x-kom hosting

Wyskakujące okienko przy starcie Windows XP

peter991
utworzono
utworzono (edytowane)

To ja może na początek się przywitam :) - witam wszystkich.

Mam mały problem. Gdy włączam Windows XP, to zaraz po pojawieniu się pulpitu wyskakuje takie cudo:

sgfdgfdgdf.JPG

Jak można to usunąć, żeby się nie pokazywało i w ogóle skąd się to wzięło? Wiem, że brat coś ściągał i instalował.

Dziękuję za pomoc. :D

@Edit

Proszę bardzo:

o OTL logfile created on: 2009-08-14 14:56:42 - Run 1

OTL by OldTimer - Version 3.0.10.6 Folder = C:\Documents and Settings\Peter\Pulpit

Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 7.0.5730.13)

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

767,48 Mb Total Physical Memory | 453,09 Mb Available Physical Memory | 59,04% Memory free

1,45 Gb Paging File | 1,20 Gb Available in Paging File | 82,47% Paging File free

Paging file location(s): C:\pagefile.sys 768 1920 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 14,65 Gb Total Space | 7,34 Gb Free Space | 50,09% Space Free | Partition Type: NTFS

Drive D: | 59,90 Gb Total Space | 16,11 Gb Free Space | 26,89% Space Free | Partition Type: NTFS

E: Drive not present or media not loaded

F: Drive not present or media not loaded

G: Drive not present or media not loaded

H: Drive not present or media not loaded

I: Drive not present or media not loaded

Computer Name: BAJDA-7492FEA21

Current User Name: Peter

Logged in as Administrator.

Current Boot Mode: Normal

Scan Mode: All users

Company Name Whitelist: On

Skip Microsoft Files: Off

File Age = 30 Days

Output = Standard

========== Processes (SafeList) ==========

PRC - [2006-08-11 15:42:50 | 00,155,715 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvsvc32.exe

PRC - [2008-01-24 11:59:10 | 01,034,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Explorer.EXE

PRC - [2006-08-02 23:12:00 | 00,577,536 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE

PRC - [2004-08-28 20:27:04 | 00,295,424 | ---- | M] (http://autoconnect.prv.pl) -- C:\Program Files\AutoConnect\AutoConnect.exe

PRC - [2009-04-23 15:51:38 | 00,691,656 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\daemon.exe

PRC - [2009-08-04 20:55:48 | 00,307,704 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe

PRC - [2009-05-25 05:21:40 | 00,207,376 | ---- | M] (Kaspersky Lab) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtblfs.exe

PRC - [2009-08-14 14:55:53 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Peter\Pulpit\OTL.exe

========== Win32 Services (SafeList) ==========

SRV - [2009-05-25 05:26:40 | 00,303,376 | ---- | M] (Kaspersky Lab) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe -- (AVP [Auto | Running])

SRV - [2004-08-04 01:44:08 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -- (helpsvc [Disabled | Stopped])

SRV - [2007-03-11 21:24:50 | 00,217,088 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll -- (hpqcxs08 [On_Demand | Running])

SRV - [2007-03-11 22:02:52 | 00,131,072 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll -- (hpqddsvc [Auto | Running])

SRV - [2006-11-08 16:35:36 | 00,043,520 | ---- | M] (Hewlett-Packard) -- C:\WINDOWS\System32\HPZinw12.dll -- (Net Driver HPZ12 [Auto | Running])

SRV - [2006-08-11 15:42:50 | 00,155,715 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvsvc32.exe -- (NVSvc [Auto | Running])

SRV - [2006-10-26 19:49:34 | 00,441,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv [On_Demand | Stopped])

SRV - [2006-10-26 13:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose [On_Demand | Stopped])

SRV - [2006-11-08 16:35:38 | 00,053,248 | ---- | M] (Hewlett-Packard) -- C:\WINDOWS\System32\HPZipm12.dll -- (Pml Driver HPZ12 [Auto | Running])

SRV - [2006-12-01 12:46:28 | 00,918,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\WMPNetwk.exe -- (WMPNetworkSvc [On_Demand | Stopped])

========== Driver Services (SafeList) ==========

DRV - [2006-08-18 07:52:00 | 04,017,536 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\ALCXWDM.SYS -- (ALCXWDM [On_Demand | Running])

DRV - [2004-08-03 22:31:20 | 00,036,224 | ---- | M] (ADMtek Incorporated.) -- C:\WINDOWS\System32\DRIVERS\AN983.sys -- (AN983 [On_Demand | Stopped])

DRV - [2005-05-31 15:40:20 | 00,020,480 | ---- | M] (IVT Corporation) -- C:\WINDOWS\System32\DRIVERS\blueletaudio.sys -- (BlueletAudio [On_Demand | Stopped])

DRV - [2005-04-30 14:48:58 | 00,010,804 | ---- | M] (IVT Corporation) -- C:\WINDOWS\System32\DRIVERS\btnetdrv.sys -- (BT [On_Demand | Stopped])

DRV - [2005-05-31 09:42:28 | 00,023,000 | ---- | M] (IVT Corporation) -- C:\WINDOWS\System32\Drivers\btcusb.sys -- (Btcsrusb [On_Demand | Stopped])

DRV - [2005-04-30 14:50:20 | 00,011,860 | ---- | M] () -- C:\WINDOWS\System32\DRIVERS\vbtenum.sys -- (BTHidEnum [On_Demand | Stopped])

DRV - [2005-04-30 14:50:10 | 00,028,271 | ---- | M] (IVT Corporation) -- C:\WINDOWS\System32\Drivers\BTHidMgr.sys -- (BTHidMgr [boot | Running])

DRV - [2004-08-03 23:08:22 | 00,010,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\DRIVERS\gameenum.sys -- (gameenum [On_Demand | Running])

DRV - [2008-03-31 16:43:28 | 00,533,888 | ---- | M] (PixArt Imaging Incorporation) -- C:\WINDOWS\System32\DRIVERS\GUCI_AVS.sys -- (GUCI_AVS [On_Demand | Stopped])

DRV - [2009-07-31 12:57:54 | 00,017,962 | ---- | M] () -- C:\WINDOWS\System32\Drivers\GVTDrv.sys -- (GVTDrv [On_Demand | Stopped])

DRV - [2007-03-08 06:20:48 | 00,049,920 | R--- | M] (HP) -- C:\WINDOWS\System32\DRIVERS\HPZid412.sys -- (HPZid412 [On_Demand | Stopped])

DRV - [2007-03-08 06:20:49 | 00,016,496 | R--- | M] (HP) -- C:\WINDOWS\System32\DRIVERS\HPZipr12.sys -- (HPZipr12 [On_Demand | Stopped])

DRV - [2007-03-08 06:20:50 | 00,021,568 | R--- | M] (HP) -- C:\WINDOWS\System32\DRIVERS\HPZius12.sys -- (HPZius12 [On_Demand | Stopped])

DRV - [2002-10-15 00:00:00 | 00,013,891 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\DRIVERS\IdeBusDr.sys -- (IdeBusDr [boot | Running])

DRV - [2002-10-15 00:00:00 | 00,101,431 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\DRIVERS\IdeChnDr.sys -- (IdeChnDr [boot | Running])

DRV - [2009-07-20 10:49:57 | 00,128,016 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\system32\drivers\kl1.sys -- (kl1 [boot | Running])

DRV - [2008-12-15 20:41:32 | 00,033,808 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\system32\drivers\klbg.sys -- (klbg [boot | Running])

DRV - [2009-07-20 10:49:57 | 00,296,976 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\DRIVERS\klif.sys -- (KLIF [system | Running])

DRV - [2009-05-13 17:46:52 | 00,031,760 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\DRIVERS\klim5.sys -- (klim5 [On_Demand | Running])

DRV - [2009-05-16 20:59:44 | 00,019,472 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\DRIVERS\klmouflt.sys -- (klmouflt [On_Demand | Running])

DRV - [2001-10-26 17:04:30 | 00,129,024 | ---- | M] (Compaq Computer Corporation) -- C:\WINDOWS\System32\DRIVERS\n100325.sys -- (N100 [On_Demand | Stopped])

DRV - [2006-08-11 15:42:42 | 03,958,496 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\DRIVERS\nv4_mini.sys -- (nv [On_Demand | Running])

DRV - [2007-04-25 05:35:50 | 00,051,169 | R--- | M] (OEM) -- C:\WINDOWS\System32\DRIVERS\oxser.sys -- (oxser [system | Running])

DRV - [2001-08-17 23:49:56 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\System32\DRIVERS\ptilink.sys -- (Ptilink [On_Demand | Running])

DRV - [2001-08-17 23:57:36 | 00,005,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Drivers\RootMdm.sys -- (ROOTMODEM [On_Demand | Stopped])

DRV - [2004-08-04 00:31:34 | 00,020,992 | ---- | M] (Realtek Semiconductor Corporation) -- C:\WINDOWS\System32\DRIVERS\RTL8139.SYS -- (rtl8139 [On_Demand | Running])

DRV - [2008-01-24 11:52:06 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\WINDOWS\System32\DRIVERS\secdrv.sys -- (Secdrv [On_Demand | Stopped])

DRV - [2009-04-25 18:56:51 | 00,721,904 | ---- | M] () -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd [boot | Running])

DRV - [2003-08-12 14:51:00 | 00,060,255 | R--- | M] (STMicroelectronics ) -- C:\WINDOWS\System32\DRIVERS\stmatm.sys -- (Stmatm [On_Demand | Running])

DRV - [2006-05-25 15:28:44 | 00,684,265 | R--- | M] () -- C:\WINDOWS\System32\DRIVERS\torususb.sys -- (TaurusUsb [On_Demand | Running])

DRV - [2004-08-03 23:07:56 | 00,059,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbaudio.sys -- (usbaudio [On_Demand | Stopped])

DRV - [2004-10-19 13:37:38 | 00,061,312 | ---- | M] (IVT Corporation) -- C:\WINDOWS\System32\DRIVERS\VComm.sys -- (VComm [On_Demand | Stopped])

DRV - [2005-03-25 17:18:48 | 00,082,148 | ---- | M] (IVT Corporation) -- C:\WINDOWS\System32\Drivers\VcommMgr.sys -- (VcommMgr [On_Demand | Stopped])

DRV - [2006-11-07 09:42:16 | 00,061,504 | R--- | M] (MCCI) -- C:\WINDOWS\System32\DRIVERS\w200bus.sys -- (w200bus [On_Demand | Stopped])

DRV - [2006-11-07 09:42:22 | 00,009,328 | R--- | M] (MCCI) -- C:\WINDOWS\System32\DRIVERS\w200mdfl.sys -- (w200mdfl [On_Demand | Stopped])

DRV - [2006-11-07 09:42:24 | 00,097,056 | R--- | M] (MCCI) -- C:\WINDOWS\System32\DRIVERS\w200mdm.sys -- (w200mdm [On_Demand | Stopped])

DRV - [2006-11-07 09:42:28 | 00,088,560 | R--- | M] (MCCI) -- C:\WINDOWS\System32\DRIVERS\w200mgmt.sys -- (w200mgmt [On_Demand | Stopped])

DRV - [2006-11-07 09:42:30 | 00,086,368 | R--- | M] (MCCI) -- C:\WINDOWS\System32\DRIVERS\w200obex.sys -- (w200obex [On_Demand | Stopped])

DRV - [2009-08-05 21:46:28 | 00,011,136 | ---- | M] () -- C:\WINDOWS\System32\__wt__s.sys -- (__wt__ss [On_Demand | Stopped])

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-842925246-152049171-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm

IE - HKU\S-1-5-21-842925246-152049171-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

IE - HKU\S-1-5-21-842925246-152049171-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

IE - HKU\S-1-5-21-842925246-152049171-725345543-1003\S-1-5-21-842925246-152049171-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: linkfilter@kaspersky.ru:9.0.0.459

FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.13

FF - HKLM\software\mozilla\Mozilla Firefox 3.0.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009-08-04 20:55:54 | 00,000,000 | ---D | M]

FF - HKLM\software\mozilla\Mozilla Firefox 3.0.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009-08-04 20:55:54 | 00,000,000 | ---D | M]

[2009-04-24 20:07:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Peter\Dane aplikacji\mozilla\Extensions

[2009-04-24 20:07:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Peter\Dane aplikacji\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}

[2009-06-02 19:51:36 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Peter\Dane aplikacji\mozilla\Firefox\Profiles\59uksz5s.default\extensions

[2009-08-09 21:36:12 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions

[2009-08-04 20:55:54 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

[2009-07-20 10:36:19 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\linkfilter@kaspersky.ru

[2009-08-04 20:55:48 | 00,023,032 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll

[2009-08-04 20:55:48 | 00,134,648 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll

[2009-08-04 20:55:48 | 00,065,528 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll

[2006-10-26 20:12:16 | 00,016,192 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL

[2009-02-27 12:13:42 | 00,103,792 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\mozilla firefox\plugins\nppdf32.dll

[2008-09-10 21:56:44 | 00,144,960 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nppl3260.dll

[2008-09-10 21:37:54 | 00,094,208 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nprpjplug.dll

[2009-07-22 18:56:26 | 00,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml

[2009-04-27 19:40:01 | 00,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml

[2009-04-27 19:40:01 | 00,001,706 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml

[2009-04-27 19:40:01 | 00,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml

[2009-04-27 19:40:01 | 00,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml

[2009-04-27 19:40:01 | 00,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml

[2009-04-27 19:40:02 | 00,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml

O1 HOSTS File: (742 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts

O1 - Hosts: 127.0.0.1 localhost

O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)

O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\ievkbd.dll (Kaspersky Lab)

O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll (Kaspersky Lab)

O4 - HKLM..\Run: [__wt__dlg] C:\WINDOWS\System32\__wt__inf.exe ()

O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)

O4 - HKLM..\Run: [AdslTaskBar] C:\WINDOWS\System32\stmctrl.DLL (STMicroelectronics )

O4 - HKLM..\Run: [AVP] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe (Kaspersky Lab)

O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\System32\NeroCheck.exe (Ahead Software Gmbh)

O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)

O4 - HKLM..\Run: [soundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)

O4 - HKLM..\Run: [VGAUtil] C:\Program Files\GigaByte\VGA Utility Manager\G-VGA.exe File not found

O4 - HKU\S-1-5-21-842925246-152049171-725345543-1003..\Run: [AutoConnect] C:\Program Files\AutoConnect\AutoConnect.exe (http://autoconnect.prv.pl)

O4 - HKU\S-1-5-21-842925246-152049171-725345543-1003..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)

O4 - HKU\.DEFAULT..\RunOnce: [nltide_2] File not found

O4 - HKU\.DEFAULT..\RunOnce: [nltide_3] C:\WINDOWS\System32\advpack.DLL (Microsoft Corporation)

O4 - HKU\S-1-5-18..\RunOnce: [nltide_2] File not found

O4 - HKU\S-1-5-18..\RunOnce: [nltide_3] C:\WINDOWS\System32\advpack.DLL (Microsoft Corporation)

O4 - HKU\S-1-5-19..\RunOnce: [nltide_2] File not found

O4 - HKU\S-1-5-19..\RunOnce: [nltide_3] C:\WINDOWS\System32\advpack.DLL (Microsoft Corporation)

O4 - HKU\S-1-5-20..\RunOnce: [nltide_2] File not found

O4 - HKU\S-1-5-20..\RunOnce: [nltide_3] C:\WINDOWS\System32\advpack.DLL (Microsoft Corporation)

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1

O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-21-842925246-152049171-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)

O9 - Extra Button: &Virtual keyboard - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll (Kaspersky Lab)

O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)

O9 - Extra Button: URLs c&heck - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll (Kaspersky Lab)

O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (Microsoft Corporation)

O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)

O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)

O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\ipp - No CLSID value found

O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\msdaipp - No CLSID value found

O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)

O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)

O18 - Protocol\Filter: - text/xml - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)

O20 - AppInit_DLLs: (C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll) - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\mzvkbd.dll (Kaspersky Lab)

O20 - AppInit_DLLs: (C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll) - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\mzvkbd3.dll (Kaspersky Lab)

O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation)

O20 - Winlogon\Notify\klogon: DllName - C:\WINDOWS\system32\klogon.dll - C:\WINDOWS\System32\klogon.dll (Kaspersky Lab)

O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home

O31 - SafeBoot: AlternateShell - cmd.exe

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2009-04-24 20:19:34 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]

O32 - AutoRun File - [2009-08-14 08:46:51 | 00,000,051 | RHS- | M] () - C:\autorun.inf -- [ NTFS ]

O32 - AutoRun File - [2009-08-14 08:46:51 | 00,000,051 | RHS- | M] () - D:\autorun.inf -- [ NTFS ]

O33 - MountPoints2\{1dfc475c-3357-11de-b3d6-000fea42148c}\Shell - "" = AutoRun

O33 - MountPoints2\{412fbd84-3b19-11de-b3f3-ece5c5160df5}\Shell\AutoRun\command - "" = G:\9u.exe -- File not found

O33 - MountPoints2\{412fbd84-3b19-11de-b3f3-ece5c5160df5}\Shell\open\Command - "" = G:\9u.exe -- File not found

O34 - HKLM BootExecute: (autocheck) - File not found

O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation)

O34 - HKLM BootExecute: (*) - File not found

========== Files/Folders - Created Within 30 Days ==========

[1 C:\WINDOWS\System32\*.tmp files]

[3 C:\WINDOWS\*.tmp files]

[2009-08-14 14:55:51 | 00,513,536 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Peter\Pulpit\OTL.exe

[2009-08-14 08:46:51 | 00,000,051 | RHS- | C] () -- C:\autorun.inf

[2009-08-14 08:46:51 | 00,000,000 | RHS- | C] () -- C:\9u.exe

[2009-08-13 18:29:23 | 00,000,626 | ---- | C] () -- C:\Documents and Settings\Peter\Pulpit\Warcraft III.lnk

[2009-08-13 18:29:16 | 00,000,631 | ---- | C] () -- C:\Documents and Settings\Peter\Pulpit\Warcraft III - The Frozen Throne.lnk

[2009-08-13 18:19:18 | 00,139,264 | ---- | C] (Blizzard Entertainment) -- C:\WINDOWS\War3Unin.exe

[2009-08-13 18:19:18 | 00,065,896 | ---- | C] () -- C:\WINDOWS\War3Unin.dat

[2009-08-13 18:19:18 | 00,002,829 | ---- | C] () -- C:\WINDOWS\War3Unin.pif

[2009-08-13 13:02:54 | 00,000,000 | ---D | C] -- C:\Program Files\7-Zip

[2009-08-13 12:33:11 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Peter\Dane aplikacji\teamspeak2

[2009-08-06 17:03:28 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Peter\Dane aplikacji\Ventrilo

[2009-08-06 17:03:17 | 00,000,643 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Ventrilo Mix.lnk

[2009-08-06 17:03:15 | 00,000,000 | ---D | C] -- C:\Program Files\Ventrilo Mix

[2009-08-05 21:59:29 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Peter\Dane aplikacji\Tibia

[2009-08-05 21:46:28 | 00,231,424 | ---- | C] () -- C:\WINDOWS\System32\__wt__inf.exe

[2009-08-05 21:46:28 | 00,132,608 | ---- | C] () -- C:\WINDOWS\System32\__wt__d.dll

[2009-08-05 21:46:28 | 00,011,136 | ---- | C] () -- C:\WINDOWS\System32\__wt__s.sys

[2009-08-03 23:00:08 | 00,000,303 | ---- | C] () -- C:\WINDOWS\ST6UNST.001

[2009-08-03 22:59:26 | 00,004,264 | ---- | C] () -- C:\WINDOWS\SETUP.LST

[2009-08-03 22:59:26 | 00,000,303 | ---- | C] () -- C:\WINDOWS\ST6UNST.000

[2009-08-03 20:41:51 | 00,021,840 | ---- | C] () -- C:\WINDOWS\System32\SIntfNT.dll

[2009-08-03 20:41:51 | 00,017,212 | ---- | C] () -- C:\WINDOWS\System32\SIntf32.dll

[2009-08-03 20:41:51 | 00,012,067 | ---- | C] () -- C:\WINDOWS\System32\SIntf16.dll

[2009-08-03 20:41:26 | 00,000,590 | ---- | C] () -- C:\Documents and Settings\Peter\Pulpit\Diablo II - Lord of Destruction.lnk

[2009-08-03 20:36:26 | 00,029,530 | ---- | C] () -- C:\WINDOWS\DIIUnin.dat

[2009-08-03 20:36:23 | 00,106,496 | ---- | C] (Blizzard Entertainment) -- C:\WINDOWS\DIIUnin.exe

[2009-08-03 20:36:23 | 00,002,829 | ---- | C] () -- C:\WINDOWS\DIIUnin.pif

[2009-08-03 18:27:14 | 00,000,000 | ---D | C] -- C:\D2

[2009-07-31 12:57:54 | 00,000,004 | ---- | C] () -- C:\WINDOWS\System32\GVTunner.ref

[2009-07-29 13:15:56 | 00,017,962 | ---- | C] () -- C:\WINDOWS\System32\drivers\GVTDrv.sys

[2009-07-29 13:09:26 | 00,000,000 | ---D | C] -- C:\Program Files\GIGABYTE

[2009-07-29 12:55:21 | 00,143,360 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll

[2009-07-29 12:55:21 | 00,049,152 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe

[2009-07-29 12:55:19 | 00,141,016 | ---- | C] () -- C:\WINDOWS\System32\alsndmgr.wav

[2009-07-29 12:54:41 | 00,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini

[2009-07-29 12:54:41 | 00,000,000 | ---D | C] -- C:\Program Files\Realtek Sound Manager

[2009-07-29 12:54:41 | 00,000,000 | ---D | C] -- C:\Program Files\AvRack

[2009-07-29 12:54:32 | 00,000,000 | ---D | C] -- C:\Program Files\Realtek AC97

[2009-07-29 12:28:48 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang

[2009-07-29 12:07:39 | 00,000,169 | ---- | C] () -- C:\WINDOWS\RtlRack.ini

[2009-07-29 11:29:30 | 00,000,000 | ---D | C] -- C:\WINDOWS\pss

[2009-07-28 23:49:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Peter\Ustawienia lokalne\Dane aplikacji\EA Games

[2009-07-26 09:12:09 | 00,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll

[2009-07-26 09:12:08 | 00,000,000 | ---D | C] -- C:\Program Files\Real Alternative

[2009-07-26 09:12:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Peter\Ustawienia lokalne\Dane aplikacji\Real

[2009-07-26 09:12:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Peter\Dane aplikacji\Real

[2009-07-26 09:12:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Real

[2009-07-25 21:45:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Peter\Moje dokumenty\EA Games

[2009-07-25 21:38:47 | 00,442,368 | R--- | C] (On2.com) -- C:\WINDOWS\System32\vp6vfw.dll

[2009-07-23 11:38:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Peter\Dane aplikacji\IDM

[2009-07-23 11:38:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Peter\Dane aplikacji\DMCache

[2009-07-21 13:12:00 | 00,009,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\hidusb.sys

[2009-07-21 13:12:00 | 00,009,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidusb.sys

[2009-07-21 12:51:54 | 00,010,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\gameenum.sys

[2009-07-21 12:51:54 | 00,010,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gameenum.sys

[2009-07-20 19:25:07 | 00,000,000 | ---D | C] -- C:\WINDOWS\VID_0e8f&PID_0012

[2009-07-20 10:36:47 | 00,604,140 | -HS- | C] () -- C:\WINDOWS\System32\drivers\ISwift3.dat

[2009-07-20 10:35:59 | 00,105,395 | ---- | C] () -- C:\WINDOWS\System32\drivers\klin.dat

[2009-07-20 10:35:59 | 00,094,643 | ---- | C] () -- C:\WINDOWS\System32\drivers\klick.dat

[2009-07-20 10:34:33 | 00,000,000 | ---D | C] -- C:\Program Files\Kaspersky Lab

[2009-07-20 10:34:33 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Kaspersky Lab

[2009-07-20 10:34:12 | 00,296,976 | ---- | C] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klif.sys

[2009-06-16 17:30:40 | 00,002,007 | ---- | C] () -- C:\WINDOWS\System32\GUCI_AVS.ini

[2009-05-23 21:32:25 | 01,867,776 | ---- | C] () -- C:\WINDOWS\System32\python24.dll

[2009-04-28 21:27:59 | 00,013,304 | ---- | C] () -- C:\WINDOWS\System32\drivers\BTNetFilter.sys

[2009-04-28 21:27:59 | 00,011,860 | ---- | C] () -- C:\WINDOWS\System32\drivers\vbtenum.sys

[2009-04-25 18:53:54 | 00,721,904 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys

[2009-04-24 21:55:26 | 00,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini

[2009-04-24 20:11:18 | 00,168,448 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll

[2009-04-24 20:11:15 | 03,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll

[2009-04-24 20:11:15 | 00,795,648 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll

[2009-04-24 20:11:15 | 00,130,048 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll

[2009-04-24 20:11:13 | 00,057,344 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll

[2009-04-24 20:11:13 | 00,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest

[2009-04-24 20:05:32 | 00,000,902 | R--- | C] () -- C:\WINDOWS\System32\setup.ini

[2009-04-24 20:05:32 | 00,000,161 | R--- | C] () -- C:\WINDOWS\DSLSetup.ini

[2009-04-24 20:05:31 | 00,684,265 | R--- | C] () -- C:\WINDOWS\System32\drivers\torususb.sys

[2006-08-11 15:45:20 | 00,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll

[2006-08-11 15:43:10 | 00,196,608 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll

[2006-08-11 15:43:00 | 01,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll

[2006-08-11 15:43:00 | 01,470,464 | ---- | C] () -- C:\WINDOWS\System32\nview.dll

[2006-08-11 15:43:00 | 01,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll

[2006-08-11 15:43:00 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll

[2006-08-11 15:43:00 | 00,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll

[2001-07-22 00:16:20 | 00,000,971 | ---- | C] () -- C:\WINDOWS\win.ini

[2001-07-22 00:15:52 | 00,000,227 | ---- | C] () -- C:\WINDOWS\system.ini

[1996-04-03 21:33:26 | 00,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys

========== Files - Modified Within 30 Days ==========

[1 C:\WINDOWS\System32\*.tmp files]

[3 C:\WINDOWS\*.tmp files]

[2009-08-14 14:55:53 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Peter\Pulpit\OTL.exe

[2009-08-14 14:50:48 | 00,081,191 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml

[2009-08-14 14:50:13 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat

[2009-08-14 08:48:10 | 05,328,690 | -H-- | M] () -- C:\Documents and Settings\Peter\Ustawienia lokalne\Dane aplikacji\IconCache.db

[2009-08-14 08:46:51 | 00,000,051 | RHS- | M] () -- C:\autorun.inf

[2009-08-14 08:46:51 | 00,000,000 | RHS- | M] () -- C:\9u.exe

[2009-08-13 18:29:23 | 00,000,626 | ---- | M] () -- C:\Documents and Settings\Peter\Pulpit\Warcraft III.lnk

[2009-08-13 18:29:16 | 00,000,631 | ---- | M] () -- C:\Documents and Settings\Peter\Pulpit\Warcraft III - The Frozen Throne.lnk

[2009-08-13 18:28:33 | 00,065,896 | ---- | M] () -- C:\WINDOWS\War3Unin.dat

[2009-08-13 18:27:34 | 00,139,264 | ---- | M] (Blizzard Entertainment) -- C:\WINDOWS\War3Unin.exe

[2009-08-13 18:27:34 | 00,002,829 | ---- | M] () -- C:\WINDOWS\War3Unin.pif

[2009-08-13 14:36:06 | 00,355,486 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat

[2009-08-13 14:36:05 | 00,763,990 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI

[2009-08-13 14:36:05 | 00,311,604 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat

[2009-08-13 14:36:05 | 00,049,492 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat

[2009-08-13 14:36:05 | 00,039,992 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat

[2009-08-06 17:03:17 | 00,000,643 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Ventrilo Mix.lnk

[2009-08-05 21:46:28 | 00,132,608 | ---- | M] () -- C:\WINDOWS\System32\__wt__d.dll

[2009-08-05 21:46:28 | 00,011,136 | ---- | M] () -- C:\WINDOWS\System32\__wt__s.sys

[2009-08-05 21:46:21 | 00,231,424 | ---- | M] () -- C:\WINDOWS\System32\__wt__inf.exe

[2009-08-03 23:00:08 | 00,004,264 | ---- | M] () -- C:\WINDOWS\SETUP.LST

[2009-08-03 23:00:08 | 00,000,303 | ---- | M] () -- C:\WINDOWS\ST6UNST.001

[2009-08-03 22:59:26 | 00,000,303 | ---- | M] () -- C:\WINDOWS\ST6UNST.000

[2009-08-03 20:43:19 | 00,029,530 | ---- | M] () -- C:\WINDOWS\DIIUnin.dat

[2009-08-03 20:41:51 | 00,021,840 | ---- | M] () -- C:\WINDOWS\System32\SIntfNT.dll

[2009-08-03 20:41:51 | 00,017,212 | ---- | M] () -- C:\WINDOWS\System32\SIntf32.dll

[2009-08-03 20:41:51 | 00,012,067 | ---- | M] () -- C:\WINDOWS\System32\SIntf16.dll

[2009-08-03 20:41:26 | 00,000,590 | ---- | M] () -- C:\Documents and Settings\Peter\Pulpit\Diablo II - Lord of Destruction.lnk

[2009-08-03 20:36:23 | 00,106,496 | ---- | M] (Blizzard Entertainment) -- C:\WINDOWS\DIIUnin.exe

[2009-08-03 20:36:23 | 00,002,829 | ---- | M] () -- C:\WINDOWS\DIIUnin.pif

[2009-07-31 22:32:43 | 00,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini

[2009-07-31 12:57:54 | 00,017,962 | ---- | M] () -- C:\WINDOWS\System32\drivers\GVTDrv.sys

[2009-07-31 12:57:54 | 00,000,004 | ---- | M] () -- C:\WINDOWS\System32\GVTunner.ref

[2009-07-29 12:07:39 | 00,000,169 | ---- | M] () -- C:\WINDOWS\RtlRack.ini

[2009-07-29 12:07:08 | 00,001,917 | ---- | M] () -- C:\WINDOWS\imsins.BAK

[2009-07-29 11:44:37 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT

[2009-07-29 11:31:03 | 00,000,971 | ---- | M] () -- C:\WINDOWS\win.ini

[2009-07-29 11:31:03 | 00,000,227 | ---- | M] () -- C:\WINDOWS\system.ini

[2009-07-29 11:31:03 | 00,000,211 | -HS- | M] () -- C:\boot.ini

[2009-07-28 21:06:49 | 00,012,288 | ---- | M] () -- C:\Documents and Settings\Peter\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2009-07-20 10:49:57 | 00,296,976 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\klif.sys

[2009-07-20 10:49:57 | 00,128,016 | ---- | M] (Kaspersky Lab) -- C:\WINDOWS\System32\drivers\kl1.sys

[2009-07-20 10:36:47 | 00,604,140 | -HS- | M] () -- C:\WINDOWS\System32\drivers\ISwift3.dat

[2009-07-20 10:35:59 | 00,105,395 | ---- | M] () -- C:\WINDOWS\System32\drivers\klin.dat

[2009-07-20 10:35:59 | 00,094,643 | ---- | M] () -- C:\WINDOWS\System32\drivers\klick.dat

========== LOP Check ==========

[2009-08-11 19:20:53 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji

[2009-04-24 19:45:03 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CyberLink

[2009-04-25 18:55:11 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite

[2009-04-28 18:52:33 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Teleca

[2009-05-29 08:57:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP

[2009-05-05 13:43:05 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Trymedia

[2009-04-24 21:08:41 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\Default User\Dane aplikacji

[2009-04-24 20:26:59 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji

[2009-04-24 20:23:53 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji

[2009-08-13 12:33:11 | 00,000,000 | RH-D | M] -- C:\Documents and Settings\Peter\Dane aplikacji

[2009-06-04 13:36:50 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Peter\Dane aplikacji\CyberLink

[2009-04-25 19:01:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Peter\Dane aplikacji\DAEMON Tools Lite

[2009-05-09 21:47:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Peter\Dane aplikacji\DAEMON Tools Pro

[2009-07-29 09:00:17 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Peter\Dane aplikacji\DMCache

[2009-04-24 20:20:50 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Peter\Dane aplikacji\Gadu-Gadu

[2009-06-26 16:04:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Peter\Dane aplikacji\gtk-2.0

[2009-07-29 11:09:51 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Peter\Dane aplikacji\IDM

[2009-08-13 12:33:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Peter\Dane aplikacji\teamspeak2

[2009-04-29 13:44:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Peter\Dane aplikacji\Teleca

[2009-08-05 22:00:39 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Peter\Dane aplikacji\Tibia

[2009-08-06 17:08:27 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Peter\Dane aplikacji\Ventrilo

[2001-07-22 00:17:50 | 00,000,065 | RH-- | M] () -- C:\WINDOWS\Tasks\desktop.ini

[2009-07-29 11:44:37 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\Tasks\SA.DAT

========== Purity Check ==========

========== Alternate Data Streams ==========

@Alternate Data Stream - 118 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:E41EAF13

< End of report >

post-45298-1250232120,45_thumb.jpg

MarekM25
komentarz
komentarz

Wygląda na wirusa.

Daj loga z OTListIt2.

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.