x-kom hosting

Log do sprawdzenia

Qanitro
utworzono
utworzono

poprostu wiem, ze mam syfa ;F

[log]OTL logfile created on: 2009-09-29 21:41:59 - Run 3
OTL by OldTimer - Version 3.0.16.0 Folder = C:\Users\Adam\Desktop\PROGRAMY
Ultimate Edition (Version = 6.1.7100) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7100.0)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,28 Gb Available Physical Memory | 64,05% Memory free
4,00 Gb Paging File | 2,95 Gb Available in Paging File | 73,78% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 78,13 Gb Total Space | 47,75 Gb Free Space | 61,12% Space Free | Partition Type: NTFS
Drive D: | 55,45 Gb Total Space | 43,62 Gb Free Space | 78,66% Space Free | Partition Type: NTFS
Drive E: | 70,91 Gb Total Space | 0,11 Gb Free Space | 0,15% Space Free | Partition Type: NTFS
Drive F: | 397,40 Gb Total Space | 82,30 Gb Free Space | 20,71% Space Free | Partition Type: NTFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive X: | 12,81 Gb Total Space | 6,22 Gb Free Space | 48,53% Space Free | Partition Type: NTFS

Computer Name: ADAM-PC
Current User Name: Adam
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: On
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2009-08-17 02:41:48 | 00,215,584 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvvsvc.exe
PRC - [2009-08-17 02:41:48 | 00,215,584 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvvsvc.exe
PRC - [2009-02-05 22:01:25 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PRC - [2009-02-05 22:08:40 | 00,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe
PRC - [2008-06-14 19:02:12 | 00,017,408 | ---- | M] (Apache Software Foundation) -- E:\Programy\xampp\apache\bin\apache.exe
PRC - [2009-04-22 07:19:35 | 00,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009-04-22 07:19:02 | 02,607,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\Explorer.EXE
PRC - [2008-11-07 14:28:16 | 00,132,424 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
PRC - [2008-08-29 10:18:44 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2008-08-04 15:45:16 | 05,779,456 | ---- | M] () -- E:\Programy\xampp\mysql\bin\mysqld-nt.exe
PRC - [2009-08-11 21:34:42 | 00,066,872 | ---- | M] () -- C:\Windows\System32\PnkBstrA.exe
PRC - [2009-08-17 01:32:00 | 00,239,648 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2008-11-09 22:48:14 | 00,602,392 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
PRC - [2008-06-14 19:02:12 | 00,017,408 | ---- | M] (Apache Software Foundation) -- E:\Programy\xampp\apache\bin\apache.exe
PRC - [2009-02-05 22:06:04 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
PRC - [2009-02-05 22:08:26 | 00,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
PRC - [2009-02-05 22:08:45 | 00,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe
PRC - [2009-08-19 01:20:14 | 00,273,424 | ---- | M] () -- E:\Programy\EVGA Precision\EVGAPrecision.exe
PRC - [2005-11-07 17:44:13 | 02,472,448 | ---- | M] (Almico Software (www.almico.com)) -- E:\Programy\SpeedFan\speedfan.exe
PRC - [2007-08-24 07:00:48 | 00,033,648 | ---- | M] (Microsoft Corporation) -- F:\Programy\Microsoft Office 2007\Office12\GrooveMonitor.exe
PRC - [2009-04-22 07:19:42 | 00,256,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wmiprvse.exe
PRC - [2009-04-22 07:19:43 | 01,124,352 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
PRC - [2009-08-24 22:23:38 | 00,908,280 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009-09-29 21:39:08 | 00,518,144 | ---- | M] (OldTimer Tools) -- C:\Users\Adam\Desktop\PROGRAMY\OTL.exe

[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - [2008-06-14 19:02:12 | 00,017,408 | ---- | M] (Apache Software Foundation) -- E:\Programy\xampp\apache\bin\apache.exe -- (Apache2.2 [Auto | Running])
SRV - [2009-04-22 07:19:51 | 00,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\appidsvc.dll -- (AppIDSvc [On_Demand | Stopped])
SRV - [2008-11-07 14:28:16 | 00,132,424 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device [Auto | Running])
SRV - [2009-02-05 22:01:25 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv [Auto | Running])
SRV - [2009-02-05 22:08:40 | 00,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus [Auto | Running])
SRV - [2009-02-05 22:08:26 | 00,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner [On_Demand | Running])
SRV - [2009-02-05 22:06:04 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner [On_Demand | Running])
SRV - [2009-04-22 07:19:54 | 00,088,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AxInstSV.dll -- (AxInstSV [On_Demand | Stopped])
SRV - [2009-04-22 07:19:55 | 00,076,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bdesvc.dll -- (BDESVC [Unknown | Stopped])
SRV - [2008-08-29 10:18:44 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service [Auto | Running])
SRV - [2009-04-04 22:05:06 | 00,067,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])
SRV - [2009-04-22 07:20:13 | 00,218,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\defragsvc.dll -- (defragsvc [On_Demand | Stopped])
SRV - [2009-04-22 07:20:14 | 00,252,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcore.dll -- (Dhcp [Auto | Running])
SRV - [2009-04-22 07:19:00 | 00,556,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehRecvr.exe -- (ehRecvr [On_Demand | Stopped])
SRV - [2009-04-22 07:19:00 | 00,094,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehsched.exe -- (ehSched [On_Demand | Stopped])
SRV - [2009-04-22 07:22:15 | 01,086,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wevtsvc.dll -- (eventlog [Auto | Running])
SRV - File not found -- -- (FileZilla Server [Auto | Stopped])
SRV - [2009-08-11 08:34:30 | 00,654,848 | ---- | M] (Macrovision Europe Ltd.) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service [On_Demand | Stopped])
SRV - [2009-04-22 07:20:30 | 00,797,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FntCache.dll -- (FontCache [On_Demand | Stopped])
SRV - [2009-04-04 22:04:57 | 00,043,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped])
SRV - [2009-07-08 23:53:41 | 00,194,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ListSvc.dll -- (HomeGroupListener [On_Demand | Running])
SRV - [2009-04-22 07:21:43 | 00,164,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\provsvc.dll -- (HomeGroupProvider [On_Demand | Running])
SRV - [2009-04-04 22:04:34 | 00,879,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc [Unknown | Stopped])
SRV - [2008-11-20 13:20:44 | 00,536,872 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe -- (iPod Service [On_Demand | Stopped])
SRV - [2007-08-24 06:59:20 | 00,068,464 | ---- | M] (Microsoft Corporation) -- F:\Programy\Microsoft Office 2007\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service [On_Demand | Stopped])
SRV - [2008-08-04 15:45:16 | 05,779,456 | ---- | M] () -- E:\Programy\xampp\mysql\bin\mysqld-nt.exe -- (mysql [Auto | Running])
SRV - [2009-04-04 22:04:35 | 00,129,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped])
SRV - [2009-08-17 02:41:48 | 00,215,584 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvvsvc.exe -- (nvsvc [Auto | Running])
SRV - [2007-08-24 03:19:12 | 00,443,776 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv [On_Demand | Stopped])
SRV - [2006-10-26 13:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose [On_Demand | Stopped])
SRV - [2009-04-22 07:21:42 | 00,269,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnrpsvc.dll -- (p2pimsvc [On_Demand | Running])
SRV - [2009-04-22 07:21:40 | 01,004,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\peerdistsvc.dll -- (PeerDistSvc [On_Demand | Stopped])
SRV - [2009-08-11 21:34:42 | 00,066,872 | ---- | M] () -- C:\Windows\System32\PnkBstrA.exe -- (PnkBstrA [Auto | Running])
SRV - [2009-04-22 07:21:42 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnrpauto.dll -- (PNRPAutoReg [On_Demand | Stopped])
SRV - [2009-04-22 07:21:42 | 00,269,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnrpsvc.dll -- (PNRPsvc [On_Demand | Running])
SRV - [2009-04-22 07:22:10 | 00,119,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\umpo.dll -- (Power [Auto | Running])
SRV - [2009-04-22 07:21:46 | 00,043,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RpcEpMap.dll -- (RpcEptMapper [Unknown | Running])
SRV - [2009-04-22 07:21:49 | 00,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc [On_Demand | Stopped])
SRV - [2009-04-22 07:19:20 | 03,179,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sppsvc.exe.bak -- (sppsvc [Disabled | Stopped])
SRV - [2009-08-17 01:32:00 | 00,239,648 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service [Auto | Running])
SRV - [2009-04-22 07:22:07 | 00,037,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\themeservice.dll -- (Themes [Auto | Running])
SRV - [2009-04-22 07:22:12 | 00,151,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbiosrvc.dll -- (WbioSrvc [On_Demand | Stopped])
SRV - [2009-04-22 07:20:52 | 00,680,448 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend [Disabled | Stopped])
SRV - [2009-04-22 07:19:43 | 01,124,352 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc [Auto | Running])
SRV - [2009-04-22 07:22:25 | 00,185,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wwansvc.dll -- (WwanSvc [On_Demand | Stopped])
SRV - [2008-11-09 22:48:14 | 00,602,392 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService [Auto | Running])

[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - [2009-04-22 05:50:20 | 00,162,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DRIVERS\1394ohci.sys -- (1394ohci [On_Demand | Stopped])
DRV - [2009-04-22 05:49:51 | 00,046,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DRIVERS\61883.sys -- (61883 [On_Demand | Stopped])
DRV - [2009-04-22 05:13:47 | 00,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DRIVERS\acpipmi.sys -- (AcpiPmi [On_Demand | Stopped])
DRV - [2009-04-22 07:24:35 | 00,422,992 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\DRIVERS\adp94xx.sys -- (adp94xx [On_Demand | Stopped])
DRV - [2009-04-22 07:24:29 | 00,297,552 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\DRIVERS\adpahci.sys -- (adpahci [On_Demand | Stopped])
DRV - [2009-04-22 07:24:21 | 00,146,512 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\DRIVERS\adpu320.sys -- (adpu320 [On_Demand | Stopped])
DRV - [2009-04-22 07:24:08 | 00,070,736 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\DRIVERS\djsvs.sys -- (aic78xx [On_Demand | Stopped])
DRV - [2003-09-09 01:06:36 | 00,255,360 | ---- | M] (D-Link) -- C:\Windows\System32\DRIVERS\airplus.sys -- (AIRPLUS [On_Demand | Running])
DRV - [2009-04-22 07:24:04 | 00,014,416 | ---- | M] (Acer Laboratories Inc.) -- C:\Windows\system32\DRIVERS\aliide.sys -- (aliide [On_Demand | Stopped])
DRV - [2007-06-29 14:47:34 | 00,034,304 | ---- | M] (AMD, Inc.) -- C:\Windows\System32\DRIVERS\AmdLLD.sys -- (AmdLLD [On_Demand | Running])
DRV - [2009-04-22 05:08:28 | 00,052,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DRIVERS\amdppm.sys -- (AmdPPM [On_Demand | Running])
DRV - [2009-04-22 07:24:13 | 00,077,904 | ---- | M] (AMD) -- C:\Windows\system32\DRIVERS\amdsata.sys -- (amdsata [On_Demand | Stopped])
DRV - [2009-04-22 07:24:21 | 00,159,312 | ---- | M] (AMD Technologies Inc.) -- C:\Windows\system32\DRIVERS\amdsbs.sys -- (amdsbs [On_Demand | Stopped])
DRV - [2009-04-22 07:24:04 | 00,023,120 | ---- | M] (AMD) -- C:\Windows\system32\DRIVERS\amdxata.sys -- (amdxata [Boot | Running])
DRV - [2009-04-22 05:35:06 | 00,050,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\appid.sys -- (AppID [On_Demand | Stopped])
DRV - [2009-04-22 07:24:12 | 00,076,368 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\DRIVERS\arc.sys -- (arc [On_Demand | Stopped])
DRV - [2009-04-22 07:24:19 | 00,086,608 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\DRIVERS\arcsas.sys -- (arcsas [On_Demand | Stopped])
DRV - [2009-02-05 22:07:12 | 00,020,560 | ---- | M] (ALWIL Software) -- C:\Windows\System32\DRIVERS\aswFsBlk.sys -- (aswFsBlk [Auto | Running])
DRV - [2009-02-05 22:06:59 | 00,051,792 | ---- | M] (ALWIL Software) -- C:\Windows\System32\DRIVERS\aswMonFlt.sys -- (aswMonFlt [Auto | Running])
DRV - [2009-02-05 22:06:10 | 00,023,152 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr [System | Running])
DRV - [2009-02-05 22:07:23 | 00,114,768 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP [System | Running])
DRV - [2009-02-05 22:06:20 | 00,051,376 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi [System | Running])
DRV - [2006-11-10 15:08:50 | 00,024,064 | ---- | M] () -- C:\Windows\System32\DRIVERS\ATITool.sys -- (ATITool [System | Stopped])
DRV - [2009-04-22 05:49:51 | 00,040,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DRIVERS\avc.sys -- (Avc [On_Demand | Stopped])
DRV - [2009-04-22 04:01:07 | 00,430,080 | ---- | M] (Broadcom Corporation) -- C:\Windows\system32\DRIVERS\bxvbdx.sys -- (b06bdrv [On_Demand | Stopped])
DRV - [2009-04-22 04:01:07 | 00,229,888 | ---- | M] (Broadcom Corporation) -- C:\Windows\System32\DRIVERS\b57nd60x.sys -- (b57nd60x [On_Demand | Stopped])
DRV - [2009-04-22 04:51:15 | 00,013,568 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\system32\DRIVERS\BrFiltLo.sys -- (BrFiltLo [On_Demand | Stopped])
DRV - [2009-04-22 04:51:15 | 00,005,248 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\system32\DRIVERS\BrFiltUp.sys -- (BrFiltUp [On_Demand | Stopped])
DRV - [2009-04-22 06:53:34 | 00,272,128 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\Drivers\Brserid.sys -- (Brserid [On_Demand | Stopped])
DRV - [2009-04-22 04:51:16 | 00,062,336 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\Drivers\BrSerWdm.sys -- (BrSerWdm [On_Demand | Stopped])
DRV - [2009-04-22 04:51:17 | 00,012,160 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\Drivers\BrUsbMdm.sys -- (BrUsbMdm [On_Demand | Stopped])
DRV - [2009-04-22 04:51:17 | 00,011,904 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\Drivers\BrUsbSer.sys -- (BrUsbSer [On_Demand | Stopped])
DRV - [2009-04-22 07:24:04 | 00,015,952 | ---- | M] (CMD Technology, Inc.) -- C:\Windows\system32\DRIVERS\cmdide.sys -- (cmdide [On_Demand | Stopped])
DRV - [2009-04-22 07:23:29 | 00,369,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Drivers\cng.sys -- (CNG [Boot | Running])
DRV - [2009-04-22 05:43:54 | 00,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DRIVERS\CompositeBus.sys -- (CompositeBus [On_Demand | Running])
DRV - [2009-03-27 01:16:28 | 00,012,672 | ---- | M] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\System32\drivers\cpuz132_x32.sys -- (cpuz132 [On_Demand | Stopped])
DRV - [2002-03-22 12:08:12 | 00,114,944 | ---- | M] (Creative Technology Ltd) -- C:\Windows\System32\drivers\ctac32k.sys -- (ctac32k [On_Demand | Stopped])
DRV - [2002-03-22 12:09:40 | 00,835,636 | ---- | M] (Creative Technology Ltd) -- C:\Windows\System32\drivers\ctaud2k.sys -- (ctaud2k [On_Demand | Stopped])
DRV - [2002-03-22 12:09:54 | 00,011,068 | ---- | M] (Creative Technology Ltd) -- C:\Windows\System32\drivers\ctprxy2k.sys -- (ctprxy2k [On_Demand | Stopped])
DRV - [2002-03-22 12:10:10 | 00,211,724 | ---- | M] (Creative Technology Ltd) -- C:\Windows\System32\drivers\ctsfm2k.sys -- (ctsfm2k [On_Demand | Stopped])
DRV - [2009-04-22 05:21:35 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\discache.sys -- (discache [System | Running])
DRV - [2009-04-22 04:01:07 | 03,100,160 | ---- | M] (Broadcom Corporation) -- C:\Windows\system32\DRIVERS\evbdx.sys -- (ebdrv [On_Demand | Stopped])
DRV - [2009-04-22 07:24:23 | 00,453,712 | ---- | M] (Emulex) -- C:\Windows\system32\DRIVERS\elxstor.sys -- (elxstor [On_Demand | Stopped])
DRV - [2002-03-22 12:10:20 | 00,156,604 | ---- | M] (Creative Technology Ltd) -- C:\Windows\System32\drivers\emupia2k.sys -- (emupia [On_Demand | Stopped])
DRV - [2009-04-22 07:24:05 | 00,045,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\FsDepends.sys -- (FsDepends [On_Demand | Stopped])
DRV - [2008-04-17 13:12:54 | 00,015,464 | ---- | M] (GEAR Software Inc.) -- C:\Windows\System32\DRIVERS\GEARAspiWDM.sys -- (GEARAspiWDM [On_Demand | Running])
DRV - [1996-04-03 21:33:26 | 00,005,248 | ---- | M] () -- C:\Windows\system32\giveio.sys -- (giveio [Boot | Running])
DRV - [2002-03-22 12:10:58 | 00,991,656 | ---- | M] (Creative Technology Ltd) -- C:\Windows\System32\drivers\ha10kx2k.sys -- (ha10kx2k [On_Demand | Stopped])
DRV - [2009-09-29 13:03:59 | 00,025,280 | ---- | M] (LogMeIn, Inc.) -- C:\Windows\System32\DRIVERS\hamachi.sys -- (hamachi [On_Demand | Running])
DRV - [2009-04-22 04:52:05 | 00,026,624 | ---- | M] (Hauppauge Computer Works, Inc.) -- C:\Windows\system32\drivers\hcw85cir.sys -- (hcw85cir [On_Demand | Stopped])
DRV - [2009-04-22 05:16:45 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DRIVERS\HidBatt.sys -- (HidBatt [On_Demand | Stopped])
DRV - [2009-04-22 07:24:08 | 00,067,152 | ---- | M] (Hewlett-Packard Company) -- C:\Windows\system32\DRIVERS\HpSAMD.sys -- (HpSAMD [On_Demand | Stopped])
DRV - [2009-04-22 07:23:53 | 00,013,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\hwpolicy.sys -- (hwpolicy [Boot | Running])
DRV - [2009-04-22 07:24:21 | 00,332,368 | ---- | M] (Intel Corporation) -- C:\Windows\system32\DRIVERS\iaStorV.sys -- (iaStorV [On_Demand | Stopped])
DRV - [2009-04-22 07:24:02 | 00,041,040 | ---- | M] (Intel Corp./ICP vortex GmbH) -- C:\Windows\system32\DRIVERS\iirsp.sys -- (iirsp [On_Demand | Stopped])
DRV - [2009-04-22 07:24:16 | 00,133,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Drivers\ksecpkg.sys -- (KSecPkg [Boot | Running])
DRV - [2008-04-05 01:10:02 | 00,568,320 | ---- | M] (Eugene Gavrilov) -- C:\Windows\System32\drivers\kx.sys -- (kxwdmdrv [On_Demand | Running])
DRV - [2009-04-22 07:24:14 | 00,095,824 | ---- | M] (LSI Corporation) -- C:\Windows\system32\DRIVERS\lsi_fc.sys -- (LSI_FC [On_Demand | Stopped])
DRV - [2009-04-22 07:24:12 | 00,089,168 | ---- | M] (LSI Corporation) -- C:\Windows\system32\DRIVERS\lsi_sas.sys -- (LSI_SAS [On_Demand | Stopped])
DRV - [2009-04-22 07:24:06 | 00,054,864 | ---- | M] (LSI Corporation) -- C:\Windows\system32\DRIVERS\lsi_sas2.sys -- (LSI_SAS2 [On_Demand | Stopped])
DRV - [2009-04-22 07:24:13 | 00,096,848 | ---- | M] (LSI Corporation) -- C:\Windows\system32\DRIVERS\lsi_scsi.sys -- (LSI_SCSI [On_Demand | Stopped])
DRV - [2009-04-22 07:23:59 | 00,030,800 | ---- | M] (LSI Corporation) -- C:\Windows\system32\DRIVERS\megasas.sys -- (megasas [On_Demand | Stopped])
DRV - [2009-04-22 07:24:20 | 00,236,112 | ---- | M] (LSI Corporation, Inc.) -- C:\Windows\system32\DRIVERS\MegaSR.sys -- (MegaSR [On_Demand | Stopped])
DRV - [2008-02-14 23:12:00 | 01,389,056 | ---- | M] (Creative Technology Ltd.) -- C:\Windows\System32\drivers\monfilt.sys -- (monfilt [On_Demand | Running])
DRV - [2009-04-22 05:49:49 | 00,052,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DRIVERS\msdv.sys -- (MSDV [On_Demand | Stopped])
DRV - [2009-04-22 05:49:31 | 00,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\mshidkmdf.sys -- (mshidkmdf [On_Demand | Stopped])
DRV - [2009-04-22 05:45:25 | 00,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DRIVERS\MTConfig.sys -- (MTConfig [On_Demand | Stopped])
DRV - [2009-04-22 05:51:14 | 00,027,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DRIVERS\ndiscap.sys -- (NdisCap [On_Demand | Stopped])
DRV - [2009-04-22 07:24:05 | 00,044,624 | ---- | M] (IBM Corporation) -- C:\Windows\system32\DRIVERS\nfrd960.sys -- (nfrd960 [On_Demand | Stopped])
DRV - [2009-08-17 00:57:00 | 09,545,152 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\DRIVERS\nvlddmkm.sys -- (nvlddmkm [On_Demand | Running])
DRV - [2009-04-22 07:24:14 | 00,117,328 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\DRIVERS\nvraid.sys -- (nvraid [On_Demand | Stopped])
DRV - [2009-04-22 07:24:17 | 00,142,416 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\DRIVERS\nvstor.sys -- (nvstor [On_Demand | Stopped])
DRV - [2002-03-22 12:09:52 | 00,195,432 | ---- | M] (Creative Technology Ltd.) -- C:\Windows\System32\drivers\ctoss2k.sys -- (ossrv [On_Demand | Stopped])
DRV - [2003-08-14 19:58:12 | 01,296,384 | ---- | M] (Creative Technology Ltd.) -- C:\Windows\System32\drivers\P16X.sys -- (P16X [On_Demand | Stopped])
DRV - [2009-04-22 07:24:04 | 00,042,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\pcw.sys -- (pcw [Boot | Running])
DRV - [2003-03-05 21:19:28 | 00,015,840 | ---- | M] (Creative Technology Ltd.) -- C:\Windows\System32\drivers\PfModNT.sys -- (PfModNT [Auto | Running])
DRV - [2009-04-22 07:23:56 | 01,383,504 | ---- | M] (QLogic Corporation) -- C:\Windows\system32\DRIVERS\ql2300.sys -- (ql2300 [On_Demand | Stopped])
DRV - [2009-04-22 07:23:49 | 00,105,552 | ---- | M] (QLogic Corporation) -- C:\Windows\system32\DRIVERS\ql40xx.sys -- (ql40xx [On_Demand | Stopped])
DRV - [2009-04-22 05:53:30 | 00,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DRIVERS\AgileVpn.sys -- (RasAgileVpn [On_Demand | Running])
DRV - [2009-04-22 06:01:13 | 00,018,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DRIVERS\rdpbus.sys -- (rdpbus [On_Demand | Running])
DRV - [2009-04-22 06:00:12 | 00,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\rdprefmp.sys -- (RDPREFMP [System | Running])
DRV - [2009-04-22 07:23:55 | 00,173,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\rdyboost.sys -- (rdyboost [Boot | Running])
DRV - [2009-02-25 19:55:00 | 00,009,088 | ---- | M] () -- E:\Programy\RivaTuner v2.24\RivaTuner32.sys -- (RivaTuner32 [On_Demand | Stopped])
DRV - [2005-05-25 20:39:06 | 00,004,608 | ---- | M] () -- E:\Programy\EVGA Precision\RTCore32.sys -- (RTCore32 [On_Demand | Running])
DRV - [2009-04-22 04:01:11 | 00,139,776 | ---- | M] (Realtek Corporation ) -- C:\Windows\System32\DRIVERS\Rt86win7.sys -- (RTL8167 [On_Demand | Running])
DRV - [2009-04-22 05:26:30 | 00,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DRIVERS\vms3cap.sys -- (s3cap [On_Demand | Stopped])
DRV - [2009-03-15 12:25:46 | 00,056,268 | ---- | M] (PowerISO Computing, Inc.) -- C:\Windows\System32\drivers\scdemu.sys -- (SCDEmu [System | Running])
DRV - [2009-04-22 05:32:05 | 00,026,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DRIVERS\scfilter.sys -- (scfilter [Unknown | Stopped])
DRV - [2009-04-22 02:51:15 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\Windows\System32\drivers\secdrv.sys -- (secdrv [Auto | Running])
DRV - [2009-04-22 07:23:45 | 00,040,016 | ---- | M] (Silicon Integrated Systems Corp.) -- C:\Windows\system32\DRIVERS\SiSRaid2.sys -- (SiSRaid2 [On_Demand | Stopped])
DRV - [2009-04-22 07:23:49 | 00,077,904 | ---- | M] (Silicon Integrated Systems) -- C:\Windows\system32\DRIVERS\sisraid4.sys -- (SiSRaid4 [On_Demand | Stopped])
DRV - [2005-06-15 16:55:53 | 00,004,096 | ---- | M] (Windows (R) 2000 DDK provider) -- C:\Windows\system32\speedfan.sys -- (speedfan [Boot | Running])
DRV - [2009-04-22 07:23:43 | 00,021,072 | ---- | M] (Promise Technology) -- C:\Windows\system32\DRIVERS\stexstor.sys -- (stexstor [On_Demand | Stopped])
DRV - [2009-04-22 07:23:47 | 00,040,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DRIVERS\vmstorfl.sys -- (storflt [Boot | Running])
DRV - [2009-04-22 07:23:44 | 00,028,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DRIVERS\storvsc.sys -- (storvsc [On_Demand | Stopped])
DRV - [2009-04-22 05:50:00 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DRIVERS\umpass.sys -- (UmPass [On_Demand | Stopped])
DRV - [2009-04-22 05:49:46 | 00,080,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbaudio.sys -- (usbaudio [On_Demand | Stopped])
DRV - [2008-12-10 16:56:26 | 00,017,792 | ---- | M] (Avnex) -- C:\Windows\System32\DRIVERS\vcsvad.sys -- (VCSVADHWSer [On_Demand | Running])
DRV - [2009-04-22 07:23:44 | 00,032,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DRIVERS\vdrvroot.sys -- (vdrvroot [Boot | Running])
DRV - [2009-04-22 07:23:52 | 00,158,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DRIVERS\vhdmp.sys -- (vhdmp [On_Demand | Stopped])
DRV - [2008-12-19 20:39:30 | 00,993,280 | ---- | M] (VIA Technologies, Inc.) -- C:\Windows\System32\drivers\viahduaa.sys -- (VIAHdAudAddService [On_Demand | Running])
DRV - [2009-04-22 07:23:42 | 00,016,976 | ---- | M] (VIA Technologies, Inc.) -- C:\Windows\system32\DRIVERS\viaide.sys -- (viaide [On_Demand | Stopped])
DRV - [2009-04-22 07:23:55 | 00,175,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DRIVERS\vmbus.sys -- (vmbus [On_Demand | Stopped])
DRV - [2009-04-22 05:26:29 | 00,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DRIVERS\VMBusHID.sys -- (VMBusHID [On_Demand | Stopped])
DRV - [2009-04-22 07:23:52 | 00,141,904 | ---- | M] (VIA Technologies Inc.,Ltd) -- C:\Windows\system32\DRIVERS\vsmraid.sys -- (vsmraid [On_Demand | Stopped])
DRV - [2009-04-22 05:50:28 | 00,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\vwifibus.sys -- (vwifibus [On_Demand | Stopped])
DRV - [2009-04-22 05:52:25 | 00,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DRIVERS\wfplwf.sys -- (WfpLwf [System | Running])
DRV - [2009-04-22 07:23:43 | 00,019,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\wimmount.sys -- (WIMMount [On_Demand | Stopped])

[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157


IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-2980123934-4203326408-1469742030-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKU\S-1-5-21-2980123934-4203326408-1469742030-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKU\S-1-5-21-2980123934-4203326408-1469742030-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = C8 CA 7C 42 2B 26 CA 01 [binary data]
IE - HKU\S-1-5-21-2980123934-4203326408-1469742030-1000\S-1-5-21-2980123934-4203326408-1469742030-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2980123934-4203326408-1469742030-1000\S-1-5-21-2980123934-4203326408-1469742030-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.startup.homepage: "google.pl"
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5

FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009-04-22 10:55:53 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009-09-25 15:41:25 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009-09-25 15:41:24 | 00,000,000 | ---D | M]

[2009-09-03 14:50:24 | 00,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\mozilla\Extensions
[2009-09-03 14:50:24 | 00,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009-07-21 18:06:04 | 00,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\mozilla\Firefox\Profiles\9xj1zw8v.default\extensions
[2009-07-21 18:06:04 | 00,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\mozilla\Firefox\Profiles\9xj1zw8v.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009-09-28 21:47:44 | 00,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\mozilla\Firefox\Profiles\p585hfg6.default\extensions
[2009-09-03 14:51:25 | 00,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\mozilla\Firefox\Profiles\p585hfg6.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009-07-20 14:11:46 | 00,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\mozilla\Firefox\Profiles\x2k0acpc.default\extensions
[2009-09-25 15:41:24 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2009-09-25 15:41:24 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2009-08-24 22:23:38 | 00,023,544 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2009-08-24 22:23:38 | 00,137,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2009-08-24 22:23:38 | 00,065,016 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll
[2009-08-24 21:19:13 | 00,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2009-08-24 21:19:13 | 00,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2009-08-24 21:19:13 | 00,002,371 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2009-08-24 21:19:13 | 00,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2009-08-24 21:19:13 | 00,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2009-08-24 21:19:13 | 00,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2009-08-24 21:19:13 | 00,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml

O1 HOSTS File: (824 bytes) - C:\Windows\System32\drivers\etc\Hosts
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (FG2CatchUrl) - {1F364306-AA45-47B5-9F9D-39A8B94E7EF1} - E:\Programy\FlashGet universal\ComDlls\bhoCATCH.dll (FlashGet)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - F:\Programy\Microsoft Office 2007\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [EVGAPrecision] E:\Programy\EVGA Precision\EVGAPrecisionWrapper.exe ()
O4 - HKLM..\Run: [GrooveMonitor] F:\Programy\Microsoft Office 2007\Office12\GrooveMonitor.exe (Microsoft Corporation)
O4 - HKLM..\Run: [HDAudDeck] C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe (VIA Technologies, Inc.)
O4 - HKLM..\Run: [Speedfan] E:\Programy\SpeedFan\speedfan.exe (Almico Software (www.almico.com))
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-2980123934-4203326408-1469742030-1000..\Run: [SetDefaultMIDI] C:\Windows\MIDIDef.exe (Creative Technology Ltd)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O7 - HKU\S-1-5-21-2980123934-4203326408-1469742030-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O8 - Extra context menu item: &Download All by FlashGet - E:\Programy\FlashGet universal\ComDlls\Bhoall.htm ()
O8 - Extra context menu item: &Download by FlashGet - E:\Programy\FlashGet universal\ComDlls\Bholink.htm ()
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - F:\Programy\Microsoft Office 2007\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - F:\Programy\Microsoft Office 2007\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - F:\Programy\Microsoft Office 2007\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - F:\Programy\Microsoft Office 2007\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\System32\NLAapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\System32\napinsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - F:\Programy\Microsoft Office 2007\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Filter: - text/xml - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - F:\Programy\Microsoft Office 2007\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-03-20 17:42:25 | 00,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2008-06-01 09:35:06 | 00,000,000 | ---D | M] - E:\Automap -- [ NTFS ]
O32 - AutoRun File - [2008-10-28 08:27:52 | 00,122,880 | ---- | M] () - E:\Automatec.ppt -- [ NTFS ]
O32 - AutoRun File - [2009-09-06 18:19:41 | 00,000,000 | ---D | M] - F:\Autorun -- [ NTFS ]
O32 - AutoRun File - [2009-09-05 21:01:28 | 00,000,000 | ---D | M] - X:\Autoruns -- [ NTFS ]
O32 - AutoRun File - [2009-09-05 21:01:21 | 00,588,162 | ---- | M] () - X:\Autoruns.zip -- [ NTFS ]
O33 - MountPoints2\H\Shell - "" = AutoRun
O33 - MountPoints2\H\Shell\AutoRun\command - "" = H:\Autorun.EXE -- File not found
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\Windows\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2009-09-29 20:16:35 | 00,000,000 | ---D | C] -- C:\Users\Adam\AppData\Roaming\sqlitestudio
[2009-09-29 14:59:01 | 00,129,536 | ---- | C] () -- C:\Windows\inout2.dll
[2009-09-29 13:13:33 | 00,012,800 | ---- | C] () -- C:\Windows\System32\sknc.dll
[2009-09-29 13:04:10 | 00,000,000 | ---D | C] -- C:\Users\Adam\AppData\Roaming\Hamachi
[2009-09-29 13:03:59 | 00,025,280 | ---- | C] (LogMeIn, Inc.) -- C:\Windows\System32\drivers\hamachi.sys
[2009-09-26 22:46:46 | 00,000,000 | ---D | C] -- C:\User32Backup
[2009-09-26 10:18:16 | 00,000,000 | ---D | C] -- C:\Windows\pss
[2009-09-25 22:49:27 | 00,598,016 | ---- | C] () -- C:\Users\Adam\Documents\Kontakty.accdb
[2009-09-25 15:41:23 | 00,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2009-09-25 08:31:41 | 00,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\Ares
[2009-09-24 20:44:59 | 00,000,000 | ---D | C] -- C:\vcs5BGEffects
[2009-09-24 20:44:58 | 00,000,000 | ---D | C] -- C:\vcs5core
[2009-09-24 20:29:14 | 00,000,000 | ---D | C] -- C:\AV_LOGS
[2009-09-24 20:28:23 | 00,017,792 | ---- | C] (Avnex) -- C:\Windows\System32\drivers\vcsvad.sys
[2009-09-24 20:00:31 | 00,000,000 | ---D | C] -- C:\Windows\System32\appmgmt
[2009-09-24 18:01:38 | 00,000,000 | ---D | C] -- C:\Users\Adam\Documents\My Received Files
[2009-09-24 18:01:38 | 00,000,000 | ---D | C] -- C:\Users\Adam\Documents\BearShare
[2009-09-24 18:01:36 | 00,076,407 | ---- | C] () -- C:\Users\Adam\AppData\Roaming\Smiley.ico
[2009-09-24 18:01:18 | 00,483,328 | ---- | C] (SoftShape Development) -- C:\Windows\System32\actskn45.ocx
[2009-09-24 16:35:34 | 00,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\Apple Computer
[2009-09-24 16:35:33 | 00,000,000 | ---D | C] -- C:\Users\Adam\AppData\Roaming\Apple Computer
[2009-09-24 16:35:14 | 00,000,000 | ---D | C] -- C:\Windows\System32\DRVSTORE
[2009-09-24 16:35:10 | 00,000,000 | ---D | C] -- C:\Program Files\iPod
[2009-09-24 16:35:09 | 00,000,000 | ---D | C] -- C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[2009-09-24 16:33:54 | 00,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2009-09-24 16:33:54 | 00,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2009-09-24 16:33:46 | 00,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\Apple
[2009-09-24 16:33:45 | 00,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2009-09-24 16:33:25 | 00,000,000 | ---D | C] -- C:\ProgramData\Apple
[2009-09-24 16:33:25 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2009-09-23 22:00:26 | 00,000,000 | ---D | C] -- C:\Users\Adam\Documents\NFS SHIFT
[2009-09-23 19:51:59 | 00,000,000 | ---D | C] -- C:\NVIDIA
[2009-09-23 14:25:27 | 00,000,000 | ---D | C] -- C:\Users\Adam\AppData\Roaming\play2p
[2009-09-23 14:24:29 | 00,000,000 | -H-D | C] -- C:\Program Files\InstallJammer Registry
[2009-09-21 15:29:43 | 02,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_40.dll
[2009-09-21 15:29:43 | 00,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_40.dll
[2009-09-21 15:29:42 | 04,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_40.dll
[2009-09-21 15:29:41 | 00,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_3.dll
[2009-09-21 15:29:41 | 00,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_2.dll
[2009-09-21 15:29:40 | 00,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_3.dll
[2009-09-21 15:29:40 | 00,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_5.dll
[2009-09-19 19:42:21 | 00,000,000 | ---D | C] -- C:\Users\Adam\Documents\GTA San Andreas User Files
[2009-09-19 18:55:06 | 00,000,000 | ---D | C] -- C:\Users\Adam\AppData\Roaming\Ventrilo
[2009-09-13 19:40:10 | 00,034,304 | ---- | C] (AMD, Inc.) -- C:\Windows\System32\drivers\AmdLLD.sys
[2009-09-13 17:28:57 | 00,000,000 | ---D | C] -- C:\Windows\System32\Adobe
[2009-09-11 07:52:19 | 00,000,000 | ---D | C] -- C:\ProgramData\Hewlett-Packard
[2009-09-09 13:43:17 | 00,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
[2009-09-07 15:24:08 | 00,000,000 | ---D | C] -- C:\Users\Adam\Documents\Notesy programu OneNote
[2009-09-06 12:08:22 | 01,118,065 | ---- | C] () -- C:\Windows\System32\kxskin.kxs
[2009-09-06 12:08:22 | 00,568,320 | ---- | C] (Eugene Gavrilov) -- C:\Windows\System32\drivers\kx.sys
[2009-09-06 12:08:22 | 00,500,224 | ---- | C] (Eugene Gavrilov) -- C:\Windows\System32\kxmixer.exe
[2009-09-06 12:08:22 | 00,122,368 | ---- | C] (Eugene Gavrilov) -- C:\Windows\System32\kxgui.dll
[2009-09-06 12:08:22 | 00,112,640 | ---- | C] (Eugene Gavrilov) -- C:\Windows\System32\kxapi.dll
[2009-09-06 12:08:22 | 00,053,760 | ---- | C] (Eugene Gavrilov) -- C:\Windows\System32\kxfxlib.kxl
[2009-09-06 12:08:22 | 00,046,592 | ---- | C] (Eugene Gavrilov) -- C:\Windows\System32\kxasio.dll
[2009-09-06 12:08:22 | 00,029,696 | ---- | C] (Eugene Gavrilov) -- C:\Windows\System32\kxsetup.exe
[2009-09-06 12:08:22 | 00,020,480 | ---- | C] (Eugene Gavrilov) -- C:\Windows\System32\kxctrl.exe
[2009-09-06 12:08:22 | 00,009,728 | ---- | C] (Eugene Gavrilov) -- C:\Windows\System32\sfman32.dll
[2009-09-05 20:54:07 | 00,016,420 | ---- | C] () -- C:\Windows\System32\BMXStateBkp-{00000003-00000000-00000005-00001102-00000002-80641102}.rfx
[2009-09-05 20:54:07 | 00,016,420 | ---- | C] () -- C:\Windows\System32\BMXState-{00000003-00000000-00000005-00001102-00000002-80641102}.rfx
[2009-09-05 20:54:07 | 00,000,024 | ---- | C] () -- C:\Windows\System32\DVCStateBkp-{00000003-00000000-00000005-00001102-00000002-80641102}.dat
[2009-09-05 20:54:07 | 00,000,024 | ---- | C] () -- C:\Windows\System32\DVCState-{00000003-00000000-00000005-00001102-00000002-80641102}.dat
[2009-09-05 20:20:23 | 03,374,908 | ---- | C] () -- C:\Windows\{00000003-00000000-00000005-00001102-00000002-80641102}.CDF
[2009-09-05 20:19:29 | 00,024,888 | ---- | C] () -- C:\Windows\System32\BMXCtrlState-{00000003-00000000-00000005-00001102-00000002-80641102}.rfx
[2009-09-05 20:19:29 | 00,024,888 | ---- | C] () -- C:\Windows\System32\BMXBkpCtrlState-{00000003-00000000-00000005-00001102-00000002-80641102}.rfx
[2009-09-05 20:19:06 | 01,048,576 | ---- | C] () -- C:\Windows\System32\SFMAN.DAT
[2009-09-05 20:19:06 | 00,054,784 | ---- | C] (Blue Sky Software Corporation.) -- C:\Windows\System32\INETWH32.DLL
[2009-09-05 20:19:06 | 00,053,552 | ---- | C] (Creative® Technology Ltd.) -- C:\Windows\CTCCW.DLL
[2009-09-05 20:19:06 | 00,026,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CTL3D.DLL
[2009-09-05 20:19:06 | 00,000,231 | ---- | C] () -- C:\Windows\AC3API.INI
[2009-09-05 20:19:05 | 00,000,000 | ---D | C] -- C:\Windows\System32\Defaults
[2009-09-05 20:18:39 | 00,034,914 | ---- | C] () -- C:\Windows\System32\Emu10kx.ini
[2009-09-05 20:18:38 | 00,020,480 | ---- | C] (Creative Technology Limited) -- C:\Windows\INRES.DLL
[2009-09-05 20:18:38 | 00,000,029 | ---- | C] () -- C:\Windows\System32\ctzapxx.ini
[2009-09-05 20:18:35 | 02,259,067 | ---- | C] () -- C:\Windows\System32\DEFAULT.ECW
[2009-09-05 20:18:35 | 00,179,669 | ---- | C] () -- C:\Windows\System32\CTSTATIC.DAT
[2009-09-05 20:18:35 | 00,163,933 | ---- | C] () -- C:\Windows\System32\CTDLANG.DAT
[2009-09-05 20:18:35 | 00,112,387 | ---- | C] () -- C:\Windows\System32\CTBASICW.DAT
[2009-09-05 20:18:35 | 00,112,287 | ---- | C] () -- C:\Windows\System32\CTBAS2W.DAT
[2009-09-05 20:18:35 | 00,044,055 | ---- | C] () -- C:\Windows\System32\CTDAUGHT.DAT
[2009-09-05 20:18:35 | 00,004,398 | ---- | C] () -- C:\Windows\System32\SBLive.ico
[2009-09-05 20:18:35 | 00,003,126 | ---- | C] () -- C:\Windows\System32\Live.bmp
[2009-09-05 20:18:34 | 00,212,480 | ---- | C] () -- C:\Windows\PSCONV.EXE
[2009-09-05 20:18:34 | 00,196,096 | ---- | C] (Creative Technology Limited) -- C:\Windows\READREG.EXE
[2009-09-05 20:18:34 | 00,049,152 | ---- | C] () -- C:\Windows\System32\KILLAPPS.EXE
[2009-09-05 20:18:34 | 00,036,864 | ---- | C] () -- C:\Windows\System32\REGPLIB.EXE
[2009-09-05 20:18:34 | 00,000,166 | ---- | C] () -- C:\Windows\System32\KILL.INI
[2009-09-05 20:18:33 | 04,072,118 | ---- | C] () -- C:\Windows\CTDVAUDY.CDF
[2009-09-05 20:18:33 | 03,735,544 | ---- | C] () -- C:\Windows\CTDV10K2.CDF
[2009-09-05 20:18:33 | 03,373,917 | ---- | C] () -- C:\Windows\CTDV10K1.CDF
[2009-09-05 20:18:33 | 02,167,684 | ---- | C] () -- C:\Windows\System32\CT2MGM.SF2
[2009-09-05 20:18:33 | 01,048,576 | ---- | C] () -- C:\Windows\System32\CT1MGM.ROM
[2009-09-05 20:18:33 | 00,077,824 | ---- | C] (Creative Labs) -- C:\Windows\System32\EAXAC3.DLL
[2009-09-05 20:18:33 | 00,049,152 | ---- | C] ( ) -- C:\Windows\System32\A3d.dll
[2009-09-05 20:18:33 | 00,000,059 | ---- | C] () -- C:\Windows\System32\DEFAULT8.SFM
[2009-09-05 20:18:33 | 00,000,059 | ---- | C] () -- C:\Windows\System32\DEFAULT4.SFM
[2009-09-05 20:18:33 | 00,000,059 | ---- | C] () -- C:\Windows\System32\DEFAULT.SFM
[2009-09-04 19:03:42 | 07,691,653 | -H-- | C] () -- C:\Users\Adam\AppData\Local\IconCache.db
[2009-09-04 16:37:30 | 00,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\ElevatedDiagnostics
[2009-08-31 18:16:04 | 00,000,000 | ---D | C] -- C:\TAG
[2009-08-31 18:11:03 | 00,000,000 | -H-D | C] -- C:\Windows\PIF
[2009-08-23 15:07:01 | 00,000,172 | ---- | C] () -- C:\Windows\wcx_ftp.ini
[2009-08-23 15:06:47 | 00,000,669 | ---- | C] () -- C:\Windows\WINCMD.INI
[2009-08-11 21:35:19 | 00,138,184 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2009-08-11 08:41:20 | 00,044,544 | ---- | C] () -- C:\Windows\System32\Gif89.dll
[2009-08-07 19:51:34 | 00,178,430 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat
[2009-07-21 20:18:56 | 00,000,011 | ---- | C] () -- C:\Windows\SBWIN.INI
[2009-04-22 07:58:02 | 00,000,478 | ---- | C] () -- C:\Windows\win.ini
[2009-04-22 07:58:02 | 00,000,219 | ---- | C] () -- C:\Windows\system.ini
[2009-04-22 05:50:07 | 00,073,216 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009-04-22 05:40:32 | 00,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2008-10-07 18:13:30 | 00,197,912 | ---- | C] () -- C:\Windows\System32\physxcudart_20.dll
[2008-10-07 18:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSwedish.dll
[2008-10-07 18:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSpanish.dll
[2008-10-07 18:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelPortugese.dll
[2008-10-07 18:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelGerman.dll
[2008-10-07 18:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelFrench.dll
[2008-10-07 09:13:22 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelTraditionalChinese.dll
[2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSimplifiedChinese.dll
[2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelKorean.dll
[2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelJapanese.dll
[2006-11-10 15:08:50 | 00,024,064 | ---- | C] () -- C:\Windows\System32\drivers\ATITool.sys
[2003-07-08 23:41:48 | 00,047,616 | ---- | C] () -- C:\Windows\System32\P16X.dll
[1996-04-03 21:33:26 | 00,005,248 | ---- | C] () -- C:\Windows\System32\giveio.sys

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2009-09-29 21:40:35 | 00,717,892 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2009-09-29 21:40:35 | 00,609,896 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2009-09-29 21:40:35 | 00,104,214 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2009-09-29 21:34:21 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2009-09-29 21:34:16 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2009-09-29 21:34:11 | 16,100,63872 | -HS- | M] () -- C:\hiberfil.sys
[2009-09-29 21:33:28 | 07,691,653 | -H-- | M] () -- C:\Users\Adam\AppData\Local\IconCache.db
[2009-09-29 14:59:01 | 00,129,536 | ---- | M] () -- C:\Windows\inout2.dll
[2009-09-29 13:03:59 | 00,025,280 | ---- | M] (LogMeIn, Inc.) -- C:\Windows\System32\drivers\hamachi.sys
[2009-09-26 22:47:27 | 00,029,088 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2009-09-26 22:47:27 | 00,029,088 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2009-09-25 22:51:13 | 00,598,016 | ---- | M] () -- C:\Users\Adam\Documents\Kontakty.accdb
[2009-09-25 16:19:56 | 00,000,669 | ---- | M] () -- C:\Windows\WINCMD.INI
[2009-09-25 16:18:53 | 00,000,172 | ---- | M] () -- C:\Windows\wcx_ftp.ini
[2009-09-24 17:30:53 | 00,002,432 | ---- | M] () -- C:\Users\Adam\Documents\Register Vegas Movie Studio Platinum.htm
[2009-09-22 19:15:40 | 00,000,478 | ---- | M] () -- C:\Windows\win.ini
[2009-09-20 18:14:38 | 00,109,216 | ---- | M] () -- C:\Users\Adam\AppData\Local\GDIPFONTCACHEV1.DAT
[2009-09-20 09:13:50 | 01,757,176 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2009-09-06 09:16:10 | 00,024,888 | ---- | M] () -- C:\Windows\System32\BMXCtrlState-{00000003-00000000-00000005-00001102-00000002-80641102}.rfx
[2009-09-06 09:16:10 | 00,024,888 | ---- | M] () -- C:\Windows\System32\BMXBkpCtrlState-{00000003-00000000-00000005-00001102-00000002-80641102}.rfx
[2009-09-06 09:16:10 | 00,016,420 | ---- | M] () -- C:\Windows\System32\BMXStateBkp-{00000003-00000000-00000005-00001102-00000002-80641102}.rfx
[2009-09-06 09:16:10 | 00,016,420 | ---- | M] () -- C:\Windows\System32\BMXState-{00000003-00000000-00000005-00001102-00000002-80641102}.rfx
[2009-09-06 09:16:10 | 00,001,080 | ---- | M] () -- C:\Windows\System32\settingsbkup.sfm
[2009-09-06 09:16:10 | 00,001,080 | ---- | M] () -- C:\Windows\System32\settings.sfm
[2009-09-06 09:16:10 | 00,000,024 | ---- | M] () -- C:\Windows\System32\DVCStateBkp-{00000003-00000000-00000005-00001102-00000002-80641102}.dat
[2009-09-06 09:16:10 | 00,000,024 | ---- | M] () -- C:\Windows\System32\DVCState-{00000003-00000000-00000005-00001102-00000002-80641102}.dat
[2009-09-05 20:58:39 | 03,374,908 | ---- | M] () -- C:\Windows\{00000003-00000000-00000005-00001102-00000002-80641102}.CDF
[2009-09-05 20:14:24 | 00,000,011 | ---- | M] () -- C:\Windows\SBWIN.INI

[color=#E56717]========== LOP Check ==========[/color]

[2009-09-29 20:16:35 | 00,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming
[2009-07-23 03:11:31 | 00,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\BESTplayer
[2009-09-20 23:00:51 | 00,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\BITS
[2009-07-21 20:58:31 | 00,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\GanymedeNet
[2009-09-29 16:20:16 | 00,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Hamachi
[2009-04-22 12:24:12 | 00,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Media Center Programs
[2009-07-21 21:16:53 | 00,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Nowe Gadu-Gadu
[2009-09-23 14:26:17 | 00,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\play2p
[2009-08-11 12:52:52 | 00,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Publish Providers
[2009-08-25 10:15:57 | 00,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Sony
[2009-09-29 20:16:39 | 00,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\sqlitestudio
[2009-08-13 17:09:35 | 00,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\SystemRequirementsLab
[2009-09-04 15:05:28 | 00,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Tibia
[2009-09-24 20:37:28 | 00,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Ventrilo
[2009-08-12 18:39:04 | 00,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\VoipDiscount
[2009-04-22 12:24:12 | 00,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming
[2009-04-22 12:24:12 | 00,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\Media Center Programs
[2009-04-22 12:24:12 | 00,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming
[2009-04-22 12:24:12 | 00,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\Media Center Programs
[2009-09-29 21:34:21 | 00,000,006 | -H-- | M] () -- C:\Windows\Tasks\SA.DAT
[2009-09-29 21:28:42 | 00,032,510 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 487 bytes -> C:\ProgramData\TEMP:05EE1EEF
@Alternate Data Stream - 103 bytes -> C:\ProgramData\TEMP:4F8F308F
< End of report >
[/log]

Psycholandia
komentarz
komentarz

W okienko OTL wklej poniższy skrypt i klik na Run Fix:

[code]:Processes
explorer.exe

:OTL
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O13 - gopher Prefix: missing
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found

:Files
C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115- 601632D005A0
C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115- 601632D005A0
C:\Windows\System32\sknc.dll

:Commands
[emptytemp]
[start explorer]
[Reboot][/code]
Daj loga powstałego po usuwaniu + nowego.
Dokładnie jaki powód sprawdzania? Co się dzieje?
Przeskanuj komputer tym: [url="http://www.programosy.pl/program,malwarebytes-anti-malware.html"]Malware[/url] usuń wszystko co znajdzie i daj loga po kasowaniu (loga z Malware)

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.