
R1 TermDD;Sterownik urządzenia terminalu;C:\windows\System32\drivers\termdd.sys [2010-11-21 63360]
R1 VgaSave;VgaSave;C:\windows\System32\drivers\vga.sys [2009-7-14 29184]
R1 vwififlt;Virtual WiFi Filter Driver;C:\windows\System32\drivers\vwififlt.sys [2009-7-14 59904]
R1 Wanarpv6;Sterownik usługi Dostęp zdalny IPv6 ARP;C:\windows\System32\drivers\wanarp.sys [2010-11-21 88576]
R1 WfpLwf;WFP Lightweight Filter;C:\windows\System32\drivers\wfplwf.sys [2009-7-14 12800]
R1 ws2ifsl;Sterownik Winsock IFS;C:\windows\System32\drivers\ws2ifsl.sys [2009-7-14 21504]
R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-12-18 65192]
R2 AESTFilters;Andrea ST Filters Service;C:\Program Files\IDT\WDM\AESTSr64.exe [2012-1-12 89600]
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service;C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2011-9-15 1166848]
R2 AudioEndpointBuilder;Konstruktor punktów końcowych audio systemu Windows;C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
R2 AudioSrv;Windows Audio;C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2009-7-14 27136]
R2 BFE;Podstawowy aparat filtrowania;C:\windows\System32\svchost.exe -k LocalServiceNoNetwork [2009-7-14 27136]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor;C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2011-5-19 921664]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service;C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2011-5-19 995392]
R2 BTHSSecurityMgr;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Security Service;C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2011-6-3 134928]
R2 CryptSvc;Usługi kryptograficzne;C:\windows\System32\svchost.exe -k NetworkService [2009-7-14 27136]
R2 DcomLaunch;Program uruchamiający proces serwera DCOM;C:\windows\System32\svchost.exe -k DcomLaunch [2009-7-14 27136]
R2 Dhcp;Klient DHCP;C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2009-7-14 27136]
R2 Dnscache;Klient DNS;C:\windows\System32\svchost.exe -k NetworkService [2009-7-14 27136]
R2 DPS;Usługa zasad diagnostyki;C:\windows\System32\svchost.exe -k LocalServiceNoNetwork [2009-7-14 27136]
R2 eventlog;Dziennik zdarzeń systemu Windows;C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2009-7-14 27136]
R2 EventSystem;System zdarzeń COM+;C:\windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
R2 EvtEng;Intel® PROSet/Wireless Event Log;C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2011-9-16 1518352]
R2 FDResPub;Publikacja zasobów odnajdowania funkcji;C:\windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-14 27136]
R2 FontCache;Usług systemu Windows buforowania czcionek;C:\windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-14 27136]
R2 Freemake Improver;Freemake Improver;C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [2012-7-11 96768]
R2 gpsvc;Klient zasad grupy;C:\windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-1-12 13336]
R2 IKEEXT;Moduły obsługi kluczy IPsec IKE i AuthIP;C:\windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R2 iphlpsvc;Pomoc IP;C:\windows\System32\svchost.exe -k NetSvcs [2009-7-14 27136]
R2 LanmanServer;Serwer;C:\windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R2 LanmanWorkstation;Stacja robocza;C:\windows\System32\svchost.exe -k NetworkService [2009-7-14 27136]
R2 lltdio;Link-Layer Topology Discovery Mapper I/O Driver;C:\windows\System32\drivers\lltdio.sys [2009-7-14 60928]
R2 lmhosts;Pomoc TCP/IP NetBIOS;C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2009-7-14 27136]
R2 LMS;Intel® Management and Security Application Local Management Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [2012-1-12 325656]
R2 luafv;Wirtualizacja pliku UAC;C:\windows\System32\drivers\luafv.sys [2009-7-14 113152]
R2 MMCSS;Harmonogram klas multimediów;C:\windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R2 MpsSvc;Zapora systemu Windows;C:\windows\System32\svchost.exe -k LocalServiceNoNetwork [2009-7-14 27136]
R2 MsMpSvc;Microsoft Antimalware Service;C:\Program Files\Microsoft Security Client\MsMpEng.exe [2012-9-12 22072]
R2 MySQL55;MySQL55;"C:\Program Files\MySQL\MySQL Server 5.5\bin\mysqld" --defaults-file="C:\ProgramData\MySQL\MySQL Server 5.5\my.ini" MySQL55 --> C:\Program Files\MySQL\MySQL Server 5.5\bin\mysqld [?]
R2 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2011-11-25 687400]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0;C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-7-20 935208]
R2 NisDrv;Microsoft Network Inspection System;C:\windows\System32\drivers\NisDrvWFP.sys [2012-3-20 128456]
R2 NlaSvc;Rozpoznawanie lokalizacji w sieci;C:\windows\System32\svchost.exe -k NetworkService [2009-7-14 27136]
R2 nsi;Usługa interfejsu magazynu sieciowego;C:\windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
R2 NVSvc;NVIDIA Driver Helper Service;C:\windows\System32\nvvsvc.exe [2011-4-21 993896]
R2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2012-1-12 2009704]
R2 PcaSvc;Usługa Asystent zgodności programów;C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
R2 PEAUTH;PEAUTH;C:\windows\System32\drivers\PEAuth.sys [2009-7-14 651264]
R2 PlugPlay;Plug and Play;C:\windows\System32\svchost.exe -k DcomLaunch [2009-7-14 27136]
R2 Power;Zasilanie;C:\windows\System32\svchost.exe -k DcomLaunch [2009-7-14 27136]
R2 ProfSvc;Usługa profilów użytkowników;C:\windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R2 RegSrvc;Intel® PROSet/Wireless Registry Service;C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2011-9-16 844560]
R2 RpcEptMapper;Program mapowania punktów końcowych wywołań RPC;C:\windows\System32\svchost.exe -k RPCSS [2009-7-14 27136]
R2 RpcSs;Zdalne wywoływanie procedur (RPC);C:\windows\System32\svchost.exe -k rpcss [2009-7-14 27136]
R2 rspndr;Link-Layer Topology Discovery Responder;C:\windows\System32\drivers\rspndr.sys [2009-7-14 76800]
R2 SamSs;Menedżer kont zabezpieczeń;C:\windows\System32\lsass.exe [2012-5-30 31232]
R2 secdrv;Security Driver;C:\windows\System32\drivers\secdrv.sys [2009-7-14 23040]
R2 seclogon;Logowanie pomocnicze;C:\windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R2 SENS;Usługa powiadamiania o zdarzeniach systemowych;C:\windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R2 SftService;SoftThinks Agent Service;C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe [2012-1-12 1692480]
R2 ShellHWDetection;Wykrywanie sprzętu powłoki;C:\windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R2 Skype C2C Service;Skype C2C Service;C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-10-2 3064000]
R2 Spooler;Bufor wydruku;C:\windows\System32\spoolsv.exe [2012-8-15 559104]
R2 STacSV;Audio Service;C:\Program Files\IDT\WDM\stacsv64.exe [2012-1-12 296448]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-5-15 382272]
R2 stisvc;Windows Image Acquisition (WIA);C:\windows\System32\svchost.exe -k imgsvc [2009-7-14 27136]
R2 SysMain;Wstępne ładowanie do pamięci;C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
R2 tcpipreg;TCP/IP Registry Compatibility;C:\windows\System32\drivers\tcpipreg.sys [2012-11-16 45568]
R2 Themes;Kompozycje;C:\windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R2 TrkWks;Klient śledzenia łączy rozproszonych;C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
R2 TurboB;Turbo Boost UI Monitor driver;C:\windows\System32\drivers\TurboB.sys [2010-11-29 16120]
R2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2012-1-12 2655768]
R2 UxSms;Menedżer sesji Menedżera okien pulpitu;C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
R2 vToolbarUpdater13.3.2;vToolbarUpdater13.3.2;C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.3.2\ToolbarUpdater.exe [2013-1-7 894920]
R2 Winmgmt;Instrumentacja zarządzania Windows;C:\windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R2 Wlansvc;Autokonfiguracja sieci WLAN;C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
R2 wlidsvc;Windows Live ID Sign-in Assistant;C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-9-21 2286976]
R2 wscsvc;Centrum zabezpieczeń;C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2009-7-14 27136]
R2 WSearch;Windows Search;C:\windows\System32\SearchIndexer.exe [2012-1-12 591872]
R2 wuauserv;Windows Update;C:\windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R2 wudfsvc;Windows Driver Foundation — User-mode Driver Framework;C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
R3 AeLookupSvc;Użytkowanie aplikacji;C:\windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R3 AMPPAL;Karta wirtualna Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed;C:\windows\System32\drivers\AmpPal.sys [2011-9-15 299008]
R3 ApfiltrService;Alps Touch Pad Filter Driver for Windows x64;C:\windows\System32\drivers\Apfiltr.sys [2012-1-12 363856]
R3 BITS;Usługa inteligentnego transferu w tle;C:\windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R3 Bluetooth Media Service;Bluetooth Media Service;C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2011-5-19 1335360]
R3 bowser;Sterownik obsługi przeglądarki;C:\windows\System32\drivers\bowser.sys [2012-5-30 90624]
R3 BthEnum;Sterownik Bluetooth Request Block;C:\windows\System32\drivers\bthenum.sys [2009-7-14 41984]
R3 BTHMODEM;Sterownik Bluetooth Serial Communications;C:\windows\System32\drivers\bthmodem.sys [2009-7-14 72192]
R3 BthPan;Urządzenie Bluetooth (sieć osobista);C:\windows\System32\drivers\bthpan.sys [2009-7-14 118784]
R3 bthserv;Usługa obsługi Bluetooth;C:\windows\System32\svchost.exe -k bthsvcs [2009-7-14 27136]
R3 BTHUSB;Sterownik USB odbiornika radiowego Bluetooth;C:\windows\System32\drivers\BTHUSB.SYS [2011-11-16 80384]
R3 btmaudio;Intel Bluetooth Audio Service;C:\windows\System32\drivers\btmaud.sys [2011-5-19 51712]
R3 btmaux;Intel Bluetooth Auxiliary Service;C:\windows\System32\drivers\btmaux.sys [2011-5-19 53248]
R3 btmhsf;btmhsf;C:\windows\System32\drivers\btmhsf.sys [2011-7-19 282624]
R3 CmBatt;Sterownik baterii Microsoft o metodzie kontroli ACPI;C:\windows\System32\drivers\CmBatt.sys [2009-7-14 17664]
R3 CompositeBus;Sterownik modułu wyliczającego magistrali kompozytowej;C:\windows\System32\drivers\CompositeBus.sys [2010-11-21 38912]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver;C:\windows\System32\drivers\CtClsFlt.sys [2012-1-12 176096]
R3 DXGKrnl;LDDM Graphics Subsystem;C:\windows\System32\drivers\dxgkrnl.sys [2010-11-21 982912]
R3 EapHost;Protokół uwierzytelniania rozszerzonego (EAP);C:\windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R3 fastfat;FAT12/16/32 File System Driver;C:\windows\System32\drivers\fastfat.sys [2009-7-14 204800]
R3 HDAudBus;Sterownik magistrali UAA firmy Microsoft dla standardu High Definition Audio;C:\windows\System32\drivers\hdaudbus.sys [2010-11-21 122368]
R3 HidUsb;Sterownik Microsoft klasy HID;C:\windows\System32\drivers\hidusb.sys [2010-11-21 30208]
R3 HTTP;HTTP;C:\windows\System32\drivers\http.sys [2010-11-21 753664]
R3 i8042prt;Sterownik portu klawiatury i8042 i myszy PS/2;C:\windows\System32\drivers\i8042prt.sys [2009-7-14 105472]
R3 iBtFltCoex;iBtFltCoex;C:\windows\System32\drivers\iBtFltCoex.sys [2011-7-20 59904]
R3 igfx;igfx;C:\windows\System32\drivers\igdkmd64.sys [2012-1-12 12223936]
R3 intelppm;Sterownik procesora Intel;C:\windows\System32\drivers\intelppm.sys [2009-7-14 62464]
R3 iwdbus;IWD Bus Enumerator;C:\windows\System32\drivers\iwdbus.sys [2011-6-21 25496]
R3 kbdclass;Sterownik klasy klawiatury;C:\windows\System32\drivers\kbdclass.sys [2009-7-14 50768]
R3 KeyIso;Izolacja klucza CNG;C:\windows\System32\lsass.exe [2012-5-30 31232]
R3 ksthunk;Kernel Streaming Thunks;C:\windows\System32\drivers\ksthunk.sys [2009-7-14 20992]
R3 MEIx64;Intel® Management Engine Interface;C:\windows\System32\drivers\HECIx64.sys [2012-1-12 56344]
R3 Modem;Modem;C:\windows\System32\drivers\modem.sys [2009-7-14 40448]
R3 monitor;Usługa sterownika funkcji klas monitorów firmy Microsoft;C:\windows\System32\drivers\monitor.sys [2009-7-14 30208]
R3 mouclass;Sterownik klasy myszy;C:\windows\System32\drivers\mouclass.sys [2009-7-14 49216]
R3 mouhid;Sterownik myszy HID;C:\windows\System32\drivers\mouhid.sys [2009-7-14 31232]
R3 mpsdrv;Sterownik uwierzytelniania Zapory systemu Windows;C:\windows\System32\drivers\mpsdrv.sys [2009-7-14 77312]
R3 mrxsmb;Otoka i aparat minireadresatora SMB;C:\windows\System32\drivers\mrxsmb.sys [2011-11-16 158208]
R3 mrxsmb10;Minireadresator SMB 1.x;C:\windows\System32\drivers\mrxsmb10.sys [2011-11-16 288768]
R3 mrxsmb20;Minireadresator SMB 2.0;C:\windows\System32\drivers\mrxsmb20.sys [2011-11-16 128000]
R3 NativeWifiP;NativeWiFi Filter;C:\windows\System32\drivers\nwifi.sys [2009-7-14 318976]
R3 NdisTapi;Sterownik usługi Dostęp zdalny NDIS TAPI;C:\windows\System32\drivers\ndistapi.sys [2009-7-14 24064]
R3 Ndisuio;NDIS Usermode I/O Protocol;C:\windows\System32\drivers\ndisuio.sys [2010-11-21 56832]
R3 NdisWan;Sterownik usługi Dostęp zdalny NDIS WAN;C:\windows\System32\drivers\ndiswan.sys [2010-11-21 164352]
R3 NDProxy;NDIS Proxy;C:\windows\System32\drivers\ndproxy.sys [2010-11-21 57856]
R3 Netman;Połączenia sieciowe;C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
R3 netprofm;Usługa listy sieci;C:\windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
R3 NETwNs64;___ Sterownik karty Intel® Wireless WiFi Link 5000 Series dla systemu Windows 7 64 Bit;C:\windows\System32\drivers\NETwNs64.sys [2011-9-18 8604672]
R3 NisSrv;Inspekcja sieci firmy Microsoft;C:\Program Files\Microsoft Security Client\NisSrv.exe [2012-9-12 368896]
R3 Ntfs;Ntfs;C:\windows\System32\drivers\ntfs.sys [2012-11-1 1659760]
R3 nvlddmkm;nvlddmkm;C:\windows\System32\drivers\nvlddmkm.sys [2012-1-12 13071592]
R3 PolicyAgent;Agent zasad IPsec;C:\windows\System32\svchost.exe -k NetworkServiceNetworkRestricted [2009-7-14 27136]
R3 PptpMiniport;Miniport WAN (PPTP);C:\windows\System32\drivers\raspptp.sys [2010-11-21 111104]
R3 RasAgileVpn;WAN Miniport (IKEv2);C:\windows\System32\drivers\agilevpn.sys [2009-7-14 60416]
R3 Rasl2tp;Miniport WAN (L2TP);C:\windows\System32\drivers\rasl2tp.sys [2010-11-21 129536]
R3 RasMan;Menedżer połączeń usługi Dostęp zdalny;C:\windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R3 RasPppoe;Sterownik usługi Dostęp zdalny PPPOE;C:\windows\System32\drivers\raspppoe.sys [2009-7-14 92672]
R3 RasSstp;WAN Miniport (SSTP);C:\windows\System32\drivers\rassstp.sys [2009-7-14 83968]
R3 RFCOMM;Urządzenie Bluetooth (Protokół TDI RFCOMM);C:\windows\System32\drivers\rfcomm.sys [2009-7-14 158720]
R3 RTL8167;Realtek 8167 NT Driver;C:\windows\System32\drivers\Rt64win7.sys [2012-1-12 406632]
R3 srv;Sterownik serwera SMB 1.xxx;C:\windows\System32\drivers\srv.sys [2011-11-16 467456]
R3 srv2;Sterownik serwera SMB 2.xxx;C:\windows\System32\drivers\srv2.sys [2011-11-16 410112]
R3 srvnet;srvnet;C:\windows\System32\drivers\srvnet.sys [2011-11-16 168448]
R3 SSDPSRV;Odnajdywanie SSDP;C:\windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-14 27136]
R3 SstpSvc;Usługa Protokół SSTP;C:\windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
R3 STHDA;IDT High Definition Audio CODEC;C:\windows\System32\drivers\stwrt64.sys [2012-1-12 520192]
R3 swenum;Sterownik magistrali programowej;C:\windows\System32\drivers\swenum.sys [2009-7-14 12496]
R3 TapiSrv;Telefonia;C:\windows\System32\svchost.exe -k NetworkService [2009-7-14 27136]
R3 tihub3;TI USB3 Hub Service;C:\windows\System32\drivers\tihub3.sys [2011-7-20 136000]
R3 tixhci;TI XHCI Service;C:\windows\System32\drivers\tixhci.sys [2011-7-20 406336]
R3 tunnel;Sterownik karty Microsoft Tunnel Miniport;C:\windows\System32\drivers\tunnel.sys [2010-11-21 125440]
R3 umbus;Sterownik modułu wyliczającego UMBus;C:\windows\System32\drivers\umbus.sys [2010-11-21 48640]
R3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft;C:\windows\System32\drivers\usbccgp.sys [2011-11-16 99328]
R3 usbehci;Sterownik Miniport rozszerzonego kontrolera hosta USB 2.0 Microsoft;C:\windows\System32\drivers\usbehci.sys [2011-11-16 52736]
R3 usbhub;Standardowy sterownik koncentratora USB Microsoft;C:\windows\System32\drivers\usbhub.sys [2011-11-16 343040]
R3 usbvideo;Urządzenie wideo USB (WDM);C:\windows\System32\drivers\usbvideo.sys [2010-11-21 184960]
R3 VCSVADHWSer;Avnex Virtual Audio Device (WDM);C:\windows\System32\drivers\vcsvad.sys [2012-7-24 21504]
R3 vwifibus;Sterownik wirtualnej magistrali WiFi;C:\windows\System32\drivers\vwifibus.sys [2009-7-14 24576]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;C:\windows\System32\drivers\vwifimp.sys [2009-7-14 17920]
R3 WdiServiceHost;Host usługi diagnostyki;C:\windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI;C:\windows\System32\drivers\wmiacpi.sys [2009-7-14 14336]
R3 WMPNetworkSvc;Usługa udostępniania w sieci programu Windows Media Player;C:\Program Files\Windows Media Player\wmpnetwk.exe [2010-11-21 1525248]
R3 WudfPf;User Mode Driver Frameworks Platform Driver;C:\windows\System32\drivers\WUDFPf.sys [2012-11-16 87040]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 RoxWatch12;Roxio Hard Drive Watcher 12;C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [2010-11-25 219632]
S2 SharedAccess;Udostępnianie połączenia internetowego (ICS);C:\windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S2 SkypeUpdate;Skype Updater;"C:\Program Files (x86)\Skype\Updater\Updater.exe" --> C:\Program Files (x86)\Skype\Updater\Updater.exe [?]
S2 sppsvc;Ochrona oprogramowania;C:\windows\System32\sppsvc.exe [2010-11-21 3524608]
S3 1394ohci;1394 OHCI Compliant Host Controller;C:\windows\System32\drivers\1394ohci.sys [2010-11-21 229888]
S3 AcpiPmi;ACPI Power Meter Driver;C:\windows\System32\drivers\acpipmi.sys [2010-11-21 12800]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-6-2 250808]
S3 adp94xx;adp94xx;C:\windows\System32\drivers\adp94xx.sys [2009-6-10 491088]
S3 adpahci;adpahci;C:\windows\System32\drivers\adpahci.sys [2009-7-13 339536]
S3 adpu320;adpu320;C:\windows\System32\drivers\adpu320.sys [2009-7-13 182864]
S3 agp440;Intel AGP Bus Filter;C:\windows\System32\drivers\AGP440.sys [2009-7-14 61008]
S3 ALG;Usługa bramy warstwy aplikacji;C:\windows\System32\alg.exe [2009-7-14 79360]
S3 aliide;aliide;C:\windows\System32\drivers\aliide.sys [2009-7-14 15440]
S3 amdide;amdide;C:\windows\System32\drivers\amdide.sys [2009-7-14 15440]
S3 AmdK8;AMD K8 Processor Driver;C:\windows\System32\drivers\amdk8.sys [2009-7-14 64512]
S3 AmdPPM;AMD Processor Driver;C:\windows\System32\drivers\amdppm.sys [2009-7-14 60928]
S3 amdsata;amdsata;C:\windows\System32\drivers\amdsata.sys [2011-11-16 107904]
S3 amdsbs;amdsbs;C:\windows\System32\drivers\amdsbs.sys [2009-6-10 194128]
S3 AMPPALP;Protokół Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed;C:\windows\System32\drivers\AmpPal.sys [2011-9-15 299008]
S3 AppID;Sterownik AppID;C:\windows\System32\drivers\appid.sys [2010-11-21 61440]
S3 AppIDSvc;Tożsamość aplikacji;C:\windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-14 27136]
S3 Appinfo;Informacje o aplikacji;C:\windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 arc;arc;C:\windows\System32\drivers\arc.sys [2009-7-13 87632]
S3 arcsas;arcsas;C:\windows\System32\drivers\arcsas.sys [2009-7-13 97856]
S3 aspnet_state;ASP.NET State Service;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-3-19 44376]
S3 AsyncMac;Sterownik multimediów asynchronicznych RAS;C:\windows\System32\drivers\asyncmac.sys [2009-7-14 23040]
S3 AxInstSV;Instalator formantów ActiveX (AxInstSV);C:\windows\System32\svchost.exe -k AxInstSVGroup [2009-7-14 27136]
S3 b06bdrv;Broadcom NetXtreme II VBD;C:\windows\System32\drivers\bxvbda.sys [2009-6-10 468480]
S3 b57nd60a;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;C:\windows\System32\drivers\b57nd60a.sys [2009-6-10 270848]
S3 BDESVC;Usługa szyfrowania dysków funkcją BitLocker;C:\windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 BrFiltLo;Brother USB Mass-Storage Lower Filter Driver;C:\windows\System32\drivers\BrFiltLo.sys [2009-7-14 18432]
S3 BrFiltUp;Brother USB Mass-Storage Upper Filter Driver;C:\windows\System32\drivers\BrFiltUp.sys [2009-7-14 8704]
S3 BridgeMP;Miniport mostka MAC;C:\windows\System32\drivers\bridge.sys [2009-7-14 95232]
S3 Browser;Przeglądarka komputera;C:\windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 Brserid;Brother MFC Serial Port Interface Driver (WDM);C:\windows\System32\drivers\BrSerId.sys [2009-7-14 286720]
S3 BrSerWdm;Brother WDM Serial driver;C:\windows\System32\drivers\BrSerWdm.sys [2009-7-14 47104]
S3 BrUsbMdm;Brother MFC USB Fax Only Modem;C:\windows\System32\drivers\BrUsbMdm.sys [2009-7-14 14976]
S3 BrUsbSer;Brother MFC USB Serial WDM Driver;C:\windows\System32\drivers\BrUsbSer.sys [2009-7-14 14720]
S3 BTHPORT;Sterownik portu Bluetooth;C:\windows\System32\drivers\bthport.sys [2012-8-15 552960]
S3 CertPropSvc;Propagacja certyfikatu;C:\windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 circlass;Consumer IR Devices;C:\windows\System32\drivers\circlass.sys [2009-7-14 45568]
S3 cmdide;cmdide;C:\windows\System32\drivers\cmdide.sys [2009-7-14 17488]
S3 COMSysApp;Aplikacja systemowa modelu COM+;C:\windows\System32\dllhost.exe [2009-7-14 9728]
S3 defragsvc;Defragmentator dysków;C:\windows\System32\svchost.exe -k defragsvc [2009-7-14 27136]
S3 dot3svc;Automatyczna konfiguracja sieci przewodowej;C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
S3 drmkaud;Zaufane sterowniki dźwięku firmy Microsoft;C:\windows\System32\drivers\drmkaud.sys [2009-7-14 5632]
S3 ebdrv;Broadcom NetXtreme II 10 GigE VBD;C:\windows\System32\drivers\evbda.sys [2009-6-10 3286016]
S3 EFS;System szyfrowania plików (EFS);C:\windows\System32\lsass.exe [2012-5-30 31232]
S3 ehRecvr;Usługa Odbiornik Windows Media Center;C:\Windows\ehome\ehrecvr.exe [2010-11-21 696832]
S3 ehSched;Usługa harmonogramu programu Windows Media Center;C:\Windows\ehome\ehsched.exe [2009-7-14 127488]
S3 elxstor;elxstor;C:\windows\System32\drivers\elxstor.sys [2009-6-10 530496]
S3 ErrDev;Microsoft Hardware Error Device Driver;C:\windows\System32\drivers\errdev.sys [2009-7-14 9728]
S3 exfat;exFAT File System Driver;C:\windows\System32\drivers\exfat.sys [2009-7-14 195072]
S3 Fax;Faks;C:\windows\System32\FXSSVC.exe [2010-11-21 689152]
S3 fdc;Floppy Disk Controller Driver;C:\windows\System32\drivers\fdc.sys [2009-7-14 29696]
S3 fdPHost;Host dostawcy odnajdowania funkcji;C:\windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
S3 Filetrace;Filetrace;C:\windows\System32\drivers\filetrace.sys [2009-7-14 34304]
S3 flpydisk;Floppy Disk Driver;C:\windows\System32\drivers\flpydisk.sys [2009-7-14 24576]
S3 FontCache3.0.0.0;Usługa buforowania czcionek platformy Windows Presentation Foundation, wersja 3.0.0.0;C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe [2010-11-21 42856]
S3 FsDepends;File System Dependency Minifilter;C:\windows\System32\drivers\fsdepends.sys [2009-7-14 55376]
S3 gagp30kx;Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms;C:\windows\System32\drivers\GAGP30KX.SYS [2009-7-14 65088]
S3 hcw85cir;Hauppauge Consumer Infrared Receiver;C:\windows\System32\drivers\hcw85cir.sys [2009-7-13 31232]
S3 HdAudAddService;Sterownik funkcji Microsoft 1.1 UAA dla usługi standardu High Definition Audio;C:\windows\System32\drivers\HdAudio.sys [2010-11-21 350208]
S3 HidBatt;HID UPS Battery Driver;C:\windows\System32\drivers\hidbatt.sys [2009-7-14 26624]
S3 HidBth;Microsoft Bluetooth HID Miniport;C:\windows\System32\drivers\hidbth.sys [2009-7-14 100864]
S3 HidIr;Microsoft Infrared HID Driver;C:\windows\System32\drivers\hidir.sys [2009-7-14 46592]
S3 hidserv;Dostęp do urządzeń interfejsu HID;C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
S3 hkmsvc;Zarządzanie kluczami i certyfikatami kondycji;C:\windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 HomeGroupListener;Usługa nasłuchująca grup domowych;C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
S3 HomeGroupProvider;Dostawca grupy domowej;C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2009-7-14 27136]
S3 HpSAMD;HpSAMD;C:\windows\System32\drivers\HpSAMD.sys [2010-11-21 78720]
S3 iaStorV;iaStorV;C:\windows\System32\drivers\iaStorV.sys [2011-11-16 410496]
S3 idsvc;Windows CardSpace;C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe [2010-11-21 856400]
S3 iirsp;iirsp;C:\windows\System32\drivers\iirsp.sys [2009-7-13 44112]
S3 intaud_WaveExtensible;Intel WiDi Audio Device;C:\windows\System32\drivers\intelaud.sys [2011-6-21 34200]
S3 intelide;intelide;C:\windows\System32\drivers\intelide.sys [2009-7-14 16960]
S3 IPBusEnum;Moduł wyliczający magistrali PnP-X IP;C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
S3 IpFilterDriver;Sterownik filtru ruchu IP;C:\windows\System32\drivers\ipfltdrv.sys [2010-11-21 82944]
S3 IPMIDRV;IPMIDRV;C:\windows\System32\drivers\IPMIDrv.sys [2010-11-21 78848]
S3 IPNAT;IP Network Address Translator;C:\windows\System32\drivers\ipnat.sys [2009-7-14 116224]
S3 IRENUM;IR Bus Enumerator;C:\windows\System32\drivers\irenum.sys [2009-7-14 17920]
S3 isapnp;isapnp;C:\windows\System32\drivers\isapnp.sys [2009-7-14 20544]
S3 iScsiPrt;iScsiPort Driver;C:\windows\System32\drivers\msiscsi.sys [2010-11-21 273792]
S3 kbdhid;Keyboard HID Driver;C:\windows\System32\drivers\kbdhid.sys [2010-11-21 33280]
S3 KtmRm;Usługa KTMRM dla usługi Koordynator transakcji rozproszonych;C:\windows\System32\svchost.exe -k NetworkServiceAndNoImpersonation [2009-7-14 27136]
S3 lltdsvc;Mapowanie z odnajdywaniem topologii warstwy łącza;C:\windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
S3 LSI_FC;LSI_FC;C:\windows\System32\drivers\lsi_fc.sys [2009-7-13 114752]
S3 LSI_SAS;LSI_SAS;C:\windows\System32\drivers\lsi_sas.sys [2009-7-13 106560]
S3 LSI_SAS2;LSI_SAS2;C:\windows\System32\drivers\lsi_sas2.sys [2009-7-13 65600]
S3 LSI_SCSI;LSI_SCSI;C:\windows\System32\drivers\lsi_scsi.sys [2009-7-13 115776]
S3 megasas;megasas;C:\windows\System32\drivers\megasas.sys [2009-6-10 35392]
S3 MegaSR;MegaSR;C:\windows\System32\drivers\MegaSR.sys [2009-7-13 284736]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service;C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-2-26 64856]
S3 mpio;mpio;C:\windows\System32\drivers\mpio.sys [2010-11-21 155008]
S3 MRxDAV;Sterownik przekierowań klienta WebDav;C:\windows\System32\drivers\mrxdav.sys [2010-11-21 140800]
S3 msdsm;msdsm;C:\windows\System32\drivers\msdsm.sys [2010-11-21 140672]
S3 MSDTC;Koordynator transakcji rozproszonych;C:\windows\System32\msdtc.exe [2009-7-14 141824]
S3 mshidkmdf;Pass-through HID to KMDF Filter Driver;C:\windows\System32\drivers\mshidkmdf.sys [2009-7-14 8192]
S3 MSiSCSI;Usługa inicjatora iSCSI firmy Microsoft;C:\windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 msiserver;Instalator Windows;C:\windows\System32\msiexec.exe [2010-11-21 128000]
S3 MSKSSRV;Serwer proxy usługi Microsoft Streaming;C:\windows\System32\drivers\mskssrv.sys [2009-7-14 11136]
S3 MSPCLOCK;Serwer proxy zegara Microsoft Streaming;C:\windows\System32\drivers\mspclock.sys [2009-7-14 7168]
S3 MSPQM;Serwer proxy menedżera jakości Microsoft Streaming;C:\windows\System32\drivers\mspqm.sys [2009-7-14 6784]
S3 MsRPC;MsRPC;C:\windows\System32\drivers\msrpc.sys [2010-11-21 366976]
S3 MSTEE;Konwerter strumieni Tee/Sink-to-Sink Microsoft Streaming;C:\windows\System32\drivers\mstee.sys [2009-7-14 8064]
S3 MTConfig;Microsoft Input Configuration Driver;C:\windows\System32\drivers\MTConfig.sys [2009-7-14 15360]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2011-9-16 340240]
S3 napagent;Agent ochrony dostępu do sieci;C:\windows\System32\svchost.exe -k NetworkService [2009-7-14 27136]
S3 NdisCap;NDIS Capture LightWeight Filter;C:\windows\System32\drivers\ndiscap.sys [2009-7-14 35328]
S3 Netlogon;Netlogon;C:\windows\System32\lsass.exe [2012-5-30 31232]
S3 nfrd960;nfrd960;C:\windows\System32\drivers\nfrd960.sys [2009-7-13 51264]
S3 nv_agp;NVIDIA nForce AGP Bus Filter;C:\windows\System32\drivers\NV_AGP.SYS [2009-7-14 122960]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;C:\windows\System32\drivers\nvhda64v.sys [2012-1-12 174184]
S3 nvraid;nvraid;C:\windows\System32\drivers\nvraid.sys [2011-11-16 148352]
S3 nvstor;nvstor;C:\windows\System32\drivers\nvstor.sys [2011-11-16 166272]
S3 odserv;Microsoft Office Diagnostics Service;C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\ODSERV.EXE [2011-7-20 440696]
S3 ohci1394;1394 OHCI Compliant Host Controller (Legacy);C:\windows\System32\drivers\ohci1394.sys [2009-7-14 72832]
S3 ose;Office Source Engine;C:\Program Files (x86)\Common Files\microsoft shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 p2pimsvc;Menedżer tożsamości sieci równorzędnej;C:\windows\System32\svchost.exe -k LocalServicePeerNet [2009-7-14 27136]
S3 p2psvc;Grupowanie sieci równorzędnej;C:\windows\System32\svchost.exe -k LocalServicePeerNet [2009-7-14 27136]
S3 Parport;Parallel port driver;C:\windows\System32\drivers\parport.sys [2009-7-14 97280]
S3 pciide;pciide;C:\windows\System32\drivers\pciide.sys [2009-7-14 12352]
S3 pcmcia;pcmcia;C:\windows\System32\drivers\pcmcia.sys [2009-7-14 220752]
S3 PerfHost;Host bibliotek DLL liczników wydajności;C:\Windows\SysWOW64\perfhost.exe [2009-7-14 20992]
S3 pla;Dzienniki wydajności i &alerty;C:\windows\System32\svchost.exe -k LocalServiceNoNetwork [2009-7-14 27136]
S3 PNRPAutoReg;Usługa publikowania nazw komputerów PNRP;C:\windows\System32\svchost.exe -k LocalServicePeerNet [2009-7-14 27136]
S3 PNRPsvc;Protokół rozpoznawania nazw równorzędnych;C:\windows\System32\svchost.exe -k LocalServicePeerNet [2009-7-14 27136]
S3 Processor;Processor Driver;C:\windows\System32\drivers\processr.sys [2009-7-14 60416]
S3 ProtectedStorage;Magazyn chroniony;C:\windows\System32\lsass.exe [2012-5-30 31232]
S3 ql2300;ql2300;C:\windows\System32\drivers\ql2300.sys [2009-6-10 1524816]
S3 ql40xx;ql40xx;C:\windows\System32\drivers\ql40xx.sys [2009-7-13 128592]
S3 QWAVE;Quality Windows Audio Video Experience;C:\windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-14 27136]
S3 QWAVEdrv;Sterownik QWAVE;C:\windows\System32\drivers\qwavedrv.sys [2009-7-14 46592]
S3 RasAcd;Remote Access Auto Connection Driver;C:\windows\System32\drivers\rasacd.sys [2009-7-14 14848]
S3 RasAuto;Menedżer autopołączenia dostępu zdalnego;C:\windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 rdpbus;Remote Desktop Device Redirector Bus Driver;C:\windows\System32\drivers\rdpbus.sys [2009-7-14 24064]
S3 RDPWD;RDP Winstation Driver;C:\windows\System32\drivers\rdpwd.sys [2012-6-13 210944]
S3 RemoteRegistry;Rejestr zdalny;C:\windows\System32\svchost.exe -k regsvc [2009-7-14 27136]
S3 RoxMediaDB12OEM;RoxMediaDB12OEM;C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [2010-11-25 1116656]
S3 RpcLocator;Lokalizator usługi zdalnego wywołania procedury (RPC);C:\windows\System32\Locator.exe [2009-7-14 10240]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\windows\System32\drivers\RtsUStor.sys [2012-1-12 250984]
S3 sbp2port;sbp2port;C:\windows\System32\drivers\sbp2port.sys [2010-11-21 103808]
S3 SCardSvr;Karta inteligentna;C:\windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-14 27136]
S3 scfilter;Sterownik filtru klas karty inteligentnej PnP;C:\windows\System32\drivers\scfilter.sys [2010-11-21 29696]
S3 SCPolicySvc;Zasady usuwania karty inteligentnej;C:\windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 SDRSVC;Kopia zapasowa systemu Windows;C:\windows\System32\svchost.exe -k SDRSVC [2009-7-14 27136]
S3 SensrSvc;Jasność adaptacyjna;C:\windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-14 27136]
S3 Serenum;Serenum Filter Driver;C:\windows\System32\drivers\serenum.sys [2009-7-14 23552]
S3 Serial;Serial;C:\windows\System32\drivers\serial.sys [2009-7-14 94208]
S3 sermouse;Serial Mouse Driver;C:\windows\System32\drivers\sermouse.sys [2009-7-14 26624]
S3 SessionEnv;Menedżer konfiguracji usług pulpitu zdalnego;C:\windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 sffdisk;SFF Storage Class Driver;C:\windows\System32\drivers\sffdisk.sys [2009-7-14 14336]
S3 sffp_mmc;SFF Storage Protocol Driver for MMC;C:\windows\System32\drivers\sffp_mmc.sys [2009-7-14 13824]
S3 sffp_sd;SFF Storage Protocol Driver for SDBus;C:\windows\System32\drivers\sffp_sd.sys [2010-11-21 14336]
S3 sfloppy;High-Capacity Floppy Disk Drive;C:\windows\System32\drivers\sfloppy.sys [2009-7-14 16896]
S3 SiSRaid2;SiSRaid2;C:\windows\System32\drivers\sisraid2.sys [2009-6-10 43584]
S3 SiSRaid4;SiSRaid4;C:\windows\System32\drivers\sisraid4.sys [2009-7-13 80464]
S3 Smb;Protokół TCP/IP i TCP/IPv6 zorientowany na wiadomości (sesja SMB);C:\windows\System32\drivers\smb.sys [2009-7-14 93184]
S3 SNMPTRAP;SNMP Trap;C:\windows\System32\snmptrap.exe [2009-7-14 14336]
S3 sppuinotify;Usługa powiadomień SPP;C:\windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
S3 stexstor;stexstor;C:\windows\System32\drivers\stexstor.sys [2009-7-13 24656]
S3 stllssvr;stllssvr;C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe [2010-11-9 74392]
S3 swprv;Dostawca kopiowania w tle oprogramowania firmy Microsoft;C:\windows\System32\svchost.exe -k swprv [2009-7-14 27136]
S3 TabletInputService;Usługa wprowadzania na komputerze typu Tablet;C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
S3 TBS;Usługi podstawowe modułu TPM;C:\windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-14 27136]
S3 TCPIP6;Microsoft IPv6 Protocol Driver;C:\windows\System32\drivers\tcpip.sys [2012-11-16 1914248]
S3 TDPIPE;TDPIPE;C:\windows\System32\drivers\tdpipe.sys [2009-7-14 15872]
S3 TDTCP;TDTCP;C:\windows\System32\drivers\tdtcp.sys [2012-5-30 23552]
S3 TermService;Usługi pulpitu zdalnego;C:\windows\System32\svchost.exe -k NetworkService [2009-7-14 27136]
S3 THREADORDER;Serwer porządkujący wątki;C:\windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
S3 TrustedInstaller;Instalator modułów systemu Windows;C:\Windows\servicing\TrustedInstaller.exe [2010-11-21 194048]
S3 tssecsrv;Remote Desktop Services Security Filter Driver;C:\windows\System32\drivers\tssecsrv.sys [2010-11-21 39424]
S3 TsUsbFlt;TsUsbFlt;C:\windows\System32\drivers\TsUsbFlt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\windows\System32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 TurboBoost;Intel® Turbo Boost Technology Monitor 2.0;C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2010-11-29 149504]
S3 uagp35;Microsoft AGPv3.5 Filter;C:\windows\System32\drivers\UAGP35.SYS [2009-7-14 64080]
S3 UI0Detect;Wykrywanie usług interakcyjnych;C:\windows\System32\UI0Detect.exe [2009-7-14 40960]
S3 uliagpkx;Uli AGP Bus Filter;C:\windows\System32\drivers\ULIAGPKX.SYS [2009-7-14 64592]
S3 UmPass;Microsoft UMPass Driver;C:\windows\System32\drivers\umpass.sys [2009-7-14 9728]
S3 upnphost;Host urządzenia UPnP;C:\windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-14 27136]
S3 usbcir;eHome Infrared Receiver (USBCIR);C:\windows\System32\drivers\usbcir.sys [2009-7-14 100352]
S3 usbohci;Microsoft USB Open Host Controller Miniport Driver;C:\windows\System32\drivers\usbohci.sys [2011-11-16 25600]
S3 usbprint;Microsoft USB PRINTER Class;C:\windows\System32\drivers\usbprint.sys [2009-7-14 25088]
S3 USBSTOR;Sterownik pamięci masowej USB;C:\windows\System32\drivers\USBSTOR.SYS [2011-11-16 91648]
S3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver;C:\windows\System32\drivers\usbuhci.sys [2011-11-16 30720]
S3 VaultSvc;Menedżer poświadczeń;C:\windows\System32\lsass.exe [2012-5-30 31232]
S3 vds;Dysk wirtualny;C:\windows\System32\vds.exe [2010-11-21 533504]
S3 vga;vga;C:\windows\System32\drivers\vgapnp.sys [2009-7-14 29184]
S3 vhdmp;vhdmp;C:\windows\System32\drivers\vhdmp.sys [2010-11-21 215936]
S3 viaide;viaide;C:\windows\System32\drivers\viaide.sys [2009-7-14 17488]
S3 vsmraid;vsmraid;C:\windows\System32\drivers\vsmraid.sys [2009-6-10 161872]
S3 VSS;Kopiowanie woluminów w tle;C:\windows\System32\VSSVC.exe [2010-11-21 1600512]
S3 W32Time;Usługa Czas systemu Windows;C:\windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
S3 WacomPen;Wacom Serial Pen HID Driver;C:\windows\System32\drivers\wacompen.sys [2009-7-14 27776]
S3 WANARP;Sterownik usługi Dostęp zdalny IP ARP;C:\windows\System32\drivers\wanarp.sys [2010-11-21 88576]
S3 WatAdminSvc;Usługa Technologie aktywacji systemu Windows;C:\windows\System32\Wat\WatAdminSvc.exe [2012-5-30 1255736]
S3 wbengine;Usługa Aparat kopii zapasowej na poziomie bloku;C:\windows\System32\wbengine.exe [2010-11-21 1504256]
S3 WbioSrvc;Usługa biometryczna systemu Windows;C:\windows\System32\svchost.exe -k WbioSvcGroup [2009-7-14 27136]
S3 wcncsvc;Połącz teraz w systemie Windows — Rejestrator konfiguracji;C:\windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-14 27136]
S3 WcsPlugInService;Kolory w systemie Windows;C:\windows\System32\svchost.exe -k wcssvc [2009-7-14 27136]
S3 Wd;Wd;C:\windows\System32\drivers\wd.sys [2009-7-14 21056]
S3 WdiSystemHost;Host systemu diagnostyki;C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
S3 WebClient;WebClient;C:\windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
S3 Wecsvc;Kolektor zdarzeń systemu Windows;C:\windows\System32\svchost.exe -k NetworkService [2009-7-14 27136]
S3 wercplsupport;Pomoc techniczna panelu sterowania Raporty i rozwiązania problemów;C:\windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 WerSvc;Usługa raportowania błędów systemu Windows;C:\windows\System32\svchost.exe -k WerSvcGroup [2009-7-14 27136]
S3 WimFltr;WimFltr;C:\windows\System32\drivers\WimFltr.sys [2012-1-12 151656]
S3 WIMMount;WIMMount;C:\windows\System32\drivers\wimmount.sys [2009-7-14 22096]
S3 WinDefend;Windows Defender;C:\windows\System32\svchost.exe -k secsvcs [2009-7-14 27136]
S3 WinHttpAutoProxySvc;Usługa autowykrywania serwera proxy w sieci Web WinHTTP;C:\windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
S3 WinRing0_1_2_0;WinRing0_1_2_0;C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [2012-12-31 14544]
S3 WinRM;Zdalne zarządzanie systemem Windows (WS-Management);C:\windows\System32\svchost.exe -k NetworkService [2009-7-14 27136]
S3 wmiApSrv;WMI Performance Adapter;C:\windows\System32\wbem\WmiApSrv.exe [2009-7-14 203264]
S3 WPCSvc;Parental Controls;C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2009-7-14 27136]
S3 WPDBusEnum;Usługa modułu wyliczającego urządzenia przenośne;C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
S3 WUDFRd;WUDFRd;C:\windows\System32\drivers\WUDFRd.sys [2012-11-16 198656]
S3 WwanSvc;Automatyczne konfigurowanie bezprzewodowej sieci WAN;C:\windows\System32\svchost.exe -k LocalServiceNoNetwork [2009-7-14 27136]
S4 cdfs;CD/DVD File System Reader;C:\windows\System32\drivers\cdfs.sys [2009-7-14 92160]
S4 clr_optimization_v2.0.50727_32;Microsoft .NET Framework NGEN v2.0.50727_X86;C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2009-7-13 66384]
S4 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64;C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2009-7-13 89920]
S4 crcdisk;Crcdisk Filter Driver;C:\windows\System32\drivers\crcdisk.sys [2009-7-14 24144]
S4 Mcx2Svc;Usługa Media Center Extender;C:\windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-14 27136]
S4 NetMsmqActivator;Net.Msmq Listener Adapter;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-3-18 124240]
S4 NetPipeActivator;Net.Pipe Listener Adapter;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-3-18 124240]
S4 NetTcpActivator;Net.Tcp Listener Adapter;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-3-18 124240]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-3-18 124240]
S4 RemoteAccess;Routing i dostęp zdalny;C:\windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S4 Schedule;Harmonogram zadań;C:\windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S4 udfs;udfs;C:\windows\System32\drivers\udfs.sys [2010-11-21 328192]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-23 57184]
.
=============== File Associations ===============
.
FileExt: .bat: batfile="%1" %*
FileExt: .cmd: cmdfile="%1" %*
FileExt: .com: ComFile="%1" %*
FileExt: .exe: exefile="%1" %*
FileExt: .pif: piffile="%1" %*
FileExt: .scr: scrfile="%1" /S
FileExt: .reg: regfile=regedit.exe "%1"
FileExt: .txt: txtfile=C:\windows\System32\NOTEPAD.EXE %1
FileExt: .chm: chm.file="C:\windows\hh.exe" %1
FileExt: .ini: inifile=C:\windows\System32\NOTEPAD.EXE %1
FileExt: .inf: inffile=C:\windows\System32\NOTEPAD.EXE %1
ShellExec: AcroRD32.exe: Read="C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe" "%1"
ShellExec: coverdes.exe: Open="C:\Program Files (x86)\Nero\Nero CoverDesigner\CoverDes.exe" "%1"
ShellExec: DTLite.exe: open="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" "%1"
ShellExec: ehshell.exe: open="C:\Windows\eHome\ehshell.exe" "%1"
ShellExec: foobar2000.exe: enqueue="C:\Program Files (x86)\foobar2000\foobar2000.exe" /add "%1"
ShellExec: foobar2000.exe: open="C:\Program Files (x86)\foobar2000\foobar2000.exe" "%1"
ShellExec: iexplore.exe: open="C:\Program Files (x86)\Internet Explorer\iexplore.exe" %1
ShellExec: javaws.exe: Open="C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\javaws.exe" "%1"
ShellExec: lol.launcher.exe: open="D:\LOLPBE\LOLPBE\lol.launcher.exe" "%1"
ShellExec: MovieMaker.exe: Open="C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe" "%1"
ShellExec: mpc-hc.exe: Open="C:\Program Files (x86)\K-Lite Codec Pack\Media Player Classic\mpc-hc.exe" "%1"
ShellExec: mplayerc.exe: Open="C:\Program Files (x86)\Real Alternative\Media Player Classic\mplayerc.exe" "%1"
ShellExec: mspaint.exe: edit="C:\windows\System32\mspaint.exe" "%1"
ShellExec: nero.exe: Open="C:\Program Files (x86)\Nero\Nero Burning ROM\nero.exe" "%1"
ShellExec: NeroStartSmart.exe: open="C:\NERO\Nero 9\Nero StartSmart\NeroStartSmart.exe" "%1"
ShellExec: notepad.exe: edit=C:\windows\System32\NOTEPAD.EXE %1
ShellExec: notepad.exe: open=C:\windows\System32\NOTEPAD.EXE %1
ShellExec: ois.exe: Edit=C:\PROGRA~2\MICROS~1\Office12\OIS.EXE /shellEdit "%1"
ShellExec: ois.exe: Open=C:\PROGRA~2\MICROS~1\Office12\OIS.EXE /shellOpen "%1"
ShellExec: ois.exe: Preview=C:\PROGRA~2\MICROS~1\Office12\OIS.EXE /shellPreview "%1"
ShellExec: Opera.exe: open="C:\Program Files (x86)\Opera\Opera.exe" "%1"
ShellExec: photoviewer.dll: open=C:\windows\System32\rundll32.exe "C:\Program Files (x86)\Windows Photo Viewer\PhotoViewer.dll", ImageView_Fullscreen %1
ShellExec: photoviewer.dll: print=C:\windows\System32\rundll32.exe "C:\Program Files (x86)\Windows Photo Viewer\PhotoViewer.dll", ImageView_Fullscreen %1
ShellExec: uTorrent.exe: open="C:\Program Files (x86)\uTorrent\uTorrent.exe" "%1"
ShellExec: winamp.exe: Enqueue="C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1"
ShellExec: winamp.exe: ListBookmark="C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1"
ShellExec: winamp.exe: open="C:\Program Files (x86)\Winamp\winamp.exe" "%1"
ShellExec: winamp.exe: Play="C:\Program Files (x86)\Winamp\winamp.exe" "%1"
ShellExec: Winword.exe: edit="C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE" /n /dde
ShellExec: WLXPhotoGallery.exe: open="C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe" /LaunchPhotoViewer /v "%1"
ShellExec: WLXPhotoGallery.exe: preview="C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe" /LaunchPhotoViewer /v "%1"
ShellExec: WLXPhotoViewer.dll: open="C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe" /LaunchPhotoViewer /v "%1"
ShellExec: wmplayer.exe: open="C:\Program Files (x86)\Windows Media Player\wmplayer.exe" /Open "%L"
ShellExec: wmplayer.exe: play="C:\Program Files (x86)\Windows Media Player\wmplayer.exe" /Play "%L"
ShellExec: wordpad.exe: open="C:\Program Files (x86)\Windows NT\Accessories\WORDPAD.EXE" "%1"
.
=============== Created Last 60 ================
.
2013-01-16 17:13:02 -------- d-----w- C:\Users\user\AppData\Local\APN
2013-01-16 17:13:02 -------- d-----w- C:\Program Files (x86)\Ask.com
2013-01-16 17:02:21 95648 ----a-w- C:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-01-16 17:02:21 174496 ----a-w- C:\windows\SysWow64\javaw.exe
2013-01-16 17:02:21 174496 ----a-w- C:\windows\SysWow64\java.exe
2013-01-16 17:01:39 0 ----a-w- C:\windows\SysWow64\RENCEC8.tmp
2013-01-16 17:01:39 0 ----a-w- C:\windows\SysWow64\RENCEB7.tmp
2013-01-16 17:01:38 227720 ----a-w- C:\windows\SysWow64\javaws.exe
2013-01-16 10:13:14 9161176 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{DFC76261-0B17-425D-8416-5C22ED118886}\mpengine.dll
2013-01-15 14:50:16 -------- d-----w- C:\Program Files (x86)\Deluxe Ski Jump 4
2013-01-14 11:49:09 9125352 ------w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2013-01-14 10:15:27 -------- d-sh--w- C:\$RECYCLE.BIN
2013-01-14 10:03:57 98816 ----a-w- C:\windows\sed.exe
2013-01-14 10:03:57 80412 ----a-w- C:\windows\grep.exe
2013-01-14 10:03:57 68096 ----a-w- C:\windows\zip.exe
2013-01-14 10:03:57 60416 ----a-w- C:\windows\NIRCMD.exe
2013-01-14 10:03:57 518144 ----a-w- C:\windows\SWREG.exe
2013-01-14 10:03:57 406528 ----a-w- C:\windows\SWSC.exe
2013-01-14 10:03:57 256000 ----a-w- C:\windows\PEV.exe
2013-01-14 10:03:57 208896 ----a-w- C:\windows\MBR.exe
2013-01-14 10:01:27 -------- d-----w- C:\Qoobox
2013-01-14 10:01:04 -------- d-----w- C:\windows\erdnt
2013-01-10 17:20:22 -------- d-----w- C:\windows\pss
2013-01-10 17:15:03 -------- d-----w- C:\Program Files\CCleaner
2013-01-07 16:46:01 -------- d-----w- C:\Program Files (x86)\Dzielenie i laczenie plikow
2013-01-07 16:38:20 -------- d-----w- C:\Users\user\AppData\Local\AVG Secure Search
2013-01-07 16:38:17 -------- d-----w- C:\ProgramData\AVG Secure Search
2013-01-07 16:38:13 30568 ----a-w- C:\windows\System32\drivers\avgtpx64.sys
2013-01-07 16:38:12 -------- d-----w- C:\Program Files\WinRAR
2013-01-07 16:38:11 -------- d-----w- C:\Program Files (x86)\Common Files\AVG Secure Search
2013-01-07 16:38:11 -------- d-----w- C:\Program Files (x86)\AVG Secure Search
2013-01-07 16:38:07 -------- d--h--w- C:\ProgramData\Common Files
2012-12-31 14:18:49 -------- d-----w- C:\ProgramData\IObit
2012-12-31 14:18:49 -------- d-----w- C:\Program Files (x86)\IObit
2012-12-31 13:56:57 -------- d--h--w- C:\Program Files (x86)\Common Files\EAInstaller
2012-12-30 16:18:26 -------- d-----w- C:\ProgramData\Premium
2012-12-25 21:18:29 -------- d-----w- C:\Users\user\AppData\Roaming\BitComet
2012-12-25 21:13:24 -------- d-----w- C:\Program Files (x86)\PrivitizeVPN
2012-12-25 21:13:20 -------- d-----w- C:\ProgramData\WoW Worldwide Software LTD
2012-12-25 21:13:10 -------- d-----w- C:\Program Files (x86)\ZoomEx
2012-12-25 21:13:01 -------- d-----w- C:\ProgramData\Zoomex
2012-12-25 21:12:58 -------- d-----w- C:\ProgramData\InstallMate
2012-12-25 21:07:31 -------- d-----w- C:\Program Files (x86)\uTorrent
2012-12-25 21:06:43 -------- d-----w- C:\Users\user\AppData\Roaming\uTorrent
2012-12-22 16:58:57 283200 ----a-w- C:\windows\System32\drivers\dtsoftbus01.sys
2012-12-22 16:58:53 -------- d-----w- C:\Users\user\AppData\Roaming\DAEMON Tools Lite
2012-12-22 16:58:47 -------- d-----w- C:\Program Files (x86)\DAEMON Tools Lite
2012-12-22 16:56:04 -------- d-----w- C:\ProgramData\DAEMON Tools Lite
2012-12-21 11:39:42 34304 ----a-w- C:\windows\SysWow64\atmlib.dll
2012-12-21 11:39:41 46080 ----a-w- C:\windows\System32\atmlib.dll
2012-12-21 11:39:40 367616 ----a-w- C:\windows\System32\atmfd.dll
2012-12-21 11:39:40 295424 ----a-w- C:\windows\SysWow64\atmfd.dll
2012-12-12 14:13:01 96768 ----a-w- C:\windows\System32\mshtmled.dll
2012-12-12 14:13:01 73216 ----a-w- C:\windows\SysWow64\mshtmled.dll
2012-12-12 14:13:01 420864 ----a-w- C:\windows\SysWow64\vbscript.dll
2012-12-12 14:13:01 304640 ----a-w- C:\Program Files\Internet Explorer\IEShims.dll
2012-12-12 14:13:01 2382848 ----a-w- C:\windows\SysWow64\mshtml.tlb
2012-12-12 14:13:01 2382848 ----a-w- C:\windows\System32\mshtml.tlb
2012-12-12 14:13:01 182816 ----a-w- C:\Program Files\Internet Explorer\sqmapi.dll
2012-12-12 14:13:01 149552 ----a-w- C:\Program Files (x86)\Internet Explorer\sqmapi.dll
2012-12-12 14:13:00 757296 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe
2012-12-12 14:13:00 248320 ----a-w- C:\windows\System32\ieui.dll
2012-12-12 14:13:00 237056 ----a-w- C:\windows\System32\url.dll
2012-12-12 14:13:00 231936 ----a-w- C:\windows\SysWow64\url.dll
2012-12-12 14:13:00 194048 ----a-w- C:\Program Files (x86)\Internet Explorer\IEShims.dll
2012-12-12 14:13:00 176640 ----a-w- C:\windows\SysWow64\ieui.dll
2012-12-12 14:13:00 173056 ----a-w- C:\windows\System32\ieUnatt.exe
2012-12-12 14:13:00 142848 ----a-w- C:\windows\SysWow64\ieUnatt.exe
2012-12-12 14:12:59 763424 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe
2012-12-12 14:12:59 2312704 ----a-w- C:\windows\System32\jscript9.dll
2012-12-12 14:12:59 1494528 ----a-w- C:\windows\System32\inetcpl.cpl
2012-12-12 14:12:59 1427968 ----a-w- C:\windows\SysWow64\inetcpl.cpl
2012-12-12 14:12:59 1346048 ----a-w- C:\windows\System32\urlmon.dll
2012-12-12 14:12:59 1103872 ----a-w- C:\windows\SysWow64\urlmon.dll
2012-12-12 14:12:58 729088 ----a-w- C:\windows\System32\msfeeds.dll
2012-12-12 14:12:58 607744 ----a-w- C:\windows\SysWow64\msfeeds.dll
2012-12-12 14:12:58 548864 ----a-w- C:\Program Files\Internet Explorer\ieproxy.dll
2012-12-12 14:12:58 194560 ----a-w- C:\Program Files (x86)\Internet Explorer\ieproxy.dll
2012-12-12 14:12:58 1129472 ----a-w- C:\windows\SysWow64\wininet.dll
2012-12-12 14:12:57 85504 ----a-w- C:\windows\System32\jsproxy.dll
2012-12-12 14:12:57 816640 ----a-w- C:\windows\System32\jscript.dll
2012-12-12 14:12:57 717824 ----a-w- C:\windows\SysWow64\jscript.dll
2012-12-12 14:12:57 599040 ----a-w- C:\windows\System32\vbscript.dll
2012-12-12 14:12:57 1800704 ----a-w- C:\windows\SysWow64\jscript9.dll
2012-12-12 14:12:57 1392128 ----a-w- C:\windows\System32\wininet.dll
2012-12-12 14:12:56 887296 ----a-w- C:\Program Files\Internet Explorer\iedvtool.dll
2012-12-12 14:12:56 678912 ----a-w- C:\Program Files (x86)\Internet Explorer\iedvtool.dll
2012-12-12 14:12:56 65024 ----a-w- C:\windows\SysWow64\jsproxy.dll
2012-12-12 14:12:56 499200 ----a-w- C:\Program Files\Internet Explorer\jsdbgui.dll
2012-12-12 14:12:56 387584 ----a-w- C:\Program Files (x86)\Internet Explorer\jsdbgui.dll
2012-12-12 14:12:56 2144768 ----a-w- C:\windows\System32\iertutil.dll
2012-12-12 14:12:56 1793024 ----a-w- C:\windows\SysWow64\iertutil.dll
2012-12-12 14:12:55 12320256 ----a-w- C:\windows\SysWow64\mshtml.dll
2012-12-12 14:12:54 17811968 ----a-w- C:\windows\System32\mshtml.dll
2012-12-12 14:12:53 9738240 ----a-w- C:\windows\SysWow64\ieframe.dll
2012-12-12 14:12:53 10925568 ----a-w- C:\windows\System32\ieframe.dll
2012-12-12 12:50:32 2048 ----a-w- C:\windows\SysWow64\tzres.dll
2012-12-12 12:50:32 2048 ----a-w- C:\windows\System32\tzres.dll
2012-12-12 12:50:20 3149824 ----a-w- C:\windows\System32\win32k.sys
2012-12-12 12:50:10 424960 ----a-w- C:\windows\System32\KernelBase.dll
2012-12-12 12:50:10 1161216 ----a-w- C:\windows\System32\kernel32.dll
2012-12-12 12:50:09 338432 ----a-w- C:\windows\System32\conhost.exe
2012-12-12 12:50:09 274944 ----a-w- C:\windows\SysWow64\KernelBase.dll
2012-12-12 12:50:09 215040 ----a-w- C:\windows\System32\winsrv.dll
2012-12-12 12:50:09 1114112 ----a-w- C:\windows\SysWow64\kernel32.dll
2012-12-12 12:50:08 7680 ----a-w- C:\windows\SysWow64\instnm.exe
2012-12-12 12:50:08 6144 ---ha-w- C:\windows\System32\api-ms-win-security-base-l1-1-0.dll
2012-12-12 12:50:08 5120 ---ha-w- C:\windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
2012-12-12 12:50:08 5120 ---ha-w- C:\windows\System32\api-ms-win-core-file-l1-1-0.dll
2012-12-12 12:50:08 5120 ----a-w- C:\windows\SysWow64\wow32.dll
2012-12-12 12:50:08 4608 ---ha-w- C:\windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
2012-12-12 12:50:08 4096 ---ha-w- C:\windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
2012-12-12 12:50:08 362496 ----a-w- C:\windows\System32\wow64win.dll
2012-12-12 12:50:08 3584 ---ha-w- C:\windows\System32\api-ms-win-core-heap-l1-1-0.dll
2012-12-12 12:50:08 25600 ----a-w- C:\windows\SysWow64\setup16.exe
2012-12-12 12:50:08 243200 ----a-w- C:\windows\System32\wow64.dll
2012-12-12 12:50:08 16384 ----a-w- C:\windows\System32\ntvdm64.dll
2012-12-12 12:50:08 14336 ----a-w- C:\windows\SysWow64\ntvdm64.dll
2012-12-12 12:50:08 13312 ----a-w- C:\windows\System32\wow64cpu.dll
2012-12-12 12:50:07 4608 ---ha-w- C:\windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
2012-12-12 12:50:07 4608 ---ha-w- C:\windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
2012-12-12 12:50:07 4096 ---ha-w- C:\windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
2012-12-12 12:50:07 4096 ---ha-w- C:\windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
2012-12-12 12:50:07 4096 ---ha-w- C:\windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
2012-12-12 12:50:07 4096 ---ha-w- C:\windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
2012-12-12 12:50:07 4096 ---ha-w- C:\windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
2012-12-12 12:50:07 3584 ---ha-w- C:\windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
2012-12-12 12:50:07 3584 ---ha-w- C:\windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
2012-12-12 12:50:07 3584 ---ha-w- C:\windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
2012-12-12 12:50:07 3584 ---ha-w- C:\windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
2012-12-12 12:50:07 3584 ---ha-w- C:\windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
2012-12-12 12:50:07 3584 ---ha-w- C:\windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-12-12 12:50:07 3584 ---ha-w- C:\windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
2012-12-12 12:50:07 3584 ---ha-w- C:\windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
2012-12-12 12:50:07 3584 ---ha-w- C:\windows\System32\api-ms-win-core-misc-l1-1-0.dll
2012-12-12 12:50:07 3584 ---ha-w- C:\windows\System32\api-ms-win-core-memory-l1-1-0.dll
2012-12-12 12:50:07 3584 ---ha-w- C:\windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
2012-12-12 12:50:07 3072 ---ha-w- C:\windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
2012-12-12 12:50:07 3072 ---ha-w- C:\windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-12-12 12:50:07 3072 ---ha-w- C:\windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
2012-12-12 12:50:07 3072 ---ha-w- C:\windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
2012-12-12 12:50:07 3072 ---ha-w- C:\windows\System32\api-ms-win-core-xstate-l1-1-0.dll
2012-12-12 12:50:07 3072 ---ha-w- C:\windows\System32\api-ms-win-core-util-l1-1-0.dll
2012-12-12 12:50:07 3072 ---ha-w- C:\windows\System32\api-ms-win-core-string-l1-1-0.dll
2012-12-12 12:50:07 3072 ---ha-w- C:\windows\System32\api-ms-win-core-profile-l1-1-0.dll
2012-12-12 12:50:07 3072 ---ha-w- C:\windows\System32\api-ms-win-core-io-l1-1-0.dll
2012-12-12 12:50:07 3072 ---ha-w- C:\windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
2012-12-12 12:50:06 6144 ---ha-w- C:\windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2012-12-12 12:50:06 4608 ---ha-w- C:\windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2012-12-12 12:50:06 4096 ---ha-w- C:\windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
2012-12-12 12:50:06 4096 ---ha-w- C:\windows\System32\api-ms-win-core-synch-l1-1-0.dll
2012-12-12 12:50:06 4096 ---ha-w- C:\windows\System32\api-ms-win-core-localization-l1-1-0.dll
2012-12-12 12:50:06 3584 ---ha-w- C:\windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2012-12-12 12:50:06 3584 ---ha-w- C:\windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
2012-12-12 12:50:06 3072 ---ha-w- C:\windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2012-12-12 12:50:06 3072 ---ha-w- C:\windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
2012-12-12 12:50:06 3072 ---ha-w- C:\windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
2012-12-12 12:50:06 3072 ---ha-w- C:\windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
2012-12-12 12:50:06 3072 ---ha-w- C:\windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
2012-12-12 12:50:06 3072 ---ha-w- C:\windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
2012-12-12 12:50:06 3072 ---ha-w- C:\windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
2012-12-12 12:50:06 3072 ---ha-w- C:\windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
2012-12-12 12:50:06 3072 ---ha-w- C:\windows\System32\api-ms-win-core-handle-l1-1-0.dll
2012-12-12 12:50:06 3072 ---ha-w- C:\windows\System32\api-ms-win-core-fibers-l1-1-0.dll
2012-12-12 12:50:06 3072 ---ha-w- C:\windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
2012-12-12 12:50:06 3072 ---ha-w- C:\windows\System32\api-ms-win-core-delayload-l1-1-0.dll
2012-12-12 12:50:06 3072 ---ha-w- C:\windows\System32\api-ms-win-core-debug-l1-1-0.dll
2012-12-12 12:50:06 3072 ---ha-w- C:\windows\System32\api-ms-win-core-datetime-l1-1-0.dll
2012-12-12 12:50:06 3072 ---ha-w- C:\windows\System32\api-ms-win-core-console-l1-1-0.dll
2012-12-12 12:50:04 2048 ----a-w- C:\windows\SysWow64\user.exe
2012-12-12 12:49:54 478208 ----a-w- C:\windows\System32\dpnet.dll
2012-12-12 12:49:54 376832 ----a-w- C:\windows\SysWow64\dpnet.dll
2012-12-08 21:24:14 -------- d-----w- C:\Users\user\AppData\Local\Programs
2012-12-02 10:21:46 972264 ------w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CB271B71-A599-485F-A94C-BB512681BB30}\gapaengine.dll
2012-11-24 21:10:09 -------- d-----w- C:\Users\user\AppData\Roaming\Minecraft 1.1.2_01
2012-11-24 21:02:40 -------- d-----w- C:\Users\user\AppData\Roaming\mc11201
2012-11-24 20:54:30 -------- d-----w- C:\Users\user\AppData\Roaming\.minecraft
2012-11-24 20:15:08 -------- d-----w- C:\Users\user\AppData\Roaming\Publish Providers
2012-11-24 20:11:23 -------- d-----w- C:\Users\user\AppData\Local\Sony
2012-11-24 20:11:23 -------- d-----w- C:\ProgramData\Sony
2012-11-24 20:10:33 -------- d-----w- C:\Users\user\AppData\Roaming\Sony
2012-11-24 12:02:56 -------- d--h--w- C:\windows\msdownld.tmp
2012-11-24 12:02:55 -------- d-----w- C:\windows\SysWow64\directx
2012-11-24 12:02:48 -------- d-----w- C:\Games
2012-11-21 19:49:45 -------- d-----w- C:\Users\user\AppData\Local\Dxtory Software
2012-11-21 19:05:45 -------- d-----w- C:\PFiles
.
==================== Find6M ====================
.
2012-12-26 10:50:36 73656 ----a-w- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-12-26 10:50:36 697272 ----a-w- C:\windows\SysWow64\FlashPlayerApp.exe
2012-12-12 14:14:27 67413224 ----a-w- C:\windows\System32\MRT.exe
2012-11-01 17:47:28 0 ----a-w- C:\windows\SysWow64\REN5FFF.tmp
2012-11-01 17:47:28 0 ----a-w- C:\windows\SysWow64\REN5FFE.tmp
2012-10-16 08:38:37 135168 ----a-w- C:\windows\apppatch\AppPatch64\AcXtrnal.dll
2012-10-16 08:38:34 350208 ----a-w- C:\windows\apppatch\AppPatch64\AcLayers.dll
2012-10-16 07:39:52 561664 ----a-w- C:\windows\apppatch\AcLayers.dll
2012-10-09 18:17:13 55296 ----a-w- C:\windows\System32\dhcpcsvc6.dll
2012-10-09 18:17:13 226816 ----a-w- C:\windows\System32\dhcpcore6.dll
2012-10-09 17:40:31 44032 ----a-w- C:\windows\SysWow64\dhcpcsvc6.dll
2012-10-09 17:40:31 193536 ----a-w- C:\windows\SysWow64\dhcpcore6.dll
2012-10-04 16:40:23 44032 ----a-w- C:\windows\apppatch\acwow64.dll
2012-10-03 17:56:54 1914248 ----a-w- C:\windows\System32\drivers\tcpip.sys
2012-10-03 17:44:21 70656 ----a-w- C:\windows\System32\nlaapi.dll
2012-10-03 17:44:21 303104 ----a-w- C:\windows\System32\nlasvc.dll
2012-10-03 17:44:17 246272 ----a-w- C:\windows\System32\netcorehc.dll
2012-10-03 17:44:17 18944 ----a-w- C:\windows\System32\netevent.dll
2012-10-03 17:44:16 216576 ----a-w- C:\windows\System32\ncsi.dll
2012-10-03 17:42:16 569344 ----a-w- C:\windows\System32\iphlpsvc.dll
2012-10-03 16:42:24 18944 ----a-w- C:\windows\SysWow64\netevent.dll
2012-10-03 16:42:24 175104 ----a-w- C:\windows\SysWow64\netcorehc.dll
2012-10-03 16:42:23 156672 ----a-w- C:\windows\SysWow64\ncsi.dll
2012-10-03 16:07:26 45568 ----a-w- C:\windows\System32\drivers\tcpipreg.sys
2012-09-25 22:47:43 78336 ----a-w- C:\windows\SysWow64\synceng.dll
2012-09-25 22:46:17 95744 ----a-w- C:\windows\System32\synceng.dll
2012-09-24 22:16:58 821736 ----a-w- C:\windows\SysWow64\npdeployJava1.dll
2012-09-24 22:16:53 746984 ----a-w- C:\windows\SysWow64\deployJava1.dll
2012-09-05 09:49:47 0 ----a-w- C:\windows\SysWow64\RENA40C.tmp
2012-09-05 09:49:47 0 ----a-w- C:\windows\SysWow64\RENA40B.tmp
2012-08-31 18:19:35 1659760 ----a-w- C:\windows\System32\drivers\ntfs.sys
2012-08-30 20:03:48 228768 ----a-w- C:\windows\System32\drivers\MpFilter.sys
2012-08-30 20:03:48 128456 ----a-w- C:\windows\System32\drivers\NisDrvWFP.sys
2012-08-30 18:03:45 5559664 ----a-w- C:\windows\System32\ntoskrnl.exe
2012-08-30 17:12:02 3968880 ----a-w- C:\windows\SysWow64\ntkrnlpa.exe
2012-08-30 17:12:02 3914096 ----a-w- C:\windows\SysWow64\ntoskrnl.exe
2012-08-24 18:05:07 220160 ----a-w- C:\windows\System32\wintrust.dll
2012-08-24 16:57:48 172544 ----a-w- C:\windows\SysWow64\wintrust.dll
2012-08-22 18:12:40 950128 ----a-w- C:\windows\System32\drivers\ndis.sys
2012-08-22 18:12:40 376688 ----a-w- C:\windows\System32\drivers\netio.sys
2012-08-22 18:12:33 288624 ----a-w- C:\windows\System32\drivers\FWPKCLNT.SYS
2012-08-21 21:01:00 245760 ----a-w- C:\windows\System32\OxpsConverter.exe
2012-08-11 00:56:03 715776 ----a-w- C:\windows\System32\kerberos.dll
2012-08-10 23:56:14 542208 ----a-w- C:\windows\SysWow64\kerberos.dll
2012-08-02 17:58:52 574464 ----a-w- C:\windows\System32\d3d10level9.dll
2012-08-02 16:57:20 490496 ----a-w- C:\windows\SysWow64\d3d10level9.dll
2012-07-26 06:45:11 466520 ----a-w- C:\windows\System32\wrap_oal.dll
2012-07-26 06:45:11 445016 ----a-w- C:\windows\SysWow64\wrap_oal.dll
2012-07-26 06:45:11 122968 ----a-w- C:\windows\System32\OpenAL32.dll
2012-07-26 06:45:11 109144 ----a-w- C:\windows\SysWow64\OpenAL32.dll
2012-07-26 04:55:47 785512 ----a-w- C:\windows\System32\drivers\Wdf01000.sys
2012-07-26 04:55:47 54376 ----a-w- C:\windows\System32\drivers\WdfLdr.sys
2012-07-26 03:08:53 229888 ----a-w- C:\windows\System32\WUDFHost.exe
2012-07-26 03:08:14 84992 ----a-w- C:\windows\System32\WUDFSvc.dll
2012-07-26 03:08:14 744448 ----a-w- C:\windows\System32\WUDFx.dll
2012-07-26 03:08:14 45056 ----a-w- C:\windows\System32\WUDFCoinstaller.dll
2012-07-26 03:08:14 194048 ----a-w- C:\windows\System32\WUDFPlatform.dll
2012-07-26 02:36:08 9728 ----a-w- C:\windows\System32\Wdfres.dll
2012-07-26 02:26:45 87040 ----a-w- C:\windows\System32\drivers\WUDFPf.sys
2012-07-26 02:26:06 198656 ----a-w- C:\windows\System32\drivers\WUDFRd.sys
.
============= FINISH: 21:15:41,48 ===============




Security Check:
Results of screen317's Security Check version 0.99.57
Windows 7 Service Pack 1 x64 (UAC is disabled!)
Internet Explorer 9
``````````````Antivirus/Firewall Check:``````````````
Microsoft Security Essentials
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
JavaFX 2.1.1
Java™ 6 Update 33
Java 7 Update 11
Java™ SE Development Kit 6 Update 25
Java™ SE Development Kit 7
Adobe Flash Player 11.5.502.135
Adobe Reader 10.1.5 Adobe Reader out of Date!
Google Chrome 21.0.1180.83
Google Chrome 21.0.1180.89
Google Chrome 22.0.1229.79
Google Chrome 22.0.1229.92
Google Chrome 22.0.1229.94
Google Chrome 23.0.1271.64
Google Chrome 23.0.1271.95
Google Chrome 23.0.1271.97
Google Chrome plugins...
````````Process Check: objlist.exe by Laurent````````
Microsoft Security Essentials MSMpEng.exe
Microsoft Security Essentials msseces.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C:
````````````````````End of Log``````````````````````



AdwCleaner:

# AdwCleaner v2.105 - Log utworzony 16/01/2013 o 21:20:54
# Aktualizacja 08/01/2013 przez Xplode
# System operacyjny : Windows 7 Home Premium Service Pack 1 (64 bits)
# Użytkownik : user - USER-K
# Tryb uruchomienia : Normalny
# Ścieżka : C:\Users\user\Downloads\adwcleaner.exe
# Opcja [Szukaj]

***** [Usługi] *****


***** [Pliki / Foldery] *****

Folder Znaleziono : C:\Program Files (x86)\Ask.com
Folder Znaleziono : C:\Program Files (x86)\AVG Secure Search
Folder Znaleziono : C:\Program Files (x86)\BrotherSoft_Extreme3
Folder Znaleziono : C:\Program Files (x86)\BrotherSoft_SPC
Folder Znaleziono : C:\Program Files (x86)\Common Files\AVG Secure Search
Folder Znaleziono : C:\Program Files (x86)\Conduit
Folder Znaleziono : C:\Program Files (x86)\OApps
Folder Znaleziono : C:\Program Files (x86)\Zoomex
Folder Znaleziono : C:\ProgramData\Ask
Folder Znaleziono : C:\ProgramData\AVG Secure Search
Folder Znaleziono : C:\ProgramData\Babylon
Folder Znaleziono : C:\ProgramData\InstallMate
Folder Znaleziono : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zoomex
Folder Znaleziono : C:\ProgramData\Premium
Folder Znaleziono : C:\ProgramData\Zoomex
Folder Znaleziono : C:\windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Plik Znaleziono : C:\END
Plik Znaleziono : C:\user.js
Plik Znaleziono : C:\windows\Tasks\Scheduled Update for Ask Toolbar.job

***** [Rejestr] *****

Dane Znaleziono : HKLM\..\Windows [AppInit_DLLs] = c:\PROGRA~2\ZoomEx\sprotector.dll
Klucz Znaleziono : HKCU\Software\APN
Klucz Znaleziono : HKCU\Software\AppDataLow\Software\AskToolbar
Klucz Znaleziono : HKCU\Software\AppDataLow\Software\BrotherSoft_Extreme3
Klucz Znaleziono : HKCU\Software\AppDataLow\Software\BrotherSoft_SPC
Klucz Znaleziono : HKCU\Software\AppDataLow\Software\Conduit
Klucz Znaleziono : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Klucz Znaleziono : HKCU\Software\AppDataLow\Software\PriceGong
Klucz Znaleziono : HKCU\Software\AppDataLow\Software\SmartBar
Klucz Znaleziono : HKCU\Software\AppDataLow\SProtector
Klucz Znaleziono : HKCU\Software\AppDataLow\Toolbar
Klucz Znaleziono : HKCU\Software\Ask.com
Klucz Znaleziono : HKCU\Software\AVG Secure Search
Klucz Znaleziono : HKCU\Software\Conduit
Klucz Znaleziono : HKCU\Software\Microsoft\Babylon
Klucz Znaleziono : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Klucz Znaleziono : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{62D40876-DF18-411F-9D34-A9DD7A197BC5}
Klucz Znaleziono : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{759472DF-2856-4414-BD87-8E99B2B84BA1}
Klucz Znaleziono : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klucz Znaleziono : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Klucz Znaleziono : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Klucz Znaleziono : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{62D40876-DF18-411F-9D34-A9DD7A197BC5}
Klucz Znaleziono : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6DB604FB-131C-4B50-95E8-95CD1C0C08E7}
Klucz Znaleziono : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{759472DF-2856-4414-BD87-8E99B2B84BA1}
Klucz Znaleziono : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klucz Znaleziono : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A4D1BC51-35B2-46A6-A8FC-381B5B89135B}
Klucz Znaleziono : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Klucz Znaleziono : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Klucz Znaleziono : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Klucz Znaleziono : HKCU\Software\Softonic
Klucz Znaleziono : HKCU\Software\StartSearch
Klucz Znaleziono : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Klucz Znaleziono : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klucz Znaleziono : HKLM\Software\APN
Klucz Znaleziono : HKLM\Software\AskToolbar
Klucz Znaleziono : HKLM\Software\AVG Secure Search
Klucz Znaleziono : HKLM\Software\Babylon
Klucz Znaleziono : HKLM\Software\BrotherSoft_Extreme3
Klucz Znaleziono : HKLM\Software\BrotherSoft_SPC
Klucz Znaleziono : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Klucz Znaleziono : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Klucz Znaleziono : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Klucz Znaleziono : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Klucz Znaleziono : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Klucz Znaleziono : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Klucz Znaleziono : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Klucz Znaleziono : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Klucz Znaleziono : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Klucz Znaleziono : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Klucz Znaleziono : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Klucz Znaleziono : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Klucz Znaleziono : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Klucz Znaleziono : HKLM\Software\Classes\Installer\Features\6207E55EA2FE71A4AA7ABD89AEF31D1B
Klucz Znaleziono : HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Klucz Znaleziono : HKLM\Software\Classes\Installer\Products\6207E55EA2FE71A4AA7ABD89AEF31D1B
Klucz Znaleziono : HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Klucz Znaleziono : HKLM\SOFTWARE\Classes\Prod.cap
Klucz Znaleziono : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol
Klucz Znaleziono : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Klucz Znaleziono : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Klucz Znaleziono : HKLM\SOFTWARE\Classes\Toolbar.CT3205709
Klucz Znaleziono : HKLM\SOFTWARE\Classes\Toolbar.CT3239571
Klucz Znaleziono : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Klucz Znaleziono : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Klucz Znaleziono : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Klucz Znaleziono : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Klucz Znaleziono : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Klucz Znaleziono : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Klucz Znaleziono : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Klucz Znaleziono : HKLM\Software\Conduit
Klucz Znaleziono : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Klucz Znaleziono : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Klucz Znaleziono : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6DB604FB-131C-4B50-95E8-95CD1C0C08E7}
Klucz Znaleziono : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A4D1BC51-35B2-46A6-A8FC-381B5B89135B}
Klucz Znaleziono : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Klucz Znaleziono : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Klucz Znaleziono : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Klucz Znaleziono : HKLM\Software\SP Global
Klucz Znaleziono : HKLM\Software\SProtector
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{62D40876-DF18-411F-9D34-A9DD7A197BC5}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{6DB604FB-131C-4B50-95E8-95CD1C0C08E7}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{759472DF-2856-4414-BD87-8E99B2B84BA1}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A4D1BC51-35B2-46A6-A8FC-381B5B89135B}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\kincjchfokkeneeofpeefomkikfkiedl
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{33D07691-9876-4F20-BE33-73885084E790}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{77662CBD-5767-4948-81C3-8E76A069B130}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{971C8DDF-ABBB-454A-A389-33694DEE675C}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A6474C13-CC82-427A-A1BC-303E17571A84}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{62D40876-DF18-411F-9D34-A9DD7A197BC5}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{759472DF-2856-4414-BD87-8E99B2B84BA1}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E55E7026-EF2A-4A17-AAA7-DB98EA3FD1B1}
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\BrotherSoft_Extreme3 Toolbar
Klucz Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\BrotherSoft_SPC Toolbar
Klucz Znaleziono : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Klucz Znaleziono : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Klucz Znaleziono : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Klucz Znaleziono : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Klucz Znaleziono : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Klucz Znaleziono : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Klucz Znaleziono : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Klucz Znaleziono : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Klucz Znaleziono : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Klucz Znaleziono : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Klucz Znaleziono : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Klucz Znaleziono : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Klucz Znaleziono : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Klucz Znaleziono : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Klucz Znaleziono : HKLM\SOFTWARE\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
Klucz Znaleziono : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Klucz Znaleziono : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Klucz Znaleziono : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Klucz Znaleziono : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Klucz Znaleziono : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Klucz Znaleziono : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Klucz Znaleziono : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ApnUpdater
Klucz Znaleziono : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Klucz Znaleziono : HKU\S-1-5-21-4094473463-618024080-4171821884-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Klucz Znaleziono : HKU\S-1-5-21-4094473463-618024080-4171821884-1001\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Wartość Znaleziono : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{62D40876-DF18-411F-9D34-A9DD7A197BC5}]
Wartość Znaleziono : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{759472DF-2856-4414-BD87-8E99B2B84BA1}]
Wartość Znaleziono : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{00000000-6E41-4FD3-8538-502F5495E5FC}]
Wartość Znaleziono : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{62D40876-DF18-411F-9D34-A9DD7A197BC5}]
Wartość Znaleziono : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{759472DF-2856-4414-BD87-8E99B2B84BA1}]
Wartość Znaleziono : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{62D40876-DF18-411F-9D34-A9DD7A197BC5}]
Wartość Znaleziono : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{759472DF-2856-4414-BD87-8E99B2B84BA1}]
Wartość Znaleziono : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnUpdater]
Wartość Znaleziono : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Wartość Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{62D40876-DF18-411F-9D34-A9DD7A197BC5}]
Wartość Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{759472DF-2856-4414-BD87-8E99B2B84BA1}]
Wartość Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Wartość Znaleziono : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]

***** [Przeglądarki Internetowe] *****

-\\ Internet Explorer v9.0.8112.16457

[HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://isearch.avg.com/?cid={BBFA2D64-D80A-4184-A9C1-7C02123A89EF}&mid=cb82fda54efb47d08fc29dc9d565a0d6-cd2a1b8facad1333b9195682ad1e0c7dda5339c3&lang=pl&ds=xn011&pr=sa&d=2013-01-07 17:38:14&v=13.3.0.17&sap=hp

-\\ Google Chrome v23.0.1271.97

-\\ Opera v12.12.1707.0

*************************

AdwCleaner[R1].txt - [16668 octets] - [16/01/2013 21:20:54]

########## EOF - C:\AdwCleaner[R1].txt - [16729 octets] ##########

#4 nasdaq

nasdaq

  • Malware Response Team
  • 40,464 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:11:00 PM

Posted 17 January 2013 - 09:17 AM

Before proceeding further please run these tools.

Please Download
TDSSKiller.zip

>>> Double-click on TDSSKiller.exe to run the application.
  • Click on the Start Scan button and wait for the scan and disinfection process to be over.
  • If an infected file is detected, the default action will be Cure, click on Continue
    Posted Image
  • If a suspicious file is detected, the default action will be Skip, click on Continue
    Posted Image
  • If you are asked to reboot the computer to complete the process, click on the Reboot Now button. A report will be automatically saved at the root of the System drive ((usually C:\) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt" (for example, C:\TDSSKiller.2.2.0_20.12.2009_15.31.43_log.txt). Please copy and paste the contents of that file here.
  • If no reboot is required, click on Report. A log file will appear. Please copy and paste the contents of that file in your next reply.

Download http://public.avast.com/~gmerek/aswMBR.exe (aswMBR.exe) to your desktop. Double click the aswMBR.exe to run it

  • Click the "Scan" button to start scan.
  • Upon completion of the scan, click Save log, and save it to your desktop. (Note - do not select any Fix at this time) <- IMPORTANT
  • Please post the contents of that log in your next reply.
There shall also be a file on your desktop named MBR.dat. Right click that file and select Send To>Compressed (zipped) folder. Please attach that zipped file in your next reply.

===

Please post the logs for my review.

While I check your logs you can clean these entries.

Remove the AdWare, PUP (Potentially Unwanted Program) installed on your computer.

  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Delete.
  • Everything that was found will be deleted.
  • Follow the prompts to reboot the computer. A text file will open after the restart.
  • Please post the content of that log file with your next answer.
  • You can find the log file at C:\AdwCleaner[Sn].txt (n is a number)..


#5 nasdaq

nasdaq

  • Malware Response Team
  • 40,464 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:11:00 PM

Posted 23 January 2013 - 10:11 AM

Are you still with me?




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users