Maverick65 utworzono 29 stycznia 2010 utworzono 29 stycznia 2010 (edytowane) Witam serdecznie. Jako, że mój komputer ostatnio bardzo dziwnie się zachowuje(częste restarty komputera, znikanie treści stron internetowych(sic!), spowolnienie internetu, tak samo z siebie) postanowiłem działać Proszę o sprawdzenie loga: [log] OTL logfile created on: 2010-01-29 20:56:30 - Run 1 OTL by OldTimer - Version 3.1.27.0 Folder = C:\Documents and Settings\Admin\Pulpit Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.5512) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1 023,00 Mb Total Physical Memory | 526,00 Mb Available Physical Memory | 51,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 80,00% Paging File free Paging file location(s): C:\pagefile.sys 0 0 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 30,30 Gb Total Space | 4,87 Gb Free Space | 16,08% Space Free | Partition Type: NTFS Drive D: | 203,44 Gb Total Space | 6,69 Gb Free Space | 3,29% Space Free | Partition Type: NTFS E: Drive not present or media not loaded F: Drive not present or media not loaded Drive G: | 1,22 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS Drive H: | 5,56 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF Drive I: | 455,12 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS Computer Name: DOM-3044D5F8DF2 Current User Name: Admin Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: On Skip Microsoft Files: On File Age = 30 Days Output = Standard [color=#E56717]========== Processes (All) ==========[/color] PRC - [2010-01-29 20:55:37 | 00,548,864 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Admin\Pulpit\OTL.exe PRC - [2010-01-14 17:08:32 | 00,908,248 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2009-11-25 00:51:40 | 00,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe PRC - [2009-11-25 00:51:35 | 00,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe PRC - [2009-11-25 00:51:21 | 00,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe PRC - [2009-11-25 00:48:48 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe PRC - [2009-11-25 00:43:56 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe PRC - [2009-11-24 20:03:55 | 00,396,288 | ---- | M] (Trend Micro Inc.) -- C:\Program Files\Trend Micro\HijackThis\HijackThis.exe PRC - [2009-09-04 16:22:56 | 01,391,136 | ---- | M] (Hagel Technologies Ltd.) -- C:\Program Files\DU Meter\DUMeterSvc.exe PRC - [2009-08-22 19:25:00 | 02,781,184 | ---- | M] () -- C:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner.exe PRC - [2009-08-06 18:24:06 | 00,053,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe PRC - [2009-07-30 10:46:36 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe PRC - [2009-07-20 10:51:52 | 00,935,208 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe PRC - [2009-02-09 12:25:57 | 00,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe PRC - [2008-11-19 01:28:00 | 00,163,908 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe PRC - [2008-11-13 14:18:56 | 02,405,776 | ---- | M] (Check Point Software Technologies LTD) -- C:\WINDOWS\system32\ZoneLabs\vsmon.exe PRC - [2008-11-13 14:18:56 | 00,981,904 | ---- | M] (Check Point Software Technologies LTD) -- C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe PRC - [2008-04-14 21:51:50 | 00,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe PRC - [2008-04-14 21:51:44 | 00,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe PRC - [2008-04-14 21:51:44 | 00,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe PRC - [2008-04-14 21:51:44 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS] PRC - [2008-04-14 21:51:44 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE] PRC - [2008-04-14 21:51:44 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS] PRC - [2008-04-14 21:51:44 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 21:51:44 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 21:51:44 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [IMGSVC] PRC - [2008-04-14 21:51:44 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH] PRC - [2008-04-14 21:51:32 | 00,156,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\notepad.exe PRC - [2008-04-14 21:51:24 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe PRC - [2008-04-14 21:51:18 | 00,977,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2008-04-14 21:51:12 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe PRC - [2008-04-14 21:51:04 | 00,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe PRC - [2007-04-02 13:15:40 | 00,061,440 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Shared Files\CTDevSrv.exe PRC - [2007-03-18 23:05:02 | 00,630,784 | ---- | M] () -- C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe PRC - [2006-11-12 11:48:46 | 00,157,592 | ---- | M] (DT Soft Ltd.) -- C:\Program Files\DAEMON Tools\daemon.exe PRC - [2006-05-21 08:43:14 | 00,155,648 | ---- | M] (Y'z@Home) -- C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe PRC - [2006-05-21 08:43:08 | 00,180,224 | ---- | M] () -- C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe PRC - [2006-02-28 11:42:38 | 00,229,376 | ---- | M] (Apple Computer, Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe PRC - [2005-08-04 14:24:46 | 03,627,008 | ---- | M] () -- C:\Program Files\ASUS\Ai Booster\OverClk.exe PRC - [2003-10-16 18:07:12 | 00,626,688 | ---- | M] (France Télécom R&D) -- C:\Program Files\Neostrada TP\NeostradaTP.exe PRC - [2003-10-16 18:07:12 | 00,020,480 | ---- | M] (France Télécom R&D) -- C:\Program Files\Neostrada TP\Watch.exe PRC - [2003-10-16 18:07:10 | 00,200,704 | ---- | M] (France Télécom R&D) -- C:\Program Files\Neostrada TP\ComComp.exe PRC - [1999-12-13 08:01:00 | 00,044,032 | ---- | M] (Creative Technology Ltd) -- C:\WINDOWS\system32\CTSVCCDA.EXE [color=#E56717]========== Modules (All) ==========[/color] MOD - [2010-01-29 20:55:37 | 00,548,864 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Admin\Pulpit\OTL.exe MOD - [2009-07-30 10:37:09 | 00,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll MOD - [2009-06-25 09:27:54 | 00,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll MOD - [2009-04-15 15:54:38 | 00,585,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll MOD - [2009-03-21 15:08:59 | 01,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll MOD - [2009-02-09 11:53:44 | 00,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll MOD - [2009-02-09 11:53:43 | 00,722,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll MOD - [2008-10-23 13:42:41 | 00,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll MOD - [2008-06-17 20:03:15 | 08,489,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll MOD - [2008-04-14 21:51:58 | 00,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv MOD - [2008-04-14 21:50:58 | 00,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll MOD - [2008-04-14 21:50:58 | 00,172,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wldap32.dll MOD - [2008-04-14 21:50:58 | 00,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll MOD - [2008-04-14 21:50:58 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll MOD - [2008-04-14 21:50:48 | 00,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll MOD - [2008-04-14 21:50:48 | 00,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll MOD - [2008-04-14 21:50:46 | 01,287,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll MOD - [2008-04-14 21:50:46 | 00,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll MOD - [2008-04-14 21:50:46 | 00,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll MOD - [2008-04-14 21:50:46 | 00,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samlib.dll MOD - [2008-04-14 21:50:46 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll MOD - [2008-04-14 21:50:42 | 00,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntmarta.dll MOD - [2008-04-14 21:50:40 | 00,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll MOD - [2008-04-14 21:50:32 | 00,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll MOD - [2008-04-14 21:50:14 | 00,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll MOD - [2008-04-14 21:29:10 | 01,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll MOD - [2007-03-18 23:04:22 | 00,069,632 | ---- | M] () -- C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.dll MOD - [2006-05-21 08:43:14 | 00,053,248 | ---- | M] () -- C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.dll MOD - [2006-05-21 08:43:08 | 00,065,536 | ---- | M] () -- C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2009-11-25 00:51:35 | 00,138,680 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus) SRV - [2009-11-25 00:51:21 | 00,254,040 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner) SRV - [2009-11-25 00:48:48 | 00,352,920 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner) SRV - [2009-11-25 00:43:56 | 00,018,752 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv) SRV - [2009-09-29 16:09:49 | 00,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service) SRV - [2009-09-04 16:22:56 | 01,391,136 | ---- | M] (Hagel Technologies Ltd.) [Auto | Running] -- C:\Program Files\DU Meter\DUMeterSvc.exe -- (DUMeterSvc) SRV - [2009-07-30 10:46:36 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) [Auto | Running] -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService) SRV - [2009-07-20 10:51:52 | 00,935,208 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0) SRV - [2009-06-22 16:44:00 | 03,087,772 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\WINDOWS\System32\GameMon.des -- (npggsvc) SRV - [2008-11-20 20:18:52 | 00,136,120 | ---- | M] (Google) [On_Demand | Stopped] -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc) SRV - [2008-11-19 01:28:00 | 00,163,908 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\WINDOWS\system32\nvsvc32.exe -- (NVSvc) SRV - [2008-11-13 14:18:56 | 02,405,776 | ---- | M] (Check Point Software Technologies LTD) [Auto | Running] -- C:\WINDOWS\System32\ZoneLabs\vsmon.exe -- (vsmon) SRV - [2008-03-09 12:54:58 | 00,187,120 | ---- | M] (Systweak Inc) [Auto | Stopped] -- C:\Program Files\Systweak\Systweak CacheBoost\cbSrv.exe -- (CacheBoost Service) SRV - [2007-04-02 13:15:40 | 00,061,440 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files\Creative\Shared Files\CTDevSrv.exe -- (CTDevice_Srv) SRV - [2007-03-26 12:06:24 | 00,292,864 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2006-02-28 11:42:38 | 00,229,376 | ---- | M] (Apple Computer, Inc.) [Auto | Running] -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service) SRV - [2005-04-03 23:41:10 | 00,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT) SRV - [1999-12-13 08:01:00 | 00,044,032 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\WINDOWS\system32\CTSVCCDA.EXE -- (Creative Service for CDROM Access) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2009-11-25 00:50:59 | 00,094,160 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswmon2.sys -- (aswMon2) DRV - [2009-11-25 00:50:12 | 00,114,768 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP) DRV - [2009-11-25 00:50:00 | 00,020,560 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk) DRV - [2009-11-25 00:49:07 | 00,048,560 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi) DRV - [2009-11-25 00:48:57 | 00,023,120 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr) DRV - [2009-11-25 00:47:54 | 00,027,408 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aavmker4.sys -- (Aavmker4) DRV - [2009-11-18 23:18:07 | 00,180,224 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\WinVd32.sys -- (WinVd32) DRV - [2009-11-18 23:18:02 | 00,010,752 | ---- | M] () [File_System | Auto | Running] -- C:\WINDOWS\system32\WinFLdrv.sys -- (WinFLdrv) DRV - [2009-09-23 09:41:58 | 00,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi) DRV - [2009-08-22 19:25:00 | 00,009,088 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner32.sys -- (RivaTuner32) DRV - [2009-07-31 08:54:08 | 00,639,224 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2009-04-28 21:20:06 | 00,044,944 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20) DRV - [2008-11-19 01:28:00 | 06,204,032 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [2008-11-13 14:19:00 | 00,353,680 | ---- | M] (Check Point Software Technologies LTD) [Kernel | System | Running] -- C:\WINDOWS\system32\vsdatant.sys -- (vsdatant) DRV - [2008-09-17 14:14:00 | 00,027,672 | R--- | M] (EnTech Taiwan) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Entech.sys -- (ENTECH) DRV - [2008-04-21 06:19:58 | 00,051,648 | ---- | M] (Check Point Software Technologies LTD) [Kernel | Boot | Running] -- C:\WINDOWS\system32\ZoneLabs\srescan.sys -- (srescan) DRV - [2008-04-13 23:15:30 | 00,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum) DRV - [2008-04-13 21:09:18 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv) DRV - [2007-08-02 16:32:26 | 00,022,784 | ---- | M] (Razer (Asia-Pacific) Pte Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\dadder.sys -- (DAdderFltr) DRV - [2007-07-15 03:37:04 | 00,027,992 | ---- | M] (EnTech Taiwan) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\pstrip.sys -- (PStrip) DRV - [2007-06-19 08:51:20 | 00,107,304 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816mdm.sys -- (s816mdm) DRV - [2007-06-19 08:51:18 | 00,099,112 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816mgmt.sys -- (s816mgmt) Sony Ericsson Device 816 USB WMC Device Management Drivers (WDM) DRV - [2007-06-19 08:51:18 | 00,097,704 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816unic.sys -- (s816unic) Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (WDM) DRV - [2007-06-19 08:51:18 | 00,097,320 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816obex.sys -- (s816obex) DRV - [2007-06-19 08:51:18 | 00,021,928 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816nd5.sys -- (s816nd5) Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (NDIS) DRV - [2007-06-19 08:51:18 | 00,013,864 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816mdfl.sys -- (s816mdfl) DRV - [2007-06-19 08:51:16 | 00,081,832 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816bus.sys -- (s816bus) Sony Ericsson Device 816 driver (WDM) DRV - [2007-02-22 09:15:56 | 00,137,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcd.sys -- (nmwcd) DRV - [2007-02-22 09:15:14 | 00,012,288 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdcm.sys -- (nmwcdcm) DRV - [2007-02-22 09:15:14 | 00,012,288 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdcj.sys -- (nmwcdcj) DRV - [2007-02-22 09:15:14 | 00,008,320 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdc.sys -- (nmwcdc) DRV - [2006-09-24 14:28:46 | 00,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan) DRV - [2005-08-19 10:31:52 | 03,644,800 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM) DRV - [2005-08-18 10:52:06 | 00,093,568 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvata.sys -- (nvata) DRV - [2005-07-26 10:48:30 | 00,012,928 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus) DRV - [2005-07-26 10:48:28 | 00,033,664 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD) DRV - [2005-03-31 11:28:24 | 00,181,760 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\Si3132r5.sys -- (Si3132r5) DRV - [2005-03-30 07:24:00 | 00,230,400 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp) DRV - [2005-03-09 14:53:00 | 00,043,008 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8) DRV - [2004-11-01 12:21:32 | 00,010,368 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\SiWinAcc.sys -- (SiFilter) DRV - [2004-10-14 10:52:28 | 00,004,962 | R--- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AsIO.sys -- (AsIO) DRV - [2004-08-13 03:56:20 | 00,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor) DRV - [2004-08-04 13:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink) DRV - [2003-12-08 10:53:48 | 00,053,600 | ---- | M] (THOMSON) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcan5wn.sys -- (alcan5wn) SpeedTouch USB ADSL PPP Networking Driver (NDISWAN) DRV - [2003-12-08 10:53:46 | 00,070,688 | ---- | M] (THOMSON) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcaudsl.sys -- (alcaudsl) DRV - [2003-05-14 12:42:58 | 00,013,920 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WmHidLo.sys -- (WmHidLo) DRV - [2003-05-14 12:42:56 | 00,021,216 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WmFilter.sys -- (WmFilter) DRV - [2003-05-14 12:42:50 | 00,010,144 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WmBEnum.sys -- (WmBEnum) DRV - [2003-05-14 12:42:48 | 00,005,728 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WmVirHid.sys -- (WmVirHid) DRV - [2003-05-14 12:42:44 | 00,044,288 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WmXlCore.sys -- (WmXlCore) DRV - [2001-08-17 23:00:04 | 00,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401) DRV - [1996-04-03 20:33:26 | 00,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1482476501-527237240-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.neostrada.pl IE - HKU\S-1-5-21-1482476501-527237240-725345543-1003\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Neostrada TP\SearchPageURL.dll () IE - HKU\S-1-5-21-1482476501-527237240-725345543-1003\S-1-5-21-1482476501-527237240-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultengine: "Ask.com" FF - prefs.js..browser.search.defaultenginename: "Ask.com" FF - prefs.js..browser.search.order.1: "Ask.com" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "http://pl.start3.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:pl:official" FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.1.1 FF - prefs.js..extensions.enabledItems: {6AC85730-7D0F-4de0-B3FA-21142DD85326}:2.0.2 FF - prefs.js..extensions.enabledItems: {a7c6cf7f-112c-4500-a7ea-39801a327e5f}:1.0.7 FF - prefs.js..extensions.enabledItems: fotofox@mozilla.com:1.7 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {75CEEE46-9B64-46f8-94BF-54012DE155F0}:0.3.9 FF - prefs.js..extensions.enabledItems: {73a6fe31-595d-460b-a920-fcc0f8843232}:1.9.9.18 FF - prefs.js..extensions.enabledItems: pixelperfectplugin@openhouseconcepts.com:1.1.0 FF - prefs.js..extensions.enabledItems: tineye@ideeinc.com:0.7.1 FF - prefs.js..extensions.enabledItems: yslow@yahoo-inc.com:2.0.2 FF - prefs.js..extensions.enabledItems: {07b2a769-ed19-4483-87ce-c643914c81bb}:3.0.0.87 FF - prefs.js..keyword.URL: "http://www.google.com/search?ie=UTF-...ient&gfns=1&q=" FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-01-16 09:06:10 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-01-14 17:08:50 | 00,000,000 | ---D | M] [2009-07-30 06:49:33 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Extensions [2010-01-29 20:14:07 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions [2010-01-20 22:06:08 | 00,000,000 | ---D | M] (Vista-aero) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\{07b2a769-ed19-4483-87ce-c643914c81bb} [2009-11-07 09:56:18 | 00,000,000 | ---D | M] (ColorZilla) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326} [2009-12-07 18:53:10 | 00,000,000 | ---D | M] (NoScript) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232} [2009-11-07 09:56:16 | 00,000,000 | ---D | M] (MeasureIt) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\{75CEEE46-9B64-46f8-94BF-54012DE155F0} [2009-12-07 18:53:09 | 00,000,000 | ---D | M] (FireFTP) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f} [2009-08-12 20:25:35 | 00,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [2009-12-07 18:53:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\fotofox@mozilla.com [2009-11-07 09:56:19 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\pixelperfectplugin@openhouseconcepts.com [2009-11-26 17:05:37 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\tineye@ideeinc.com [2009-12-07 18:53:09 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\yslow@yahoo-inc.com [2010-01-20 22:06:16 | 00,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\{07b2a769-ed19-4483-87ce-c643914c81bb}\chrome\mozapps\extensions [2010-01-29 19:30:39 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2009-11-16 16:13:16 | 00,120,296 | ---- | M] ( ) -- C:\Program Files\Mozilla Firefox\plugins\npganymedenet.dll [2010-01-14 17:08:42 | 00,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-01-14 17:08:43 | 00,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-01-14 17:08:43 | 00,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-01-14 17:08:43 | 00,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-01-14 17:08:43 | 00,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-01-14 17:08:43 | 00,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2004-08-04 13:00:00 | 00,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.) O3 - HKU\S-1-5-21-1482476501-527237240-725345543-1003\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found. O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software) O4 - HKLM..\Run: [DAEMON Tools] C:\Program Files\DAEMON Tools\daemon.exe (DT Soft Ltd.) O4 - HKLM..\Run: [Launch Ai Booster] C:\Program Files\ASUS\Ai Booster\OverClk.exe () O4 - HKLM..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe (Microsoft Corporation) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [RivaTuner] C:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner.exe () O4 - HKLM..\Run: [RivaTunerStartupDaemon] C:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner.exe () O4 - HKLM..\Run: [ZoneAlarm Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe (Check Point Software Technologies LTD) O4 - HKU\.DEFAULT..\Run: [Nokia.PCSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe (Time Information Services Ltd.) O4 - HKU\S-1-5-18..\Run: [Nokia.PCSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe (Time Information Services Ltd.) O4 - Startup: C:\Documents and Settings\Admin\Menu Start\Programy\Autostart\RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe () O4 - Startup: C:\Documents and Settings\Admin\Menu Start\Programy\Autostart\TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe (AKSoftware) O4 - Startup: C:\Documents and Settings\Admin\Menu Start\Programy\Autostart\UberIcon.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe () O4 - Startup: C:\Documents and Settings\Admin\Menu Start\Programy\Autostart\Y'z Shadow.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe (Y'z@Home) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1482476501-527237240-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 95 00 00 00 [binary data] O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.) O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone. O15 - HKU\S-1-5-21-1482476501-527237240-725345543-1003\..Trusted Domains: internet ([]about in Internet) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14) O16 - DPF: {CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA} http://java.sun.com/products/plugin/autodl/jinstall-1_4_0_03-win.cab (Java Plug-in 1.4.0_03) O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009-07-30 00:23:32 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2008-10-13 19:44:59 | 00,136,448 | R--- | M] (Sports Interactive) - G:\autorun.exe -- [ CDFS ] O32 - AutoRun File - [2008-07-25 18:10:55 | 00,000,027 | R--- | M] () - G:\autorun.inf -- [ CDFS ] O32 - AutoRun File - [2009-04-30 03:57:32 | 00,054,544 | R--- | M] (Electronic Arts) - H:\Autorun.exe -- [ UDF ] O32 - AutoRun File - [2008-10-22 00:48:37 | 00,000,045 | R--- | M] () - H:\Autorun.inf -- [ UDF ] O32 - AutoRun File - [2000-01-13 16:04:18 | 00,000,066 | R--- | M] () - I:\AUTORUN.INF -- [ CDFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - comfile [open] -- "%1" %* O35 - exefile [open] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: Ias - C:\WINDOWS\system32\ias [2009-07-30 00:23:02 | 00,000,000 | ---D | M] NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2010-01-29 20:55:05 | 00,548,864 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Admin\Pulpit\OTL.exe [2010-01-21 21:50:24 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Moje dokumenty\@neostrada.pl [2010-01-19 22:22:47 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dane aplikacji\Malwarebytes [2010-01-19 22:22:44 | 00,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2010-01-19 22:22:42 | 00,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2010-01-19 22:22:42 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2010-01-19 22:22:42 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes [2010-01-17 21:35:32 | 00,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [2010-01-17 21:35:32 | 00,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [2010-01-17 21:35:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-01-17 21:35:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-01-17 21:34:04 | 00,114,768 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys [2010-01-17 21:34:04 | 00,097,480 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\AvastSS.scr [2010-01-17 21:34:04 | 00,048,560 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys [2010-01-17 21:34:04 | 00,027,408 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys [2010-01-17 21:34:04 | 00,023,120 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys [2010-01-17 21:34:04 | 00,020,560 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys [2010-01-17 21:34:03 | 00,094,160 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys [2010-01-17 21:34:03 | 00,093,424 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys [2010-01-17 21:33:50 | 01,280,480 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe [2010-01-17 21:28:47 | 00,000,000 | ---D | C] -- C:\Program Files\Alwil Software [2010-01-17 20:20:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Hagel Technologies [2010-01-17 20:20:11 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Hagel Technologies [2010-01-17 20:20:10 | 00,000,000 | ---D | C] -- C:\Program Files\DU Meter [2010-01-17 19:00:54 | 00,000,000 | ---D | C] -- C:\Program Files\ESET [2010-01-12 21:10:06 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Pulpit\4 chan [2010-01-11 16:49:59 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTEMP [2010-01-10 19:12:46 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Futuremark Shared [2010-01-10 19:12:46 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Futuremark [2010-01-10 12:40:00 | 00,000,000 | ---D | C] -- C:\Program Files\MadOnion.com [2010-01-10 12:36:32 | 00,000,000 | ---D | C] -- C:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition [2010-01-10 12:18:12 | 00,000,000 | ---D | C] -- C:\Program Files\PowerStrip [2010-01-10 10:28:49 | 00,000,000 | ---D | C] -- C:\Program Files\SpeedFan [2010-01-10 10:24:47 | 00,253,952 | ---- | C] (home) -- C:\WINDOWS\System32\histogram.ocx [2010-01-10 10:24:47 | 00,188,416 | ---- | C] (SoftShape Development) -- C:\WINDOWS\System32\actsplash.ocx [2010-01-10 10:04:38 | 00,000,000 | ---D | C] -- C:\Program Files\Prime95 [2010-01-10 09:34:24 | 00,000,000 | ---D | C] -- C:\Program Files\ASUS [2010-01-10 09:28:34 | 00,181,760 | ---- | C] (Silicon Image, Inc) -- C:\WINDOWS\System32\drivers\Si3132r5.sys [2010-01-10 09:28:34 | 00,078,336 | ---- | C] (Silicon Image) -- C:\WINDOWS\System32\SilSupp.cpl [2010-01-10 09:28:34 | 00,010,368 | ---- | C] (Silicon Image, Inc.) -- C:\WINDOWS\System32\drivers\SiWinAcc.sys [2010-01-10 09:28:30 | 00,000,000 | ---D | C] -- C:\Program Files\Silicon Image [2010-01-10 09:23:45 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang [2010-01-10 09:06:24 | 00,000,000 | ---D | C] -- C:\Program Files\Realtek AC97 [2010-01-09 14:16:11 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\Ahead [2010-01-01 20:10:40 | 00,000,000 | --SD | C] -- C:\Documents and Settings\Admin\Moje dokumenty\Moje wideo [2010-01-01 20:10:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Moje dokumenty\RCT3 [2010-01-01 20:10:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dane aplikacji\Atari [2009-12-31 11:38:22 | 01,568,768 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagX7.dll [2009-12-31 11:38:22 | 00,476,320 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXpr7.dll [2009-12-31 11:38:22 | 00,471,040 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXRA7.dll [2009-12-31 11:38:22 | 00,364,544 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\TwnLib4.dll [2009-12-31 11:38:22 | 00,262,144 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXR7.dll [2009-12-31 11:38:22 | 00,106,496 | ---- | C] (Pegasus Software) -- C:\WINDOWS\System32\TwnLib20.dll [2009-12-31 11:38:22 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Ahead [2009-12-31 11:38:21 | 00,000,000 | ---D | C] -- C:\Program Files\Ahead [2009-12-06 12:36:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Google [2009-12-06 12:32:01 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Google [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2010-01-29 20:55:37 | 00,548,864 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Admin\Pulpit\OTL.exe [2010-01-29 20:51:01 | 00,348,371 | ---- | M] () -- C:\WINDOWS\System32\vsconfig.xml [2010-01-29 20:50:38 | 00,203,767 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2010-01-29 20:50:33 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010-01-29 20:50:26 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-01-29 20:29:37 | 00,105,156 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\bookmarks-2010-01-29.json [2010-01-29 20:29:31 | 00,487,501 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\bookmarks.html [2010-01-29 20:11:40 | 05,505,024 | -H-- | M] () -- C:\Documents and Settings\Admin\NTUSER.DAT [2010-01-29 17:08:46 | 00,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2010-01-29 17:00:38 | 00,000,188 | -HS- | M] () -- C:\Documents and Settings\Admin\ntuser.ini [2010-01-29 17:00:27 | 00,000,477 | ---- | M] () -- C:\WINDOWS\win.ini [2010-01-29 17:00:27 | 00,000,227 | ---- | M] () -- C:\WINDOWS\system.ini [2010-01-29 17:00:27 | 00,000,211 | -HS- | M] () -- C:\boot.ini [2010-01-29 16:44:24 | 44,589,926 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\TvP_5FactPush.avi [2010-01-29 16:25:54 | 26,946,398 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\TvZ_8Rax_Mech_Game.avi [2010-01-29 16:21:23 | 00,048,640 | ---- | M] () -- C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-01-28 19:25:47 | 76,150,784 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\TvZ_General_Tips_Part_2.avi [2010-01-27 23:27:12 | 00,771,299 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\1264626044484.gif [2010-01-27 23:26:19 | 00,343,250 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\1264621394777.gif [2010-01-27 23:26:09 | 01,368,698 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\1264630060680.gif [2010-01-27 23:24:39 | 02,022,006 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\1264630836568.gif [2010-01-26 20:09:52 | 14,227,572 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\microcontrol_mappack_by8882.zip [2010-01-25 21:20:43 | 04,345,939 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\2 inches of blood - deadly sinners.mp3 [2010-01-25 20:23:30 | 68,518,400 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\TvZ_General_Tips_Part_1.avi [2010-01-25 19:03:31 | 77,032,960 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\TvP_General_Tips.avi [2010-01-24 23:47:28 | 01,577,648 | -H-- | M] () -- C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010-01-24 21:42:00 | 00,414,997 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\mousepath.exe.zip [2010-01-24 11:04:35 | 00,000,738 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\ICCup Launcher.lnk [2010-01-24 08:28:35 | 00,650,436 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\1264316966250.jpg [2010-01-23 15:10:55 | 00,000,803 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\CoreTemp.ini [2010-01-23 15:10:55 | 00,000,011 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\Plugins.ini [2010-01-23 14:59:08 | 00,545,435 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\30second.mp3 [2010-01-23 14:58:58 | 00,578,036 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\socks.mp3 [2010-01-22 18:45:54 | 01,112,188 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\boioioioi.mp3 [2010-01-21 21:41:08 | 00,001,533 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Neostrada TP.lnk [2010-01-21 20:57:10 | 03,932,214 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\bez tytułu.bmp [2010-01-19 22:22:46 | 00,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk [2010-01-17 21:34:04 | 00,002,645 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2010-01-16 07:46:44 | 31,375,5288 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\Prophesy of Pendor V2.5.zip [2010-01-14 03:03:09 | 00,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2010-01-13 18:26:14 | 00,509,070 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2010-01-13 18:26:14 | 00,449,320 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010-01-13 18:26:14 | 00,094,088 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2010-01-13 18:26:14 | 00,074,808 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010-01-13 18:26:14 | 00,004,792 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010-01-13 18:24:16 | 00,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-01-10 21:55:50 | 00,000,169 | ---- | M] () -- C:\WINDOWS\RtlRack.ini [2010-01-10 12:41:03 | 00,001,768 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\3DMark2001 SE.lnk [2010-01-10 11:11:35 | 00,026,765 | ---- | M] () -- C:\WINDOWS\Ascd_tmp.ini [2010-01-10 10:28:49 | 00,000,045 | ---- | M] () -- C:\WINDOWS\System32\initdebug.nfo [2010-01-10 09:26:20 | 00,026,803 | ---- | M] () -- C:\WINDOWS\Ascd_log.ini [2010-01-10 09:23:46 | 00,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav [2010-01-10 09:23:45 | 00,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav [2010-01-07 17:37:19 | 41,865,9304 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\carving_technica.mpg [2010-01-07 16:07:14 | 00,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2010-01-07 16:07:04 | 00,019,160 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-01-29 20:29:37 | 00,105,156 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\bookmarks-2010-01-29.json [2010-01-29 20:29:31 | 00,487,501 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\bookmarks.html [2010-01-29 15:57:31 | 26,946,398 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\TvZ_8Rax_Mech_Game.avi [2010-01-29 15:57:00 | 44,589,926 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\TvP_5FactPush.avi [2010-01-28 18:06:12 | 76,150,784 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\TvZ_General_Tips_Part_2.avi [2010-01-27 23:27:11 | 00,771,299 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\1264626044484.gif [2010-01-27 23:26:18 | 00,343,250 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\1264621394777.gif [2010-01-27 23:26:08 | 01,368,698 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\1264630060680.gif [2010-01-27 23:24:37 | 02,022,006 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\1264630836568.gif [2010-01-26 19:53:41 | 14,227,572 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\microcontrol_mappack_by8882.zip [2010-01-25 21:20:42 | 04,345,939 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\2 inches of blood - deadly sinners.mp3 [2010-01-25 19:13:46 | 68,518,400 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\TvZ_General_Tips_Part_1.avi [2010-01-25 17:38:58 | 77,032,960 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\TvP_General_Tips.avi [2010-01-24 21:41:41 | 00,414,997 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\mousepath.exe.zip [2010-01-24 11:04:35 | 00,000,738 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\ICCup Launcher.lnk [2010-01-24 08:27:46 | 00,650,436 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\1264316966250.jpg [2010-01-23 15:10:55 | 00,000,803 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\CoreTemp.ini [2010-01-23 15:10:55 | 00,000,011 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\Plugins.ini [2010-01-23 14:58:31 | 00,545,435 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\30second.mp3 [2010-01-23 14:58:19 | 00,578,036 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\socks.mp3 [2010-01-22 18:44:27 | 01,112,188 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\boioioioi.mp3 [2010-01-21 21:41:08 | 00,001,533 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Neostrada TP.lnk [2010-01-21 20:57:10 | 03,932,214 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\bez tytułu.bmp [2010-01-19 22:22:46 | 00,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk [2010-01-17 21:33:50 | 00,380,928 | ---- | C] () -- C:\WINDOWS\System32\actskin4.ocx [2010-01-16 00:13:32 | 31,375,5288 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\Prophesy of Pendor V2.5.zip [2010-01-10 12:41:03 | 00,001,768 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\3DMark2001 SE.lnk [2010-01-10 11:47:12 | 00,106,496 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\SUPER_PI.EXE [2010-01-10 11:46:53 | 00,378,384 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\Core Temp.exe [2010-01-10 11:11:35 | 00,026,765 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini [2010-01-10 10:28:49 | 00,000,045 | ---- | C] () -- C:\WINDOWS\System32\initdebug.nfo [2010-01-10 10:24:47 | 00,389,120 | ---- | C] () -- C:\WINDOWS\System32\actskn43.ocx [2010-01-10 09:34:25 | 00,024,576 | R--- | C] () -- C:\WINDOWS\System32\AsIO.dll [2010-01-10 09:34:25 | 00,004,962 | R--- | C] () -- C:\WINDOWS\System32\drivers\AsIO.sys [2010-01-10 09:34:24 | 00,005,120 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp64.sys [2010-01-10 09:34:24 | 00,003,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp32.sys [2010-01-10 09:23:45 | 00,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav [2010-01-10 09:23:45 | 00,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav [2010-01-10 09:06:28 | 00,000,164 | R--- | C] () -- C:\WINDOWS\avrack.ini [2010-01-07 16:02:07 | 41,865,9304 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\carving_technica.mpg [2009-12-31 18:40:33 | 00,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2009-12-21 17:02:32 | 00,000,319 | ---- | C] () -- C:\WINDOWS\game.ini [2009-12-01 22:25:00 | 00,208,896 | ---- | C] () -- C:\WINDOWS\System32\glut32.dll [2009-11-18 23:18:07 | 00,180,224 | ---- | C] () -- C:\WINDOWS\System32\WinVd32.sys [2009-10-23 19:44:16 | 00,000,080 | ---- | C] () -- C:\WINDOWS\sierra.ini [2009-10-01 15:34:59 | 00,000,174 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini [2009-10-01 15:32:49 | 00,001,021 | ---- | C] () -- C:\WINDOWS\wincmd.ini [2009-09-22 18:34:35 | 01,724,416 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll [2009-09-22 18:34:35 | 01,101,824 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll [2009-09-22 18:34:35 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll [2009-09-22 18:34:33 | 01,507,328 | ---- | C] () -- C:\WINDOWS\System32\nview.dll [2009-09-21 21:58:14 | 00,796,032 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat [2009-08-07 18:51:34 | 00,178,430 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat [2009-07-31 08:54:08 | 00,639,224 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys [2009-07-30 12:23:39 | 00,003,285 | ---- | C] () -- C:\WINDOWS\VPlayer.INI [2009-07-30 12:16:34 | 00,048,640 | ---- | C] () -- C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2009-07-30 12:08:10 | 00,168,448 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2009-07-30 12:08:09 | 00,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini [2009-07-30 12:08:08 | 00,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2009-07-30 12:08:08 | 00,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2009-07-30 12:08:07 | 03,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll [2009-07-30 12:08:06 | 00,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2009-07-30 12:08:06 | 00,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest [2009-07-30 06:43:58 | 00,005,606 | ---- | C] () -- C:\WINDOWS\System32\stci.dll [2009-07-30 06:43:23 | 00,041,068 | ---- | C] () -- C:\WINDOWS\System32\ActPanel.dll [2009-07-30 06:41:19 | 00,000,169 | ---- | C] () -- C:\WINDOWS\RtlRack.ini [2009-07-30 06:37:37 | 00,156,672 | R--- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll [2009-07-30 06:33:39 | 00,000,266 | R--- | C] () -- C:\WINDOWS\System32\raidmgmt.ini [2009-07-30 00:33:42 | 00,026,803 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini [2009-07-30 00:33:30 | 00,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys [2009-07-30 00:33:24 | 00,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS [2009-06-19 19:06:22 | 00,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll [2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll [2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll [2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll [2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll [2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll [2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll [2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll [2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll [2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll [2005-12-07 11:31:00 | 00,202,752 | R--- | C] () -- C:\WINDOWS\System32\CddbCdda.dll [1997-06-14 01:56:08 | 00,056,832 | ---- | C] () -- C:\WINDOWS\System32\iyvu9_32.dll [1996-04-03 20:33:26 | 00,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys [color=#E56717]========== LOP Check ==========[/color] [2009-11-18 23:24:35 | 00,000,000 | -HSD | M] -- C:\Documents and Settings\Admin\Dane aplikacji\.# [2010-01-01 20:10:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Atari [2010-01-27 23:33:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\BESTplayer [2009-08-01 15:33:17 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Canneverbe_Limited [2009-08-15 17:15:07 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\CityInteractive [2009-07-31 22:34:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Gadu-Gadu [2009-11-23 22:19:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\GanymedeNet [2009-12-11 22:30:18 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\ipla [2009-12-01 16:24:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Mount&Blade [2010-01-23 14:59:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\MyPhoneExplorer [2009-12-28 20:24:12 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\NeatImage SL [2009-09-12 20:55:31 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Nokia [2009-08-01 10:17:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Nokia Multimedia Player [2009-08-28 08:49:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\OpenOffice.org [2009-08-01 10:16:18 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\PC Suite [2009-08-01 07:58:10 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Sports Interactive [2009-09-13 06:20:21 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Teleca [2009-09-16 17:12:10 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\The Creative Assembly [2009-09-12 21:36:47 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Codemasters [2009-07-30 12:15:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DFX [2010-01-17 20:20:11 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Hagel Technologies [2009-08-01 09:58:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations [2009-10-17 20:05:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla [2009-08-01 10:12:43 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite [2009-08-01 07:57:54 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Sports Interactive [2009-09-11 20:08:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Teleca [2010-01-29 20:50:54 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2009-07-31 09:12:07 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Test Drive Unlimited [2009-12-27 20:32:46 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{FD71DB76-A64B-4A16-BD57-1CC61B92D082} [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2009-08-25 21:36:12 | 00,000,000 | ---- | M] () -- C:\AILog.txt [2010-01-10 09:06:48 | 00,000,189 | ---- | M] () -- C:\audio.log [2009-07-30 00:23:32 | 00,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-01-29 17:00:27 | 00,000,211 | -HS- | M] () -- C:\boot.ini [2004-08-04 13:00:00 | 00,004,952 | RHS- | M] () -- C:\Bootfont.bin [2009-07-30 00:23:32 | 00,000,000 | ---- | M] () -- C:\CONFIG.SYS [2009-07-30 07:32:04 | 00,000,524 | ---- | M] () -- C:\INSTALL.LOG [2009-07-30 00:23:32 | 00,000,000 | RHS- | M] () -- C:\IO.SYS [2009-07-31 08:46:24 | 00,002,697 | ---- | M] () -- C:\LGSInst.Log [2009-07-30 00:23:32 | 00,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2004-08-04 13:00:00 | 00,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2009-07-30 08:51:01 | 00,251,152 | RHS- | M] () -- C:\ntldr [2010-01-10 09:02:24 | 00,000,086 | ---- | M] () -- C:\nvidia.log [2010-01-29 20:50:18 | 16,094,08512 | -HS- | M] () -- C:\pagefile.sys [2009-11-18 23:18:09 | 00,000,345 | ---- | M] () -- C:\Sys_LogWin.log [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 229 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:8FF81EB0 @Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:6CC69D3C < End of report > [/log] Pozdrawiam i z góry dziękuję za pomoc.
Mateusz J. komentarz 30 stycznia 2010 komentarz 30 stycznia 2010 Uruchom OTL i w oknie Custom Scans/Fixes wklej [code]:OTL O32 - AutoRun File - [2008-10-13 19:44:59 | 00,136,448 | R--- | M] (Sports Interactive) - G:\autorun.exe -- [ CDFS ] O32 - AutoRun File - [2008-07-25 18:10:55 | 00,000,027 | R--- | M] () - G:\autorun.inf -- [ CDFS ] O32 - AutoRun File - [2009-04-30 03:57:32 | 00,054,544 | R--- | M] (Electronic Arts) - H:\Autorun.exe -- [ UDF ] O32 - AutoRun File - [2008-10-22 00:48:37 | 00,000,045 | R--- | M] () - H:\Autorun.inf -- [ UDF ] O32 - AutoRun File - [2000-01-13 16:04:18 | 00,000,066 | R--- | M] () - I:\AUTORUN.INF -- [ CDFS ] :Files I:\autorun.exe C:\autorun.exe D:\autorun.exe E:\autorun.exe H:\autorun.exe I:\autorun.inf C:\autorun.inf D:\autorun.inf E:\autorun.inf H:\autorun.inf :Commands [emptytemp] [Reboot] [/code] Kliknij Run Fix. Zatwierdź restart komputera. Po ponownym uruchomieniu komputera tworzysz nowy log i pokazujesz do kontroli.
Maverick65 komentarz 31 stycznia 2010 Autor komentarz 31 stycznia 2010 (edytowane) Dziękuję za odzew Oto log: [log]OTL logfile created on: 2010-01-31 08:29:05 - Run 2 OTL by OldTimer - Version 3.1.27.0 Folder = C:\Documents and Settings\Admin\Pulpit Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.5512) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1 023,00 Mb Total Physical Memory | 546,00 Mb Available Physical Memory | 53,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 82,00% Paging File free Paging file location(s): C:\pagefile.sys 0 0 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 30,30 Gb Total Space | 9,01 Gb Free Space | 29,73% Space Free | Partition Type: NTFS Drive D: | 203,44 Gb Total Space | 6,16 Gb Free Space | 3,03% Space Free | Partition Type: NTFS E: Drive not present or media not loaded F: Drive not present or media not loaded Drive G: | 1,22 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS Drive H: | 5,56 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF Drive I: | 455,12 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS Computer Name: DOM-3044D5F8DF2 Current User Name: Admin Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: On Skip Microsoft Files: On File Age = 30 Days Output = Standard [color=#E56717]========== Processes (All) ==========[/color] PRC - [2010-01-29 20:55:37 | 00,548,864 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Admin\Pulpit\OTL.exe PRC - [2010-01-14 17:08:32 | 00,908,248 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2009-08-22 19:25:00 | 02,781,184 | ---- | M] () -- C:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner.exe PRC - [2009-08-06 18:24:06 | 00,053,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe PRC - [2009-07-30 10:46:36 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe PRC - [2009-07-21 13:34:33 | 00,185,089 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe PRC - [2009-07-20 10:51:52 | 00,935,208 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe PRC - [2009-05-13 15:48:22 | 00,108,289 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe PRC - [2009-03-02 12:08:47 | 00,209,153 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe PRC - [2009-02-09 12:25:57 | 00,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe PRC - [2008-11-19 01:28:00 | 00,163,908 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe PRC - [2008-11-13 14:18:56 | 02,405,776 | ---- | M] (Check Point Software Technologies LTD) -- C:\WINDOWS\system32\ZoneLabs\vsmon.exe PRC - [2008-11-13 14:18:56 | 00,981,904 | ---- | M] (Check Point Software Technologies LTD) -- C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe PRC - [2008-04-14 21:51:50 | 00,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe PRC - [2008-04-14 21:51:44 | 00,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe PRC - [2008-04-14 21:51:44 | 00,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe PRC - [2008-04-14 21:51:44 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS] PRC - [2008-04-14 21:51:44 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE] PRC - [2008-04-14 21:51:44 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS] PRC - [2008-04-14 21:51:44 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 21:51:44 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 21:51:44 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [IMGSVC] PRC - [2008-04-14 21:51:44 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH] PRC - [2008-04-14 21:51:32 | 00,156,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\notepad.exe PRC - [2008-04-14 21:51:24 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe PRC - [2008-04-14 21:51:18 | 00,977,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2008-04-14 21:51:12 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe PRC - [2008-04-14 21:51:04 | 00,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe PRC - [2007-04-02 13:15:40 | 00,061,440 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Shared Files\CTDevSrv.exe PRC - [2007-03-18 23:05:02 | 00,630,784 | ---- | M] () -- C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe PRC - [2006-11-12 11:48:46 | 00,157,592 | ---- | M] (DT Soft Ltd.) -- C:\Program Files\DAEMON Tools\daemon.exe PRC - [2006-05-21 08:43:14 | 00,155,648 | ---- | M] (Y'z@Home) -- C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe PRC - [2006-05-21 08:43:08 | 00,180,224 | ---- | M] () -- C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe PRC - [2006-02-28 11:42:38 | 00,229,376 | ---- | M] (Apple Computer, Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe PRC - [2005-08-04 14:24:46 | 03,627,008 | ---- | M] () -- C:\Program Files\ASUS\Ai Booster\OverClk.exe PRC - [2003-10-16 18:07:12 | 00,626,688 | ---- | M] (France Télécom R&D) -- C:\Program Files\Neostrada TP\NeostradaTP.exe PRC - [2003-10-16 18:07:12 | 00,020,480 | ---- | M] (France Télécom R&D) -- C:\Program Files\Neostrada TP\Watch.exe PRC - [2003-10-16 18:07:10 | 00,200,704 | ---- | M] (France Télécom R&D) -- C:\Program Files\Neostrada TP\ComComp.exe PRC - [1999-12-13 08:01:00 | 00,044,032 | ---- | M] (Creative Technology Ltd) -- C:\WINDOWS\system32\CTSVCCDA.EXE [color=#E56717]========== Modules (All) ==========[/color] MOD - [2010-01-29 20:55:37 | 00,548,864 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Admin\Pulpit\OTL.exe MOD - [2009-07-30 10:37:09 | 00,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll MOD - [2009-06-25 09:27:54 | 00,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll MOD - [2009-04-15 15:54:38 | 00,585,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll MOD - [2009-03-21 15:08:59 | 01,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll MOD - [2009-02-09 11:53:44 | 00,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll MOD - [2009-02-09 11:53:43 | 00,722,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll MOD - [2008-10-23 13:42:41 | 00,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll MOD - [2008-06-17 20:03:15 | 08,489,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll MOD - [2008-04-14 21:51:58 | 00,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv MOD - [2008-04-14 21:50:58 | 00,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll MOD - [2008-04-14 21:50:58 | 00,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll MOD - [2008-04-14 21:50:58 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll MOD - [2008-04-14 21:50:48 | 00,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll MOD - [2008-04-14 21:50:48 | 00,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll MOD - [2008-04-14 21:50:46 | 01,287,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll MOD - [2008-04-14 21:50:46 | 00,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll MOD - [2008-04-14 21:50:46 | 00,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll MOD - [2008-04-14 21:50:46 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll MOD - [2008-04-14 21:50:40 | 00,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll MOD - [2008-04-14 21:50:32 | 00,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll MOD - [2008-04-14 21:50:14 | 00,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll MOD - [2008-04-14 21:29:10 | 01,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll MOD - [2007-03-18 23:04:22 | 00,069,632 | ---- | M] () -- C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.dll MOD - [2006-05-21 08:43:14 | 00,053,248 | ---- | M] () -- C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.dll MOD - [2006-05-21 08:43:08 | 00,065,536 | ---- | M] () -- C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2009-09-29 16:09:49 | 00,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service) SRV - [2009-07-30 10:46:36 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) [Auto | Running] -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService) SRV - [2009-07-21 13:34:33 | 00,185,089 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2009-07-20 10:51:52 | 00,935,208 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0) SRV - [2009-06-22 16:44:00 | 03,087,772 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\WINDOWS\System32\GameMon.des -- (npggsvc) SRV - [2009-05-13 15:48:22 | 00,108,289 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2008-11-20 20:18:52 | 00,136,120 | ---- | M] (Google) [On_Demand | Stopped] -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc) SRV - [2008-11-19 01:28:00 | 00,163,908 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\WINDOWS\system32\nvsvc32.exe -- (NVSvc) SRV - [2008-11-13 14:18:56 | 02,405,776 | ---- | M] (Check Point Software Technologies LTD) [Auto | Running] -- C:\WINDOWS\System32\ZoneLabs\vsmon.exe -- (vsmon) SRV - [2008-03-09 12:54:58 | 00,187,120 | ---- | M] (Systweak Inc) [Auto | Stopped] -- C:\Program Files\Systweak\Systweak CacheBoost\cbSrv.exe -- (CacheBoost Service) SRV - [2007-04-02 13:15:40 | 00,061,440 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files\Creative\Shared Files\CTDevSrv.exe -- (CTDevice_Srv) SRV - [2007-03-26 12:06:24 | 00,292,864 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2006-02-28 11:42:38 | 00,229,376 | ---- | M] (Apple Computer, Inc.) [Auto | Running] -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service) SRV - [2005-04-03 23:41:10 | 00,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT) SRV - [1999-12-13 08:01:00 | 00,044,032 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\WINDOWS\system32\CTSVCCDA.EXE -- (Creative Service for CDROM Access) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2009-11-25 11:19:02 | 00,056,816 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt) DRV - [2009-11-18 23:18:07 | 00,180,224 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\WinVd32.sys -- (WinVd32) DRV - [2009-11-18 23:18:02 | 00,010,752 | ---- | M] () [File_System | Auto | Running] -- C:\WINDOWS\system32\WinFLdrv.sys -- (WinFLdrv) DRV - [2009-09-23 09:41:58 | 00,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi) DRV - [2009-08-22 19:25:00 | 00,009,088 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner32.sys -- (RivaTuner32) DRV - [2009-07-31 08:54:08 | 00,639,224 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2009-05-11 09:12:24 | 00,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv) DRV - [2009-04-28 21:20:06 | 00,044,944 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20) DRV - [2009-03-30 09:33:07 | 00,096,104 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb) DRV - [2009-02-13 11:35:05 | 00,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio) DRV - [2008-11-19 01:28:00 | 06,204,032 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [2008-11-13 14:19:00 | 00,353,680 | ---- | M] (Check Point Software Technologies LTD) [Kernel | System | Running] -- C:\WINDOWS\system32\vsdatant.sys -- (vsdatant) DRV - [2008-09-17 14:14:00 | 00,027,672 | R--- | M] (EnTech Taiwan) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Entech.sys -- (ENTECH) DRV - [2008-04-21 06:19:58 | 00,051,648 | ---- | M] (Check Point Software Technologies LTD) [Kernel | Boot | Running] -- C:\WINDOWS\system32\ZoneLabs\srescan.sys -- (srescan) DRV - [2008-04-13 23:15:30 | 00,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum) DRV - [2008-04-13 21:09:18 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv) DRV - [2007-08-02 16:32:26 | 00,022,784 | ---- | M] (Razer (Asia-Pacific) Pte Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\dadder.sys -- (DAdderFltr) DRV - [2007-07-15 03:37:04 | 00,027,992 | ---- | M] (EnTech Taiwan) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\pstrip.sys -- (PStrip) DRV - [2007-06-19 08:51:20 | 00,107,304 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816mdm.sys -- (s816mdm) DRV - [2007-06-19 08:51:18 | 00,099,112 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816mgmt.sys -- (s816mgmt) Sony Ericsson Device 816 USB WMC Device Management Drivers (WDM) DRV - [2007-06-19 08:51:18 | 00,097,704 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816unic.sys -- (s816unic) Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (WDM) DRV - [2007-06-19 08:51:18 | 00,097,320 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816obex.sys -- (s816obex) DRV - [2007-06-19 08:51:18 | 00,021,928 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816nd5.sys -- (s816nd5) Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (NDIS) DRV - [2007-06-19 08:51:18 | 00,013,864 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816mdfl.sys -- (s816mdfl) DRV - [2007-06-19 08:51:16 | 00,081,832 | R--- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\s816bus.sys -- (s816bus) Sony Ericsson Device 816 driver (WDM) DRV - [2007-02-22 09:15:56 | 00,137,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcd.sys -- (nmwcd) DRV - [2007-02-22 09:15:14 | 00,012,288 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdcm.sys -- (nmwcdcm) DRV - [2007-02-22 09:15:14 | 00,012,288 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdcj.sys -- (nmwcdcj) DRV - [2007-02-22 09:15:14 | 00,008,320 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdc.sys -- (nmwcdc) DRV - [2006-09-24 14:28:46 | 00,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan) DRV - [2005-08-19 10:31:52 | 03,644,800 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM) DRV - [2005-08-18 10:52:06 | 00,093,568 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvata.sys -- (nvata) DRV - [2005-07-26 10:48:30 | 00,012,928 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus) DRV - [2005-07-26 10:48:28 | 00,033,664 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD) DRV - [2005-03-31 11:28:24 | 00,181,760 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\Si3132r5.sys -- (Si3132r5) DRV - [2005-03-30 07:24:00 | 00,230,400 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp) DRV - [2005-03-09 14:53:00 | 00,043,008 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8) DRV - [2004-11-01 12:21:32 | 00,010,368 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\SiWinAcc.sys -- (SiFilter) DRV - [2004-10-14 10:52:28 | 00,004,962 | R--- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AsIO.sys -- (AsIO) DRV - [2004-08-13 03:56:20 | 00,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor) DRV - [2004-08-04 13:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink) DRV - [2003-12-08 10:53:48 | 00,053,600 | ---- | M] (THOMSON) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcan5wn.sys -- (alcan5wn) SpeedTouch USB ADSL PPP Networking Driver (NDISWAN) DRV - [2003-12-08 10:53:46 | 00,070,688 | ---- | M] (THOMSON) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcaudsl.sys -- (alcaudsl) DRV - [2003-05-14 12:42:58 | 00,013,920 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WmHidLo.sys -- (WmHidLo) DRV - [2003-05-14 12:42:56 | 00,021,216 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WmFilter.sys -- (WmFilter) DRV - [2003-05-14 12:42:50 | 00,010,144 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WmBEnum.sys -- (WmBEnum) DRV - [2003-05-14 12:42:48 | 00,005,728 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\WmVirHid.sys -- (WmVirHid) DRV - [2003-05-14 12:42:44 | 00,044,288 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WmXlCore.sys -- (WmXlCore) DRV - [2001-08-17 23:00:04 | 00,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401) DRV - [1996-04-03 20:33:26 | 00,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.neostrada.pl IE - HKCU\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Neostrada TP\SearchPageURL.dll () IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultengine: "Ask.com" FF - prefs.js..browser.search.defaultenginename: "Ask.com" FF - prefs.js..browser.search.order.1: "Ask.com" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "http://pl.start3.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:pl:official" FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.1.1 FF - prefs.js..extensions.enabledItems: {6AC85730-7D0F-4de0-B3FA-21142DD85326}:2.0.2 FF - prefs.js..extensions.enabledItems: {a7c6cf7f-112c-4500-a7ea-39801a327e5f}:1.0.7 FF - prefs.js..extensions.enabledItems: fotofox@mozilla.com:1.7 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {75CEEE46-9B64-46f8-94BF-54012DE155F0}:0.3.9 FF - prefs.js..extensions.enabledItems: {73a6fe31-595d-460b-a920-fcc0f8843232}:1.9.9.18 FF - prefs.js..extensions.enabledItems: pixelperfectplugin@openhouseconcepts.com:1.1.0 FF - prefs.js..extensions.enabledItems: tineye@ideeinc.com:0.7.1 FF - prefs.js..extensions.enabledItems: yslow@yahoo-inc.com:2.0.2 FF - prefs.js..extensions.enabledItems: {07b2a769-ed19-4483-87ce-c643914c81bb}:3.0.0.87 FF - prefs.js..keyword.URL: "http://www.google.com/search?ie=UTF-...ient&gfns=1&q=" FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-01-16 09:06:10 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-01-14 17:08:50 | 00,000,000 | ---D | M] [2009-07-30 06:49:33 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Extensions [2010-01-30 19:36:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions [2010-01-20 22:06:08 | 00,000,000 | ---D | M] (Vista-aero) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\{07b2a769-ed19-4483-87ce-c643914c81bb} [2009-11-07 09:56:18 | 00,000,000 | ---D | M] (ColorZilla) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326} [2009-12-07 18:53:10 | 00,000,000 | ---D | M] (NoScript) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232} [2009-11-07 09:56:16 | 00,000,000 | ---D | M] (MeasureIt) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\{75CEEE46-9B64-46f8-94BF-54012DE155F0} [2009-12-07 18:53:09 | 00,000,000 | ---D | M] (FireFTP) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f} [2009-08-12 20:25:35 | 00,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [2009-12-07 18:53:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\fotofox@mozilla.com [2009-11-07 09:56:19 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\pixelperfectplugin@openhouseconcepts.com [2009-11-26 17:05:37 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\tineye@ideeinc.com [2009-12-07 18:53:09 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\yslow@yahoo-inc.com [2010-01-20 22:06:16 | 00,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Firefox\Profiles\w7p0s9nc.default\extensions\{07b2a769-ed19-4483-87ce-c643914c81bb}\chrome\mozapps\extensions [2010-01-30 19:36:24 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2009-11-16 16:13:16 | 00,120,296 | ---- | M] ( ) -- C:\Program Files\Mozilla Firefox\plugins\npganymedenet.dll [2010-01-14 17:08:42 | 00,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-01-14 17:08:43 | 00,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-01-14 17:08:43 | 00,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-01-14 17:08:43 | 00,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-01-14 17:08:43 | 00,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-01-14 17:08:43 | 00,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2004-08-04 13:00:00 | 00,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.) O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found. O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) O4 - HKLM..\Run: [DAEMON Tools] C:\Program Files\DAEMON Tools\daemon.exe (DT Soft Ltd.) O4 - HKLM..\Run: [KernelFaultCheck] File not found O4 - HKLM..\Run: [Launch Ai Booster] C:\Program Files\ASUS\Ai Booster\OverClk.exe () O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [RivaTuner] C:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner.exe () O4 - HKLM..\Run: [RivaTunerStartupDaemon] C:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner.exe () O4 - HKLM..\Run: [ZoneAlarm Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe (Check Point Software Technologies LTD) O4 - Startup: C:\Documents and Settings\Admin\Menu Start\Programy\Autostart\RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe () O4 - Startup: C:\Documents and Settings\Admin\Menu Start\Programy\Autostart\TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe (AKSoftware) O4 - Startup: C:\Documents and Settings\Admin\Menu Start\Programy\Autostart\UberIcon.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe () O4 - Startup: C:\Documents and Settings\Admin\Menu Start\Programy\Autostart\Y'z Shadow.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe (Y'z@Home) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 95 00 00 00 [binary data] O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.) O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone. O15 - HKCU\..Trusted Domains: internet ([]about in Internet) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14) O16 - DPF: {CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA} http://java.sun.com/products/plugin/autodl/jinstall-1_4_0_03-win.cab (Java Plug-in 1.4.0_03) O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009-07-30 00:23:32 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2008-10-13 19:44:59 | 00,136,448 | R--- | M] (Sports Interactive) - G:\autorun.exe -- [ CDFS ] O32 - AutoRun File - [2008-07-25 18:10:55 | 00,000,027 | R--- | M] () - G:\autorun.inf -- [ CDFS ] O32 - AutoRun File - [2009-04-30 03:57:32 | 00,054,544 | R--- | M] (Electronic Arts) - H:\Autorun.exe -- [ UDF ] O32 - AutoRun File - [2008-10-22 00:48:37 | 00,000,045 | R--- | M] () - H:\Autorun.inf -- [ UDF ] O32 - AutoRun File - [2000-01-13 16:04:18 | 00,000,066 | R--- | M] () - I:\AUTORUN.INF -- [ CDFS ] O33 - MountPoints2\{fb52447a-7e61-11de-a701-000e504af92c}\Shell - "" = AutoRun O33 - MountPoints2\{fb52447a-7e61-11de-a701-000e504af92c}\Shell\AutoRun\command - "" = G:\autorun.exe -- [2008-10-13 19:44:59 | 00,136,448 | R--- | M] (Sports Interactive) O33 - MountPoints2\{fb52447c-7e61-11de-a701-000e504af92c}\Shell - "" = AutoRun O33 - MountPoints2\{fb52447c-7e61-11de-a701-000e504af92c}\Shell\AutoRun\command - "" = H:\Autorun.exe -- [2009-04-30 03:57:32 | 00,054,544 | R--- | M] (Electronic Arts) O33 - MountPoints2\{fb52447d-7e61-11de-a701-000e504af92c}\Shell - "" = AutoRun O33 - MountPoints2\{fb52447d-7e61-11de-a701-000e504af92c}\Shell\AutoRun\command - "" = I:\_AUTORUN\Autorun.exe -- [2000-02-07 12:20:10 | 00,036,864 | R--- | M] (New World Computing) O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - comfile [open] -- "%1" %* O35 - exefile [open] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: Ias - C:\WINDOWS\system32\ias [2009-07-30 00:23:02 | 00,000,000 | ---D | M] NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2010-01-31 08:22:54 | 00,000,000 | ---D | C] -- C:\_OTL [2010-01-30 14:13:38 | 11,232,1464 | ---- | C] ( ) -- C:\Documents and Settings\Admin\Pulpit\CyberLink.2227(Patch)_DVD091022-07.exe [2010-01-29 21:39:20 | 00,000,000 | ---D | C] -- C:\Program Files\VS Revo Group [2010-01-29 21:34:24 | 00,096,104 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys [2010-01-29 21:34:24 | 00,056,816 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntflt.sys [2010-01-29 21:34:24 | 00,045,416 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntdd.sys [2010-01-29 21:34:24 | 00,022,360 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntmgr.sys [2010-01-29 21:34:23 | 00,028,520 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\ssmdrv.sys [2010-01-29 21:34:20 | 00,000,000 | ---D | C] -- C:\Program Files\Avira [2010-01-29 21:34:20 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Avira [2010-01-29 21:22:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Hagel Technologies [2010-01-29 20:55:05 | 00,548,864 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Admin\Pulpit\OTL.exe [2010-01-21 21:50:24 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Moje dokumenty\@neostrada.pl [2010-01-19 22:22:47 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dane aplikacji\Malwarebytes [2010-01-19 22:22:44 | 00,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2010-01-19 22:22:42 | 00,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2010-01-19 22:22:42 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2010-01-19 22:22:42 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes [2010-01-17 21:35:32 | 00,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [2010-01-17 21:35:32 | 00,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [2010-01-17 21:35:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-01-17 21:35:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-01-17 21:28:47 | 00,000,000 | ---D | C] -- C:\Program Files\Alwil Software [2010-01-17 20:20:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Hagel Technologies [2010-01-17 19:00:54 | 00,000,000 | ---D | C] -- C:\Program Files\ESET [2010-01-12 21:10:06 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Pulpit\4 chan [2010-01-11 16:49:59 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTEMP [2010-01-10 19:12:46 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Futuremark Shared [2010-01-10 19:12:46 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Futuremark [2010-01-10 12:40:00 | 00,000,000 | ---D | C] -- C:\Program Files\MadOnion.com [2010-01-10 12:36:32 | 00,000,000 | ---D | C] -- C:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition [2010-01-10 12:18:12 | 00,000,000 | ---D | C] -- C:\Program Files\PowerStrip [2010-01-10 10:28:49 | 00,000,000 | ---D | C] -- C:\Program Files\SpeedFan [2010-01-10 10:24:47 | 00,253,952 | ---- | C] (home) -- C:\WINDOWS\System32\histogram.ocx [2010-01-10 10:24:47 | 00,188,416 | ---- | C] (SoftShape Development) -- C:\WINDOWS\System32\actsplash.ocx [2010-01-10 10:04:38 | 00,000,000 | ---D | C] -- C:\Program Files\Prime95 [2010-01-10 09:34:24 | 00,000,000 | ---D | C] -- C:\Program Files\ASUS [2010-01-10 09:28:34 | 00,181,760 | ---- | C] (Silicon Image, Inc) -- C:\WINDOWS\System32\drivers\Si3132r5.sys [2010-01-10 09:28:34 | 00,078,336 | ---- | C] (Silicon Image) -- C:\WINDOWS\System32\SilSupp.cpl [2010-01-10 09:28:34 | 00,010,368 | ---- | C] (Silicon Image, Inc.) -- C:\WINDOWS\System32\drivers\SiWinAcc.sys [2010-01-10 09:28:30 | 00,000,000 | ---D | C] -- C:\Program Files\Silicon Image [2010-01-10 09:23:45 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang [2010-01-10 09:06:24 | 00,000,000 | ---D | C] -- C:\Program Files\Realtek AC97 [2010-01-09 14:16:11 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\Ahead [2010-01-01 20:10:40 | 00,000,000 | --SD | C] -- C:\Documents and Settings\Admin\Moje dokumenty\Moje wideo [2010-01-01 20:10:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Moje dokumenty\RCT3 [2010-01-01 20:10:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dane aplikacji\Atari [2009-12-06 12:36:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Google [2009-12-06 12:32:01 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Google [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2010-01-31 08:25:50 | 00,348,371 | ---- | M] () -- C:\WINDOWS\System32\vsconfig.xml [2010-01-31 08:25:41 | 00,203,767 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2010-01-31 08:25:29 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010-01-31 08:25:25 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-01-31 08:23:47 | 05,505,024 | -H-- | M] () -- C:\Documents and Settings\Admin\NTUSER.DAT [2010-01-31 08:23:47 | 00,000,188 | -HS- | M] () -- C:\Documents and Settings\Admin\ntuser.ini [2010-01-30 19:10:09 | 11,232,1464 | ---- | M] ( ) -- C:\Documents and Settings\Admin\Pulpit\CyberLink.2227(Patch)_DVD091022-07.exe [2010-01-30 15:28:36 | 00,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2010-01-29 21:39:21 | 00,000,917 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\Revo Uninstaller.lnk [2010-01-29 21:34:36 | 00,001,707 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Avira AntiVir Control Center.lnk [2010-01-29 21:15:37 | 00,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2010-01-29 20:55:37 | 00,548,864 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Admin\Pulpit\OTL.exe [2010-01-29 20:29:37 | 00,105,156 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\bookmarks-2010-01-29.json [2010-01-29 20:29:31 | 00,487,501 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\bookmarks.html [2010-01-29 17:00:27 | 00,000,477 | ---- | M] () -- C:\WINDOWS\win.ini [2010-01-29 17:00:27 | 00,000,227 | ---- | M] () -- C:\WINDOWS\system.ini [2010-01-29 17:00:27 | 00,000,211 | -HS- | M] () -- C:\boot.ini [2010-01-29 16:44:24 | 44,589,926 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\TvP_5FactPush.avi [2010-01-29 16:25:54 | 26,946,398 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\TvZ_8Rax_Mech_Game.avi [2010-01-29 16:21:23 | 00,048,640 | ---- | M] () -- C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-01-28 19:25:47 | 76,150,784 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\TvZ_General_Tips_Part_2.avi [2010-01-27 23:27:12 | 00,771,299 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\1264626044484.gif [2010-01-27 23:26:19 | 00,343,250 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\1264621394777.gif [2010-01-27 23:26:09 | 01,368,698 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\1264630060680.gif [2010-01-27 23:24:39 | 02,022,006 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\1264630836568.gif [2010-01-26 20:09:52 | 14,227,572 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\microcontrol_mappack_by8882.zip [2010-01-25 21:20:43 | 04,345,939 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\2 inches of blood - deadly sinners.mp3 [2010-01-25 20:23:30 | 68,518,400 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\TvZ_General_Tips_Part_1.avi [2010-01-25 19:03:31 | 77,032,960 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\TvP_General_Tips.avi [2010-01-24 23:47:28 | 01,577,648 | -H-- | M] () -- C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010-01-24 21:42:00 | 00,414,997 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\mousepath.exe.zip [2010-01-24 11:04:35 | 00,000,738 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\ICCup Launcher.lnk [2010-01-24 08:28:35 | 00,650,436 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\1264316966250.jpg [2010-01-23 15:10:55 | 00,000,803 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\CoreTemp.ini [2010-01-23 15:10:55 | 00,000,011 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\Plugins.ini [2010-01-23 14:59:08 | 00,545,435 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\30second.mp3 [2010-01-23 14:58:58 | 00,578,036 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\socks.mp3 [2010-01-22 18:45:54 | 01,112,188 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\boioioioi.mp3 [2010-01-21 21:41:08 | 00,001,533 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Neostrada TP.lnk [2010-01-21 20:57:10 | 03,932,214 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\bez tytułu.bmp [2010-01-19 22:22:46 | 00,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk [2010-01-16 07:46:44 | 31,375,5288 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\Prophesy of Pendor V2.5.zip [2010-01-14 03:03:09 | 00,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2010-01-13 18:26:14 | 00,509,070 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2010-01-13 18:26:14 | 00,449,320 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010-01-13 18:26:14 | 00,094,088 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2010-01-13 18:26:14 | 00,074,808 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010-01-13 18:26:14 | 00,004,792 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010-01-13 18:24:16 | 00,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-01-10 21:55:50 | 00,000,169 | ---- | M] () -- C:\WINDOWS\RtlRack.ini [2010-01-10 12:41:03 | 00,001,768 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\3DMark2001 SE.lnk [2010-01-10 11:11:35 | 00,026,765 | ---- | M] () -- C:\WINDOWS\Ascd_tmp.ini [2010-01-10 10:28:49 | 00,000,045 | ---- | M] () -- C:\WINDOWS\System32\initdebug.nfo [2010-01-10 09:26:20 | 00,026,803 | ---- | M] () -- C:\WINDOWS\Ascd_log.ini [2010-01-10 09:23:46 | 00,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav [2010-01-10 09:23:45 | 00,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav [2010-01-07 17:37:19 | 41,865,9304 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\carving_technica.mpg [2010-01-07 16:07:14 | 00,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2010-01-07 16:07:04 | 00,019,160 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-01-29 21:39:21 | 00,000,917 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\Revo Uninstaller.lnk [2010-01-29 21:34:35 | 00,001,707 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Avira AntiVir Control Center.lnk [2010-01-29 20:29:37 | 00,105,156 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\bookmarks-2010-01-29.json [2010-01-29 20:29:31 | 00,487,501 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\bookmarks.html [2010-01-29 15:57:31 | 26,946,398 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\TvZ_8Rax_Mech_Game.avi [2010-01-29 15:57:00 | 44,589,926 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\TvP_5FactPush.avi [2010-01-28 18:06:12 | 76,150,784 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\TvZ_General_Tips_Part_2.avi [2010-01-27 23:27:11 | 00,771,299 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\1264626044484.gif [2010-01-27 23:26:18 | 00,343,250 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\1264621394777.gif [2010-01-27 23:26:08 | 01,368,698 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\1264630060680.gif [2010-01-27 23:24:37 | 02,022,006 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\1264630836568.gif [2010-01-26 19:53:41 | 14,227,572 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\microcontrol_mappack_by8882.zip [2010-01-25 21:20:42 | 04,345,939 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\2 inches of blood - deadly sinners.mp3 [2010-01-25 19:13:46 | 68,518,400 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\TvZ_General_Tips_Part_1.avi [2010-01-25 17:38:58 | 77,032,960 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\TvP_General_Tips.avi [2010-01-24 21:41:41 | 00,414,997 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\mousepath.exe.zip [2010-01-24 11:04:35 | 00,000,738 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\ICCup Launcher.lnk [2010-01-24 08:27:46 | 00,650,436 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\1264316966250.jpg [2010-01-23 15:10:55 | 00,000,803 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\CoreTemp.ini [2010-01-23 15:10:55 | 00,000,011 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\Plugins.ini [2010-01-23 14:58:31 | 00,545,435 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\30second.mp3 [2010-01-23 14:58:19 | 00,578,036 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\socks.mp3 [2010-01-22 18:44:27 | 01,112,188 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\boioioioi.mp3 [2010-01-21 21:41:08 | 00,001,533 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Neostrada TP.lnk [2010-01-21 20:57:10 | 03,932,214 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\bez tytułu.bmp [2010-01-19 22:22:46 | 00,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk [2010-01-16 00:13:32 | 31,375,5288 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\Prophesy of Pendor V2.5.zip [2010-01-10 12:41:03 | 00,001,768 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\3DMark2001 SE.lnk [2010-01-10 11:47:12 | 00,106,496 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\SUPER_PI.EXE [2010-01-10 11:46:53 | 00,378,384 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\Core Temp.exe [2010-01-10 11:11:35 | 00,026,765 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini [2010-01-10 10:28:49 | 00,000,045 | ---- | C] () -- C:\WINDOWS\System32\initdebug.nfo [2010-01-10 10:24:47 | 00,389,120 | ---- | C] () -- C:\WINDOWS\System32\actskn43.ocx [2010-01-10 09:34:25 | 00,024,576 | R--- | C] () -- C:\WINDOWS\System32\AsIO.dll [2010-01-10 09:34:25 | 00,004,962 | R--- | C] () -- C:\WINDOWS\System32\drivers\AsIO.sys [2010-01-10 09:34:24 | 00,005,120 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp64.sys [2010-01-10 09:34:24 | 00,003,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp32.sys [2010-01-10 09:23:45 | 00,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav [2010-01-10 09:23:45 | 00,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav [2010-01-10 09:06:28 | 00,000,164 | R--- | C] () -- C:\WINDOWS\avrack.ini [2010-01-07 16:02:07 | 41,865,9304 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\carving_technica.mpg [2009-12-31 18:40:33 | 00,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2009-12-21 17:02:32 | 00,000,319 | ---- | C] () -- C:\WINDOWS\game.ini [2009-12-01 22:25:00 | 00,208,896 | ---- | C] () -- C:\WINDOWS\System32\glut32.dll [2009-11-18 23:18:07 | 00,180,224 | ---- | C] () -- C:\WINDOWS\System32\WinVd32.sys [2009-10-23 19:44:16 | 00,000,080 | ---- | C] () -- C:\WINDOWS\sierra.ini [2009-10-01 15:34:59 | 00,000,174 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini [2009-10-01 15:32:49 | 00,001,021 | ---- | C] () -- C:\WINDOWS\wincmd.ini [2009-09-22 18:34:35 | 01,724,416 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll [2009-09-22 18:34:35 | 01,101,824 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll [2009-09-22 18:34:35 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll [2009-09-22 18:34:33 | 01,507,328 | ---- | C] () -- C:\WINDOWS\System32\nview.dll [2009-09-21 21:58:14 | 00,796,032 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat [2009-08-07 18:51:34 | 00,178,430 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat [2009-07-31 08:54:08 | 00,639,224 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys [2009-07-30 12:23:39 | 00,003,285 | ---- | C] () -- C:\WINDOWS\VPlayer.INI [2009-07-30 12:16:34 | 00,048,640 | ---- | C] () -- C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2009-07-30 12:08:10 | 00,168,448 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2009-07-30 12:08:09 | 00,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini [2009-07-30 12:08:08 | 00,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2009-07-30 12:08:08 | 00,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2009-07-30 12:08:07 | 03,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll [2009-07-30 12:08:06 | 00,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2009-07-30 12:08:06 | 00,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest [2009-07-30 06:43:58 | 00,005,606 | ---- | C] () -- C:\WINDOWS\System32\stci.dll [2009-07-30 06:43:23 | 00,041,068 | ---- | C] () -- C:\WINDOWS\System32\ActPanel.dll [2009-07-30 06:41:19 | 00,000,169 | ---- | C] () -- C:\WINDOWS\RtlRack.ini [2009-07-30 06:37:37 | 00,156,672 | R--- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll [2009-07-30 06:33:39 | 00,000,266 | R--- | C] () -- C:\WINDOWS\System32\raidmgmt.ini [2009-07-30 00:33:42 | 00,026,803 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini [2009-07-30 00:33:30 | 00,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys [2009-07-30 00:33:24 | 00,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS [2009-06-19 19:06:22 | 00,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll [2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll [2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll [2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll [2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll [2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll [2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll [2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll [2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll [2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll [2005-12-07 11:31:00 | 00,202,752 | R--- | C] () -- C:\WINDOWS\System32\CddbCdda.dll [1997-06-14 01:56:08 | 00,056,832 | ---- | C] () -- C:\WINDOWS\System32\iyvu9_32.dll [1996-04-03 20:33:26 | 00,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys [color=#E56717]========== LOP Check ==========[/color] [2009-11-18 23:24:35 | 00,000,000 | -HSD | M] -- C:\Documents and Settings\Admin\Dane aplikacji\.# [2010-01-01 20:10:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Atari [2010-01-27 23:33:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\BESTplayer [2009-08-01 15:33:17 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Canneverbe_Limited [2009-08-15 17:15:07 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\CityInteractive [2009-07-31 22:34:02 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Gadu-Gadu [2009-11-23 22:19:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\GanymedeNet [2009-12-11 22:30:18 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\ipla [2009-12-01 16:24:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Mount&Blade [2010-01-23 14:59:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\MyPhoneExplorer [2009-12-28 20:24:12 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\NeatImage SL [2009-09-12 20:55:31 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Nokia [2009-08-01 10:17:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Nokia Multimedia Player [2009-08-28 08:49:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\OpenOffice.org [2009-08-01 10:16:18 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\PC Suite [2009-08-01 07:58:10 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Sports Interactive [2009-09-13 06:20:21 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Teleca [2009-09-16 17:12:10 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\The Creative Assembly [2009-09-12 21:36:47 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Codemasters [2009-07-30 12:15:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DFX [2010-01-29 21:22:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Hagel Technologies [2009-08-01 09:58:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations [2009-10-17 20:05:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla [2009-08-01 10:12:43 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite [2009-08-01 07:57:54 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Sports Interactive [2009-09-11 20:08:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Teleca [2010-01-31 08:25:39 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2009-07-31 09:12:07 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Test Drive Unlimited [2009-12-27 20:32:46 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{FD71DB76-A64B-4A16-BD57-1CC61B92D082} [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< >[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2009-08-25 21:36:12 | 00,000,000 | ---- | M] () -- C:\AILog.txt [2010-01-10 09:06:48 | 00,000,189 | ---- | M] () -- C:\audio.log [2009-07-30 00:23:32 | 00,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-01-29 17:00:27 | 00,000,211 | -HS- | M] () -- C:\boot.ini [2004-08-04 13:00:00 | 00,004,952 | RHS- | M] () -- C:\Bootfont.bin [2009-07-30 00:23:32 | 00,000,000 | ---- | M] () -- C:\CONFIG.SYS [2009-07-30 07:32:04 | 00,000,524 | ---- | M] () -- C:\INSTALL.LOG [2009-07-30 00:23:32 | 00,000,000 | RHS- | M] () -- C:\IO.SYS [2009-07-31 08:46:24 | 00,002,697 | ---- | M] () -- C:\LGSInst.Log [2009-07-30 00:23:32 | 00,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2004-08-04 13:00:00 | 00,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2009-07-30 08:51:01 | 00,251,152 | RHS- | M] () -- C:\ntldr [2010-01-10 09:02:24 | 00,000,086 | ---- | M] () -- C:\nvidia.log [2010-01-31 08:25:09 | 16,094,08512 | -HS- | M] () -- C:\pagefile.sys [2009-11-18 23:18:09 | 00,000,345 | ---- | M] () -- C:\Sys_LogWin.log [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 229 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:8FF81EB0 @Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:6CC69D3C < End of report > [/log] A tutaj log po operacji, w razie czego [log]All processes killed ========== OTL ========== File move failed. G:\autorun.exe scheduled to be moved on reboot. File move failed. G:\autorun.inf scheduled to be moved on reboot. File move failed. H:\Autorun.exe scheduled to be moved on reboot. File move failed. H:\Autorun.inf scheduled to be moved on reboot. File move failed. I:\AUTORUN.INF scheduled to be moved on reboot. ========== FILES ========== File\Folder I:\autorun.exe not found. File\Folder C:\autorun.exe not found. File\Folder D:\autorun.exe not found. File\Folder E:\autorun.exe not found. File move failed. H:\Autorun.exe scheduled to be moved on reboot. File move failed. I:\AUTORUN.INF scheduled to be moved on reboot. File\Folder C:\autorun.inf not found. File\Folder D:\autorun.inf not found. File\Folder E:\autorun.inf not found. File move failed. H:\Autorun.inf scheduled to be moved on reboot. ========== COMMANDS ========== [EMPTYTEMP] User: Admin ->Temp folder emptied: 4573587790 bytes ->Temporary Internet Files folder emptied: 1789320 bytes ->Java cache emptied: 33197337 bytes ->FireFox cache emptied: 75547765 bytes User: Administrator User: All Users User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: Gość User: LocalService ->Temp folder emptied: 16384 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: NetworkService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: Pomocnik User: SUPPORT_388945a0 %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 2134153 bytes %systemroot%\System32 .tmp files removed: 1613396 bytes %systemroot%\System32\dllcache .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 64973989 bytes RecycleBin emptied: 1114576 bytes Total Files Cleaned = 4 534,00 mb OTL by OldTimer - Version 3.1.27.0 log created on 01312010_082254 Files\Folders moved on Reboot... File move failed. G:\autorun.exe scheduled to be moved on reboot. File move failed. G:\autorun.inf scheduled to be moved on reboot. File move failed. H:\Autorun.exe scheduled to be moved on reboot. File move failed. H:\Autorun.inf scheduled to be moved on reboot. File move failed. I:\AUTORUN.INF scheduled to be moved on reboot. C:\Documents and Settings\Admin\Ustawienia lokalne\Temp\~DF519.tmp moved successfully. File\Folder C:\WINDOWS\temp\ZLT05004.TMP not found! Registry entries deleted on Reboot... [/log] Swoją drogą- co może mieć wpływ na drastyczne zwolnienie faktycznego downloadu(neostrada 1mb), który teraz osiąga max 30 kb/s (powinien ~120 kb/s), jeśli wszystkie speed metery i pingomierze pokazują, że download jest na poziomie 100-120? :F Dodam, że sciągałem pliki z różnych źródeł i prędkość nie przekroczyła 30kb/s, problem z tym mam od około dwóch tygodni, tak samo z siebie się zrobiło :F
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.