REKLAMA

otl_logi.rar

Analiza logów OTL po skanowaniu Dr.Web, Malwarebytes i AdwCleaner

proszę o sprwadzenie logów otl ,komputer przeskanowany dr web, malwarebytes oraz adw cleanerem.

otl_logi.rar
- OTL.Txt
- Extras.Txt

otl_logi.rar > OTL.Txt

OTL logfile created on: 2013-09-27 14:08:03 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = G:\Atywirusownia
Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

1,80 Gb Total Physical Memory | 1,20 Gb Available Physical Memory | 66,75% Memory free
3,61 Gb Paging File | 3,00 Gb Available in Paging File | 83,14% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 172,79 Gb Total Space | 61,25 Gb Free Space | 35,45% Space Free | Partition Type: NTFS
Drive D: | 292,87 Gb Total Space | 269,68 Gb Free Space | 92,08% Space Free | Partition Type: NTFS
Drive F: | 47,55 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive G: | 3,78 Gb Total Space | 3,53 Gb Free Space | 93,25% Space Free | Partition Type: NTFS

Computer Name: SZIK-BABICA1 | User Name: SZIK | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2013-09-27 12:12:21 | 000,602,112 | ---- | M] (OldTimer Tools) -- G:\Atywirusownia\OTL.exe
PRC - [2013-08-28 13:33:48 | 000,262,816 | ---- | M] (Birch Grove Software, Inc.) -- C:\Windows\System32\svctcom.exe
PRC - [2013-08-28 13:33:46 | 000,159,392 | ---- | M] (Birch Grove Software, Inc.) -- C:\Windows\System32\scthost.exe
PRC - [2013-07-04 16:34:12 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2013-04-03 09:01:52 | 001,567,232 | ---- | M] () -- C:\Program Files\Serwerfisk\SerwerFisk.exe
PRC - [2012-07-25 03:51:06 | 000,655,712 | ---- | M] () -- C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe
PRC - [2011-06-01 14:44:54 | 008,003,448 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version6\TeamViewer.exe
PRC - [2011-06-01 14:44:54 | 002,337,144 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe
PRC - [2011-03-14 17:27:28 | 000,271,712 | ---- | M] () -- C:\ProgramData\DataCardService\HWDeviceService.exe
PRC - [2011-03-14 17:27:28 | 000,236,384 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\ProgramData\DataCardService\DCSHelper.exe
PRC - [2011-02-25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2011-01-17 18:01:46 | 011,322,880 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe
PRC - [2011-01-17 18:01:46 | 011,314,688 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin
PRC - [2010-10-25 22:40:42 | 000,356,352 | ---- | M] (Transaction Software, D 81829 Munich) -- D:\TECDOC_CD\2_2011\db\tbmux32.exe
PRC - [2009-09-30 14:02:48 | 000,268,824 | R--- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2009-05-14 15:47:54 | 000,731,840 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2009-05-14 15:47:08 | 002,029,640 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe

[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - [2013-04-03 09:01:52 | 001,567,232 | ---- | M] () -- C:\Program Files\Serwerfisk\SerwerFisk.exe
MOD - [2012-02-13 13:29:04 | 000,351,744 | ---- | M] () -- C:\Program Files\innova\innovax\innovax.dll
MOD - [2011-05-23 16:30:57 | 000,985,088 | ---- | M] () -- C:\Program Files\OpenOffice.org 3\program\libxml2.dll
MOD - [2007-01-08 11:31:00 | 000,337,408 | ---- | M] () -- C:\Program Files\Serwerfisk\winseria.dll

[color=#E56717]========== Services (SafeList) ==========[/color]

SRV - [2013-09-21 12:20:11 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013-08-28 13:33:48 | 000,262,816 | ---- | M] (Birch Grove Software, Inc.) [Auto | Running] -- C:\Windows\System32\svctcom.exe -- (svctcom)
SRV - [2012-07-25 03:51:06 | 000,655,712 | ---- | M] () [Auto | Stopped] -- C:\Program Files\Mobile Partner\UpdateDog\ouc.exe -- (Mobile Partner. RunOuc)
SRV - [2011-06-01 14:44:54 | 002,337,144 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe -- (TeamViewer6)
SRV - [2011-05-23 15:24:06 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2011-03-14 17:27:28 | 000,271,712 | ---- | M] () [Auto | Running] -- C:\ProgramData\DataCardService\HWDeviceService.exe -- (HWDeviceService.exe)
SRV - [2010-10-25 22:40:42 | 000,356,352 | ---- | M] (Transaction Software, D 81829 Munich) [Auto | Running] -- D:\TECDOC_CD\2_2011\db\tbmux32.exe -- (Transbase TECDOC CD 2_2011 Service)
SRV - [2009-09-30 14:02:50 | 002,320,920 | R--- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2009-09-30 14:02:48 | 000,268,824 | R--- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2009-07-14 03:16:15 | 000,016,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2009-07-14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009-07-14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009-07-14 03:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009-07-14 03:14:30 | 000,009,216 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\regedt32.exe -- (.EsetTrialReset)
SRV - [2009-05-14 15:54:22 | 000,020,680 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV - [2009-05-14 15:47:54 | 000,731,840 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)

[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - File not found [Kernel | Boot | Stopped] -- System32\drivers\gasxdi.sys -- (snigxka)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\gdrv.sys -- (gdrv)
DRV - [2013-05-14 11:28:35 | 000,242,240 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2012-04-23 03:53:36 | 000,027,520 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ew_juextctrl.sys -- (huawei_ext_ctrl)
DRV - [2012-04-23 03:53:35 | 000,095,616 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ew_jucdcacm.sys -- (huawei_cdcacm)
DRV - [2012-04-23 03:53:35 | 000,076,544 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ew_jubusenum.sys -- (huawei_enumerator)
DRV - [2012-04-23 03:53:35 | 000,070,016 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ew_jucdcecm.sys -- (huawei_cdcecm)
DRV - [2011-12-31 03:20:23 | 000,199,168 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2010-11-20 23:29:24 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010-11-20 23:29:03 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010-11-20 23:29:03 | 000,062,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\dmvsc.sys -- (dmvsc)
DRV - [2010-11-20 23:29:03 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010-11-20 23:29:03 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010-11-20 23:29:03 | 000,027,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV - [2010-11-20 23:29:03 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010-11-20 23:29:03 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2010-07-27 03:52:02 | 000,102,784 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ew_hwusbdev.sys -- (ew_hwusbdev)
DRV - [2010-03-20 06:06:58 | 000,011,136 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ew_usbenumfilter.sys -- (ew_usbenumfilter)
DRV - [2009-09-17 06:54:14 | 000,041,088 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HECI.sys -- (HECI)
DRV - [2009-05-14 15:49:34 | 000,093,312 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\epfwwfpr.sys -- (epfwwfpr)
DRV - [2009-05-14 15:47:14 | 000,107,256 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\System32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2009-05-14 15:41:10 | 000,114,472 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\Windows\System32\drivers\eamon.sys -- (eamon)

[color=#E56717]========== Standard Registry (SafeList) ==========[/color]

[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: " URL " = http://www.bing.com/search?q={searchTerms} & FORM=IE8SRC

IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: " ProxyEnable " = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: " ProxyEnable " = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-3531618268-915810470-3408397246-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKU\S-1-5-21-3531618268-915810470-3408397246-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/
IE - HKU\S-1-5-21-3531618268-915810470-3408397246-1000\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-3531618268-915810470-3408397246-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: " ProxyEnable " = 0

[color=#E56717]========== FireFox ==========[/color]

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2011-05-23 14:54:36 | 000,000,000 | ---D | M]

[color=#E56717]========== Chrome ==========[/color]

CHR - default_search_provider: WebSearch (Enabled)
CHR - default_search_provider: search_url = http://www.google.com
CHR - default_search_provider: suggest_url = http://localhost
CHR - homepage: http://www.google.com
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\29.0.1547.76\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\29.0.1547.76\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\29.0.1547.76\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 8.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.240.7 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U24 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll
CHR - Extension: xscBrwse = C:\Users\SZIK\AppData\Local\Google\Chrome\User Data\Default\Extensions\amjfagflabniejgpkbhbalkdgbjaljdn\3.3.1_0\
CHR - Extension: Dokumenty Google = C:\Users\SZIK\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Dysk Google = C:\Users\SZIK\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\SZIK\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Szukaj w Google = C:\Users\SZIK\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: saveNshare = C:\Users\SZIK\AppData\Local\Google\Chrome\User Data\Default\Extensions\iooohehfjkfdagbmeecbdhfoohaldfkg\5.10\
CHR - Extension: Chrome In-App Payments service = C:\Users\SZIK\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0\
CHR - Extension: Chrome In-App Payments service = C:\Users\SZIK\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0\
CHR - Extension: Search-oNueWiTAb = C:\Users\SZIK\AppData\Local\Google\Chrome\User Data\Default\Extensions\piaiagkndkobaclccjkndindcadflgme\1.0\
CHR - Extension: Gmail = C:\Users\SZIK\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2009-06-10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-3531618268-915810470-3408397246-1000\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKU\S-1-5-21-3531618268-915810470-3408397246-1000..\Run: [ContactKeeper Birthday reminder] " F:\ContactKeeper\ContactKeeper.exe " /Reminder File not found
O4 - HKU\S-1-5-21-3531618268-915810470-3408397246-1000..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (Disc Soft Ltd)
O4 - HKU\S-1-5-21-3531618268-915810470-3408397246-1000..\Run: [eaecacbafaebaec] " C:\ProgramData\eaecacbafaebaec.exe " File not found
O4 - HKU\S-1-5-21-3531618268-915810470-3408397246-1000..\Run: [eaecacbafaebaegfdgfdgdfg] " C:\ProgramData\eaecacbafaebaegfdgfdgdfg.exe " File not found
O4 - HKU\S-1-5-21-3531618268-915810470-3408397246-1000..\Run: [LiveSupport] " C:\Program Files\LiveSupport\LiveSupport.exe " /noshow /log File not found
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - Startup: C:\Users\SZIK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
O4 - Startup: C:\Users\SZIK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SerwerFisk — skrót.lnk = C:\Program Files\Serwerfisk\SerwerFisk.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 1
O7 - HKU\S-1-5-21-3531618268-915810470-3408397246-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-3531618268-915810470-3408397246-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideSCAHealth = 1
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {DB7ACFA2-9634-4C98-BC9D-FB9416153022} http://192.168.220.102/nvEPLMedia.cab (nvEPLMedia Control)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 62.133.128.10 62.133.128.20
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1FC1C0CD-CA92-4FF5-AEC9-014CF62A2826}: DhcpNameServer = 62.133.128.10 62.133.128.20
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-06-10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2011-03-15 09:27:20 | 000,148,320 | R--- | M] () - F:\AutoRun.exe -- [ CDFS ]
O32 - AutoRun File - [2008-10-01 19:12:34 | 000,000,045 | R--- | M] () - F:\AUTORUN.INF -- [ CDFS ]
O32 - AutoRun File - [2009-06-19 00:13:04 | 000,000,094 | R--- | M] () - F:\autorun.sh -- [ CDFS ]
O33 - MountPoints2\{56a72114-bc82-11e2-9f1e-1c6f65d1063c}\Shell - " " = AutoRun
O33 - MountPoints2\{56a72114-bc82-11e2-9f1e-1c6f65d1063c}\Shell\AutoRun\command - " " = G:\AutoRun.exe
O33 - MountPoints2\{56a72118-bc82-11e2-9f1e-1c6f65d1063c}\Shell - " " = AutoRun
O33 - MountPoints2\{56a72118-bc82-11e2-9f1e-1c6f65d1063c}\Shell\AutoRun\command - " " = G:\AutoRun.exe
O33 - MountPoints2\{8d3dc94f-bc59-11e2-b1a0-1c6f65d1063c}\Shell - " " = AutoRun
O33 - MountPoints2\{8d3dc94f-bc59-11e2-b1a0-1c6f65d1063c}\Shell\AutoRun\command - " " = F:\AutoRun.exe -- [2011-03-15 09:27:20 | 000,148,320 | R--- | M] ()
O33 - MountPoints2\{8d3dc970-bc59-11e2-b1a0-1c6f65d1063c}\Shell - " " = AutoRun
O33 - MountPoints2\{8d3dc970-bc59-11e2-b1a0-1c6f65d1063c}\Shell\AutoRun\command - " " = G:\AutoRun.exe
O33 - MountPoints2\{8d3dc974-bc59-11e2-b1a0-1c6f65d1063c}\Shell - " " = AutoRun
O33 - MountPoints2\{8d3dc974-bc59-11e2-b1a0-1c6f65d1063c}\Shell\AutoRun\command - " " = G:\AutoRun.exe
O33 - MountPoints2\{8d3dc97e-bc59-11e2-b1a0-1c6f65d1063c}\Shell - " " = AutoRun
O33 - MountPoints2\{8d3dc97e-bc59-11e2-b1a0-1c6f65d1063c}\Shell\AutoRun\command - " " = G:\AutoRun.exe
O33 - MountPoints2\{8d3dc983-bc59-11e2-b1a0-1c6f65d1063c}\Shell - " " = AutoRun
O33 - MountPoints2\{8d3dc983-bc59-11e2-b1a0-1c6f65d1063c}\Shell\AutoRun\command - " " = G:\AutoRun.exe
O33 - MountPoints2\{8d3dc994-bc59-11e2-b1a0-1c6f65d1063c}\Shell - " " = AutoRun
O33 - MountPoints2\{8d3dc994-bc59-11e2-b1a0-1c6f65d1063c}\Shell\AutoRun\command - " " = G:\AutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- " %1 " %*
O35 - HKLM\..exefile [open] -- " %1 " %*
O37 - HKLM\...com [@ = comfile] -- " %1 " %*
O37 - HKLM\...exe [@ = exefile] -- " %1 " %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

[color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color]

[2013-09-27 14:00:52 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2013-09-27 13:00:45 | 000,000,000 | ---D | C] -- C:\Users\SZIK\Desktop\logi
[2013-09-25 08:00:29 | 000,000,000 | ---D | C] -- C:\Users\SZIK\AppData\Local\{F817B231-59D8-4A56-8271-019711B3324B}
[2013-09-25 07:59:40 | 000,000,000 | ---D | C] -- C:\Users\SZIK\AppData\Local\{D3146638-A755-4BEF-BB40-AA986B5F6775}
[2013-09-24 14:20:05 | 000,000,000 | ---D | C] -- C:\Users\SZIK\AppData\Local\{546AA765-35B2-43DF-8A7E-8EC989FB606B}
[2013-09-24 07:18:30 | 000,000,000 | ---D | C] -- C:\Users\SZIK\Desktop\255
[2013-09-23 08:49:11 | 000,000,000 | ---D | C] -- C:\Users\SZIK\Desktop\VF1JA04N522538984
[2013-09-17 17:34:23 | 000,011,264 | ---- | C] (Birch Grove Software, Inc.) -- C:\Windows\System32\Aamff24000.dll
[2013-09-17 10:26:37 | 000,000,000 | ---D | C] -- C:\Users\SZIK\AppData\Local\{6B9BF2FA-ADDB-4CAA-908E-2C0CAC7DF826}
[2013-09-17 09:44:51 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2013-09-10 09:56:29 | 000,000,000 | ---D | C] -- C:\Users\SZIK\AppData\Local\{831406B7-3898-456A-AAA2-96243950639B}
[2013-09-09 08:23:18 | 000,000,000 | ---D | C] -- C:\Users\SZIK\AppData\Local\{9A29E6E1-018A-4130-B8B0-28CF8871E48D}
[2013-09-07 10:37:08 | 000,000,000 | ---D | C] -- C:\Users\SZIK\AppData\Local\{3FBCF199-055F-4CEF-B254-F8EAE1AC70E5}
[2013-09-04 09:52:50 | 000,000,000 | ---D | C] -- C:\Users\SZIK\AppData\Local\{12E7F3A3-BC22-4028-B7D3-EE4667DC092B}
[2013-09-04 09:37:23 | 000,000,000 | ---D | C] -- C:\Users\SZIK\AppData\Local\{1FB517B3-CE7E-4B86-A93D-F64591C94835}
[2013-09-03 12:25:06 | 000,000,000 | ---D | C] -- C:\Users\SZIK\AppData\Local\{20E1B5BE-A72A-4AC3-9B02-136CBBE6750D}
[2013-09-03 12:24:34 | 000,000,000 | ---D | C] -- C:\Users\SZIK\AppData\Local\{F1B90DCF-B77E-47B2-9168-6C604A6739CA}
[2013-09-02 11:30:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AP Katalog 4
[2013-09-02 08:02:09 | 000,000,000 | ---D | C] -- C:\Users\SZIK\AppData\Local\{5862C1AF-1376-4C34-93AC-5B0E1756CD7B}
[2013-08-29 17:32:08 | 000,000,000 | ---D | C] -- C:\Users\SZIK\AppData\Local\{58DDD82C-385A-4CF8-B1AA-7746472D5E94}
[2013-08-29 13:39:21 | 000,000,000 | ---D | C] -- C:\ProgramData\SummerSoft
[2013-08-29 13:39:14 | 000,000,000 | ---D | C] -- C:\Windows\System32\X86
[2013-08-29 13:39:14 | 000,000,000 | ---D | C] -- C:\Windows\System32\AMD64
[2013-08-29 13:38:48 | 000,000,000 | ---D | C] -- C:\Users\SZIK\AppData\Local\Programs
[2013-08-29 13:38:37 | 000,000,000 | ---D | C] -- C:\Program Files\SaveShare
[2013-08-29 13:38:12 | 000,000,000 | ---D | C] -- C:\ProgramData\InstallMate
[2013-08-29 07:50:30 | 000,000,000 | ---D | C] -- C:\Program Files\Birch Grove Software, Inc
[2013-08-28 13:33:48 | 000,262,816 | ---- | C] (Birch Grove Software, Inc.) -- C:\Windows\System32\svctcom.exe
[2013-08-28 13:33:46 | 000,159,392 | ---- | C] (Birch Grove Software, Inc.) -- C:\Windows\System32\scthost.exe
[2013-08-28 13:33:46 | 000,061,600 | ---- | C] (Birch Grove Software, Inc.) -- C:\Windows\System32\scthost3400.dll
[2013-08-28 13:33:46 | 000,019,104 | ---- | C] (Birch Grove Software, Inc.) -- C:\Windows\System32\Aamff9309.dll
[2013-08-28 13:33:44 | 000,070,816 | ---- | C] (Birch Grove Software, Inc.) -- C:\Windows\System32\Aamff7309.dll
[2013-08-28 13:33:44 | 000,019,104 | ---- | C] (Birch Grove Software, Inc.) -- C:\Windows\System32\Aamff8309.dll
[2013-08-28 13:33:42 | 000,071,840 | ---- | C] (Birch Grove Software, Inc.) -- C:\Windows\System32\Aamff3309.dll
[2013-08-28 13:33:42 | 000,053,920 | ---- | C] (Birch Grove Software, Inc.) -- C:\Windows\System32\Aamff2309.dll
[2013-08-28 13:33:38 | 000,018,592 | ---- | C] (Birch Grove Software, Inc.) -- C:\Windows\System32\Aamff16000.dll
[2013-08-28 13:33:36 | 000,064,160 | ---- | C] (Birch Grove Software, Inc.) -- C:\Windows\System32\Aamff14000.dll
[2013-08-28 13:33:36 | 000,018,592 | ---- | C] (Birch Grove Software, Inc.) -- C:\Windows\System32\Aamff15000.dll
[2013-08-28 13:33:34 | 000,064,160 | ---- | C] (Birch Grove Software, Inc.) -- C:\Windows\System32\Aamff13000.dll
[2013-08-28 13:33:34 | 000,064,160 | ---- | C] (Birch Grove Software, Inc.) -- C:\Windows\System32\Aamff12000.dll
[2013-08-28 13:33:34 | 000,064,160 | ---- | C] (Birch Grove Software, Inc.) -- C:\Windows\System32\Aamff11000.dll
[2013-08-28 13:33:32 | 000,019,104 | ---- | C] (Birch Grove Software, Inc.) -- C:\Windows\System32\Aamff10000.dll
[2013-08-28 11:00:10 | 000,000,000 | ---D | C] -- C:\Users\SZIK\AppData\Local\{1655C346-ED5C-4FCE-BA4B-74030D881EDC}
[2013-08-27 11:13:50 | 000,000,000 | ---D | C] -- C:\Users\SZIK\AppData\Local\{78D988EB-C9B8-4873-BBFD-CC613421732E}
[2013-08-21 08:59:39 | 000,000,000 | ---D | C] -- C:\Users\SZIK\AppData\Local\{B6064FCD-1D17-4516-A1F5-1DCD80F19134}
[2013-08-20 08:10:32 | 000,000,000 | ---D | C] -- C:\Users\SZIK\AppData\Local\{7319DDA4-F538-43B1-B54C-7D686DC472A1}
[2013-08-19 08:26:18 | 000,000,000 | ---D | C] -- C:\Users\SZIK\AppData\Local\{8F7A98E1-81B1-4197-A196-D5352FC6F485}
[2013-08-16 12:03:40 | 000,000,000 | ---D | C] -- C:\Users\SZIK\AppData\Local\{5375B4C5-C147-4C7B-A797-91E091602A55}
[2013-08-12 07:21:57 | 000,011,264 | ---- | C] (Birch Grove Software, Inc.) -- C:\Windows\System32\Aamff23000.dll
[2013-08-01 15:54:36 | 000,000,000 | ---D | C] -- C:\Users\SZIK\AppData\Local\{0A1BD83E-86C5-4E4B-9EC5-24404D8668CE}
[2013-07-30 09:55:33 | 000,000,000 | ---D | C] -- C:\Users\SZIK\AppData\Local\{DA7A0E55-184E-41D0-9134-AA12577BF025}

[color=#E56717]========== Files - Modified Within 60 Days ==========[/color]

[2013-09-27 14:06:43 | 000,000,568 | RHS- | M] () -- C:\ProgramData\ntuser.pol
[2013-09-27 14:06:26 | 000,001,028 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013-09-27 14:06:15 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013-09-27 14:06:11 | 1452,924,928 | -HS- | M] () -- C:\hiberfil.sys
[2013-09-27 14:01:50 | 000,021,904 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013-09-27 14:01:50 | 000,021,904 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013-09-27 13:38:19 | 000,001,032 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013-09-27 13:20:00 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013-09-27 13:16:57 | 000,001,027 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013-09-27 13:01:36 | 000,747,724 | ---- | M] () -- C:\Windows\System32\perfh015.dat
[2013-09-27 13:01:36 | 000,661,146 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013-09-27 13:01:36 | 000,160,290 | ---- | M] () -- C:\Windows\System32\perfc015.dat
[2013-09-27 13:01:36 | 000,125,232 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013-09-26 18:05:11 | 000,000,040 | RH-- | M] () -- C:\Windows\ssystda.dat
[2013-09-26 10:20:39 | 000,000,600 | ---- | M] () -- C:\Users\SZIK\PUTTY.RND
[2013-09-24 15:34:06 | 000,019,262 | ---- | M] () -- C:\Users\SZIK\Desktop\563797_575711565786637_33057904_n.jpg
[2013-09-24 09:16:27 | 000,000,267 | ---- | M] () -- C:\Users\SZIK\Desktop\RENAULT EPC ONLINE.url
[2013-09-21 12:20:07 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2013-09-21 12:20:07 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2013-09-17 17:34:23 | 000,011,264 | ---- | M] (Birch Grove Software, Inc.) -- C:\Windows\System32\Aamff24000.dll
[2013-09-17 10:05:21 | 000,000,252 | ---- | M] () -- C:\Users\SZIK\Desktop\CITROEN.url
[2013-09-13 12:31:49 | 000,000,282 | ---- | M] () -- C:\Users\SZIK\Desktop\PEUGEOT.url
[2013-09-02 16:09:57 | 000,000,387 | ---- | M] () -- C:\Users\SZIK\Desktop\SZIK REKLAMACJE.website
[2013-09-02 11:26:55 | 001,060,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MFC71.dll
[2013-08-29 07:50:31 | 000,000,004 | ---- | M] () -- C:\Windows\System32\bgstart.bin
[2013-08-28 13:33:48 | 000,262,816 | ---- | M] (Birch Grove Software, Inc.) -- C:\Windows\System32\svctcom.exe
[2013-08-28 13:33:46 | 000,159,392 | ---- | M] (Birch Grove Software, Inc.) -- C:\Windows\System32\scthost.exe
[2013-08-28 13:33:46 | 000,061,600 | ---- | M] (Birch Grove Software, Inc.) -- C:\Windows\System32\scthost3400.dll
[2013-08-28 13:33:46 | 000,019,104 | ---- | M] (Birch Grove Software, Inc.) -- C:\Windows\System32\Aamff9309.dll
[2013-08-28 13:33:44 | 000,070,816 | ---- | M] (Birch Grove Software, Inc.) -- C:\Windows\System32\Aamff7309.dll
[2013-08-28 13:33:44 | 000,019,104 | ---- | M] (Birch Grove Software, Inc.) -- C:\Windows\System32\Aamff8309.dll
[2013-08-28 13:33:42 | 000,071,840 | ---- | M] (Birch Grove Software, Inc.) -- C:\Windows\System32\Aamff3309.dll
[2013-08-28 13:33:42 | 000,053,920 | ---- | M] (Birch Grove Software, Inc.) -- C:\Windows\System32\Aamff2309.dll
[2013-08-28 13:33:38 | 000,018,592 | ---- | M] (Birch Grove Software, Inc.) -- C:\Windows\System32\Aamff16000.dll
[2013-08-28 13:33:36 | 000,064,160 | ---- | M] (Birch Grove Software, Inc.) -- C:\Windows\System32\Aamff14000.dll
[2013-08-28 13:33:36 | 000,018,592 | ---- | M] (Birch Grove Software, Inc.) -- C:\Windows\System32\Aamff15000.dll
[2013-08-28 13:33:34 | 000,064,160 | ---- | M] (Birch Grove Software, Inc.) -- C:\Windows\System32\Aamff13000.dll
[2013-08-28 13:33:34 | 000,064,160 | ---- | M] (Birch Grove Software, Inc.) -- C:\Windows\System32\Aamff12000.dll
[2013-08-28 13:33:34 | 000,064,160 | ---- | M] (Birch Grove Software, Inc.) -- C:\Windows\System32\Aamff11000.dll
[2013-08-28 13:33:32 | 000,019,104 | ---- | M] (Birch Grove Software, Inc.) -- C:\Windows\System32\Aamff10000.dll
[2013-08-12 09:39:49 | 000,000,582 | ---- | M] () -- C:\ProgramData\eaecacbafaebaec.cfg
[2013-08-12 07:21:57 | 000,011,264 | ---- | M] (Birch Grove Software, Inc.) -- C:\Windows\System32\Aamff23000.dll
[2013-08-05 12:14:52 | 000,162,816 | ---- | M] () -- C:\ProgramData\tkournxndwwsrbi
[2013-08-05 12:11:46 | 000,144,896 | ---- | M] () -- C:\ProgramData\rpvxmqwxeyhireg

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2013-09-27 13:16:57 | 000,001,027 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013-09-24 15:35:19 | 000,019,262 | ---- | C] () -- C:\Users\SZIK\Desktop\563797_575711565786637_33057904_n.jpg
[2013-08-27 07:22:46 | 000,000,568 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2013-07-25 07:19:17 | 000,144,896 | ---- | C] () -- C:\ProgramData\rpvxmqwxeyhireg
[2013-07-23 07:20:40 | 000,035,328 | ---- | C] () -- C:\ProgramData\uijnpximbqqtxvn
[2013-07-23 07:17:40 | 000,162,816 | ---- | C] () -- C:\ProgramData\tkournxndwwsrbi
[2013-07-22 16:09:53 | 000,239,616 | ---- | C] () -- C:\ProgramData\rnttpcaiwjpeene
[2013-07-22 13:01:15 | 000,050,176 | ---- | C] () -- C:\ProgramData\qtorfjxporptsnd
[2013-07-22 12:58:13 | 000,035,328 | ---- | C] () -- C:\ProgramData\fqxivwcnxyncwqn
[2013-07-22 12:55:17 | 000,257,536 | ---- | C] () -- C:\ProgramData\ymmmviiypjnumok
[2013-07-15 14:41:36 | 000,028,160 | ---- | C] () -- C:\ProgramData\pmiopnsibpbyrvp
[2013-07-12 07:17:13 | 000,201,728 | ---- | C] () -- C:\ProgramData\xiwajuhldcdopxp
[2013-07-12 07:14:12 | 000,182,272 | ---- | C] () -- C:\ProgramData\qftdpxpqivtpbkx
[2013-07-11 07:36:39 | 000,000,582 | ---- | C] () -- C:\ProgramData\eaecacbafaebaec.cfg
[2013-07-09 12:56:34 | 000,028,160 | ---- | C] () -- C:\ProgramData\puebrtktfxxrpbq
[2013-07-09 12:53:33 | 000,000,000 | ---- | C] () -- C:\ProgramData\ytiexpcvidqteub
[2013-07-09 12:47:31 | 000,000,582 | ---- | C] () -- C:\ProgramData\eaecacbafaebaegfdgfdgdfg.cfg
[2013-02-22 08:22:18 | 000,000,004 | ---- | C] () -- C:\Windows\System32\bgstart.bin
[2012-03-07 14:50:10 | 000,000,194 | ---- | C] () -- C:\Windows\ODBC.INI
[2011-07-18 16:34:49 | 000,000,000 | ---- | C] () -- C:\Users\SZIK\AppData\Local\{5A5F4CC5-CC1C-4948-A5B8-89D848EF0D51}
[2011-05-24 08:35:57 | 000,000,092 | ---- | C] () -- C:\Users\SZIK\AppData\Local\fusioncache.dat
[2011-05-23 15:08:37 | 000,000,600 | ---- | C] () -- C:\Users\SZIK\PUTTY.RND
[2011-05-23 13:51:52 | 000,000,101 | ---- | C] () -- C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2009-07-14 06:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
" " = %SystemRoot%\system32\shell32.dll -- [2012-01-04 10:59:38 | 012,872,704 | ---- | M] (Microsoft Corporation)
" ThreadingModel " = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
" " = %systemroot%\system32\wbem\fastprox.dll -- [2010-11-20 23:29:20 | 000,606,208 | ---- | M] (Microsoft Corporation)
" ThreadingModel " = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
" " = %systemroot%\system32\wbem\wbemess.dll -- [2009-07-14 03:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
" ThreadingModel " = Both

[color=#E56717]========== LOP Check ==========[/color]

[2013-05-29 14:23:03 | 000,000,000 | ---D | M] -- C:\Users\SZIK\AppData\Roaming\DAEMON Tools Lite
[2012-03-07 09:01:22 | 000,000,000 | ---D | M] -- C:\Users\SZIK\AppData\Roaming\Gadu-Gadu 10
[2011-06-10 11:57:28 | 000,000,000 | ---D | M] -- C:\Users\SZIK\AppData\Roaming\GHISLER
[2012-10-18 13:36:36 | 000,000,000 | ---D | M] -- C:\Users\SZIK\AppData\Roaming\Ofyxi
[2011-05-23 16:31:18 | 000,000,000 | ---D | M] -- C:\Users\SZIK\AppData\Roaming\OpenOffice.org
[2011-05-23 16:08:56 | 000,000,000 | ---D | M] -- C:\Users\SZIK\AppData\Roaming\PTC
[2011-05-23 13:54:23 | 000,000,000 | ---D | M] -- C:\Users\SZIK\AppData\Roaming\Subversion
[2012-05-08 11:53:13 | 000,000,000 | ---D | M] -- C:\Users\SZIK\AppData\Roaming\TeamViewer
[2011-06-15 13:33:51 | 000,000,000 | ---D | M] -- C:\Users\SZIK\AppData\Roaming\Windows Live Writer

[color=#E56717]========== Purity Check ==========[/color]

& lt; End of report & gt;

otl_logi.rar > Extras.Txt

OTL Extras logfile created on: 2013-09-27 14:08:03 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = G:\Atywirusownia
Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

1,80 Gb Total Physical Memory | 1,20 Gb Available Physical Memory | 66,75% Memory free
3,61 Gb Paging File | 3,00 Gb Available in Paging File | 83,14% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 172,79 Gb Total Space | 61,25 Gb Free Space | 35,45% Space Free | Partition Type: NTFS
Drive D: | 292,87 Gb Total Space | 269,68 Gb Free Space | 92,08% Space Free | Partition Type: NTFS
Drive F: | 47,55 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive G: | 3,78 Gb Total Space | 3,53 Gb Free Space | 93,25% Space Free | Partition Type: NTFS

Computer Name: SZIK-BABICA1 | User Name: SZIK | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]

[color=#E56717]========== File Associations ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ & lt; extension & gt; ]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
.reg [@ = regfile] -- regedit.exe " %1 "

[HKEY_USERS\S-1-5-21-3531618268-915810470-3408397246-1000\SOFTWARE\Classes\ & lt; extension & gt; ]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

[color=#E56717]========== Shell Spawning ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ & lt; key & gt; \shell\[command]\command]
batfile [open] -- " %1 " %*
cmdfile [open] -- " %1 " %*
comfile [open] -- " %1 " %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe " %1 " ,%* (Microsoft Corporation)
exefile [open] -- " %1 " %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML " %1 "
http [open] -- Reg Error: Key error.
https [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe " %1 " (Microsoft Corporation)
piffile [open] -- " %1 " %*
regfile [open] -- regedit.exe " %1 "
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- " %1 "
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- " %1 " /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd " %V " (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[color=#E56717]========== Security Center Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
" cval " = 0
" AntiVirusDisableNotify " = 0
" AntiVirusOverride " = 1
" FirewallDisableNotify " = 0
" FirewallOverride " = 1
" UpdatesDisableNotify " = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
" VistaSp1 " = Reg Error: Unknown registry data type -- File not found
" AntiVirusOverride " = 0
" AntiSpywareOverride " = 0
" FirewallOverride " = 0

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
" EnableFirewall " = 1
" DisableNotifications " = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
" EnableFirewall " = 1
" DisableNotifications " = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
" EnableFirewall " = 1
" DisableNotifications " = 0

[color=#E56717]========== Authorized Applications List ==========[/color]

[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
" {1AEB64BC-FCF6-4DD9-8340-AE0863E4E5CE} " = rport=138 | protocol=17 | dir=out | app=system |
" {31E93883-02E1-411D-A16F-9AC1E99F272F} " = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
" {35E4193F-C2C2-4712-B16C-4029D176085D} " = rport=139 | protocol=6 | dir=out | app=system |
" {43A2641D-6F4B-4FBE-89CE-AAA6DA536374} " = lport=138 | protocol=17 | dir=in | app=system |
" {81E7F1E8-3A26-445C-B5CE-D9A37747AEF7} " = rport=445 | protocol=6 | dir=out | app=system |
" {990B9D39-7B42-46D9-8817-A052A1B42D65} " = lport=139 | protocol=6 | dir=in | app=system |
" {B196D84C-51C4-4131-B8DF-45CDBABF7C9F} " = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
" {C1E814E9-9B5D-4AE9-A67C-EC46F4E2F6BA} " = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
" {D67CCF42-2718-42AD-BC76-B9A6A904C258} " = lport=137 | protocol=17 | dir=in | app=system |
" {E18F20F0-7492-4195-94E1-8982CDE320A8} " = lport=445 | protocol=6 | dir=in | app=system |
" {EC9A85A7-8DF3-44BC-9359-E9317DEEAB45} " = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
" {FBDC1029-33B1-4869-AFE5-D968455B10CC} " = rport=137 | protocol=17 | dir=out | app=system |

[color=#E56717]========== Vista Active Application Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
" {13F1CCBA-AD00-4862-B5A5-E15244F8D7D7} " = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
" {6799D472-D451-4869-B228-A677881D908B} " = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
" {A56B6A24-C149-41DF-9458-54C5B9F02BFB} " = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
" {CEDBF3D7-3C9B-4A35-96D3-DEEDC1347FEA} " = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
" {D001C9CE-F6F1-417E-9F5B-C7B997EA7BBD} " = protocol=17 | dir=in | app=c:\windows\system32\svctcom.exe |
" {E8CD58B8-7F55-44BD-8650-800390FF986F} " = protocol=6 | dir=in | app=c:\windows\system32\svctcom.exe |
" TCP Query User{9A1682AD-BF58-42B6-BEEF-C9D807026D9F}C:\program files\serwerfisk\serwerfisk.exe " = protocol=6 | dir=in | app=c:\program files\serwerfisk\serwerfisk.exe |
" TCP Query User{9AF8C6D4-EAA7-4637-A1F2-F26B603BB484}C:\program files\gadu-gadu 10\gg.exe " = protocol=6 | dir=in | app=c:\program files\gadu-gadu 10\gg.exe |
" TCP Query User{B4340C1C-6C87-4575-84E2-8E182F64C23F}C:\program files\serwerfisk\serwerfisk.exe " = protocol=6 | dir=in | app=c:\program files\serwerfisk\serwerfisk.exe |
" TCP Query User{D5D95B21-6113-4010-81C9-CA9111A94F7C}C:\program files\gadu-gadu 10\gg.exe " = protocol=6 | dir=in | app=c:\program files\gadu-gadu 10\gg.exe |
" UDP Query User{70E192D6-4EAB-4BD3-9F06-971E43DF1D87}C:\program files\gadu-gadu 10\gg.exe " = protocol=17 | dir=in | app=c:\program files\gadu-gadu 10\gg.exe |
" UDP Query User{9B6004F9-02F4-44C3-8699-D66E02AE13F0}C:\program files\gadu-gadu 10\gg.exe " = protocol=17 | dir=in | app=c:\program files\gadu-gadu 10\gg.exe |
" UDP Query User{C4F54B04-CD6D-4306-A819-DDCCB17D1CFA}C:\program files\serwerfisk\serwerfisk.exe " = protocol=17 | dir=in | app=c:\program files\serwerfisk\serwerfisk.exe |
" UDP Query User{CE62FE62-4B38-4BBF-83E0-4FE0A2A082F2}C:\program files\serwerfisk\serwerfisk.exe " = protocol=17 | dir=in | app=c:\program files\serwerfisk\serwerfisk.exe |

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
" {0141D498-16DA-4221-A529-1D7A64BE8B05} " = OpenOffice.org 3.3
" {0654EA5D-308A-4196-882B-5C09744A5D81} " = Windows Live Photo Common
" {0A0CADCF-78DA-33C4-A350-CD51849B9702} " = Microsoft .NET Framework 4 Extended
" {0B0F231F-CE6A-483D-AA23-77B364F75917} " = Windows Live Installer
" {0C1931EB-8339-4837-8BEC-75029BF42734} " = Windows Live UX Platform Language Pack
" {1E64E430-36E0-11D2-A794-0060089A724B} " = Visual Basic Virtual Machine
" {1F1C2DFC-2D24-3E06-BCB8-725134ADF989} " = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
" {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4} " = Junk Mail filter update
" {200FEC62-3C34-4D60-9CE8-EC372E01C08F} " = Windows Live SOXE Definitions
" {26A24AE4-039D-4CA4-87B4-2F83216024FF} " = Java(TM) 6 Update 24
" {26E3C07C-7FF7-4362-9E99-9E49E383CF16} " = Windows Live Writer Resources
" {3207D1B6-80E5-11D2-B95D-006097C4DE24} " = Microsoft Common Controls 2 ActiveX Control DLL
" {3207D1B9-80E5-11D2-B95D-006097C4DE24} " = Windows Common Controls ActiveX Control DLL
" {3C3901C5-3455-3E0A-A214-0B093A5070A6} " = Microsoft .NET Framework 4 Client Profile
" {3EDB537F-420E-4AEA-BC55-D679A3447876} " = Filter Catalogue 2011
" {4083B0B0-CA5F-4542-8E18-75022328A8FB} " = ActivTrak Agent v3.4.0
" {40FBAF62-D7D9-4124-9549-984118B7294E}_is1 " = ADKatalog 5.3.24
" {41CC8FAF-B177-4AB0-8572-D37534D8941B} " = IC_Katalog Framework
" {428102E6-8A39-48B9-8389-847F5A44A600} " = MSXML 4.0
" {481975DE-442F-492E-BC22-696F699A804D} " = .print Client Windows (RDP)
" {48DBA0A2-C4F4-4965-A43B-35F4EA28F53E} " = SOAP SDK Files
" {4A03706F-666A-4037-7777-5F2748764D10} " = Java Auto Updater
" {51D569E0-8A28-11D2-B962-006097C4DE24} " = Microsoft (R) C Runtime Library
" {51D569E2-8A28-11D2-B962-006097C4DE24} " = MFCDLL Shared Library - Retail Version
" {54BB0384-1C33-488F-A95B-877E480D3EDC} " = MSXML 4.0
" {569AFC56-0208-4768-85E5-87E54DEF7793} " = eCar - Component (Crystal)
" {576D64B0-7413-11D2-B954-006097C4DE24} " = CMDialog ActiveX Control DLL
" {64376910-1860-4CEF-8B34-AA5D205FC5F1} " = Poczta usługi Windows Live
" {644CEC11-C3D3-4F8D-A935-74F1EEF38209} " = ESET NOD32 Antivirus
" {65153EA5-8B6E-43B6-857B-C6E4FC25798A} " = Intel(R) Management Engine Components
" {682B3E4F-696A-42DE-A41C-4C07EA1678B4} " = Windows Live SOXE
" {710f4c1c-cc18-4c49-8cbf-51240c89a1a2} " = Microsoft Visual C++ 2005 Redistributable
" {770657D0-A123-3C07-8E44-1C83EC895118} " = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
" {79361740-EAE3-11E2-9911-B8AC6F98CCE3} " = Google Earth Plug-in
" {7A9D47BA-6D50-4087-866F-0800D8B89383} " = Podstawowe programy Windows Live
" {7C05EEDD-E565-4E2B-ADE4-0C784C17311C} " = Crystal Reports for .NET Framework 2.0 (x86)
" {7EBEDD29-AA66-11D2-B980-006097C4DE24} " = Microsoft Internet Transfer Control DLL
" {7EBEDD2C-AA66-11D2-B980-006097C4DE24} " = MSMAPI Controls
" {807C9EBC-8414-48D5-8180-0BC6D3E0D3D5} " = Arbortext IsoView 7.1
" {83C292B7-38A5-440B-A731-07070E81A64F} " = Windows Live PIMT Platform
" {86CE85E6-DBAC-3FFD-B977-E4B79F83C909} " = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
" {8833FFB6-5B0C-4764-81AA-06DFEED9A476} " = Realtek Ethernet Controller Driver For Windows 7
" {8C0C59A0-7DC8-11D2-B95D-006097C4DE24} " = Microsoft OLE 2.40 for Windows NT(TM) and Windows 95(TM) Operating Systems
" {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} " = MSVCRT
" {95120000-00B9-0409-0000-0000000FF1CE} " = Microsoft Application Error Reporting
" {9BE518E6-ECC6-35A9-88E4-87755C07200F} " = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
" {9D56775A-93F3-44A3-8092-840E3826DE30} " = Windows Live Mail
" {A27F6D0D-74F8-46B6-B2D1-908901A81AA2}_is1 " = SuperKat 2012-4
" {A45E31F7-4E8F-42FC-BF20-9B86D30C5C43-fastreport}_is1 " = Fastreport
" {A45E31F7-4E8F-42FC-BF20-9B86D30C5C43-setacl-ap}_is1 " = 1
" {A57B631D-8A63-4F7C-BB23-21BB3E195248} " = Cennik Motogama
" {A726AE06-AAA3-43D1-87E3-70F510314F04} " = Windows Live Writer
" {A9BDCA6B-3653-467B-AC83-94367DA3BFE3} " = Windows Live Photo Common
" {AAAFC670-569B-4A2F-82B4-42945E0DE3EF} " = Windows Live Writer
" {AC76BA86-7AD7-1033-7B44-A83000000003} " = Adobe Reader 8.3.1
" {AF844339-2F8A-4593-81B3-9F4C54038C4E} " = Windows Live MIME IFilter
" {AFF7E080-1974-45BF-9310-10DE1A1F5ED0} " = Adobe AIR
" {BF251EAF-8697-4E89-BF09-C998F97BBC40} " = Microsoft SQL Server Native Client
" {C1126523-CCE1-4487-813E-809F6F8F6D48} " = TECDOC CD
" {C6150D8A-86ED-41D3-87BB-F3BB51B0B77F} " = Windows Live ID Sign-in Assistant
" {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} " = Microsoft .NET Framework 1.1
" {CD9B967B-59A5-4277-9626-AEF3EB8BB64E}_is1 " = Innova
" {CE95A79E-E4FC-4FFF-8A75-29F04B942FF2} " = Windows Live UX Platform
" {D45240D3-B6B3-4FF9-B243-54ECE3E10066} " = Windows Live Communications Platform
" {D4A3A9E0-AA55-11D2-B97F-006097C4DE24} " = Microsoft Common Controls 2 ActiveX Control DLL
" {E09C4DB7-630C-4F06-A631-8EA7239923AF} " = D3DX10
" {E55E0C35-AC3C-4683-BA2F-834348577B80} " = Windows Live Writer
" {E761F3D4-55CF-407A-8A1B-3FC7228C0FE6}_is1 " = Sumatra PDF
" {EF3DF8DB-DB3E-443E-B7FD-E3FB5FC16ED1}_is1 " = MDAC 2.8
" {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} " = Intel(R) Graphics Media Accelerator Driver
" {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} " = Realtek High Definition Audio Driver
" {F62E42CA-E878-44C7-BB2A-0946119B43B5}_is1 " = 3.4.9
" {F8A9085D-4C7A-41a9-8A77-C8998A96C421} " = Intel(R) Control Center
" {FDC8065B-80DE-4466-B90B-2581F6D77DFF} " = Image Plugin
" Adobe AIR " = Adobe AIR
" Adobe Flash Player ActiveX " = Adobe Flash Player 11 ActiveX
" Adobe Flash Player Plugin " = Adobe Flash Player 11 Plugin
" Adobe SVG Viewer " = Adobe SVG Viewer 3.0
" AutoPartner " = AP Katalog 4
" DAEMON Tools Lite " = DAEMON Tools Lite
" DAKZAM3_is1 " = Dakzam 3 ver. 2.2.08
" Filter Catalogue 2011 " = Filter Catalogue 2011
" Gadu-Gadu 10 " = Gadu-Gadu 10
" GeParts Katalog " = GeParts Katalog 3.0
" Google Chrome " = Google Chrome
" IC_Katalog " = IC_Katalog
" innovax_is1 " = innovax
" InstallShield_{807C9EBC-8414-48D5-8180-0BC6D3E0D3D5} " = Arbortext IsoView 7.1
" InstallShield_{C1126523-CCE1-4487-813E-809F6F8F6D48} " = TECDOC CD 2.2011
" InterKat_is1 " = InterKat 5.8
" Katalog MoToRes_is1 " = Katalog MoToRes
" KOLPAX Oferta_is1 " = KOLPAX OFERTA 4.2.0
" Malwarebytes' Anti-Malware_is1 " = Malwarebytes Anti-Malware wersja 1.75.0.1300
" Microsoft .NET Framework 1.1 (1033) " = Microsoft .NET Framework 1.1
" Microsoft .NET Framework 4 Client Profile " = Microsoft .NET Framework 4 Client Profile
" Microsoft .NET Framework 4 Extended " = Microsoft .NET Framework 4 Extended
" Mobile Partner " = Mobile Partner
" Moto " = Moto-Części - katalog części samochodowych
" Moto-Oferta " = Moto-Oferta - Oferta handlowa firmy Moto-Profil
" POLCAR.eCar_is1 " = eCar
" SagaBaza " = SagaBaza
" TeamViewer 6 " = TeamViewer 6
" Terminal AUTO EURO Lublin " = Terminal AUTO EURO Lublin
" Terminal CEMPOL " = Terminal CEMPOL
" Terminal FL4 VEMAPOL " = Terminal VEMAPOL systemu FALCON4
" Terminal INTERPARTS " = Terminal INTERPARTS
" TightVNC " = TightVNC 2.0.2
" Totalcmd " = Total Commander (Remove or Repair)
" WinLiveSuite " = Podstawowe programy Windows Live
" WinRAR archiver " = WinRAR archiver

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-21-3531618268-915810470-3408397246-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
" 0355f46f1436fbf1 " = eZamówienia
" 547f774304fa0c9d " = eZamówienia - 1
" 6b829ebda1187e13 " = IC_Katalog setup wizard
" BeamNG-Techdemo-0.3 " = BeamNG-Techdemo-0.3 (remove only)
" Program zamówień INTERVITO " = Program zamówień INTERVITO

[color=#E56717]========== Last 20 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2013-04-16 01:18:16 | Computer Name = SZIK-BABICA1 | Source = WinMgmt | ID = 10
Description =

Error - 2013-04-17 01:09:08 | Computer Name = SZIK-BABICA1 | Source = MSSOAP | ID = 16
Description = Soap error: Host not found..

Error - 2013-04-17 01:09:08 | Computer Name = SZIK-BABICA1 | Source = MSSOAP | ID = 16
Description = Soap error: An unanticipated error occurred during the processing
of this request..

Error - 2013-04-17 01:09:08 | Computer Name = SZIK-BABICA1 | Source = MSSOAP | ID = 16
Description = Soap error: Sending the Soap message failed or no recognizable response
was received.

Error - 2013-04-17 01:09:08 | Computer Name = SZIK-BABICA1 | Source = MSSOAP | ID = 16
Description = Soap error: Unspecified client error..

Error - 2013-04-17 01:09:58 | Computer Name = SZIK-BABICA1 | Source = WinMgmt | ID = 10
Description =

Error - 2013-04-18 01:19:58 | Computer Name = SZIK-BABICA1 | Source = WinMgmt | ID = 10
Description =

Error - 2013-04-18 02:32:05 | Computer Name = SZIK-BABICA1 | Source = Application Error | ID = 1000
Description = Nazwa aplikacji powodującej błąd: apkat.exe, wersja: 4.2.4.0, sygnatura
czasowa: 0x4ff19f00 Nazwa modułu powodującego błąd: PCenaSprzedDLL.dll, wersja:
0.0.0.0, sygnatura czasowa: 0x4fc4a22a Kod wyjątku: 0xc0000409 Przesunięcie błędu:
0x00002e06 Identyfikator procesu powodującego błąd: 0xea4 Godzina uruchomienia aplikacji
powodującej błąd: 0x01ce3bfb7ca4d707 Ścieżka aplikacji powodującej błąd: C:\Program
Files\Auto Partner\AP Katalog 4\apkat.exe Ścieżka modułu powodującego błąd: C:\Program
Files\Auto Partner\AP Katalog 4\PCenaSprzedDLL.dll Identyfikator raportu: af3d7388-a7f1-11e2-9ed5-1c6f65d1063c

Error - 2013-04-19 01:12:57 | Computer Name = SZIK-BABICA1 | Source = Application Hang | ID = 1002
Description = Program gg.exe w wersji 10.5.1.13130 zatrzymał interakcję z systemem
Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji
dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum
akcji. Identyfikator procesu: b50 Godzina rozpoczęcia: 01ce3cbc5d7e214f Godzina zakończenia:
7 Ścieżka aplikacji: C:\Program Files\Gadu-Gadu 10\gg.exe Identyfikator raportu:
c0e5a0a0-a8af-11e2-baff-1c6f65d1063c

Error - 2013-04-19 01:13:11 | Computer Name = SZIK-BABICA1 | Source = WinMgmt | ID = 10
Description =

[ System Events ]
Error - 2013-09-27 07:59:25 | Computer Name = SZIK-BABICA1 | Source = Service Control Manager | ID = 7026
Description = Nie można załadować następujących sterowników startu rozruchowego
lub systemowego: luafv snigxka

Error - 2013-09-27 08:02:30 | Computer Name = SZIK-BABICA1 | Source = Service Control Manager | ID = 7009
Description = Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się
z usługą Eset Trial Reset.

Error - 2013-09-27 08:02:30 | Computer Name = SZIK-BABICA1 | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Eset Trial Reset z powodu następującego
błędu: %%1053

Error - 2013-09-27 08:04:44 | Computer Name = SZIK-BABICA1 | Source = Service Control Manager | ID = 7009
Description = Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się
z usługą Eset Trial Reset.

Error - 2013-09-27 08:04:44 | Computer Name = SZIK-BABICA1 | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Eset Trial Reset z powodu następującego
błędu: %%1053

Error - 2013-09-27 08:06:24 | Computer Name = SZIK-BABICA1 | Source = Service Control Manager | ID = 7009
Description = Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się
z usługą Eset Trial Reset.

Error - 2013-09-27 08:06:24 | Computer Name = SZIK-BABICA1 | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Eset Trial Reset z powodu następującego
błędu: %%1053

Error - 2013-09-27 08:06:28 | Computer Name = SZIK-BABICA1 | Source = Service Control Manager | ID = 7009
Description = Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się
z usługą Mobile Partner. OUC.

Error - 2013-09-27 08:06:28 | Computer Name = SZIK-BABICA1 | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Mobile Partner. OUC z powodu następującego
błędu: %%1053

Error - 2013-09-27 08:06:35 | Computer Name = SZIK-BABICA1 | Source = Service Control Manager | ID = 7026
Description = Nie można załadować następujących sterowników startu rozruchowego
lub systemowego: luafv snigxka

& lt; End of report & gt;