FRST.txt

Ścina kompa, wolno pracuje, obciąża neta

Tutaj masz scany.


Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:24-08-2014 02
Ran by user (administrator) on USER-139A1ECCB4 on 24-08-2014 16:34:57
Running from C:\Documents and Settings\user\Moje dokumenty\Downloads
Platform: Microsoft Windows XP Professional Dodatek Service Pack 3 (X86) OS Language: Polski
Internet Explorer Version 7
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Atheros) C:\WINDOWS\system32\acs.exe
() C:\Program Files\ASUS\AXSP\1.00.13\atkexComSvc.exe
() C:\Program Files\ASUS\AAHM\1.00.14\aaHMSvc.exe
() C:\Program Files\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
() C:\Program Files\Dokan\DokanLibrary\mounter.exe
(Aladdin Knowledge Systems Ltd.) C:\WINDOWS\system32\hasplms.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(SafeNet, Inc.) C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
() C:\Program Files\Ashampoo\Ashampoo WinOptimizer 10\LiveTunerService.exe
(Microsoft Corporation) C:\Program Files\Zune\ZuneBusEnum.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Ashampoo Development GmbH & Co. KG) C:\Program Files\Ashampoo\Ashampoo WinOptimizer 10\LiveTuner.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(GG Network S.A.) C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\GG\Application\gghub.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(GG Network S.A.) C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\GG\Application\ggapp.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe
(GG Network S.A.) C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\GG\Application\ggapp.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDCPL] = & gt; C:\WINDOWS\RTHDCPL.EXE [19722344 2010-11-16] (Realtek Semiconductor Corp.)
HKLM\...\Run: [NvCplDaemon] = & gt; RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [nwiz] = & gt; C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2586912 2013-06-21] ()
HKLM\...\Run: [AvastUI.exe] = & gt; C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-06] (AVAST Software)
HKLM\...\Run: [SunJavaUpdateSched] = & gt; C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [KernelFaultCheck] = & gt; %systemroot%\system32\dumprep 0 -k
HKLM\...\Run: [Ashampoo WinOptimizer Live-Tuner] = & gt; C:\Program Files\Ashampoo\Ashampoo WinOptimizer 10\LiveTuner.exe [2949480 2013-04-10] (Ashampoo Development GmbH & Co. KG)
HKU\S-1-5-19\...\RunOnce: [nltide_2] = & gt; regsvr32 /s /n /i:U shell32
HKU\S-1-5-21-823518204-706699826-682003330-1003\...\Run: [Google Update] = & gt; C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe [116648 2014-03-23] (Google Inc.)
HKU\S-1-5-21-823518204-706699826-682003330-1007\...\RunOnce: [nltide_2] = & gt; regsvr32 /s /n /i:U shell32
Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\TP-LINK Wireless Configuration Utility.lnk
ShortcutTarget: TP-LINK Wireless Configuration Utility.lnk - & gt; C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe ()
ShellIconOverlayIdentifiers: 00avast - & gt; {472083B0-C522-11CF-8763-00608CC02F24} = & gt; C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
ShellIconOverlayIdentifiers: GGDriveOverlay1 - & gt; {E68D0A50-3C40-4712-B90D-DCFA93FF2534} = & gt; C:\Documents and Settings\All Users\Dane aplikacji\GG\ggdrive\ggdrive-overlay.dll (GG Network S.A.)
ShellIconOverlayIdentifiers: GGDriveOverlay2 - & gt; {E68D0A51-3C40-4712-B90D-DCFA93FF2534} = & gt; C:\Documents and Settings\All Users\Dane aplikacji\GG\ggdrive\ggdrive-overlay.dll (GG Network S.A.)
ShellIconOverlayIdentifiers: GGDriveOverlay3 - & gt; {E68D0A52-3C40-4712-B90D-DCFA93FF2534} = & gt; C:\Documents and Settings\All Users\Dane aplikacji\GG\ggdrive\ggdrive-overlay.dll (GG Network S.A.)
ShellIconOverlayIdentifiers: GGDriveOverlay4 - & gt; {E68D0A53-3C40-4712-B90D-DCFA93FF2534} = & gt; C:\Documents and Settings\All Users\Dane aplikacji\GG\ggdrive\ggdrive-overlay.dll (GG Network S.A.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

SearchScopes: HKLM - DefaultScope value is missing.
BHO: Groove GFS Browser Helper - & gt; {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - & gt; C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - & gt; {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - & gt; C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - & gt; {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - & gt; C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Office Document Cache Handler - & gt; {B4F3A835-0E21-4959-BA22-42B3008E02FF} - & gt; C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - & gt; {DBC80044-A445-435b-BC74-9C25C1C588A9} - & gt; C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: WinToFlash Suggestor - & gt; {FC36B0BD-27F0-4cdd-8AB1-50651EFC3EFD} - & gt; C:\Program Files\WinToFlash Suggestor\WinToFlashSuggestor.dll (Novicorp LLC)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\..\Interfaces\{467584D8-AC80-41A9-87D2-2AAF54A3B963}: [NameServer] 192.168.1.1,194.204.159.1
Tcpip\..\Interfaces\{95A25BD8-73BD-4894-9E26-970C97479B9B}: [NameServer] 192.168.1.1,194.204.159.1

FireFox:
========
FF ProfilePath: C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\kh8uvkgr.default
FF NetworkProxy: " type " , 0
FF Plugin: @adobe.com/FlashPlayer - & gt; C:\WINDOWS\system32\Macromed\Flash\NPSWF32_14_0_0_179.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - & gt; C:\WINDOWS\system32\Adobe\Director\np32dsw_1209149.dll (Adobe Systems, Inc.)
FF Plugin: @garmin.com/GpsControl - & gt; C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF Plugin: @java.com/DTPlugin,version=10.55.2 - & gt; C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 - & gt; C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - & gt; C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - & gt; C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - & gt; C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - & gt; C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=6.0.11.2027 - & gt; C:\Program Files\ACE Mega CoDecS Pack\SystemS\RealMedia\Browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nppl3260;version=6.0.12.450 - & gt; C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.1040 - & gt; C:\Program Files\ACE Mega CoDecS Pack\SystemS\RealMedia\Browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.448 - & gt; C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin: @tools.google.com/Google Update;version=3 - & gt; C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - & gt; C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.7 - & gt; C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 - & gt; C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 - & gt; C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 - & gt; C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - & gt; C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @octoshape.com/Octoshape Streaming Services,version=1.0 - & gt; C:\Documents and Settings\user\Dane aplikacji\Octoshape\Octoshape Streaming Services\sua-1103234-0-npoctoshape.dll (Octoshape ApS)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - & gt; C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - & gt; C:\Documents and Settings\user\Dane aplikacji\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin - & gt; C:\Documents and Settings\user\Dane aplikacji\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - & gt; C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - & gt; C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - & gt; C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npjp2.dll (Morgan Multimedia)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Documents and Settings\user\Dane aplikacji\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Documents and Settings\user\Dane aplikacji\mozilla\plugins\npo1d.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Documents and Settings\user\Dane aplikacji\mozilla\plugins\npoctoshape.dll (Octoshape ApS)
FF Extension: WinToFlash Suggestor - C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\kh8uvkgr.default\Extensions\{285ACFBB-8E53-4feb-90E6-F02A128927F3}.xpi [2012-05-25]
FF Extension: WinToFlash Suggestor - C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\qbc06lpe.default-1351666813103\Extensions\{285ACFBB-8E53-4feb-90E6-F02A128927F3}.xpi [2012-05-25]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-08-27]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2012-12-22]

Chrome:
=======
CHR Extension: (WinToFlash Suggestor) - C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\acaoakiamfeidcmgooclgeleejkbaecf [2014-04-04]
CHR Extension: (avast! Online Security) - C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-08-07]
CHR Extension: (Google Wallet) - C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23]
CHR HKLM\...\Chrome\Extension: [acaoakiamfeidcmgooclgeleejkbaecf] - C:\Program Files\WinToFlash Suggestor\WinToFlashSuggestor.crx [2012-05-25]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-06]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ACS; C:\WINDOWS\system32\acs.exe [499796 2011-03-31] (Atheros) [File not signed]
R2 asComSvc; C:\Program Files\ASUS\AXSP\1.00.13\atkexComSvc.exe [918144 2010-11-03] ()
R2 asHmComSvc; C:\Program Files\ASUS\AAHM\1.00.14\aaHMSvc.exe [915584 2010-12-02] ()
R2 AsSysCtrlService; C:\Program Files\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [586880 2010-10-21] ()
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-06] (AVAST Software)
S3 BrYNSvc; C:\Program Files\Browny02\BrYNSvc.exe [245760 2010-01-25] (Brother Industries, Ltd.) [File not signed]
R2 DokanMounter; C:\Program Files\Dokan\DokanLibrary\mounter.exe [25088 2011-01-10] () [File not signed]
R2 hasplms; C:\WINDOWS\system32\hasplms.exe [2562048 2008-04-24] (Aladdin Knowledge Systems Ltd.)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2014-04-14] (Oracle Corporation)
S3 jswpsapi; C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\WPS\jswpsapi.exe [360529 2011-03-31] (wireless) [File not signed]
R2 MDM; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
R2 SentinelSecurityRuntime; C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe [292384 2011-09-22] (SafeNet, Inc.)
S3 ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [575488 2008-09-08] (Nokia.) [File not signed]
R2 WO_LiveService; C:\Program Files\Ashampoo\Ashampoo WinOptimizer 10\LiveTunerService.exe [885096 2013-04-10] ()
R2 ZuneBusEnum; c:\Program Files\Zune\ZuneBusEnum.exe [57056 2011-08-05] (Microsoft Corporation)
S2 ZwAuthServer; C:\Program Files\NetServer 2011 Plk\ZwAuServer.exe [253952 2010-12-20] () [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R0 AiChargerPlus; C:\WINDOWS\System32\DRIVERS\AiChargerPlus.sys [13696 2010-11-08] (ASUSTek Computer Inc.)
R2 aksfridge; C:\WINDOWS\system32\drivers\aksfridge.sys [350720 2008-03-18] (Aladdin Knowledge Systems Ltd.)
S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
R1 AmdPPM; C:\WINDOWS\System32\DRIVERS\AmdPPM.sys [33792 2007-04-16] (Advanced Micro Devices)
R3 AR9271; C:\WINDOWS\System32\DRIVERS\athuw.sys [1763584 2011-07-28] (Atheros Communications, Inc.) [File not signed]
R1 AsIO; C:\WINDOWS\System32\drivers\AsIO.sys [11456 2010-08-24] ()
R3 asmthub3; C:\WINDOWS\System32\DRIVERS\asmthub3.sys [100328 2011-02-24] (ASMedia Technology Inc)
R3 asmtxhci; C:\WINDOWS\System32\DRIVERS\asmtxhci.sys [308200 2011-02-24] (ASMedia Technology Inc)
R1 AsUpIO; C:\WINDOWS\System32\drivers\AsUpIO.sys [11832 2010-08-03] ()
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24184 2014-08-06] ()
R1 aswKbd; C:\WINDOWS\system32\Drivers\aswKbd.sys [18544 2012-08-21] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [67824 2014-08-06] (AVAST Software)
R1 AswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [55112 2014-08-06] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944 2014-08-06] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [779536 2014-08-06] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [414520 2014-08-06] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57800 2014-08-06] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [192352 2014-08-06] ()
R0 BtHidBus; C:\WINDOWS\System32\Drivers\BtHidBus.sys [20616 2008-07-31] (IVT Corporation.)
S3 btnetBUs; C:\WINDOWS\System32\Drivers\btnetBus.sys [27744 2011-12-21] (IVT Corporation.)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
R2 Dokan; C:\WINDOWS\system32\drivers\dokan.sys [91904 2011-01-10] (Windows (R) Win 7 DDK provider) [File not signed]
R1 dtsoftbus01; C:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [242240 2012-08-29] (DT Soft Ltd)
R2 Hardlock; C:\WINDOWS\system32\drivers\hardlock.sys [586240 2008-02-11] (Aladdin Knowledge Systems Ltd.)
R1 HWiNFO32; C:\Program Files\HWiNFO32\HWiNFO32.SYS [21624 2012-05-10] (REALiX(tm))
S3 IvtBtBUs; C:\WINDOWS\System32\Drivers\IvtBtBus.sys [26248 2008-07-02] (IVT Corporation.)
R3 JSWSCIMD; C:\WINDOWS\System32\DRIVERS\jswscimd.sys [57440 2011-03-31] (Atheros Communications, Inc.)
R2 LiveTunerPM; C:\Program Files\Ashampoo\Ashampoo WinOptimizer 10\LiveTunerProcessMonitor32.sys [12696 2011-03-08] ()
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
S3 npkcrypt; D:\Program Files\Lineage II\system\npkcrypt.sys [23217 2010-10-29] (INCA Internet Co., Ltd.) [File not signed]
R3 NVHDA; C:\WINDOWS\System32\drivers\nvhda32.sys [128672 2013-02-25] (NVIDIA Corporation)
R3 ROCKEYNT; C:\WINDOWS\System32\DRIVERS\Rockey4.sys [22016 2012-12-28] (Feitian Technologies Co., Ltd.)
S3 SNTNLUSB; C:\WINDOWS\System32\DRIVERS\SNTNLUSB.SYS [41896 2011-09-22] (SafeNet, Inc.)
S2 SSIPDDP; C:\WINDOWS\system32\DRIVERS\SSIPDDP.SYS [54784 2008-11-04] () [File not signed]
R3 WSIMD; C:\WINDOWS\System32\DRIVERS\wsimd.sys [58208 2011-03-31] (Atheros Communications, Inc.) [File not signed]
R2 zumbus; C:\WINDOWS\System32\DRIVERS\zumbus.sys [41472 2011-08-05] (Microsoft Corporation)
U3 DfSdkS; No ImagePath
S4 IntelIde; No ImagePath
S3 Tosrfcom; No ImagePath
U1 WS2IFSL; No ImagePath

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-24 16:34 - 2014-08-24 16:35 - 00000000 ____D () C:\FRST
2014-08-24 16:04 - 2014-08-24 16:04 - 00097870 _____ () C:\Documents and Settings\user\Pulpit\OTL nowy 24-08.Txt
2014-08-24 16:03 - 2014-08-24 16:03 - 00097870 _____ () C:\Documents and Settings\user\Moje dokumenty\OTL.Txt
2014-08-20 10:31 - 2014-08-20 10:31 - 00000000 ____D () C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Adobe
2014-08-19 19:29 - 2014-08-19 20:05 - 00000000 ____D () C:\Documents and Settings\user\Pulpit\wycieczka
2014-08-10 19:10 - 2014-08-10 19:10 - 00001113 _____ () C:\Documents and Settings\user\Pulpit\Skrót do Medieval_TW.lnk
2014-08-07 17:57 - 2014-08-07 17:57 - 00000000 ____D () C:\WINDOWS\jumpshot.com
2014-08-06 20:44 - 2014-08-06 20:43 - 00024184 _____ () C:\WINDOWS\system32\Drivers\aswHwid.sys
2014-08-06 20:43 - 2014-08-06 20:43 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-24 16:35 - 2014-08-24 16:34 - 00000000 ____D () C:\FRST
2014-08-24 16:35 - 2012-08-27 19:55 - 00000000 ____D () C:\Documents and Settings\user\Ustawienia lokalne\Temp
2014-08-24 16:33 - 2012-08-27 17:35 - 00001032 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-24 16:24 - 2014-03-23 16:03 - 00001128 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-823518204-706699826-682003330-1003UA.job
2014-08-24 16:09 - 2012-08-27 16:34 - 00000930 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-08-24 16:04 - 2014-08-24 16:04 - 00097870 _____ () C:\Documents and Settings\user\Pulpit\OTL nowy 24-08.Txt
2014-08-24 16:04 - 2012-08-27 19:55 - 00000000 ____D () C:\Documents and Settings\user\Pulpit
2014-08-24 16:03 - 2014-08-24 16:03 - 00097870 _____ () C:\Documents and Settings\user\Moje dokumenty\OTL.Txt
2014-08-24 16:03 - 2012-08-27 19:55 - 00000000 ___RD () C:\Documents and Settings\user\Moje dokumenty
2014-08-24 14:28 - 2013-07-04 22:25 - 00015002 _____ () C:\WINDOWS\system32\nvAppTimestamps
2014-08-24 14:27 - 2012-08-27 19:52 - 00382750 _____ () C:\WINDOWS\WindowsUpdate.log
2014-08-24 14:21 - 2012-08-27 21:43 - 00000157 _____ () C:\WINDOWS\wiadebug.log
2014-08-24 14:21 - 2012-08-27 21:43 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2014-08-24 14:21 - 2012-08-27 19:55 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-08-24 14:21 - 2012-08-27 17:35 - 00001028 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-24 14:21 - 2012-08-27 17:35 - 00000364 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job
2014-08-24 14:08 - 2014-03-12 21:03 - 00000998 _____ () C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-823518204-706699826-682003330-1003UA.job
2014-08-24 12:09 - 2012-08-27 19:55 - 00032220 _____ () C:\WINDOWS\SchedLgU.Txt
2014-08-24 10:09 - 2013-01-02 21:04 - 00000000 ____D () C:\Documents and Settings\user\Dane aplikacji\TS3Client
2014-08-24 08:48 - 2012-08-27 18:30 - 00000000 ____D () C:\Documents and Settings\user\Dane aplikacji\GG
2014-08-24 00:09 - 2012-08-27 22:11 - 00524288 _____ () C:\WINDOWS\system32\config\ACS.evt
2014-08-24 00:09 - 2012-08-27 19:55 - 00000188 ___SH () C:\Documents and Settings\user\ntuser.ini
2014-08-23 22:10 - 2012-08-27 19:56 - 00000000 ___RD () C:\Documents and Settings\user\Moje dokumenty\Moje obrazy
2014-08-23 20:08 - 2014-03-12 21:03 - 00000976 _____ () C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-823518204-706699826-682003330-1003Core.job
2014-08-23 13:41 - 2013-07-04 21:07 - 00000000 ____D () C:\Documents and Settings\UpdatusUser\Ustawienia lokalne\Temp
2014-08-23 13:40 - 2001-07-22 03:17 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2014-08-22 16:00 - 2014-04-18 10:41 - 00000384 _____ () C:\WINDOWS\Tasks\One-Click Optimizer WO11.job
2014-08-22 12:15 - 2012-11-26 15:21 - 00000000 ____D () C:\Documents and Settings\user\Dane aplikacji\Skype
2014-08-22 01:24 - 2014-03-23 16:03 - 00001076 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-823518204-706699826-682003330-1003Core.job
2014-08-21 11:33 - 2012-08-27 19:55 - 00000000 ___HD () C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji
2014-08-21 08:16 - 2013-11-25 03:25 - 00000664 _____ () C:\WINDOWS\system32\d3d9caps.dat
2014-08-20 21:54 - 2013-06-17 19:21 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-08-20 10:31 - 2014-08-20 10:31 - 00000000 ____D () C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Adobe
2014-08-19 20:05 - 2014-08-19 19:29 - 00000000 ____D () C:\Documents and Settings\user\Pulpit\wycieczka
2014-08-19 09:50 - 2012-08-27 16:34 - 00699568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-08-19 09:50 - 2012-08-27 16:34 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-08-14 12:37 - 2012-08-27 17:42 - 00001819 _____ () C:\Documents and Settings\All Users\Pulpit\Google Chrome.lnk
2014-08-13 20:15 - 2012-11-26 15:21 - 00002267 _____ () C:\Documents and Settings\All Users\Pulpit\Skype.lnk
2014-08-10 19:10 - 2014-08-10 19:10 - 00001113 _____ () C:\Documents and Settings\user\Pulpit\Skrót do Medieval_TW.lnk
2014-08-10 18:56 - 2013-07-06 23:42 - 00000000 ____D () C:\Documents and Settings\user\Menu Start\Programy\Quadriga Games
2014-08-10 18:56 - 2013-07-06 23:38 - 00000000 ____D () C:\Program Files\Quadriga Games
2014-08-09 14:09 - 2012-11-05 14:16 - 00000000 ____D () C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Facebook
2014-08-09 14:09 - 2012-08-27 17:39 - 00000000 ____D () C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Temp
2014-08-07 17:57 - 2014-08-07 17:57 - 00000000 ____D () C:\WINDOWS\jumpshot.com
2014-08-06 20:44 - 2012-09-16 20:25 - 00001733 _____ () C:\Documents and Settings\All Users\Pulpit\avast! Free Antivirus.lnk
2014-08-06 20:44 - 2012-08-27 17:35 - 00414520 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2014-08-06 20:43 - 2014-08-06 20:44 - 00024184 _____ () C:\WINDOWS\system32\Drivers\aswHwid.sys
2014-08-06 20:43 - 2014-08-06 20:43 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2014-08-06 20:43 - 2013-03-24 10:38 - 00192352 _____ () C:\WINDOWS\system32\Drivers\aswVmm.sys
2014-08-06 20:43 - 2013-03-24 10:38 - 00067824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswmonflt.sys
2014-08-06 20:43 - 2013-03-24 10:38 - 00049944 _____ () C:\WINDOWS\system32\Drivers\aswRvrt.sys
2014-08-06 20:43 - 2012-08-27 17:35 - 00779536 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2014-08-06 20:43 - 2012-08-27 17:35 - 00276432 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2014-08-06 20:43 - 2012-08-27 17:35 - 00057800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2014-08-06 20:43 - 2012-08-27 17:35 - 00055112 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys

Some content of TEMP:
====================
C:\Documents and Settings\Administrator\Ustawienia lokalne\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe = & gt; File is digitally signed
C:\WINDOWS\system32\winlogon.exe = & gt; File is digitally signed
C:\WINDOWS\system32\svchost.exe = & gt; File is digitally signed
C:\WINDOWS\system32\services.exe = & gt; File is digitally signed
C:\WINDOWS\system32\User32.dll = & gt; File is digitally signed
C:\WINDOWS\system32\userinit.exe = & gt; File is digitally signed
C:\WINDOWS\system32\rpcss.dll = & gt; File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys = & gt; File is digitally signed

==================== End Of Log ============================


Pobierz plik - link do postu