rikiMor0102 utworzono 7 kwietnia 2010 utworzono 7 kwietnia 2010 Mój problem polega na tym że jak korzystam z internetu jest ok. Jednak gdy zamknę mozillę i chcę ponownie ją odtworzyć aby skorzystać z internetu to strona się nie otwiera i na ekranie wyświetla się komunikat że mozilla jest już uruchomiona. Wskaźnik użycia wtedy procesora wskazuje 100% . Czy ktoś wie dlaczego się tak dzieje ? [color="#ff0000"]//przenoszę do Bezpieczeństwa [/color] [color="#ff0000"]//raaz [/color]
raazor90 komentarz 7 kwietnia 2010 komentarz 7 kwietnia 2010 Daj log z OTL: http://www.forumpc.pl/index.php?showtopic=104338
rikiMor0102 komentarz 7 kwietnia 2010 Autor komentarz 7 kwietnia 2010 Oto zamieszczam log [log]OTL logfile created on: 2010-04-07 13:05:08 - Run 1 OTL by OldTimer - Version 3.2.1.0 Folder = C:\Users\Piotr\Downloads Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18904) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 46,00% Memory free 5,00 Gb Paging File | 4,00 Gb Available in Paging File | 76,00% Paging File free Paging file location(s): ?:\pagefile.sys %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 92,77 Gb Total Space | 29,41 Gb Free Space | 31,70% Space Free | Partition Type: NTFS Drive D: | 93,53 Gb Total Space | 72,20 Gb Free Space | 77,20% Space Free | Partition Type: NTFS E: Drive not present or media not loaded F: Drive not present or media not loaded Drive G: | 7,45 Gb Total Space | 2,30 Gb Free Space | 30,91% Space Free | Partition Type: FAT32 H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: PIOTR-PC Current User Name: Piotr Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: On Skip Microsoft Files: On File Age = 60 Days Output = Standard [color=#E56717]========== Processes (All) ==========[/color] PRC - [2010-04-07 12:53:57 | 000,561,664 | ---- | M] (OldTimer Tools) -- C:\Users\Piotr\Downloads\OTL.exe PRC - [2010-04-07 12:51:11 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2010-02-28 05:45:02 | 005,344,807 | ---- | M] () -- C:\Program Files\Vidalia Bundle\Vidalia\vidalia.exe PRC - [2010-02-22 04:19:48 | 005,332,441 | ---- | M] () -- C:\Program Files\Vidalia Bundle\Tor\tor.exe PRC - [2010-02-04 11:53:16 | 000,198,160 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Common Files\Real\Update_OB\realsched.exe PRC - [2010-02-01 02:45:22 | 000,181,248 | ---- | M] () -- C:\Program Files\Vidalia Bundle\Polipo\polipo.exe PRC - [2010-01-25 12:48:24 | 000,039,408 | ---- | M] (Google Inc.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe PRC - [2010-01-24 18:57:06 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lsass.exe PRC - [2010-01-11 16:21:52 | 000,246,504 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe PRC - [2009-12-17 01:02:30 | 000,039,424 | ---- | M] (Nullsoft) -- D:\Program Files\Winamp\winampa.exe PRC - [2009-12-10 20:30:58 | 008,120,864 | ---- | M] (Realtek Semiconductor) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe PRC - [2009-12-02 15:19:02 | 000,788,880 | ---- | M] (Lavasoft) -- C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe PRC - [2009-12-02 15:19:01 | 001,184,912 | ---- | M] (Lavasoft) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe PRC - [2009-10-30 13:57:08 | 000,369,200 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe PRC - [2009-10-30 13:25:08 | 000,415,960 | R--- | M] (cFos Software GmbH) -- C:\Program Files\cFosSpeed\spd.exe PRC - [2009-10-30 13:25:04 | 000,977,624 | R--- | M] (cFos Software GmbH) -- C:\Program Files\cFosSpeed\cfosspeed.exe PRC - [2009-07-13 10:19:56 | 010,707,560 | ---- | M] (GG Network S.A.) -- D:\Program Files\Nowe Gadu-Gadu\gg.exe PRC - [2009-07-13 09:16:14 | 000,077,824 | ---- | M] () -- D:\Program Files\Nowe Gadu-Gadu\spellchecker_gg.exe PRC - [2009-05-27 04:27:04 | 029,262,680 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe PRC - [2009-04-11 08:28:15 | 000,247,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WmiPrvSE.exe PRC - [2009-04-11 08:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winlogon.exe PRC - [2009-04-11 08:28:08 | 000,037,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\unsecapp.exe PRC - [2009-04-11 08:28:07 | 000,169,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskeng.exe PRC - [2009-04-11 08:28:05 | 000,127,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spoolsv.exe PRC - [2009-04-11 08:28:04 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\smss.exe PRC - [2009-04-11 08:28:03 | 001,233,920 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Sidebar\sidebar.exe PRC - [2009-04-11 08:27:59 | 000,441,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchIndexer.exe PRC - [2009-04-11 08:27:59 | 000,279,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\services.exe PRC - [2009-04-11 08:27:49 | 003,408,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SLsvc.exe PRC - [2009-04-11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe PRC - [2009-04-11 08:27:33 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwm.exe PRC - [2008-11-25 08:31:07 | 000,239,968 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe PRC - [2008-11-24 23:31:12 | 000,087,904 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe PRC - [2008-10-25 12:44:34 | 000,031,072 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe PRC - [2008-08-18 14:25:10 | 000,468,224 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe PRC - [2008-08-18 14:23:50 | 001,447,168 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe PRC - [2008-01-19 09:38:38 | 001,008,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe PRC - [2008-01-19 09:33:40 | 000,142,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WUDFHost.exe PRC - [2008-01-19 09:33:39 | 000,896,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe PRC - [2008-01-19 09:33:39 | 000,202,240 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnscfg.exe PRC - [2008-01-19 09:33:37 | 000,096,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wininit.exe PRC - [2008-01-19 09:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2008-01-19 09:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2008-01-19 09:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2008-01-19 09:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2008-01-19 09:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2008-01-19 09:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2008-01-19 09:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2008-01-19 09:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2008-01-19 09:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2008-01-19 09:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2008-01-19 09:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2008-01-19 09:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2008-01-19 09:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2008-01-19 09:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2008-01-19 09:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2008-01-19 09:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2008-01-19 09:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2008-01-19 09:33:18 | 000,151,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\notepad.exe PRC - [2008-01-19 09:33:14 | 000,229,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lsm.exe PRC - [2008-01-19 09:33:05 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\csrss.exe PRC - [2007-07-25 16:50:26 | 000,079,136 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe PRC - [2007-07-24 11:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) -- C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe PRC - [2007-07-18 18:55:20 | 000,451,872 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe PRC - [2007-06-01 11:21:30 | 001,209,904 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe PRC - [2007-06-01 11:21:30 | 000,271,920 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe PRC - [2007-06-01 11:21:08 | 000,153,136 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe PRC - [2007-03-11 22:34:40 | 000,049,152 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\HP Software Update\hpwuSchd2.exe PRC - [2007-03-11 22:32:42 | 000,151,552 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe PRC - [2007-03-11 22:26:24 | 000,210,520 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe PRC - [2006-11-02 11:45:37 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rundll32.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2010-04-07 12:53:57 | 000,561,664 | ---- | M] (OldTimer Tools) -- C:\Users\Piotr\Downloads\OTL.exe MOD - [2010-02-23 08:39:00 | 001,209,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\urlmon.dll MOD - [2010-02-23 08:33:45 | 001,985,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iertutil.dll MOD - [2010-02-23 08:33:44 | 011,070,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieframe.dll MOD - [2010-01-24 19:11:18 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lpk.dll MOD - [2010-01-24 18:57:06 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secur32.dll MOD - [2010-01-24 18:49:36 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\atl.dll MOD - [2010-01-24 17:26:10 | 000,784,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rpcrt4.dll MOD - [2009-10-08 23:08:01 | 000,234,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\oleacc.dll MOD - [2009-10-01 03:02:17 | 002,537,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wpdshext.dll MOD - [2009-09-25 00:54:55 | 000,258,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winspool.drv MOD - [2009-04-11 08:28:25 | 001,077,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vssapi.dll MOD - [2009-04-11 08:28:25 | 000,627,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\user32.dll MOD - [2009-04-11 08:28:25 | 000,502,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\usp10.dll MOD - [2009-04-11 08:28:25 | 000,287,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wldap32.dll MOD - [2009-04-11 08:28:25 | 000,189,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winmm.dll MOD - [2009-04-11 08:28:25 | 000,108,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\userenv.dll MOD - [2009-04-11 08:28:25 | 000,020,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\version.dll MOD - [2009-04-11 08:28:24 | 011,584,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shell32.dll MOD - [2009-04-11 08:28:24 | 001,591,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\setupapi.dll MOD - [2009-04-11 08:28:24 | 001,068,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shdocvw.dll MOD - [2009-04-11 08:28:24 | 000,353,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shlwapi.dll MOD - [2009-04-11 08:28:24 | 000,142,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spp.dll MOD - [2009-04-11 08:28:24 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\samlib.dll MOD - [2009-04-11 08:28:23 | 001,316,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ole32.dll MOD - [2009-04-11 08:28:23 | 000,754,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\propsys.dll MOD - [2009-04-11 08:28:23 | 000,563,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\oleaut32.dll MOD - [2009-04-11 08:28:23 | 000,467,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netapi32.dll MOD - [2009-04-11 08:28:23 | 000,121,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntmarta.dll MOD - [2009-04-11 08:28:23 | 000,088,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\olepro32.dll MOD - [2009-04-11 08:28:22 | 000,679,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcrt.dll MOD - [2009-04-11 08:28:20 | 000,891,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kernel32.dll MOD - [2009-04-11 08:28:20 | 000,807,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msctf.dll MOD - [2009-04-11 08:28:20 | 000,114,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imm32.dll MOD - [2009-04-11 08:28:20 | 000,068,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mpr.dll MOD - [2009-04-11 08:28:19 | 000,297,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gdi32.dll MOD - [2009-04-11 08:28:19 | 000,142,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fontext.dll MOD - [2009-04-11 08:28:18 | 000,450,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\comdlg32.dll MOD - [2009-04-11 08:28:18 | 000,079,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\authz.dll MOD - [2009-04-11 08:28:17 | 000,800,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\advapi32.dll MOD - [2009-04-11 08:28:17 | 000,171,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\apphelp.dll MOD - [2009-04-11 08:27:49 | 001,202,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntdll.dll MOD - [2009-04-11 08:21:38 | 001,748,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18005_none_9e50b396ca17ae07\GdiPlus.dll MOD - [2009-04-11 08:21:38 | 001,686,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18005_none_5cb72f96088b0de0\comctl32.dll MOD - [2008-01-19 09:37:12 | 000,183,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\xmllite.dll MOD - [2008-01-19 09:37:09 | 000,179,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ws2_32.dll MOD - [2008-01-19 09:36:48 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vsstrace.dll MOD - [2008-01-19 09:36:47 | 000,240,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\uxtheme.dll MOD - [2008-01-19 09:36:35 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srclient.dll MOD - [2008-01-19 09:35:57 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nsi.dll MOD - [2008-01-19 09:33:52 | 000,523,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\clbcatq.dll MOD - [2006-11-02 11:46:12 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\psapi.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2009-12-02 15:19:01 | 001,184,912 | ---- | M] (Lavasoft) [Auto | Running] -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service) SRV - [2009-10-30 13:25:08 | 000,415,960 | R--- | M] (cFos Software GmbH) [Auto | Running] -- C:\Program Files\cFosSpeed\spd.exe -- (cFosSpeedS) SRV - [2009-09-25 03:27:04 | 000,793,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\FntCache.dll -- (FontCache) SRV - [2009-05-27 04:27:04 | 029,262,680 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe -- (MSSQL$INSERTGT) SQL Server (INSERTGT) SRV - [2008-11-25 08:31:07 | 000,239,968 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe -- (SQLBrowser) SRV - [2008-11-25 08:31:07 | 000,045,408 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe -- (MSSQLServerADHelper) SRV - [2008-11-24 23:31:12 | 000,087,904 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe -- (SQLWriter) SRV - [2008-08-18 14:30:58 | 000,019,200 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv) SRV - [2008-08-18 14:25:10 | 000,468,224 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn) SRV - [2008-01-19 09:38:24 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV - [2007-07-24 11:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) [Auto | Running] -- C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2010-03-18 10:56:52 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\sptd.sys -- (sptd) DRV - [2009-12-30 11:21:16 | 000,027,192 | ---- | M] (VS Revo Group) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\revoflt.sys -- (Revoflt) DRV - [2009-12-20 11:53:32 | 000,234,016 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169) DRV - [2009-12-10 18:33:34 | 002,975,904 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2009-12-02 15:19:06 | 000,064,288 | ---- | M] (Lavasoft AB) [File_System | Boot | Running] -- C:\Windows\system32\DRIVERS\Lbd.sys -- (Lbd) DRV - [2009-10-30 13:25:12 | 000,872,152 | ---- | M] (cFos Software GmbH) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\cfosspeed.sys -- (cFosSpeed) DRV - [2009-03-27 02:16:28 | 000,012,672 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\cpuz132_x32.sys -- (cpuz132) DRV - [2008-08-18 14:27:42 | 000,034,312 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\epfwtdir.sys -- (epfwtdir) DRV - [2008-08-18 14:19:26 | 000,053,256 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\System32\drivers\easdrv.sys -- (easdrv) DRV - [2008-08-18 14:18:26 | 000,039,944 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\eamon.sys -- (eamon) DRV - [2007-11-28 10:45:31 | 008,230,496 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm) DRV - [2007-03-16 11:11:38 | 000,012,256 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\TBPanel.sys -- (TBPanel) DRV - [2006-11-02 11:51:45 | 000,900,712 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300) DRV - [2006-11-02 11:51:38 | 000,420,968 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx) DRV - [2006-11-02 11:51:34 | 000,316,520 | ---- | M] (Emulex) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor) DRV - [2006-11-02 11:51:32 | 000,297,576 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci) DRV - [2006-11-02 11:51:25 | 000,235,112 | ---- | M] (ULi Electronics Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci) DRV - [2006-11-02 11:51:25 | 000,232,040 | ---- | M] (Intel Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV) DRV - [2006-11-02 11:51:00 | 000,147,048 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320) DRV - [2006-11-02 11:50:45 | 000,115,816 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2) DRV - [2006-11-02 11:50:41 | 000,112,232 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid) DRV - [2006-11-02 11:50:35 | 000,106,088 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx) DRV - [2006-11-02 11:50:35 | 000,098,408 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata) DRV - [2006-11-02 11:50:35 | 000,098,408 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m) DRV - [2006-11-02 11:50:24 | 000,088,680 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid) DRV - [2006-11-02 11:50:19 | 000,045,160 | ---- | M] (IBM Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960) DRV - [2006-11-02 11:50:17 | 000,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp) DRV - [2006-11-02 11:50:16 | 000,071,784 | ---- | M] (Silicon Integrated Systems) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4) DRV - [2006-11-02 11:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor) DRV - [2006-11-02 11:50:11 | 000,071,272 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx) DRV - [2006-11-02 11:50:10 | 000,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas) DRV - [2006-11-02 11:50:10 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI) DRV - [2006-11-02 11:50:10 | 000,038,504 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid2.sys -- (SiSRaid2) DRV - [2006-11-02 11:50:10 | 000,037,480 | ---- | M] (Hewlett-Packard Company) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs) DRV - [2006-11-02 11:50:09 | 000,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arc.sys -- (arc) DRV - [2006-11-02 11:50:09 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid) DRV - [2006-11-02 11:50:07 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi) DRV - [2006-11-02 11:50:05 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS) DRV - [2006-11-02 11:50:05 | 000,035,944 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx) DRV - [2006-11-02 11:50:04 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC) DRV - [2006-11-02 11:50:03 | 000,034,920 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3) DRV - [2006-11-02 11:49:59 | 000,033,384 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x) DRV - [2006-11-02 11:49:56 | 000,031,848 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi) DRV - [2006-11-02 11:49:53 | 000,028,776 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\megasas.sys -- (megasas) DRV - [2006-11-02 11:49:30 | 000,017,512 | ---- | M] (VIA Technologies, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\viaide.sys -- (viaide) DRV - [2006-11-02 11:49:28 | 000,016,488 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide) DRV - [2006-11-02 11:49:20 | 000,014,952 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\aliide.sys -- (aliide) DRV - [2006-11-02 10:25:24 | 000,071,808 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM) DRV - [2006-11-02 10:24:47 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer) DRV - [2006-11-02 10:24:46 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp) DRV - [2006-11-02 10:24:45 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo) DRV - [2006-11-02 10:24:44 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm) DRV - [2006-11-02 10:24:44 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm) DRV - [2006-11-02 09:36:50 | 000,020,608 | ---- | M] (N-trig Innovative Technologies) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi) DRV - [2006-11-02 09:30:54 | 000,117,760 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\E1G60I32.sys -- (E1G60) Intel(R) DRV - [2006-09-24 15:28:46 | 000,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\Windows\system32\speedfan.sys -- (speedfan) DRV - [1996-04-03 21:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\system32\giveio.sys -- (giveio) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://alawar.pl IE - HKLM\..\URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.) IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1454252231-964627858-2445733836-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie IE - HKU\S-1-5-21-1454252231-964627858-2445733836-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com IE - HKU\S-1-5-21-1454252231-964627858-2445733836-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://alawar.pl [binary data] IE - HKU\S-1-5-21-1454252231-964627858-2445733836-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://alawar.pl IE - HKU\S-1-5-21-1454252231-964627858-2445733836-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie IE - HKU\S-1-5-21-1454252231-964627858-2445733836-1000\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie IE - HKU\S-1-5-21-1454252231-964627858-2445733836-1000\..\URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.) IE - HKU\S-1-5-21-1454252231-964627858-2445733836-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultengine: "Ask.com" FF - prefs.js..browser.search.defaultenginename: "Winamp Search" FF - prefs.js..browser.search.defaulturl: "http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampie7&query=" FF - prefs.js..browser.search.order.1: "Ask.com" FF - prefs.js..browser.search.selectedEngine: "Winamp Search" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "http://www.shinysearch.com/myhome.php?style=horses<ext=rikiMor0102" FF - prefs.js..extensions.enabledItems: {1018e4d6-728f-4b20-ad56-37578a4de76b}:3.3.20 FF - prefs.js..extensions.enabledItems: {46551EC9-40F0-4e47-8E18-8E5CF550CFB8}:1.0.7 FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:1.0 FF - prefs.js..extensions.enabledItems: {e0204bd5-9d31-402b-a99d-a6aa8ffebdca}:1.2.4 FF - prefs.js..extensions.enabledItems: DTToolbar@toolbarnet.com:1.1.1.0014 FF - prefs.js..extensions.enabledItems: {0b38152b-1b20-484d-a11f-5e04a9b0661f}:5.6.12.1 FF - prefs.js..keyword.URL: "http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampab&query=" FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-04-07 12:51:16 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-04-07 12:51:16 | 000,000,000 | ---D | M] [2010-01-24 15:26:56 | 000,000,000 | ---D | M] -- C:\Users\Piotr\AppData\Roaming\mozilla\Extensions [2010-04-07 08:46:14 | 000,000,000 | ---D | M] -- C:\Users\Piotr\AppData\Roaming\mozilla\Firefox\Profiles\ulbcqybk.default\extensions [2010-03-31 16:13:22 | 000,000,000 | ---D | M] (Winamp Toolbar) -- C:\Users\Piotr\AppData\Roaming\mozilla\Firefox\Profiles\ulbcqybk.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f} [2010-01-24 16:10:49 | 000,000,000 | ---D | M] (Flagfox) -- C:\Users\Piotr\AppData\Roaming\mozilla\Firefox\Profiles\ulbcqybk.default\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b} [2010-01-25 23:46:03 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Piotr\AppData\Roaming\mozilla\Firefox\Profiles\ulbcqybk.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-01-24 16:37:58 | 000,000,000 | ---D | M] (Stylish) -- C:\Users\Piotr\AppData\Roaming\mozilla\Firefox\Profiles\ulbcqybk.default\extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8} [2010-02-28 13:12:17 | 000,000,000 | ---D | M] (Torbutton) -- C:\Users\Piotr\AppData\Roaming\mozilla\Firefox\Profiles\ulbcqybk.default\extensions\{e0204bd5-9d31-402b-a99d-a6aa8ffebdca} [2010-03-18 10:59:46 | 000,000,000 | ---D | M] -- C:\Users\Piotr\AppData\Roaming\mozilla\Firefox\Profiles\ulbcqybk.default\extensions\DTToolbar@toolbarnet.com [2010-03-05 17:11:18 | 000,002,426 | ---- | M] () -- C:\Users\Piotr\AppData\Roaming\Mozilla\FireFox\Profiles\ulbcqybk.default\searchplugins\askcom.xml [2010-03-18 10:59:32 | 000,002,055 | ---- | M] () -- C:\Users\Piotr\AppData\Roaming\Mozilla\FireFox\Profiles\ulbcqybk.default\searchplugins\daemon-search.xml [2010-03-31 16:23:05 | 000,001,196 | ---- | M] () -- C:\Users\Piotr\AppData\Roaming\Mozilla\FireFox\Profiles\ulbcqybk.default\searchplugins\winamp-search.xml [2010-01-30 09:35:34 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2009-12-17 01:03:36 | 000,063,488 | ---- | M] (Nullsoft) -- C:\Program Files\Mozilla Firefox\plugins\npwachk.dll [2010-04-07 12:51:13 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-04-07 12:51:13 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-04-07 12:51:13 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-04-07 12:51:13 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-04-07 12:51:13 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-04-07 12:51:13 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2006-09-18 23:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O2 - BHO: (HP Print Clips) - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll (Hewlett-Packard Co.) O2 - BHO: (Winamp Toolbar Loader) - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.) O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer) O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll (Google Inc.) O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Users\Piotr\AppData\Roaming\Nowe Gadu-Gadu\_userdata\ggbho.1.dll (GG Network S.A.) O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll () O3 - HKLM\..\Toolbar: (Winamp Toolbar) - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.) O3 - HKU\S-1-5-21-1454252231-964627858-2445733836-1000\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O3 - HKU\S-1-5-21-1454252231-964627858-2445733836-1000\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll () O4 - HKLM..\Run: [Ad Muncher] C:\Program Files\Ad Muncher\AdMunch.exe File not found O4 - HKLM..\Run: [cFosSpeed] C:\Program Files\cFosSpeed\cfosspeed.exe (cFos Software GmbH) O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET) O4 - HKLM..\Run: [Gainward] C:\Program Files\VDOTool\TBPanel.exe (Palit Microsystems, Inc.) O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [NvSvc] C:\Windows\System32\nvsvc.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (Realtek Semiconductor) O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.) O4 - HKLM..\Run: [WinampAgent] D:\Program Files\Winamp\winampa.exe (Nullsoft) O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation) O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation) O4 - HKU\S-1-5-21-1454252231-964627858-2445733836-1000..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG) O4 - HKU\S-1-5-21-1454252231-964627858-2445733836-1000..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) O4 - HKU\S-1-5-21-1454252231-964627858-2445733836-1000..\Run: [Nowe Gadu-Gadu] D:\Program Files\Nowe Gadu-Gadu\gg.exe (GG Network S.A.) O4 - HKU\S-1-5-21-1454252231-964627858-2445733836-1000..\Run: [Odkurzacz-MCD] C:\Program Files\Odkurzacz 12\odk_mcd.exe (Franmo Software) O4 - HKU\S-1-5-21-1454252231-964627858-2445733836-1000..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.) O4 - HKU\S-1-5-21-1454252231-964627858-2445733836-1000..\Run: [Vidalia] C:\Program Files\Vidalia Bundle\Vidalia\vidalia.exe () O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Low Rights present O8 - Extra context menu item: &Winamp Search - C:\ProgramData\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html () O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.) O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation) O8 - Extra context menu item: Funkcja Google Sidewiki - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll (Google Inc.) O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: Kolekcja wycinków HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.) O9 - Extra Button: Zaznaczanie HP Smart - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.) O9 - Extra Button: Add to VideoGet - {88CFA58B-A63F-4A94-9C54-0C7A58E3333E} - C:\Program Files\Nuclear Coffee\VideoGet\Plugins\VideoGet_IE.dll (Nuclear Coffee Software) O9 - Extra 'Tools' menuitem : Add to &VideoGet - {88CFA58B-A63F-4A94-9C54-0C7A58E3333E} - C:\Program Files\Nuclear Coffee\VideoGet\Plugins\VideoGet_IE.dll (Nuclear Coffee Software) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation) O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18) O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254 O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img16.jpg O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img16.jpg O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2006-09-18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O32 - AutoRun File - [2010-03-05 12:08:08 | 028,047,872 | R--- | M] () - G:\Automat_Do_Napoj_w.AVI -- [ FAT32 ] O33 - MountPoints2\{7ab364d9-1561-11df-8fe1-001d7d9eee95}\Shell\AutoRun\command - "" = G:\Launcher.exe -- File not found O33 - MountPoints2\{d243720b-326c-11df-b893-001d7d9eee95}\Shell - "" = AutoRun O33 - MountPoints2\{d243720b-326c-11df-b893-001d7d9eee95}\Shell\AutoRun\command - "" = F:\autorun.exe -- File not found O34 - HKLM BootExecute: (autocheck autochk *) - File not found O34 - HKLM BootExecute: (lsdelete) - C:\Windows\System32\lsdelete.exe () O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2010-04-07 10:25:55 | 000,000,000 | ---D | C] -- C:\Users\Piotr\.gstreamer-0.10 [2010-04-03 17:04:56 | 001,783,056 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\WavesLib.dll [2010-04-03 17:04:56 | 000,345,328 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSXT.dll [2010-04-03 17:04:56 | 000,185,584 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSHD.dll [2010-04-03 17:04:56 | 000,140,528 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSWOW.dll [2010-04-03 17:04:55 | 000,173,296 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSHP360.dll [2010-04-03 17:04:39 | 000,348,160 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEP32A.dll [2010-04-03 17:04:39 | 000,165,376 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEED32A.dll [2010-04-03 17:04:39 | 000,073,216 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEL32A.dll [2010-04-03 17:04:39 | 000,059,392 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEG32A.dll [2010-04-03 17:04:38 | 000,290,304 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DHT32.dll [2010-04-03 17:04:38 | 000,290,304 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DAA32.dll [2010-04-03 17:04:37 | 001,938,704 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioEQ.dll [2010-04-03 17:04:37 | 000,311,568 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO20.dll [2010-04-03 17:04:37 | 000,132,368 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO.dll [2010-04-03 17:04:27 | 000,297,376 | ---- | C] (Fortemedia Corporation) -- C:\Windows\System32\FMAPO.dll [2010-04-03 16:49:02 | 000,000,000 | -H-D | C] -- C:\Program Files\Temp [2010-04-01 18:42:00 | 000,000,000 | ---D | C] -- C:\Users\Piotr\AppData\Local\Winamp Toolbar [2010-04-01 18:41:46 | 000,000,000 | ---D | C] -- C:\Users\Piotr\AppData\Roaming\Google [2010-03-31 17:02:58 | 000,000,000 | ---D | C] -- C:\Users\Piotr\AppData\Roaming\Notepad++ [2010-03-31 16:54:29 | 000,000,000 | ---D | C] -- C:\Users\Piotr\AppData\Roaming\Nowe Gadu-Gadu [2010-03-31 16:26:33 | 000,064,288 | ---- | C] (Lavasoft AB) -- C:\Windows\System32\drivers\Lbd.sys [2010-03-31 16:26:33 | 000,000,000 | ---D | C] -- C:\Windows\System32\DRVSTORE [2010-03-31 16:26:12 | 000,000,000 | -H-D | C] -- C:\ProgramData\{BC9FCCF7-E686-494B-8C9B-55C9A39A7CA9} [2010-03-31 16:25:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Lavasoft [2010-03-31 16:25:46 | 000,000,000 | ---D | C] -- C:\Program Files\Lavasoft [2010-03-31 16:13:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Winamp Toolbar [2010-03-31 16:13:15 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp Toolbar [2010-03-31 16:12:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PX Storage Engine [2010-03-31 16:12:28 | 000,000,000 | ---D | C] -- C:\Users\Piotr\AppData\Roaming\Winamp [2010-03-31 15:57:33 | 000,000,000 | ---D | C] -- C:\Users\Piotr\AppData\Local\VS Revo Group [2010-03-31 15:57:28 | 000,027,192 | ---- | C] (VS Revo Group) -- C:\Windows\System32\drivers\revoflt.sys [2010-03-31 15:09:13 | 000,000,000 | ---D | C] -- C:\Users\Piotr\AppData\Local\marxio-tools [2010-03-31 15:02:29 | 000,000,000 | ---D | C] -- C:\Users\Piotr\AppData\Roaming\Apetito.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 [2010-03-31 15:01:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR [2010-03-31 08:16:51 | 000,000,000 | ---D | C] -- C:\Users\Piotr\.thumbnails [2010-03-31 08:06:54 | 000,000,000 | ---D | C] -- C:\Users\Piotr\.gimp-2.6 [2010-03-31 08:04:13 | 000,000,000 | ---D | C] -- C:\Program Files\GIMP-2.0 [2010-03-28 19:40:46 | 000,000,000 | ---D | C] -- C:\Users\Piotr\AppData\Roaming\Corel [2010-03-28 19:39:19 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Protexis [2010-03-28 19:39:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Corel [2010-03-28 19:37:58 | 000,000,000 | ---D | C] -- C:\Users\Piotr\AppData\Roaming\InstallShield [2010-03-24 00:36:07 | 000,000,000 | ---D | C] -- C:\Users\Piotr\Documents\Opisy do gier [2010-03-22 16:19:07 | 000,000,000 | ---D | C] -- C:\Users\Piotr\Documents\Bluetooth [2010-03-22 16:19:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Bluetooth [2010-03-21 23:08:02 | 000,000,000 | ---D | C] -- C:\Users\Piotr\Documents\Nowy folder (8) [2010-03-21 22:42:20 | 000,000,000 | ---D | C] -- C:\Users\Piotr\Documents\Version Cue [2010-03-21 22:42:14 | 000,000,000 | ---D | C] -- C:\ProgramData\FLEXnet [2010-03-21 17:27:49 | 000,000,000 | ---D | C] -- C:\ProgramData\FarmFrenzy-PizzaParty [2010-03-19 10:11:41 | 000,000,000 | ---D | C] -- C:\Users\Piotr\Documents\Nowy folder (7) [2010-03-18 11:20:39 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\DAEMON Tools Images [2010-03-18 10:59:32 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Toolbar [2010-03-18 10:56:22 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite [2010-03-18 10:56:12 | 000,000,000 | ---D | C] -- C:\Users\Piotr\AppData\Roaming\DAEMON Tools Lite [2010-03-18 10:56:08 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite [2010-03-17 22:03:44 | 000,000,000 | ---D | C] -- C:\Program Files\AidemMedia [2010-03-16 23:38:57 | 000,000,000 | ---D | C] -- C:\Users\Piotr\AppData\Roaming\gtk-2.0 [2010-03-16 20:45:07 | 000,000,000 | ---D | C] -- C:\Users\Piotr\AppData\Roaming\Malwarebytes [2010-03-16 20:45:02 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys [2010-03-16 20:45:00 | 000,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys [2010-03-16 20:45:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2010-03-15 21:46:55 | 000,000,000 | ---D | C] -- C:\ProgramData\OpenFM [2010-03-15 21:46:54 | 000,000,000 | ---D | C] -- C:\Users\Piotr\AppData\Roaming\OpenFM [2010-03-15 21:44:38 | 000,000,000 | ---D | C] -- C:\Users\Piotr\AppData\Local\cache [2010-03-15 21:41:56 | 000,000,000 | ---D | C] -- C:\Users\Piotr\AppData\Roaming\Gadu-Gadu 10 [2010-03-15 21:41:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Gadu-Gadu 10 [2010-03-15 16:49:31 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\LightScribe [2010-03-15 16:49:11 | 000,000,000 | ---D | C] -- C:\Users\Piotr\AppData\Local\Ahead [2010-03-15 16:48:31 | 000,000,000 | ---D | C] -- C:\Users\Piotr\AppData\Roaming\Ahead [2010-03-15 16:48:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Ahead [2010-03-15 16:44:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Nero [2010-03-15 16:44:43 | 000,000,000 | ---D | C] -- C:\Program Files\Nero [2010-03-15 16:44:43 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Ahead [2010-03-14 10:10:46 | 000,000,000 | ---D | C] -- C:\Users\Piotr\Documents\Nowy folder (5) [2010-03-12 22:05:53 | 000,000,000 | ---D | C] -- C:\Users\Piotr\Documents\F1 Challenge 99-02 [2010-03-12 15:18:04 | 000,000,000 | ---D | C] -- C:\Program Files\SuperDVD Video Editor [2010-03-12 15:04:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy [2010-03-12 13:49:07 | 000,000,000 | ---D | C] -- C:\Users\Piotr\Documents\Nowy folder (4) [2010-03-05 07:53:56 | 000,000,000 | ---D | C] -- C:\Windows\SQL9_KB970892_ENU [2010-03-04 18:24:32 | 000,000,000 | ---D | C] -- C:\Users\Piotr\Documents\FFOutput [2010-03-04 18:24:11 | 000,000,000 | ---D | C] -- C:\Program Files\FreeTime [2010-03-04 18:18:19 | 000,000,000 | ---D | C] -- C:\Users\Piotr\Documents\Any Video Converter [2010-03-04 18:17:57 | 000,000,000 | ---D | C] -- C:\Users\Piotr\AppData\Roaming\Any Video Converter [2010-03-04 18:17:41 | 000,000,000 | ---D | C] -- C:\Program Files\Any Video Converter [2010-03-04 18:15:20 | 000,000,000 | ---D | C] -- C:\Users\Piotr\Documents\My Downloaded Video [2010-03-04 18:14:36 | 000,000,000 | ---D | C] -- C:\Program Files\Nuclear Coffee [2010-03-04 18:11:38 | 000,000,000 | ---D | C] -- C:\Users\Piotr\AppData\Roaming\xVideoServiceThief [2010-03-04 18:11:12 | 000,000,000 | ---D | C] -- C:\xVideoServiceThief [2010-03-04 18:00:48 | 000,868,414 | ---- | C] (Complementary Colors) -- C:\Windows\System32\Achroma.dll [2010-03-04 17:55:40 | 000,000,000 | ---D | C] -- C:\Users\Piotr\Documents\gegl-0.0 [2010-03-04 17:37:59 | 000,000,000 | ---D | C] -- C:\ProgramData\InsERT [2010-03-04 17:37:58 | 000,000,000 | ---D | C] -- C:\Program Files\InsERT [2010-03-04 17:33:36 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server [2010-03-04 17:15:36 | 000,000,000 | ---D | C] -- C:\Program Files\VMPCrypt 4 Shareware [2010-03-04 16:33:44 | 000,000,000 | ---D | C] -- C:\Program Files\Odkurzacz 12 [2010-03-04 15:17:53 | 000,000,000 | ---D | C] -- C:\Program Files\BurnAware Free [2010-03-02 00:12:46 | 000,207,872 | ---- | C] (Incomedia - www.websitex5.com) -- C:\Windows\System32\iwpsetup.exe [2010-02-28 13:11:59 | 000,000,000 | ---D | C] -- C:\Users\Piotr\AppData\Roaming\Tor [2010-02-28 13:11:58 | 000,000,000 | ---D | C] -- C:\Users\Piotr\AppData\Roaming\Vidalia [2010-02-28 13:11:57 | 000,000,000 | ---D | C] -- C:\Program Files\Vidalia Bundle [2010-02-26 19:43:24 | 000,000,000 | ---D | C] -- C:\Users\Piotr\AppData\Roaming\Alawar [2010-02-26 17:54:19 | 000,000,000 | ---D | C] -- C:\ProgramData\FarmFrenzy2 [2010-02-26 17:54:15 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\AlawarWrapper [2010-02-26 17:54:13 | 000,000,000 | ---D | C] -- C:\ProgramData\AlawarWrapper [2010-02-26 15:47:18 | 000,000,000 | ---D | C] -- C:\Program Files\Lavalys [2010-02-23 20:55:56 | 000,000,000 | ---D | C] -- C:\Program Files\JDownloader [2010-02-23 20:23:18 | 000,000,000 | ---D | C] -- C:\Users\Piotr\Documents\Nowy folder (2) [2010-02-23 15:09:37 | 000,872,152 | ---- | C] (cFos Software GmbH) -- C:\Windows\System32\drivers\cfosspeed.sys [2010-02-23 15:09:37 | 000,288,472 | ---- | C] (cFos Software GmbH) -- C:\Windows\System32\cfosspeed.dll [2010-02-23 15:09:37 | 000,000,000 | ---D | C] -- C:\Program Files\cFosSpeed [2010-02-21 19:49:36 | 000,000,000 | ---D | C] -- C:\Windows\Minidump [2010-02-21 17:43:12 | 000,000,000 | ---D | C] -- C:\Program Files\CrystalDiskMark [2010-02-21 17:36:50 | 000,000,000 | ---D | C] -- C:\Program Files\CrystalDiskInfo [2010-02-20 20:54:24 | 000,000,000 | ---D | C] -- C:\Users\Piotr\AppData\Local\Microsoft Games [2010-02-15 14:21:05 | 000,000,000 | ---D | C] -- C:\Users\Piotr\AppData\Roaming\CANON INC [2010-02-11 18:52:17 | 000,000,000 | ---D | C] -- C:\Users\Piotr\AppData\Roaming\dvdcss [2010-02-07 10:56:44 | 000,000,000 | ---D | C] -- C:\Users\Piotr\AppData\Local\HP [2010-02-07 10:56:42 | 000,000,000 | ---D | C] -- C:\Users\Piotr\Documents\Moje zeskanowane obrazy [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2010-04-07 12:54:10 | 004,456,448 | -HS- | M] () -- C:\Users\Piotr\ntuser.dat [2010-04-07 12:43:06 | 000,708,526 | ---- | M] () -- C:\Windows\System32\perfh015.dat [2010-04-07 12:43:06 | 000,633,688 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2010-04-07 12:43:06 | 000,144,224 | ---- | M] () -- C:\Windows\System32\perfc015.dat [2010-04-07 12:43:06 | 000,118,574 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2010-04-07 12:43:05 | 001,600,154 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI [2010-04-07 12:38:59 | 000,004,048 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2010-04-07 12:38:59 | 000,004,048 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2010-04-07 12:38:06 | 000,001,032 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2010-04-07 12:37:53 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT [2010-04-07 12:37:51 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2010-04-07 12:37:44 | 2680,709,120 | -HS- | M] () -- C:\hiberfil.sys [2010-04-07 12:35:07 | 000,524,288 | -HS- | M] () -- C:\Users\Piotr\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000001.regtrans-ms [2010-04-07 12:35:07 | 000,065,536 | -HS- | M] () -- C:\Users\Piotr\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TM.blf [2010-04-07 12:34:55 | 003,223,474 | -H-- | M] () -- C:\Users\Piotr\AppData\Local\IconCache.db [2010-04-07 12:18:00 | 000,001,036 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2010-04-07 07:38:46 | 000,000,418 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{191B2B7D-D5F7-4843-BAE7-173E4DE4409C}.job [2010-04-06 14:38:35 | 000,029,450 | ---- | M] () -- C:\Users\Piotr\Documents\praca 2.docx [2010-04-05 14:26:50 | 000,040,960 | ---- | M] () -- C:\Users\Piotr\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-03-31 22:19:21 | 000,001,971 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk [2010-03-31 18:51:53 | 000,000,605 | ---- | M] () -- C:\Users\Piotr\Documents\index.html [2010-03-31 17:03:07 | 000,000,664 | ---- | M] () -- C:\Users\Public\Desktop\Notepad++.lnk [2010-03-31 16:58:59 | 000,000,732 | ---- | M] () -- C:\Users\Piotr\Desktop\Defraggler.lnk [2010-03-31 16:54:48 | 000,000,655 | ---- | M] () -- C:\Users\Public\Desktop\OpenFM.lnk [2010-03-31 16:54:48 | 000,000,636 | ---- | M] () -- C:\Users\Public\Desktop\Nowe Gadu-Gadu.lnk [2010-03-31 16:29:07 | 000,001,007 | ---- | M] () -- C:\Users\Public\Desktop\Ad-Aware.lnk [2010-03-31 16:13:22 | 000,000,610 | ---- | M] () -- C:\Users\Public\Desktop\Winamp.lnk [2010-03-31 15:57:29 | 000,000,623 | ---- | M] () -- C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk [2010-03-31 15:02:24 | 000,000,596 | ---- | M] () -- C:\Users\Public\Desktop\Bank smaków.lnk [2010-03-31 14:44:35 | 000,000,754 | ---- | M] () -- C:\Users\Piotr\Desktop\1-Klick-EasyClean starten.lnk [2010-03-31 14:44:35 | 000,000,638 | ---- | M] () -- C:\Users\Piotr\Desktop\WashAndGo.lnk [2010-03-31 10:31:38 | 000,003,449 | ---- | M] () -- C:\Users\Piotr\.recently-used.xbel [2010-03-31 08:06:09 | 000,000,898 | ---- | M] () -- C:\Users\Public\Desktop\GIMP 2.lnk [2010-03-31 07:52:53 | 000,000,848 | -HS- | M] () -- C:\ProgramData\KGyGaAvL.sys [2010-03-31 07:52:50 | 000,000,088 | RHS- | M] () -- C:\ProgramData\6A2ED24E39.sys [2010-03-31 07:06:19 | 001,720,280 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2010-03-28 19:40:52 | 000,102,008 | ---- | M] () -- C:\Users\Piotr\AppData\Local\GDIPFONTCACHEV1.DAT [2010-03-28 11:00:57 | 000,000,697 | ---- | M] () -- C:\Users\Public\Desktop\TmNationsForever.lnk [2010-03-27 13:16:34 | 000,002,432 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TempBN1072.html [2010-03-27 13:16:34 | 000,002,089 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TempcC1072.html [2010-03-27 12:32:40 | 000,002,054 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2010-03-27 12:13:36 | 000,002,432 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TempMwA772.html [2010-03-27 12:13:36 | 000,002,089 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TemplRY772.html [2010-03-27 11:32:39 | 000,002,432 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TempEY1680.html [2010-03-27 11:32:39 | 000,002,089 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TempfK1680.html [2010-03-26 17:12:00 | 000,000,204 | ---- | M] () -- C:\Users\Piotr\AppData\Roaming\burnaware.ini [2010-03-26 14:04:00 | 000,001,356 | ---- | M] () -- C:\Users\Piotr\AppData\Local\d3d9caps.dat [2010-03-26 07:54:50 | 000,002,432 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TemplJ1684.html [2010-03-26 07:54:50 | 000,002,089 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TempnL1684.html [2010-03-26 01:13:19 | 000,002,432 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TempAW4008.html [2010-03-26 01:13:19 | 000,002,089 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TempqT4008.html [2010-03-25 23:40:14 | 000,002,432 | ---- | M] () -- C:\Users\Piotr\AppData\Local\Tempjy1316.html [2010-03-25 23:40:14 | 000,002,089 | ---- | M] () -- C:\Users\Piotr\AppData\Local\Tempyn1316.html [2010-03-25 23:36:23 | 000,002,432 | ---- | M] () -- C:\Users\Piotr\AppData\Local\Tempaav500.html [2010-03-25 23:36:22 | 000,002,089 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TempAgz500.html [2010-03-24 20:24:36 | 000,002,432 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TempofM728.html [2010-03-24 20:24:36 | 000,002,089 | ---- | M] () -- C:\Users\Piotr\AppData\Local\Tempjra728.html [2010-03-24 02:43:31 | 000,002,432 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TempPG3720.html [2010-03-24 02:43:31 | 000,002,089 | ---- | M] () -- C:\Users\Piotr\AppData\Local\Tempbh3720.html [2010-03-23 23:46:51 | 000,000,162 | -H-- | M] () -- C:\Users\Piotr\Documents\~$praca.docx [2010-03-23 23:29:10 | 000,002,432 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TemphU2004.html [2010-03-23 23:29:10 | 000,002,089 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TempGz2004.html [2010-03-23 10:50:43 | 000,002,432 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TempSZz544.html [2010-03-23 10:50:43 | 000,002,089 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TempRrk544.html [2010-03-23 09:02:47 | 000,002,432 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TemptD1600.html [2010-03-23 09:02:47 | 000,002,089 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TempUq1600.html [2010-03-23 01:29:14 | 000,002,432 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TempxO1284.html [2010-03-23 01:29:14 | 000,002,089 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TempuO1284.html [2010-03-22 21:59:02 | 000,000,014 | ---- | M] () -- C:\Users\Piotr\Documents\Dokument.rtf [2010-03-22 01:25:29 | 000,002,432 | ---- | M] () -- C:\Users\Piotr\AppData\Local\Tempwz2680.html [2010-03-22 01:25:29 | 000,002,089 | ---- | M] () -- C:\Users\Piotr\AppData\Local\Tempzf2680.html [2010-03-21 15:03:43 | 000,000,000 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TempqI2556.html [2010-03-21 15:03:43 | 000,000,000 | ---- | M] () -- C:\Users\Piotr\AppData\Local\Temppp2556.html [2010-03-20 07:28:08 | 000,002,432 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TempcJ2016.html [2010-03-20 07:28:08 | 000,002,089 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TempZV2016.html [2010-03-20 00:51:24 | 000,002,432 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TempXXH952.html [2010-03-20 00:51:24 | 000,002,089 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TempjrN952.html [2010-03-18 20:05:46 | 000,002,432 | ---- | M] () -- C:\Users\Piotr\AppData\Local\Tempdx1384.html [2010-03-18 20:05:46 | 000,002,089 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TemppP1384.html [2010-03-18 17:00:43 | 000,002,432 | ---- | M] () -- C:\Users\Piotr\AppData\Local\Tempsd1112.html [2010-03-18 17:00:43 | 000,002,089 | ---- | M] () -- C:\Users\Piotr\AppData\Local\Temppg1112.html [2010-03-18 11:00:18 | 000,002,432 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TemprPc524.html [2010-03-18 11:00:18 | 000,002,089 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TempNgY524.html [2010-03-18 10:59:12 | 000,001,735 | ---- | M] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk [2010-03-18 10:56:52 | 000,691,696 | ---- | M] () -- C:\Windows\System32\drivers\sptd.sys [2010-03-18 01:48:00 | 000,002,432 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TempGG3336.html [2010-03-18 01:48:00 | 000,002,089 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TempTz3336.html [2010-03-17 01:23:04 | 000,002,432 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TempPi1376.html [2010-03-17 01:23:04 | 000,002,089 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TempgA1376.html [2010-03-16 15:42:31 | 000,002,432 | ---- | M] () -- C:\Users\Piotr\AppData\Local\Tempdn1412.html [2010-03-16 15:42:31 | 000,002,089 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TemprD1412.html [2010-03-16 11:11:11 | 000,002,432 | ---- | M] () -- C:\Users\Piotr\AppData\Local\Tempng1164.html [2010-03-16 11:11:11 | 000,002,089 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TempYg1164.html [2010-03-16 01:53:18 | 000,002,432 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TempUT1320.html [2010-03-16 01:53:18 | 000,002,089 | ---- | M] () -- C:\Users\Piotr\AppData\Local\TempMh1320.html [2010-03-15 16:49:33 | 000,001,914 | ---- | M] () -- C:\Users\Public\Desktop\LightScribe.lnk [2010-03-15 16:49:01 | 000,002,543 | ---- | M] () -- C:\Users\Public\Desktop\Nero StartSmart Essentials.lnk [2010-03-15 16:49:01 | 000,002,463 | ---- | M] () -- C:\Users\Public\Desktop\Nero Home Essentials SE.lnk [2010-03-15 16:49:01 | 000,002,059 | ---- | M] () -- C:\Users\Public\Desktop\Uaktualnienie online pakietu Nero.lnk [2010-03-13 16:45:31 | 003,400,444 | ---- | M] () -- C:\Users\Piotr\Documents\IMG_0237.JPG [2010-03-13 16:43:59 | 002,165,059 | ---- | M] () -- C:\Users\Piotr\Documents\IMG_0235.JPG [2010-03-13 09:11:12 | 000,000,552 | ---- | M] () -- C:\Users\Piotr\AppData\Local\d3d8caps.dat [2010-03-12 15:18:09 | 000,000,852 | ---- | M] () -- C:\Users\Piotr\Desktop\SuperDVD Video Editor.lnk [2010-03-04 18:24:27 | 000,000,991 | ---- | M] () -- C:\Users\Piotr\Desktop\Format Factory.lnk [2010-03-04 18:18:04 | 000,000,837 | ---- | M] () -- C:\Users\Piotr\Desktop\Any Video Converter.lnk [2010-03-04 18:15:16 | 000,000,891 | ---- | M] () -- C:\Users\Public\Desktop\VideoGet.lnk [2010-03-04 17:15:38 | 000,000,812 | ---- | M] () -- C:\Users\Piotr\Desktop\VMPCrypt 4 Shareware.lnk [2010-03-04 16:34:23 | 000,000,999 | ---- | M] () -- C:\Users\Piotr\Desktop\Szybkie Czyszczenie Dysku.lnk [2010-03-04 16:34:23 | 000,000,903 | ---- | M] () -- C:\Users\Piotr\Desktop\Odkurzacz.lnk [2010-03-04 15:17:59 | 000,000,787 | ---- | M] () -- C:\Users\Public\Desktop\BurnAware Free.lnk [2010-02-26 15:47:58 | 000,000,927 | ---- | M] () -- C:\Users\Piotr\Desktop\EVEREST Ultimate Edition.lnk [2010-02-24 22:45:06 | 000,013,364 | ---- | M] () -- C:\Users\Piotr\Documents\curriculum vitae Piotr.docx [2010-02-23 21:08:46 | 000,000,828 | ---- | M] () -- C:\Users\Piotr\Desktop\JDownloader.lnk [2010-02-23 15:11:11 | 000,000,222 | ---- | M] () -- C:\Users\Piotr\Desktop\cFos Traffic Shaping.lnk [2010-02-23 15:09:39 | 000,001,222 | ---- | M] () -- C:\Users\Piotr\Desktop\Funkcje cFosSpeed.lnk [2010-02-21 17:43:13 | 000,001,765 | ---- | M] () -- C:\Users\Piotr\Desktop\CrystalDiskMark.lnk [2010-02-21 17:36:52 | 000,001,765 | ---- | M] () -- C:\Users\Piotr\Desktop\CrystalDiskInfo.lnk [2010-02-15 20:37:26 | 000,021,101 | ---- | M] () -- C:\Users\Piotr\Documents\praca.docx [2010-02-07 11:39:47 | 000,000,034 | -H-- | M] () -- C:\Users\Piotr\Documents\.picasa.ini [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-03-31 18:49:41 | 000,000,605 | ---- | C] () -- C:\Users\Piotr\Documents\index.html [2010-03-31 18:33:32 | 000,015,880 | ---- | C] () -- C:\Windows\System32\lsdelete.exe [2010-03-31 17:03:07 | 000,000,664 | ---- | C] () -- C:\Users\Public\Desktop\Notepad++.lnk [2010-03-31 16:58:59 | 000,000,732 | ---- | C] () -- C:\Users\Piotr\Desktop\Defraggler.lnk [2010-03-31 16:54:48 | 000,000,655 | ---- | C] () -- C:\Users\Public\Desktop\OpenFM.lnk [2010-03-31 16:54:48 | 000,000,636 | ---- | C] () -- C:\Users\Public\Desktop\Nowe Gadu-Gadu.lnk [2010-03-31 16:26:10 | 000,001,007 | ---- | C] () -- C:\Users\Public\Desktop\Ad-Aware.lnk [2010-03-31 16:13:22 | 000,000,610 | ---- | C] () -- C:\Users\Public\Desktop\Winamp.lnk [2010-03-31 15:57:29 | 000,000,623 | ---- | C] () -- C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk [2010-03-31 15:02:24 | 000,000,596 | ---- | C] () -- C:\Users\Public\Desktop\Bank smaków.lnk [2010-03-31 14:44:35 | 000,000,754 | ---- | C] () -- C:\Users\Piotr\Desktop\1-Klick-EasyClean starten.lnk [2010-03-31 14:44:35 | 000,000,638 | ---- | C] () -- C:\Users\Piotr\Desktop\WashAndGo.lnk [2010-03-31 10:31:38 | 000,003,449 | ---- | C] () -- C:\Users\Piotr\.recently-used.xbel [2010-03-31 08:06:09 | 000,000,898 | ---- | C] () -- C:\Users\Public\Desktop\GIMP 2.lnk [2010-03-28 19:40:47 | 000,000,088 | RHS- | C] () -- C:\ProgramData\6A2ED24E39.sys [2010-03-28 19:40:46 | 000,000,848 | -HS- | C] () -- C:\ProgramData\KGyGaAvL.sys [2010-03-28 11:00:57 | 000,000,697 | ---- | C] () -- C:\Users\Public\Desktop\TmNationsForever.lnk [2010-03-27 12:32:40 | 000,002,054 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2010-03-27 12:16:45 | 000,002,432 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TempBN1072.html [2010-03-27 12:16:45 | 000,002,089 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TempcC1072.html [2010-03-27 11:34:47 | 000,002,432 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TempMwA772.html [2010-03-27 11:34:47 | 000,002,089 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TemplRY772.html [2010-03-26 09:58:32 | 000,002,432 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TempEY1680.html [2010-03-26 09:58:32 | 000,002,089 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TempfK1680.html [2010-03-26 07:48:30 | 000,002,432 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TemplJ1684.html [2010-03-26 07:48:30 | 000,002,089 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TempnL1684.html [2010-03-25 23:54:09 | 000,002,432 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TempAW4008.html [2010-03-25 23:54:09 | 000,002,089 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TempqT4008.html [2010-03-25 23:38:14 | 000,002,432 | ---- | C] () -- C:\Users\Piotr\AppData\Local\Tempjy1316.html [2010-03-25 23:38:14 | 000,002,089 | ---- | C] () -- C:\Users\Piotr\AppData\Local\Tempyn1316.html [2010-03-24 21:06:55 | 000,002,432 | ---- | C] () -- C:\Users\Piotr\AppData\Local\Tempaav500.html [2010-03-24 21:06:55 | 000,002,089 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TempAgz500.html [2010-03-24 09:32:59 | 000,002,432 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TempofM728.html [2010-03-24 09:32:59 | 000,002,089 | ---- | C] () -- C:\Users\Piotr\AppData\Local\Tempjra728.html [2010-03-23 23:46:51 | 000,000,162 | -H-- | C] () -- C:\Users\Piotr\Documents\~$praca.docx [2010-03-23 23:37:32 | 000,002,432 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TempPG3720.html [2010-03-23 23:37:32 | 000,002,089 | ---- | C] () -- C:\Users\Piotr\AppData\Local\Tempbh3720.html [2010-03-23 10:52:18 | 000,002,432 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TemphU2004.html [2010-03-23 10:52:18 | 000,002,089 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TempGz2004.html [2010-03-23 09:31:08 | 000,002,432 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TempSZz544.html [2010-03-23 09:31:08 | 000,002,089 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TempRrk544.html [2010-03-23 08:55:01 | 000,002,432 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TemptD1600.html [2010-03-23 08:55:01 | 000,002,089 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TempUq1600.html [2010-03-22 21:25:32 | 000,000,014 | ---- | C] () -- C:\Users\Piotr\Documents\Dokument.rtf [2010-03-22 08:54:35 | 000,002,432 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TempxO1284.html [2010-03-22 08:54:35 | 000,002,089 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TempuO1284.html [2010-03-21 15:56:16 | 000,002,432 | ---- | C] () -- C:\Users\Piotr\AppData\Local\Tempwz2680.html [2010-03-21 15:56:16 | 000,002,089 | ---- | C] () -- C:\Users\Piotr\AppData\Local\Tempzf2680.html [2010-03-21 15:03:43 | 000,000,000 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TempqI2556.html [2010-03-21 15:03:43 | 000,000,000 | ---- | C] () -- C:\Users\Piotr\AppData\Local\Temppp2556.html [2010-03-20 07:28:08 | 000,002,432 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TempcJ2016.html [2010-03-20 07:28:08 | 000,002,089 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TempZV2016.html [2010-03-18 20:09:44 | 000,002,432 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TempXXH952.html [2010-03-18 20:09:44 | 000,002,089 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TempjrN952.html [2010-03-18 18:12:33 | 000,002,432 | ---- | C] () -- C:\Users\Piotr\AppData\Local\Tempdx1384.html [2010-03-18 18:12:33 | 000,002,089 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TemppP1384.html [2010-03-18 11:02:22 | 000,002,432 | ---- | C] () -- C:\Users\Piotr\AppData\Local\Tempsd1112.html [2010-03-18 11:02:22 | 000,002,089 | ---- | C] () -- C:\Users\Piotr\AppData\Local\Temppg1112.html [2010-03-18 10:59:12 | 000,001,735 | ---- | C] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk [2010-03-18 10:56:52 | 000,691,696 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys [2010-03-18 08:29:14 | 000,002,432 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TemprPc524.html [2010-03-18 08:29:14 | 000,002,089 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TempNgY524.html [2010-03-17 10:00:13 | 000,002,432 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TempGG3336.html [2010-03-17 10:00:13 | 000,002,089 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TempTz3336.html [2010-03-16 19:45:39 | 000,002,432 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TempPi1376.html [2010-03-16 19:45:39 | 000,002,089 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TempgA1376.html [2010-03-16 11:13:06 | 000,002,432 | ---- | C] () -- C:\Users\Piotr\AppData\Local\Tempdn1412.html [2010-03-16 11:13:06 | 000,002,089 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TemprD1412.html [2010-03-16 09:33:23 | 000,002,432 | ---- | C] () -- C:\Users\Piotr\AppData\Local\Tempng1164.html [2010-03-16 09:33:23 | 000,002,089 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TempYg1164.html [2010-03-15 21:44:38 | 000,002,432 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TempUT1320.html [2010-03-15 21:44:38 | 000,002,089 | ---- | C] () -- C:\Users\Piotr\AppData\Local\TempMh1320.html [2010-03-15 16:49:33 | 000,001,914 | ---- | C] () -- C:\Users\Public\Desktop\LightScribe.lnk [2010-03-15 16:49:01 | 000,002,543 | ---- | C] () -- C:\Users\Public\Desktop\Nero StartSmart Essentials.lnk [2010-03-15 16:49:01 | 000,002,463 | ---- | C] () -- C:\Users\Public\Desktop\Nero Home Essentials SE.lnk [2010-03-15 16:49:01 | 000,002,059 | ---- | C] () -- C:\Users\Public\Desktop\Uaktualnienie online pakietu Nero.lnk [2010-03-13 16:44:04 | 003,400,444 | ---- | C] () -- C:\Users\Piotr\Documents\IMG_0237.JPG [2010-03-13 16:43:58 | 002,165,059 | ---- | C] () -- C:\Users\Piotr\Documents\IMG_0235.JPG [2010-03-13 09:21:28 | 000,007,181 | ---- | C] () -- C:\Windows\System32\nvdisp.nvu [2010-03-13 09:16:21 | 2680,709,120 | -HS- | C] () -- C:\hiberfil.sys [2010-03-13 09:11:12 | 000,000,552 | ---- | C] () -- C:\Users\Piotr\AppData\Local\d3d8caps.dat [2010-03-12 15:18:09 | 000,000,852 | ---- | C] () -- C:\Users\Piotr\Desktop\SuperDVD Video Editor.lnk [2010-03-04 18:24:27 | 000,000,991 | ---- | C] () -- C:\Users\Piotr\Desktop\Format Factory.lnk [2010-03-04 18:18:04 | 000,000,837 | ---- | C] () -- C:\Users\Piotr\Desktop\Any Video Converter.lnk [2010-03-04 18:15:16 | 000,000,891 | ---- | C] () -- C:\Users\Public\Desktop\VideoGet.lnk [2010-03-04 17:15:38 | 000,000,812 | ---- | C] () -- C:\Users\Piotr\Desktop\VMPCrypt 4 Shareware.lnk [2010-03-04 16:34:23 | 000,000,999 | ---- | C] () -- C:\Users\Piotr\Desktop\Szybkie Czyszczenie Dysku.lnk [2010-03-04 16:34:23 | 000,000,903 | ---- | C] () -- C:\Users\Piotr\Desktop\Odkurzacz.lnk [2010-03-04 15:21:12 | 028,873,622 | ---- | C] () -- C:\Users\Piotr\Documents\Dywan.avi [2010-03-04 15:19:56 | 000,000,204 | ---- | C] () -- C:\Users\Piotr\AppData\Roaming\burnaware.ini [2010-03-04 15:17:59 | 000,000,787 | ---- | C] () -- C:\Users\Public\Desktop\BurnAware Free.lnk [2010-03-02 00:12:46 | 000,006,114 | ---- | C] () -- C:\Windows\System32\SHELLLNK.TLB [2010-02-26 15:47:58 | 000,000,927 | ---- | C] () -- C:\Users\Piotr\Desktop\EVEREST Ultimate Edition.lnk [2010-02-24 21:20:06 | 000,013,364 | ---- | C] () -- C:\Users\Piotr\Documents\curriculum vitae Piotr.docx [2010-02-23 21:08:46 | 000,000,828 | ---- | C] () -- C:\Users\Piotr\Desktop\JDownloader.lnk [2010-02-23 15:11:11 | 000,000,222 | ---- | C] () -- C:\Users\Piotr\Desktop\cFos Traffic Shaping.lnk [2010-02-23 15:09:39 | 000,001,222 | ---- | C] () -- C:\Users\Piotr\Desktop\Funkcje cFosSpeed.lnk [2010-02-21 17:43:13 | 000,001,765 | ---- | C] () -- C:\Users\Piotr\Desktop\CrystalDiskMark.lnk [2010-02-21 17:36:52 | 000,001,765 | ---- | C] () -- C:\Users\Piotr\Desktop\CrystalDiskInfo.lnk [2010-02-15 21:41:50 | 000,029,450 | ---- | C] () -- C:\Users\Piotr\Documents\praca 2.docx [2010-02-15 18:18:43 | 000,021,101 | ---- | C] () -- C:\Users\Piotr\Documents\praca.docx [2010-02-07 11:39:47 | 000,000,034 | -H-- | C] () -- C:\Users\Piotr\Documents\.picasa.ini [2010-01-28 10:16:18 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll [2010-01-26 14:52:36 | 000,003,972 | ---- | C] () -- C:\Windows\System32\drivers\PciBus.sys [2010-01-26 09:39:25 | 000,040,960 | ---- | C] () -- C:\Users\Piotr\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-01-24 17:01:38 | 000,178,176 | ---- | C] () -- C:\Windows\System32\unrar.dll [2010-01-24 17:01:37 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini [2010-01-24 17:01:30 | 000,881,664 | ---- | C] () -- C:\Windows\System32\xvidcore.dll [2010-01-24 17:01:30 | 000,205,824 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll [2010-01-24 17:01:22 | 000,085,504 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll [2010-01-24 17:01:22 | 000,000,547 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll.manifest [2010-01-24 16:50:10 | 000,002,168 | ---- | C] () -- C:\ProgramData\hpzinstall.log [2010-01-24 15:08:44 | 000,001,356 | ---- | C] () -- C:\Users\Piotr\AppData\Local\d3d9caps.dat [2010-01-24 15:08:42 | 004,456,448 | -HS- | C] () -- C:\Users\Piotr\ntuser.dat [2010-01-24 15:08:42 | 000,524,288 | -HS- | C] () -- C:\Users\Piotr\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000002.regtrans-ms [2010-01-24 15:08:42 | 000,524,288 | -HS- | C] () -- C:\Users\Piotr\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000001.regtrans-ms [2010-01-24 15:08:42 | 000,262,144 | -H-- | C] () -- C:\Users\Piotr\ntuser.dat.LOG1 [2010-01-24 15:08:42 | 000,065,536 | -HS- | C] () -- C:\Users\Piotr\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TM.blf [2010-01-24 15:08:42 | 000,000,020 | -HS- | C] () -- C:\Users\Piotr\ntuser.ini [2010-01-24 15:08:42 | 000,000,000 | -H-- | C] () -- C:\Users\Piotr\ntuser.dat.LOG2 [2009-12-03 10:27:28 | 000,080,416 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll [2008-08-18 14:27:42 | 000,034,312 | ---- | C] () -- C:\Windows\System32\drivers\epfwtdir.sys [2006-11-02 14:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll [2006-11-02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini [1996-04-03 21:33:26 | 000,005,248 | ---- | C] () -- C:\Windows\System32\giveio.sys [color=#E56717]========== LOP Check ==========[/color] [2010-02-26 19:43:24 | 000,000,000 | ---D | M] -- C:\Users\Piotr\AppData\Roaming\Alawar [2010-03-08 12:50:19 | 000,000,000 | ---D | M] -- C:\Users\Piotr\AppData\Roaming\Any Video Converter [2010-03-31 15:02:29 | 000,000,000 | ---D | M] -- C:\Users\Piotr\AppData\Roaming\Apetito.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 [2010-03-18 11:19:07 | 000,000,000 | ---D | M] -- C:\Users\Piotr\AppData\Roaming\DAEMON Tools Lite [2010-03-16 01:53:18 | 000,000,000 | ---D | M] -- C:\Users\Piotr\AppData\Roaming\Gadu-Gadu 10 [2010-03-31 10:31:38 | 000,000,000 | ---D | M] -- C:\Users\Piotr\AppData\Roaming\gtk-2.0 [2010-03-27 13:03:36 | 000,000,000 | ---D | M] -- C:\Users\Piotr\AppData\Roaming\ipla [2010-01-25 12:47:29 | 000,000,000 | ---D | M] -- C:\Users\Piotr\AppData\Roaming\IrfanView [2010-03-31 17:05:20 | 000,000,000 | ---D | M] -- C:\Users\Piotr\AppData\Roaming\Notepad++ [2010-04-06 20:05:49 | 000,000,000 | ---D | M] -- C:\Users\Piotr\AppData\Roaming\Nowe Gadu-Gadu [2010-03-15 21:46:54 | 000,000,000 | ---D | M] -- C:\Users\Piotr\AppData\Roaming\OpenFM [2010-01-26 10:57:33 | 000,000,000 | ---D | M] -- C:\Users\Piotr\AppData\Roaming\Thinstall [2010-03-05 21:02:13 | 000,000,000 | ---D | M] -- C:\Users\Piotr\AppData\Roaming\XnView [2010-03-24 00:48:34 | 000,000,000 | ---D | M] -- C:\Users\Piotr\AppData\Roaming\xVideoServiceThief [2010-04-07 12:35:09 | 000,032,512 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT [2010-04-07 07:38:46 | 000,000,418 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{191B2B7D-D5F7-4843-BAE7-173E4DE4409C}.job [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2010-04-07 12:37:43 | 000,007,388 | ---- | M] () -- C:\aaw7boot.log [2006-09-18 23:43:36 | 000,000,024 | ---- | M] () -- C:\autoexec.bat [2009-04-11 08:36:36 | 000,333,257 | RHS- | M] () -- C:\bootmgr [2010-01-24 14:55:19 | 000,008,192 | R-S- | M] () -- C:\BOOTSECT.BAK [2006-09-18 23:43:37 | 000,000,010 | ---- | M] () -- C:\config.sys [2010-04-07 12:37:44 | 2680,709,120 | -HS- | M] () -- C:\hiberfil.sys [2010-01-25 16:04:10 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-01-25 16:04:10 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2010-04-07 12:37:43 | 2996,584,448 | -HS- | M] () -- C:\pagefile.sys [color=#A23BEC]< MD5 for: AGP440.SYS >[/color] [2008-01-19 09:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_51b95d75\AGP440.sys [2008-01-19 09:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_f750e484\AGP440.sys [2008-01-19 09:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\AGP440.sys [2008-01-19 09:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\AGP440.sys [2006-11-02 11:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\drivers\AGP440.sys [2006-11-02 11:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\AGP440.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2009-04-11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\drivers\atapi.sys [2009-04-11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_b12d8e84\atapi.sys [2009-04-11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\atapi.sys [2008-01-19 09:41:30 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_cc18792d\atapi.sys [2008-01-19 09:41:30 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18000_none_dd38281a2189ce9c\atapi.sys [2006-11-02 11:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys [2010-01-24 18:25:23 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=B35CFCEF838382AB6490B321C87EDF17 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_7de13c21\atapi.sys [2010-01-24 18:25:23 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=B35CFCEF838382AB6490B321C87EDF17 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.16632_none_db337a442479c42c\atapi.sys [2010-01-24 18:25:21 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=E03E8C99D15D0381E02743C36AFC7C6F -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.20757_none_dbac78a93da31a8b\atapi.sys [color=#A23BEC]< MD5 for: BEEP.SYS >[/color] [2008-01-19 07:49:10 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=67E506B75BD5326A3EC7B70BD014DFB6 -- C:\Windows\System32\drivers\beep.sys [2008-01-19 07:49:10 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=67E506B75BD5326A3EC7B70BD014DFB6 -- C:\Windows\winsxs\x86_microsoft-windows-beepsys_31bf3856ad364e35_6.0.6001.18000_none_c420a153079d485b\beep.sys [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2008-01-19 07:49:51 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=1EC25CEA0DE6AC4718BF89F9E1778B57 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_a29e71c6\cdrom.sys [2008-01-19 07:49:51 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=1EC25CEA0DE6AC4718BF89F9E1778B57 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.0.6001.18000_none_5fa95be2a3c76a4a\cdrom.sys [2009-04-11 06:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\System32\drivers\cdrom.sys [2009-04-11 06:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_c949a5b6\cdrom.sys [2009-04-11 06:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.0.6002.18005_none_6194d4eea0e93596\cdrom.sys [2006-11-02 10:51:44 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=8D1866E61AF096AE8B582454F5E4D303 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_e487f727\cdrom.sys [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2009-04-11 08:32:49 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D7BBB42 -- C:\Windows\System32\drivers\ndis.sys [2009-04-11 08:32:49 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D7BBB42 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6002.18005_none_a9b2a4d31930d864\ndis.sys [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2009-04-11 08:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\System32\winlogon.exe [2009-04-11 08:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe < End of report > [/log]
Mateusz J. komentarz 7 kwietnia 2010 komentarz 7 kwietnia 2010 Do notatnika wklej: [code]Windows Registry Editor Version 5.00 [-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2] [/code]Plik ==> Zapisz jako ==> Zmień rozszerzenie na Wszystkie pliki ==> Zapisz pod nazwą [b]FIX.REG[/b] Uruchom utworzony plik [b]FIX.REG[/b] i potwierdź dodanie do Rejestru i zresetuj komputer. Co do Firefoxa to widzę tutaj dodatki/pluginy do niego. Np. Tor, spróbowałbym je wyłączyć/usunąć.
Mateusz J. komentarz 7 kwietnia 2010 komentarz 7 kwietnia 2010 Usuniesz szkodliwy wpis w rejestrze. Właściwie to teraz już resztkę.
rikiMor0102 komentarz 8 kwietnia 2010 Autor komentarz 8 kwietnia 2010 Nie da się dodać tego pliku do rejestru ! Wyświetla się Nie można zaimportować C:/users/Piotr?documents/FIX.REG. Określony plik nie jest skryptem rejestru. Można importować tylko binarne pliki rejestru z wewnątrz Edytora rejestru. CO zrobić z tym ?
Mateusz J. komentarz 8 kwietnia 2010 komentarz 8 kwietnia 2010 Spróbuj w notatniku wkleić: Windows Registry Editor Version 5.00 [-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2]
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.