Greebqmaster utworzono 29 czerwca 2009 utworzono 29 czerwca 2009 Witam, czy ktos mogly sprawdzic loga? Logfile of Trend Micro HijackThis v2.0.2Scan saved at 10:10:49, on 2009-06-29Platform: Windows Vista SP1 (WinNT 6.00.1905)MSIE: Internet Explorer v7.00 (7.00.6001.18248)Boot mode: NormalRunning processes:C:\Windows\system32\Dwm.exeC:\Windows\system32\taskeng.exeC:\Windows\Explorer.EXEC:\Program Files\Windows Defender\MSASCui.exeC:\Windows\System32\rundll32.exeC:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exeC:\Program Files\Synaptics\SynTP\SynTPEnh.exeC:\Program Files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exeC:\Program Files\Acer\Acer PowerSmart Manager\ePowerTray.exeC:\Program Files\EgisTec\MyWinLocker 3\x86\mwlDaemon.exeC:\Program Files\Alwil Software\Avast4\ashDisp.exeC:\Windows\system32\wbem\unsecapp.exeC:\Program Files\Launch Manager\LManager.exeC:\Program Files\Google\Google Desktop Search\GoogleDesktop.exeC:\Program Files\WapSter\WapSter AQQ\AQQ.exeC:\Program Files\DAEMON Tools Lite\daemon.exeC:\Program Files\uTorrent\uTorrent.exeC:\Users\Przemek\AppData\Local\Temp\RtkBtMnt.exeC:\Program Files\Windows Media Player\wmpnscfg.exeC:\Program Files\Synaptics\SynTP\SynTPHelper.exeC:\Windows\system32\wuauclt.exeC:\Program Files\Alwil Software\Avast4\ashSimpl.exeC:\Program Files\Mozilla Firefox\firefox.exeC:\Program Files\Trend Micro\HijackThis\HijackThis.exeC:\Windows\system32\taskeng.exeR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0415&s=2&o=vp32&d=0609&m=aspire_5738R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0415&s=2&o=vp32&d=0609&m=aspire_5738R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0415&s=2&o=vp32&d=0609&m=aspire_5738R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhostO2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dllO2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dllO2 - BHO: IE to GetRight Helper - {31FF080D-12A3-439A-A2EF-4BA95A3148E8} - C:\Program Files\GetRight\xx2gr.dllO2 - BHO: Partner BHO Class - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:\ProgramData\Partner\partner.dllO2 - BHO: Pomocnik rejestracji usługi Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllO2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dllO2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dllO2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dllO3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dllO3 - Toolbar: ZoneAlarm Spy Blocker Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dllO4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hideO4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartupO4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInitO4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exeO4 - HKLM\..\Run: [skytel] C:\Program Files\Realtek\Audio\HDA\Skytel.exeO4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exeO4 - HKLM\..\Run: [backupManagerTray] "C:\Program Files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -kO4 - HKLM\..\Run: [Acer ePower Management] C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTray.exeO4 - HKLM\..\Run: [mwlDaemon] C:\Program Files\EgisTec\MyWinLocker 3\x86\mwlDaemon.exeO4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeO4 - HKLM\..\Run: [LManager] C:\Program Files\Launch Manager\LManager.exeO4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startupO4 - HKCU\..\Run: [AQQ] C:\PROGRA~1\WapSter\WAPSTE~1\AQQ.exeO4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorunO4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exeO4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'USŁUGA LOKALNA')O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'USŁUGA LOKALNA')O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'USŁUGA SIECIOWA')O8 - Extra context menu item: Download with GetRight - C:\Program Files\GetRight\GRdownload.htmO8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000O8 - Extra context menu item: Open with GetRight Browser - C:\Program Files\GetRight\GRbrowse.htmO9 - Extra button: Wpis w blogu - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dllO9 - Extra 'Tools' menuitem: &Wpis w blogu w Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dllO9 - Extra button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dllO9 - Extra 'Tools' menuitem: Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dllO9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLLO13 - Gopher Prefix: O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dllO20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLLO23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exeO23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exeO23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exeO23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exeO23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exeO23 - Service: CLHNService - Unknown owner - C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exeO23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exeO23 - Service: Menedżer Google Desktop 5.8.809.23506 (GoogleDesktopManager-092308-165331) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exeO23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exeO23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exeO23 - Service: MyWinLocker Service (MWLService) - EgisTec Inc. - C:\Program Files\EgisTec\MyWinLocker 3\x86\\MWLService.exeO23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exeO23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exeO23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exeO23 - Service: Partner Service - Google Inc. - C:\ProgramData\Partner\partner.exe--End of file - 8837 bytes
Gość komentarz 29 czerwca 2009 komentarz 29 czerwca 2009 Odinstaluj te programy: AskBarDis Partner Daj log z OTL: http://www.forumpc.pl/index.php?showtopic=104338 .
Greebqmaster komentarz 29 czerwca 2009 Autor komentarz 29 czerwca 2009 (edytowane) OTL logfile created on: 2009-06-29 12:28:46 - Run 1OTL by OldTimer - Version 3.0.5.3 Folder = C:\Users\Przemek\DesktopWindows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstationInternet Explorer (Version = 7.0.6001.18000)Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd2,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 100,00% Memory free4,00 Gb Paging File | 4,00 Gb Available in Paging File | 100,00% Paging File freePaging file location(s): ?:\pagefile.sys [binary data]%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program FilesDrive C: | 288,32 Gb Total Space | 197,78 Gb Free Space | 68,60% Space Free | Partition Type: NTFSDrive D: | 9,19 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFSE: Drive not present or media not loadedF: Drive not present or media not loadedG: Drive not present or media not loadedH: Drive not present or media not loadedI: Drive not present or media not loadedComputer Name: PRZEMEK-PCCurrent User Name: PrzemekLogged in as Administrator.Current Boot Mode: NormalScan Mode: All usersCompany Name Whitelist: OnSkip Microsoft Files: OffFile Age = 30 DaysOutput = Standard========== Processes (SafeList) ==========PRC - [2008-12-17 01:03:00 | 00,203,296 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvvsvc.exePRC - [2009-02-05 22:01:25 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exePRC - [2009-02-05 22:08:40 | 00,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exePRC - [2008-03-18 21:27:12 | 00,013,312 | ---- | M] (Agere Systems) -- C:\Windows\System32\agrsmsvc.exePRC - [2008-12-18 14:51:34 | 00,075,048 | ---- | M] () -- C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exePRC - [2009-02-19 17:32:36 | 00,666,144 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exePRC - [2008-10-27 12:05:28 | 00,306,736 | ---- | M] (EgisTec Inc.) -- C:\Program Files\EgisTec\MyWinLocker 3\x86\MWLService.exePRC - [2008-09-23 15:11:34 | 00,144,632 | ---- | M] (NewTech Infosystems, Inc.) -- C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exePRC - [2009-02-05 22:06:04 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exePRC - [2009-02-05 22:08:26 | 00,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exePRC - [2008-10-29 08:29:41 | 02,927,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\Explorer.EXEPRC - [2008-01-21 04:23:32 | 01,008,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exePRC - [2008-06-12 03:38:00 | 00,034,672 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exePRC - [2009-02-14 03:02:30 | 06,814,240 | ---- | M] (Realtek Semiconductor) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exePRC - [2008-12-05 08:54:22 | 01,410,344 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exePRC - [2009-02-17 10:36:34 | 00,248,576 | ---- | M] (NewTech Infosystems, Inc.) -- C:\Program Files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exePRC - [2009-02-19 21:22:44 | 00,707,104 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTray.exePRC - [2008-10-27 12:05:24 | 00,346,672 | ---- | M] (EgisTec Inc.) -- C:\Program Files\EgisTec\MyWinLocker 3\x86\mwlDaemon.exePRC - [2009-02-05 22:08:45 | 00,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exePRC - [2009-02-19 05:42:48 | 00,866,824 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\LManager.exePRC - [2009-06-17 14:41:25 | 00,030,192 | ---- | M] (Google) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exePRC - [2009-06-17 14:58:00 | 00,204,800 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Users\Przemek\AppData\Local\Temp\RtkBtMnt.exePRC - [2008-01-21 04:23:52 | 00,037,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\unsecapp.exePRC - [2009-03-03 04:16:04 | 00,247,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wmiprvse.exePRC - [2009-06-12 16:47:30 | 05,047,808 | ---- | M] (Creative Team S.A.) -- C:\Program Files\WapSter\WapSter AQQ\AQQ.exePRC - [2008-12-29 12:40:30 | 00,687,560 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\daemon.exePRC - [2009-06-19 13:37:57 | 00,287,536 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\uTorrent\uTorrent.exePRC - [2009-03-05 16:07:20 | 02,260,480 | RHS- | M] (Safer-Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exePRC - [2008-01-21 04:25:33 | 00,202,240 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnscfg.exePRC - [2008-01-21 04:25:33 | 00,896,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exePRC - [2009-06-03 10:17:52 | 00,307,704 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exePRC - [2009-06-29 10:40:52 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Users\Przemek\Desktop\OTL.exePRC - [2008-12-05 08:54:22 | 00,103,720 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPHelper.exe========== Win32 Services (SafeList) ==========SRV - [2008-03-18 21:27:12 | 00,013,312 | ---- | M] (Agere Systems) -- C:\Windows\System32\agrsmsvc.exe -- (AgereModemAudio [Auto | Running])SRV - [2009-02-05 22:01:25 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv [Auto | Running])SRV - [2009-02-05 22:08:40 | 00,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus [Auto | Running])SRV - [2009-02-05 22:08:26 | 00,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner [On_Demand | Running])SRV - [2009-02-05 22:06:04 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner [On_Demand | Running])SRV - [2008-12-18 14:51:34 | 00,075,048 | ---- | M] () -- C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe -- (CLHNService [Auto | Running])SRV - [2008-07-27 20:03:13 | 00,069,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])SRV - [2008-01-21 04:25:09 | 00,292,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehRecvr.exe -- (ehRecvr [On_Demand | Stopped])SRV - [2006-11-02 14:35:29 | 00,131,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehsched.exe -- (ehSched [On_Demand | Stopped])SRV - [2006-11-02 14:35:29 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehstart.dll -- (ehstart [Auto | Stopped])SRV - [2009-02-19 17:32:36 | 00,666,144 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe -- (ePowerSvc [Auto | Running])SRV - [2008-01-21 04:23:49 | 01,013,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wevtsvc.dll -- (Eventlog [Auto | Running])SRV - [2008-06-20 03:14:44 | 00,046,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped])SRV - [2009-06-17 14:41:25 | 00,030,192 | ---- | M] (Google) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe -- (GoogleDesktopManager-092308-165331 [On_Demand | Stopped])SRV - [2009-06-17 18:28:12 | 00,182,768 | ---- | M] (Google) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc [On_Demand | Stopped])SRV - [2004-10-22 03:24:18 | 00,073,728 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe -- (IDriverT [On_Demand | Stopped])SRV - [2008-06-20 03:14:31 | 00,881,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc [unknown | Stopped])SRV - [2006-11-02 11:46:05 | 00,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\irmon.dll -- (Irmon [Auto | Running])SRV - [2008-10-27 12:05:28 | 00,306,736 | ---- | M] (EgisTec Inc.) -- C:\Program Files\EgisTec\MyWinLocker 3\x86\MWLService.exe -- (MWLService [Auto | Running])SRV - [2008-06-20 03:14:31 | 00,132,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped])SRV - [2008-09-23 15:11:32 | 00,050,424 | ---- | M] (NewTech InfoSystems, Inc.) -- C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe -- (NTIBackupSvc [On_Demand | Stopped])SRV - [2008-09-23 15:11:34 | 00,144,632 | ---- | M] (NewTech Infosystems, Inc.) -- C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe -- (NTISchedulerSvc [Auto | Running])SRV - [2008-12-17 01:03:00 | 00,203,296 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvvsvc.exe -- (nvsvc [Auto | Running])SRV - [2007-08-24 04:19:12 | 00,443,776 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv [On_Demand | Stopped])SRV - [2006-10-26 14:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose [On_Demand | Stopped])SRV - [2009-06-17 14:41:45 | 00,110,576 | ---- | M] (Google Inc.) -- C:\ProgramData\Partner\partner.exe -- (Partner Service [On_Demand | Stopped])SRV - [2008-01-21 04:23:32 | 00,272,952 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend [Auto | Running])SRV - [2008-01-21 04:25:33 | 00,896,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc [On_Demand | Running])========== Driver Services (SafeList) ==========DRV - [2008-01-21 04:23:21 | 00,422,968 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx [Disabled | Stopped])DRV - [2008-01-21 04:23:25 | 00,300,600 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci [Disabled | Stopped])DRV - [2008-01-21 04:23:26 | 00,101,432 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m [Disabled | Stopped])DRV - [2008-01-21 04:23:27 | 00,149,560 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320 [Disabled | Stopped])DRV - [2008-03-01 01:13:38 | 01,202,560 | ---- | M] (Agere Systems) -- C:\Windows\System32\DRIVERS\AGRSM.sys -- (AgereSoftModem [On_Demand | Running])DRV - [2006-11-02 11:50:11 | 00,071,272 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx [Disabled | Stopped])DRV - [2008-01-21 04:23:00 | 00,017,464 | ---- | M] (Acer Laboratories Inc.) -- C:\Windows\system32\drivers\aliide.sys -- (aliide [Disabled | Stopped])DRV - [2008-01-21 04:23:23 | 00,079,416 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\arc.sys -- (arc [Disabled | Stopped])DRV - [2008-01-21 04:23:24 | 00,079,928 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas [Disabled | Stopped])DRV - [2009-02-05 22:07:12 | 00,020,560 | ---- | M] (ALWIL Software) -- C:\Windows\System32\DRIVERS\aswFsBlk.sys -- (aswFsBlk [Auto | Running])DRV - [2009-02-05 22:06:59 | 00,051,792 | ---- | M] (ALWIL Software) -- C:\Windows\System32\DRIVERS\aswMonFlt.sys -- (aswMonFlt [Auto | Running])DRV - [2009-02-05 22:06:10 | 00,023,152 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr [system | Running])DRV - [2009-02-05 22:07:23 | 00,114,768 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP [system | Running])DRV - [2009-02-05 22:06:20 | 00,051,376 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi [system | Running])DRV - [2008-12-30 00:57:56 | 00,952,832 | ---- | M] (Atheros Communications, Inc.) -- C:\Windows\System32\DRIVERS\athr.sys -- (athr [On_Demand | Running])DRV - [2008-01-21 04:23:20 | 00,179,712 | ---- | M] (Broadcom Corporation) -- C:\Windows\System32\DRIVERS\b57nd60x.sys -- (b57nd60x [On_Demand | Stopped])DRV - [2006-11-02 10:24:45 | 00,013,568 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo [On_Demand | Stopped])DRV - [2006-11-02 10:24:46 | 00,005,248 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp [On_Demand | Stopped])DRV - [2006-11-02 10:25:24 | 00,071,808 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brserid.sys -- (Brserid [Disabled | Stopped])DRV - [2006-11-02 10:24:44 | 00,062,336 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm [Disabled | Stopped])DRV - [2006-11-02 10:24:44 | 00,012,160 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm [Disabled | Stopped])DRV - [2006-11-02 10:24:47 | 00,011,904 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer [On_Demand | Stopped])DRV - [2008-01-21 04:23:00 | 00,019,000 | ---- | M] (CMD Technology, Inc.) -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide [Disabled | Stopped])DRV - [2006-11-03 07:29:36 | 00,021,264 | ---- | M] (Dritek System Inc.) -- C:\Windows\System32\DRIVERS\DKbFltr.sys -- (DKbFltr [On_Demand | Running])DRV - [2008-01-21 04:23:24 | 00,118,784 | ---- | M] (Intel Corporation) -- C:\Windows\System32\DRIVERS\E1G60I32.sys -- (E1G60 [On_Demand | Stopped])DRV - [2008-01-21 04:23:22 | 00,342,584 | ---- | M] (Emulex) -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor [Disabled | Stopped])DRV - [2008-01-21 04:23:26 | 00,040,504 | ---- | M] (Hewlett-Packard Company) -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs [Disabled | Stopped])DRV - [2008-01-21 04:23:23 | 00,235,064 | ---- | M] (Intel Corporation) -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV [Disabled | Stopped])DRV - [2006-11-02 11:50:17 | 00,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp [Disabled | Stopped])DRV - [2009-02-14 02:49:56 | 02,325,728 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService [On_Demand | Running])DRV - [2006-11-02 11:50:07 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi [Disabled | Stopped])DRV - [2006-11-02 11:50:09 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid [Disabled | Stopped])DRV - [2008-09-04 06:12:56 | 00,223,232 | ---- | M] (Broadcom Corporation) -- C:\Windows\System32\DRIVERS\k57nd60x.sys -- (k57nd60x [On_Demand | Running])DRV - [2008-01-21 04:23:23 | 00,096,312 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC [Disabled | Stopped])DRV - [2008-01-21 04:23:25 | 00,089,656 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS [Disabled | Stopped])DRV - [2008-01-21 04:23:23 | 00,096,312 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI [Disabled | Stopped])DRV - [2008-01-21 04:23:27 | 00,031,288 | ---- | M] (LSI Corporation) -- C:\Windows\system32\drivers\megasas.sys -- (megasas [Disabled | Stopped])DRV - [2008-01-21 04:23:27 | 00,386,616 | ---- | M] (LSI Corporation, Inc.) -- C:\Windows\system32\drivers\megasr.sys -- (MegaSR [Disabled | Stopped])DRV - [2006-11-02 11:49:59 | 00,033,384 | ---- | M] (LSI Logic Corporation) -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x [Disabled | Stopped])DRV - [2008-10-09 16:47:12 | 00,019,504 | ---- | M] (Egis Incorporated.) -- C:\Windows\System32\DRIVERS\mwlPSDFilter.sys -- (mwlPSDFilter [Auto | Running])DRV - [2008-10-09 16:47:12 | 00,016,432 | ---- | M] (Egis Incorporated.) -- C:\Windows\System32\DRIVERS\mwlPSDNServ.sys -- (mwlPSDNServ [Auto | Running])DRV - [2008-10-09 16:47:12 | 00,059,952 | ---- | M] (Egis Incorporated.) -- C:\Windows\System32\DRIVERS\mwlPSDVDisk.sys -- (mwlPSDVDisk [Auto | Running])DRV - [2006-11-02 11:50:19 | 00,045,160 | ---- | M] (IBM Corporation) -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960 [Disabled | Stopped])DRV - [2008-01-21 04:23:23 | 00,030,720 | ---- | M] (National Semiconductor Corporation) -- C:\Windows\System32\DRIVERS\nscirda.sys -- (NSCIRDA [On_Demand | Stopped])DRV - [2008-01-31 03:52:06 | 00,014,848 | ---- | M] (NewTech Infosystems, Inc.) -- C:\Windows\System32\Drivers\NTIDrvr.sys -- (NTIDrvr [On_Demand | Running])DRV - [2006-11-02 09:36:50 | 00,020,608 | ---- | M] (N-trig Innovative Technologies) -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi [Disabled | Stopped])DRV - [2008-09-25 15:39:48 | 00,045,600 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvhda32v.sys -- (NVHDA [On_Demand | Running])DRV - [2008-12-17 01:03:00 | 07,542,656 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\DRIVERS\nvlddmkm.sys -- (nvlddmkm [On_Demand | Running])DRV - [2008-01-21 04:23:21 | 00,102,968 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid [Disabled | Stopped])DRV - [2008-01-21 04:23:21 | 00,045,112 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor [Disabled | Stopped])DRV - [2008-01-21 04:23:24 | 01,122,360 | ---- | M] (QLogic Corporation) -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300 [Disabled | Stopped])DRV - [2006-11-02 11:50:35 | 00,106,088 | ---- | M] (QLogic Corporation) -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx [Disabled | Stopped])DRV - [2008-12-02 23:48:18 | 00,062,976 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\drivers\RTSTOR.SYS -- (RTSTOR [On_Demand | Stopped])DRV - [2006-11-02 08:37:21 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\Windows\System32\drivers\secdrv.sys -- (secdrv [Auto | Running])DRV - [2008-01-21 04:23:26 | 00,074,808 | ---- | M] (Silicon Integrated Systems) -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4 [Disabled | Stopped])DRV - [2009-06-22 22:34:17 | 00,717,296 | ---- | M] () -- C:\Windows\System32\Drivers\sptd.sys -- (sptd [boot | Running])DRV - [2006-11-02 11:50:05 | 00,035,944 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx [Disabled | Stopped])DRV - [2006-11-02 11:49:56 | 00,031,848 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi [Disabled | Stopped])DRV - [2006-11-02 11:50:03 | 00,034,920 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3 [Disabled | Stopped])DRV - [2008-12-05 08:55:14 | 00,204,976 | ---- | M] (Synaptics, Inc.) -- C:\Windows\System32\DRIVERS\SynTP.sys -- (SynTP [On_Demand | Running])DRV - [2008-01-31 03:51:50 | 00,013,824 | ---- | M] (NewTech Infosystems Corporation) -- C:\Windows\System32\drivers\UBHelper.sys -- (UBHelper [boot | Running])DRV - [2008-01-21 04:23:20 | 00,238,648 | ---- | M] (ULi Electronics Inc.) -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci [Disabled | Stopped])DRV - [2006-11-02 11:50:35 | 00,098,408 | ---- | M] (Promise Technology, Inc.) -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata [Disabled | Stopped])DRV - [2008-01-21 04:23:23 | 00,115,816 | ---- | M] (Promise Technology, Inc.) -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2 [Disabled | Stopped])DRV - [2008-01-21 04:23:00 | 00,020,024 | ---- | M] (VIA Technologies, Inc.) -- C:\Windows\system32\drivers\viaide.sys -- (viaide [Disabled | Stopped])DRV - [2008-01-21 04:23:23 | 00,130,616 | ---- | M] (VIA Technologies Inc.,Ltd) -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid [Disabled | Stopped])========== Standard Registry (SafeList) ==================== Internet Explorer ==========IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-onsIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htmIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRiskIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACAW&a...p;m=aspire_5738IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0IE - HKU\S-1-5-21-1956123781-2813589757-2970550474-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&a...p;m=aspire_5738IE - HKU\S-1-5-21-1956123781-2813589757-2970550474-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://global.acer.com [binary data]IE - HKU\S-1-5-21-1956123781-2813589757-2970550474-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htmIE - HKU\S-1-5-21-1956123781-2813589757-2970550474-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896IE - HKU\S-1-5-21-1956123781-2813589757-2970550474-1000\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1IE - HKU\S-1-5-21-1956123781-2813589757-2970550474-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://global.acer.com [binary data]IE - HKU\S-1-5-21-1956123781-2813589757-2970550474-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACAW&a...p;m=aspire_5738IE - HKU\S-1-5-21-1956123781-2813589757-2970550474-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1IE - HKU\S-1-5-21-1956123781-2813589757-2970550474-1000\S-1-5-21-1956123781-2813589757-2970550474-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0========== FireFox ==========FF - prefs.js..extensions.enabledItems: {E9A1DEE0-C623-4439-8932-001E7D17607D}:2.1.0.5FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:1.0FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.11FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009-06-17 20:32:19 | 00,000,000 | ---D | M]FF - HKLM\software\mozilla\Mozilla Firefox 3.0.11\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009-06-17 18:31:22 | 00,000,000 | ---D | M]FF - HKLM\software\mozilla\Mozilla Firefox 3.0.11\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009-06-17 18:31:20 | 00,000,000 | ---D | M][2009-06-17 18:31:54 | 00,000,000 | ---D | M] -- C:\Users\Przemek\AppData\Roaming\mozilla\Extensions[2009-06-17 18:31:54 | 00,000,000 | ---D | M] -- C:\Users\Przemek\AppData\Roaming\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}[2009-06-28 18:45:56 | 00,000,000 | ---D | M] -- C:\Users\Przemek\AppData\Roaming\mozilla\Firefox\Profiles\00qmzhlh.default\extensions[2009-06-17 19:36:26 | 00,000,000 | ---D | M] -- C:\Users\Przemek\AppData\Roaming\mozilla\Firefox\Profiles\00qmzhlh.default\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}[2009-06-17 18:31:21 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions[2009-06-17 18:31:21 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}[2009-06-03 10:17:54 | 00,023,032 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll[2009-06-03 10:17:54 | 00,134,648 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll[2009-06-03 10:17:54 | 00,065,528 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll[2006-06-03 18:43:22 | 00,000,896 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml[2008-04-03 19:19:08 | 00,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml[2008-04-16 06:08:20 | 00,001,706 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml[2007-03-31 19:11:54 | 00,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml[2006-06-03 18:43:22 | 00,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml[2008-03-28 23:36:04 | 00,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml[2007-01-05 13:40:56 | 00,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xmlO1 HOSTS File: (761 bytes) - C:\Windows\System32\drivers\etc\HostsO1 - Hosts: 127.0.0.1 localhostO1 - Hosts: ::1 localhostO2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)O2 - BHO: (AskBar BHO) - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com)O2 - BHO: (IE to GetRight Helper) - {31FF080D-12A3-439A-A2EF-4BA95A3148E8} - C:\Program Files\GetRight\xx2gr.dll (Headlight Software, Inc.)O2 - BHO: (Pomocnik rejestracji usługi Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll (Google Inc.)O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll (Google Inc.)O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)O3 - HKLM\..\Toolbar: (ZoneAlarm Spy Blocker Toolbar) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com)O3 - HKU\S-1-5-21-1956123781-2813589757-2970550474-1000\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)O3 - HKU\S-1-5-21-1956123781-2813589757-2970550474-1000\..\Toolbar\WebBrowser: (ZoneAlarm Spy Blocker Toolbar) - {3041D03E-FD4B-44E0-B742-2D9B88305F98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com)O4 - HKLM..\Run: [Acer ePower Management] C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTray.exe (Acer Incorporated)O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)O4 - HKLM..\Run: [backupManagerTray] C:\Program Files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe (NewTech Infosystems, Inc.)O4 - HKLM..\Run: [Google Desktop Search] File not foundO4 - HKLM..\Run: [LManager] C:\Program Files\Launch Manager\LManager.exe (Dritek System Inc.)O4 - HKLM..\Run: [mwlDaemon] C:\Program Files\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe (EgisTec Inc.)O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.DLL (NVIDIA Corporation)O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.DLL (NVIDIA Corporation)O4 - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (Realtek Semiconductor)O4 - HKLM..\Run: [skytel] C:\Program Files\Realtek\Audio\HDA\Skytel.exe (Realtek Semiconductor Corp.)O4 - HKLM..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics, Inc.)O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)O4 - HKU\S-1-5-19..\Run: [sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.DLL (Microsoft Corporation)O4 - HKU\S-1-5-20..\Run: [sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.DLL (Microsoft Corporation)O4 - HKU\S-1-5-21-1956123781-2813589757-2970550474-1000..\Run: [AQQ] C:\Program Files\WapSter\WapSter AQQ\AQQ.exe (Creative Team S.A.)O4 - HKU\S-1-5-21-1956123781-2813589757-2970550474-1000..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)O4 - HKU\S-1-5-21-1956123781-2813589757-2970550474-1000..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)O4 - HKU\S-1-5-21-1956123781-2813589757-2970550474-1000..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)O4 - HKU\S-1-5-21-1956123781-2813589757-2970550474-1000..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe (Microsoft Corporation)O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 2O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 1O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17O8 - Extra context menu item: Download with GetRight - C:\Program Files\GetRight\GRdownload.htm ()O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)O8 - Extra context menu item: Open with GetRight Browser - C:\Program Files\GetRight\GRbrowse.htm ()O9 - Extra Button: Wpis w blogu - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)O9 - Extra 'Tools' menuitem : &Wpis w blogu w Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\System32\NLAapi.dll (Microsoft Corporation)O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\System32\napinsp.dll (Microsoft Corporation)O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)O13 - gopher Prefix: missingO15 - HKU\S-1-5-21-1956123781-2813589757-2970550474-1000\..Trusted Ranges: GD ([http] in Local intranet)O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 62.179.1.62 62.179.1.63O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll (Microsoft Corporation)O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll (Microsoft Corporation)O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)O18 - Protocol\Filter: - text/xml - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)O18 - Protocol\Filter: - x-sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll (Google Inc.)O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL) - C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google)O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)O31 - SafeBoot: AlternateShell - cmd.exeO32 - HKLM CDRom: AutoRun - 1O32 - AutoRun File - [2006-09-18 23:43:36 | 00,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]O32 - AutoRun File - [2008-06-18 17:59:45 | 00,000,053 | R--- | M] () - D:\autorun.inf -- [ CDFS ]O33 - MountPoints2\{5f0be891-5b73-11de-b289-806e6f6e6963}\Shell - "" = AutoRunO33 - MountPoints2\{5f0be891-5b73-11de-b289-806e6f6e6963}\Shell\AutoRun\command - "" = D:\PENTAGRAM.EXE -- [2008-06-18 17:59:45 | 01,694,352 | R--- | M] ()O34 - HKLM BootExecute: (autocheck) - File not foundO34 - HKLM BootExecute: (autochk) - C:\Windows\System32\autochk.exe (Microsoft Corporation)O34 - HKLM BootExecute: (*) - File not found========== Files/Folders - Created Within 30 Days ==========[2009-06-29 10:40:46 | 00,513,536 | ---- | C] (OldTimer Tools) -- C:\Users\Przemek\Desktop\OTL.exe[2009-06-29 10:15:36 | 00,001,059 | ---- | C] () -- C:\Users\Przemek\Desktop\Spybot - Search & Destroy.lnk[2009-06-29 10:15:25 | 00,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy[2009-06-29 10:15:25 | 00,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy[2009-06-29 10:10:10 | 00,001,878 | ---- | C] () -- C:\Users\Przemek\Desktop\HijackThis.lnk[2009-06-29 10:10:09 | 00,000,000 | ---D | C] -- C:\Program Files\Trend Micro[2009-06-29 10:09:54 | 16,409,960 | ---- | C] (Safer Networking Limited ) -- C:\Users\Przemek\Desktop\spybotsd162.exe[2009-06-29 10:08:51 | 00,812,344 | ---- | C] (Trend Micro Inc.) -- C:\Users\Przemek\Desktop\HJTInstall.exe[2009-06-28 14:59:28 | 00,000,000 | ---D | C] -- C:\ProgramData\MumboJumbo[2009-06-27 23:16:24 | 00,000,000 | ---D | C] -- C:\cda[2009-06-27 10:42:03 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Roaming\PlayFirst[2009-06-27 10:42:03 | 00,000,000 | ---D | C] -- C:\ProgramData\PlayFirst[2009-06-27 10:21:15 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Local\JollyBear[2009-06-27 10:21:15 | 00,000,000 | ---D | C] -- C:\ProgramData\JollyBear[2009-06-25 14:59:24 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Roaming\Media Player Classic[2009-06-24 22:01:19 | 00,023,635 | ---- | C] () -- C:\Users\Przemek\Desktop\You_Got_Served_(NAPiSY-56871).NS.zip[2009-06-24 21:37:01 | 00,024,223 | ---- | C] () -- C:\Users\Przemek\Desktop\gallery-78562758-500x500.jpg[2009-06-22 22:47:35 | 00,000,000 | ---D | C] -- C:\Users\Przemek\Documents\My Games[2009-06-22 22:46:24 | 00,002,012 | ---- | C] () -- C:\Users\Public\Desktop\Fable - The Lost Chapters.lnk[2009-06-22 22:46:15 | 02,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_25.dll[2009-06-22 22:37:12 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Roaming\DAEMON Tools Pro[2009-06-22 22:37:12 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Roaming\DAEMON Tools[2009-06-22 22:36:33 | 00,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite[2009-06-22 22:36:29 | 00,001,739 | ---- | C] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk[2009-06-22 22:36:27 | 00,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite[2009-06-22 22:34:17 | 00,717,296 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys[2009-06-22 22:34:16 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Roaming\DAEMON Tools Lite[2009-06-22 22:33:06 | 00,000,000 | ---D | C] -- C:\Windows\pss[2009-06-22 22:30:37 | 07,321,032 | ---- | C] (DT Soft Ltd.) -- C:\Users\Przemek\Desktop\daemon4303-lite.exe[2009-06-22 19:46:40 | 00,000,000 | ---D | C] -- C:\Filmy[2009-06-22 19:46:17 | 00,000,000 | ---D | C] -- C:\Anime[2009-06-22 19:45:52 | 00,000,000 | ---D | C] -- C:\Gry[2009-06-22 19:45:10 | 00,000,000 | ---D | C] -- C:\Program Files\Combined Community Codec Pack[2009-06-22 19:44:01 | 06,833,525 | ---- | C] (CCCP Project ) -- C:\Users\Przemek\Desktop\Combined-Community-Codec-Pack-2008-09-21.exe[2009-06-22 19:25:01 | 00,000,000 | ---D | C] -- C:\Users\Przemek\Desktop\Zdiecia do przegrania[2009-06-22 19:24:37 | 00,000,000 | ---D | C] -- C:\Users\Przemek\Desktop\tlove[2009-06-22 16:12:51 | 00,000,951 | ---- | C] () -- C:\Users\Przemek\Desktop\Lineage 2 Dex - Hellbound.lnk[2009-06-22 16:08:15 | 00,005,174 | R--- | C] () -- C:\Windows\System32\nppt9x.vxd[2009-06-22 16:08:15 | 00,004,682 | R--- | C] (INCA Internet Co., Ltd.) -- C:\Windows\System32\npptNT2.sys[2009-06-22 15:57:50 | 00,000,000 | ---D | C] -- C:\Program Files\Lineage II[2009-06-22 15:57:08 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Roaming\WinRAR[2009-06-22 15:56:58 | 00,000,000 | ---D | C] -- C:\Program Files\WinRAR[2009-06-22 15:56:46 | 01,309,117 | ---- | C] () -- C:\Users\Przemek\Desktop\wrar380pl.exe[2009-06-22 15:55:53 | 00,662,779 | ---- | C] () -- C:\Users\Przemek\Desktop\L2HBUpdater.rar[2009-06-22 13:55:25 | 00,000,000 | ---D | C] -- C:\Users\Przemek\Documents\OpenTTD[2009-06-22 10:30:04 | 00,000,000 | ---D | C] -- C:\Downloads[2009-06-22 10:10:08 | 00,085,504 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll[2009-06-22 10:10:07 | 00,060,273 | ---- | C] (Open Source Software community project) -- C:\Windows\System32\pthreadGC2.dll[2009-06-22 10:10:05 | 00,000,000 | ---D | C] -- C:\Program Files\ffdshow[2009-06-21 21:36:34 | 00,032,256 | ---- | C] () -- C:\Users\Przemek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini[2009-06-21 12:17:39 | 00,000,000 | R--D | C] -- C:\Users\Przemek\Documents\Notes[2009-06-20 17:17:44 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Roaming\GetRight[2009-06-20 17:17:36 | 00,000,000 | ---D | C] -- C:\Program Files\GetRight[2009-06-20 03:22:43 | 00,021,231 | ---- | C] () -- C:\Users\Przemek\Desktop\spore.torrent[2009-06-19 15:39:47 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Roaming\COWON[2009-06-19 15:25:50 | 00,000,000 | ---D | C] -- C:\ProgramData\AirportMania[2009-06-19 15:22:31 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Local\CyberLink[2009-06-19 15:22:30 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Local\Acer Arcade Deluxe[2009-06-19 15:22:24 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Roaming\SoftDMA[2009-06-19 15:22:24 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Local\PlayMovie[2009-06-19 15:22:16 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Roaming\CyberLink[2009-06-19 15:22:10 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Roaming\eSobi[2009-06-19 14:50:44 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\COWON[2009-06-19 14:50:43 | 00,000,000 | ---D | C] -- C:\Program Files\JetAudio[2009-06-19 14:37:58 | 00,000,000 | ---D | C] -- C:\Muzyka[2009-06-19 14:35:11 | 00,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_00_00.Wdf[2009-06-19 13:54:57 | 00,000,000 | ---D | C] -- C:\utorrent[2009-06-19 13:37:57 | 00,000,756 | ---- | C] () -- C:\Users\Przemek\Desktop\µTorrent.lnk[2009-06-19 13:37:57 | 00,000,000 | ---D | C] -- C:\Program Files\uTorrent[2009-06-19 13:37:06 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Roaming\uTorrent[2009-06-19 13:36:56 | 00,022,767 | ---- | C] () -- C:\Users\Przemek\Desktop\[isoHunt] The.Elder.Scrolls.IV.Oblivion + NoDVD Crack.torrent[2009-06-19 12:45:07 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Local\Microsoft Games[2009-06-19 09:01:36 | 00,000,809 | ---- | C] () -- C:\Users\Przemek\Desktop\Acer Crystal Eye webcam.lnk[2009-06-18 10:37:09 | 00,000,000 | ---D | C] -- C:\Program Files\Morrowind[2009-06-18 09:22:15 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Local\Adobe[2009-06-18 06:08:47 | 00,002,429 | -HS- | C] () -- C:\Patch.rev[2009-06-18 06:08:45 | 00,380,928 | ---- | C] (Acer Incorporated) -- C:\Windows\AcerStore.exe[2009-06-18 06:08:45 | 00,049,152 | ---- | C] ( ) -- C:\Windows\Interop.IWshRuntimeLibrary.dll[2009-06-18 06:08:32 | 00,199,176 | ---- | C] (Dritek System Inc.) -- C:\Windows\GVUni.exe[2009-06-18 06:08:00 | 00,207,368 | ---- | C] (Dritek System Inc.) -- C:\Windows\UNINST32.EXE[2009-06-18 06:08:00 | 00,021,264 | ---- | C] (Dritek System Inc.) -- C:\Windows\System32\drivers\DKbFltr.sys[2009-06-18 06:07:57 | 01,112,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WdfCoInstaller01007.dll[2009-06-18 06:07:57 | 00,206,120 | ---- | C] (Synaptics, Inc.) -- C:\Windows\System32\SynCtrl.dll[2009-06-18 06:07:57 | 00,204,976 | ---- | C] (Synaptics, Inc.) -- C:\Windows\System32\drivers\SynTP.sys[2009-06-18 06:07:57 | 00,169,256 | ---- | C] (Synaptics, Inc.) -- C:\Windows\System32\SynCOM.dll[2009-06-18 06:07:57 | 00,161,064 | ---- | C] (Synaptics, Inc.) -- C:\Windows\System32\SynTPAPI.dll[2009-06-18 06:07:57 | 00,120,104 | ---- | C] (Synaptics, Inc.) -- C:\Windows\System32\SynTPCo4.dll[2009-06-18 06:07:42 | 00,952,832 | ---- | C] (Atheros Communications, Inc.) -- C:\Windows\System32\drivers\athr.sys[2009-06-18 06:07:15 | 01,202,560 | ---- | C] (Agere Systems) -- C:\Windows\System32\drivers\AGRSM.sys[2009-06-18 06:07:15 | 00,054,824 | ---- | C] (Agere Systems) -- C:\Windows\agrsmdel.exe[2009-06-18 06:07:15 | 00,013,312 | ---- | C] (Agere Systems) -- C:\Windows\System32\agrsmsvc.exe[2009-06-18 06:07:15 | 00,013,312 | ---- | C] (Agere Systems) -- C:\Windows\System32\agrscoin.dll[2009-06-18 06:06:58 | 00,039,041 | ---- | C] () -- C:\Windows\System32\nvwsapps.xml[2009-06-18 06:06:58 | 00,009,192 | ---- | C] () -- C:\Windows\System32\nvdisp.nvu[2009-06-18 06:06:58 | 00,001,431 | ---- | C] () -- C:\Windows\System32\nvhda.nvu[2009-06-18 06:06:57 | 00,795,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpinst.exe[2009-06-18 06:06:57 | 00,201,766 | ---- | C] () -- C:\Windows\System32\nvapps.xml[2009-06-18 06:06:44 | 00,020,480 | ---- | C] (Wistron Corp.) -- C:\Windows\PATCHFUL.EXE[2009-06-18 06:06:44 | 00,000,193 | ---- | C] () -- C:\Windows\USER.XML[2009-06-18 06:06:44 | 00,000,000 | ---D | C] -- C:\Windows\Lan[2009-06-17 22:31:30 | 00,007,592 | ---- | C] () -- C:\Users\Przemek\AppData\Local\d3d9caps.dat[2009-06-17 21:23:22 | 32,158,10560 | -HS- | C] () -- C:\hiberfil.sys[2009-06-17 21:19:38 | 00,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution[2009-06-17 21:19:04 | 00,000,000 | -HSD | C] -- C:\System Volume Information[2009-06-17 21:17:34 | 00,000,000 | ---D | C] -- C:\ProgramData\Oberon Games[2009-06-17 20:27:55 | 00,097,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardapi.dll[2009-06-17 20:27:54 | 00,105,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll[2009-06-17 20:27:53 | 00,037,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardcpl.cpl[2009-06-17 20:27:52 | 00,622,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardagt.exe[2009-06-17 20:27:52 | 00,043,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll[2009-06-17 20:27:52 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardres.dll[2009-06-17 20:27:49 | 00,781,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationNative_v0300.dll[2009-06-17 20:27:45 | 00,326,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe[2009-06-17 20:25:12 | 00,000,000 | -HSD | C] -- C:\Users\Przemek\AppData\Roaming\.#[2009-06-17 20:22:00 | 00,096,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dfshim.dll[2009-06-17 20:21:57 | 00,282,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscoree.dll[2009-06-17 20:21:56 | 00,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll[2009-06-17 20:21:45 | 00,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscorier.dll[2009-06-17 20:21:39 | 00,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscories.dll[2009-06-17 20:06:01 | 00,562,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtcprx.dll[2009-06-17 20:06:01 | 00,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xolehlp.dll[2009-06-17 20:05:58 | 00,376,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winhttp.dll[2009-06-17 20:05:56 | 02,927,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe[2009-06-17 20:05:53 | 02,033,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys[2009-06-17 20:05:38 | 03,599,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe[2009-06-17 20:05:38 | 00,551,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rpcss.dll[2009-06-17 20:05:37 | 03,547,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe[2009-06-17 20:05:36 | 00,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe[2009-06-17 20:05:36 | 00,183,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdohlp.dll[2009-06-17 20:05:36 | 00,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasrecst.dll[2009-06-17 20:05:36 | 00,054,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasads.dll[2009-06-17 20:05:36 | 00,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasdatastore.dll[2009-06-17 20:05:36 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll[2009-06-17 20:05:35 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iashost.exe[2009-06-17 20:05:31 | 01,255,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lsasrv.dll[2009-06-17 20:05:31 | 00,888,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kernel32.dll[2009-06-17 20:05:30 | 00,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secur32.dll[2009-06-17 20:05:30 | 00,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\amxread.dll[2009-06-17 20:05:30 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apilogen.dll[2009-06-17 20:05:27 | 10,622,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmp.dll[2009-06-17 20:05:26 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwmp.dll[2009-06-17 20:05:25 | 08,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL[2009-06-17 20:05:25 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdxm.ocx[2009-06-17 20:05:25 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxmasf.dll[2009-06-17 20:03:56 | 00,636,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\localspl.dll[2009-06-17 20:03:54 | 00,268,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\schannel.dll[2009-06-17 20:03:52 | 00,288,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\srv.sys[2009-06-17 20:01:53 | 03,581,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.dll[2009-06-17 20:01:51 | 06,069,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieframe.dll[2009-06-17 20:01:50 | 01,166,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\urlmon.dll[2009-06-17 20:01:50 | 00,827,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wininet.dll[2009-06-17 20:01:49 | 00,458,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll[2009-06-17 20:01:49 | 00,389,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll[2009-06-17 20:01:49 | 00,270,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iertutil.dll[2009-06-17 20:01:48 | 00,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec[2009-06-17 20:01:48 | 00,230,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll[2009-06-17 20:01:48 | 00,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\occache.dll[2009-06-17 20:01:48 | 00,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieencode.dll[2009-06-17 20:01:48 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe[2009-06-17 20:01:47 | 00,671,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll[2009-06-17 20:01:47 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll[2009-06-17 20:01:46 | 01,383,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb[2009-06-17 20:00:29 | 00,784,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rpcrt4.dll[2009-06-17 19:41:56 | 00,051,376 | ---- | C] (ALWIL Software) -- C:\Windows\System32\drivers\aswTdi.sys[2009-06-17 19:41:56 | 00,023,152 | ---- | C] (ALWIL Software) -- C:\Windows\System32\drivers\aswRdr.sys[2009-06-17 19:41:55 | 00,097,480 | ---- | C] (ALWIL Software) -- C:\Windows\System32\AvastSS.scr[2009-06-17 19:41:54 | 00,114,768 | ---- | C] (ALWIL Software) -- C:\Windows\System32\drivers\aswSP.sys[2009-06-17 19:41:54 | 00,020,560 | ---- | C] (ALWIL Software) -- C:\Windows\System32\drivers\aswFsBlk.sys[2009-06-17 19:41:28 | 01,256,296 | ---- | C] (ALWIL Software) -- C:\Windows\System32\aswBoot.exe[2009-06-17 19:41:28 | 00,380,928 | ---- | C] () -- C:\Windows\System32\actskin4.ocx[2009-06-17 19:41:28 | 00,051,792 | ---- | C] (ALWIL Software) -- C:\Windows\System32\drivers\aswMonFlt.sys[2009-06-17 19:41:26 | 00,000,000 | ---D | C] -- C:\Program Files\Alwil Software[2009-06-17 19:36:23 | 00,000,000 | ---D | C] -- C:\Program Files\AskBarDis[2009-06-17 19:36:10 | 00,170,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tcpipcfg.dll[2009-06-17 19:36:10 | 00,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netiougc.exe[2009-06-17 19:26:55 | 00,048,253 | ---- | C] () -- C:\ProgramData\nvModes.001[2009-06-17 19:12:01 | 00,048,253 | ---- | C] () -- C:\ProgramData\nvModes.dat[2009-06-17 18:51:16 | 00,000,000 | ---D | C] -- C:\ProgramData\CheckPoint[2009-06-17 18:51:16 | 00,000,000 | ---D | C] -- C:\Program Files\Zone Labs[2009-06-17 18:50:24 | 00,000,000 | ---D | C] -- C:\Windows\Internet Logs[2009-06-17 18:49:44 | 00,000,000 | ---D | C] -- C:\Program Files\WapSter[2009-06-17 18:31:32 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Roaming\Mozilla[2009-06-17 18:31:32 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Local\Mozilla[2009-06-17 18:31:19 | 00,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox[2009-06-17 18:27:09 | 00,000,000 | ---D | C] -- C:\Users\Public\Documents\Acer[2009-06-17 15:17:25 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Roaming\Adobe[2009-06-17 14:59:16 | 00,000,000 | -H-D | C] -- C:\MyWinLockerData[2009-06-17 14:57:48 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Local\EgisTec[2009-06-17 14:57:48 | 00,000,000 | ---D | C] -- C:\ProgramData\EgisTec[2009-06-17 14:57:34 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Roaming\Google[2009-06-17 14:54:03 | 02,899,010 | -H-- | C] () -- C:\Users\Przemek\AppData\Local\IconCache.db[2009-06-17 14:53:32 | 00,000,092 | ---- | C] () -- C:\Windows\GridV.UNI[2009-06-17 14:53:31 | 00,000,000 | ---D | C] -- C:\Program Files\Acer Inc[2009-06-17 14:51:54 | 00,000,000 | ---D | C] -- C:\ProgramData\eSobi[2009-06-17 14:51:42 | 00,000,000 | ---D | C] -- C:\Program Files\eSobi[2009-06-17 14:51:19 | 01,809,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuaueng.dll[2009-06-17 14:51:19 | 01,524,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll[2009-06-17 14:51:19 | 00,051,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuauclt.exe[2009-06-17 14:51:19 | 00,043,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll[2009-06-17 14:50:57 | 00,083,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll[2009-06-17 14:50:57 | 00,034,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll[2009-06-17 14:50:49 | 00,162,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll[2009-06-17 14:50:49 | 00,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe[2009-06-17 14:50:26 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\EgisTec[2009-06-17 14:50:25 | 00,000,000 | ---D | C] -- C:\Program Files\EgisTec Egis Software Update[2009-06-17 14:50:17 | 00,000,000 | ---D | C] -- C:\Program Files\EgisTec[2009-06-17 14:49:43 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Local\Acer ePower Management V4[2009-06-17 14:47:32 | 00,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwinsat.dll[2009-06-17 14:46:52 | 00,260,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasmans.dll[2009-06-17 14:46:23 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Roaming\Macromedia[2009-06-17 14:46:22 | 00,000,000 | ---D | C] -- C:\Windows\Screensavers[2009-06-17 14:45:53 | 00,000,083 | ---- | C] () -- C:\Windows\LManager.UNI[2009-06-17 14:45:50 | 00,000,000 | ---D | C] -- C:\Program Files\Launch Manager[2009-06-17 14:45:42 | 00,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_SynTP_01007.Wdf[2009-06-17 14:45:25 | 00,000,000 | ---D | C] -- C:\Program Files\Synaptics[2009-06-17 14:44:28 | 00,200,704 | ---- | C] () -- C:\Windows\PLFSetI.exe[2009-06-17 14:44:28 | 00,106,496 | ---- | C] () -- C:\Windows\FixUVC.exe[2009-06-17 14:44:28 | 00,000,074 | ---- | C] () -- C:\Windows\PidList.ini[2009-06-17 14:44:28 | 00,000,000 | ---D | C] -- C:\Program Files\Acer[2009-06-17 14:44:13 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Roaming\InstallShield[2009-06-17 14:43:32 | 00,000,000 | ---D | C] -- C:\Windows\System32\RTCOM[2009-06-17 14:42:55 | 00,319,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\DIFxAPI.dll[2009-06-17 14:42:55 | 00,090,772 | ---- | C] () -- C:\Windows\System32\drivers\RtConvEQ.DAT[2009-06-17 14:42:55 | 00,000,536 | ---- | C] () -- C:\Windows\System32\drivers\RtHdatEx.dat[2009-06-17 14:42:55 | 00,000,008 | ---- | C] () -- C:\Windows\System32\drivers\rtkhdaud.dat[2009-06-17 14:42:52 | 01,777,664 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\WavesLib.dll[2009-06-17 14:42:51 | 00,339,968 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSXT.dll[2009-06-17 14:42:51 | 00,185,776 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSHD.dll[2009-06-17 14:42:51 | 00,167,936 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSHP360.dll[2009-06-17 14:42:51 | 00,135,168 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSWOW.dll[2009-06-17 14:42:48 | 00,282,112 | ---- | C] (Dolby Laboratories) -- C:\Windows\System32\RTPCEE32.dll[2009-06-17 14:42:44 | 01,933,312 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioEQ.dll[2009-06-17 14:42:43 | 00,159,744 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO20.dll[2009-06-17 14:42:43 | 00,126,976 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO.dll[2009-06-17 14:42:40 | 00,159,232 | ---- | C] (Windows ® Codename Longhorn DDK provider) -- C:\Windows\System32\FMAPO.dll[2009-06-17 14:42:40 | 00,000,000 | ---D | C] -- C:\Program Files\Realtek[2009-06-17 14:42:39 | 00,000,000 | ---D | C] -- C:\Users\Przemek\Documents\Moje rozszerzenia Google Gadgets[2009-06-17 14:42:37 | 00,000,000 | -H-D | C] -- C:\Program Files\Temp[2009-06-17 14:42:35 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Local\Google[2009-06-17 14:42:19 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Roaming\PowerCinema[2009-06-17 14:42:14 | 00,070,176 | ---- | C] () -- C:\Users\Przemek\AppData\Local\GDIPFONTCACHEV1.DAT[2009-06-17 14:42:04 | 00,000,000 | ---D | C] -- C:\Program Files\Convesoft[2009-06-17 14:41:51 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Roaming\Identities[2009-06-17 14:41:44 | 00,000,000 | ---D | C] -- C:\ProgramData\Partner[2009-06-17 14:41:39 | 00,000,000 | ---D | C] -- C:\ProgramData\Google[2009-06-17 14:41:24 | 00,000,000 | ---D | C] -- C:\Program Files\Google[2009-06-17 14:40:15 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Local\VirtualStore[2009-06-17 14:40:15 | 00,000,000 | ---D | C] -- C:\ProgramData\NVIDIA[2009-06-17 14:40:12 | 00,000,000 | --SD | C] -- C:\Users\Przemek\AppData\Roaming\Microsoft[2009-06-17 14:40:12 | 00,000,000 | -HSD | C] -- C:\Users\Przemek\Documents\Moje wideo[2009-06-17 14:40:12 | 00,000,000 | -HSD | C] -- C:\Users\Przemek\Documents\Moje obrazy[2009-06-17 14:40:12 | 00,000,000 | -HSD | C] -- C:\Users\Przemek\Documents\Moja muzyka[2009-06-17 14:40:12 | 00,000,000 | -HSD | C] -- C:\Users\Przemek\AppData\Local\Temporary Internet Files[2009-06-17 14:40:12 | 00,000,000 | -HSD | C] -- C:\Users\Przemek\AppData\Local\Historia[2009-06-17 14:40:12 | 00,000,000 | -HSD | C] -- C:\Users\Przemek\AppData\Local\Dane aplikacji[2009-06-17 14:40:12 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Roaming\Media Center Programs[2009-06-17 14:40:12 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Roaming\Acer GameZone Console[2009-06-17 14:40:12 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Local\Temp[2009-06-17 14:40:12 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Local\Microsoft[2009-06-17 14:35:23 | 00,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moje wideo[2009-06-17 14:35:23 | 00,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moje obrazy[2009-06-17 14:35:23 | 00,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moja muzyka[2009-06-17 14:35:23 | 00,000,000 | -HSD | C] -- C:\ProgramData\Ulubione[2009-06-17 14:35:23 | 00,000,000 | -HSD | C] -- C:\ProgramData\Szablony[2009-06-17 14:35:23 | 00,000,000 | -HSD | C] -- C:\ProgramData\Pulpit[2009-06-17 14:35:23 | 00,000,000 | -HSD | C] -- C:\ProgramData\Menu Start[2009-06-17 14:35:23 | 00,000,000 | -HSD | C] -- C:\ProgramData\Dokumenty[2009-06-17 14:35:23 | 00,000,000 | -HSD | C] -- C:\ProgramData\Dane aplikacji[2009-06-17 14:35:23 | 00,000,000 | -HSD | C] -- C:\Documents and Settings[2009-03-13 05:25:45 | 00,000,028 | ---- | C] () -- C:\Windows\WisLangCode.ini[2009-02-11 22:03:58 | 00,872,448 | ---- | C] () -- C:\Windows\iconv.dll[2009-02-11 22:03:58 | 00,743,424 | ---- | C] () -- C:\Windows\libxml2.dll[2009-02-11 22:03:57 | 00,000,059 | ---- | C] () -- C:\Windows\Prelaunch.ini[2006-11-02 14:35:32 | 00,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll[2006-11-02 12:23:31 | 00,000,219 | ---- | C] () -- C:\Windows\system.ini[2006-11-02 12:23:31 | 00,000,144 | ---- | C] () -- C:\Windows\win.ini[2006-11-02 09:40:29 | 00,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini========== Files - Modified Within 30 Days ==========[2009-06-29 12:26:53 | 00,048,253 | ---- | M] () -- C:\ProgramData\nvModes.001[2009-06-29 11:55:21 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat[2009-06-29 10:55:36 | 01,468,980 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI[2009-06-29 10:55:36 | 00,662,056 | ---- | M] () -- C:\Windows\System32\perfh015.dat[2009-06-29 10:55:36 | 00,587,178 | ---- | M] () -- C:\Windows\System32\perfh009.dat[2009-06-29 10:55:36 | 00,126,908 | ---- | M] () -- C:\Windows\System32\perfc015.dat[2009-06-29 10:55:36 | 00,101,250 | ---- | M] () -- C:\Windows\System32\perfc009.dat[2009-06-29 10:51:31 | 00,000,374 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts.ics[2009-06-29 10:51:25 | 00,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0[2009-06-29 10:51:25 | 00,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0[2009-06-29 10:51:21 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT[2009-06-29 10:51:10 | 32,158,10560 | -HS- | M] () -- C:\hiberfil.sys[2009-06-29 10:50:12 | 02,899,010 | -H-- | M] () -- C:\Users\Przemek\AppData\Local\IconCache.db[2009-06-29 10:40:52 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Users\Przemek\Desktop\OTL.exe[2009-06-29 10:15:36 | 00,001,059 | ---- | M] () -- C:\Users\Przemek\Desktop\Spybot - Search & Destroy.lnk[2009-06-29 10:11:37 | 16,409,960 | ---- | M] (Safer Networking Limited ) -- C:\Users\Przemek\Desktop\spybotsd162.exe[2009-06-29 10:10:10 | 00,001,878 | ---- | M] () -- C:\Users\Przemek\Desktop\HijackThis.lnk[2009-06-29 10:08:54 | 00,812,344 | ---- | M] (Trend Micro Inc.) -- C:\Users\Przemek\Desktop\HJTInstall.exe[2009-06-29 00:52:15 | 00,048,253 | ---- | M] () -- C:\ProgramData\nvModes.dat[2009-06-28 11:09:34 | 00,032,256 | ---- | M] () -- C:\Users\Przemek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini[2009-06-24 22:01:20 | 00,023,635 | ---- | M] () -- C:\Users\Przemek\Desktop\You_Got_Served_(NAPiSY-56871).NS.zip[2009-06-24 21:37:38 | 00,024,223 | ---- | M] () -- C:\Users\Przemek\Desktop\gallery-78562758-500x500.jpg[2009-06-22 22:46:24 | 00,002,012 | ---- | M] () -- C:\Users\Public\Desktop\Fable - The Lost Chapters.lnk[2009-06-22 22:36:29 | 00,001,739 | ---- | M] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk[2009-06-22 22:34:17 | 00,717,296 | ---- | M] () -- C:\Windows\System32\drivers\sptd.sys[2009-06-22 22:25:36 | 07,321,032 | ---- | M] (DT Soft Ltd.) -- C:\Users\Przemek\Desktop\daemon4303-lite.exe[2009-06-22 19:44:48 | 06,833,525 | ---- | M] (CCCP Project ) -- C:\Users\Przemek\Desktop\Combined-Community-Codec-Pack-2008-09-21.exe[2009-06-22 16:12:51 | 00,000,951 | ---- | M] () -- C:\Users\Przemek\Desktop\Lineage 2 Dex - Hellbound.lnk[2009-06-22 15:56:52 | 01,309,117 | ---- | M] () -- C:\Users\Przemek\Desktop\wrar380pl.exe[2009-06-22 15:55:55 | 00,662,779 | ---- | M] () -- C:\Users\Przemek\Desktop\L2HBUpdater.rar[2009-06-21 23:32:57 | 00,007,592 | ---- | M] () -- C:\Users\Przemek\AppData\Local\d3d9caps.dat[2009-06-20 03:22:45 | 00,021,231 | ---- | M] () -- C:\Users\Przemek\Desktop\spore.torrent[2009-06-19 14:35:11 | 00,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_00_00.Wdf[2009-06-19 13:37:57 | 00,000,756 | ---- | M] () -- C:\Users\Przemek\Desktop\µTorrent.lnk[2009-06-19 13:36:57 | 00,022,767 | ---- | M] () -- C:\Users\Przemek\Desktop\[isoHunt] The.Elder.Scrolls.IV.Oblivion + NoDVD Crack.torrent[2009-06-19 09:01:36 | 00,000,809 | ---- | M] () -- C:\Users\Przemek\Desktop\Acer Crystal Eye webcam.lnk[2009-06-17 21:36:14 | 00,067,891 | ---- | M] () -- C:\Windows\System32\license.rtf[2009-06-17 20:48:41 | 00,294,648 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT[2009-06-17 19:41:53 | 00,002,577 | ---- | M] () -- C:\Windows\System32\config.nt[2009-06-17 14:59:17 | 00,000,193 | ---- | M] () -- C:\Windows\USER.XML[2009-06-17 14:53:39 | 00,000,206 | ---- | M] () -- C:\Windows\Factory.xml[2009-06-17 14:53:32 | 00,000,092 | ---- | M] () -- C:\Windows\GridV.UNI[2009-06-17 14:45:53 | 00,000,083 | ---- | M] () -- C:\Windows\LManager.UNI[2009-06-17 14:45:42 | 00,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_SynTP_01007.Wdf[2009-06-17 14:44:10 | 00,200,704 | ---- | M] () -- C:\Windows\PLFSetI.exe[2009-06-17 14:44:10 | 00,000,074 | ---- | M] () -- C:\Windows\PidList.ini[2009-06-17 14:42:55 | 00,319,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\DIFxAPI.dll[2009-06-17 14:42:14 | 00,070,176 | ---- | M] () -- C:\Users\Przemek\AppData\Local\GDIPFONTCACHEV1.DAT[2009-06-02 18:11:16 | 00,085,504 | ---- | M] () -- C:\Windows\System32\ff_vfw.dll========== LOP Check ==========[2009-06-17 14:59:00 | 00,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming[2009-03-12 22:00:58 | 00,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\Acer GameZone Console[2006-11-02 14:37:34 | 00,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\Media Center Programs[2009-06-17 14:59:00 | 00,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming[2009-03-12 22:00:58 | 00,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\Acer GameZone Console[2006-11-02 14:37:34 | 00,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\Media Center Programs[2009-06-27 16:41:24 | 00,000,000 | ---D | M] -- C:\Users\Gość\AppData\Roaming[2009-03-12 22:00:58 | 00,000,000 | ---D | M] -- C:\Users\Gość\AppData\Roaming\Acer GameZone Console[2006-11-02 14:37:34 | 00,000,000 | ---D | M] -- C:\Users\Gość\AppData\Roaming\Media Center Programs[2009-06-27 14:28:21 | 00,000,000 | ---D | M] -- C:\Users\Gość\AppData\Roaming\PlayFirst[2009-06-27 16:40:28 | 00,000,000 | ---D | M] -- C:\Users\Gość\AppData\Roaming\Template[2009-06-27 10:42:03 | 00,000,000 | ---D | M] -- C:\Users\Przemek\AppData\Roaming[2009-06-27 11:28:35 | 00,000,000 | -HSD | M] -- C:\Users\Przemek\AppData\Roaming\.#[2009-03-12 22:00:58 | 00,000,000 | ---D | M] -- C:\Users\Przemek\AppData\Roaming\Acer GameZone Console[2009-06-19 15:39:47 | 00,000,000 | ---D | M] -- C:\Users\Przemek\AppData\Roaming\COWON[2009-06-19 15:22:24 | 00,000,000 | ---D | M] -- C:\Users\Przemek\AppData\Roaming\CyberLink[2009-06-22 22:37:12 | 00,000,000 | ---D | M] -- C:\Users\Przemek\AppData\Roaming\DAEMON Tools[2009-06-22 22:37:52 | 00,000,000 | ---D | M] -- C:\Users\Przemek\AppData\Roaming\DAEMON Tools Lite[2009-06-22 22:37:12 | 00,000,000 | ---D | M] -- C:\Users\Przemek\AppData\Roaming\DAEMON Tools Pro[2009-06-19 15:22:10 | 00,000,000 | ---D | M] -- C:\Users\Przemek\AppData\Roaming\eSobi[2009-06-22 10:30:28 | 00,000,000 | ---D | M] -- C:\Users\Przemek\AppData\Roaming\GetRight[2006-11-02 14:37:34 | 00,000,000 | ---D | M] -- C:\Users\Przemek\AppData\Roaming\Media Center Programs[2009-06-27 10:42:03 | 00,000,000 | ---D | M] -- C:\Users\Przemek\AppData\Roaming\PlayFirst[2009-06-19 15:22:19 | 00,000,000 | ---D | M] -- C:\Users\Przemek\AppData\Roaming\PowerCinema[2009-06-19 15:22:32 | 00,000,000 | ---D | M] -- C:\Users\Przemek\AppData\Roaming\SoftDMA[2009-06-29 12:30:50 | 00,000,000 | ---D | M] -- C:\Users\Przemek\AppData\Roaming\uTorrent[2009-06-29 10:51:21 | 00,000,006 | -H-- | M] () -- C:\Windows\Tasks\SA.DAT[2009-06-29 10:50:16 | 00,032,296 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT========== Purity Check ==================== Alternate Data Streams ==========@Alternate Data Stream - 119 bytes -> C:\ProgramData\Temp:BB24555F@Alternate Data Stream - 119 bytes -> C:\ProgramData\Temp:B203B914@Alternate Data Stream - 116 bytes -> C:\ProgramData\Temp:CDFF58FE@Alternate Data Stream - 116 bytes -> C:\ProgramData\Temp:4F636E25@Alternate Data Stream - 113 bytes -> C:\ProgramData\Temp:ADE16379@Alternate Data Stream - 113 bytes -> C:\ProgramData\Temp:ABE89FFE@Alternate Data Stream - 112 bytes -> C:\ProgramData\Temp:B623B5B8@Alternate Data Stream - 110 bytes -> C:\ProgramData\Temp:9E22BBE8@Alternate Data Stream - 108 bytes -> C:\ProgramData\Temp:814B9485@Alternate Data Stream - 105 bytes -> C:\ProgramData\Temp:CE0A077E@Alternate Data Stream - 100 bytes -> C:\ProgramData\Temp:798A3728@Alternate Data Stream - 100 bytes -> C:\ProgramData\Temp:41099CE9< End of report >
Gość komentarz 29 czerwca 2009 komentarz 29 czerwca 2009 Ogólnie jest OK. 1. Uruchom OTL i w oknie Custom Scans/Fixes wklej następujący skrypt: :OTLO32 - AutoRun File - [2008-06-18 17:59:45 | 00,000,053 | R--- | M] () - D:\autorun.inf -- [ CDFS ]O33 - MountPoints2\{5f0be891-5b73-11de-b289-806e6f6e6963}\Shell - "" = AutoRunO33 - MountPoints2\{5f0be891-5b73-11de-b289-806e6f6e6963}\Shell\AutoRun\command - "" = D:\PENTAGRAM.EXE -- [2008-06-18 17:59:45 | 01,694,352 | R--- | M] ()PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation):Commands[emptytemp][start explorer][Reboot] Klikasz w Run Fix. Zatwierdzasz restart komputera. 2. Odplasz ponownie OTL i wywołujesz go z opcji CleanUp, zgadasz się na czyszczenie + na restart komputera. 3. Przeskanuj obszar mojego komputera http://www.kaspersky.pl/virusscanner.html (uruchom przez IE) Daj raport z niego na forum. 4. Użyj programu Malwarebytes. Wciskamy Skanuj, wybieramy dyski do skanowania i Rozpoczynamy skanowanie, na końcu wciskamy Usuń zaznaczone jak będą i Ok. Wrzuć wygenerowany raport po usuwaniu MBAMem. .
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.