x-kom hosting

Problem z Virutem, log do sprawdzenia

Patrycja1990
utworzono
utworzono

Witam. Mam następujący problem. Otóż niedawno nod32 wykrył mi Viruta i kilka plików nim zarażonych, ale odesłał je do kwarantanny, viruta usunął a pliki wyleczył. Zrobiłam format dysku C przeskanowałam komputer. Nod nic mi nie wykrył a wszystkie programy działają bez zarzutu. Czy to możliwe żeby Nod poradził sobie z Virutem a mój komputer znowu jest czysty? Dodaje loga i prosiłabym aby ktoś go sprawdził i zobaczył czy wszystko jest w porządku.

Log do sprawdzenia
OTL logfile created on: 2009-08-08 12:01:16 - Run 1

OTL by OldTimer - Version 3.0.10.5 Folder = C:\Documents and Settings\Peti\Moje dokumenty\Pobieranie

Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 6.0.2900.2180)

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

255,48 Mb Total Physical Memory | 101,94 Mb Available Physical Memory | 39,90% Memory free

618,20 Mb Paging File | 325,47 Mb Available in Paging File | 52,65% Paging File free

Paging file location(s): C:\pagefile.sys 384 768 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 9,77 Gb Total Space | 4,17 Gb Free Space | 42,73% Space Free | Partition Type: NTFS

Drive D: | 25,39 Gb Total Space | 1,61 Gb Free Space | 6,34% Space Free | Partition Type: NTFS

Drive E: | 39,37 Gb Total Space | 2,93 Gb Free Space | 7,44% Space Free | Partition Type: NTFS

F: Drive not present or media not loaded

G: Drive not present or media not loaded

H: Drive not present or media not loaded

I: Drive not present or media not loaded

Computer Name: NOWAK

Current User Name: Peti

Logged in as Administrator.

Current Boot Mode: Normal

Scan Mode: All users

Company Name Whitelist: On

Skip Microsoft Files: Off

File Age = 30 Days

Output = Standard

========== Processes (SafeList) ==========

PRC - [2004-08-04 02:44:20 | 01,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Explorer.EXE

PRC - [2009-05-14 15:47:08 | 02,029,640 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe

PRC - [2009-07-01 18:37:06 | 00,037,888 | ---- | M] () -- C:\Program Files\Winamp\winampa.exe

PRC - [2007-03-11 21:34:40 | 00,049,152 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\HP Software Update\HPWuSchd2.exe

PRC - [2009-07-26 12:34:09 | 00,148,888 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe

PRC - [2009-07-27 17:42:10 | 10,719,848 | ---- | M] (GG Network S.A.) -- C:\Program Files\Nowe Gadu-Gadu\gg.exe

PRC - [2009-07-26 19:58:42 | 00,039,408 | ---- | M] (Google Inc.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

PRC - [2001-07-09 12:37:20 | 02,227,200 | ---- | M] (Headlight Software, Inc.) -- C:\Program Files\GetRight\getright.exe

PRC - [2007-03-11 21:26:24 | 00,210,520 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

PRC - [2001-11-27 08:10:00 | 00,106,560 | ---- | M] (WinZip Computing, Inc.) -- C:\Program Files\WinZip\WZQKPICK.EXE

PRC - [2009-02-23 19:43:12 | 00,576,000 | ---- | M] (MagicISO, Inc.) -- C:\Program Files\MagicDisc\MagicDisc.exe

PRC - [2009-05-14 15:47:54 | 00,731,840 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe

PRC - [2009-07-26 12:34:07 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe

PRC - [2006-10-22 12:22:00 | 00,159,810 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvsvc32.exe

PRC - [2005-01-28 13:44:28 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wdfmgr.exe

PRC - [2009-07-14 10:15:16 | 00,077,824 | ---- | M] () -- C:\Program Files\Nowe Gadu-Gadu\spellchecker_gg.exe

PRC - [2007-03-11 21:32:42 | 00,151,552 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe

PRC - [2007-03-02 16:51:40 | 00,173,672 | R--- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Smart Web Printing\hpswp_clipbook.exe

PRC - [2009-08-08 11:58:41 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Peti\Moje dokumenty\Pobieranie\OTL.exe

========== Win32 Services (SafeList) ==========

SRV - [2009-05-14 15:54:22 | 00,020,680 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv [On_Demand | Stopped])

SRV - [2009-05-14 15:47:54 | 00,731,840 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn [Auto | Running])

SRV - [2009-07-26 19:58:39 | 00,182,768 | ---- | M] (Google) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc [On_Demand | Stopped])

SRV - [2004-08-04 02:44:08 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -- (helpsvc [Auto | Running])

SRV - [2007-06-04 22:14:50 | 00,217,088 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll -- (hpqcxs08 [On_Demand | Running])

SRV - [2007-06-04 22:14:50 | 00,131,072 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll -- (hpqddsvc [Auto | Running])

SRV - [2009-07-26 12:34:07 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService [Auto | Running])

SRV - [2006-11-08 16:35:36 | 00,043,520 | ---- | M] (Hewlett-Packard) -- C:\WINDOWS\System32\HPZinw12.dll -- (Net Driver HPZ12 [Auto | Running])

SRV - [2006-10-22 12:22:00 | 00,159,810 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvsvc32.exe -- (NVSvc [Auto | Running])

SRV - [2006-11-08 16:35:38 | 00,053,248 | ---- | M] (Hewlett-Packard) -- C:\WINDOWS\System32\HPZipm12.dll -- (Pml Driver HPZ12 [Auto | Running])

SRV - [2005-01-28 13:44:28 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wdfmgr.exe -- (UMWdf [Auto | Running])

========== Driver Services (SafeList) ==========

DRV - [2002-09-30 14:24:58 | 00,417,999 | ---- | M] (C-Media Inc) -- C:\WINDOWS\System32\drivers\cmuda.sys -- (cmuda [On_Demand | Running])

DRV - [2009-05-14 15:41:10 | 00,114,472 | ---- | M] (ESET) -- C:\WINDOWS\System32\DRIVERS\eamon.sys -- (eamon [Auto | Running])

DRV - [2009-05-14 15:47:14 | 00,107,256 | ---- | M] (ESET) -- C:\WINDOWS\System32\DRIVERS\ehdrv.sys -- (ehdrv [system | Running])

DRV - [2009-05-14 15:49:32 | 00,094,360 | ---- | M] (ESET) -- C:\WINDOWS\System32\DRIVERS\epfwtdir.sys -- (epfwtdir [system | Running])

DRV - [2001-08-17 22:13:08 | 00,027,165 | ---- | M] (VIA Technologies, Inc. ) -- C:\WINDOWS\System32\DRIVERS\fetnd5.sys -- (FETNDIS [On_Demand | Running])

DRV - [2004-08-04 01:08:22 | 00,010,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\DRIVERS\gameenum.sys -- (gameenum [On_Demand | Running])

DRV - [2007-03-06 14:20:48 | 00,049,920 | R--- | M] (HP) -- C:\WINDOWS\System32\DRIVERS\HPZid412.sys -- (HPZid412 [On_Demand | Stopped])

DRV - [2007-03-06 14:20:50 | 00,016,496 | R--- | M] (HP) -- C:\WINDOWS\System32\DRIVERS\HPZipr12.sys -- (HPZipr12 [On_Demand | Stopped])

DRV - [2007-03-06 14:20:50 | 00,021,568 | R--- | M] (HP) -- C:\WINDOWS\System32\DRIVERS\HPZius12.sys -- (HPZius12 [On_Demand | Stopped])

DRV - [2009-02-24 18:42:14 | 00,116,736 | ---- | M] (MagicISO, Inc.) -- C:\WINDOWS\System32\DRIVERS\mcdbus.sys -- (mcdbus [On_Demand | Running])

DRV - [2001-08-18 00:00:04 | 00,002,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\msmpu401.sys -- (ms_mpu401 [On_Demand | Running])

DRV - [2006-10-22 12:22:00 | 03,994,624 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\DRIVERS\nv4_mini.sys -- (nv [On_Demand | Running])

DRV - [2001-08-18 01:49:56 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\System32\DRIVERS\ptilink.sys -- (Ptilink [On_Demand | Running])

DRV - [2009-04-28 22:20:06 | 00,044,944 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\system32\DRIVERS\PxHelp20.sys -- (PxHelp20 [boot | Running])

DRV - [2004-07-17 13:36:38 | 00,027,440 | ---- | M] () -- C:\WINDOWS\System32\DRIVERS\secdrv.sys -- (Secdrv [On_Demand | Stopped])

DRV - [2002-07-24 04:30:00 | 00,032,128 | ---- | M] (VIA Technologies, Inc.) -- C:\WINDOWS\system32\DRIVERS\viaagp1.sys -- (viaagp1 [boot | Running])

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ie'>http://www.google.com/ie

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome

IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome

IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-515967899-1580436667-1060284298-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm

IE - HKU\S-1-5-21-515967899-1580436667-1060284298-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com

IE - HKU\S-1-5-21-515967899-1580436667-1060284298-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.wp.pl/

IE - HKU\S-1-5-21-515967899-1580436667-1060284298-1003\S-1-5-21-515967899-1580436667-1060284298-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.wp.pl/"

FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0

FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.2

FF - HKLM\software\mozilla\Firefox\Extensions\\jqs@sun.com: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2009-07-26 12:34:18 | 00,000,000 | ---D | M]

FF - HKLM\software\mozilla\Mozilla Firefox 3.5.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009-08-08 11:55:31 | 00,000,000 | ---D | M]

FF - HKLM\software\mozilla\Mozilla Firefox 3.5.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009-08-08 11:55:16 | 00,000,000 | ---D | M]

FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

[2009-08-08 11:55:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Peti\Dane aplikacji\mozilla\Extensions

[2009-08-08 11:55:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Peti\Dane aplikacji\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}

[2009-08-08 11:55:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Peti\Dane aplikacji\mozilla\Firefox\Profiles\5paisl7u.default\extensions

[2009-08-08 11:55:16 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions

[2009-08-08 11:55:16 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

[2009-07-31 01:45:28 | 00,023,544 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll

[2009-07-31 01:45:28 | 00,137,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll

[2009-07-31 01:45:28 | 00,065,016 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll

[2009-07-31 00:44:16 | 00,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml

[2009-07-31 00:44:16 | 00,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml

[2009-07-31 01:45:26 | 00,002,371 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml

[2009-07-31 00:44:16 | 00,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml

[2009-07-31 00:44:16 | 00,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml

[2009-07-31 00:44:16 | 00,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml

[2009-07-31 00:44:16 | 00,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml

O1 HOSTS File: (742 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts

O1 - Hosts: 127.0.0.1 localhost

O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)

O2 - BHO: (HP Print Clips) - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll (Hewlett-Packard Co.)

O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0 CE\Reader\ActiveX\AcroIEHelper.ocx ()

O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)

O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll (Google Inc.)

O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll (Google Inc.)

O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)

O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)

O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\Peti\Dane aplikacji\Nowe Gadu-Gadu\_userdata\ggbho.1.dll (GG Network S.A.)

O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)

O3 - HKU\S-1-5-21-515967899-1580436667-1060284298-1003\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll (Google Inc.)

O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)

O4 - HKLM..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe (Hewlett-Packard Co.)

O4 - HKLM..\Run: [iMJPMIG8.1] C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE (Microsoft Corporation)

O4 - HKLM..\Run: [MSPY2002] C:\WINDOWS\System32\IME\PINTLGNT\ImScInst.exe ()

O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)

O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)

O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()

O4 - HKLM..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)

O4 - HKLM..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)

O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\qttask.exe (Apple Inc.)

O4 - HKLM..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)

O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe ()

O4 - HKU\S-1-5-21-515967899-1580436667-1060284298-1003..\Run: [Nowe Gadu-Gadu] C:\Program Files\Nowe Gadu-Gadu\gg.exe (GG Network S.A.)

O4 - HKU\S-1-5-21-515967899-1580436667-1060284298-1003..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)

O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)

O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\GetRight - Tray Icon.lnk = C:\Program Files\GetRight\getright.exe (Headlight Software, Inc.)

O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)

O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE (WinZip Computing, Inc.)

O4 - Startup: C:\Documents and Settings\Peti\Menu Start\Programy\Autostart\MagicDisc.lnk = C:\Program Files\MagicDisc\MagicDisc.exe (MagicISO, Inc.)

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0

O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present

O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323

O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863

O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present

O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323

O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863

O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present

O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-19_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel present

O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present

O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-20_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel present

O7 - HKU\S-1-5-21-515967899-1580436667-1060284298-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present

O7 - HKU\S-1-5-21-515967899-1580436667-1060284298-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323

O7 - HKU\S-1-5-21-515967899-1580436667-1060284298-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863

O7 - HKU\S-1-5-21-515967899-1580436667-1060284298-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0

O7 - HKU\S-1-5-21-515967899-1580436667-1060284298-1003_Classes\Software\Policies\Microsoft\Internet Explorer\Control Panel present

O8 - Extra context menu item: Download with GetRight - C:\Program Files\GetRight\GRDownload.htm ()

O8 - Extra context menu item: Open with GetRight Browser - C:\Program Files\GetRight\GRBrowse.htm ()

O9 - Extra Button: Kolekcja wycinków HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)

O9 - Extra Button: Zaznaczanie HP Smart - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)

O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)

O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)

O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)

O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 82.139.8.7 88.156.63.9 88.156.96.61

O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\ipp - No CLSID value found

O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\msdaipp - No CLSID value found

O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Filter: - x-sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll (Google Inc.)

O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation)

O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home

O31 - SafeBoot: AlternateShell - cmd.exe

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2007-06-12 09:55:55 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]

O34 - HKLM BootExecute: (autocheck) - File not found

O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation)

O34 - HKLM BootExecute: (*) - File not found

========== Files/Folders - Created Within 30 Days ==========

[1 C:\WINDOWS\System32\*.tmp files]

[3 C:\WINDOWS\*.tmp files]

[2009-08-08 11:57:55 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Peti\Moje dokumenty\Pobieranie

[2009-08-08 11:55:36 | 00,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat

[2009-08-08 11:55:28 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Peti\Ustawienia lokalne\Dane aplikacji\Mozilla

[2009-08-08 11:55:28 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Peti\Dane aplikacji\Mozilla

[2009-08-08 11:55:22 | 00,001,602 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk

[2009-08-08 11:55:13 | 00,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox

[2009-08-08 11:54:40 | 08,756,448 | ---- | C] (Mozilla) -- C:\Documents and Settings\Peti\Pulpit\Firefox Setup 3.5.2.exe

[2009-08-07 12:20:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Peti\Pulpit\[2009[1].07.04] [single] BURST EP

[2009-08-06 16:12:26 | 00,001,734 | ---- | C] () -- C:\Documents and Settings\Peti\Pulpit\HijackThis.lnk

[2009-08-06 16:12:21 | 00,000,000 | ---D | C] -- C:\Program Files\Trend Micro

[2009-08-06 14:25:16 | 00,812,344 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\Peti\Pulpit\HJTInstall.exe

[2009-08-06 14:10:48 | 00,000,000 | -HSD | C] -- C:\RECYCLER

[2009-08-06 13:39:39 | 00,000,000 | ---D | C] -- C:\WINDOWS\temp

[2009-08-06 13:38:29 | 00,574,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\ntfs.sys

[2009-08-06 13:38:29 | 00,382,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\qmgr.dll

[2009-08-06 13:38:29 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\asyncmac.sys

[2009-08-06 13:38:29 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\wscntfy.exe

[2009-08-06 13:38:25 | 03,090,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\mshtml.dll

[2009-08-06 13:26:15 | 03,154,932 | R--- | C] () -- C:\Documents and Settings\Peti\Pulpit\ComboFix.exe

[2009-08-05 13:48:43 | 00,021,420 | ---- | C] () -- C:\Documents and Settings\Peti\Pulpit\Hello! 10th Party 2 Haroten Haropuro Kanshasai Vol[1]. 2.torrent

[2009-08-05 13:48:18 | 00,021,581 | ---- | C] () -- C:\Documents and Settings\Peti\Pulpit\Hello! 10th Party 2 Haroten Haropuro Kanshasai Vol[1]. 1.torrent

[2009-08-05 10:00:35 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Peti\Dane aplikacji\ChomikBox

[2009-07-28 18:00:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Peti\Dane aplikacji\Media Player Classic

[2009-07-27 11:18:32 | 00,000,830 | ---- | C] () -- C:\Documents and Settings\Peti\Pulpit\ChomikBox.lnk

[2009-07-27 11:18:16 | 00,000,000 | ---D | C] -- C:\Program Files\ChomikBox

[2009-07-27 11:17:46 | 00,179,200 | ---- | C] () -- C:\Documents and Settings\Peti\Pulpit\ChomikBoxSetup.exe

[2009-07-26 20:21:58 | 00,000,260 | ---- | C] () -- C:\WINDOWS\tasks\WGASetup.job

[2009-07-26 20:21:58 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\KB905474

[2009-07-26 20:14:11 | 00,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0

[2009-07-26 20:08:59 | 00,000,030 | ---- | C] () -- C:\WINDOWS\TextSpy.ini

[2009-07-26 19:59:19 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Peti\Ustawienia lokalne\Dane aplikacji\Google

[2009-07-26 19:59:19 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Peti\Dane aplikacji\Google

[2009-07-26 19:58:25 | 00,000,000 | ---D | C] -- C:\Program Files\Google

[2009-07-26 19:58:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Google

[2009-07-26 19:57:29 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\NOS

[2009-07-26 19:57:28 | 00,000,000 | ---D | C] -- C:\Program Files\NOS

[2009-07-26 13:37:01 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Peti\Dane aplikacji\Ace

[2009-07-26 13:35:12 | 00,001,785 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Graj w Ratatuj.lnk

[2009-07-26 13:34:47 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Peti\Ustawienia lokalne\Dane aplikacji\Asobo Studio

[2009-07-26 13:34:41 | 00,266,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_8.dll

[2009-07-26 13:34:41 | 00,018,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\x3daudio1_2.dll

[2009-07-26 13:34:37 | 01,124,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_34.dll

[2009-07-26 13:34:37 | 00,443,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_34.dll

[2009-07-26 13:34:34 | 03,497,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_34.dll

[2009-07-26 13:34:25 | 00,081,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_3.dll

[2009-07-26 13:34:17 | 00,261,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_7.dll

[2009-07-26 13:34:08 | 01,123,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_33.dll

[2009-07-26 13:34:08 | 00,443,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_33.dll

[2009-07-26 13:34:02 | 03,495,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_33.dll

[2009-07-26 13:34:02 | 00,255,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_6.dll

[2009-07-26 13:34:01 | 00,251,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_5.dll

[2009-07-26 13:34:00 | 03,426,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_32.dll

[2009-07-26 13:33:59 | 02,414,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_31.dll

[2009-07-26 13:33:59 | 00,237,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_4.dll

[2009-07-26 13:33:59 | 00,015,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\x3daudio1_1.dll

[2009-07-26 13:33:58 | 00,236,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_3.dll

[2009-07-26 13:33:58 | 00,062,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_2.dll

[2009-07-26 13:33:57 | 00,230,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_2.dll

[2009-07-26 13:33:56 | 00,062,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_1.dll

[2009-07-26 13:33:55 | 02,388,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_30.dll

[2009-07-26 13:33:55 | 00,229,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_1.dll

[2009-07-26 13:33:53 | 02,332,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_29.dll

[2009-07-26 13:33:53 | 00,230,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_0.dll

[2009-07-26 13:33:53 | 00,014,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\x3daudio1_0.dll

[2009-07-26 13:33:52 | 02,323,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_28.dll

[2009-07-26 13:33:51 | 02,319,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_27.dll

[2009-07-26 13:33:51 | 00,061,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput9_1_0.dll

[2009-07-26 13:33:50 | 02,297,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_26.dll

[2009-07-26 13:33:49 | 02,337,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_25.dll

[2009-07-26 13:33:46 | 02,222,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_24.dll

[2009-07-26 13:32:14 | 00,000,000 | ---D | C] -- C:\Program Files\THQ

[2009-07-26 13:32:09 | 00,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information

[2009-07-26 13:31:39 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Peti\Dane aplikacji\InstallShield

[2009-07-26 12:42:25 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot_bak

[2009-07-26 12:34:29 | 02,376,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\WMVCore.dll

[2009-07-26 12:33:46 | 00,000,000 | ---D | C] -- C:\Program Files\Java

[2009-07-26 12:32:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Peti\Dane aplikacji\Sun

[2009-07-26 12:31:42 | 01,193,414 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sysmain.sdb

[2009-07-26 12:31:41 | 00,218,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wordpad.exe

[2009-07-26 12:31:34 | 00,273,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bthport.sys

[2009-07-26 12:31:34 | 00,273,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys

[2009-07-26 12:30:28 | 00,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\colbact.dll

[2009-07-26 12:30:24 | 00,285,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pdh.dll

[2009-07-26 12:30:24 | 00,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiprvse.exe

[2009-07-26 12:30:23 | 00,401,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcss.dll

[2009-07-26 12:30:22 | 00,473,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fastprox.dll

[2009-07-26 12:30:22 | 00,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\services.exe

[2009-07-26 12:30:22 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sc.exe

[2009-07-26 12:30:21 | 00,687,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\advapi32.dll

[2009-07-26 12:30:20 | 00,730,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll

[2009-07-26 12:30:20 | 00,723,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntdll.dll

[2009-07-26 12:25:09 | 00,455,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys

[2009-07-26 12:24:56 | 00,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll

[2009-07-26 12:18:20 | 00,000,000 | ---D | C] -- C:\Program Files\xerox

[2009-07-26 12:18:19 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom

[2009-07-26 12:18:19 | 00,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage

[2009-07-25 15:21:56 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\WEBREG

[2009-07-25 15:08:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Hewlett-Packard

[2009-07-25 15:05:52 | 00,309,760 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\difxapi.dll

[2009-07-25 15:05:51 | 00,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbscan.sys

[2009-07-25 15:04:26 | 00,001,858 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\HP Photosmart Essential 2.01.lnk

[2009-07-25 15:03:35 | 00,001,746 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Zakup materiałów eksploatacyjnych HP.lnk

[2009-07-25 15:03:35 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\HPSSUPPLY

[2009-07-25 15:03:23 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Peti\Dane aplikacji\HPAppData

[2009-07-25 15:01:26 | 00,001,808 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk

[2009-07-25 15:00:40 | 00,000,862 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Centrum obsługi HP.lnk

[2009-07-25 15:00:23 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\HP Product Assistant

[2009-07-25 15:00:22 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\HP

[2009-07-25 14:59:55 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\HP

[2009-07-25 14:59:28 | 00,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard

[2009-07-25 14:59:04 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Hewlett-Packard

[2009-07-25 14:57:44 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE

[2009-07-25 14:57:13 | 00,000,000 | ---D | C] -- C:\Program Files\HP

[2009-07-25 14:57:05 | 00,031,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbccgp.sys

[2009-07-25 14:57:01 | 00,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbprint.sys

[2009-07-25 14:56:24 | 00,000,000 | -H-D | C] -- C:\Config.Msi

[2009-07-25 14:52:38 | 00,153,671 | ---- | C] () -- C:\WINDOWS\hpoins15.dat

[2009-07-25 14:52:38 | 00,001,039 | ---- | C] () -- C:\WINDOWS\hpomdl15.dat

[2009-07-25 14:43:57 | 00,000,986 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Gamma Loader.lnk

[2009-07-25 14:40:01 | 01,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\chsbrkr.dll

[2009-07-25 14:39:59 | 00,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\chtbrkr.dll

[2009-07-25 14:39:57 | 00,001,486 | ---- | C] () -- C:\WINDOWS\System32\noise.kor

[2009-07-25 14:39:55 | 01,158,818 | ---- | C] () -- C:\WINDOWS\System32\korwbrkr.lex

[2009-07-25 14:39:54 | 00,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\korwbrkr.dll

[2009-07-25 14:39:52 | 00,002,060 | ---- | C] () -- C:\WINDOWS\System32\noise.jpn

[2009-07-25 14:39:49 | 01,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msir3jp.lex

[2009-07-25 14:39:48 | 00,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msir3jp.dll

[2009-07-25 14:38:43 | 00,018,600 | ---- | C] () -- C:\WINDOWS\System32\arrayhw.tab

[2009-07-25 14:38:42 | 00,146,126 | ---- | C] () -- C:\WINDOWS\System32\array30.tab

[2009-07-25 14:38:41 | 00,016,312 | ---- | C] () -- C:\WINDOWS\System32\arptr.tbl

[2009-07-25 14:38:40 | 00,110,566 | ---- | C] () -- C:\WINDOWS\System32\arphr.tbl

[2009-07-25 14:38:39 | 00,211,938 | ---- | C] () -- C:\WINDOWS\System32\lcphrase.tbl

[2009-07-25 14:38:38 | 00,024,114 | ---- | C] () -- C:\WINDOWS\System32\lcptr.tbl

[2009-07-25 14:38:36 | 00,002,714 | ---- | C] () -- C:\WINDOWS\System32\phonptr.tbl

[2009-07-25 14:38:35 | 00,043,242 | ---- | C] () -- C:\WINDOWS\System32\phoncode.tbl

[2009-07-25 14:38:33 | 00,004,071 | ---- | C] () -- C:\WINDOWS\System32\phon.tbl

[2009-07-25 14:38:32 | 00,000,520 | ---- | C] () -- C:\WINDOWS\System32\dayiphr.tbl

[2009-07-25 14:38:30 | 00,000,700 | ---- | C] () -- C:\WINDOWS\System32\dayiptr.tbl

[2009-07-25 14:38:28 | 00,116,285 | ---- | C] () -- C:\WINDOWS\System32\msdayi.tbl

[2009-07-25 14:38:27 | 00,044,370 | ---- | C] () -- C:\WINDOWS\System32\acode.tbl

[2009-07-25 14:38:25 | 00,044,370 | ---- | C] () -- C:\WINDOWS\System32\a234.tbl

[2009-07-25 14:38:24 | 00,001,460 | ---- | C] () -- C:\WINDOWS\System32\a15.tbl

[2009-07-25 14:38:23 | 00,195,618 | ---- | C] () -- C:\WINDOWS\System32\c_10002.nls

[2009-07-25 14:38:23 | 00,082,172 | ---- | C] () -- C:\WINDOWS\System32\bopomofo.nls

[2009-07-25 14:38:23 | 00,066,728 | ---- | C] () -- C:\WINDOWS\System32\big5.nls

[2009-07-25 14:38:16 | 00,016,254 | ---- | C] () -- C:\WINDOWS\System32\PINTLPAE.HLP

[2009-07-25 14:38:14 | 00,014,821 | ---- | C] () -- C:\WINDOWS\System32\PINTLPAD.HLP

[2009-07-25 14:37:46 | 01,223,500 | ---- | C] () -- C:\WINDOWS\System32\WINZM.MB

[2009-07-25 14:37:45 | 01,564,868 | ---- | C] () -- C:\WINDOWS\System32\WINSP.MB

[2009-07-25 14:37:43 | 01,783,864 | ---- | C] () -- C:\WINDOWS\System32\WINPY.MB

[2009-07-25 14:37:42 | 00,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WINGB.IME

[2009-07-25 14:37:40 | 00,218,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\c_g18030.dll

[2009-07-25 14:37:40 | 00,173,602 | ---- | C] () -- C:\WINDOWS\System32\c_10008.nls

[2009-07-25 14:37:40 | 00,083,748 | ---- | C] () -- C:\WINDOWS\System32\prcp.nls

[2009-07-25 14:37:40 | 00,083,748 | ---- | C] () -- C:\WINDOWS\System32\prc.nls

[2009-07-25 14:37:38 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbd101a.dll

[2009-07-25 14:36:58 | 00,189,986 | ---- | C] () -- C:\WINDOWS\System32\c_1361.nls

[2009-07-25 14:36:58 | 00,177,698 | ---- | C] () -- C:\WINDOWS\System32\c_10003.nls

[2009-07-25 14:36:58 | 00,047,066 | ---- | C] () -- C:\WINDOWS\System32\ksc.nls

[2009-07-25 14:36:49 | 00,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnecAT.dll

[2009-07-25 14:36:49 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnecNT.dll

[2009-07-25 14:36:49 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnec95.dll

[2009-07-25 14:36:49 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlk41a.dll

[2009-07-25 14:36:49 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlk41j.dll

[2009-07-25 14:36:47 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdibm02.dll

[2009-07-25 14:36:47 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\f3ahvoas.dll

[2009-07-25 14:36:47 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdax2.dll

[2009-07-25 14:36:47 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbd106n.dll

[2009-07-25 14:36:47 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbd101.dll

[2009-07-25 14:35:23 | 00,180,770 | ---- | C] () -- C:\WINDOWS\System32\c_20932.nls

[2009-07-25 14:35:23 | 00,180,258 | ---- | C] () -- C:\WINDOWS\System32\c_20000.nls

[2009-07-25 14:35:23 | 00,177,698 | ---- | C] () -- C:\WINDOWS\System32\c_20949.nls

[2009-07-25 14:35:23 | 00,173,602 | ---- | C] () -- C:\WINDOWS\System32\c_20936.nls

[2009-07-25 14:35:23 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_21027.nls

[2009-07-25 14:35:23 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\c_is2022.dll

[2009-07-25 14:35:22 | 00,162,850 | ---- | C] () -- C:\WINDOWS\System32\c_10001.nls

[2009-07-25 14:35:22 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20290.nls

[2009-07-25 14:35:22 | 00,028,288 | ---- | C] () -- C:\WINDOWS\System32\xjis.nls

[2009-07-25 14:35:07 | 00,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CINTLGNT.IME

[2009-07-25 14:34:56 | 00,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\TINTLGNT.IME

[2009-07-25 14:34:55 | 00,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winar30.ime

[2009-07-25 14:34:53 | 00,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\quick.ime

[2009-07-25 14:34:52 | 00,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\miniime.tpl

[2009-07-25 14:34:50 | 00,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\unicdime.ime

[2009-07-25 14:34:49 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winime.ime

[2009-07-25 14:34:48 | 00,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\uniime.dll

[2009-07-25 14:34:46 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\romanime.ime

[2009-07-25 14:34:45 | 00,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dayi.ime

[2009-07-25 14:34:44 | 00,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\phon.ime

[2009-07-25 14:34:42 | 00,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\chajei.ime

[2009-07-25 14:34:14 | 00,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\PINTLGNT.IME

[2009-07-25 14:34:12 | 00,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WINZM.IME

[2009-07-25 14:34:11 | 00,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WINSP.IME

[2009-07-25 14:34:09 | 00,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WINPY.IME

[2009-07-25 14:34:08 | 00,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\imekr61.ime

[2009-07-25 14:34:03 | 00,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\imjp81k.dll

[2009-07-25 14:34:01 | 00,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\imjp81.ime

[2009-07-25 14:33:09 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdjpn.dll

[2009-07-25 14:33:09 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkor.dll

[2009-07-25 14:33:09 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbd106.dll

[2009-07-25 14:33:09 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbd101c.dll

[2009-07-25 14:33:09 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbd103.dll

[2009-07-25 14:33:07 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbd101b.dll

[2009-07-25 14:29:19 | 00,000,652 | ---- | C] () -- C:\Documents and Settings\Peti\Menu Start\Programy\Autostart\MagicDisc.lnk

[2009-07-25 14:29:19 | 00,000,640 | ---- | C] () -- C:\Documents and Settings\Peti\Pulpit\MagicDisc.lnk

[2009-07-25 14:27:24 | 00,116,736 | ---- | C] (MagicISO, Inc.) -- C:\WINDOWS\System32\drivers\mcdbus.sys

[2009-07-25 14:27:02 | 00,000,000 | ---D | C] -- C:\Program Files\MagicDisc

[2009-07-25 14:13:05 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Peti\Dane aplikacji\Macromedia

[2009-07-25 14:10:29 | 00,000,717 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\OpenFM.lnk

[2009-07-25 14:10:29 | 00,000,688 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Nowe Gadu-Gadu.lnk

[2009-07-25 14:09:21 | 00,000,000 | ---D | C] -- C:\Program Files\Nowe Gadu-Gadu

[2009-07-25 14:07:54 | 00,000,000 | ---D | C] -- C:\Program Files\MagicISO

[2009-07-25 14:06:38 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Peti\Dane aplikacji\Nowe Gadu-Gadu

[2009-07-25 13:59:56 | 00,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages

[2009-07-25 13:56:03 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Peti\Ustawienia lokalne\Dane aplikacji\ESET

[2009-07-25 13:54:17 | 00,001,604 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\QuickTime Player.lnk

[2009-07-25 13:53:39 | 00,000,000 | ---D | C] -- C:\Program Files\QuickTime

[2009-07-25 13:53:33 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Apple Computer

[2009-07-25 13:52:53 | 00,000,284 | ---- | C] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job

[2009-07-25 13:52:52 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Peti\Ustawienia lokalne\Dane aplikacji\Apple

[2009-07-25 13:52:46 | 00,000,000 | ---D | C] -- C:\Program Files\Apple Software Update

[2009-07-25 13:52:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Apple

[2009-07-25 13:50:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET

[2009-07-25 13:49:34 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Peti\Ustawienia lokalne\Dane aplikacji\Apple Computer

[2009-07-25 13:48:57 | 00,007,680 | ---- | C] () -- C:\Documents and Settings\Peti\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2009-07-25 13:48:11 | 00,000,000 | ---D | C] -- C:\Program Files\Satsuki Decoder Pack

[2009-07-25 13:47:59 | 00,000,000 | ---D | C] -- C:\Program Files\Haali

[2009-07-25 13:44:22 | 02,187,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\ntoskrnl.exe

[2009-07-25 13:44:22 | 02,064,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\ntkrnlpa.exe

[2009-07-25 13:44:22 | 01,548,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\sfcfiles.dll

[2009-07-25 13:44:22 | 01,033,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\explorer.exe

[2009-07-25 13:44:22 | 01,017,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\kernel32.dll

[2009-07-25 13:44:22 | 00,924,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\mfc40u.dll

[2009-07-25 13:44:22 | 00,822,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\comres.dll

[2009-07-25 13:44:22 | 00,670,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\wininet.dll

[2009-07-25 13:44:22 | 00,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\comctl32.dll

[2009-07-25 13:44:22 | 00,579,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\user32.dll

[2009-07-25 13:44:22 | 00,504,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\winlogon.exe

[2009-07-25 13:44:22 | 00,435,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\ntmssvc.dll

[2009-07-25 13:44:22 | 00,407,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\netlogon.dll

[2009-07-25 13:44:22 | 00,401,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\rpcss.dll

[2009-07-25 13:44:22 | 00,360,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\tcpip.sys

[2009-07-25 13:44:22 | 00,296,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\termsrv.dll

[2009-07-25 13:44:22 | 00,182,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\ndis.sys

[2009-07-25 13:44:22 | 00,172,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\appmgmts.dll

[2009-07-25 13:44:22 | 00,171,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\srsvc.dll

[2009-07-25 13:44:22 | 00,142,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\aec.sys

[2009-07-25 13:44:22 | 00,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\services.exe

[2009-07-25 13:44:22 | 00,110,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\imm32.dll

[2009-07-25 13:44:22 | 00,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\rasauto.dll

[2009-07-25 13:44:22 | 00,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\ws2_32.dll

[2009-07-25 13:44:22 | 00,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\spoolsv.exe

[2009-07-25 13:44:22 | 00,051,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\wuauclt.exe

[2009-07-25 13:44:22 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\msgsvc.dll

[2009-07-25 13:44:22 | 00,029,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\ip6fw.sys

[2009-07-25 13:44:22 | 00,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\userinit.exe

[2009-07-25 13:44:22 | 00,024,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\kbdclass.sys

[2009-07-25 13:44:22 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\lpk.dll

[2009-07-25 13:44:22 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\powrprof.dll

[2009-07-25 13:44:22 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\ctfmon.exe

[2009-07-25 13:44:22 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\svchost.exe

[2009-07-25 13:44:22 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\lsass.exe

[2009-07-25 13:44:22 | 00,012,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\acpiec.sys

[2009-07-25 13:44:22 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\sfc.dll

[2009-07-25 13:44:22 | 00,004,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\beep.sys

[2009-07-25 13:44:22 | 00,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\null.sys

[2009-07-25 13:44:22 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\dllcache\cache

[2009-07-25 13:40:13 | 00,000,211 | ---- | C] () -- C:\Boot.bak

[2009-07-25 13:40:11 | 00,262,400 | ---- | C] () -- C:\cmldr

[2009-07-25 13:40:10 | 00,000,000 | RHSD | C] -- C:\cmdcons

[2009-07-25 13:40:00 | 00,339,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netapi32.dll

[2009-07-25 13:38:40 | 00,219,648 | ---- | C] () -- C:\WINDOWS\PEV.exe

[2009-07-25 13:38:40 | 00,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe

[2009-07-25 13:38:40 | 00,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe

[2009-07-25 13:38:40 | 00,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe

[2009-07-25 13:38:40 | 00,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe

[2009-07-25 13:38:40 | 00,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe

[2009-07-25 13:38:40 | 00,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe

[2009-07-25 13:38:40 | 00,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe

[2009-07-25 13:38:34 | 00,000,000 | ---D | C] -- C:\WINDOWS\ERDNT

[2009-07-25 13:38:29 | 00,000,000 | ---D | C] -- C:\Qoobox

[2009-07-25 13:36:23 | 00,035,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll.mui

[2009-07-25 13:36:22 | 00,027,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaucpl.cpl.mui

[2009-07-25 13:36:22 | 00,027,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll.mui

[2009-07-25 13:36:22 | 00,019,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng.dll.mui

[2009-07-25 13:30:42 | 00,128,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltmgr.sys

[2009-07-25 13:30:42 | 00,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltmc.exe

[2009-07-25 13:30:42 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltlib.dll

[2009-07-25 13:29:26 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\DllCache

[2009-06-02 18:11:16 | 00,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll

[2007-07-10 18:10:12 | 00,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest

[2007-06-12 10:45:14 | 01,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll

[2007-06-12 10:45:14 | 01,470,464 | ---- | C] () -- C:\WINDOWS\System32\nview.dll

[2007-06-12 10:45:14 | 01,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll

[2007-06-12 10:45:14 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll

[2007-06-12 10:38:04 | 00,000,155 | ---- | C] () -- C:\WINDOWS\winamp.ini

[2007-06-12 10:36:03 | 00,032,768 | ---- | C] () -- C:\WINDOWS\System32\BCGPOleAcc.dll

[2007-06-12 10:10:54 | 00,000,092 | ---- | C] () -- C:\WINDOWS\CMISETUP.INI

[2007-06-12 10:10:53 | 00,000,026 | ---- | C] () -- C:\WINDOWS\CMCDPLAY.INI

[2007-06-12 10:10:51 | 00,000,000 | ---- | C] () -- C:\WINDOWS\Wininit.ini

[2007-06-12 10:10:44 | 00,028,672 | ---- | C] () -- C:\WINDOWS\CMIRmDriver.dll

[2006-11-03 17:46:27 | 00,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll

[2006-11-03 17:46:27 | 00,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll

[2006-11-03 17:46:26 | 00,212,992 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll

[2004-07-17 13:36:38 | 00,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys

[2002-05-13 11:16:19 | 00,356,352 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll

[2002-04-02 00:29:28 | 00,143,360 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll

[2002-04-02 00:16:30 | 00,454,656 | ---- | C] () -- C:\WINDOWS\System32\VorbisEnc.dll

[2002-04-02 00:16:14 | 00,118,784 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll

[2002-04-02 00:15:40 | 00,011,264 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll

[2002-03-26 21:18:28 | 00,091,136 | ---- | C] () -- C:\WINDOWS\System32\mp4fil32.dll

[2002-02-21 18:41:20 | 00,157,184 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll

[2002-01-20 14:26:36 | 00,073,728 | ---- | C] () -- C:\WINDOWS\System32\SimpleResize.dll

[2001-10-25 16:53:24 | 00,196,608 | ---- | C] () -- C:\WINDOWS\System32\avisynth.dll

[2001-07-22 02:16:20 | 00,000,512 | ---- | C] () -- C:\WINDOWS\win.ini

[2001-07-22 02:15:52 | 00,000,227 | ---- | C] () -- C:\WINDOWS\system.ini

[2001-06-22 13:06:02 | 00,167,936 | ---- | C] () -- C:\WINDOWS\System32\MPEG2DEC.dll

========== Files - Modified Within 30 Days ==========

[1 C:\WINDOWS\System32\*.tmp files]

[3 C:\WINDOWS\*.tmp files]

[2009-08-08 11:55:36 | 00,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat

[2009-08-08 11:55:22 | 00,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk

[2009-08-08 11:54:48 | 08,756,448 | ---- | M] (Mozilla) -- C:\Documents and Settings\Peti\Pulpit\Firefox Setup 3.5.2.exe

[2009-08-08 10:57:16 | 00,000,260 | ---- | M] () -- C:\WINDOWS\tasks\WGASetup.job

[2009-08-08 10:56:09 | 00,088,566 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml

[2009-08-08 10:56:02 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT

[2009-08-08 10:55:58 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat

[2009-08-08 10:55:56 | 26,796,4416 | -HS- | M] () -- C:\hiberfil.sys

[2009-08-07 15:14:08 | 00,007,680 | ---- | M] () -- C:\Documents and Settings\Peti\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2009-08-06 16:12:26 | 00,001,734 | ---- | M] () -- C:\Documents and Settings\Peti\Pulpit\HijackThis.lnk

[2009-08-06 14:25:48 | 00,812,344 | ---- | M] (Trend Micro Inc.) -- C:\Documents and Settings\Peti\Pulpit\HJTInstall.exe

[2009-08-06 13:37:35 | 00,000,227 | ---- | M] () -- C:\WINDOWS\system.ini

[2009-08-06 13:26:30 | 03,154,932 | R--- | M] () -- C:\Documents and Settings\Peti\Pulpit\ComboFix.exe

[2009-08-06 13:23:39 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl

[2009-08-05 13:48:44 | 00,021,420 | ---- | M] () -- C:\Documents and Settings\Peti\Pulpit\Hello! 10th Party 2 Haroten Haropuro Kanshasai Vol[1]. 2.torrent

[2009-08-05 13:48:22 | 00,021,581 | ---- | M] () -- C:\Documents and Settings\Peti\Pulpit\Hello! 10th Party 2 Haroten Haropuro Kanshasai Vol[1]. 1.torrent

[2009-08-05 12:15:03 | 00,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job

[2009-08-05 10:00:53 | 00,020,200 | ---- | M] () -- C:\Documents and Settings\Peti\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT

[2009-07-27 17:05:59 | 00,000,030 | ---- | M] () -- C:\WINDOWS\TextSpy.ini

[2009-07-27 11:18:32 | 00,000,830 | ---- | M] () -- C:\Documents and Settings\Peti\Pulpit\ChomikBox.lnk

[2009-07-27 11:17:54 | 00,179,200 | ---- | M] () -- C:\Documents and Settings\Peti\Pulpit\ChomikBoxSetup.exe

[2009-07-27 09:17:01 | 00,102,232 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT

[2009-07-26 20:23:11 | 00,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK

[2009-07-26 13:35:12 | 00,001,785 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Graj w Ratatuj.lnk

[2009-07-25 15:36:34 | 05,316,560 | -H-- | M] () -- C:\Documents and Settings\Peti\Ustawienia lokalne\Dane aplikacji\IconCache.db

[2009-07-25 15:22:16 | 00,153,671 | ---- | M] () -- C:\WINDOWS\hpoins15.dat

[2009-07-25 15:12:28 | 00,000,512 | ---- | M] () -- C:\WINDOWS\win.ini

[2009-07-25 15:04:26 | 00,001,858 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\HP Photosmart Essential 2.01.lnk

[2009-07-25 15:03:35 | 00,001,746 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Zakup materiałów eksploatacyjnych HP.lnk

[2009-07-25 15:01:26 | 00,001,808 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk

[2009-07-25 15:00:40 | 00,000,862 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Centrum obsługi HP.lnk

[2009-07-25 14:43:57 | 00,000,986 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Gamma Loader.lnk

[2009-07-25 14:29:19 | 00,000,652 | ---- | M] () -- C:\Documents and Settings\Peti\Menu Start\Programy\Autostart\MagicDisc.lnk

[2009-07-25 14:29:19 | 00,000,640 | ---- | M] () -- C:\Documents and Settings\Peti\Pulpit\MagicDisc.lnk

[2009-07-25 14:10:29 | 00,000,717 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\OpenFM.lnk

[2009-07-25 14:10:29 | 00,000,688 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Nowe Gadu-Gadu.lnk

[2009-07-25 14:01:26 | 00,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx

[2009-07-25 13:54:17 | 00,001,604 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\QuickTime Player.lnk

[2009-07-25 13:52:19 | 00,000,155 | ---- | M] () -- C:\WINDOWS\winamp.ini

[2009-07-25 13:40:13 | 00,000,281 | RHS- | M] () -- C:\boot.ini

[2009-07-18 18:01:30 | 01,509,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\shdocvw.dll

[2009-07-18 18:01:30 | 01,509,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shdocvw.dll

[2009-07-18 18:01:28 | 03,090,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mshtml.dll

[2009-07-18 18:01:28 | 03,090,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll

[2009-07-18 18:01:28 | 03,090,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cache\mshtml.dll

[2009-07-13 05:48:54 | 00,219,648 | ---- | M] () -- C:\WINDOWS\PEV.exe

========== LOP Check ==========

[2009-07-26 19:58:25 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji

[2009-07-25 13:50:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET

[2007-06-12 11:44:42 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\Default User\Dane aplikacji

[2007-06-12 09:57:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji

[2007-06-12 09:57:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji

[2009-08-08 11:55:28 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\Peti\Dane aplikacji

[2009-07-26 13:37:07 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Peti\Dane aplikacji\Ace

[2007-06-12 10:41:27 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Peti\Dane aplikacji\Ahead

[2009-08-05 18:00:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Peti\Dane aplikacji\ChomikBox

[2007-06-12 10:30:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Peti\Dane aplikacji\InterTrust

[2009-07-25 14:30:05 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Peti\Dane aplikacji\Nowe Gadu-Gadu

[2007-06-12 10:34:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Peti\Dane aplikacji\U3

[2009-08-05 12:15:03 | 00,000,284 | ---- | M] () -- C:\WINDOWS\Tasks\AppleSoftwareUpdate.job

[2001-07-22 02:17:50 | 00,000,065 | RH-- | M] () -- C:\WINDOWS\Tasks\desktop.ini

[2009-08-08 10:56:02 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\Tasks\SA.DAT

[2009-08-08 10:57:16 | 00,000,260 | ---- | M] () -- C:\WINDOWS\Tasks\WGASetup.job

========== Purity Check ==========

< End of report >

Gość
komentarz
komentarz

W logu nic nie widać.

1. Odpal OTL i wywołaj go z opcji CleanUp, zgódź się na czyszczenie + restart komputera.

2. Przeskanuj obszar "Mój Komputer" http://www.kaspersky.pl/virusscanner.html (uruchom przez IE) Daj raport z niego na forum.

.

Patrycja1990
komentarz
komentarz

Zrobiłam CleanUp, ale Kaspersky nie chce się zaktualizować przez co nie mogę go uruchomić :/

Gość
komentarz
komentarz

Przy aktualzacji wyskakuję jakieś okienko?

.

Patrycja1990
komentarz
komentarz (edytowane)

Wyskakuje o połączeniu z internetem i pisze na końcu error o kluczu aktywacyjnym czy coś takiego nie pamiętam teraz

EDIT: Pisze ERROR Klucz utracił ważność

Gość
komentarz
komentarz

Z jakiej przeglądarki odpalałeś?

.

Patrycja1990
komentarz
komentarz

Z Internet Explorer a potem też z Firefox'a próbowałam, ale ten sam skutek był

Gość
komentarz
komentarz

W takim razie przeskanuj komputer programem Dr. Web CureIt!.

.

Patrycja1990
komentarz
komentarz

Zrobiłam skana Dr. Web'em i tak znalazło mi kilkanaście plików html zarażonych Virutem oraz 9 plików .exe(wszystkie w folderze System Volume Information) zarażone Virutem.56 w tym dwa zarażone Trojanem.MulDrop (obok tych dwóch pisze, że usunięte podczas gdy reszta pisze wyleczone). Wszystkie pliki zarażone są na innych partycjach niż C. Daje też loga http://www.sendspace.com/file/0zlu80

MarekM25
komentarz
komentarz

Wyłącz i włącz przywracanie systemu (Mój komputer->PPM->właściwości->Przywracanie systemu-> Zaznaczasz Wyłącz przywracanie systemu na wszystkich dyskach a później znowu zaznaczasz).

Patrycja1990
komentarz
komentarz

Zrobiłam tak jak poradziłeś i jeszcze raz przeskanowałam komputer Dr.Web nic nie wykrył. Dziękuje za pomoc, bo myślałam już, że będę musiała zrobić format wszystkich dysków :)

Gość
komentarz
komentarz

W takim razie powinno być OK.

.

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.