x-kom hosting

Dziwne problemy ze stabilnością

Maverick65
utworzono
utworzono (edytowane)

Witam serdecznie. Jako, że mój komputer ostatnio bardzo dziwnie się zachowuje(częste restarty komputera, znikanie treści stron internetowych(sic!), spowolnienie internetu, tak samo z siebie) postanowiłem działać :) Proszę o sprawdzenie loga:
[log]
OTL logfile created on: 2010-01-29 20:56:30 - Run 1
OTL by OldTimer - Version 3.1.27.0 Folder = C:\Documents and Settings\Admin\Pulpit
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

1 023,00 Mb Total Physical Memory | 526,00 Mb Available Physical Memory | 51,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 80,00% Paging File free
Paging file location(s): C:\pagefile.sys 0 0 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 30,30 Gb Total Space | 4,87 Gb Free Space | 16,08% Space Free | Partition Type: NTFS
Drive D: | 203,44 Gb Total Space | 6,69 Gb Free Space | 3,29% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
Drive G: | 1,22 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive H: | 5,56 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
Drive I: | 455,12 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: DOM-3044D5F8DF2
Current User Name: Admin
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 30 Days
Output = Standard

[color=#E56717]========== Processes (All) ==========[/color]

PRC - [2010-01-29 20:55:37 | 00,548,864 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Admin\Pulpit\OTL.exe
PRC - [2010-01-14 17:08:32 | 00,908,248 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009-11-25 00:51:40 | 00,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe
PRC - [2009-11-25 00:51:35 | 00,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe
PRC - [2009-11-25 00:51:21 | 00,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
PRC - [2009-11-25 00:48:48 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
PRC - [2009-11-25 00:43:56 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PRC - [2009-11-24 20:03:55 | 00,396,288 | ---- | M] (Trend Micro Inc.) -- C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
PRC - [2009-09-04 16:22:56 | 01,391,136 | ---- | M] (Hagel Technologies Ltd.) -- C:\Program Files\DU Meter\DUMeterSvc.exe
PRC - [2009-08-22 19:25:00 | 02,781,184 | ---- | M] () -- C:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner.exe
PRC - [2009-08-06 18:24:06 | 00,053,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe
PRC - [2009-07-30 10:46:36 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2009-07-20 10:51:52 | 00,935,208 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
PRC - [2009-02-09 12:25:57 | 00,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe
PRC - [2008-11-19 01:28:00 | 00,163,908 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe
PRC - [2008-11-13 14:18:56 | 02,405,776 | ---- | M] (Check Point Software Technologies LTD) -- C:\WINDOWS\system32\ZoneLabs\vsmon.exe
PRC - [2008-11-13 14:18:56 | 00,981,904 | ---- | M] (Check Point Software Technologies LTD) -- C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
PRC - [2008-04-14 21:51:50 | 00,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe
PRC - [2008-04-14 21:51:44 | 00,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe
PRC - [2008-04-14 21:51:44 | 00,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe
PRC - [2008-04-14 21:51:44 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS]
PRC - [2008-04-14 21:51:44 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE]
PRC - [2008-04-14 21:51:44 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS]
PRC - [2008-04-14 21:51:44 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-04-14 21:51:44 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-04-14 21:51:44 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [IMGSVC]
PRC - [2008-04-14 21:51:44 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH]
PRC - [2008-04-14 21:51:32 | 00,156,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\notepad.exe
PRC - [2008-04-14 21:51:24 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe
PRC - [2008-04-14 21:51:18 | 00,977,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008-04-14 21:51:12 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe
PRC - [2008-04-14 21:51:04 | 00,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe
PRC - [2007-04-02 13:15:40 | 00,061,440 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Shared Files\CTDevSrv.exe
PRC - [2007-03-18 23:05:02 | 00,630,784 | ---- | M] () -- C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
PRC - [2006-11-12 11:48:46 | 00,157,592 | ---- | M] (DT Soft Ltd.) -- C:\Program Files\DAEMON Tools\daemon.exe
PRC - [2006-05-21 08:43:14 | 00,155,648 | ---- | M] (Y'z@Home) -- C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
PRC - [2006-05-21 08:43:08 | 00,180,224 | ---- | M] () -- C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe
PRC - [2006-02-28 11:42:38 | 00,229,376 | ---- | M] (Apple Computer, Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2005-08-04 14:24:46 | 03,627,008 | ---- | M] () -- C:\Program Files\ASUS\Ai Booster\OverClk.exe
PRC - [2003-10-16 18:07:12 | 00,626,688 | ---- | M] (France Télécom R&D) -- C:\Program Files\Neostrada TP\NeostradaTP.exe
PRC - [2003-10-16 18:07:12 | 00,020,480 | ---- | M] (France Télécom R&D) -- C:\Program Files\Neostrada TP\Watch.exe
PRC - [2003-10-16 18:07:10 | 00,200,704 | ---- | M] (France Télécom R&D) -- C:\Program Files\Neostrada TP\ComComp.exe
PRC - [1999-12-13 08:01:00 | 00,044,032 | ---- | M] (Creative Technology Ltd) -- C:\WINDOWS\system32\CTSVCCDA.EXE


[color=#E56717]========== Modules (All) ==========[/color]

MOD - [2010-01-29 20:55:37 | 00,548,864 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Admin\Pulpit\OTL.exe
MOD - [2009-07-30 10:37:09 | 00,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll
MOD - [2009-06-25 09:27:54 | 00,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll
MOD - [2009-04-15 15:54:38 | 00,585,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll
MOD - [2009-03-21 15:08:59 | 01,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll
MOD - [2009-02-09 11:53:44 | 00,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll
MOD - [2009-02-09 11:53:43 | 00,722,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll
MOD - [2008-10-23 13:42:41 | 00,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll
MOD - [2008-06-17 20:03:15 | 08,489,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll
MOD - [2008-04-14 21:51:58 | 00,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv
MOD - [2008-04-14 21:50:58 | 00,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll
MOD - [2008-04-14 21:50:58 | 00,172,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wldap32.dll
MOD - [2008-04-14 21:50:58 | 00,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll
MOD - [2008-04-14 21:50:58 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll
MOD - [2008-04-14 21:50:48 | 00,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll
MOD - [2008-04-14 21:50:48 | 00,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll
MOD - [2008-04-14 21:50:46 | 01,287,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll
MOD - [2008-04-14 21:50:46 | 00,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll
MOD - [2008-04-14 21:50:46 | 00,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll
MOD - [2008-04-14 21:50:46 | 00,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samlib.dll
MOD - [2008-04-14 21:50:46 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll
MOD - [2008-04-14 21:50:42 | 00,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntmarta.dll
MOD - [2008-04-14 21:50:40 | 00,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll
MOD - [2008-04-14 21:50:32 | 00,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll
MOD - [2008-04-14 21:50:14 | 00,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll
MOD - [2008-04-14 21:29:10 | 01,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
MOD - [2007-03-18 23:04:22 | 00,069,632 | ---- | M] () -- C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.dll
MOD - [2006-05-21 08:43:14 | 00,053,248 | ---- | M] () -- C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.dll
MOD - [2006-05-21 08:43:08 | 00,065,536 | ---- | M] () -- C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - [2009-11-25 00:51:35 | 00,138,680 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus)
SRV - [2009-11-25 00:51:21 | 00,254,040 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner)
SRV - [2009-11-25 00:48:48 | 00,352,920 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner)
SRV - [2009-11-25 00:43:56 | 00,018,752 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv)
SRV - [2009-09-29 16:09:49 | 00,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009-09-04 16:22:56 | 01,391,136 | ---- | M] (Hagel Technologies Ltd.) [Auto | Running] -- C:\Program Files\DU Meter\DUMeterSvc.exe -- (DUMeterSvc)
SRV - [2009-07-30 10:46:36 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) [Auto | Running] -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2009-07-20 10:51:52 | 00,935,208 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2009-06-22 16:44:00 | 03,087,772 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\WINDOWS\System32\GameMon.des -- (npggsvc)
SRV - [2008-11-20 20:18:52 | 00,136,120 | ---- | M] (Google) [On_Demand | Stopped] -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc)
SRV - [2008-11-19 01:28:00 | 00,163,908 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\WINDOWS\system32\nvsvc32.exe -- (NVSvc)
SRV - [2008-11-13 14:18:56 | 02,405,776 | ---- | M] (Check Point Software Technologies LTD) [Auto | Running] -- C:\WINDOWS\System32\ZoneLabs\vsmon.exe -- (vsmon)
SRV - [2008-03-09 12:54:58 | 00,187,120 | ---- | M] (Systweak Inc) [Auto | Stopped] -- C:\Program Files\Systweak\Systweak CacheBoost\cbSrv.exe -- (CacheBoost Service)
SRV - [2007-04-02 13:15:40 | 00,061,440 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files\Creative\Shared Files\CTDevSrv.exe -- (CTDevice_Srv)
SRV - [2007-03-26 12:06:24 | 00,292,864 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2006-02-28 11:42:38 | 00,229,376 | ---- | M] (Apple Computer, Inc.) [Auto | Running] -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service)
SRV - [2005-04-03 23:41:10 | 00,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT)
SRV - [1999-12-13 08:01:00 | 00,044,032 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\WINDOWS\system32\CTSVCCDA.EXE -- (Creative Service for CDROM Access)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - [2009-11-25 00:50:59 | 00,094,160 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2009-11-25 00:50:12 | 00,114,768 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP)
DRV - [2009-11-25 00:50:00 | 00,020,560 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2009-11-25 00:49:07 | 00,048,560 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2009-11-25 00:48:57 | 00,023,120 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2009-11-25 00:47:54 | 00,027,408 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2009-11-18 23:18:07 | 00,180,224 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\WinVd32.sys -- (WinVd32)
DRV - [2009-11-18 23:18:02 | 00,010,752 | ---- | M] () [File_System | Auto | Running] -- C:\WINDOWS\system32\WinFLdrv.sys -- (WinFLdrv)
DRV - [2009-09-23 09:41:58 | 00,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2009-08-22 19:25:00 | 00,009,088 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner32.sys -- (RivaTuner32)
DRV - [2009-07-31 08:54:08 | 00,639,224 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009-04-28 21:20:06 | 00,044,944 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20)
DRV - [2008-11-19 01:28:00 | 06,204,032 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2008-11-13 14:19:00 | 00,353,680 | ---- | M] (Check Point Software Technologies LTD) [Kernel | System | Running] -- C:\WINDOWS\system32\vsdatant.sys -- (vsdatant)
DRV - [2008-09-17 14:14:00 | 00,027,672 | R--- | M] (EnTech Taiwan) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Entech.sys -- (ENTECH)
DRV - [2008-04-21 06:19:58 | 00,051,648 | ---- | M] (Check Point Software Technologies LTD) [Kernel | Boot | Running] -- C:\WINDOWS\system32\ZoneLabs\srescan.sys -- (srescan)
DRV - [2008-04-13 23:15:30 | 00,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2008-04-13 21:09:18 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv)
DRV - [2007-08-02 16:32:26 | 00,022,784 | ---- | M] (Razer (Asia-Pacific) Pte Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\dadder.sys -- (DAdderFltr)
DRV - [2007-07-15 03:37:04 | 00,027,992 | ---- | M] (EnTech Taiwan) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\pstrip.sys -- (PStrip)
DRV - [2007-06-19 08:51:20 | 00,107,304 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816mdm.sys -- (s816mdm)
DRV - [2007-06-19 08:51:18 | 00,099,112 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816mgmt.sys -- (s816mgmt) Sony Ericsson Device 816 USB WMC Device Management Drivers (WDM)
DRV - [2007-06-19 08:51:18 | 00,097,704 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816unic.sys -- (s816unic) Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (WDM)
DRV - [2007-06-19 08:51:18 | 00,097,320 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816obex.sys -- (s816obex)
DRV - [2007-06-19 08:51:18 | 00,021,928 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816nd5.sys -- (s816nd5) Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (NDIS)
DRV - [2007-06-19 08:51:18 | 00,013,864 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816mdfl.sys -- (s816mdfl)
DRV - [2007-06-19 08:51:16 | 00,081,832 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816bus.sys -- (s816bus) Sony Ericsson Device 816 driver (WDM)
DRV - [2007-02-22 09:15:56 | 00,137,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcd.sys -- (nmwcd)
DRV - [2007-02-22 09:15:14 | 00,012,288 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdcm.sys -- (nmwcdcm)
DRV - [2007-02-22 09:15:14 | 00,012,288 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdcj.sys -- (nmwcdcj)
DRV - [2007-02-22 09:15:14 | 00,008,320 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdc.sys -- (nmwcdc)
DRV - [2006-09-24 14:28:46 | 00,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan)
DRV - [2005-08-19 10:31:52 | 03,644,800 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2005-08-18 10:52:06 | 00,093,568 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvata.sys -- (nvata)
DRV - [2005-07-26 10:48:30 | 00,012,928 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2005-07-26 10:48:28 | 00,033,664 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2005-03-31 11:28:24 | 00,181,760 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\Si3132r5.sys -- (Si3132r5)
DRV - [2005-03-30 07:24:00 | 00,230,400 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp)
DRV - [2005-03-09 14:53:00 | 00,043,008 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2004-11-01 12:21:32 | 00,010,368 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\SiWinAcc.sys -- (SiFilter)
DRV - [2004-10-14 10:52:28 | 00,004,962 | R--- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AsIO.sys -- (AsIO)
DRV - [2004-08-13 03:56:20 | 00,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)
DRV - [2004-08-04 13:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink)
DRV - [2003-12-08 10:53:48 | 00,053,600 | ---- | M] (THOMSON) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcan5wn.sys -- (alcan5wn) SpeedTouch USB ADSL PPP Networking Driver (NDISWAN)
DRV - [2003-12-08 10:53:46 | 00,070,688 | ---- | M] (THOMSON) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcaudsl.sys -- (alcaudsl)
DRV - [2003-05-14 12:42:58 | 00,013,920 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WmHidLo.sys -- (WmHidLo)
DRV - [2003-05-14 12:42:56 | 00,021,216 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WmFilter.sys -- (WmFilter)
DRV - [2003-05-14 12:42:50 | 00,010,144 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WmBEnum.sys -- (WmBEnum)
DRV - [2003-05-14 12:42:48 | 00,005,728 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WmVirHid.sys -- (WmVirHid)
DRV - [2003-05-14 12:42:44 | 00,044,288 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WmXlCore.sys -- (WmXlCore)
DRV - [2001-08-17 23:00:04 | 00,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)
DRV - [1996-04-03 20:33:26 | 00,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm


IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1482476501-527237240-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.neostrada.pl
IE - HKU\S-1-5-21-1482476501-527237240-725345543-1003\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Neostrada TP\SearchPageURL.dll ()
IE - HKU\S-1-5-21-1482476501-527237240-725345543-1003\S-1-5-21-1482476501-527237240-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://pl.start3.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:pl:official"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.1.1
FF - prefs.js..extensions.enabledItems: {6AC85730-7D0F-4de0-B3FA-21142DD85326}:2.0.2
FF - prefs.js..extensions.enabledItems: {a7c6cf7f-112c-4500-a7ea-39801a327e5f}:1.0.7
FF - prefs.js..extensions.enabledItems: fotofox@mozilla.com:1.7
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {75CEEE46-9B64-46f8-94BF-54012DE155F0}:0.3.9
FF - prefs.js..extensions.enabledItems: {73a6fe31-595d-460b-a920-fcc0f8843232}:1.9.9.18
FF - prefs.js..extensions.enabledItems: pixelperfectplugin@openhouseconcepts.com:1.1.0
FF - prefs.js..extensions.enabledItems: tineye@ideeinc.com:0.7.1
FF - prefs.js..extensions.enabledItems: yslow@yahoo-inc.com:2.0.2
FF - prefs.js..extensions.enabledItems: {07b2a769-ed19-4483-87ce-c643914c81bb}:3.0.0.87
FF - prefs.js..keyword.URL: "http://www.google.com/search?ie=UTF-...ient&gfns=1&q="

FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-01-16 09:06:10 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-01-14 17:08:50 | 00,000,000 | ---D | M]

[2009-07-30 06:49:33 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Extensions
[2010-01-29 20:14:07 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions
[2010-01-20 22:06:08 | 00,000,000 | ---D | M] (Vista-aero) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\{07b2a769-ed19-4483-87ce-c643914c81bb}
[2009-11-07 09:56:18 | 00,000,000 | ---D | M] (ColorZilla) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326}
[2009-12-07 18:53:10 | 00,000,000 | ---D | M] (NoScript) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}
[2009-11-07 09:56:16 | 00,000,000 | ---D | M] (MeasureIt) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\{75CEEE46-9B64-46f8-94BF-54012DE155F0}
[2009-12-07 18:53:09 | 00,000,000 | ---D | M] (FireFTP) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f}
[2009-08-12 20:25:35 | 00,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2009-12-07 18:53:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\fotofox@mozilla.com
[2009-11-07 09:56:19 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\pixelperfectplugin@openhouseconcepts.com
[2009-11-26 17:05:37 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\tineye@ideeinc.com
[2009-12-07 18:53:09 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\yslow@yahoo-inc.com
[2010-01-20 22:06:16 | 00,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\{07b2a769-ed19-4483-87ce-c643914c81bb}\chrome\mozapps\extensions
[2010-01-29 19:30:39 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2009-11-16 16:13:16 | 00,120,296 | ---- | M] ( ) -- C:\Program Files\Mozilla Firefox\plugins\npganymedenet.dll
[2010-01-14 17:08:42 | 00,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010-01-14 17:08:43 | 00,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2010-01-14 17:08:43 | 00,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2010-01-14 17:08:43 | 00,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010-01-14 17:08:43 | 00,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2010-01-14 17:08:43 | 00,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2004-08-04 13:00:00 | 00,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKU\S-1-5-21-1482476501-527237240-725345543-1003\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [DAEMON Tools] C:\Program Files\DAEMON Tools\daemon.exe (DT Soft Ltd.)
O4 - HKLM..\Run: [Launch Ai Booster] C:\Program Files\ASUS\Ai Booster\OverClk.exe ()
O4 - HKLM..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [RivaTuner] C:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner.exe ()
O4 - HKLM..\Run: [RivaTunerStartupDaemon] C:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner.exe ()
O4 - HKLM..\Run: [ZoneAlarm Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe (Check Point Software Technologies LTD)
O4 - HKU\.DEFAULT..\Run: [Nokia.PCSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe (Time Information Services Ltd.)
O4 - HKU\S-1-5-18..\Run: [Nokia.PCSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe (Time Information Services Ltd.)
O4 - Startup: C:\Documents and Settings\Admin\Menu Start\Programy\Autostart\RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe ()
O4 - Startup: C:\Documents and Settings\Admin\Menu Start\Programy\Autostart\TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe (AKSoftware)
O4 - Startup: C:\Documents and Settings\Admin\Menu Start\Programy\Autostart\UberIcon.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe ()
O4 - Startup: C:\Documents and Settings\Admin\Menu Start\Programy\Autostart\Y'z Shadow.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe (Y'z@Home)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1482476501-527237240-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 95 00 00 00 [binary data]
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKU\S-1-5-21-1482476501-527237240-725345543-1003\..Trusted Domains: internet ([]about in Internet)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA} http://java.sun.com/products/plugin/autodl/jinstall-1_4_0_03-win.cab (Java Plug-in 1.4.0_03)
O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-07-30 00:23:32 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2008-10-13 19:44:59 | 00,136,448 | R--- | M] (Sports Interactive) - G:\autorun.exe -- [ CDFS ]
O32 - AutoRun File - [2008-07-25 18:10:55 | 00,000,027 | R--- | M] () - G:\autorun.inf -- [ CDFS ]
O32 - AutoRun File - [2009-04-30 03:57:32 | 00,054,544 | R--- | M] (Electronic Arts) - H:\Autorun.exe -- [ UDF ]
O32 - AutoRun File - [2008-10-22 00:48:37 | 00,000,045 | R--- | M] () - H:\Autorun.inf -- [ UDF ]
O32 - AutoRun File - [2000-01-13 16:04:18 | 00,000,066 | R--- | M] () - I:\AUTORUN.INF -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2009-07-30 00:23:02 | 00,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2010-01-29 20:55:05 | 00,548,864 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Admin\Pulpit\OTL.exe
[2010-01-21 21:50:24 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Moje dokumenty\@neostrada.pl
[2010-01-19 22:22:47 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dane aplikacji\Malwarebytes
[2010-01-19 22:22:44 | 00,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010-01-19 22:22:42 | 00,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010-01-19 22:22:42 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010-01-19 22:22:42 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes
[2010-01-17 21:35:32 | 00,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft
[2010-01-17 21:35:32 | 00,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft
[2010-01-17 21:35:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2010-01-17 21:35:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2010-01-17 21:34:04 | 00,114,768 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2010-01-17 21:34:04 | 00,097,480 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\AvastSS.scr
[2010-01-17 21:34:04 | 00,048,560 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2010-01-17 21:34:04 | 00,027,408 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2010-01-17 21:34:04 | 00,023,120 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2010-01-17 21:34:04 | 00,020,560 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2010-01-17 21:34:03 | 00,094,160 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2010-01-17 21:34:03 | 00,093,424 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2010-01-17 21:33:50 | 01,280,480 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe
[2010-01-17 21:28:47 | 00,000,000 | ---D | C] -- C:\Program Files\Alwil Software
[2010-01-17 20:20:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Hagel Technologies
[2010-01-17 20:20:11 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Hagel Technologies
[2010-01-17 20:20:10 | 00,000,000 | ---D | C] -- C:\Program Files\DU Meter
[2010-01-17 19:00:54 | 00,000,000 | ---D | C] -- C:\Program Files\ESET
[2010-01-12 21:10:06 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Pulpit\4 chan
[2010-01-11 16:49:59 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTEMP
[2010-01-10 19:12:46 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Futuremark Shared
[2010-01-10 19:12:46 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Futuremark
[2010-01-10 12:40:00 | 00,000,000 | ---D | C] -- C:\Program Files\MadOnion.com
[2010-01-10 12:36:32 | 00,000,000 | ---D | C] -- C:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition
[2010-01-10 12:18:12 | 00,000,000 | ---D | C] -- C:\Program Files\PowerStrip
[2010-01-10 10:28:49 | 00,000,000 | ---D | C] -- C:\Program Files\SpeedFan
[2010-01-10 10:24:47 | 00,253,952 | ---- | C] (home) -- C:\WINDOWS\System32\histogram.ocx
[2010-01-10 10:24:47 | 00,188,416 | ---- | C] (SoftShape Development) -- C:\WINDOWS\System32\actsplash.ocx
[2010-01-10 10:04:38 | 00,000,000 | ---D | C] -- C:\Program Files\Prime95
[2010-01-10 09:34:24 | 00,000,000 | ---D | C] -- C:\Program Files\ASUS
[2010-01-10 09:28:34 | 00,181,760 | ---- | C] (Silicon Image, Inc) -- C:\WINDOWS\System32\drivers\Si3132r5.sys
[2010-01-10 09:28:34 | 00,078,336 | ---- | C] (Silicon Image) -- C:\WINDOWS\System32\SilSupp.cpl
[2010-01-10 09:28:34 | 00,010,368 | ---- | C] (Silicon Image, Inc.) -- C:\WINDOWS\System32\drivers\SiWinAcc.sys
[2010-01-10 09:28:30 | 00,000,000 | ---D | C] -- C:\Program Files\Silicon Image
[2010-01-10 09:23:45 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang
[2010-01-10 09:06:24 | 00,000,000 | ---D | C] -- C:\Program Files\Realtek AC97
[2010-01-09 14:16:11 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\Ahead
[2010-01-01 20:10:40 | 00,000,000 | --SD | C] -- C:\Documents and Settings\Admin\Moje dokumenty\Moje wideo
[2010-01-01 20:10:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Moje dokumenty\RCT3
[2010-01-01 20:10:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dane aplikacji\Atari
[2009-12-31 11:38:22 | 01,568,768 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagX7.dll
[2009-12-31 11:38:22 | 00,476,320 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXpr7.dll
[2009-12-31 11:38:22 | 00,471,040 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXRA7.dll
[2009-12-31 11:38:22 | 00,364,544 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\TwnLib4.dll
[2009-12-31 11:38:22 | 00,262,144 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXR7.dll
[2009-12-31 11:38:22 | 00,106,496 | ---- | C] (Pegasus Software) -- C:\WINDOWS\System32\TwnLib20.dll
[2009-12-31 11:38:22 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Ahead
[2009-12-31 11:38:21 | 00,000,000 | ---D | C] -- C:\Program Files\Ahead
[2009-12-06 12:36:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Google
[2009-12-06 12:32:01 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Google
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2010-01-29 20:55:37 | 00,548,864 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Admin\Pulpit\OTL.exe
[2010-01-29 20:51:01 | 00,348,371 | ---- | M] () -- C:\WINDOWS\System32\vsconfig.xml
[2010-01-29 20:50:38 | 00,203,767 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2010-01-29 20:50:33 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010-01-29 20:50:26 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-01-29 20:29:37 | 00,105,156 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\bookmarks-2010-01-29.json
[2010-01-29 20:29:31 | 00,487,501 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\bookmarks.html
[2010-01-29 20:11:40 | 05,505,024 | -H-- | M] () -- C:\Documents and Settings\Admin\NTUSER.DAT
[2010-01-29 17:08:46 | 00,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010-01-29 17:00:38 | 00,000,188 | -HS- | M] () -- C:\Documents and Settings\Admin\ntuser.ini
[2010-01-29 17:00:27 | 00,000,477 | ---- | M] () -- C:\WINDOWS\win.ini
[2010-01-29 17:00:27 | 00,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010-01-29 17:00:27 | 00,000,211 | -HS- | M] () -- C:\boot.ini
[2010-01-29 16:44:24 | 44,589,926 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\TvP_5FactPush.avi
[2010-01-29 16:25:54 | 26,946,398 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\TvZ_8Rax_Mech_Game.avi
[2010-01-29 16:21:23 | 00,048,640 | ---- | M] () -- C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-01-28 19:25:47 | 76,150,784 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\TvZ_General_Tips_Part_2.avi
[2010-01-27 23:27:12 | 00,771,299 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\1264626044484.gif
[2010-01-27 23:26:19 | 00,343,250 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\1264621394777.gif
[2010-01-27 23:26:09 | 01,368,698 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\1264630060680.gif
[2010-01-27 23:24:39 | 02,022,006 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\1264630836568.gif
[2010-01-26 20:09:52 | 14,227,572 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\microcontrol_mappack_by8882.zip
[2010-01-25 21:20:43 | 04,345,939 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\2 inches of blood - deadly sinners.mp3
[2010-01-25 20:23:30 | 68,518,400 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\TvZ_General_Tips_Part_1.avi
[2010-01-25 19:03:31 | 77,032,960 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\TvP_General_Tips.avi
[2010-01-24 23:47:28 | 01,577,648 | -H-- | M] () -- C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2010-01-24 21:42:00 | 00,414,997 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\mousepath.exe.zip
[2010-01-24 11:04:35 | 00,000,738 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\ICCup Launcher.lnk
[2010-01-24 08:28:35 | 00,650,436 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\1264316966250.jpg
[2010-01-23 15:10:55 | 00,000,803 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\CoreTemp.ini
[2010-01-23 15:10:55 | 00,000,011 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\Plugins.ini
[2010-01-23 14:59:08 | 00,545,435 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\30second.mp3
[2010-01-23 14:58:58 | 00,578,036 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\socks.mp3
[2010-01-22 18:45:54 | 01,112,188 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\boioioioi.mp3
[2010-01-21 21:41:08 | 00,001,533 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Neostrada TP.lnk
[2010-01-21 20:57:10 | 03,932,214 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\bez tytułu.bmp
[2010-01-19 22:22:46 | 00,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk
[2010-01-17 21:34:04 | 00,002,645 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010-01-16 07:46:44 | 31,375,5288 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\Prophesy of Pendor V2.5.zip
[2010-01-14 03:03:09 | 00,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010-01-13 18:26:14 | 00,509,070 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2010-01-13 18:26:14 | 00,449,320 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-01-13 18:26:14 | 00,094,088 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2010-01-13 18:26:14 | 00,074,808 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-01-13 18:26:14 | 00,004,792 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-01-13 18:24:16 | 00,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-01-10 21:55:50 | 00,000,169 | ---- | M] () -- C:\WINDOWS\RtlRack.ini
[2010-01-10 12:41:03 | 00,001,768 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\3DMark2001 SE.lnk
[2010-01-10 11:11:35 | 00,026,765 | ---- | M] () -- C:\WINDOWS\Ascd_tmp.ini
[2010-01-10 10:28:49 | 00,000,045 | ---- | M] () -- C:\WINDOWS\System32\initdebug.nfo
[2010-01-10 09:26:20 | 00,026,803 | ---- | M] () -- C:\WINDOWS\Ascd_log.ini
[2010-01-10 09:23:46 | 00,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav
[2010-01-10 09:23:45 | 00,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav
[2010-01-07 17:37:19 | 41,865,9304 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\carving_technica.mpg
[2010-01-07 16:07:14 | 00,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010-01-07 16:07:04 | 00,019,160 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2010-01-29 20:29:37 | 00,105,156 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\bookmarks-2010-01-29.json
[2010-01-29 20:29:31 | 00,487,501 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\bookmarks.html
[2010-01-29 15:57:31 | 26,946,398 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\TvZ_8Rax_Mech_Game.avi
[2010-01-29 15:57:00 | 44,589,926 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\TvP_5FactPush.avi
[2010-01-28 18:06:12 | 76,150,784 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\TvZ_General_Tips_Part_2.avi
[2010-01-27 23:27:11 | 00,771,299 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\1264626044484.gif
[2010-01-27 23:26:18 | 00,343,250 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\1264621394777.gif
[2010-01-27 23:26:08 | 01,368,698 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\1264630060680.gif
[2010-01-27 23:24:37 | 02,022,006 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\1264630836568.gif
[2010-01-26 19:53:41 | 14,227,572 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\microcontrol_mappack_by8882.zip
[2010-01-25 21:20:42 | 04,345,939 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\2 inches of blood - deadly sinners.mp3
[2010-01-25 19:13:46 | 68,518,400 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\TvZ_General_Tips_Part_1.avi
[2010-01-25 17:38:58 | 77,032,960 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\TvP_General_Tips.avi
[2010-01-24 21:41:41 | 00,414,997 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\mousepath.exe.zip
[2010-01-24 11:04:35 | 00,000,738 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\ICCup Launcher.lnk
[2010-01-24 08:27:46 | 00,650,436 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\1264316966250.jpg
[2010-01-23 15:10:55 | 00,000,803 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\CoreTemp.ini
[2010-01-23 15:10:55 | 00,000,011 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\Plugins.ini
[2010-01-23 14:58:31 | 00,545,435 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\30second.mp3
[2010-01-23 14:58:19 | 00,578,036 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\socks.mp3
[2010-01-22 18:44:27 | 01,112,188 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\boioioioi.mp3
[2010-01-21 21:41:08 | 00,001,533 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Neostrada TP.lnk
[2010-01-21 20:57:10 | 03,932,214 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\bez tytułu.bmp
[2010-01-19 22:22:46 | 00,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk
[2010-01-17 21:33:50 | 00,380,928 | ---- | C] () -- C:\WINDOWS\System32\actskin4.ocx
[2010-01-16 00:13:32 | 31,375,5288 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\Prophesy of Pendor V2.5.zip
[2010-01-10 12:41:03 | 00,001,768 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\3DMark2001 SE.lnk
[2010-01-10 11:47:12 | 00,106,496 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\SUPER_PI.EXE
[2010-01-10 11:46:53 | 00,378,384 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\Core Temp.exe
[2010-01-10 11:11:35 | 00,026,765 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2010-01-10 10:28:49 | 00,000,045 | ---- | C] () -- C:\WINDOWS\System32\initdebug.nfo
[2010-01-10 10:24:47 | 00,389,120 | ---- | C] () -- C:\WINDOWS\System32\actskn43.ocx
[2010-01-10 09:34:25 | 00,024,576 | R--- | C] () -- C:\WINDOWS\System32\AsIO.dll
[2010-01-10 09:34:25 | 00,004,962 | R--- | C] () -- C:\WINDOWS\System32\drivers\AsIO.sys
[2010-01-10 09:34:24 | 00,005,120 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp64.sys
[2010-01-10 09:34:24 | 00,003,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp32.sys
[2010-01-10 09:23:45 | 00,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav
[2010-01-10 09:23:45 | 00,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav
[2010-01-10 09:06:28 | 00,000,164 | R--- | C] () -- C:\WINDOWS\avrack.ini
[2010-01-07 16:02:07 | 41,865,9304 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\carving_technica.mpg
[2009-12-31 18:40:33 | 00,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009-12-21 17:02:32 | 00,000,319 | ---- | C] () -- C:\WINDOWS\game.ini
[2009-12-01 22:25:00 | 00,208,896 | ---- | C] () -- C:\WINDOWS\System32\glut32.dll
[2009-11-18 23:18:07 | 00,180,224 | ---- | C] () -- C:\WINDOWS\System32\WinVd32.sys
[2009-10-23 19:44:16 | 00,000,080 | ---- | C] () -- C:\WINDOWS\sierra.ini
[2009-10-01 15:34:59 | 00,000,174 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
[2009-10-01 15:32:49 | 00,001,021 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2009-09-22 18:34:35 | 01,724,416 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2009-09-22 18:34:35 | 01,101,824 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2009-09-22 18:34:35 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2009-09-22 18:34:33 | 01,507,328 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2009-09-21 21:58:14 | 00,796,032 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2009-08-07 18:51:34 | 00,178,430 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2009-07-31 08:54:08 | 00,639,224 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2009-07-30 12:23:39 | 00,003,285 | ---- | C] () -- C:\WINDOWS\VPlayer.INI
[2009-07-30 12:16:34 | 00,048,640 | ---- | C] () -- C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-07-30 12:08:10 | 00,168,448 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2009-07-30 12:08:09 | 00,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2009-07-30 12:08:08 | 00,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2009-07-30 12:08:08 | 00,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2009-07-30 12:08:07 | 03,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2009-07-30 12:08:06 | 00,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2009-07-30 12:08:06 | 00,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2009-07-30 06:43:58 | 00,005,606 | ---- | C] () -- C:\WINDOWS\System32\stci.dll
[2009-07-30 06:43:23 | 00,041,068 | ---- | C] () -- C:\WINDOWS\System32\ActPanel.dll
[2009-07-30 06:41:19 | 00,000,169 | ---- | C] () -- C:\WINDOWS\RtlRack.ini
[2009-07-30 06:37:37 | 00,156,672 | R--- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2009-07-30 06:33:39 | 00,000,266 | R--- | C] () -- C:\WINDOWS\System32\raidmgmt.ini
[2009-07-30 00:33:42 | 00,026,803 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini
[2009-07-30 00:33:30 | 00,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2009-07-30 00:33:24 | 00,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2009-06-19 19:06:22 | 00,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll
[2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2005-12-07 11:31:00 | 00,202,752 | R--- | C] () -- C:\WINDOWS\System32\CddbCdda.dll
[1997-06-14 01:56:08 | 00,056,832 | ---- | C] () -- C:\WINDOWS\System32\iyvu9_32.dll
[1996-04-03 20:33:26 | 00,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys

[color=#E56717]========== LOP Check ==========[/color]

[2009-11-18 23:24:35 | 00,000,000 | -HSD | M] -- C:\Documents and Settings\Admin\Dane aplikacji\.#
[2010-01-01 20:10:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Atari
[2010-01-27 23:33:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\BESTplayer
[2009-08-01 15:33:17 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Canneverbe_Limited
[2009-08-15 17:15:07 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\CityInteractive
[2009-07-31 22:34:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Gadu-Gadu
[2009-11-23 22:19:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\GanymedeNet
[2009-12-11 22:30:18 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\ipla
[2009-12-01 16:24:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Mount&Blade
[2010-01-23 14:59:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\MyPhoneExplorer
[2009-12-28 20:24:12 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\NeatImage SL
[2009-09-12 20:55:31 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Nokia
[2009-08-01 10:17:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Nokia Multimedia Player
[2009-08-28 08:49:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\OpenOffice.org
[2009-08-01 10:16:18 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\PC Suite
[2009-08-01 07:58:10 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Sports Interactive
[2009-09-13 06:20:21 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Teleca
[2009-09-16 17:12:10 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\The Creative Assembly
[2009-09-12 21:36:47 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Codemasters
[2009-07-30 12:15:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DFX
[2010-01-17 20:20:11 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Hagel Technologies
[2009-08-01 09:58:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations
[2009-10-17 20:05:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla
[2009-08-01 10:12:43 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite
[2009-08-01 07:57:54 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Sports Interactive
[2009-09-11 20:08:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Teleca
[2010-01-29 20:50:54 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2009-07-31 09:12:07 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Test Drive Unlimited
[2009-12-27 20:32:46 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{FD71DB76-A64B-4A16-BD57-1CC61B92D082}

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Custom Scans ==========[/color]


[color=#A23BEC]< %systemdrive%\*.* >[/color]
[2009-08-25 21:36:12 | 00,000,000 | ---- | M] () -- C:\AILog.txt
[2010-01-10 09:06:48 | 00,000,189 | ---- | M] () -- C:\audio.log
[2009-07-30 00:23:32 | 00,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010-01-29 17:00:27 | 00,000,211 | -HS- | M] () -- C:\boot.ini
[2004-08-04 13:00:00 | 00,004,952 | RHS- | M] () -- C:\Bootfont.bin
[2009-07-30 00:23:32 | 00,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2009-07-30 07:32:04 | 00,000,524 | ---- | M] () -- C:\INSTALL.LOG
[2009-07-30 00:23:32 | 00,000,000 | RHS- | M] () -- C:\IO.SYS
[2009-07-31 08:46:24 | 00,002,697 | ---- | M] () -- C:\LGSInst.Log
[2009-07-30 00:23:32 | 00,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2004-08-04 13:00:00 | 00,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2009-07-30 08:51:01 | 00,251,152 | RHS- | M] () -- C:\ntldr
[2010-01-10 09:02:24 | 00,000,086 | ---- | M] () -- C:\nvidia.log
[2010-01-29 20:50:18 | 16,094,08512 | -HS- | M] () -- C:\pagefile.sys
[2009-11-18 23:18:09 | 00,000,345 | ---- | M] () -- C:\Sys_LogWin.log

[color=#E56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 229 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:8FF81EB0
@Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:6CC69D3C
< End of report >
[/log]

Pozdrawiam i z góry dziękuję za pomoc.

Mateusz J.
komentarz
komentarz

Uruchom OTL i w oknie Custom Scans/Fixes wklej

[code]:OTL
O32 - AutoRun File - [2008-10-13 19:44:59 | 00,136,448 | R--- | M] (Sports Interactive) - G:\autorun.exe -- [ CDFS ]
O32 - AutoRun File - [2008-07-25 18:10:55 | 00,000,027 | R--- | M] () - G:\autorun.inf -- [ CDFS ]
O32 - AutoRun File - [2009-04-30 03:57:32 | 00,054,544 | R--- | M] (Electronic Arts) - H:\Autorun.exe -- [ UDF ]
O32 - AutoRun File - [2008-10-22 00:48:37 | 00,000,045 | R--- | M] () - H:\Autorun.inf -- [ UDF ]
O32 - AutoRun File - [2000-01-13 16:04:18 | 00,000,066 | R--- | M] () - I:\AUTORUN.INF -- [ CDFS ]

:Files
I:\autorun.exe
C:\autorun.exe
D:\autorun.exe
E:\autorun.exe
H:\autorun.exe
I:\autorun.inf
C:\autorun.inf
D:\autorun.inf
E:\autorun.inf
H:\autorun.inf

:Commands
[emptytemp]
[Reboot]
[/code]
Kliknij Run Fix. Zatwierdź restart komputera.
Po ponownym uruchomieniu komputera tworzysz nowy log i pokazujesz do kontroli.

Maverick65
komentarz
komentarz (edytowane)

Dziękuję za odzew :)

Oto log:
[log]OTL logfile created on: 2010-01-31 08:29:05 - Run 2
OTL by OldTimer - Version 3.1.27.0 Folder = C:\Documents and Settings\Admin\Pulpit
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

1 023,00 Mb Total Physical Memory | 546,00 Mb Available Physical Memory | 53,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 82,00% Paging File free
Paging file location(s): C:\pagefile.sys 0 0 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 30,30 Gb Total Space | 9,01 Gb Free Space | 29,73% Space Free | Partition Type: NTFS
Drive D: | 203,44 Gb Total Space | 6,16 Gb Free Space | 3,03% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
Drive G: | 1,22 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive H: | 5,56 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
Drive I: | 455,12 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: DOM-3044D5F8DF2
Current User Name: Admin
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 30 Days
Output = Standard

[color=#E56717]========== Processes (All) ==========[/color]

PRC - [2010-01-29 20:55:37 | 00,548,864 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Admin\Pulpit\OTL.exe
PRC - [2010-01-14 17:08:32 | 00,908,248 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009-08-22 19:25:00 | 02,781,184 | ---- | M] () -- C:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner.exe
PRC - [2009-08-06 18:24:06 | 00,053,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe
PRC - [2009-07-30 10:46:36 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2009-07-21 13:34:33 | 00,185,089 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2009-07-20 10:51:52 | 00,935,208 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
PRC - [2009-05-13 15:48:22 | 00,108,289 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2009-03-02 12:08:47 | 00,209,153 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2009-02-09 12:25:57 | 00,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe
PRC - [2008-11-19 01:28:00 | 00,163,908 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe
PRC - [2008-11-13 14:18:56 | 02,405,776 | ---- | M] (Check Point Software Technologies LTD) -- C:\WINDOWS\system32\ZoneLabs\vsmon.exe
PRC - [2008-11-13 14:18:56 | 00,981,904 | ---- | M] (Check Point Software Technologies LTD) -- C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
PRC - [2008-04-14 21:51:50 | 00,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe
PRC - [2008-04-14 21:51:44 | 00,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe
PRC - [2008-04-14 21:51:44 | 00,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe
PRC - [2008-04-14 21:51:44 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS]
PRC - [2008-04-14 21:51:44 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE]
PRC - [2008-04-14 21:51:44 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS]
PRC - [2008-04-14 21:51:44 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-04-14 21:51:44 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-04-14 21:51:44 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [IMGSVC]
PRC - [2008-04-14 21:51:44 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH]
PRC - [2008-04-14 21:51:32 | 00,156,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\notepad.exe
PRC - [2008-04-14 21:51:24 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe
PRC - [2008-04-14 21:51:18 | 00,977,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008-04-14 21:51:12 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe
PRC - [2008-04-14 21:51:04 | 00,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe
PRC - [2007-04-02 13:15:40 | 00,061,440 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Shared Files\CTDevSrv.exe
PRC - [2007-03-18 23:05:02 | 00,630,784 | ---- | M] () -- C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
PRC - [2006-11-12 11:48:46 | 00,157,592 | ---- | M] (DT Soft Ltd.) -- C:\Program Files\DAEMON Tools\daemon.exe
PRC - [2006-05-21 08:43:14 | 00,155,648 | ---- | M] (Y'z@Home) -- C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
PRC - [2006-05-21 08:43:08 | 00,180,224 | ---- | M] () -- C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe
PRC - [2006-02-28 11:42:38 | 00,229,376 | ---- | M] (Apple Computer, Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2005-08-04 14:24:46 | 03,627,008 | ---- | M] () -- C:\Program Files\ASUS\Ai Booster\OverClk.exe
PRC - [2003-10-16 18:07:12 | 00,626,688 | ---- | M] (France Télécom R&D) -- C:\Program Files\Neostrada TP\NeostradaTP.exe
PRC - [2003-10-16 18:07:12 | 00,020,480 | ---- | M] (France Télécom R&D) -- C:\Program Files\Neostrada TP\Watch.exe
PRC - [2003-10-16 18:07:10 | 00,200,704 | ---- | M] (France Télécom R&D) -- C:\Program Files\Neostrada TP\ComComp.exe
PRC - [1999-12-13 08:01:00 | 00,044,032 | ---- | M] (Creative Technology Ltd) -- C:\WINDOWS\system32\CTSVCCDA.EXE


[color=#E56717]========== Modules (All) ==========[/color]

MOD - [2010-01-29 20:55:37 | 00,548,864 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Admin\Pulpit\OTL.exe
MOD - [2009-07-30 10:37:09 | 00,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll
MOD - [2009-06-25 09:27:54 | 00,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll
MOD - [2009-04-15 15:54:38 | 00,585,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll
MOD - [2009-03-21 15:08:59 | 01,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll
MOD - [2009-02-09 11:53:44 | 00,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll
MOD - [2009-02-09 11:53:43 | 00,722,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll
MOD - [2008-10-23 13:42:41 | 00,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll
MOD - [2008-06-17 20:03:15 | 08,489,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll
MOD - [2008-04-14 21:51:58 | 00,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv
MOD - [2008-04-14 21:50:58 | 00,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll
MOD - [2008-04-14 21:50:58 | 00,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll
MOD - [2008-04-14 21:50:58 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll
MOD - [2008-04-14 21:50:48 | 00,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll
MOD - [2008-04-14 21:50:48 | 00,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll
MOD - [2008-04-14 21:50:46 | 01,287,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll
MOD - [2008-04-14 21:50:46 | 00,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll
MOD - [2008-04-14 21:50:46 | 00,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll
MOD - [2008-04-14 21:50:46 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll
MOD - [2008-04-14 21:50:40 | 00,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll
MOD - [2008-04-14 21:50:32 | 00,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll
MOD - [2008-04-14 21:50:14 | 00,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll
MOD - [2008-04-14 21:29:10 | 01,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
MOD - [2007-03-18 23:04:22 | 00,069,632 | ---- | M] () -- C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.dll
MOD - [2006-05-21 08:43:14 | 00,053,248 | ---- | M] () -- C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.dll
MOD - [2006-05-21 08:43:08 | 00,065,536 | ---- | M] () -- C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - [2009-09-29 16:09:49 | 00,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009-07-30 10:46:36 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) [Auto | Running] -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2009-07-21 13:34:33 | 00,185,089 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2009-07-20 10:51:52 | 00,935,208 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2009-06-22 16:44:00 | 03,087,772 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\WINDOWS\System32\GameMon.des -- (npggsvc)
SRV - [2009-05-13 15:48:22 | 00,108,289 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2008-11-20 20:18:52 | 00,136,120 | ---- | M] (Google) [On_Demand | Stopped] -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc)
SRV - [2008-11-19 01:28:00 | 00,163,908 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\WINDOWS\system32\nvsvc32.exe -- (NVSvc)
SRV - [2008-11-13 14:18:56 | 02,405,776 | ---- | M] (Check Point Software Technologies LTD) [Auto | Running] -- C:\WINDOWS\System32\ZoneLabs\vsmon.exe -- (vsmon)
SRV - [2008-03-09 12:54:58 | 00,187,120 | ---- | M] (Systweak Inc) [Auto | Stopped] -- C:\Program Files\Systweak\Systweak CacheBoost\cbSrv.exe -- (CacheBoost Service)
SRV - [2007-04-02 13:15:40 | 00,061,440 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files\Creative\Shared Files\CTDevSrv.exe -- (CTDevice_Srv)
SRV - [2007-03-26 12:06:24 | 00,292,864 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2006-02-28 11:42:38 | 00,229,376 | ---- | M] (Apple Computer, Inc.) [Auto | Running] -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service)
SRV - [2005-04-03 23:41:10 | 00,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT)
SRV - [1999-12-13 08:01:00 | 00,044,032 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\WINDOWS\system32\CTSVCCDA.EXE -- (Creative Service for CDROM Access)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - [2009-11-25 11:19:02 | 00,056,816 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2009-11-18 23:18:07 | 00,180,224 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\WinVd32.sys -- (WinVd32)
DRV - [2009-11-18 23:18:02 | 00,010,752 | ---- | M] () [File_System | Auto | Running] -- C:\WINDOWS\system32\WinFLdrv.sys -- (WinFLdrv)
DRV - [2009-09-23 09:41:58 | 00,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2009-08-22 19:25:00 | 00,009,088 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner32.sys -- (RivaTuner32)
DRV - [2009-07-31 08:54:08 | 00,639,224 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009-05-11 09:12:24 | 00,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2009-04-28 21:20:06 | 00,044,944 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20)
DRV - [2009-03-30 09:33:07 | 00,096,104 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2009-02-13 11:35:05 | 00,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio)
DRV - [2008-11-19 01:28:00 | 06,204,032 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2008-11-13 14:19:00 | 00,353,680 | ---- | M] (Check Point Software Technologies LTD) [Kernel | System | Running] -- C:\WINDOWS\system32\vsdatant.sys -- (vsdatant)
DRV - [2008-09-17 14:14:00 | 00,027,672 | R--- | M] (EnTech Taiwan) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Entech.sys -- (ENTECH)
DRV - [2008-04-21 06:19:58 | 00,051,648 | ---- | M] (Check Point Software Technologies LTD) [Kernel | Boot | Running] -- C:\WINDOWS\system32\ZoneLabs\srescan.sys -- (srescan)
DRV - [2008-04-13 23:15:30 | 00,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2008-04-13 21:09:18 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv)
DRV - [2007-08-02 16:32:26 | 00,022,784 | ---- | M] (Razer (Asia-Pacific) Pte Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\dadder.sys -- (DAdderFltr)
DRV - [2007-07-15 03:37:04 | 00,027,992 | ---- | M] (EnTech Taiwan) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\pstrip.sys -- (PStrip)
DRV - [2007-06-19 08:51:20 | 00,107,304 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816mdm.sys -- (s816mdm)
DRV - [2007-06-19 08:51:18 | 00,099,112 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816mgmt.sys -- (s816mgmt) Sony Ericsson Device 816 USB WMC Device Management Drivers (WDM)
DRV - [2007-06-19 08:51:18 | 00,097,704 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816unic.sys -- (s816unic) Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (WDM)
DRV - [2007-06-19 08:51:18 | 00,097,320 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816obex.sys -- (s816obex)
DRV - [2007-06-19 08:51:18 | 00,021,928 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816nd5.sys -- (s816nd5) Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (NDIS)
DRV - [2007-06-19 08:51:18 | 00,013,864 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816mdfl.sys -- (s816mdfl)
DRV - [2007-06-19 08:51:16 | 00,081,832 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816bus.sys -- (s816bus) Sony Ericsson Device 816 driver (WDM)
DRV - [2007-02-22 09:15:56 | 00,137,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcd.sys -- (nmwcd)
DRV - [2007-02-22 09:15:14 | 00,012,288 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdcm.sys -- (nmwcdcm)
DRV - [2007-02-22 09:15:14 | 00,012,288 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdcj.sys -- (nmwcdcj)
DRV - [2007-02-22 09:15:14 | 00,008,320 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdc.sys -- (nmwcdc)
DRV - [2006-09-24 14:28:46 | 00,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan)
DRV - [2005-08-19 10:31:52 | 03,644,800 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2005-08-18 10:52:06 | 00,093,568 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvata.sys -- (nvata)
DRV - [2005-07-26 10:48:30 | 00,012,928 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2005-07-26 10:48:28 | 00,033,664 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2005-03-31 11:28:24 | 00,181,760 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\Si3132r5.sys -- (Si3132r5)
DRV - [2005-03-30 07:24:00 | 00,230,400 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp)
DRV - [2005-03-09 14:53:00 | 00,043,008 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2004-11-01 12:21:32 | 00,010,368 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\SiWinAcc.sys -- (SiFilter)
DRV - [2004-10-14 10:52:28 | 00,004,962 | R--- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AsIO.sys -- (AsIO)
DRV - [2004-08-13 03:56:20 | 00,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)
DRV - [2004-08-04 13:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink)
DRV - [2003-12-08 10:53:48 | 00,053,600 | ---- | M] (THOMSON) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcan5wn.sys -- (alcan5wn) SpeedTouch USB ADSL PPP Networking Driver (NDISWAN)
DRV - [2003-12-08 10:53:46 | 00,070,688 | ---- | M] (THOMSON) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcaudsl.sys -- (alcaudsl)
DRV - [2003-05-14 12:42:58 | 00,013,920 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WmHidLo.sys -- (WmHidLo)
DRV - [2003-05-14 12:42:56 | 00,021,216 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WmFilter.sys -- (WmFilter)
DRV - [2003-05-14 12:42:50 | 00,010,144 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WmBEnum.sys -- (WmBEnum)
DRV - [2003-05-14 12:42:48 | 00,005,728 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WmVirHid.sys -- (WmVirHid)
DRV - [2003-05-14 12:42:44 | 00,044,288 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WmXlCore.sys -- (WmXlCore)
DRV - [2001-08-17 23:00:04 | 00,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)
DRV - [1996-04-03 20:33:26 | 00,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.neostrada.pl
IE - HKCU\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Neostrada TP\SearchPageURL.dll ()
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://pl.start3.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:pl:official"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.1.1
FF - prefs.js..extensions.enabledItems: {6AC85730-7D0F-4de0-B3FA-21142DD85326}:2.0.2
FF - prefs.js..extensions.enabledItems: {a7c6cf7f-112c-4500-a7ea-39801a327e5f}:1.0.7
FF - prefs.js..extensions.enabledItems: fotofox@mozilla.com:1.7
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {75CEEE46-9B64-46f8-94BF-54012DE155F0}:0.3.9
FF - prefs.js..extensions.enabledItems: {73a6fe31-595d-460b-a920-fcc0f8843232}:1.9.9.18
FF - prefs.js..extensions.enabledItems: pixelperfectplugin@openhouseconcepts.com:1.1.0
FF - prefs.js..extensions.enabledItems: tineye@ideeinc.com:0.7.1
FF - prefs.js..extensions.enabledItems: yslow@yahoo-inc.com:2.0.2
FF - prefs.js..extensions.enabledItems: {07b2a769-ed19-4483-87ce-c643914c81bb}:3.0.0.87
FF - prefs.js..keyword.URL: "http://www.google.com/search?ie=UTF-...ient&gfns=1&q="

FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-01-16 09:06:10 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-01-14 17:08:50 | 00,000,000 | ---D | M]

[2009-07-30 06:49:33 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Extensions
[2010-01-30 19:36:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions
[2010-01-20 22:06:08 | 00,000,000 | ---D | M] (Vista-aero) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\{07b2a769-ed19-4483-87ce-c643914c81bb}
[2009-11-07 09:56:18 | 00,000,000 | ---D | M] (ColorZilla) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326}
[2009-12-07 18:53:10 | 00,000,000 | ---D | M] (NoScript) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}
[2009-11-07 09:56:16 | 00,000,000 | ---D | M] (MeasureIt) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\{75CEEE46-9B64-46f8-94BF-54012DE155F0}
[2009-12-07 18:53:09 | 00,000,000 | ---D | M] (FireFTP) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f}
[2009-08-12 20:25:35 | 00,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2009-12-07 18:53:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\fotofox@mozilla.com
[2009-11-07 09:56:19 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\pixelperfectplugin@openhouseconcepts.com
[2009-11-26 17:05:37 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\tineye@ideeinc.com
[2009-12-07 18:53:09 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\yslow@yahoo-inc.com
[2010-01-20 22:06:16 | 00,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\{07b2a769-ed19-4483-87ce-c643914c81bb}\chrome\mozapps\extensions
[2010-01-30 19:36:24 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2009-11-16 16:13:16 | 00,120,296 | ---- | M] ( ) -- C:\Program Files\Mozilla Firefox\plugins\npganymedenet.dll
[2010-01-14 17:08:42 | 00,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010-01-14 17:08:43 | 00,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2010-01-14 17:08:43 | 00,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2010-01-14 17:08:43 | 00,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010-01-14 17:08:43 | 00,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2010-01-14 17:08:43 | 00,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2004-08-04 13:00:00 | 00,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [DAEMON Tools] C:\Program Files\DAEMON Tools\daemon.exe (DT Soft Ltd.)
O4 - HKLM..\Run: [KernelFaultCheck] File not found
O4 - HKLM..\Run: [Launch Ai Booster] C:\Program Files\ASUS\Ai Booster\OverClk.exe ()
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [RivaTuner] C:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner.exe ()
O4 - HKLM..\Run: [RivaTunerStartupDaemon] C:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner.exe ()
O4 - HKLM..\Run: [ZoneAlarm Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe (Check Point Software Technologies LTD)
O4 - Startup: C:\Documents and Settings\Admin\Menu Start\Programy\Autostart\RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe ()
O4 - Startup: C:\Documents and Settings\Admin\Menu Start\Programy\Autostart\TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe (AKSoftware)
O4 - Startup: C:\Documents and Settings\Admin\Menu Start\Programy\Autostart\UberIcon.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe ()
O4 - Startup: C:\Documents and Settings\Admin\Menu Start\Programy\Autostart\Y'z Shadow.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe (Y'z@Home)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 95 00 00 00 [binary data]
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKCU\..Trusted Domains: internet ([]about in Internet)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA} http://java.sun.com/products/plugin/autodl/jinstall-1_4_0_03-win.cab (Java Plug-in 1.4.0_03)
O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-07-30 00:23:32 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2008-10-13 19:44:59 | 00,136,448 | R--- | M] (Sports Interactive) - G:\autorun.exe -- [ CDFS ]
O32 - AutoRun File - [2008-07-25 18:10:55 | 00,000,027 | R--- | M] () - G:\autorun.inf -- [ CDFS ]
O32 - AutoRun File - [2009-04-30 03:57:32 | 00,054,544 | R--- | M] (Electronic Arts) - H:\Autorun.exe -- [ UDF ]
O32 - AutoRun File - [2008-10-22 00:48:37 | 00,000,045 | R--- | M] () - H:\Autorun.inf -- [ UDF ]
O32 - AutoRun File - [2000-01-13 16:04:18 | 00,000,066 | R--- | M] () - I:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{fb52447a-7e61-11de-a701-000e504af92c}\Shell - "" = AutoRun
O33 - MountPoints2\{fb52447a-7e61-11de-a701-000e504af92c}\Shell\AutoRun\command - "" = G:\autorun.exe -- [2008-10-13 19:44:59 | 00,136,448 | R--- | M] (Sports Interactive)
O33 - MountPoints2\{fb52447c-7e61-11de-a701-000e504af92c}\Shell - "" = AutoRun
O33 - MountPoints2\{fb52447c-7e61-11de-a701-000e504af92c}\Shell\AutoRun\command - "" = H:\Autorun.exe -- [2009-04-30 03:57:32 | 00,054,544 | R--- | M] (Electronic Arts)
O33 - MountPoints2\{fb52447d-7e61-11de-a701-000e504af92c}\Shell - "" = AutoRun
O33 - MountPoints2\{fb52447d-7e61-11de-a701-000e504af92c}\Shell\AutoRun\command - "" = I:\_AUTORUN\Autorun.exe -- [2000-02-07 12:20:10 | 00,036,864 | R--- | M] (New World Computing)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2009-07-30 00:23:02 | 00,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2010-01-31 08:22:54 | 00,000,000 | ---D | C] -- C:\_OTL
[2010-01-30 14:13:38 | 11,232,1464 | ---- | C] ( ) -- C:\Documents and Settings\Admin\Pulpit\CyberLink.2227(Patch)_DVD091022-07.exe
[2010-01-29 21:39:20 | 00,000,000 | ---D | C] -- C:\Program Files\VS Revo Group
[2010-01-29 21:34:24 | 00,096,104 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys
[2010-01-29 21:34:24 | 00,056,816 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntflt.sys
[2010-01-29 21:34:24 | 00,045,416 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntdd.sys
[2010-01-29 21:34:24 | 00,022,360 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntmgr.sys
[2010-01-29 21:34:23 | 00,028,520 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\ssmdrv.sys
[2010-01-29 21:34:20 | 00,000,000 | ---D | C] -- C:\Program Files\Avira
[2010-01-29 21:34:20 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Avira
[2010-01-29 21:22:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Hagel Technologies
[2010-01-29 20:55:05 | 00,548,864 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Admin\Pulpit\OTL.exe
[2010-01-21 21:50:24 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Moje dokumenty\@neostrada.pl
[2010-01-19 22:22:47 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dane aplikacji\Malwarebytes
[2010-01-19 22:22:44 | 00,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010-01-19 22:22:42 | 00,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010-01-19 22:22:42 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010-01-19 22:22:42 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes
[2010-01-17 21:35:32 | 00,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft
[2010-01-17 21:35:32 | 00,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft
[2010-01-17 21:35:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2010-01-17 21:35:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2010-01-17 21:28:47 | 00,000,000 | ---D | C] -- C:\Program Files\Alwil Software
[2010-01-17 20:20:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Hagel Technologies
[2010-01-17 19:00:54 | 00,000,000 | ---D | C] -- C:\Program Files\ESET
[2010-01-12 21:10:06 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Pulpit\4 chan
[2010-01-11 16:49:59 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTEMP
[2010-01-10 19:12:46 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Futuremark Shared
[2010-01-10 19:12:46 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Futuremark
[2010-01-10 12:40:00 | 00,000,000 | ---D | C] -- C:\Program Files\MadOnion.com
[2010-01-10 12:36:32 | 00,000,000 | ---D | C] -- C:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition
[2010-01-10 12:18:12 | 00,000,000 | ---D | C] -- C:\Program Files\PowerStrip
[2010-01-10 10:28:49 | 00,000,000 | ---D | C] -- C:\Program Files\SpeedFan
[2010-01-10 10:24:47 | 00,253,952 | ---- | C] (home) -- C:\WINDOWS\System32\histogram.ocx
[2010-01-10 10:24:47 | 00,188,416 | ---- | C] (SoftShape Development) -- C:\WINDOWS\System32\actsplash.ocx
[2010-01-10 10:04:38 | 00,000,000 | ---D | C] -- C:\Program Files\Prime95
[2010-01-10 09:34:24 | 00,000,000 | ---D | C] -- C:\Program Files\ASUS
[2010-01-10 09:28:34 | 00,181,760 | ---- | C] (Silicon Image, Inc) -- C:\WINDOWS\System32\drivers\Si3132r5.sys
[2010-01-10 09:28:34 | 00,078,336 | ---- | C] (Silicon Image) -- C:\WINDOWS\System32\SilSupp.cpl
[2010-01-10 09:28:34 | 00,010,368 | ---- | C] (Silicon Image, Inc.) -- C:\WINDOWS\System32\drivers\SiWinAcc.sys
[2010-01-10 09:28:30 | 00,000,000 | ---D | C] -- C:\Program Files\Silicon Image
[2010-01-10 09:23:45 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang
[2010-01-10 09:06:24 | 00,000,000 | ---D | C] -- C:\Program Files\Realtek AC97
[2010-01-09 14:16:11 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\Ahead
[2010-01-01 20:10:40 | 00,000,000 | --SD | C] -- C:\Documents and Settings\Admin\Moje dokumenty\Moje wideo
[2010-01-01 20:10:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Moje dokumenty\RCT3
[2010-01-01 20:10:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dane aplikacji\Atari
[2009-12-06 12:36:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Google
[2009-12-06 12:32:01 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Google

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2010-01-31 08:25:50 | 00,348,371 | ---- | M] () -- C:\WINDOWS\System32\vsconfig.xml
[2010-01-31 08:25:41 | 00,203,767 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2010-01-31 08:25:29 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010-01-31 08:25:25 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-01-31 08:23:47 | 05,505,024 | -H-- | M] () -- C:\Documents and Settings\Admin\NTUSER.DAT
[2010-01-31 08:23:47 | 00,000,188 | -HS- | M] () -- C:\Documents and Settings\Admin\ntuser.ini
[2010-01-30 19:10:09 | 11,232,1464 | ---- | M] ( ) -- C:\Documents and Settings\Admin\Pulpit\CyberLink.2227(Patch)_DVD091022-07.exe
[2010-01-30 15:28:36 | 00,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010-01-29 21:39:21 | 00,000,917 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\Revo Uninstaller.lnk
[2010-01-29 21:34:36 | 00,001,707 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Avira AntiVir Control Center.lnk
[2010-01-29 21:15:37 | 00,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010-01-29 20:55:37 | 00,548,864 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Admin\Pulpit\OTL.exe
[2010-01-29 20:29:37 | 00,105,156 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\bookmarks-2010-01-29.json
[2010-01-29 20:29:31 | 00,487,501 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\bookmarks.html
[2010-01-29 17:00:27 | 00,000,477 | ---- | M] () -- C:\WINDOWS\win.ini
[2010-01-29 17:00:27 | 00,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010-01-29 17:00:27 | 00,000,211 | -HS- | M] () -- C:\boot.ini
[2010-01-29 16:44:24 | 44,589,926 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\TvP_5FactPush.avi
[2010-01-29 16:25:54 | 26,946,398 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\TvZ_8Rax_Mech_Game.avi
[2010-01-29 16:21:23 | 00,048,640 | ---- | M] () -- C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-01-28 19:25:47 | 76,150,784 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\TvZ_General_Tips_Part_2.avi
[2010-01-27 23:27:12 | 00,771,299 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\1264626044484.gif
[2010-01-27 23:26:19 | 00,343,250 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\1264621394777.gif
[2010-01-27 23:26:09 | 01,368,698 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\1264630060680.gif
[2010-01-27 23:24:39 | 02,022,006 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\1264630836568.gif
[2010-01-26 20:09:52 | 14,227,572 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\microcontrol_mappack_by8882.zip
[2010-01-25 21:20:43 | 04,345,939 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\2 inches of blood - deadly sinners.mp3
[2010-01-25 20:23:30 | 68,518,400 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\TvZ_General_Tips_Part_1.avi
[2010-01-25 19:03:31 | 77,032,960 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\TvP_General_Tips.avi
[2010-01-24 23:47:28 | 01,577,648 | -H-- | M] () -- C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2010-01-24 21:42:00 | 00,414,997 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\mousepath.exe.zip
[2010-01-24 11:04:35 | 00,000,738 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\ICCup Launcher.lnk
[2010-01-24 08:28:35 | 00,650,436 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\1264316966250.jpg
[2010-01-23 15:10:55 | 00,000,803 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\CoreTemp.ini
[2010-01-23 15:10:55 | 00,000,011 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\Plugins.ini
[2010-01-23 14:59:08 | 00,545,435 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\30second.mp3
[2010-01-23 14:58:58 | 00,578,036 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\socks.mp3
[2010-01-22 18:45:54 | 01,112,188 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\boioioioi.mp3
[2010-01-21 21:41:08 | 00,001,533 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Neostrada TP.lnk
[2010-01-21 20:57:10 | 03,932,214 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\bez tytułu.bmp
[2010-01-19 22:22:46 | 00,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk
[2010-01-16 07:46:44 | 31,375,5288 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\Prophesy of Pendor V2.5.zip
[2010-01-14 03:03:09 | 00,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010-01-13 18:26:14 | 00,509,070 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2010-01-13 18:26:14 | 00,449,320 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-01-13 18:26:14 | 00,094,088 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2010-01-13 18:26:14 | 00,074,808 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-01-13 18:26:14 | 00,004,792 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-01-13 18:24:16 | 00,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-01-10 21:55:50 | 00,000,169 | ---- | M] () -- C:\WINDOWS\RtlRack.ini
[2010-01-10 12:41:03 | 00,001,768 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\3DMark2001 SE.lnk
[2010-01-10 11:11:35 | 00,026,765 | ---- | M] () -- C:\WINDOWS\Ascd_tmp.ini
[2010-01-10 10:28:49 | 00,000,045 | ---- | M] () -- C:\WINDOWS\System32\initdebug.nfo
[2010-01-10 09:26:20 | 00,026,803 | ---- | M] () -- C:\WINDOWS\Ascd_log.ini
[2010-01-10 09:23:46 | 00,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav
[2010-01-10 09:23:45 | 00,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav
[2010-01-07 17:37:19 | 41,865,9304 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\carving_technica.mpg
[2010-01-07 16:07:14 | 00,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010-01-07 16:07:04 | 00,019,160 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2010-01-29 21:39:21 | 00,000,917 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\Revo Uninstaller.lnk
[2010-01-29 21:34:35 | 00,001,707 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Avira AntiVir Control Center.lnk
[2010-01-29 20:29:37 | 00,105,156 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\bookmarks-2010-01-29.json
[2010-01-29 20:29:31 | 00,487,501 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\bookmarks.html
[2010-01-29 15:57:31 | 26,946,398 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\TvZ_8Rax_Mech_Game.avi
[2010-01-29 15:57:00 | 44,589,926 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\TvP_5FactPush.avi
[2010-01-28 18:06:12 | 76,150,784 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\TvZ_General_Tips_Part_2.avi
[2010-01-27 23:27:11 | 00,771,299 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\1264626044484.gif
[2010-01-27 23:26:18 | 00,343,250 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\1264621394777.gif
[2010-01-27 23:26:08 | 01,368,698 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\1264630060680.gif
[2010-01-27 23:24:37 | 02,022,006 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\1264630836568.gif
[2010-01-26 19:53:41 | 14,227,572 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\microcontrol_mappack_by8882.zip
[2010-01-25 21:20:42 | 04,345,939 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\2 inches of blood - deadly sinners.mp3
[2010-01-25 19:13:46 | 68,518,400 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\TvZ_General_Tips_Part_1.avi
[2010-01-25 17:38:58 | 77,032,960 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\TvP_General_Tips.avi
[2010-01-24 21:41:41 | 00,414,997 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\mousepath.exe.zip
[2010-01-24 11:04:35 | 00,000,738 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\ICCup Launcher.lnk
[2010-01-24 08:27:46 | 00,650,436 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\1264316966250.jpg
[2010-01-23 15:10:55 | 00,000,803 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\CoreTemp.ini
[2010-01-23 15:10:55 | 00,000,011 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\Plugins.ini
[2010-01-23 14:58:31 | 00,545,435 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\30second.mp3
[2010-01-23 14:58:19 | 00,578,036 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\socks.mp3
[2010-01-22 18:44:27 | 01,112,188 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\boioioioi.mp3
[2010-01-21 21:41:08 | 00,001,533 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Neostrada TP.lnk
[2010-01-21 20:57:10 | 03,932,214 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\bez tytułu.bmp
[2010-01-19 22:22:46 | 00,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk
[2010-01-16 00:13:32 | 31,375,5288 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\Prophesy of Pendor V2.5.zip
[2010-01-10 12:41:03 | 00,001,768 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\3DMark2001 SE.lnk
[2010-01-10 11:47:12 | 00,106,496 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\SUPER_PI.EXE
[2010-01-10 11:46:53 | 00,378,384 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\Core Temp.exe
[2010-01-10 11:11:35 | 00,026,765 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2010-01-10 10:28:49 | 00,000,045 | ---- | C] () -- C:\WINDOWS\System32\initdebug.nfo
[2010-01-10 10:24:47 | 00,389,120 | ---- | C] () -- C:\WINDOWS\System32\actskn43.ocx
[2010-01-10 09:34:25 | 00,024,576 | R--- | C] () -- C:\WINDOWS\System32\AsIO.dll
[2010-01-10 09:34:25 | 00,004,962 | R--- | C] () -- C:\WINDOWS\System32\drivers\AsIO.sys
[2010-01-10 09:34:24 | 00,005,120 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp64.sys
[2010-01-10 09:34:24 | 00,003,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp32.sys
[2010-01-10 09:23:45 | 00,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav
[2010-01-10 09:23:45 | 00,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav
[2010-01-10 09:06:28 | 00,000,164 | R--- | C] () -- C:\WINDOWS\avrack.ini
[2010-01-07 16:02:07 | 41,865,9304 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\carving_technica.mpg
[2009-12-31 18:40:33 | 00,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009-12-21 17:02:32 | 00,000,319 | ---- | C] () -- C:\WINDOWS\game.ini
[2009-12-01 22:25:00 | 00,208,896 | ---- | C] () -- C:\WINDOWS\System32\glut32.dll
[2009-11-18 23:18:07 | 00,180,224 | ---- | C] () -- C:\WINDOWS\System32\WinVd32.sys
[2009-10-23 19:44:16 | 00,000,080 | ---- | C] () -- C:\WINDOWS\sierra.ini
[2009-10-01 15:34:59 | 00,000,174 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
[2009-10-01 15:32:49 | 00,001,021 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2009-09-22 18:34:35 | 01,724,416 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2009-09-22 18:34:35 | 01,101,824 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2009-09-22 18:34:35 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2009-09-22 18:34:33 | 01,507,328 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2009-09-21 21:58:14 | 00,796,032 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2009-08-07 18:51:34 | 00,178,430 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2009-07-31 08:54:08 | 00,639,224 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2009-07-30 12:23:39 | 00,003,285 | ---- | C] () -- C:\WINDOWS\VPlayer.INI
[2009-07-30 12:16:34 | 00,048,640 | ---- | C] () -- C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-07-30 12:08:10 | 00,168,448 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2009-07-30 12:08:09 | 00,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2009-07-30 12:08:08 | 00,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2009-07-30 12:08:08 | 00,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2009-07-30 12:08:07 | 03,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2009-07-30 12:08:06 | 00,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2009-07-30 12:08:06 | 00,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2009-07-30 06:43:58 | 00,005,606 | ---- | C] () -- C:\WINDOWS\System32\stci.dll
[2009-07-30 06:43:23 | 00,041,068 | ---- | C] () -- C:\WINDOWS\System32\ActPanel.dll
[2009-07-30 06:41:19 | 00,000,169 | ---- | C] () -- C:\WINDOWS\RtlRack.ini
[2009-07-30 06:37:37 | 00,156,672 | R--- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2009-07-30 06:33:39 | 00,000,266 | R--- | C] () -- C:\WINDOWS\System32\raidmgmt.ini
[2009-07-30 00:33:42 | 00,026,803 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini
[2009-07-30 00:33:30 | 00,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2009-07-30 00:33:24 | 00,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2009-06-19 19:06:22 | 00,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll
[2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2005-12-07 11:31:00 | 00,202,752 | R--- | C] () -- C:\WINDOWS\System32\CddbCdda.dll
[1997-06-14 01:56:08 | 00,056,832 | ---- | C] () -- C:\WINDOWS\System32\iyvu9_32.dll
[1996-04-03 20:33:26 | 00,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys

[color=#E56717]========== LOP Check ==========[/color]

[2009-11-18 23:24:35 | 00,000,000 | -HSD | M] -- C:\Documents and Settings\Admin\Dane aplikacji\.#
[2010-01-01 20:10:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Atari
[2010-01-27 23:33:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\BESTplayer
[2009-08-01 15:33:17 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Canneverbe_Limited
[2009-08-15 17:15:07 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\CityInteractive
[2009-07-31 22:34:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Gadu-Gadu
[2009-11-23 22:19:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\GanymedeNet
[2009-12-11 22:30:18 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\ipla
[2009-12-01 16:24:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Mount&Blade
[2010-01-23 14:59:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\MyPhoneExplorer
[2009-12-28 20:24:12 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\NeatImage SL
[2009-09-12 20:55:31 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Nokia
[2009-08-01 10:17:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Nokia Multimedia Player
[2009-08-28 08:49:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\OpenOffice.org
[2009-08-01 10:16:18 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\PC Suite
[2009-08-01 07:58:10 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Sports Interactive
[2009-09-13 06:20:21 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Teleca
[2009-09-16 17:12:10 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\The Creative Assembly
[2009-09-12 21:36:47 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Codemasters
[2009-07-30 12:15:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DFX
[2010-01-29 21:22:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Hagel Technologies
[2009-08-01 09:58:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations
[2009-10-17 20:05:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla
[2009-08-01 10:12:43 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite
[2009-08-01 07:57:54 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Sports Interactive
[2009-09-11 20:08:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Teleca
[2010-01-31 08:25:39 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2009-07-31 09:12:07 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Test Drive Unlimited
[2009-12-27 20:32:46 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{FD71DB76-A64B-4A16-BD57-1CC61B92D082}

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Custom Scans ==========[/color]


[color=#A23BEC]< >[/color]

[color=#A23BEC]< %systemdrive%\*.* >[/color]
[2009-08-25 21:36:12 | 00,000,000 | ---- | M] () -- C:\AILog.txt
[2010-01-10 09:06:48 | 00,000,189 | ---- | M] () -- C:\audio.log
[2009-07-30 00:23:32 | 00,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010-01-29 17:00:27 | 00,000,211 | -HS- | M] () -- C:\boot.ini
[2004-08-04 13:00:00 | 00,004,952 | RHS- | M] () -- C:\Bootfont.bin
[2009-07-30 00:23:32 | 00,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2009-07-30 07:32:04 | 00,000,524 | ---- | M] () -- C:\INSTALL.LOG
[2009-07-30 00:23:32 | 00,000,000 | RHS- | M] () -- C:\IO.SYS
[2009-07-31 08:46:24 | 00,002,697 | ---- | M] () -- C:\LGSInst.Log
[2009-07-30 00:23:32 | 00,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2004-08-04 13:00:00 | 00,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2009-07-30 08:51:01 | 00,251,152 | RHS- | M] () -- C:\ntldr
[2010-01-10 09:02:24 | 00,000,086 | ---- | M] () -- C:\nvidia.log
[2010-01-31 08:25:09 | 16,094,08512 | -HS- | M] () -- C:\pagefile.sys
[2009-11-18 23:18:09 | 00,000,345 | ---- | M] () -- C:\Sys_LogWin.log

[color=#E56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 229 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:8FF81EB0
@Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:6CC69D3C
< End of report >
[/log]
A tutaj log po operacji, w razie czego ;)
[log]All processes killed
========== OTL ==========
File move failed. G:\autorun.exe scheduled to be moved on reboot.
File move failed. G:\autorun.inf scheduled to be moved on reboot.
File move failed. H:\Autorun.exe scheduled to be moved on reboot.
File move failed. H:\Autorun.inf scheduled to be moved on reboot.
File move failed. I:\AUTORUN.INF scheduled to be moved on reboot.
========== FILES ==========
File\Folder I:\autorun.exe not found.
File\Folder C:\autorun.exe not found.
File\Folder D:\autorun.exe not found.
File\Folder E:\autorun.exe not found.
File move failed. H:\Autorun.exe scheduled to be moved on reboot.
File move failed. I:\AUTORUN.INF scheduled to be moved on reboot.
File\Folder C:\autorun.inf not found.
File\Folder D:\autorun.inf not found.
File\Folder E:\autorun.inf not found.
File move failed. H:\Autorun.inf scheduled to be moved on reboot.
========== COMMANDS ==========

[EMPTYTEMP]

User: Admin
->Temp folder emptied: 4573587790 bytes
->Temporary Internet Files folder emptied: 1789320 bytes
->Java cache emptied: 33197337 bytes
->FireFox cache emptied: 75547765 bytes

User: Administrator

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Gość

User: LocalService
->Temp folder emptied: 16384 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Pomocnik

User: SUPPORT_388945a0

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2134153 bytes
%systemroot%\System32 .tmp files removed: 1613396 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 64973989 bytes
RecycleBin emptied: 1114576 bytes

Total Files Cleaned = 4 534,00 mb


OTL by OldTimer - Version 3.1.27.0 log created on 01312010_082254

Files\Folders moved on Reboot...
File move failed. G:\autorun.exe scheduled to be moved on reboot.
File move failed. G:\autorun.inf scheduled to be moved on reboot.
File move failed. H:\Autorun.exe scheduled to be moved on reboot.
File move failed. H:\Autorun.inf scheduled to be moved on reboot.
File move failed. I:\AUTORUN.INF scheduled to be moved on reboot.
C:\Documents and Settings\Admin\Ustawienia lokalne\Temp\~DF519.tmp moved successfully.
File\Folder C:\WINDOWS\temp\ZLT05004.TMP not found!

Registry entries deleted on Reboot...
[/log]

Swoją drogą- co może mieć wpływ na drastyczne zwolnienie faktycznego downloadu(neostrada 1mb), który teraz osiąga max 30 kb/s (powinien ~120 kb/s), jeśli wszystkie speed metery i pingomierze ;) pokazują, że download jest na poziomie 100-120? :F Dodam, że sciągałem pliki z różnych źródeł i prędkość nie przekroczyła 30kb/s, problem z tym mam od około dwóch tygodni, tak samo z siebie się zrobiło :F

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.