kasiad_235 utworzono 30 czerwca 2009 utworzono 30 czerwca 2009 (edytowane) Witam Bardzo proszę o pomoc, niestety nie znam się na komputerach na tyle dobrze żeby sobie poradzić. Proszę o sprawdzenie loga.. Z góry dziękuje za pomoc...... Logfile of Trend Micro HijackThis v2.0.2Scan saved at 12:05:31, on 2009-06-30Platform: Windows XP Dodatek SP. 1 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\csrss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Alwil Software\Avast4\aswUpdSv.exeC:\Program Files\Alwil Software\Avast4\ashServ.exeC:\WINDOWS\Explorer.EXEC:\WINDOWS\SOUNDMAN.EXEC:\Program Files\Silicon Integrated Systems\SiSRaidPackage\SRaid.exeC:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exeC:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exeC:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeC:\WINDOWS\System32\ctfmon.exeC:\Program Files\Messenger\msmsgs.exeC:\Program Files\Nowe Gadu-Gadu\gg.exeC:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\Phone\Skype.exeC:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exeC:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exeC:\Program Files\Nowe Gadu-Gadu\spellchecker_gg.exeC:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exeC:\WINDOWS\system32\spoolsv.exeC:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\Plugin Manager\skypePM.exeC:\WINDOWS\System32\Ati2evxx.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\System32\wdfmgr.exeC:\Program Files\Canon\CAL\CALMAIN.exeC:\WINDOWS\System32\wuauclt.exeC:\Program Files\Alwil Software\Avast4\ashWebSv.exeC:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exeC:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exeC:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exeC:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqbam08.exeC:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqgpc01.exeC:\Program Files\Internet Explorer\IEXPLORE.EXEC:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\hpswp_clipbook.exeC:\Documents and Settings\dom\HiJackThis.exeC:\WINDOWS\System32\wbem\wmiprvse.exeR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.bearshare.com/sidebar.html?src=ssbR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = ŁączaO2 - BHO: (no name) - {01CE2823-2F76-47B1-94C1-800B8A5D7A72} - C:\WINDOWS\System32\oufmhomx.dllO2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dllO2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dllO2 - BHO: (no name) - {338C592A-DA48-4928-BDD1-5FBF0BCE377A} - c:\windows\system32\appylxx.dllO2 - BHO: My Global Search Bar BHO - {37B85A21-692B-4205-9CAD-2626E4993404} - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL (file missing)O2 - BHO: IEPluginBHO - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Dane aplikacji\Nowe Gadu-Gadu\_userdata\ggbho.1.dllO2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\hpswp_BHO.dllO3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocxO3 - Toolbar: My Global Search Bar - {37B85A29-692B-4205-9CAD-2626E4993404} - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL (file missing)O4 - HKLM\..\Run: [siSUSBRG] C:\WINDOWS\SiSUSBrg.exeO4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXEO4 - HKLM\..\Run: [siSRaid] C:\Program Files\Silicon Integrated Systems\SiSRaidPackage\SRaid.exeO4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exeO4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exeO4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSRMon.exeO4 - HKLM\..\Run: [bearShare] "C:\Program Files\BearShare\BearShare.exe" /pauseO4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /minO4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -kO4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeO4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exeO4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /backgroundO4 - HKCU\..\Run: [Gadu-Gadu] "C:\Program Files\Gadu-Gadu\gg.exe" /trayO4 - HKCU\..\Run: [sService] C:\Documents and Settings\dom.DOM-52W94ZBSY2U\77710.exeO4 - HKCU\..\Run: [WhenUSave] "C:\Program Files\Save\Save.exe"O4 - HKCU\..\Run: [Odkurzacz-MCD] C:\Program Files\Odkurzacz\odk_mcd.exeO4 - HKCU\..\Run: [Nowe Gadu-Gadu] "C:\Program Files\Nowe Gadu-Gadu\gg.exe"O4 - HKCU\..\Run: [skype] "C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\Phone\Skype.exe" /nosplash /minimizedO4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'USŁUGA LOKALNA')O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'USŁUGA SIECIOWA')O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exeO4 - Global Startup: hp psc 2000 Series.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exeO4 - Global Startup: hpoddt01.exe.lnk = ?O9 - Extra button: Zaznaczanie HP Smart - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\hpswp_BHO.dllO16 - DPF: {3D8700FB-86A4-4CB4-B738-6F0FC016AC7D} (MainControl Class) - http://slimak.onet.pl/_m/wirusy/ArcaOnline.cabO16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} (MksSkanerOnline Class) - http://www.mks.com.pl/skaner/SkanerOnline.cabO16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game08.zylom.com/activex/zylomgamesplayer.cabO18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLLO20 - AppInit_DLLs: C:\WINDOWS\System32\dsound32.dllO20 - Winlogon Notify: btogncjm - C:\WINDOWS\SYSTEM32\appylxx.dllO20 - Winlogon Notify: ccb2fc9b530 - C:\WINDOWS\System32\dsound32.dll (file missing)O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Unknown owner - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe (file missing)O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Unknown owner - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe (file missing)O23 - Service: Avira Upgrade Service (AntiVirUpgradeService) - Unknown owner - C:\DOCUME~1\DOM~1.DOM\USTAWI~1\Temp\AVSETUP_4a452756\basic\avupgsvc.exe (file missing)O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exeO23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exeO23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exeO23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exeO23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exeO23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exeO23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exeO23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe--End of file - 8169 bytes UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT DDS (Ver_09-06-26.01) Microsoft Windows XP Professional Boot Device: \Device\HarddiskVolume1 Install Date: 2005-01-01 18:38:27 System Uptime: 2009-06-30 09:48:12 (3 hours ago) Motherboard: | | SiS-755 Processor: AMD Athlon 64 Processor 3000+ | Socket 754 | 1999/200mhz ==== Disk Partitions ========================= A: is Removable C: is FIXED (NTFS) - 37 GiB total, 5,744 GiB free. D: is FIXED (FAT32) - 37 GiB total, 33,005 GiB free. E: is CDROM () F: is CDROM () G: is Removable ==== Disabled Device Manager Items ============= ==== System Restore Points =================== No restore point in system. ==== Installed Programs ====================== 32 Bit HP CIO Components Installer Adobe Flash Player 10 ActiveX Adobe Reader 6.0.2 CE AIO_Scan ArcSoft PhotoStudio 5.5 ATI Control Panel ATI Display Driver ATI HydraVision avast! Antivirus BufferChm C7200 C7200_Help Camera Access Library Camera Support Core Library Camera Window DS Camera Window DVC Camera Window MC Canon Camera Access Library Canon Camera Support Core Library Canon Camera Window DC_DV 5 for ZoomBrowser EX Canon Camera Window DC_DV 6 for ZoomBrowser EX Canon Camera Window DSLR 5 for ZoomBrowser EX Canon Camera Window MC 6 for ZoomBrowser EX Canon MovieEdit Task for ZoomBrowser EX Canon PhotoRecord Canon RAW Image Task for ZoomBrowser EX Canon Utilities PhotoStitch 3.1 Canon ZoomBrowser EX (E) Cards_Calendar_OrderGift_DoMorePlugout Copy CustomerResearchQFolder Destination Component DeviceDiscovery DeviceManagementQFolder DocProc DocProcQFolder Double Vibration steering wheel Dysk wspomnieniowy HP eSupportQFolder Fax GetBot GPBaseService HijackThis 2.0.2 HP Customer Participation Program 10.0 HP Imaging Device Functions 10.0 HP Photosmart All-In-One Driver Software 10.0 Rel .2 HP Photosmart Essential 2.5 hp psc 2100 series HP Smart Web Printing HP Solution Center 10.0 HP Update HPPhotoSmartDiscLabel_PaperLabel HPPhotoSmartDiscLabel_PrintOnDisc HPPhotoSmartDiscLabelContent1 hpphotosmartdisclabelplugin HPPhotoSmartPhotobookWebPack1 HPProductAssistant HPSSupply K-Lite Mega Codec Pack 4.6.2 Lizardtech DjVu Control MarketResearch Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Windows Media Video 9 VCM Microsoft XML Parser MovieEdit Task My Global Search Bar Nawigator obrazów i fotografii HP 2.0 - All-in-One Nawigator obrazów i fotografii HP 2.0 - All-in-One Sterowniki Nawigator obrazów i fotografii HP 2.0 - hp psc 2100 series neroxml Niezbędnik CD Nokia Connectivity Cable Driver Nowe Gadu-Gadu OCR Software by I.R.I.S. 10.0 Odkurzacz 11.3 PanoStandAlone PC Connectivity Solution PhotoStitch PS_AIO_02_ProductContext PS_AIO_02_Software PS_AIO_02_Software_Min PSSWCORE RAW Image Task 2.2 Realtek AC'97 Audio Red Skies SAMSUNG CDMA Modem Driver Set SAMSUNG Mobile Composite Device Software Samsung Mobile phone USB driver Software SAMSUNG Mobile USB Modem 1.0 Software SAMSUNG Mobile USB Modem Software Samsung PC Studio 3 Scan Scooter Pro Shop for HP Supplies SiS 900 PCI Fast Ethernet Adapter Driver SiSAGP driver SiSRaidPackage Skaner on-line mks_vir Skype™ 4.0 SmartWebPrintingOC SolutionCenter Specnaz Status Toolbox TrayApp UnloadSupport VCRedistSetup VideoToolkit01 WebFldrs XP WebReg Winamp Windows Driver Package - Nokia (WUDFRd) WPD (03/19/2007 6.83.31.1) Windows Driver Package - Nokia Modem (02/15/2007 3.1) Windows Installer 3.1 (KB893803) Windows Media Format Runtime Windows Media Player 10 ==== End Of File =========================== OTL logfile created on: 2009-06-30 12:44:51 - Run 1 OTL by OldTimer - Version 3.0.5.3 Folder = C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit Windows XP Professional Edition Dodatek Service Pack. 1 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2800.1106) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 511,48 Mb Total Physical Memory | 182,18 Mb Available Physical Memory | 35,62% Memory free 1,22 Gb Paging File | 0,72 Gb Available in Paging File | 58,76% Paging File free Paging file location(s): C:\pagefile.sys 768 1536 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 37,27 Gb Total Space | 5,74 Gb Free Space | 15,41% Space Free | Partition Type: NTFS Drive D: | 37,25 Gb Total Space | 33,00 Gb Free Space | 88,60% Space Free | Partition Type: FAT32 E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: DOM-52W94ZBSY2U Current User Name: dom Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: On Skip Microsoft Files: Off File Age = 30 Days Output = Standard ========== Processes (SafeList) ========== PRC - [2009-02-05 22:01:25 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe PRC - [2009-02-05 22:08:40 | 00,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe PRC - [2002-09-20 19:05:24 | 01,005,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Explorer.EXE PRC - [2004-12-22 11:09:44 | 00,077,824 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE PRC - [2004-12-22 18:32:00 | 00,892,928 | ---- | M] (SiS) -- C:\Program Files\Silicon Integrated Systems\SiSRaidPackage\SRaid.exe PRC - [2003-06-05 13:35:00 | 00,335,872 | ---- | M] (ATI Technologies, Inc.) -- C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe PRC - [2007-10-14 22:17:32 | 00,049,152 | ---- | M] (Hewlett-Packard) -- C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe PRC - [2009-02-05 22:08:45 | 00,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe PRC - [2002-08-20 16:08:38 | 01,511,453 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Messenger\msmsgs.exe PRC - [2009-05-28 11:23:12 | 10,486,376 | ---- | M] (GG Network S.A.) -- C:\Program Files\Nowe Gadu-Gadu\gg.exe PRC - [2009-05-26 19:51:32 | 24,385,320 | R--- | M] (Skype Technologies S.A.) -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\Phone\Skype.exe PRC - [2007-10-14 21:38:52 | 00,214,360 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe PRC - [2003-04-06 00:37:10 | 00,323,646 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe PRC - [2009-05-28 10:33:44 | 00,077,824 | ---- | M] () -- C:\Program Files\Nowe Gadu-Gadu\spellchecker_gg.exe PRC - [2003-04-06 01:06:58 | 00,028,672 | ---- | M] (Hewlett-Packard) -- C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe PRC - [2009-05-26 19:51:32 | 00,077,360 | R--- | M] (Skype Technologies) -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\Plugin Manager\skypePM.exe PRC - [2003-06-03 04:30:20 | 00,282,624 | ---- | M] () -- C:\WINDOWS\System32\Ati2evxx.exe PRC - [2005-01-28 01:36:00 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wdfmgr.exe PRC - [2005-06-02 15:54:34 | 00,086,606 | ---- | M] (Canon Inc.) -- C:\Program Files\Canon\CAL\CALMAIN.exe PRC - [2009-02-05 22:06:04 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe PRC - [2003-04-06 00:45:10 | 00,286,720 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe PRC - [2003-04-06 00:55:04 | 00,311,296 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe PRC - [2007-10-19 21:46:08 | 00,184,320 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe PRC - [2007-11-02 19:44:16 | 00,610,304 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqbam08.exe PRC - [2007-11-02 21:12:50 | 00,262,144 | ---- | M] (Hewlett-Packard) -- C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqgpc01.exe PRC - [2002-09-20 19:05:28 | 00,091,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\IEXPLORE.EXE PRC - [2007-11-06 02:50:44 | 00,116,032 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\hpswp_clipbook.exe PRC - [2009-06-30 12:43:25 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\OTL.exe ========== Win32 Services (SafeList) ========== SRV - File not found -- -- (AntiVirScheduler [Auto | Stopped]) SRV - File not found -- -- (AntiVirService [Auto | Stopped]) SRV - File not found -- -- (AntiVirUpgradeService [Auto | Stopped]) SRV - [2009-02-05 22:01:25 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv [Auto | Running]) SRV - [2003-06-03 04:30:20 | 00,282,624 | ---- | M] () -- C:\WINDOWS\System32\Ati2evxx.exe -- (Ati HotKey Poller [Auto | Running]) SRV - [2003-06-05 13:35:00 | 00,114,688 | ---- | M] () -- C:\WINDOWS\System32\ati2sgag.exe -- (ATI Smart [Auto | Stopped]) SRV - [2009-02-05 22:08:40 | 00,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus [Auto | Running]) SRV - [2009-02-05 22:08:26 | 00,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner [On_Demand | Stopped]) SRV - [2009-02-05 22:06:04 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner [On_Demand | Running]) SRV - [2005-06-02 15:54:34 | 00,086,606 | ---- | M] (Canon Inc.) -- C:\Program Files\Canon\CAL\CALMAIN.exe -- (CCALib8 [Auto | Running]) SRV - [2002-09-20 19:04:38 | 00,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -- (helpsvc [Auto | Running]) SRV - [2007-11-06 22:16:54 | 00,217,088 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqcxs08.dll -- (hpqcxs08 [On_Demand | Running]) SRV - [2007-11-06 22:16:54 | 00,139,264 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqddsvc.dll -- (hpqddsvc [Auto | Running]) SRV - [2008-07-18 13:13:20 | 00,044,032 | ---- | M] (Hewlett-Packard) -- C:\WINDOWS\System32\HPZinw12.dll -- (Net Driver HPZ12 [Auto | Running]) SRV - [2008-07-18 13:13:20 | 00,053,760 | ---- | M] (Hewlett-Packard) -- C:\WINDOWS\System32\HPZipm12.dll -- (Pml Driver HPZ12 [Auto | Running]) SRV - [2001-08-17 23:47:40 | 00,103,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\appylxx.dll -- (qjozusuy [Auto | Running]) SRV - [2007-03-26 13:06:24 | 00,292,864 | ---- | M] (Nokia.) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer [On_Demand | Stopped]) SRV - [2005-01-28 01:36:00 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wdfmgr.exe -- (UMWdf [Auto | Running]) SRV - [2002-09-20 19:04:38 | 00,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -- (uploadmgr [Auto | Running]) ========== Driver Services (SafeList) ========== DRV - [2009-02-05 22:05:11 | 00,026,944 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4 [system | Running]) DRV - [2007-09-26 12:58:12 | 00,082,380 | ---- | M] (Oak Technology Inc.) -- C:\WINDOWS\System32\drivers\AFS2K.SYS -- (AFS2K [system | Running]) DRV - [2004-12-22 11:07:12 | 02,304,320 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\ALCXWDM.SYS -- (ALCXWDM [On_Demand | Running]) DRV - [2009-02-05 22:08:10 | 00,094,032 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2 [Auto | Running]) DRV - [2009-02-05 22:06:10 | 00,023,152 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr [On_Demand | Running]) DRV - [2009-02-05 22:07:23 | 00,114,768 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP [system | Running]) DRV - [2009-02-05 22:06:20 | 00,051,376 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi [system | Running]) DRV - [2003-06-03 04:40:32 | 00,576,512 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\DRIVERS\ati2mtag.sys -- (ati2mtag [On_Demand | Running]) DRV - [2001-08-17 23:47:40 | 00,023,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\dxbropck.sys -- (dxbropck [boot | Running]) DRV - [2007-11-01 13:28:06 | 00,049,920 | R--- | M] (HP) -- C:\WINDOWS\System32\DRIVERS\HPZid412.sys -- (HPZid412 [On_Demand | Running]) DRV - [2007-11-01 13:28:06 | 00,016,496 | R--- | M] (HP) -- C:\WINDOWS\System32\DRIVERS\HPZipr12.sys -- (HPZipr12 [On_Demand | Running]) DRV - [2007-11-01 13:28:07 | 00,021,568 | R--- | M] (HP) -- C:\WINDOWS\System32\DRIVERS\HPZius12.sys -- (HPZius12 [On_Demand | Running]) DRV - [2007-02-22 10:15:56 | 00,137,216 | ---- | M] (Nokia) -- C:\WINDOWS\System32\drivers\nmwcd.sys -- (nmwcd [On_Demand | Stopped]) DRV - [2007-02-22 10:15:14 | 00,008,320 | ---- | M] (Nokia) -- C:\WINDOWS\System32\drivers\nmwcdc.sys -- (nmwcdc [On_Demand | Stopped]) DRV - [2007-02-22 10:15:14 | 00,012,288 | ---- | M] (Nokia) -- C:\WINDOWS\System32\drivers\nmwcdcj.sys -- (nmwcdcj [On_Demand | Stopped]) DRV - [2007-02-22 10:15:14 | 00,012,288 | ---- | M] (Nokia) -- C:\WINDOWS\System32\drivers\nmwcdcm.sys -- (nmwcdcm [On_Demand | Stopped]) DRV - [2001-08-17 23:49:56 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\System32\DRIVERS\ptilink.sys -- (Ptilink [On_Demand | Running]) DRV - [2007-03-08 01:51:00 | 00,043,528 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20 [boot | Running]) DRV - [2002-03-25 21:02:14 | 00,027,440 | ---- | M] () -- C:\WINDOWS\System32\DRIVERS\secdrv.sys -- (Secdrv [On_Demand | Stopped]) DRV - [2005-08-10 14:44:04 | 00,050,688 | ---- | M] (Protection Technology) -- C:\WINDOWS\System32\drivers\sfdrv01.sys -- (sfdrv01 [boot | Running]) DRV - [2006-07-05 14:46:06 | 00,063,352 | ---- | M] (Protection Technology (StarForce)) -- C:\WINDOWS\System32\drivers\sfdrv01a.sys -- (sfdrv01a [boot | Running]) DRV - [2006-06-14 16:56:56 | 00,013,680 | ---- | M] (Protection Technology (StarForce)) -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02 [boot | Running]) DRV - [2006-07-10 18:19:58 | 00,027,032 | ---- | M] (Protection Technology) -- C:\WINDOWS\System32\drivers\sfsync02.sys -- (sfsync02 [boot | Running]) DRV - [2007-01-12 20:09:53 | 00,082,296 | ---- | M] (Protection Technology (StarForce)) -- C:\WINDOWS\System32\drivers\sfvfs02.sys -- (sfvfs02 [boot | Running]) DRV - [2003-07-18 03:58:20 | 00,036,992 | R--- | M] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\DRIVERS\SISAGPX.sys -- (SISAGP [boot | Running]) DRV - [2003-03-25 11:50:46 | 00,004,096 | R--- | M] (Silicon Integrated Systems Corp.) -- C:\WINDOWS\System32\DRIVERS\siside.sys -- (SiSide [boot | Running]) DRV - [2002-10-17 09:14:46 | 00,049,024 | R--- | M] (Windows ® 2000 DDK provider) -- C:\WINDOWS\system32\drivers\sisidex.sys -- (sisidex [boot | Running]) DRV - [2002-07-10 17:39:34 | 00,032,256 | R--- | M] (SiS Corporation) -- C:\WINDOWS\System32\DRIVERS\sisnic.sys -- (SISNIC [On_Demand | Running]) DRV - [2002-08-20 11:19:08 | 00,009,472 | R--- | M] (Silicon Integrated Systems Corp.) -- C:\WINDOWS\system32\drivers\sisperf.sys -- (sisperf [boot | Running]) DRV - [2004-09-03 07:43:00 | 00,046,464 | R--- | M] (Silicon Integrated Systems) -- C:\WINDOWS\System32\DRIVERS\SiSRaid.sys -- (SiSRaid [boot | Running]) DRV - [2005-12-22 12:24:50 | 00,080,272 | ---- | M] (MCCI) -- C:\WINDOWS\System32\DRIVERS\sscdbus.sys -- (sscdbus [On_Demand | Stopped]) DRV - [2005-12-22 12:24:52 | 00,010,864 | ---- | M] (MCCI) -- C:\WINDOWS\System32\DRIVERS\sscdmdfl.sys -- (sscdmdfl [On_Demand | Stopped]) DRV - [2005-12-22 12:24:52 | 00,137,884 | ---- | M] (MCCI) -- C:\WINDOWS\System32\DRIVERS\sscdmdm.sys -- (sscdmdm [On_Demand | Stopped]) DRV - [2007-03-01 10:34:22 | 00,028,352 | ---- | M] (Avira GmbH) -- C:\WINDOWS\System32\DRIVERS\ssmdrv.sys -- (ssmdrv [system | Running]) DRV - [2006-07-24 16:05:00 | 00,005,632 | ---- | M] () -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen [system | Running]) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?p...&ar=msnhome IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?p...ER}&ar=home IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Default = 23 28 CE 01 76 2F B1 47 94 C1 80 0B 8A 5D 7A 72 [binary data] IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Default = 23 28 CE 01 76 2F B1 47 94 C1 80 0B 8A 5D 7A 72 [binary data] IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-19\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-20\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1343024091-527237240-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default = 23 28 CE 01 76 2F B1 47 94 C1 80 0B 8A 5D 7A 72 [binary data] IE - HKU\S-1-5-21-1343024091-527237240-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\System32\blank.htm IE - HKU\S-1-5-21-1343024091-527237240-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com IE - HKU\S-1-5-21-1343024091-527237240-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/ IE - HKU\S-1-5-21-1343024091-527237240-725345543-1003\S-1-5-21-1343024091-527237240-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 O1 HOSTS File: (742 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (no name) - {01CE2823-2F76-47B1-94C1-800B8A5D7A72} - C:\WINDOWS\System32\oufmhomx.dll () O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.) O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: () - {338C592A-DA48-4928-BDD1-5FBF0BCE377A} - C:\WINDOWS\System32\appylxx.dll (Microsoft Corporation) O2 - BHO: (My Global Search Bar BHO) - {37B85A21-692B-4205-9CAD-2626E4993404} - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL File not found O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Dane aplikacji\Nowe Gadu-Gadu\_userdata\ggbho.1.dll (GG Network S.A.) O2 - BHO: (HP Smart BHO Class) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.) O3 - HKLM\..\Toolbar: (My Global Search Bar) - {37B85A29-692B-4205-9CAD-2626E4993404} - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL File not found O3 - HKLM\..\Toolbar: (&Radio) - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx (Microsoft Corporation) O3 - HKU\S-1-5-21-1343024091-527237240-725345543-1003\..\Toolbar\WebBrowser: (My Global Search Bar) - {37B85A29-692B-4205-9CAD-2626E4993404} - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL File not found O4 - HKLM..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe (ATI Technologies, Inc.) O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software) O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe File not found O4 - HKLM..\Run: [bearShare] C:\Program Files\BearShare\BearShare.exe File not found O4 - HKLM..\Run: [HP Software Update] C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe (Hewlett-Packard) O4 - HKLM..\Run: [hpqSRMon] C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSRMon.exe (Hewlett-Packard) O4 - HKLM..\Run: [KernelFaultCheck] File not found O4 - HKLM..\Run: [siSRaid] C:\Program Files\Silicon Integrated Systems\SiSRaidPackage\SRaid.exe (SiS) O4 - HKLM..\Run: [siSUSBRG] C:\WINDOWS\SiSUSBrg.exe (Silicon Integrated Systems Corp.) O4 - HKLM..\Run: [soundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.) O4 - HKU\S-1-5-21-1343024091-527237240-725345543-1003..\Run: [Gadu-Gadu] C:\Program Files\Gadu-Gadu\gg.exe File not found O4 - HKU\S-1-5-21-1343024091-527237240-725345543-1003..\Run: [MSMSGS] C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-1343024091-527237240-725345543-1003..\Run: [Nowe Gadu-Gadu] C:\Program Files\Nowe Gadu-Gadu\gg.exe (GG Network S.A.) O4 - HKU\S-1-5-21-1343024091-527237240-725345543-1003..\Run: [Odkurzacz-MCD] C:\Program Files\Odkurzacz\odk_mcd.exe (Franmo Software) O4 - HKU\S-1-5-21-1343024091-527237240-725345543-1003..\Run: [skype] C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\Phone\Skype.exe (Skype Technologies S.A.) O4 - HKU\S-1-5-21-1343024091-527237240-725345543-1003..\Run: [sService] C:\Documents and Settings\dom.DOM-52W94ZBSY2U\77710.exe File not found O4 - HKU\S-1-5-21-1343024091-527237240-725345543-1003..\Run: [WhenUSave] C:\Program Files\Save\Save.exe File not found O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe File not found O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe File not found O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\hp psc 2000 Series.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe (Hewlett-Packard Co.) O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\hpoddt01.exe.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe (Hewlett-Packard) O4 - Startup: C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.) O4 - Startup: C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programy\Autostart\hp psc 2000 Series.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe (Hewlett-Packard Co.) O4 - Startup: C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programy\Autostart\hpoddt01.exe.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe (Hewlett-Packard) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1343024091-527237240-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O9 - Extra Button: Zaznaczanie HP Smart - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.) O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\System32\rsvpsp.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\System32\rsvpsp.dll (Microsoft Corporation) O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwa...director/sw.cab (Reg Error: Key error.) O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shockwa...director/sw.cab (Shockwave ActiveX Control) O16 - DPF: {3334504D-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/0/C...C4D/mp43dmo.CAB (Reg Error: Key error.) O16 - DPF: {3D8700FB-86A4-4CB4-B738-6F0FC016AC7D} http://slimak.onet.pl/_m/wirusy/ArcaOnline.cab (MainControl Class) O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} http://www.mks.com.pl/skaner/SkanerOnline.cab (MksSkanerOnline Class) O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flash...r/ultrashim.cab (Reg Error: Key error.) O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} http://game08.zylom.com/activex/zylomgamesplayer.cab (Zylom Games Player) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/shock...ash/swflash.cab (Shockwave Flash Object) O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\Java\classes\dajava.cab (Reg Error: Key error.) O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 4.2.2.1 79.175.192.2 O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ipp - No CLSID value found O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp - No CLSID value found O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\vnd.ms.radio {3DA2AA3B-3D96-11D2-9BD2-204C4F4F5020} - C:\WINDOWS\System32\msdxm.ocx (Microsoft Corporation) O20 - AppInit_DLLs: (C:\WINDOWS\System32\dsound32.dll) - C:\WINDOWS\System32\dsound32.dll File not found O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\btogncjm: DllName - appylxx.dll - C:\WINDOWS\System32\appylxx.dll (Microsoft Corporation) O20 - Winlogon\Notify\ccb2fc9b530: DllName - C:\WINDOWS\System32\dsound32.dll - C:\WINDOWS\System32\dsound32.dll File not found O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O31 - SafeBoot: AlternateShell - cmd.exe O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2005-04-27 21:26:13 | 00,000,000 | -H-- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck) - File not found O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation) O34 - HKLM BootExecute: (*) - File not found ========== Files/Folders - Created Within 30 Days ========== [2009-06-30 12:43:22 | 00,513,536 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\OTL.exe [2009-06-30 12:37:55 | 00,359,929 | ---- | C] () -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\dds.pif [2009-06-30 00:20:16 | 00,000,330 | ---- | C] () -- C:\WINDOWS\tasks\WebReg Photosmart C7200 series.job [2009-06-29 23:33:17 | 00,014,603 | ---- | C] () -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\climaz24[1].gif.jpg [2009-06-29 23:32:15 | 00,012,478 | ---- | C] () -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\floresbrillosazul[1].gif.jpg [2009-06-29 23:30:36 | 00,014,273 | ---- | C] () -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\guiest[1].gif.jpg [2009-06-29 20:26:19 | 00,001,709 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Pulpit\avast! Antivirus.lnk [2009-06-29 20:26:18 | 00,097,480 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\AvastSS.scr [2009-06-29 20:26:18 | 00,051,376 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys [2009-06-29 20:26:18 | 00,026,944 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys [2009-06-29 20:26:18 | 00,023,152 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys [2009-06-29 20:26:17 | 00,114,768 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys [2009-06-29 20:26:17 | 00,094,032 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys [2009-06-29 20:26:17 | 00,093,296 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys [2009-06-29 20:26:05 | 01,256,296 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe [2009-06-29 20:26:05 | 00,380,928 | ---- | C] () -- C:\WINDOWS\System32\actskin4.ocx [2009-06-29 20:24:27 | 31,374,272 | ---- | C] () -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\setuppol.exe [2009-06-27 11:27:58 | 00,000,000 | ---D | C] -- C:\Program Files\SkanerOnline [2009-06-26 22:25:30 | 01,060,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MFC71.dll [2009-06-26 22:25:27 | 00,000,000 | ---D | C] -- C:\Program Files\Alwil Software [2009-06-26 17:20:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\TEMP [2009-06-25 23:43:35 | 00,001,117 | ---- | C] () -- C:\WINDOWS\bestplayer.ini [2009-06-25 23:43:35 | 00,000,014 | ---- | C] () -- C:\WINDOWS\bestplayer.bpp [2009-06-25 23:43:35 | 00,000,000 | ---- | C] () -- C:\WINDOWS\bestplayer.bbt [2009-06-25 21:22:36 | 00,000,000 | ---D | C] -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Dane aplikacji\AVG7 [2009-06-25 20:22:20 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard [2009-06-25 19:54:50 | 00,000,000 | ---D | C] -- C:\Program Files\Kaspersky Lab [2009-06-25 19:41:59 | 00,000,713 | ---- | C] () -- C:\WINDOWS\unins000.dat [2009-06-25 19:11:31 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\NortonInstaller [2009-06-25 10:37:48 | 00,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat [2009-06-25 10:37:45 | 00,000,000 | ---D | C] -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Dane aplikacji\skypePM [2009-06-25 10:36:47 | 00,000,000 | ---D | C] -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\Phone [2009-06-25 10:36:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\Plugin Manager [2009-06-25 00:50:11 | 00,016,537 | ---- | C] () -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\kotek 1..jpg [2009-06-24 18:06:45 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\OpenFM [2009-06-24 18:05:23 | 00,000,000 | ---D | C] -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Dane aplikacji\OpenFM [2009-06-24 16:48:05 | 00,000,717 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Pulpit\OpenFM.lnk [2009-06-24 16:48:05 | 00,000,688 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Pulpit\Nowe Gadu-Gadu.lnk [2009-06-24 16:47:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Dane aplikacji\Nowe Gadu-Gadu [2009-06-24 16:47:17 | 00,000,000 | ---D | C] -- C:\Program Files\Nowe Gadu-Gadu [2009-06-24 16:45:32 | 19,845,880 | ---- | C] () -- C:\Program Files\nowegg.exe [2009-06-24 10:59:02 | 00,000,000 | ---D | C] -- C:\Program Files\Edgard [2009-06-08 13:09:49 | 00,266,287 | ---- | C] () -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\IMG_0005.pdf [2009-06-08 13:07:06 | 00,435,145 | ---- | C] () -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\IMG_0006.pdf [2009-06-08 13:05:13 | 00,568,708 | ---- | C] () -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\IMG_0007.pdf [2009-06-08 13:02:00 | 00,212,209 | ---- | C] () -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\IMG_0009.pdf [2009-03-15 20:27:05 | 00,000,000 | ---- | C] () -- C:\WINDOWS\Route.INI [2009-02-18 13:51:11 | 00,009,446 | ---- | C] () -- C:\WINDOWS\GnuHashes.ini [2009-02-16 15:14:40 | 00,168,448 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2009-02-16 15:14:38 | 03,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll [2009-02-16 15:14:38 | 00,795,648 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2009-02-16 15:14:38 | 00,130,048 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2009-02-16 15:14:37 | 00,067,584 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2009-02-16 15:14:37 | 00,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest [2009-02-01 23:11:06 | 00,003,395 | ---- | C] () -- C:\WINDOWS\System32\TDSSfxwp.dll [2008-04-03 13:05:28 | 00,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys [2008-02-01 15:21:17 | 00,000,061 | ---- | C] () -- C:\WINDOWS\wininit.ini [2007-12-25 16:35:01 | 00,000,030 | ---- | C] () -- C:\WINDOWS\TextSpy.ini [2007-12-02 20:48:09 | 00,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll [2007-09-17 18:58:56 | 00,013,312 | ---- | C] () -- C:\WINDOWS\System32\msdmo(2).dll [2007-07-20 11:05:30 | 00,000,038 | ---- | C] () -- C:\WINDOWS\3D Text Factory.INI [2007-07-20 10:23:36 | 00,000,000 | ---- | C] () -- C:\WINDOWS\OpPrintServer.INI [2007-07-18 22:34:13 | 00,061,440 | ---- | C] () -- C:\WINDOWS\System32\cygz.dll [2007-07-18 21:59:10 | 00,000,050 | ---- | C] () -- C:\WINDOWS\Winamp.ini [2007-07-17 23:52:31 | 00,000,173 | ---- | C] () -- C:\WINDOWS\RtlRack.ini [2005-01-01 18:48:19 | 00,135,168 | R--- | C] () -- C:\WINDOWS\System32\property.dll [2005-01-01 18:46:13 | 00,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini [2005-01-01 18:46:09 | 00,156,672 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll [2005-01-01 18:45:58 | 00,139,264 | R--- | C] () -- C:\WINDOWS\System32\IDEproperty.dll [2005-01-01 18:45:25 | 00,032,768 | ---- | C] () -- C:\WINDOWS\SIS_LIB.DLL [2003-06-03 04:31:38 | 00,090,112 | ---- | C] () -- C:\WINDOWS\System32\ati2evxx.dll [2003-04-07 22:21:58 | 00,561,152 | ---- | C] () -- C:\WINDOWS\System32\hpotscl.dll [2002-03-25 21:02:14 | 00,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys [2001-08-17 23:47:40 | 00,143,872 | ---- | C] () -- C:\WINDOWS\System32\oufmhomx.dll [2001-07-22 00:16:20 | 00,000,599 | ---- | C] () -- C:\WINDOWS\win.ini [2001-07-22 00:15:52 | 00,000,227 | ---- | C] () -- C:\WINDOWS\system.ini ========== Files - Modified Within 30 Days ========== [1 C:\WINDOWS\System32\*.tmp files] [1 C:\WINDOWS\*.tmp files] [2009-06-30 12:43:25 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\OTL.exe [2009-06-30 12:37:56 | 00,359,929 | ---- | M] () -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\dds.pif [2009-06-30 09:48:48 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2009-06-30 09:48:38 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2009-06-30 00:20:16 | 00,000,330 | ---- | M] () -- C:\WINDOWS\tasks\WebReg Photosmart C7200 series.job [2009-06-29 23:43:25 | 00,247,922 | -H-- | M] () -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\ZbThumbnail.info [2009-06-29 23:41:26 | 00,002,407 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Pulpit\ZoomBrowser EX.lnk [2009-06-29 23:33:14 | 00,014,603 | ---- | M] () -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\climaz24[1].gif.jpg [2009-06-29 23:32:11 | 00,012,478 | ---- | M] () -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\floresbrillosazul[1].gif.jpg [2009-06-29 23:30:28 | 00,014,273 | ---- | M] () -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\guiest[1].gif.jpg [2009-06-29 20:27:56 | 00,003,395 | ---- | M] () -- C:\WINDOWS\System32\TDSSfxwp.dll [2009-06-29 20:26:19 | 00,001,709 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Pulpit\avast! Antivirus.lnk [2009-06-29 20:26:17 | 00,002,645 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2009-06-29 20:24:27 | 31,374,272 | ---- | M] () -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\setuppol.exe [2009-06-29 19:42:37 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2009-06-25 23:43:35 | 00,001,117 | ---- | M] () -- C:\WINDOWS\bestplayer.ini [2009-06-25 23:43:35 | 00,000,014 | ---- | M] () -- C:\WINDOWS\bestplayer.bpp [2009-06-25 23:43:35 | 00,000,000 | ---- | M] () -- C:\WINDOWS\bestplayer.bbt [2009-06-25 19:42:00 | 00,000,713 | ---- | M] () -- C:\WINDOWS\unins000.dat [2009-06-25 10:37:48 | 00,000,056 | -H-- | M] () -- C:\WINDOWS\System32\ezsidmv.dat [2009-06-25 00:49:32 | 00,016,537 | ---- | M] () -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\kotek 1..jpg [2009-06-24 17:21:15 | 00,028,160 | ---- | M] () -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2009-06-24 16:48:05 | 00,000,717 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Pulpit\OpenFM.lnk [2009-06-24 16:48:05 | 00,000,688 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Pulpit\Nowe Gadu-Gadu.lnk [2009-06-24 16:45:32 | 19,845,880 | ---- | M] () -- C:\Program Files\nowegg.exe [2009-06-23 15:20:52 | 00,013,496 | ---- | M] () -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2009-06-22 11:12:35 | 00,095,864 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2009-06-09 23:13:20 | 00,000,096 | ---- | M] () -- C:\WINDOWS\dom.acl [2009-06-08 13:09:49 | 00,266,287 | ---- | M] () -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\IMG_0005.pdf [2009-06-08 13:07:06 | 00,435,145 | ---- | M] () -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\IMG_0006.pdf [2009-06-08 13:05:13 | 00,568,708 | ---- | M] () -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\IMG_0007.pdf [2009-06-08 13:02:00 | 00,212,209 | ---- | M] () -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\IMG_0009.pdf ========== LOP Check ========== [2007-05-20 17:24:43 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji [2007-06-22 10:04:52 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\avg7 [2005-04-27 22:03:11 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CyberLink [2006-01-22 16:48:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Grisoft [2005-09-23 18:37:11 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Macrovision [2005-10-29 18:18:10 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Mistrz Klawiatury II Data [2007-07-06 21:40:33 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2009-06-26 21:44:12 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji [2009-02-15 20:35:22 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\16242 [2009-02-18 20:36:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\ashampoo [2009-06-26 21:44:12 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\Avg7 [2008-04-09 18:48:39 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\Installations [2009-06-26 20:20:18 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\NortonInstaller [2009-06-24 18:06:45 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\OpenFM [2008-04-09 18:51:25 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\PC Suite [2008-11-13 12:11:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\SpinTop Games [2009-06-26 17:20:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\TEMP [2008-10-04 19:56:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\Zylom [2005-04-27 22:02:33 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\Default User\Dane aplikacji [2005-01-01 18:22:08 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\Default User.WINDOWS\Dane aplikacji [2007-05-20 17:25:32 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\dom\Dane aplikacji [2007-05-29 20:16:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\dom\Dane aplikacji\Ahead [2006-01-22 16:49:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\dom\Dane aplikacji\AVG7 [2005-04-28 18:58:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\dom\Dane aplikacji\CyberLink [2007-03-19 13:39:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\dom\Dane aplikacji\GetBot [2007-03-04 19:19:17 | 00,000,000 | ---D | M] -- C:\Documents and Settings\dom\Dane aplikacji\Rex-Services [2009-06-25 21:22:36 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Dane aplikacji [2008-03-27 13:44:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Dane aplikacji\ArcaBit [2007-07-20 10:48:13 | 00,000,000 | ---D | M] -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Dane aplikacji\ArcSoft [2009-02-18 20:37:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Dane aplikacji\Ashampoo [2009-06-26 18:05:21 | 00,000,000 | ---D | M] -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Dane aplikacji\AVG7 [2009-02-16 13:07:01 | 00,000,000 | ---D | M] -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Dane aplikacji\CyberLink [2009-06-22 22:57:57 | 00,000,000 | ---D | M] -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Dane aplikacji\DeepBurner [2007-07-19 10:20:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Dane aplikacji\Gadu-Gadu [2008-09-19 13:58:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Dane aplikacji\GARMIN [2007-07-18 21:59:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Dane aplikacji\GetBot [2008-07-13 19:05:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Dane aplikacji\Nokia [2009-06-24 16:48:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Dane aplikacji\Nowe Gadu-Gadu [2009-06-24 18:05:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Dane aplikacji\OpenFM [2008-04-09 18:49:50 | 00,000,000 | ---D | M] -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Dane aplikacji\PC Suite [2008-04-03 13:33:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Dane aplikacji\Samsung [2005-05-17 23:58:36 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji [2006-01-22 16:48:55 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\AVG7 [2005-05-17 23:58:36 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\WinSoftware [2004-12-31 23:36:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService.ZARZĄDZANIE NT\Dane aplikacji [2009-06-25 21:22:22 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService.ZARZĄDZANIE NT.000\Dane aplikacji [2009-06-25 21:22:22 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService.ZARZĄDZANIE NT.000\Dane aplikacji\AVG7 [2005-04-27 21:30:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji [2004-12-31 23:36:01 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService.ZARZĄDZANIE NT\Dane aplikacji [2005-01-01 18:42:33 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService.ZARZĄDZANIE NT.000\Dane aplikacji [2001-07-22 00:17:50 | 00,000,065 | RH-- | M] () -- C:\WINDOWS\Tasks\desktop.ini [2008-01-09 14:04:39 | 00,000,338 | ---- | M] () -- C:\WINDOWS\Tasks\FRU Task #Hewlett-Packard#hp psc 2100 series#1190804304.job [2009-06-30 09:48:48 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\Tasks\SA.DAT [2009-06-30 00:20:16 | 00,000,330 | ---- | M] () -- C:\WINDOWS\Tasks\WebReg Photosmart C7200 series.job ========== Purity Check ========== ========== Alternate Data Streams ========== @Alternate Data Stream - 110 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:DFC5A2B2 @Alternate Data Stream - 110 bytes -> C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\TEMP:DFC5A2B2 < End of report > Logfile of random's system information tool 1.06 (written by random/random) Run by dom at 2009-06-30 12:51:33 Microsoft Windows XP Professional Dodatek Service Pack. 1 System drive C: has 6 GB (15%) free of 38 GB Total RAM: 511 MB (26% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 12:51:37, on 2009-06-30 Platform: Windows XP Dodatek SP. 1 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\Silicon Integrated Systems\SiSRaidPackage\SRaid.exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\WINDOWS\System32\ctfmon.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Nowe Gadu-Gadu\gg.exe C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\Phone\Skype.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe C:\Program Files\Nowe Gadu-Gadu\spellchecker_gg.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe C:\WINDOWS\system32\spoolsv.exe C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\Plugin Manager\skypePM.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\wdfmgr.exe C:\Program Files\Canon\CAL\CALMAIN.exe C:\WINDOWS\System32\wuauclt.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqbam08.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqgpc01.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\hpswp_clipbook.exe C:\WINDOWS\notepad.exe C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\RSIT.exe C:\WINDOWS\System32\wbem\wmiprvse.exe C:\Documents and Settings\dom\dom.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.bearshare.com/sidebar.html?src=ssb R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza O2 - BHO: (no name) - {01CE2823-2F76-47B1-94C1-800B8A5D7A72} - C:\WINDOWS\System32\oufmhomx.dll O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {338C592A-DA48-4928-BDD1-5FBF0BCE377A} - c:\windows\system32\appylxx.dll O2 - BHO: My Global Search Bar BHO - {37B85A21-692B-4205-9CAD-2626E4993404} - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL (file missing) O2 - BHO: IEPluginBHO - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Dane aplikacji\Nowe Gadu-Gadu\_userdata\ggbho.1.dll O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: My Global Search Bar - {37B85A29-692B-4205-9CAD-2626E4993404} - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL (file missing) O4 - HKLM\..\Run: [siSUSBRG] C:\WINDOWS\SiSUSBrg.exe O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [siSRaid] C:\Program Files\Silicon Integrated Systems\SiSRaidPackage\SRaid.exe O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSRMon.exe O4 - HKLM\..\Run: [bearShare] "C:\Program Files\BearShare\BearShare.exe" /pause O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [Gadu-Gadu] "C:\Program Files\Gadu-Gadu\gg.exe" /tray O4 - HKCU\..\Run: [sService] C:\Documents and Settings\dom.DOM-52W94ZBSY2U\77710.exe O4 - HKCU\..\Run: [WhenUSave] "C:\Program Files\Save\Save.exe" O4 - HKCU\..\Run: [Odkurzacz-MCD] C:\Program Files\Odkurzacz\odk_mcd.exe O4 - HKCU\..\Run: [Nowe Gadu-Gadu] "C:\Program Files\Nowe Gadu-Gadu\gg.exe" O4 - HKCU\..\Run: [skype] "C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\Phone\Skype.exe" /nosplash /minimized O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'USŁUGA LOKALNA') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'USŁUGA SIECIOWA') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user') O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: hp psc 2000 Series.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe O4 - Global Startup: hpoddt01.exe.lnk = ? O9 - Extra button: Zaznaczanie HP Smart - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O16 - DPF: {3D8700FB-86A4-4CB4-B738-6F0FC016AC7D} (MainControl Class) - http://slimak.onet.pl/_m/wirusy/ArcaOnline.cab O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} (MksSkanerOnline Class) - http://www.mks.com.pl/skaner/SkanerOnline.cab O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game08.zylom.com/activex/zylomgamesplayer.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O20 - AppInit_DLLs: C:\WINDOWS\System32\dsound32.dll O20 - Winlogon Notify: btogncjm - C:\WINDOWS\SYSTEM32\appylxx.dll O20 - Winlogon Notify: ccb2fc9b530 - C:\WINDOWS\System32\dsound32.dll (file missing) O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Unknown owner - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe (file missing) O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Unknown owner - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe (file missing) O23 - Service: Avira Upgrade Service (AntiVirUpgradeService) - Unknown owner - C:\DOCUME~1\DOM~1.DOM\USTAWI~1\Temp\AVSETUP_4a452756\basic\avupgsvc.exe (file missing) O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- End of file - 8249 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\FRU Task #Hewlett-Packard#hp psc 2100 series#1190804304.job C:\WINDOWS\tasks\WebReg Photosmart C7200 series.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{01CE2823-2F76-47B1-94C1-800B8A5D7A72}] C:\WINDOWS\System32\oufmhomx.dll [2001-08-17 143872] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}] HP Print Enhancer - C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2007-11-06 322880] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}] AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll [2003-11-04 54248] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{338C592A-DA48-4928-BDD1-5FBF0BCE377A}] c:\windows\system32\appylxx.dll [2001-08-17 103936] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{37B85A21-692B-4205-9CAD-2626E4993404}] My Global Search Bar BHO - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D}] IEPluginBHO Class - C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Dane aplikacji\Nowe Gadu-Gadu\_userdata\ggbho.1.dll [2009-05-28 42088] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}] HP Smart BHO Class - C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2007-11-06 542016] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {8E718888-423F-11D2-876E-00A0C9082467} - &Radio - C:\WINDOWS\System32\msdxm.ocx [2002-09-20 845340] {37B85A29-692B-4205-9CAD-2626E4993404} - My Global Search Bar - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL [] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "SiSUSBRG"=C:\WINDOWS\SiSUSBrg.exe [2002-07-12 106496] "SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2004-12-22 77824] "SiSRaid"=C:\Program Files\Silicon Integrated Systems\SiSRaidPackage\SRaid.exe [2004-12-22 892928] "ATIPTA"=C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [2003-06-05 335872] "HP Software Update"=C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe [2007-10-14 49152] "hpqSRMon"=C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSRMon.exe [2007-08-22 80896] "BearShare"=C:\Program Files\BearShare\BearShare.exe /pause [] "avgnt"=C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe /min [] "KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k [] "avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-02-05 81000] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"=C:\WINDOWS\System32\ctfmon.exe [2002-09-20 13312] "MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2002-08-20 1511453] "Gadu-Gadu"=C:\Program Files\Gadu-Gadu\gg.exe /tray [] "SService"=C:\Documents and Settings\dom.DOM-52W94ZBSY2U\77710.exe [] "WhenUSave"=C:\Program Files\Save\Save.exe [] "Odkurzacz-MCD"=C:\Program Files\Odkurzacz\odk_mcd.exe [2008-08-16 264704] "Nowe Gadu-Gadu"=C:\Program Files\Nowe Gadu-Gadu\gg.exe [2009-05-28 10486376] "Skype"=C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Pulpit\Phone\Skype.exe [2009-05-26 24385320] C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programy\Autostart HP Digital Imaging Monitor.lnk - C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe hp psc 2000 Series.lnk - C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe hpoddt01.exe.lnk - C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLS"="C:\WINDOWS\System32\dsound32.dll" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\btogncjm] C:\WINDOWS\system32\appylxx.dll [2001-08-17 103936] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ccb2fc9b530] C:\WINDOWS\System32\dsound32.dll [] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] ======File associations====== .js - edit - ======List of files/folders created in the last 1 months====== 2009-06-30 12:51:33 ----D---- C:\rsit 2009-06-29 20:26:05 ----A---- C:\WINDOWS\System32\aswBoot.exe 2009-06-27 11:27:58 ----D---- C:\Program Files\SkanerOnline 2009-06-26 22:25:30 ----A---- C:\WINDOWS\System32\MFC71.dll 2009-06-26 22:25:27 ----D---- C:\Program Files\Alwil Software 2009-06-26 17:20:04 ----AD---- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\TEMP 2009-06-25 23:43:35 ----A---- C:\WINDOWS\bestplayer.ini 2009-06-25 21:22:36 ----D---- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Dane aplikacji\AVG7 2009-06-25 20:22:20 ----D---- C:\Program Files\Common Files\Wise Installation Wizard 2009-06-25 19:54:50 ----D---- C:\Program Files\Kaspersky Lab 2009-06-25 19:11:31 ----D---- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\NortonInstaller 2009-06-25 10:37:45 ----D---- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Dane aplikacji\skypePM 2009-06-24 18:06:45 ----D---- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\OpenFM 2009-06-24 18:05:23 ----D---- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Dane aplikacji\OpenFM 2009-06-24 16:47:40 ----D---- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Dane aplikacji\Nowe Gadu-Gadu 2009-06-24 16:47:17 ----D---- C:\Program Files\Nowe Gadu-Gadu 2009-06-24 16:45:32 ----A---- C:\Program Files\nowegg.exe 2009-06-24 10:59:02 ----D---- C:\Program Files\Edgard ======List of files/folders modified in the last 1 months====== 2009-06-30 12:48:58 ----D---- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Dane aplikacji\Skype 2009-06-30 12:43:47 ----D---- C:\WINDOWS\Prefetch 2009-06-30 12:41:04 ----D---- C:\WINDOWS\Temp 2009-06-30 11:29:54 ----D---- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Dane aplikacji\HPAppData 2009-06-30 11:25:19 ----D---- C:\WINDOWS\System32\CatRoot2 2009-06-30 11:24:53 ----SHD---- C:\System Volume Information 2009-06-30 11:24:53 ----D---- C:\WINDOWS\System32\Restore 2009-06-30 10:14:03 ----D---- C:\WINDOWS\system32 2009-06-30 09:50:34 ----D---- C:\WINDOWS 2009-06-30 09:49:01 ----D---- C:\WINDOWS\Debug 2009-06-30 09:48:43 ----D---- C:\WINDOWS\System32\config 2009-06-30 01:43:10 ----A---- C:\WINDOWS\SchedLgU.Txt 2009-06-30 01:39:47 ----D---- C:\Program Files\Odkurzacz 2009-06-30 00:20:16 ----SD---- C:\WINDOWS\Tasks 2009-06-29 23:12:44 ----D---- C:\WINDOWS\System32\drivers 2009-06-29 20:27:56 ----A---- C:\WINDOWS\System32\TDSSfxwp.dll 2009-06-27 11:27:58 ----SD---- C:\WINDOWS\Downloaded Program Files 2009-06-27 11:27:58 ----AD---- C:\Program Files 2009-06-27 11:04:26 ----D---- C:\WINDOWS\Minidump 2009-06-26 23:57:24 ----D---- C:\Program Files\Windows Media Player 2009-06-26 23:57:24 ----D---- C:\Program Files\Sebran 2009-06-26 23:57:24 ----D---- C:\Program Files\Messenger 2009-06-26 23:57:24 ----D---- C:\Program Files\Media Player Classic 2009-06-26 23:57:24 ----D---- C:\Program Files\K-Lite Codec Pack 2009-06-26 23:02:16 ----D---- C:\WINDOWS\System32\wbem 2009-06-26 23:02:16 ----D---- C:\WINDOWS\Registration 2009-06-26 21:56:34 ----SHD---- C:\WINDOWS\Installer 2009-06-26 21:56:34 ----HD---- C:\Config.Msi 2009-06-26 21:56:34 ----D---- C:\WINDOWS\WinSxS 2009-06-26 21:44:12 ----D---- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\Avg7 2009-06-26 21:37:31 ----SD---- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Dane aplikacji\Microsoft 2009-06-26 17:26:43 ----D---- C:\Documents and Settings 2009-06-26 17:08:00 ----D---- C:\Program Files\Grisoft 2009-06-25 23:15:12 ----D---- C:\WINDOWS\system 2009-06-25 20:22:20 ----D---- C:\Program Files\Common Files 2009-06-25 16:01:33 ----HD---- C:\Program Files\InstallShield Installation Information 2009-06-25 10:36:52 ----D---- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\Skype 2009-06-25 10:36:51 ----D---- C:\Program Files\Common Files\Skype 2009-06-22 22:57:57 ----D---- C:\Documents and Settings\dom.DOM-52W94ZBSY2U\Dane aplikacji\DeepBurner ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\System32\drivers\Aavmker4.sys [2009-02-05 26944] R1 AFS2K;AFS2k; C:\WINDOWS\System32\drivers\AFS2K.sys [2007-09-26 82380] R1 aswSP;avast! Self Protection; C:\WINDOWS\System32\drivers\aswSP.sys [2009-02-05 114768] R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\System32\drivers\aswTdi.sys [2009-02-05 51376] R1 ssmdrv;ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [2007-03-01 28352] R1 StarOpen;StarOpen; C:\WINDOWS\System32\drivers\StarOpen.sys [2006-07-24 5632] R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\System32\drivers\aswMon2.sys [2009-02-05 94032] R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-12-22 2304320] R3 aswRdr;aswRdr; C:\WINDOWS\System32\drivers\aswRdr.sys [2009-02-05 23152] R3 ati2mtag;ati2mtag; C:\WINDOWS\System32\DRIVERS\ati2mtag.sys [2003-06-03 576512] R3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [2007-11-01 49920] R3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [2007-11-01 16496] R3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [2007-11-01 21568] R3 SISNIC;SiS PCI Fast Ethernet Adapter Driver; C:\WINDOWS\System32\DRIVERS\sisnic.sys [2002-07-10 32256] R3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2002-08-29 28160] R3 usbehci;Sterownik Miniport rozszerzonego kontrolera hosta USB 2.0 Microsoft; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2002-08-29 19328] R3 usbhub;Standardowy sterownik koncentratora USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2002-08-29 51968] R3 usbohci;Sterownik Miniport otwartego kontrolera hosta USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbohci.sys [2002-08-29 15744] R3 usbprint;Klasa PRINTER USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbprint.sys [2002-08-29 24960] R3 usbscan;Sterownik skanera USB; C:\WINDOWS\System32\DRIVERS\usbscan.sys [2002-08-29 14208] R3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2002-08-29 21760] S1 avgntdd;avgntdd; C:\WINDOWS\SYSTEM32\DRIVERS\avgntdd.sys [] S1 avipbb;avipbb; C:\WINDOWS\System32\DRIVERS\avipbb.sys [] S2 avGuard;avGuard; AshAvSrv.exe [] S3 HidUsb;Sterownik Microsoft klasy HID; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2001-08-17 9600] S3 mouhid;Sterownik myszy HID; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-10-26 12160] S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\nmwcd.sys [2007-02-22 137216] S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\nmwcdc.sys [2007-02-22 8320] S3 nmwcdcj;Nokia USB Port; C:\WINDOWS\system32\drivers\nmwcdcj.sys [2007-02-22 12288] S3 nmwcdcm;Nokia USB Modem; C:\WINDOWS\system32\drivers\nmwcdcm.sys [2007-02-22 12288] S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\WINDOWS\System32\DRIVERS\sscdbus.sys [2005-12-22 80272] S3 sscdmdfl;SAMSUNG CDMA Modem Filter; C:\WINDOWS\System32\DRIVERS\sscdmdfl.sys [2005-12-22 10864] S3 sscdmdm;SAMSUNG CDMA Modem Drivers; C:\WINDOWS\System32\DRIVERS\sscdmdm.sys [2005-12-22 137884] S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2005-01-28 18944] S4 IntelIde;IntelIde; C:\WINDOWS\System32\drivers\IntelIde.sys [] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-02-05 18752] R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\System32\Ati2evxx.exe [2003-06-03 282624] R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-02-05 138680] R2 CCALib8;Canon Camera Access Library 8; C:\Program Files\Canon\CAL\CALMAIN.exe [2005-06-02 86606] R2 hpqddsvc;Usługa HP CUE DeviceDiscovery; C:\WINDOWS\system32\svchost.exe [2001-10-26 12800] R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2001-10-26 12800] R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2001-10-26 12800] R2 qjozusuy;IEEE-1284.4 HPZid412Controller; C:\WINDOWS\System32\svchost.exe [2001-10-26 12800] R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\System32\wdfmgr.exe [2005-01-28 38912] R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-02-05 352920] R3 hpqcxs08;hpqcxs08; C:\WINDOWS\system32\svchost.exe [2001-10-26 12800] S2 AntiVirScheduler;Avira AntiVir Personal - Free Antivirus Scheduler; C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe [] S2 AntiVirService;Avira AntiVir Personal - Free Antivirus Guard; C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe [] S2 AntiVirUpgradeService;Avira Upgrade Service; C:\DOCUME~1\DOM~1.DOM\USTAWI~1\Temp\AVSETUP_4a452756\basic\avupgsvc.exe /TEMPSTART:C:\DOCUME~1\DOM~1.DOM\USTAWI~1\Temp\AVSETUP_4a452756\basic\setup.exe /NOTEMPCLEANUP /CROSSUPGRADE [] S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2003-06-05 114688] S3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-02-05 254040] S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2007-03-26 292864] -----------------EOF-----------------
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.