Rcu_89 utworzono 19 lipca 2009 utworzono 19 lipca 2009 Witam! Jestem tu nowy i potrzebuje POMOCY Podczas próby uruchomienia niektórych programów typu gg czy jakąś gre zainstalowaną po tym jak zacząl sie ten problem lub nawet zegar windowsa wyskakuje mi okno "uruchomienie tej aplikacji nie powiodło się ponieważ nie znaleziono msbrllkqwn.dll. Ponownie zainstalowanie aplikacji może naprawić ten problem". To samo dzieje sie gdy chce otworzyc wlasciwosci w moim komputerze. Kiedy zaś próbowałem uruchomić przywracanie systemu wyskoczył bład rstrui.exe nie mozna znalezc skaldnika i znow chodziło o plik msbrllkqwn. To samo powtarza sie z plikiem rundll32.exe i dwwin.exe i także prosza o plik msbrllkqwn.dll. . Najgorsze jest to że nigdzie nie moge znależć owego pliku msbrllkqwn.dll. Ani nigdzie w internecie ani nie ma go na plycie windowsa xp. wiec nie moge go wrzucić z powrotem. Może poprostu taki plik nie istnieje a jest to jakis wirus... Pamietam ze zaczeło sie to wszsytko po tym jak moj antywirus wykryl jakiegos trojana... CO MAM ZROBIC???? Z góry DZIEKUJE ZA POMOC xD
Gość komentarz 19 lipca 2009 komentarz 19 lipca 2009 Daj log z OTL: http://www.forumpc.pl/index.php?showtopic=104338 .
Rcu_89 komentarz 19 lipca 2009 Autor komentarz 19 lipca 2009 (edytowane) Daj log z OTL: http://www.forumpc.pl/index.php?showtopic=104338Oto mój log: OTL logfile created on: 2009-07-19 21:55:10 - Run 1OTL by OldTimer - Version 3.0.9.2 Folder = E:\Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstationInternet Explorer (Version = 6.0.2900.2180)Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd255,48 Mb Total Physical Memory | 118,04 Mb Available Physical Memory | 46,20% Memory free619,13 Mb Paging File | 308,73 Mb Available in Paging File | 49,87% Paging File freePaging file location(s): c:\pagefile.sys 384 768 [binary data]%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program FilesDrive C: | 9,77 Gb Total Space | 0,61 Gb Free Space | 6,26% Space Free | Partition Type: NTFSDrive D: | 502,98 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFSDrive E: | 21,49 Gb Total Space | 0,21 Gb Free Space | 0,97% Space Free | Partition Type: NTFSDrive F: | 24,64 Gb Total Space | 0,70 Gb Free Space | 2,86% Space Free | Partition Type: NTFSDrive G: | 1,69 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFSH: Drive not present or media not loadedI: Drive not present or media not loadedComputer Name: DAREKCurrent User Name: synLogged in as Administrator.Current Boot Mode: NormalScan Mode: All usersCompany Name Whitelist: OnSkip Microsoft Files: OffFile Age = 30 DaysOutput = Standard========== Processes (SafeList) ==========PRC - [2005-07-08 18:24:46 | 00,871,424 | ---- | M] (Nero AG) -- C:\Program Files\Ahead\InCD\InCDsrv.exePRC - [2008-10-23 22:39:46 | 00,151,297 | ---- | M] (Avira GmbH) -- C:\Program Files\AntiVir PersonalEdition Classic\avguard.exePRC - [2008-10-23 22:39:50 | 00,068,865 | ---- | M] (Avira GmbH) -- C:\Program Files\AntiVir PersonalEdition Classic\sched.exePRC - [2005-04-01 17:16:00 | 00,127,043 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvsvc32.exePRC - [2007-05-28 18:57:54 | 00,275,968 | ---- | M] (Rocket Division Software) -- E:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exePRC - [2003-10-16 19:07:10 | 00,024,576 | ---- | M] () -- C:\Program Files\Neostrada TP\CnxMon.exePRC - [2004-01-26 12:38:38 | 00,866,816 | ---- | M] (THOMSON Telecom Belgium) -- C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exePRC - [2004-08-22 18:05:02 | 00,081,920 | ---- | M] (DAEMON'S HOME) -- C:\Program Files\D-Tools\daemon.exePRC - [2008-08-02 18:01:07 | 00,266,497 | ---- | M] (Avira GmbH) -- C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exePRC - [2005-06-17 13:04:10 | 00,098,304 | ---- | M] (Apple Computer, Inc.) -- C:\Program Files\QuickTime\qttask.exePRC - [2007-03-26 16:23:53 | 00,185,896 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Common Files\Real\Update_OB\realsched.exePRC - [2008-08-04 01:02:20 | 00,036,352 | ---- | M] () -- C:\Program Files\Winamp\winampa.exePRC - [2004-10-13 18:24:37 | 01,694,208 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Messenger\msmsgs.exePRC - [2007-07-09 09:39:12 | 02,119,104 | ---- | M] (Gadu-Gadu S.A.) -- C:\Program Files\Gadu-Gadu\gg.exePRC - [2004-07-14 08:44:40 | 00,585,728 | R--- | M] (VIA Technologies) -- C:\Program Files\VIA\RAID\raid_tool.exePRC - [2004-08-04 00:44:20 | 01,882,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exePRC - [2004-08-04 00:44:22 | 00,093,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\iexplore.exePRC - [2009-07-19 21:52:24 | 00,513,536 | ---- | M] (OldTimer Tools) -- E:\OTL.exe========== Win32 Services (SafeList) ==========SRV - [2008-10-23 22:39:50 | 00,068,865 | ---- | M] (Avira GmbH) -- C:\Program Files\AntiVir PersonalEdition Classic\sched.exe -- (AntiVirScheduler [Auto | Running])SRV - [2008-10-23 22:39:46 | 00,151,297 | ---- | M] (Avira GmbH) -- C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe -- (AntiVirService [Auto | Running])SRV - [2009-03-25 20:53:35 | 00,183,280 | ---- | M] (Google) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc [Auto | Stopped])SRV - [2004-08-04 00:44:08 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -- (helpsvc [Auto | Running])SRV - [2005-07-08 18:24:46 | 00,871,424 | ---- | M] (Nero AG) -- C:\Program Files\Ahead\InCD\InCDsrv.exe -- (InCDsrv [Auto | Running])SRV - [2005-04-01 17:16:00 | 00,127,043 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvsvc32.exe -- (NVSvc [Auto | Running])SRV - [2007-05-28 18:57:54 | 00,275,968 | ---- | M] (Rocket Division Software) -- E:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE [Auto | Running])========== Driver Services (SafeList) ==========DRV - [2003-12-08 12:53:48 | 00,053,600 | ---- | M] (THOMSON) -- C:\WINDOWS\System32\DRIVERS\alcan5wn.sys -- (alcan5wn [On_Demand | Running])DRV - [2003-12-08 12:53:46 | 00,070,688 | ---- | M] (THOMSON) -- C:\WINDOWS\System32\DRIVERS\alcaudsl.sys -- (alcaudsl [On_Demand | Running])DRV - [2001-12-20 03:37:32 | 00,243,164 | R--- | M] (Avance Logic, Inc.) -- C:\WINDOWS\System32\drivers\ALCXWDM.SYS -- (ALCXWDM [On_Demand | Stopped])DRV - [2009-05-27 22:30:39 | 00,011,608 | ---- | M] (Avira GmbH) -- C:\Program Files\AntiVir PersonalEdition Classic\avgio.sys -- (avgio [system | Running])DRV - [2009-05-27 22:30:41 | 00,052,056 | ---- | M] (Avira GmbH) -- C:\Program Files\AntiVir PersonalEdition Classic\avgntflt.sys -- (avgntflt [On_Demand | Running])DRV - [2009-05-27 22:30:49 | 00,075,096 | ---- | M] (Avira GmbH) -- C:\WINDOWS\System32\DRIVERS\avipbb.sys -- (avipbb [system | Running])DRV - [2004-08-23 10:21:12 | 00,821,760 | R--- | M] (C-Media Inc) -- C:\WINDOWS\System32\drivers\cmuda.sys -- (cmuda [On_Demand | Running])DRV - [2004-08-22 17:31:10 | 00,155,136 | ---- | M] ( ) -- C:\WINDOWS\System32\DRIVERS\d347bus.sys -- (d347bus [boot | Running])DRV - [2004-08-22 17:31:48 | 00,005,248 | ---- | M] ( ) -- C:\WINDOWS\System32\Drivers\d347prt.sys -- (d347prt [boot | Running])DRV - [2001-12-11 04:39:52 | 00,070,656 | R--- | M] (Promise Technology, Inc.) -- C:\WINDOWS\System32\DRIVERS\fasttrak.sys -- (fasttrak [boot | Running])DRV - [2001-08-17 21:13:08 | 00,027,165 | ---- | M] (VIA Technologies, Inc. ) -- C:\WINDOWS\System32\DRIVERS\fetnd5.sys -- (FETNDIS [On_Demand | Stopped])DRV - [2004-04-15 04:57:20 | 00,042,496 | R--- | M] (VIA Technologies, Inc. ) -- C:\WINDOWS\System32\DRIVERS\fetnd5b.sys -- (FETNDISB [On_Demand | Running])DRV - [2004-08-04 00:54:52 | 00,010,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\DRIVERS\gameenum.sys -- (gameenum [On_Demand | Running])DRV - [2005-07-08 18:17:54 | 00,099,584 | ---- | M] (Nero AG) -- C:\WINDOWS\System32\drivers\InCDfs.sys -- (InCDfs [Disabled | Running])DRV - [2005-07-08 18:17:36 | 00,029,696 | ---- | M] (Nero AG) -- C:\WINDOWS\System32\DRIVERS\InCDPass.sys -- (InCDPass [system | Running])DRV - [2005-07-08 16:17:32 | 00,028,672 | ---- | M] (Nero AG) -- C:\WINDOWS\System32\drivers\InCDrm.sys -- (incdrm [system | Running])DRV - [2005-02-11 10:19:20 | 00,055,216 | ---- | M] (MCCI) -- C:\WINDOWS\System32\DRIVERS\k750bus.sys -- (k750bus [On_Demand | Stopped])DRV - [2005-02-11 10:21:02 | 00,006,576 | ---- | M] (MCCI) -- C:\WINDOWS\System32\DRIVERS\k750mdfl.sys -- (k750mdfl [On_Demand | Stopped])DRV - [2005-02-11 10:21:10 | 00,089,872 | ---- | M] (MCCI) -- C:\WINDOWS\System32\DRIVERS\k750mdm.sys -- (k750mdm [On_Demand | Stopped])DRV - [2005-02-11 10:22:48 | 00,081,728 | ---- | M] (MCCI) -- C:\WINDOWS\System32\DRIVERS\k750mgmt.sys -- (k750mgmt [On_Demand | Stopped])DRV - [2005-02-11 10:24:24 | 00,079,488 | ---- | M] (MCCI) -- C:\WINDOWS\System32\DRIVERS\k750obex.sys -- (k750obex [On_Demand | Stopped])DRV - [2001-08-17 23:00:04 | 00,002,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\msmpu401.sys -- (ms_mpu401 [On_Demand | Stopped])DRV - [2005-04-01 17:16:00 | 03,454,656 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\DRIVERS\nv4_mini.sys -- (nv [On_Demand | Running])DRV - [2003-12-05 11:46:36 | 00,010,368 | ---- | M] (Padus, Inc.) -- C:\WINDOWS\System32\drivers\pfc.sys -- (pfc [On_Demand | Running])DRV - [2001-08-17 21:49:56 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\System32\DRIVERS\ptilink.sys -- (Ptilink [On_Demand | Running])DRV - [2007-03-08 01:51:00 | 00,043,528 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\DRIVERS\PxHelp20.sys -- (PxHelp20 [boot | Running])DRV - [2004-08-03 22:31:34 | 00,020,992 | ---- | M] (Realtek Semiconductor Corporation) -- C:\WINDOWS\System32\DRIVERS\RTL8139.SYS -- (rtl8139 [On_Demand | Stopped])DRV - [2004-07-17 11:36:38 | 00,027,440 | ---- | M] () -- C:\WINDOWS\System32\DRIVERS\secdrv.sys -- (Secdrv [On_Demand | Stopped])DRV - [2004-12-09 17:25:49 | 00,047,104 | ---- | M] (Protection Technology) -- C:\WINDOWS\System32\drivers\sfdrv01.sys -- (sfdrv01 [boot | Running])DRV - [2004-10-28 12:47:59 | 00,006,656 | ---- | M] (Protection Technology) -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02 [boot | Running])DRV - [2004-12-03 12:20:41 | 00,020,544 | ---- | M] (Protection Technology) -- C:\WINDOWS\System32\drivers\sfsync02.sys -- (sfsync02 [boot | Running])DRV - [2009-03-13 19:39:44 | 00,717,296 | ---- | M] () -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd [boot | Running])DRV - [2007-03-01 10:34:36 | 00,028,352 | ---- | M] (Avira GmbH) -- C:\WINDOWS\System32\DRIVERS\ssmdrv.sys -- (ssmdrv [system | Running])DRV - [2009-03-20 13:56:27 | 00,002,368 | ---- | M] (AntiCracking) -- C:\WINDOWS\System32\SVKP.sys -- (SVKP [Auto | Running])DRV - [2003-07-02 05:42:00 | 00,027,904 | ---- | M] (VIA Technologies, Inc.) -- C:\WINDOWS\System32\DRIVERS\viaagp1.sys -- (viaagp [boot | Running])DRV - [2003-07-02 05:42:00 | 00,027,904 | ---- | M] (VIA Technologies, Inc.) -- C:\WINDOWS\System32\DRIVERS\viaagp1.sys -- (viaagp1 [boot | Running])DRV - [2001-10-18 13:00:00 | 00,006,144 | ---- | M] (VIA Technologies, Inc.) -- C:\WINDOWS\System32\DRIVERS\viaidexp.sys -- (ViaIde [boot | Running])DRV - [2004-05-18 10:55:26 | 00,074,112 | R--- | M] (VIA Technologies inc,.ltd) -- C:\WINDOWS\system32\DRIVERS\viamraid.sys -- (viamraid [boot | Running])DRV - [2001-12-18 14:45:04 | 00,003,279 | ---- | M] (VIA Technologies. Inc.) -- C:\WINDOWS\System32\Drivers\VIAPFD.SYS -- (VIAPFD [system | Running])========== Standard Registry (SafeList) ==================== Internet Explorer ==========IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = wyborcza.pl/0,0.html?p=019IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearchIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htmIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearchIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?p...ER}&ar=homeIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htmIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ieIE - URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0IE - HKU\S-1-5-19\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0IE - HKU\S-1-5-20\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0IE - HKU\S-1-5-21-507921405-1202660629-1343024091-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htmIE - HKU\S-1-5-21-507921405-1202660629-1343024091-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.comIE - HKU\S-1-5-21-507921405-1202660629-1343024091-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/IE - URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Neostrada TP\SearchPageURL.dll ()IE - URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)IE - URLSearchHook: {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfre1.dll (Conduit Ltd.)IE - HKU\S-1-5-21-507921405-1202660629-1343024091-1004\S-1-5-21-507921405-1202660629-1343024091-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0========== FireFox ==========FF - prefs.js..browser.search.defaultenginename: "Winamp Search"FF - prefs.js..browser.search.defaulturl: "http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampie7&query="FF - prefs.js..browser.search.selectedEngine: "Winamp Search"FF - prefs.js..browser.search.useDBForOrder: trueFF - prefs.js..browser.startup.homepage: "http://www.winamp.com?src=toolbar"FF - prefs.js..extensions.enabledItems: {3112ca9c-de6d-4884-a869-9855de68056c}:3.1.20090119WFF - prefs.js..extensions.enabledItems: {0b38152b-1b20-484d-a11f-5e04a9b0661f}:5.6.10.1FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.5FF - prefs.js..keyword.URL: "http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampab&query="FF - HKLM\software\mozilla\Mozilla Firefox 2.0\extensions\\Components: C:\Program Files\Mozilla Firefox\componentsFF - HKLM\software\mozilla\Mozilla Firefox 2.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\pluginsFF - HKLM\software\mozilla\Mozilla Firefox 2.0.0.7\extensions\\Components: C:\PROGRA~1\Mozilla Firefox\componentsFF - HKLM\software\mozilla\Mozilla Firefox 2.0.0.7\extensions\\Plugins: C:\PROGRA~1\Mozilla Firefox\pluginsFF - HKLM\software\mozilla\Mozilla Firefox 3.0.5\extensions\\Components: E:\Program Files\Mozilla Firefox\components [2009-07-13 15:39:24 | 00,000,000 | ---D | M]FF - HKLM\software\mozilla\Mozilla Firefox 3.0.5\extensions\\Plugins: E:\Program Files\Mozilla Firefox\plugins [2009-07-14 15:36:03 | 00,000,000 | ---D | M][2008-12-22 21:29:45 | 00,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\mozilla\Extensions[2008-12-22 21:29:45 | 00,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}[2009-07-12 13:03:19 | 00,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\mozilla\Firefox\Profiles\ye3pbfhg.default\extensions[2009-07-12 12:52:05 | 00,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\mozilla\Firefox\Profiles\ye3pbfhg.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}[2009-07-12 12:52:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\mozilla\Firefox\Profiles\ye3pbfhg.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}[2009-07-12 12:52:37 | 00,001,196 | ---- | M] () -- C:\Documents and Settings\TEMP\Dane aplikacji\Mozilla\FireFox\Profiles\ye3pbfhg.default\searchplugins\winamp-search.xmlHosts file not foundO2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx ()O2 - BHO: (Winamp Toolbar Loader) - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)O2 - BHO: (no name) - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - No CLSID value found.O2 - BHO: (TBSB07218 Class) - {3AF93A29-A296-4AB0-9011-D85A559203B3} - C:\Program Files\TurboUpload\TurboUpload Toolbar\turboupload.dll File not foundO2 - BHO: (UrlHelper Class) - {74322BF9-DF26-493f-B0DA-6D2FC5E6429E} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareIEHelper.dll File not foundO2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll File not foundO2 - BHO: (IeMonitorBho Class) - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll (Megaupload Limited)O2 - BHO: (EpsonToolBandKicker Class) - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)O2 - BHO: (free-downloads.net Toolbar) - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfre1.dll (Conduit Ltd.)O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\TEMP\Dane aplikacji\Nowe Gadu-Gadu\_userdata\ggbho.1.dll (GG Network S.A.)O3 - HKLM\..\Toolbar: (TurboUpload Toolbar) - {01E69986-A054-4C52-ABE8-EF63DF1C5211} - C:\Program Files\TurboUpload\TurboUpload Toolbar\turboupload.dll File not foundO3 - HKLM\..\Toolbar: (&Google) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll File not foundO3 - HKLM\..\Toolbar: (BearShare MediaBar) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll File not foundO3 - HKLM\..\Toolbar: (Winamp Toolbar) - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)O3 - HKLM\..\Toolbar: (free-downloads.net Toolbar) - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfre1.dll (Conduit Ltd.)O3 - HKLM\..\Toolbar: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)O3 - HKU\S-1-5-21-507921405-1202660629-1343024091-1004\..\Toolbar\WebBrowser: (TurboUpload Toolbar) - {01E69986-A054-4C52-ABE8-EF63DF1C5211} - C:\Program Files\TurboUpload\TurboUpload Toolbar\turboupload.dll File not foundO3 - HKU\S-1-5-21-507921405-1202660629-1343024091-1004\..\Toolbar\WebBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll File not foundO3 - HKU\S-1-5-21-507921405-1202660629-1343024091-1004\..\Toolbar\WebBrowser: (BearShare MediaBar) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll File not foundO3 - HKU\S-1-5-21-507921405-1202660629-1343024091-1004\..\Toolbar\WebBrowser: (Winamp Toolbar) - {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)O3 - HKU\S-1-5-21-507921405-1202660629-1343024091-1004\..\Toolbar\WebBrowser: (free-downloads.net Toolbar) - {ECDEE021-0D17-467F-A1FF-C7A115230949} - C:\Program Files\free-downloads.net\tbfre1.dll (Conduit Ltd.)O3 - HKU\S-1-5-21-507921405-1202660629-1343024091-1004\..\Toolbar\WebBrowser: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)O4 - HKLM..\Run: [avgnt] C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe (Avira GmbH)O4 - HKLM..\Run: [DAEMON Tools-1033] C:\Program Files\D-Tools\daemon.exe (DAEMON'S HOME)O4 - HKLM..\Run: [Flashget] C:\Program Files\FlashGet\FlashGet.exe File not foundO4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe (NVIDIA Corporation)O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\qttask.exe (Apple Computer, Inc.)O4 - HKLM..\Run: [soundMan] C:\WINDOWS\soundman.exe (Avance Logic, Inc.)O4 - HKLM..\Run: [speedTouch USB Diagnostics] C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe (THOMSON Telecom Belgium)O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe ()O4 - HKLM..\Run: [WooCnxMon] C:\Program Files\Neostrada TP\CnxMon.exe ()O4 - HKLM..\Run: [WOOTASKBARICON] C:\Program Files\Neostrada TP\TaskBarIcon.exe (France Télécom R&D)O4 - HKLM..\Run: [WOOWATCH] C:\Program Files\Neostrada TP\Watch.exe (France Télécom R&D)O4 - HKU\S-1-5-21-507921405-1202660629-1343024091-1004..\Run: [AlcoholAutomount] E:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe (Alcohol Soft Development Team)O4 - HKU\S-1-5-21-507921405-1202660629-1343024091-1004..\Run: [Gadu-Gadu] C:\Program Files\Gadu-Gadu\gg.exe (Gadu-Gadu S.A.)O4 - HKU\S-1-5-21-507921405-1202660629-1343024091-1004..\Run: [MSMSGS] C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)O4 - HKU\S-1-5-21-507921405-1202660629-1343024091-1004..\Run: [NBJ] C:\Program Files\Ahead\Nero BackItUp\NBJ.exe (Ahead Software AG)O4 - HKU\S-1-5-21-507921405-1202660629-1343024091-1004..\Run: [Nowe Gadu-Gadu] C:\Program Files\Nowe Gadu-Gadu\gg.exe (GG Network S.A.)O4 - HKU\S-1-5-21-507921405-1202660629-1343024091-1004..\Run: [Odkurzacz-MCD] E:\Program Files\Odkurzacz\odk_mcd.exe (Franmo Software)O4 - HKU\S-1-5-21-507921405-1202660629-1343024091-1004..\Run: [Orb] C:\Program Files\Winamp Remote\bin\OrbTray.exe (Orb Networks)O4 - HKU\S-1-5-21-507921405-1202660629-1343024091-1004..\Run: [PowerBar] File not foundO4 - HKU\S-1-5-21-507921405-1202660629-1343024091-1004..\Run: [spyware Doctor] C:\Program Files\Spyware Doctor\swdoctor.exe File not foundO4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\VIA RAID TOOL.lnk = C:\Program Files\VIA\RAID\raid_tool.exe (VIA Technologies)O4 - Startup: C:\Documents and Settings\syn\Menu Start\Programy\Autostart\UniSpiker-2.6.lnk = F:\UniSpiker-2.6\uni_spiker-2.6.exe File not foundO4 - Startup: C:\Documents and Settings\TEMP\Menu Start\Programy\Autostart\Y'z ToolBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.exe (Y'z@Home)O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145O7 - HKU\S-1-5-21-507921405-1202660629-1343024091-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149O8 - Extra context menu item: &Download All with FlashGet - C:\Program Files\FlashGet\jc_all.htm File not foundO8 - Extra context menu item: &Download with FlashGet - C:\Program Files\FlashGet\jc_link.htm File not foundO8 - Extra context menu item: &Google Search - C:\Program Files\Google\GoogleToolbar1.dll File not foundO8 - Extra context menu item: &Stáhnout FlashGetem - C:\Program Files\FlashGet\jc_link.htm File not foundO8 - Extra context menu item: &Stáhnout všechno FlashGetem - C:\Program Files\FlashGet\jc_all.htm File not foundO8 - Extra context menu item: &Translate English Word - C:\Program Files\Google\GoogleToolbar1.dll File not foundO8 - Extra context menu item: &Winamp Search - C:\Documents and Settings\All Users\Dane aplikacji\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html ()O8 - Extra context menu item: Backward Links - C:\Program Files\Google\GoogleToolbar1.dll File not foundO8 - Extra context menu item: Cached Snapshot of Page - C:\Program Files\Google\GoogleToolbar1.dll File not foundO8 - Extra context menu item: Pobierz za pomocą Mega Manager... - C:\Program Files\Megaupload\Mega Manager\mm_file.htm File not foundO8 - Extra context menu item: Similar Pages - C:\Program Files\Google\GoogleToolbar1.dll File not foundO8 - Extra context menu item: Translate Page into English - C:\Program Files\Google\GoogleToolbar1.dll File not foundO9 - Extra Button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe File not foundO9 - Extra 'Tools' menuitem : FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe File not foundO9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (Microsoft Corporation)O9 - Extra Button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)O9 - Extra 'Tools' menuitem : Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)O12 - Plugin for: .spop - C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll (Intertrust Technologies, Inc.)O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.O15 - HKU\S-1-5-21-507921405-1202660629-1343024091-1004\..Trusted Domains: ([]msn in Mój komputer)O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwa...director/sw.cab (Shockwave ActiveX Control)O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shockwa...director/sw.cab (Shockwave ActiveX Control)O16 - DPF: {4BFD075D-C36E-4F28-BB0A-5D472795197A} http://powersoccer.minigry.pl/applet/PowerLoader.cab (PowerLoader Class)O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/products/plugin/autodl..._4_0_03-win.cab (Java Plug-in 1.4.0_03)O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flash...r/ultrashim.cab (Reg Error: Key error.)O16 - DPF: {A4639D2F-774E-11D3-A490-00C04F6843FB} http://download.microsoft.com/download/viz...N-US/msorun.cab (Reg Error: Key error.)O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697514} http://www.nullsoft.com/nsv/embed/nsvplayx_vp3_mp3.cab (NsvPlayX Control)O16 - DPF: {CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA} http://java.sun.com/products/plugin/autodl..._4_0_03-win.cab (Java Plug-in 1.4.0_03)O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)O18 - Protocol\Handler\ipp - No CLSID value foundO18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)O18 - Protocol\Handler\msdaipp - No CLSID value foundO18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)O18 - Protocol\Handler\vnd.ms.radio {3DA2AA3B-3D96-11D2-9BD2-204C4F4F5020} - C:\WINDOWS\System32\msdxm.ocx (Microsoft Corporation)O20 - AppInit_DLLs: (NVDESK32.DLL) - .castanet [2002-09-07 21:48:18 | 00,000,000 | ---D | M]O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation)O20 - Winlogon\Notify\WgaLogon: DllName - Reg Error: Value error. - Reg Error: Value error. File not foundO24 - Desktop Components:0 (Moja bieżąca strona główna) - About:HomeO28 - HKLM ShellExecuteHooks: {38101905-D80F-4788-96F6-98618116178A} - C:\WINDOWS\System32\flashadgmn32.dll ()O31 - SafeBoot: AlternateShell - cmd.exeO32 - HKLM CDRom: AutoRun - 1O32 - AutoRun File - [2002-05-13 02:22:44 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]O32 - AutoRun File - [2001-10-26 18:12:38 | 00,000,112 | R--- | M] () - D:\autorun.inf -- [ CDFS ]O32 - AutoRun File - [2004-07-20 20:31:56 | 00,000,000 | ---- | M] () - E:\autoexec.cfg -- [ NTFS ]O32 - AutoRun File - [2002-10-22 19:33:28 | 00,737,280 | R--- | M] () - G:\Autorun.exe -- [ CDFS ]O32 - AutoRun File - [2006-03-15 11:13:08 | 00,000,039 | R--- | M] () - G:\Autorun.inf -- [ CDFS ]O33 - MountPoints2\{701d84c0-52b8-11da-a795-806d6172696f}\Shell - "" = AutoRunO33 - MountPoints2\{701d84c0-52b8-11da-a795-806d6172696f}\Shell\AutoRun\command - "" = G:\Autorun.exe -- [2002-10-22 19:33:28 | 00,737,280 | R--- | M] ()O33 - MountPoints2\{d2cf053e-401f-11dc-92f7-806d6172696f}\Shell - "" = AutoRunO33 - MountPoints2\{d2cf053e-401f-11dc-92f7-806d6172696f}\Shell\AutoRun\command - "" = D:\setup.exe -- [2001-10-26 19:29:48 | 02,580,480 | R--- | M] (Microsoft Corporation)O33 - MountPoints2\I\Shell - "" = AutoRunO33 - MountPoints2\I\Shell\AutoRun\command - "" = I:\USBAutoRun.exe -- File not foundO34 - HKLM BootExecute: (autocheck) - File not foundO34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation)O34 - HKLM BootExecute: (*) - File not found========== Files/Folders - Created Within 30 Days ==========[9 C:\WINDOWS\*.tmp files][2009-07-19 20:13:24 | 00,019,849 | ---- | C] () -- C:\Documents and Settings\TEMP\Pulpit\gallery-72256992-500x500.jpg[2009-07-19 13:40:00 | 00,000,000 | ---D | C] -- C:\WINDOWS\LastGood[2009-07-18 21:32:40 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\rundll32.exe[2009-07-18 18:45:16 | 00,000,717 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\OpenFM.lnk[2009-07-18 18:45:16 | 00,000,688 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Nowe Gadu-Gadu.lnk[2009-07-18 18:44:36 | 00,000,000 | ---D | C] -- C:\Program Files\Nowe Gadu-Gadu[2009-07-18 18:39:49 | 22,341,128 | ---- | C] () -- C:\nowegg.exe[2009-07-18 18:22:20 | 00,000,653 | ---- | C] () -- C:\Documents and Settings\TEMP\Pulpit\Gadu-Gadu.lnk[2009-07-18 18:22:11 | 00,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu[2009-07-17 21:46:22 | 00,000,529 | ---- | C] () -- C:\Documents and Settings\TEMP\Pulpit\Earth's Special Forces.lnk[2009-07-17 21:20:29 | 00,024,576 | ---- | C] () -- C:\tdk.g[2009-07-17 16:28:15 | 00,018,809 | ---- | C] () -- C:\Documents and Settings\TEMP\Pulpit\HALFCRK.EXE[2009-07-17 16:15:21 | 00,049,152 | RHS- | C] () -- C:\WINDOWS\System32\flashadgmn32.dll[2009-07-17 14:32:18 | 00,000,000 | ---D | C] -- C:\Program Files\Odkurzacz[2009-07-17 14:01:07 | 00,000,000 | ---D | C] -- C:\WINDOWS\solcache[2009-07-17 13:56:57 | 01,022,976 | ---- | C] (Cendant Software) -- C:\WINDOWS\System32\SierraNW.dll[2009-07-17 13:56:57 | 00,231,936 | ---- | C] (Cendant Software) -- C:\WINDOWS\System32\SNWValid.dll[2009-07-17 13:56:56 | 00,000,000 | ---D | C] -- C:\Program Files\Sierra On-Line[2009-07-17 13:56:27 | 00,000,496 | ---- | C] () -- C:\WINDOWS\SIERRA.INI[2009-07-14 10:55:06 | 00,000,542 | ---- | C] () -- C:\Documents and Settings\TEMP\Pulpit\Kopia Neostrada TP.lnk[2009-07-12 23:50:41 | 00,054,156 | -H-- | C] () -- C:\WINDOWS\QTFont.qfn[2009-07-12 23:50:41 | 00,001,409 | ---- | C] () -- C:\WINDOWS\QTFont.for[2009-07-12 12:50:08 | 00,121,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xmllite.dll[2009-07-10 17:04:26 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM[2009-07-10 17:04:03 | 00,000,000 | ---D | C] -- C:\Documents and Settings\TEMP\Dane aplikacji\OpenFM[2009-07-07 18:22:12 | 00,402,573 | ---- | C] () -- C:\WINDOWS\Bid For Power Uninstaller.exe[2009-07-06 15:54:58 | 00,000,592 | ---- | C] () -- C:\Documents and Settings\TEMP\Pulpit\Bid For Power.lnk[2009-07-06 15:54:55 | 00,122,880 | ---- | C] () -- C:\WINDOWS\UnGins.exe[2009-07-04 23:21:41 | 00,047,254 | ---- | C] () -- C:\Documents and Settings\TEMP\Moje dokumenty\71ebc3336d.jpg[2009-06-24 12:44:23 | 00,025,538 | ---- | C] () -- C:\dloadt.htm[2009-06-23 11:45:48 | 00,000,652 | ---- | C] () -- C:\Documents and Settings\TEMP\Pulpit\Play StepMania 3.9.lnk[2009-06-22 15:43:00 | 01,400,320 | ---- | C] () -- C:\Documents and Settings\TEMP\Moje dokumenty\Hotel „Panorama.ppt[2009-04-11 11:36:15 | 00,000,122 | ---- | C] () -- C:\WINDOWS\kaillera.ini[2009-03-20 00:12:46 | 00,000,217 | ---- | C] () -- C:\WINDOWS\MPPAGER.INI[2009-03-13 19:39:44 | 00,717,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys[2009-03-03 21:18:06 | 00,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll[2008-08-06 15:03:36 | 00,000,029 | ---- | C] () -- C:\WINDOWS\DEBUGSM.INI[2008-03-26 21:20:58 | 00,000,097 | ---- | C] () -- C:\WINDOWS\System32\PICSDK.ini[2008-03-26 21:11:37 | 00,000,027 | ---- | C] () -- C:\WINDOWS\CDE DX4400DEFGIPS.ini[2007-05-07 13:59:18 | 00,000,023 | ---- | C] () -- C:\WINDOWS\MegaManager.INI[2007-04-17 16:09:56 | 00,210,032 | ---- | C] () -- C:\WINDOWS\System32\DBCLIENT.DLL[2007-02-24 22:48:49 | 00,000,254 | ---- | C] () -- C:\WINDOWS\naglos.INI[2007-02-01 18:42:52 | 00,000,604 | ---- | C] () -- C:\WINDOWS\Thps3.INI[2006-12-02 19:18:12 | 00,077,824 | ---- | C] () -- C:\WINDOWS\System32\HydraFra.dll[2006-12-02 19:18:12 | 00,069,632 | ---- | C] () -- C:\WINDOWS\System32\HydraPtb.dll[2006-12-02 19:18:12 | 00,069,632 | ---- | C] () -- C:\WINDOWS\System32\HydraNln.dll[2006-12-02 19:18:12 | 00,069,632 | ---- | C] () -- C:\WINDOWS\System32\HydraIta.dll[2006-12-02 19:18:12 | 00,065,536 | ---- | C] () -- C:\WINDOWS\System32\HydraSvs.dll[2006-12-02 19:18:12 | 00,065,536 | ---- | C] () -- C:\WINDOWS\System32\HydraNon.dll[2006-12-02 19:18:12 | 00,065,536 | ---- | C] () -- C:\WINDOWS\System32\HydraFif.dll[2006-12-02 19:18:12 | 00,065,536 | ---- | C] () -- C:\WINDOWS\System32\HydraDad.dll[2006-12-02 19:18:12 | 00,053,248 | ---- | C] () -- C:\WINDOWS\System32\HydraJan.dll[2006-12-02 19:18:12 | 00,049,152 | ---- | C] () -- C:\WINDOWS\System32\HydraKor.dll[2006-12-02 19:18:12 | 00,045,056 | ---- | C] () -- C:\WINDOWS\System32\HydraZht.dll[2006-12-02 19:18:12 | 00,045,056 | ---- | C] () -- C:\WINDOWS\System32\HydraZhs.dll[2006-12-02 19:18:12 | 00,020,480 | ---- | C] () -- C:\WINDOWS\System32\ViewHook.dll[2006-11-11 12:29:54 | 00,005,606 | ---- | C] () -- C:\WINDOWS\System32\stci.dll[2006-11-11 12:29:09 | 00,041,068 | ---- | C] () -- C:\WINDOWS\System32\ActPanel.dll[2006-05-10 15:19:23 | 00,000,050 | ---- | C] () -- C:\WINDOWS\Hip-Hop.pl.ini[2005-12-11 19:58:08 | 00,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini[2005-11-26 15:52:49 | 00,000,000 | ---- | C] () -- C:\WINDOWS\graphedit.INI[2005-11-25 20:55:36 | 00,679,936 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll[2005-11-25 20:55:36 | 00,157,696 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll[2005-11-25 20:55:36 | 00,155,648 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll[2005-11-11 15:37:05 | 00,155,136 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\d347bus.sys[2005-11-11 15:37:05 | 00,005,248 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\d347prt.sys[2005-11-08 20:38:54 | 00,028,672 | R--- | C] () -- C:\WINDOWS\System32\cmirmdrv.dll[2005-11-08 20:38:41 | 00,000,092 | ---- | C] () -- C:\WINDOWS\CMISETUP.INI[2005-11-08 20:38:41 | 00,000,026 | ---- | C] () -- C:\WINDOWS\CMCDPLAY.INI[2005-11-08 20:38:34 | 00,000,000 | ---- | C] () -- C:\WINDOWS\Wininit.ini[2005-11-08 20:38:25 | 00,028,672 | ---- | C] () -- C:\WINDOWS\CMIRmDriver.dll[2005-11-08 20:37:09 | 00,003,239 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini[2005-11-08 20:37:05 | 00,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS[2005-04-12 20:11:24 | 00,000,600 | ---- | C] () -- C:\WINDOWS\Rtcw.INI[2005-04-11 16:48:30 | 00,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll[2005-04-02 23:38:49 | 00,000,031 | ---- | C] () -- C:\WINDOWS\Q3CDKey.ini[2005-04-02 23:37:24 | 00,000,833 | ---- | C] () -- C:\WINDOWS\Q3TA.ini[2005-04-02 22:52:42 | 00,000,334 | ---- | C] () -- C:\WINDOWS\QIII.INI[2005-04-02 15:07:59 | 00,000,401 | ---- | C] () -- C:\WINDOWS\I_VIEW32.INI[2005-04-01 17:16:00 | 00,540,672 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll[2005-03-30 23:37:35 | 00,000,000 | ---- | C] () -- C:\WINDOWS\Editor.INI[2005-03-21 19:53:03 | 00,009,341 | ---- | C] () -- C:\WINDOWS\cdplayer.ini[2005-03-11 13:34:32 | 00,000,144 | ---- | C] () -- C:\WINDOWS\Eudcedit.ini[2005-02-28 20:00:14 | 00,001,552 | ---- | C] () -- C:\WINDOWS\VPlayer.INI[2005-02-28 18:50:41 | 00,000,192 | ---- | C] () -- C:\WINDOWS\winamp.ini[2004-08-22 18:04:56 | 00,069,120 | ---- | C] () -- C:\WINDOWS\daemon.dll[2004-08-04 02:44:10 | 00,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll[2004-08-04 00:44:00 | 00,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll[2004-07-17 11:36:38 | 00,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys[2003-02-04 08:01:48 | 00,421,888 | ---- | C] () -- C:\WINDOWS\System32\OpenQuicktimeLib.dll[2003-02-04 08:01:06 | 00,081,920 | ---- | C] () -- C:\WINDOWS\System32\libfaad.dll[2002-10-03 14:42:27 | 00,000,034 | ---- | C] () -- C:\WINDOWS\Q3version.ini[2002-05-16 08:29:23 | 00,000,427 | ---- | C] () -- C:\WINDOWS\ODBC.INI[2002-05-16 08:19:57 | 00,001,251 | ---- | C] () -- C:\WINDOWS\bestplayer.ini[2002-05-16 07:50:58 | 00,000,164 | R--- | C] () -- C:\WINDOWS\avrack.ini[2002-03-26 21:18:28 | 00,091,136 | ---- | C] () -- C:\WINDOWS\System32\mp4fil32.dll[2002-03-21 15:39:02 | 00,073,728 | R--- | C] () -- C:\WINDOWS\System32\UNACEV2.DLL[2002-01-20 14:26:36 | 00,073,728 | ---- | C] () -- C:\WINDOWS\System32\SimpleResize.dll[2001-09-17 13:20:02 | 00,009,216 | ---- | C] () -- C:\WINDOWS\System32\cpuinf32.dll[2001-07-22 00:16:20 | 00,001,122 | ---- | C] () -- C:\WINDOWS\win.ini[2001-07-22 00:15:52 | 00,000,227 | ---- | C] () -- C:\WINDOWS\system.ini[2000-03-14 17:20:20 | 00,057,344 | ---- | C] () -- C:\WINDOWS\System32\alehook.dll[1999-01-22 19:46:58 | 00,065,536 | ---- | C] () -- C:\WINDOWS\System32\MSRTEDIT.DLL========== Files - Modified Within 30 Days ==========[7 C:\WINDOWS\System32\*.tmp files][9 C:\WINDOWS\*.tmp files][2 C:\Documents and Settings\TEMP\Moje dokumenty\*.tmp files][2009-07-19 21:02:00 | 00,054,156 | -H-- | M] () -- C:\WINDOWS\QTFont.qfn[2009-07-19 21:00:00 | 00,000,404 | ---- | M] () -- C:\WINDOWS\tasks\Norton Security Scan for syn.job[2009-07-19 20:17:14 | 00,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini[2009-07-19 19:16:21 | 00,000,972 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job[2009-07-19 11:54:54 | 00,021,961 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml[2009-07-19 11:54:27 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT[2009-07-19 11:54:24 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat[2009-07-18 19:16:18 | 00,001,917 | ---- | M] () -- C:\WINDOWS\imsins.BAK[2009-07-18 18:45:16 | 00,000,717 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\OpenFM.lnk[2009-07-18 18:45:16 | 00,000,688 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Nowe Gadu-Gadu.lnk[2009-07-18 18:39:50 | 22,341,128 | ---- | M] () -- C:\nowegg.exe[2009-07-18 18:22:20 | 00,000,653 | ---- | M] () -- C:\Documents and Settings\TEMP\Pulpit\Gadu-Gadu.lnk[2009-07-17 21:46:22 | 00,000,529 | ---- | M] () -- C:\Documents and Settings\TEMP\Pulpit\Earth's Special Forces.lnk[2009-07-17 21:20:29 | 00,024,576 | ---- | M] () -- C:\tdk.g[2009-07-17 16:23:06 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl[2009-07-17 16:15:21 | 00,049,152 | RHS- | M] () -- C:\WINDOWS\System32\flashadgmn32.dll[2009-07-17 14:31:35 | 00,000,601 | ---- | M] () -- C:\Documents and Settings\TEMP\Pulpit\Szybkie Czyszczenie.lnk[2009-07-17 14:31:34 | 00,000,604 | ---- | M] () -- C:\Documents and Settings\TEMP\Pulpit\Odkurzacz.lnk[2009-07-17 14:01:21 | 00,000,496 | ---- | M] () -- C:\WINDOWS\SIERRA.INI[2009-07-12 23:50:41 | 00,001,409 | ---- | M] () -- C:\WINDOWS\QTFont.for[2009-07-12 13:04:01 | 00,002,515 | ---- | M] () -- C:\Documents and Settings\TEMP\Pulpit\Microsoft Word.lnk[2009-07-07 18:32:07 | 03,177,544 | -H-- | M] () -- C:\Documents and Settings\TEMP\Ustawienia lokalne\Dane aplikacji\IconCache.db[2009-07-07 18:22:16 | 00,402,573 | ---- | M] () -- C:\WINDOWS\Bid For Power Uninstaller.exe[2009-07-07 18:22:13 | 00,000,592 | ---- | M] () -- C:\Documents and Settings\TEMP\Pulpit\Bid For Power.lnk[2009-07-04 23:21:45 | 00,047,254 | ---- | M] () -- C:\Documents and Settings\TEMP\Moje dokumenty\71ebc3336d.jpg[2009-07-03 19:19:35 | 26,797,6704 | ---- | M] () -- C:\WINDOWS\MEMORY.DMP[2009-06-26 12:34:38 | 01,400,320 | ---- | M] () -- C:\Documents and Settings\TEMP\Moje dokumenty\Hotel „Panorama.ppt[2009-06-24 13:16:28 | 00,024,064 | ---- | M] () -- C:\Documents and Settings\TEMP\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini[2009-06-24 12:44:25 | 00,025,538 | ---- | M] () -- C:\dloadt.htm[2009-06-23 11:45:48 | 00,000,652 | ---- | M] () -- C:\Documents and Settings\TEMP\Pulpit\Play StepMania 3.9.lnk========== LOP Check ==========[2002-05-13 02:52:58 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji[2009-07-10 17:04:26 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji[2009-03-14 22:52:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{2F2B237C-9A38-42BD-BE09-0B68F89C752D}[2002-05-16 08:17:51 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ACD Systems[2009-07-18 23:13:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AntiVir PersonalEdition Classic[2009-03-22 18:45:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ashampoo[2009-05-28 22:55:45 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\BVRP Software[2005-12-11 19:32:39 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CyberLink[2008-03-26 21:19:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\EPSON[2009-05-13 15:28:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla[2005-02-28 19:54:59 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\MSN6[2009-07-17 12:03:25 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM[2007-10-16 10:13:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OrbNetworks[2007-08-01 13:50:29 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP[2008-03-26 21:26:01 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\UDL[2005-03-24 12:23:05 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\dariusz\Dane aplikacji[2002-05-13 02:52:58 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\Default User\Dane aplikacji[2002-05-13 02:26:45 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji[2002-05-13 02:26:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji[2005-03-15 16:29:18 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\syn\Dane aplikacji[2005-02-28 19:55:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\syn\Dane aplikacji\MSN6[2009-07-17 16:15:28 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji[2009-06-11 14:26:03 | 00,000,000 | -HSD | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\.#[2005-12-11 20:53:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\Ahead[2009-03-22 18:45:07 | 00,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\Ashampoo[2005-12-11 20:37:47 | 00,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\CyberLink[2008-08-06 15:03:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\EPSON[2009-02-14 23:12:54 | 00,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\FlashGet[2007-08-04 16:40:09 | 00,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\Gadu-Gadu[2005-12-11 19:35:07 | 00,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\InterTrust[2009-07-18 00:05:45 | 00,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\ipla[2007-05-07 13:58:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\Megaupload[2008-05-07 22:44:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\MSN6[2008-09-24 23:55:36 | 00,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\Nowe Gadu-Gadu[2009-07-17 12:02:53 | 00,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\OpenFM[2009-01-25 14:06:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\PowerChallenge[2009-05-18 14:50:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\Thinstall[2008-10-28 20:49:52 | 00,000,000 | ---D | M] -- C:\Documents and Settings\TEMP\Dane aplikacji\uTorrent[2001-07-22 00:17:50 | 00,000,065 | RH-- | M] () -- C:\WINDOWS\Tasks\desktop.ini[2009-07-19 19:16:21 | 00,000,972 | ---- | M] () -- C:\WINDOWS\Tasks\Google Software Updater.job[2009-07-19 21:00:00 | 00,000,404 | ---- | M] () -- C:\WINDOWS\Tasks\Norton Security Scan for syn.job[2009-07-19 11:54:27 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\Tasks\SA.DAT========== Purity Check ==================== Alternate Data Streams ==========@Alternate Data Stream - 152 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:DFC5A2B2< End of report > OTL.Txt OTL.Txt
Gość komentarz 20 lipca 2009 komentarz 20 lipca 2009 Jakis dziwny ten log z OTL. Daj log z ComboFixa. .
Rcu_89 komentarz 20 lipca 2009 Autor komentarz 20 lipca 2009 Jakis dziwny ten log z OTL.Daj log z ComboFixa. . Niestety nie moge dac loga z ComboFixa poniewaz nie chce on mi dzialac... Najpierw pokazuje sie to okno A potem gdy sie uruchamia ComboFix wyskakuje taki komunikat i nic sie nie dzieje dalej : Prosił bym o jakis inny sposób...
MarekM25 komentarz 20 lipca 2009 komentarz 20 lipca 2009 Wykonaj: http://www.forumpc.pl/index.php?showtopic=60904
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.