Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 11-08-2013 02 Ran by Asia (administrator) on 12-08-2013 14:26:56 Running from C:\Documents and Settings\Asia\Moje dokumenty\Pobieranie Microsoft Windows XP Professional Dodatek Service Pack 3 (X86) OS Language: Polish Internet Explorer Version 8 Boot Mode: Normal ==================== Processes (Whitelisted) =================== (AVG Technologies CZ, s.r.o.) C:\PROGRA~1\AVG\AVG2012\avgrsx.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2012\avgcsrvx.exe (ATI Technologies Inc.) C:\WINDOWS\system32\Ati2evxx.exe (ATI Technologies Inc.) C:\WINDOWS\system32\Ati2evxx.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2012\avgfws.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2012\avgwdsvc.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Teruten) C:\WINDOWS\system32\FsUsbExService.Exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2012\avgtray.exe (Winstep Software Technologies) I:\Nexus\instal\Winstep\Nexus.exe (TuneUp Software) J:\Tuneup Utilities2013\TuneUpUtilitiesService32.exe (AVG Secure Search) C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\15.4.0\ToolbarUpdater.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2012\avgnsx.exe () C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\15.4.0\loggingserver.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2012\avgidsagent.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2012\avgcsrvx.exe (TuneUp Software) J:\Tuneup Utilities2013\TuneUpUtilitiesApp32.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Spotify Ltd) C:\Documents and Settings\Asia\Dane aplikacji\Spotify\spotify.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [AVG_TRAY] - C:\Program Files\AVG\AVG2012\avgtray.exe [2598520 2012-11-19] (AVG Technologies CZ, s.r.o.) HKLM\...\Run: [amd_dc_opt] - C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD) Winlogon\Notify\AtiExtEvent: Ati2evxx.dll (ATI Technologies Inc.) HKCU\...\Run: [Nexus] - I:\Nexus\instal\Winstep\Nexus.exe [16957056 2012-03-28] (Winstep Software Technologies) HKCU\...\Run: [swg] - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2009-09-17] (Google Inc.) HKCU\...\Policies\Explorer\Run: [Cocoon Software] C:\Documents and Settings\Asia\Dane aplikacji\wehsuguw\rtgiawcs.exe [98304 2011-01-15] ( ()) MountPoints2: {e766c096-8a53-11df-8e25-000fea646761} - M:\LGAutoRun.exe IMEO\javaws.exe: [Debugger] "J:\Tuneup Utilities2013\TUAutoReactivator32.exe" BootExecute: "autocheck autochk * "C:\PROGRA~1\AVG\AVG2012\avgrsx.exe /sync /restart ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/ HKCU\Software\Microsoft\Internet Explorer\Main,Default_search_url = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKCU\Software\Microsoft\Internet Explorer\Main,Default_page_url = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/ HKLM\Software\Microsoft\Internet Explorer\Main,Search bar = http://search.msn.com/spbasic.htm SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} SearchScopes: HKCU - DefaultScope ${searchCLSID} URL = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} SearchScopes: HKCU - ${searchCLSID} URL = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = http://isearch.avg.com/search?cid={BFC64B41-BECD-4214-ADF9-F5D231B65EEE}&mid=dd503668fbdd47d0b434d146ac808e92-06ce4fc639803a2e3563922518183d8e94088cb9&lang=pl&ds=AVG&pr=pr&d=2012-07-04 13:03:41&v=15.3.0.11&pid=avg&sg=0&sap=dsp&q={searchTerms} BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation) BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\15.4.0.5\AVG Secure Search_toolbar.dll (AVG Secure Search) BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll (Google Inc.) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKLM - AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\15.4.0.5\AVG Secure Search_toolbar.dll (AVG Secure Search) Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) Toolbar: HKCU -&Adres - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\Windows\system32\browseui.dll (Microsoft Corporation) Toolbar: HKCU -&Łącza - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\Windows\system32\SHELL32.dll (Microsoft Corporation) Toolbar: HKCU -Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) Toolbar: HKCU -No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No File DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab Handler: ipp - No CLSID Value - Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll (AVG Technologies CZ, s.r.o.) Handler: msdaipp - No CLSID Value - Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\15.4.0\ViProtocol.dll (AVG Secure Search) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 FireFox: ======== FF ProfilePath: C:\Documents and Settings\Asia\Dane aplikacji\Mozilla\Firefox\Profiles\qvpa5o0h.default FF user.js: detected! => C:\Documents and Settings\Asia\Dane aplikacji\Mozilla\Firefox\Profiles\qvpa5o0h.default\user.js FF SelectedSearchEngine: Wikipedia (pl) FF Homepage: hxxp://www.interia.pl/ FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll () FF Plugin: @adobe.com/ShockwavePlayer - C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF Plugin: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\15.4.0\\npsitesafety.dll (AVG Technologies) FF Plugin: @bittorrent.com/BitTorrentDNA - C:\Program Files\DNA\plugins\npbtdna.dll (BitTorrent, Inc.) FF Plugin: @java.com/DTPlugin,version=10.10.2 - C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.4.1 - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF Plugin: @nexon.net/NxGame - C:\Documents and Settings\All Users\Dane aplikacji\NexonUS\NGM\npNxGameUS.dll No File FF Plugin: @pandonetworks.com/PandoWebPlugin - C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF Plugin: @real.com/nppl3260;version=6.0.12.69 - C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.) FF Plugin: @real.com/nprpjplug;version=6.0.12.69 - C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.) FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @Webzen.com/NPBrowserExt - C:\Program Files\WEBZEN\BrowserExtension\NPWZCmnCtrl.dll (WEBZEN) FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF SearchPlugin: C:\Documents and Settings\Asia\Dane aplikacji\Mozilla\Firefox\Profiles\qvpa5o0h.default\searchplugins\wyszukiwarka-interiapl.xml FF Extension: No Name - C:\Documents and Settings\Asia\Dane aplikacji\Mozilla\Extensions\mozswing@mozswing.org FF Extension: No Name - C:\Documents and Settings\Asia\Dane aplikacji\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} FF Extension: Rapideo - C:\Documents and Settings\Asia\Dane aplikacji\Mozilla\Firefox\Profiles\qvpa5o0h.default\Extensions\kontakt@rapideo.pl FF Extension: VideoFileDownload - Download YouTube Videos - C:\Documents and Settings\Asia\Dane aplikacji\Mozilla\Firefox\Profiles\qvpa5o0h.default\Extensions\plugin@videofiledownload.com FF Extension: Flagfox - C:\Documents and Settings\Asia\Dane aplikacji\Mozilla\Firefox\Profiles\qvpa5o0h.default\Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b} FF Extension: Google Toolbar for Firefox - C:\Documents and Settings\Asia\Dane aplikacji\Mozilla\Firefox\Profiles\qvpa5o0h.default\Extensions\{3112ca9c-de6d-4884-a869-9855de68056c} FF Extension: Nightly Tester Tools - C:\Documents and Settings\Asia\Dane aplikacji\Mozilla\Firefox\Profiles\qvpa5o0h.default\Extensions\{8620c15f-30dc-4dba-a131-7c5d20cf4a29}(2) FF Extension: DownloadHelper - C:\Documents and Settings\Asia\Dane aplikacji\Mozilla\Firefox\Profiles\qvpa5o0h.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}(2) FF Extension: check-compatibility - C:\Documents and Settings\Asia\Dane aplikacji\Mozilla\Firefox\Profiles\qvpa5o0h.default\Extensions\check-compatibility@dactyl.googlecode.com.xpi FF Extension: compatibility - C:\Documents and Settings\Asia\Dane aplikacji\Mozilla\Firefox\Profiles\qvpa5o0h.default\Extensions\compatibility@addons.mozilla.org.xpi FF Extension: No Name - C:\Documents and Settings\Asia\Dane aplikacji\Mozilla\Firefox\Profiles\qvpa5o0h.default\Extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}.xpi FF Extension: No Name - C:\Documents and Settings\Asia\Dane aplikacji\Mozilla\Firefox\Profiles\qvpa5o0h.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ FF HKLM\...\Firefox\Extensions: [{00ADD29A-66F4-4f22-BCC0-4C1D29DA647B}] D:\LG PC Suite\LG PC Suite IV\LinkAir\{00ADD29A-66F4-4f22-BCC0-4C1D29DA647B}\ FF HKLM\...\Firefox\Extensions: [avg@toolbar] C:\Documents and Settings\All Users\Dane aplikacji\AVG Secure Search\FireFoxExt\15.4.0.5 FF Extension: AVG Security Toolbar - C:\Documents and Settings\All Users\Dane aplikacji\AVG Secure Search\FireFoxExt\15.4.0.5 FF HKLM\...\Firefox\Extensions: [{ACAA314B-EEBA-48e4-AD47-84E31C44796C}] C:\Program Files\Common Files\DVDVideoSoft\plugins\ff\ FF Extension: No Name - C:\Program Files\Common Files\DVDVideoSoft\plugins\ff\ FF HKCU\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] C:\Documents and Settings\Asia\Dane aplikacji\IDM\idmmzcc5 FF StartMenuInternet: FIREFOX.EXE - H:\Mozilla Firefox\firefox.exe Chrome: ======= CHR HomePage: hxxp://www.interia.pl/ CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\28.0.1500.95\PepperFlash\pepflashplayer.dll () CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\28.0.1500.95\ppGoogleNaClPluginChrome.dll () CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\28.0.1500.95\pdf.dll () CHR Plugin: (Photodex Presenter Plugin) - C:\Documents and Settings\Asia\Dane aplikacji\Mozilla\plugins\npPxPlay.dll ( ) CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.) CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\QuickTime\plugins\npqtplugin.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\QuickTime\plugins\npqtplugin2.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\QuickTime\plugins\npqtplugin3.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\QuickTime\plugins\npqtplugin4.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\QuickTime\plugins\npqtplugin5.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\QuickTime\plugins\npqtplugin6.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.6.9) - C:\Program Files\QuickTime\plugins\npqtplugin7.dll (Apple Inc.) CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation) CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation) CHR Plugin: (Microsoft\u00AE Windows Media Player Firefox Plugin) - H:\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation) CHR Plugin: (AVG SiteSafety plugin) - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\15.4.0\\npsitesafety.dll (AVG Technologies) CHR Plugin: (DNA Plug-in) - C:\Program Files\DNA\plugins\npbtdna.dll (BitTorrent, Inc.) CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation) CHR Plugin: (Java(TM) Platform SE 7 U4) - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation) CHR Plugin: (Pando Web Plugin) - C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) CHR Plugin: (RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.) CHR Plugin: (RealPlayer Version Plugin) - C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.) CHR Plugin: (WEBZEN Browser Extension) - C:\Program Files\WEBZEN\BrowserExtension\NPWZCmnCtrl.dll (WEBZEN) CHR Plugin: (Windows Presentation Foundation) - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) CHR Plugin: (Shockwave for Director) - C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll () CHR Plugin: (Java Deployment Toolkit 7.0.100.18) - C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation) CHR Extension: (Adblock Plus) - C:\DOCUME~1\Asia\USTAWI~1\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.5.3_0 CHR Extension: (Game of Thrones: Stark) - C:\DOCUME~1\Asia\USTAWI~1\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\dlbafmmdkmpcojanmmfaehohbhdcilag\1.0.2_0 CHR HKLM\...\Chrome\Extension: [ndibdjnfmopecpmkdieinmbadjfpblof] - C:\Documents and Settings\All Users\Dane aplikacji\AVG Secure Search\ChromeExt\15.4.0.5\avg.crx CHR StartMenuInternet: Google Chrome - C:\Program Files\Google\Chrome\Application\chrome.exe ========================== Services (Whitelisted) ================= S2 ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [520192 2006-12-20] () R2 avgfws; C:\Program Files\AVG\AVG2012\avgfws.exe [2321560 2012-12-05] (AVG Technologies CZ, s.r.o.) R2 AVGIDSAgent; C:\Program Files\AVG\AVG2012\avgidsagent.exe [5174392 2012-11-02] (AVG Technologies CZ, s.r.o.) R2 avgwd; C:\Program Files\AVG\AVG2012\avgwdsvc.exe [193288 2012-02-14] (AVG Technologies CZ, s.r.o.) S4 Futuremark SystemInfo Service; C:\Program Files\Futuremark\Futuremark SystemInfo\FMSISvc.exe [130976 2011-03-01] (Futuremark Corporation) S3 lxcg_device; C:\WINDOWS\system32\lxcgcoms.exe [491520 2005-07-25] ( ) S3 npggsvc; C:\WINDOWS\system32\GameMon.des [4023760 2010-12-01] (INCA Internet Co., Ltd.) S4 PACSPTISVR; C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [57344 2006-12-14] () S4 SPTISRV; C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe [69632 2006-12-14] (Sony Corporation) R2 TuneUp.UtilitiesSvc; J:\Tuneup Utilities2013\TuneUpUtilitiesService32.exe [1699168 2012-10-15] (TuneUp Software) S3 UPnPService; C:\Program Files\Common Files\MAGIX Shared\UPnPService\UPnPService.exe [544768 2006-12-14] (Magix AG) R2 vToolbarUpdater15.4.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\15.4.0\ToolbarUpdater.exe [1616048 2013-07-30] (AVG Secure Search) S4 JavaQuickStarterService; "C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe" -service -config "C:\Program Files\Oracle\JavaFX 2.1 Runtime\lib\deploy\jqs\jqs.conf" [x] ==================== Drivers (Whitelisted) ==================== R3 Afc; C:\Windows\System32\drivers\Afc.sys [11776 2005-02-23] (Arcsoft, Inc.) R3 AmdLLD; C:\Windows\System32\DRIVERS\AmdLLD.sys [34304 2007-06-29] (AMD, Inc.) R3 ati2mtag; C:\Windows\System32\DRIVERS\ati2mtag.sys [1918464 2006-12-17] (ATI Technologies Inc.) R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [278984 2012-06-07] () R3 Avgfwdx; C:\Windows\System32\DRIVERS\avgfwdx.sys [30944 2012-01-12] (AVG Technologies CZ, s.r.o.) S3 Avgfwfd; C:\Windows\System32\DRIVERS\avgfwdx.sys [30944 2012-01-12] (AVG Technologies CZ, s.r.o.) R3 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [142176 2012-12-10] (AVG Technologies CZ, s.r.o. ) R3 AVGIDSFilter; C:\Windows\System32\DRIVERS\avgidsfilterx.sys [24144 2011-12-23] (AVG Technologies CZ, s.r.o. ) R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [24896 2012-04-19] (AVG Technologies CZ, s.r.o. ) R3 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [17232 2011-12-23] (AVG Technologies CZ, s.r.o. ) R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [250080 2012-11-08] (AVG Technologies CZ, s.r.o.) R1 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [41040 2011-12-23] (AVG Technologies CZ, s.r.o.) R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [31952 2012-01-31] (AVG Technologies CZ, s.r.o.) R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [302368 2013-04-11] (AVG Technologies CZ, s.r.o.) R1 avgtp; C:\WINDOWS\system32\drivers\avgtpx86.sys [37664 2013-07-30] (AVG Technologies) S3 CA561; C:\Windows\System32\Drivers\SPCA561.SYS [119798 2002-10-01] (SP) S3 CCDECODE; C:\Windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation) R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [242240 2012-03-05] (DT Soft Ltd) S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [13192 2011-07-29] () S3 EuGdiDrv; C:\WINDOWS\system32\EuGdiDrv.sys [8456 2011-07-29] () S3 ezplay; C:\Windows\System32\Drivers\ezplay.sys [94208 2009-07-22] (VSO Software) R3 FsUsbExDisk; C:\WINDOWS\system32\FsUsbExDisk.SYS [36608 2008-12-13] () R3 HDAudBus; C:\Windows\System32\DRIVERS\HDAudBus.sys [144384 2011-01-15] (Windows (R) Server 2003 DDK provider) R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [18048 2009-07-26] () S3 NABTSFEC; C:\Windows\System32\DRIVERS\NABTSFEC.sys [85248 2008-04-13] (Microsoft Corporation) S3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2011-01-15] (Microsoft Corporation) S3 nm; C:\Windows\System32\DRIVERS\NMnt.sys [40320 2011-01-15] (Microsoft Corporation) R0 nvatabus; C:\Windows\System32\Drivers\nvatabus.sys [100736 2011-01-15] (NVIDIA Corporation) R3 NVENETFD; C:\Windows\System32\DRIVERS\NVENETFD.sys [57856 2006-07-11] (NVIDIA Corporation) R0 nvgts; C:\Windows\System32\DRIVERS\nvgts.sys [164896 2011-01-15] (NVIDIA Corporation) R3 nvnetbus; C:\Windows\System32\DRIVERS\nvnetbus.sys [20480 2006-07-11] (NVIDIA Corporation) R2 NwlnkIpx; C:\Windows\System32\DRIVERS\nwlnkipx.sys [88320 2011-01-15] (Microsoft Corporation) R2 NwlnkNb; C:\Windows\System32\DRIVERS\nwlnknb.sys [63232 2011-01-15] (Microsoft Corporation) R2 NwlnkSpx; C:\Windows\System32\DRIVERS\nwlnkspx.sys [55936 2011-01-15] (Microsoft Corporation) R1 prodrv06; C:\Windows\System32\drivers\prodrv06.sys [51744 2003-09-06] (Protection Technology) R0 prohlp02; C:\Windows\System32\drivers\prohlp02.sys [62656 2003-09-06] (Protection Technology) R0 prosync1; C:\Windows\System32\drivers\prosync1.sys [6944 2003-09-06] (Protection Technology) R0 sfhlp01; C:\Windows\System32\drivers\sfhlp01.sys [4832 2003-09-06] (Protection Technology) R0 sfvfs02; C:\Windows\System32\drivers\sfvfs02.sys [66048 2005-09-29] (Protection Technology) R0 Si3112; C:\Windows\System32\Drivers\Si3112.sys [69168 2011-01-15] (Silicon Image, Inc.) S0 Si3114r5; C:\Windows\System32\Drivers\Si3114r5.sys [211496 2011-01-15] (Silicon Image, Inc) R0 Si3124; C:\Windows\System32\Drivers\Si3124.sys [69248 2011-01-15] (Silicon Image, Inc.) R0 Si3132; C:\Windows\System32\Drivers\Si3132.sys [80424 2011-01-15] (Silicon Image, Inc) R0 Si3132r5; C:\Windows\System32\Drivers\Si3132r5.sys [217128 2011-01-15] (Silicon Image, Inc) R0 Si3531; C:\Windows\System32\Drivers\Si3531.sys [210736 2011-01-15] (Silicon Image, Inc) S3 SLIP; C:\Windows\System32\DRIVERS\SLIP.sys [11136 2011-01-15] (Microsoft Corporation) S4 sptd; C:\Windows\System32\Drivers\sptd.sys [473656 2012-03-05] (Duplex Secure Ltd.) R1 StarOpen; C:\Windows\System32\Drivers\StarOpen.sys [5632 2006-07-24] () S3 streamip; C:\Windows\System32\DRIVERS\StreamIP.sys [15232 2011-01-15] (Microsoft Corporation) S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [11232 2011-04-25] () R3 TuneUpUtilitiesDrv; J:\Tuneup Utilities2013\TuneUpUtilitiesDriver32.sys [10088 2012-09-19] (TuneUp Software) S3 WSTCODEC; C:\Windows\System32\DRIVERS\WSTCODEC.SYS [19200 2008-04-13] (Microsoft Corporation) S3 ApfiltrService; system32\DRIVERS\Apfiltr.sys [x] S3 dgderdrv; System32\drivers\dgderdrv.sys [x] S4 IntelIde; No ImagePath S3 LgBttPort; system32\DRIVERS\lgbtport.sys [x] S3 lgbusenum; system32\DRIVERS\lgbtbus.sys [x] S3 LGVMODEM; system32\DRIVERS\lgvmodem.sys [x] S3 pccsmcfd; system32\DRIVERS\pccsmcfd.sys [x] S3 usbbus; system32\DRIVERS\lgusbbus.sys [x] S3 UsbDiag; system32\DRIVERS\lgusbdiag.sys [x] S3 USBModem; system32\DRIVERS\lgusbmodem.sys [x] U1 WS2IFSL; ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-08-12 10:00 - 2013-08-12 10:00 - 00035764 _____ C:\Documents and Settings\Asia\.recently-used.xbel 2013-08-12 08:36 - 2013-08-12 08:36 - 00029164 _____ C:\Documents and Settings\Asia\Pulpit\hehehe.txt 2013-08-12 08:22 - 2013-08-12 08:22 - 00125628 _____ C:\Documents and Settings\Asia\Pulpit\OTL.Txt 2013-08-12 08:22 - 2013-08-12 08:22 - 00054432 _____ C:\Documents and Settings\Asia\Pulpit\Extras.Txt 2013-08-05 09:29 - 2013-08-05 09:30 - 00000116 _____ C:\WINDOWS\setupact.log 2013-08-05 09:29 - 2013-08-05 09:29 - 00000000 _____ C:\WINDOWS\setuperr.log 2013-08-04 07:28 - 2013-08-04 07:28 - 00000000 ____D C:\Documents and Settings\Asia\Moje dokumenty\Tablet 2013-08-04 06:14 - 2013-08-04 06:14 - 00033172 ____C C:\drwtsn32.log 2013-08-03 18:00 - 2013-08-12 08:00 - 00022292 _____ C:\WINDOWS\setupapi.log 2013-07-26 13:15 - 2013-07-26 13:15 - 00000794 _____ C:\Documents and Settings\Asia\Pulpit\Paint Tool Sai.lnk 2013-07-24 08:50 - 2013-08-12 07:01 - 00041777 _____ C:\WINDOWS\KB2481109.log 2013-07-24 08:49 - 2013-08-12 08:26 - 00000050 _____ C:\WINDOWS\wiaservc.log 2013-07-24 08:49 - 2013-07-24 08:49 - 00000000 _____ C:\WINDOWS\Sti_Trace.log 2013-07-24 08:48 - 2013-07-31 05:16 - 01530336 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2013-07-17 08:16 - 2013-07-17 08:16 - 00000000 ____D C:\Documents and Settings\Asia\Dane aplikacji\Transformice ==================== One Month Modified Files and Folders ======= 2013-08-12 14:25 - 2013-08-12 14:25 - 00000000 ___DC C:\FRST 2013-08-12 14:25 - 2010-06-15 17:00 - 00000000 ____D C:\Documents and Settings\Asia\.gimp-2.6 2013-08-12 14:18 - 2013-05-24 05:04 - 00000930 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2013-08-12 14:14 - 2009-10-04 13:25 - 00001032 ____C C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2013-08-12 13:56 - 2013-04-15 17:48 - 00000000 ____D C:\Documents and Settings\Asia\Dane aplikacji\Spotify 2013-08-12 13:22 - 2012-07-04 12:55 - 00000000 ____D C:\WINDOWS\system32\Drivers\AVG 2013-08-12 13:12 - 2011-07-02 16:35 - 00000000 ____D C:\Documents and Settings\Asia\Moje dokumenty\Pobieranie 2013-08-12 11:14 - 2011-05-03 06:34 - 00001032 ____C C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2013-08-12 10:05 - 2013-06-07 12:55 - 00000000 ____D C:\Documents and Settings\Asia\Dane aplikacji\TS3Client 2013-08-12 10:00 - 2013-08-12 10:00 - 00035764 _____ C:\Documents and Settings\Asia\.recently-used.xbel 2013-08-12 10:00 - 2009-09-27 11:42 - 00000000 ____D C:\Documents and Settings\Asia\Dane aplikacji\gtk-2.0 2013-08-12 10:00 - 2009-07-02 20:45 - 00000000 ___RD C:\Documents and Settings\Asia\Moje dokumenty\Moje obrazy 2013-08-12 10:00 - 2009-07-02 20:45 - 00000000 ____D C:\Documents and Settings\Asia 2013-08-12 08:36 - 2013-08-12 08:36 - 00029164 _____ C:\Documents and Settings\Asia\Pulpit\hehehe.txt 2013-08-12 08:36 - 2009-07-02 20:45 - 00000000 ____D C:\Documents and Settings\Asia\Pulpit 2013-08-12 08:30 - 2009-07-02 22:32 - 01444774 ____C C:\WINDOWS\system32\PerfStringBackup.INI 2013-08-12 08:30 - 2001-10-26 18:15 - 00621958 ____C C:\WINDOWS\system32\perfh015.dat 2013-08-12 08:30 - 2001-10-26 18:15 - 00138616 ____C C:\WINDOWS\system32\perfc015.dat 2013-08-12 08:27 - 2009-07-02 20:40 - 01946930 ____C C:\WINDOWS\WindowsUpdate.log 2013-08-12 08:26 - 2013-07-24 08:49 - 00000050 _____ C:\WINDOWS\wiaservc.log 2013-08-12 08:26 - 2010-06-14 05:50 - 00000159 ____C C:\WINDOWS\wiadebug.log 2013-08-12 08:25 - 2013-01-22 13:43 - 00000342 _____ C:\WINDOWS\Tasks\ROC_JAN2013_TB_rmv.job 2013-08-12 08:25 - 2009-07-02 20:44 - 00000006 ___HC C:\WINDOWS\Tasks\SA.DAT 2013-08-12 08:22 - 2013-08-12 08:22 - 00125628 _____ C:\Documents and Settings\Asia\Pulpit\OTL.Txt 2013-08-12 08:22 - 2013-08-12 08:22 - 00054432 _____ C:\Documents and Settings\Asia\Pulpit\Extras.Txt 2013-08-12 08:00 - 2013-08-03 18:00 - 00022292 _____ C:\WINDOWS\setupapi.log 2013-08-12 07:12 - 2009-07-02 20:45 - 00000000 ___RD C:\Documents and Settings\Asia\Moje dokumenty 2013-08-12 07:01 - 2013-07-24 08:50 - 00041777 _____ C:\WINDOWS\KB2481109.log 2013-08-12 07:01 - 2010-01-01 11:19 - 00000000 ____D C:\Documents and Settings\Asia\.gstreamer-0.10 2013-08-12 06:58 - 2010-04-20 17:09 - 00327680 _____ C:\WINDOWS\system32\config\TuneUp.evt 2013-08-12 06:58 - 2009-07-02 20:45 - 00000292 ___SH C:\Documents and Settings\Asia\ntuser.ini 2013-08-12 06:58 - 2009-07-02 20:44 - 00032598 _____ C:\WINDOWS\SchedLgU.Txt 2013-08-12 06:23 - 2009-07-02 22:31 - 00000000 _RHDC C:\Documents and Settings\All Users\Dane aplikacji 2013-08-12 06:23 - 2009-07-02 20:45 - 00000000 ___HD C:\Documents and Settings\Asia\Dane aplikacji 2013-08-11 09:13 - 2009-07-02 20:39 - 00000000 ____D C:\WINDOWS\system32\Restore 2013-08-11 08:40 - 2009-07-02 20:45 - 00000000 ___RD C:\Documents and Settings\Asia\Menu Start 2013-08-11 05:53 - 2001-07-22 00:17 - 00002250 ____C C:\WINDOWS\system32\wpa.dbl 2013-08-10 13:34 - 2009-07-02 20:45 - 00000000 ___HD C:\DOCUME~1\Asia\USTAWI~1\Dane aplikacji 2013-08-10 08:23 - 2011-01-15 09:15 - 00000000 __SHD C:\Documents and Settings\Asia\Dane aplikacji\jrdevdig 2013-08-09 20:53 - 2012-07-05 05:44 - 00000000 ____D C:\Documents and Settings\Asia\Dane aplikacji\TuneUp Software 2013-08-09 20:45 - 2010-06-20 17:03 - 00000000 ___DC C:\Documents and Settings\All Users\Pulpit 2013-08-09 20:44 - 2009-07-02 20:45 - 00000000 ___RD C:\Documents and Settings\Asia\Menu Start\Programy 2013-08-09 20:35 - 2009-07-03 09:06 - 00000000 ____D C:\Program Files\Google 2013-08-07 07:34 - 2012-07-04 13:03 - 00000000 ____D C:\Program Files\AVG Secure Search 2013-08-07 07:34 - 2011-03-08 20:16 - 00000000 ____D C:\Documents and Settings\Asia\Dane aplikacji\ipla 2013-08-07 07:34 - 2010-02-22 09:43 - 00000000 ____D C:\Documents and Settings\Asia\Dane aplikacji\DNA 2013-08-05 09:30 - 2013-08-05 09:29 - 00000116 _____ C:\WINDOWS\setupact.log 2013-08-05 09:29 - 2013-08-05 09:29 - 00000000 _____ C:\WINDOWS\setuperr.log 2013-08-04 18:10 - 2009-10-17 08:49 - 00000000 ____D C:\Documents and Settings\Asia\Dane aplikacji\dvdcss 2013-08-04 07:28 - 2013-08-04 07:28 - 00000000 ____D C:\Documents and Settings\Asia\Moje dokumenty\Tablet 2013-08-04 06:14 - 2013-08-04 06:14 - 00033172 ____C C:\drwtsn32.log 2013-08-03 07:07 - 2010-05-30 13:13 - 00000000 ___DC C:\Documents and Settings\Administrator 2013-08-03 07:07 - 2009-07-02 22:31 - 00057344 _____ C:\WINDOWS\system32\config\SECURITY_tureg_old 2013-08-03 07:07 - 2009-07-02 22:30 - 40370176 _____ C:\WINDOWS\system32\config\SOFTWARE_tureg_old 2013-08-03 07:07 - 2009-07-02 22:30 - 09175040 _____ C:\WINDOWS\system32\config\SYSTEM_tureg_old 2013-08-03 07:07 - 2009-07-02 20:44 - 00000000 __SHD C:\Documents and Settings\NetworkService 2013-08-03 07:07 - 2009-07-02 20:44 - 00000000 __SHD C:\Documents and Settings\LocalService 2013-08-03 07:04 - 2009-07-02 22:31 - 00028672 _____ C:\WINDOWS\system32\config\SAM_tureg_old 2013-08-03 07:04 - 2009-07-02 22:30 - 00786432 _____ C:\WINDOWS\system32\config\DEFAULT_tureg_old 2013-07-31 05:16 - 2013-07-24 08:48 - 01530336 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2013-07-30 14:17 - 2010-06-15 17:03 - 00000000 ____D C:\Documents and Settings\Asia\.thumbnails 2013-07-30 06:52 - 2012-08-30 18:32 - 00037664 _____ (AVG Technologies) C:\WINDOWS\system32\Drivers\avgtpx86.sys 2013-07-30 06:52 - 2012-07-05 13:18 - 00000000 ____D C:\WINDOWS\system32\cache 2013-07-27 15:49 - 2010-04-21 16:32 - 00000000 ____D C:\Documents and Settings\Asia\Dane aplikacji\QuickScan 2013-07-26 13:15 - 2013-07-26 13:15 - 00000794 _____ C:\Documents and Settings\Asia\Pulpit\Paint Tool Sai.lnk 2013-07-24 08:49 - 2013-07-24 08:49 - 00000000 _____ C:\WINDOWS\Sti_Trace.log 2013-07-22 05:26 - 2009-07-03 07:16 - 00000000 __SHD C:\Documents and Settings\Asia\IETldCache 2013-07-22 05:24 - 2009-07-03 07:31 - 00000000 __SHD C:\Documents and Settings\Asia\IECompatCache 2013-07-21 08:57 - 2013-06-15 17:51 - 00001086 _____ C:\Documents and Settings\Asia\Pulpit\The Sims 2.lnk 2013-07-19 20:53 - 2013-06-21 13:51 - 00000000 ____D C:\Documents and Settings\Asia\Moje dokumenty\Agot 2013-07-18 04:45 - 2010-02-22 09:43 - 00000000 ____D C:\Program Files\DNA 2013-07-17 08:16 - 2013-07-17 08:16 - 00000000 ____D C:\Documents and Settings\Asia\Dane aplikacji\Transformice 2013-07-15 18:46 - 2013-06-21 11:08 - 00000038 _____ C:\WINDOWS\AviSplitter.INI ==================== Bamital & volsnap Check ================= C:\Windows\explorer.exe [2011-01-15 09:15] - [2011-01-15 09:15] - 1035264 ____A (Microsoft Corporation) c791ed9eac5e76d9525e157b1d7a599a C:\Windows\System32\winlogon.exe [2011-01-15 09:15] - [2011-01-15 09:15] - 0510464 ____A (Microsoft Corporation) 51fd2e13d723857b9ca239ae77150f48 C:\Windows\System32\svchost.exe [2011-01-15 09:15] - [2011-01-15 09:15] - 0014336 ____A (Microsoft Corporation) 8607d35d92528e2df386f19a960d23ce C:\Windows\System32\services.exe [2011-01-15 09:15] - [2011-01-15 09:15] - 0111104 ____A (Microsoft Corporation) 8816e60bf654353e8e0d35ed98875445 C:\Windows\System32\User32.dll [2011-01-15 09:15] - [2011-01-15 09:15] - 0580096 ____A (Microsoft Corporation) a435c5c069afd901751ac323ad238793 C:\Windows\System32\userinit.exe [2011-01-15 09:15] - [2011-01-15 09:15] - 0026624 ____A (Microsoft Corporation) 2a5b37d520508be6570a3ea79695f5b5 C:\Windows\System32\Drivers\volsnap.sys [2011-01-15 09:15] - [2011-01-15 09:15] - 0052864 ____A (Microsoft Corporation) 56b191ac5fc0df219949c95a6c87afe7 ==================== End Of Log ============================