x-kom hosting

Fałszywe błędy 404-Not Found.

Flavaaa
utworzono
utworzono (edytowane)

Witam mam dziwny problem i zarazem taki ze nikt na zadnym forum nie może mi pomóc...
Gdy w adresie wpisuje jakąs strone(nie z wszystkimi tak sie dzieje) Przenosi mnie na streone główną google albo wyświetla sie EROR 404-Not Found..
Linki wpisuje poprawnie np wp.pl. www.interia.pl. Allegro.pl etc
Czym to moze byc spowodowane? Wirusów mi nie widzi ani AVAST ani NOD32 tzn wczesniej pare było jeden w systemie(nazwy ich nie pamietam) zostały skosowane lecz problem jest nadal
Jesli to nie ten temat,nie ten dział czegoś nie podałem to przepraszam to mój 1 post.

[color="#ff0000"]
//przenosze do Bezpieczeństwa
//dan[/color]

danielek316
komentarz
komentarz

Zapoznaj sie z tym tematem: http://www.forumpc.pl/index.php?showtopic=104338 i daj loga z OTL. Może masz jakąś infekcję która tak miesza Ci w systemie.

  • Dobra wypowiedź 1
  • 3 tygodnie później...
Flavaaa
komentarz
komentarz

[log]OTL logfile created on: 2010-05-03 15:37:47 - Run 1
OTL by OldTimer - Version 3.2.4.1 Folder = C:\Documents and Settings\Administrator\My Documents\Pobieranie
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Poland | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 63,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 80,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 37,25 Gb Total Space | 9,32 Gb Free Space | 25,01% Space Free | Partition Type: NTFS
Drive D: | 71,95 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive E: | 39,06 Gb Total Space | 8,46 Gb Free Space | 21,65% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: MATEUSZ-2DD7CF8
Current User Name: Administrator
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 60 Days
Output = Standard

[color="#e56717"]========== Processes (All) ==========[/color]

PRC - [2010-05-03 15:35:02 | 000,570,880 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\My Documents\Pobieranie\OTL.exe
PRC - [2010-04-21 08:40:00 | 011,985,504 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe
PRC - [2010-04-12 22:46:36 | 001,135,912 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2010-04-06 19:44:14 | 000,247,856 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\openvpnas.exe
PRC - [2010-04-01 00:24:08 | 000,194,608 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\hsswd.exe
PRC - [2010-03-26 19:07:02 | 000,331,824 | ---- | M] (AnchorFree Inc.) -- C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe
PRC - [2010-03-25 08:47:24 | 000,159,744 | ---- | M] (Locktime Software) -- C:\Program Files\NetLimiter 2 Monitor\NLClient.exe
PRC - [2010-03-25 08:45:44 | 000,495,616 | ---- | M] (Locktime Software) -- C:\Program Files\NetLimiter 2 Monitor\nlsvc.exe
PRC - [2010-02-13 18:08:12 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2010-02-03 03:21:20 | 000,602,112 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe
PRC - [2010-01-11 23:21:52 | 000,246,504 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
PRC - [2009-04-23 01:37:16 | 000,065,536 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
PRC - [2009-03-27 19:22:08 | 017,567,744 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.EXE
PRC - [2009-03-08 21:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\iexplore.exe
PRC - [2009-02-06 11:11:05 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe
PRC - [2008-06-19 20:40:01 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\taskmgr.exe
PRC - [2008-04-14 12:00:00 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008-04-14 12:00:00 | 000,507,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe
PRC - [2008-04-14 12:00:00 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\NOTEPAD.EXE
PRC - [2008-04-14 12:00:00 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe
PRC - [2008-04-14 12:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe
PRC - [2008-04-14 12:00:00 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe
PRC - [2008-04-14 12:00:00 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe
PRC - [2008-04-14 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS]
PRC - [2008-04-14 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE]
PRC - [2008-04-14 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS]
PRC - [2008-04-14 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-04-14 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-04-14 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [IMGSVC]
PRC - [2008-04-14 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [HTTPFILTER]
PRC - [2008-04-14 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH]
PRC - [2008-04-14 12:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe
PRC - [2008-04-14 12:00:00 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe
PRC - [2008-03-23 11:34:42 | 000,256,536 | R--- | M] (Intel Corporation) -- C:\WINDOWS\system32\igfxsrvc.exe
PRC - [2008-02-20 11:08:46 | 000,472,320 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2007-04-25 23:36:26 | 000,835,584 | ---- | M] () -- C:\WINDOWS\vsnp325.exe
PRC - [2007-04-21 17:30:54 | 000,270,336 | ---- | M] () -- C:\WINDOWS\tsnp325.exe
PRC - [2007-03-06 17:35:02 | 000,198,168 | ---- | M] (InterVideo Inc.) -- C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe
PRC - [2007-03-03 20:48:28 | 000,067,056 | ---- | M] (Ulead Systems, Inc.) -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
PRC - [2007-02-12 22:50:40 | 000,020,480 | ---- | M] () -- C:\WINDOWS\FixCamera.exe
PRC - [2006-09-08 01:19:28 | 000,015,872 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerAssistant.exe
PRC - [2006-05-03 16:48:46 | 000,307,200 | ---- | M] (ta2027) -- C:\Program Files\Styler\Styler.exe
PRC - [2004-09-19 20:27:46 | 000,065,536 | ---- | M] () -- C:\Program Files\LClock\LClock.exe


[color="#e56717"]========== Modules (All) ==========[/color]

MOD - [2010-05-03 15:35:02 | 000,570,880 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\My Documents\Pobieranie\OTL.exe
MOD - [2010-02-25 18:54:36 | 011,070,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ieframe.dll
MOD - [2010-02-25 06:24:37 | 001,209,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\urlmon.dll
MOD - [2010-02-25 06:24:37 | 000,916,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wininet.dll
MOD - [2010-02-25 06:24:35 | 001,985,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\iertutil.dll
MOD - [2009-12-08 09:23:28 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll
MOD - [2009-07-17 19:01:06 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\atl.dll
MOD - [2009-06-25 08:25:26 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll
MOD - [2009-04-15 14:51:25 | 000,585,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll
MOD - [2009-03-21 14:06:58 | 000,989,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll
MOD - [2009-02-09 12:10:48 | 000,714,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll
MOD - [2009-02-09 12:10:48 | 000,617,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll
MOD - [2009-01-08 01:20:36 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\normaliz.dll
MOD - [2008-10-23 12:36:14 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll
MOD - [2008-10-15 16:34:24 | 000,337,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netapi32.dll
MOD - [2008-06-20 17:46:57 | 000,147,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dnsapi.dll
MOD - [2008-06-17 19:02:19 | 008,461,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll
MOD - [2008-05-20 18:40:06 | 000,218,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll
MOD - [2008-04-14 12:00:00 | 001,287,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll
MOD - [2008-04-14 12:00:00 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
MOD - [2008-04-14 12:00:00 | 001,028,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfc42.dll
MOD - [2008-04-14 12:00:00 | 000,985,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll
MOD - [2008-04-14 12:00:00 | 000,792,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll
MOD - [2008-04-14 12:00:00 | 000,727,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\userenv.dll
MOD - [2008-04-14 12:00:00 | 000,578,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll
MOD - [2008-04-14 12:00:00 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll
MOD - [2008-04-14 12:00:00 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll
MOD - [2008-04-14 12:00:00 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll
MOD - [2008-04-14 12:00:00 | 000,326,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cscui.dll
MOD - [2008-04-14 12:00:00 | 000,297,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTF.dll
MOD - [2008-04-14 12:00:00 | 000,276,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll
MOD - [2008-04-14 12:00:00 | 000,274,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mstask.dll
MOD - [2008-04-14 12:00:00 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll
MOD - [2008-04-14 12:00:00 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTFIME.IME
MOD - [2008-04-14 12:00:00 | 000,172,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wldap32.dll
MOD - [2008-04-14 12:00:00 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv
MOD - [2008-04-14 12:00:00 | 000,143,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntshrui.dll
MOD - [2008-04-14 12:00:00 | 000,125,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\apphelp.dll
MOD - [2008-04-14 12:00:00 | 000,118,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntmarta.dll
MOD - [2008-04-14 12:00:00 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
MOD - [2008-04-14 12:00:00 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imm32.dll
MOD - [2008-04-14 12:00:00 | 000,101,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cscdll.dll
MOD - [2008-04-14 12:00:00 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll
MOD - [2008-04-14 12:00:00 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ws2_32.dll
MOD - [2008-04-14 12:00:00 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll
MOD - [2008-04-14 12:00:00 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdsapi.dll
MOD - [2008-04-14 12:00:00 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samlib.dll
MOD - [2008-04-14 12:00:00 | 000,059,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mpr.dll
MOD - [2008-04-14 12:00:00 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll
MOD - [2008-04-14 12:00:00 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ws2help.dll
MOD - [2008-04-14 12:00:00 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\linkinfo.dll
MOD - [2008-04-14 12:00:00 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll
MOD - [2006-09-08 01:18:58 | 000,004,608 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerHook.dll
MOD - [2006-05-02 11:10:50 | 000,053,248 | ---- | M] (ta2027) -- C:\Program Files\Styler\StylerHelper.dll


[color="#e56717"]========== Win32 Services (SafeList) ==========[/color]

SRV - [2010-04-06 19:44:46 | 000,057,640 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Hotspot Shield\bin\HssTrayService.exe -- (HssTrayService)
SRV - [2010-04-06 19:44:14 | 000,247,856 | ---- | M] () [Auto | Running] -- C:\Program Files\Hotspot Shield\bin\openvpnas.exe -- (HotspotShieldService)
SRV - [2010-04-01 00:24:08 | 000,194,608 | ---- | M] () [Auto | Running] -- C:\Program Files\Hotspot Shield\bin\hsswd.exe -- (HssWd)
SRV - [2010-03-26 19:07:02 | 000,331,824 | ---- | M] (AnchorFree Inc.) [Auto | Running] -- C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe -- (HssSrv)
SRV - [2010-03-25 08:45:44 | 000,495,616 | ---- | M] (Locktime Software) [Auto | Running] -- C:\Program Files\NetLimiter 2 Monitor\nlsvc.exe -- (nlsvc)
SRV - [2008-02-20 11:14:52 | 000,019,200 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV - [2008-02-20 11:08:46 | 000,472,320 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2007-03-06 17:35:02 | 000,198,168 | ---- | M] (InterVideo Inc.) [Auto | Running] -- C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe -- (Capture Device Service)
SRV - [2007-03-03 20:48:28 | 000,067,056 | ---- | M] (Ulead Systems, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper)


[color="#e56717"]========== Driver Services (SafeList) ==========[/color]

DRV - [2010-04-03 14:34:04 | 000,278,984 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2010-03-25 08:49:06 | 000,082,360 | ---- | M] (Locktime Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\nltdi.sys -- (nltdi)
DRV - [2010-03-05 20:15:15 | 000,018,048 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2010-02-03 22:56:56 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2010-02-03 04:52:08 | 004,605,952 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2010-01-08 23:42:40 | 000,032,768 | ---- | M] (AnchorFree Inc) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\taphss.sys -- (taphss)
DRV - [2009-04-24 03:22:16 | 000,141,568 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2009-03-31 01:13:30 | 005,063,168 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2008-08-06 04:10:12 | 001,684,736 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)
DRV - [2008-04-14 12:00:00 | 000,144,384 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2008-03-19 08:45:50 | 005,955,872 | R--- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\igxpmp32.sys -- (ialm)
DRV - [2008-02-20 11:11:16 | 000,033,800 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir)
DRV - [2008-02-20 11:02:22 | 000,029,704 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\easdrv.sys -- (easdrv)
DRV - [2008-02-20 11:01:30 | 000,039,944 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2007-07-21 01:40:10 | 000,084,992 | ---- | M] (ATI Research Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV - [2007-04-26 19:03:12 | 010,343,168 | ---- | M] (Sonix Co. Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\snp325.sys -- (SNP325) USB PC Camera (SNPSTD325)
DRV - [2006-02-26 15:02:49 | 000,005,810 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)
DRV - [2006-01-04 23:41:48 | 001,389,056 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)
DRV - [2005-08-18 08:00:00 | 000,007,168 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt -- (EverestDriver)


[color="#e56717"]========== Standard Registry (SafeList) ==========[/color]


[color="#e56717"]========== Internet Explorer ==========[/color]



IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [url="http://www.google.com/"]http://www.google.com/[/url]
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [url="http://www.google.com/"]http://www.google.com/[/url]
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [url="http://www.google.com/"]http://www.google.com/[/url]
IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1220945662-1801674531-1214014110-500\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [url="http://wp.pl/"]http://wp.pl/[/url]
IE - HKU\S-1-5-21-1220945662-1801674531-1214014110-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1220945662-1801674531-1214014110-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

[color="#e56717"]========== FireFox ==========[/color]

FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: battlefieldheroespatcher@ea.com:4.0.53.0

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-04-26 18:08:40 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-04-26 18:08:30 | 000,000,000 | ---D | M]

[2010-04-26 18:09:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Extensions
[2010-05-03 13:34:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\vevcbkcb.default\extensions
[2010-04-26 19:32:33 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\vevcbkcb.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010-04-28 15:52:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\vevcbkcb.default\extensions\battlefieldheroespatcher@ea.com
[2010-04-26 18:08:30 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010-04-01 17:33:11 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010-04-01 17:33:11 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2010-04-01 17:33:11 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2010-04-01 17:33:11 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010-04-01 17:33:11 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2010-04-01 17:33:11 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2009-06-19 01:28:08 | 000,003,601 | RHS- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 216.239.59.104 nasza-klasa.pl
O1 - Hosts: 216.239.59.104 onet.pl
O1 - Hosts: 216.239.59.104 allegro.pl
O1 - Hosts: 216.239.59.104 wp.pl
O1 - Hosts: 216.239.59.104 youtube.com
O1 - Hosts: 216.239.59.104 interia.pl
O1 - Hosts: 216.239.59.104 wikipedia.org
O1 - Hosts: 216.239.59.104 gazeta.pl
O1 - Hosts: 216.239.59.104 o2.pl
O1 - Hosts: 216.239.59.104 fotka.pl
O1 - Hosts: 216.239.59.104 wrzuta.pl
O1 - Hosts: 216.239.59.104 otomoto.pl
O1 - Hosts: 216.239.59.104 pudelek.pl
O1 - Hosts: 216.239.59.104 rapidshare.com
O1 - Hosts: 216.239.59.104 msn.com
O1 - Hosts: 216.239.59.104 redtube.com
O1 - Hosts: 216.239.59.104 peb.pl
O1 - Hosts: 216.239.59.104 grono.net
O1 - Hosts: 216.239.59.104 blogger.com
O1 - Hosts: 216.239.59.104 yahoo.com
O1 - Hosts: 216.239.59.104 gry.pl
O1 - Hosts: 216.239.59.104 filmweb.pl
O1 - Hosts: 216.239.59.104 travian.pl
O1 - Hosts: 216.239.59.104 microsoft.com
O1 - Hosts: 216.239.59.104 imageshack.us
O1 - Hosts: 178 more lines...
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\All Users\Application Data\Gadu-Gadu 10\_userdata\ggbho.2.dll (GG Network S.A.)
O2 - BHO: (Hotspot Shield Class) - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files\Hotspot Shield\hssie\HssIE.dll (AnchorFree Inc.)
O3 - HKLM\..\Toolbar: (StylerToolBar) - {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - C:\Program Files\Styler\TB\StylerTB.dll (StyleFantasist)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [FixCamera] C:\WINDOWS\FixCamera.exe ()
O4 - HKLM..\Run: [LClock] C:\Program Files\LClock\LClock.exe ()
O4 - HKLM..\Run: [snp325] C:\WINDOWS\vsnp325.exe ()
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [tsnp325] C:\WINDOWS\tsnp325.exe ()
O4 - HKLM..\Run: [UnlockerAssistant] C:\Program Files\Unlocker\UnlockerAssistant.exe ()
O4 - HKLM..\Run: [UVS11 Preload] C:\Program Files\Ulead Systems\Ulead VideoStudio 11\uvPL.exe (InterVideo Digital Technology Corporation)
O4 - HKU\S-1-5-21-1220945662-1801674531-1214014110-500..\Run: [Pando Media Booster] C:\Program Files\Pando Networks\Media Booster\PMB.exe ()
O4 - HKU\S-1-5-21-1220945662-1801674531-1214014110-500..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe File not found
O4 - HKU\.DEFAULT..\RunOnce: [ShowDeskFix] File not found
O4 - HKU\S-1-5-18..\RunOnce: [ShowDeskFix] File not found
O4 - HKU\S-1-5-20..\RunOnce: [ShowDeskFix] File not found
O4 - Startup: C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\Styler.lnk = C:\Documents and Settings\Administrator\Application Data\Microsoft\Installer\{E9ECF354-2422-4FDB-9ABF-D8ADAC0EF941}\_585b207a.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe (Adobe Systems Incorporated)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoInternetIcon = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1220945662-1801674531-1214014110-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1220945662-1801674531-1214014110-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoInternetIcon = 0
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} [url="http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab"]http://download.micr...heckControl.cab[/url] (Windows Genuine Advantage Validation Tool)
O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} [url="http://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab"]http://download.micr...78f/wvc1dmo.cab[/url] (Reg Error: Key error.)
O16 - DPF: {784797A8-342D-4072-9486-03C8D0F2F0A1} [url="https://www.battlefieldheroes.com/static/updater/BFHUpdater_4.0.53.0.cab"]https://www.battlefi...er_4.0.53.0.cab[/url] (Battlefield Heroes Updater)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_06-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_06)
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_18)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 62.179.1.63 62.179.1.62
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\Antiwpa: DllName - antiwpa.dll - C:\WINDOWS\System32\antiwpa.dll ()
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O20 - Winlogon\Notify\kbupdate: DllName - kbupdate.dll - File not found
O20 - Winlogon\Notify\WgaLogon: DllName - WgaLogon.dll - File not found
O24 - Desktop WallPaper: C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010-02-13 03:59:25 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2004-09-29 20:36:29 | 000,000,045 | RH-- | M] () - D:\autorun.inf -- [ CDFS ]
O33 - MountPoints2\{9632f96e-180d-11df-908c-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{9632f96e-180d-11df-908c-806d6172696f}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{9632f96e-180d-11df-908c-806d6172696f}\Shell\AutoRun\command - "" = D:\Launch.exe -- [2005-03-31 22:10:41 | 006,533,102 | R--- | M] (Macromedia, Inc.)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2010-02-13 03:58:57 | 000,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found


SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

[color="#e56717"]========== Files/Folders - Created Within 60 Days ==========[/color]

[2010-05-03 15:34:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\Pobieranie
[2010-05-03 15:32:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\.thumbnails
[2010-05-03 14:30:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\SyncToyData
[2010-05-03 14:24:22 | 000,000,000 | ---D | C] -- C:\ubuntu
[2010-05-03 14:19:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Google
[2010-05-03 14:16:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Google
[2010-05-03 14:14:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Google
[2010-05-03 14:14:36 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2010-05-03 13:46:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Apple Computer
[2010-05-03 13:46:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Apple Computer
[2010-05-03 13:46:08 | 000,000,000 | ---D | C] -- C:\Program Files\Safari
[2010-05-03 13:46:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Apple Computer
[2010-05-03 13:45:57 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2010-05-03 13:45:43 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2010-05-03 13:45:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Apple
[2010-05-03 13:45:36 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2010-05-03 13:45:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Apple
[2010-05-03 11:48:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\gegl-0.0
[2010-05-02 11:08:36 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2010-05-02 11:08:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\ESET
[2010-05-02 10:33:12 | 000,000,000 | ---D | C] -- C:\Program Files\Odkurzacz
[2010-05-02 10:32:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Locktime
[2010-05-02 10:30:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Locktime
[2010-05-02 10:30:28 | 000,000,000 | ---D | C] -- C:\Program Files\NetLimiter 2 Monitor
[2010-04-30 12:46:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\Wins32
[2010-04-30 12:46:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit
[2010-04-30 12:46:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start
[2010-04-30 11:25:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\OpenFM
[2010-04-30 11:25:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\OpenFM
[2010-04-28 16:03:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\PunkBuster
[2010-04-28 15:48:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\Battlefield Heroes
[2010-04-28 13:39:47 | 000,000,000 | ---D | C] -- C:\Battlefield
[2010-04-28 10:25:17 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Akamai
[2010-04-26 18:08:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Mozilla
[2010-04-26 18:08:29 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2010-04-25 09:03:39 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Administrator\IECompatCache
[2010-04-25 08:30:43 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu 10
[2010-04-24 16:45:16 | 000,000,000 | ---D | C] -- C:\gamigo AG
[2010-04-24 12:08:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\PMB Files
[2010-04-24 12:08:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\PMB Files
[2010-04-24 12:07:23 | 000,000,000 | ---D | C] -- C:\Program Files\Pando Networks
[2010-04-23 19:45:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Identities
[2010-04-23 16:19:09 | 000,000,000 | ---D | C] -- C:\Program Files\InTune
[2010-04-22 13:51:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\CAPCOM
[2010-04-22 13:51:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\CAPCOM
[2010-04-22 13:22:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\devil_may_cry_r_poradnik
[2010-04-21 13:21:31 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2010-04-19 12:12:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\Roweer
[2010-04-18 14:27:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared
[2010-04-18 14:16:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Symantec
[2010-04-18 11:16:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\DivX
[2010-04-18 10:23:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\mama
[2010-04-17 21:11:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\Ulead VideoStudio
[2010-04-17 21:10:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Ulead Systems
[2010-04-17 21:09:38 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InterVideo
[2010-04-17 21:09:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\InterVideo
[2010-04-17 21:08:47 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Components
[2010-04-17 21:07:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Ulead Systems
[2010-04-17 21:07:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Ulead Systems
[2010-04-17 21:07:33 | 000,000,000 | ---D | C] -- C:\Program Files\Ulead Systems
[2010-04-17 19:59:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\Xilisoft Corporation
[2010-04-17 19:59:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Xilisoft Corporation
[2010-04-17 19:58:40 | 000,000,000 | ---D | C] -- C:\Program Files\Xilisoft
[2010-04-17 19:22:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\Od
[2010-04-13 12:52:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Office Genuine Advantage
[2010-04-13 12:52:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
[2010-04-13 12:48:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\Legalizacja XP - najnowsza
[2010-04-11 15:47:38 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Administrator\PrivacIE
[2010-04-11 13:43:00 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Administrator\IETldCache
[2010-04-11 13:41:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2010-04-11 13:39:04 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2010-04-10 19:25:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Ubisoft
[2010-04-10 19:11:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Ubisoft
[2010-04-08 13:31:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump
[2010-04-08 12:41:23 | 000,000,000 | ---D | C] -- C:\Program Files\Lame for Audacity
[2010-04-03 15:34:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\The Witcher
[2010-04-03 15:34:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\The Witcher
[2010-04-02 22:10:57 | 000,000,000 | ---D | C] -- C:\Fraps
[2010-04-02 12:59:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\LogMeIn Hamachi
[2010-04-02 12:59:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\LogMeIn Hamachi
[2010-03-31 01:58:24 | 000,353,592 | ---- | C] (DivX, Inc.) -- C:\WINDOWS\System32\DivXControlPanelApplet.cpl
[2010-03-29 15:41:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Mozilla
[2010-03-29 15:41:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\SecondLife
[2010-03-29 15:41:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\SecondLife
[2010-03-28 13:22:26 | 000,086,016 | ---- | C] (Beepa P/L) -- C:\WINDOWS\System32\frapsvid.dll
[2010-03-27 23:34:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Camfrog
[2010-03-27 23:33:51 | 000,000,000 | ---D | C] -- C:\Program Files\Camfrog
[2010-03-27 14:37:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\Test Drive Unlimited
[2010-03-27 14:36:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Test Drive Unlimited
[2010-03-27 09:27:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Audacity
[2010-03-27 09:26:51 | 000,000,000 | ---D | C] -- C:\Program Files\Audacity 1.3 Beta (Unicode)
[2010-03-27 09:24:06 | 000,000,000 | ---D | C] -- C:\Program Files\FREE Hi-Q Recorder
[2010-03-25 08:49:06 | 000,082,360 | ---- | C] (Locktime Software) -- C:\WINDOWS\System32\drivers\nltdi.sys
[2010-03-19 17:02:44 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2010-03-19 17:02:35 | 000,000,000 | ---D | C] -- C:\Program Files\Cyanide
[2010-03-19 16:44:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt
[2010-03-19 13:15:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Tomato
[2010-03-19 13:15:10 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Tomato
[2010-03-13 20:38:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\gtk-2.0
[2010-03-13 20:22:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\Textury
[2010-03-11 12:10:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\AAA
[2010-03-10 08:04:54 | 000,421,888 | ---- | C] (Gabest) -- C:\WINDOWS\System32\RealMediaSplitter.ax
[2010-03-10 08:04:54 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2010-03-08 17:59:18 | 000,094,208 | ---- | C] (DivX, Inc.) -- C:\WINDOWS\System32\dpl100.dll
[2010-03-08 13:15:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\ooVoo Details
[2010-03-08 13:15:23 | 000,000,000 | ---D | C] -- C:\Program Files\ooVoo
[2010-03-07 18:12:47 | 000,000,000 | ---D | C] -- C:\Hotspot Shield
[2010-03-07 18:12:41 | 000,000,000 | ---D | C] -- C:\Program Files\Hotspot Shield
[2010-03-06 22:23:55 | 000,681,472 | ---- | C] (KM-Software) -- C:\Documents and Settings\Administrator\My Documents\msvcrt(DEBUG).dll
[2010-03-06 20:31:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\Mount&Blade Screenshots
[2010-03-06 19:04:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\Mount&Blade Savegames
[2010-03-06 18:51:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Mount&Blade
[2010-03-06 00:59:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs
[2010-03-05 23:38:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\THQ
[2010-03-05 23:31:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\THQ
[2010-03-05 21:23:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\gothic3
[2010-03-05 18:35:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\Crysis Lau
[2010-03-05 18:27:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\AdobeUM
[2010-03-05 18:26:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\ATI
[2010-03-05 18:26:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\ATI
[2010-03-05 18:26:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\ATI
[2010-03-05 18:21:36 | 000,155,648 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\Oemdspif.dll
[2010-03-05 18:21:36 | 000,043,520 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\ati2edxx.dll
[2010-03-05 18:21:35 | 000,208,896 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\atipdlxx.dll
[2010-03-05 18:21:35 | 000,026,112 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\Ati2mdxx.exe
[2010-03-05 18:21:35 | 000,024,064 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\ativcoxx.dll
[2010-03-05 18:21:18 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
[2010-03-05 18:21:16 | 000,000,000 | ---D | C] -- C:\Program Files\ATI
[2010-03-05 18:20:40 | 000,000,000 | ---D | C] -- C:\ATI
[2010-03-05 15:59:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\DivX
[2010-03-05 15:30:59 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\My Documents\My Videos
[2010-03-05 15:30:59 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DivX Shared
[2010-03-05 15:30:59 | 000,000,000 | ---D | C] -- C:\Program Files\DivX
[2010-03-05 14:29:28 | 000,000,000 | -H-D | C] -- C:\WINDOWS\PIF
[2010-03-05 14:09:34 | 001,774,080 | ---- | C] (Gabest) -- C:\Documents and Settings\Administrator\Desktop\mplayerc.exe
[2010-03-05 14:05:12 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2010-02-13 16:12:02 | 000,147,456 | ---- | C] ( ) -- C:\WINDOWS\System32\rsnp325.dll
[2010-02-13 16:12:02 | 000,057,344 | ---- | C] ( ) -- C:\WINDOWS\System32\vsnp325.dll
[2010-02-13 16:12:02 | 000,053,248 | ---- | C] ( ) -- C:\WINDOWS\System32\csnp325.dll
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[3 C:\Documents and Settings\Administrator\*.tmp files -> C:\Documents and Settings\Administrator\*.tmp -> ]

[color="#e56717"]========== Files - Modified Within 60 Days ==========[/color]

[2010-05-03 15:35:40 | 004,456,448 | -H-- | M] () -- C:\Documents and Settings\Administrator\NTUSER.DAT
[2010-05-03 15:32:33 | 000,006,161 | ---- | M] () -- C:\Documents and Settings\Administrator\.recently-used.xbel
[2010-05-03 15:30:28 | 000,065,554 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\head.tga
[2010-05-03 15:19:00 | 000,000,900 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010-05-03 15:16:00 | 000,001,160 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1220945662-1801674531-1214014110-500UA.job
[2010-05-03 14:19:00 | 000,000,896 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010-05-03 13:46:34 | 000,025,760 | -H-- | M] () -- C:\WINDOWS\System32\mlfcache.dat
[2010-05-03 13:46:18 | 000,001,854 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Safari.lnk
[2010-05-03 13:45:38 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2010-05-03 13:42:53 | 000,000,441 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.ics
[2010-05-03 13:42:32 | 000,002,261 | ---- | M] () -- C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\Styler.lnk
[2010-05-03 13:42:30 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010-05-03 13:42:29 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-05-03 13:41:22 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Administrator\ntuser.ini
[2010-05-02 11:07:59 | 000,002,577 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010-05-02 10:33:29 | 000,000,856 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Szybkie Czyszczenie Dysku.lnk
[2010-05-02 10:33:29 | 000,000,760 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Odkurzacz.lnk
[2010-05-02 10:30:33 | 000,001,656 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\NetLimiter 2 Monitor.lnk
[2010-05-01 09:39:11 | 000,000,020 | ---- | M] () -- C:\WINDOWS\System32\crt.dat
[2010-04-30 12:39:37 | 000,029,696 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-04-30 06:16:00 | 000,001,108 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1220945662-1801674531-1214014110-500Core.job
[2010-04-30 06:13:46 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2010-04-30 06:13:46 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2010-04-29 21:04:59 | 000,002,228 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-04-29 14:13:14 | 000,215,016 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.xtr
[2010-04-29 11:11:50 | 000,138,184 | ---- | M] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2010-04-29 09:41:42 | 000,002,344 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Google Chrome.lnk
[2010-04-29 09:41:14 | 000,028,432 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2010-04-29 09:40:59 | 000,130,888 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-04-28 14:58:11 | 000,138,056 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\PnkBstrK.sys
[2010-04-28 14:57:52 | 002,427,248 | ---- | M] () -- C:\WINDOWS\System32\pbsvc_heroes.exe
[2010-04-26 18:08:41 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat
[2010-04-26 18:08:34 | 000,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2010-04-26 11:19:48 | 000,002,233 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\LevelR.lnk
[2010-04-26 10:01:44 | 000,001,883 | ---- | M] () -- C:\WINDOWS\System32\kboem32.dat
[2010-04-25 08:31:11 | 000,000,766 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Gadu-Gadu 10.lnk
[2010-04-22 06:13:24 | 000,521,942 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-04-22 06:13:24 | 000,441,454 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-04-22 06:13:24 | 000,071,264 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-04-18 13:00:52 | 000,034,213 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Graf.jpg
[2010-04-18 11:21:34 | 000,001,493 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\DivX Movies.lnk
[2010-04-18 11:21:09 | 000,000,777 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\DivX Plus Player.lnk
[2010-04-18 11:20:47 | 000,000,817 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\DivX Plus Converter.lnk
[2010-04-17 21:08:59 | 000,001,821 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Ulead VideoStudio 11.lnk
[2010-04-17 20:51:19 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2010-04-17 19:59:02 | 000,001,819 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Xilisoft Video Converter Ultimate.lnk
[2010-04-15 19:30:29 | 000,397,863 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\DSC00309.JPG
[2010-04-11 10:51:06 | 000,093,078 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\assasin.JPG
[2010-04-10 22:15:50 | 000,000,231 | ---- | M] () -- C:\WINDOWS\system.ini
[2010-04-10 19:09:58 | 000,000,733 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Assassin's Creed.lnk
[2010-04-09 13:32:51 | 000,000,781 | ---- | M] () -- C:\WINDOWS\win.ini
[2010-04-08 13:31:18 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\cd.dat
[2010-04-08 13:12:20 | 000,685,921 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\jaa..lepiej
[2010-04-07 21:56:24 | 007,482,353 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\My Documents.7z
[2010-04-06 18:31:09 | 001,485,206 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\DSC01335.JPG
[2010-04-03 14:34:04 | 000,278,984 | ---- | M] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2010-04-03 11:37:59 | 000,000,721 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Load Advanced AI in SandBox2.lnk
[2010-04-02 22:10:58 | 000,000,478 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Fraps.lnk
[2010-04-02 21:56:02 | 000,007,680 | ---- | M] () -- C:\WINDOWS\System32\drivers\nd.sys
[2010-04-02 21:49:27 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\BattleLAN.ini
[2010-03-31 01:58:24 | 000,353,592 | ---- | M] (DivX, Inc.) -- C:\WINDOWS\System32\DivXControlPanelApplet.cpl
[2010-03-29 15:41:06 | 000,000,644 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Second Life.lnk
[2010-03-28 13:22:26 | 000,086,016 | ---- | M] (Beepa P/L) -- C:\WINDOWS\System32\frapsvid.dll
[2010-03-25 08:49:06 | 000,082,360 | ---- | M] (Locktime Software) -- C:\WINDOWS\System32\drivers\nltdi.sys
[2010-03-19 23:08:37 | 000,000,510 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Silkroad.lnk
[2010-03-17 21:52:23 | 006,396,210 | -H-- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\IconCache.db
[2010-03-13 20:16:46 | 000,244,438 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\Set nr 2.rar
[2010-03-13 18:00:16 | 003,737,832 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\yep.7z
[2010-03-13 15:06:15 | 000,015,360 | -H-- | M] () -- C:\Documents and Settings\Administrator\My Documents\photothumb.db
[2010-03-10 08:04:54 | 000,421,888 | ---- | M] (Gabest) -- C:\WINDOWS\System32\RealMediaSplitter.ax
[2010-03-10 08:04:54 | 000,278,528 | ---- | M] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2010-03-08 17:59:18 | 000,094,208 | ---- | M] (DivX, Inc.) -- C:\WINDOWS\System32\dpl100.dll
[2010-03-08 13:15:23 | 000,000,467 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\ooVoo.lnk
[2010-03-07 16:05:39 | 000,000,722 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Project Torque.lnk
[2010-03-06 22:23:55 | 000,002,944 | ---- | M] () -- C:\WINDOWS\System32\unins000.dat
[2010-03-06 22:23:25 | 000,716,153 | ---- | M] () -- C:\WINDOWS\System32\unins000.exe
[2010-03-06 18:39:22 | 000,000,484 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Mount&Blade.lnk
[2010-03-06 15:53:38 | 000,000,581 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Gothic III CP.lnk
[2010-03-06 10:41:47 | 002,684,416 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\India_sacra.pps
[2010-03-05 23:56:45 | 000,000,803 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Crysis Natural Mod.lnk
[2010-03-05 20:40:57 | 000,107,888 | ---- | M] (Sony DADC Austria AG.) -- C:\WINDOWS\System32\CmdLineExt.dll
[2010-03-05 20:15:23 | 000,000,661 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Gothic III.lnk
[2010-03-05 20:15:15 | 000,018,048 | ---- | M] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2010-03-05 18:21:59 | 000,000,000 | ---- | M] () -- C:\WINDOWS\ativpsrm.bin
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[3 C:\Documents and Settings\Administrator\*.tmp files -> C:\Documents and Settings\Administrator\*.tmp -> ]

[color="#e56717"]========== Files Created - No Company Name ==========[/color]

[2010-05-03 15:32:33 | 000,006,161 | ---- | C] () -- C:\Documents and Settings\Administrator\.recently-used.xbel
[2010-05-03 15:30:17 | 000,065,554 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\head.tga
[2010-05-03 14:14:40 | 000,000,900 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010-05-03 14:14:39 | 000,000,896 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010-05-03 13:46:34 | 000,025,760 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2010-05-03 13:46:18 | 000,001,854 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Safari.lnk
[2010-05-03 13:45:37 | 000,000,284 | ---- | C] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2010-05-02 10:33:29 | 000,000,856 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Szybkie Czyszczenie Dysku.lnk
[2010-05-02 10:33:29 | 000,000,760 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Odkurzacz.lnk
[2010-05-02 10:30:33 | 000,001,656 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\NetLimiter 2 Monitor.lnk
[2010-04-28 16:03:53 | 000,215,016 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.xtr
[2010-04-28 14:57:52 | 002,427,248 | ---- | C] () -- C:\WINDOWS\System32\pbsvc_heroes.exe
[2010-04-26 18:08:41 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2010-04-26 18:08:34 | 000,001,602 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2010-04-25 08:31:11 | 000,000,766 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Gadu-Gadu 10.lnk
[2010-04-24 16:56:34 | 000,002,233 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\LevelR.lnk
[2010-04-18 13:00:52 | 000,034,213 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Graf.jpg
[2010-04-18 11:21:34 | 000,001,493 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\DivX Movies.lnk
[2010-04-18 11:21:09 | 000,000,777 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\DivX Plus Player.lnk
[2010-04-18 11:20:47 | 000,000,817 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\DivX Plus Converter.lnk
[2010-04-17 21:09:13 | 000,210,456 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll
[2010-04-17 21:09:13 | 000,198,168 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll
[2010-04-17 21:09:13 | 000,198,168 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll
[2010-04-17 21:09:13 | 000,194,072 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll
[2010-04-17 21:09:12 | 000,206,360 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll
[2010-04-17 21:09:12 | 000,026,136 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll
[2010-04-17 21:08:59 | 000,001,821 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Ulead VideoStudio 11.lnk
[2010-04-17 19:59:02 | 000,001,819 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Xilisoft Video Converter Ultimate.lnk
[2010-04-15 19:30:18 | 000,397,863 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\DSC00309.JPG
[2010-04-13 12:51:47 | 000,060,416 | ---- | C] () -- C:\WINDOWS\System32\antiwpa.dll
[2010-04-11 10:51:06 | 000,093,078 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\assasin.JPG
[2010-04-10 19:09:58 | 000,000,733 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Assassin's Creed.lnk
[2010-04-08 13:31:18 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\cd.dat
[2010-04-08 13:12:17 | 000,685,921 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\jaa..lepiej
[2010-04-06 18:30:27 | 001,485,206 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\DSC01335.JPG
[2010-04-03 11:37:59 | 000,000,721 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Load Advanced AI in SandBox2.lnk
[2010-04-02 22:10:58 | 000,000,478 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Fraps.lnk
[2010-04-02 21:56:02 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\drivers\nd.sys
[2010-04-02 21:55:55 | 000,000,020 | ---- | C] () -- C:\WINDOWS\System32\crt.dat
[2010-04-02 21:55:53 | 000,001,883 | ---- | C] () -- C:\WINDOWS\System32\kboem32.dat
[2010-04-02 21:49:27 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\BattleLAN.ini
[2010-04-02 21:29:30 | 000,274,432 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\BattleLANv0.5.exe
[2010-04-02 08:15:38 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2010-04-02 08:15:38 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2010-03-29 15:41:06 | 000,000,644 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Second Life.lnk
[2010-03-21 03:19:53 | 007,482,353 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\My Documents.7z
[2010-03-13 20:16:33 | 000,244,438 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\Set nr 2.rar
[2010-03-13 18:00:15 | 003,737,832 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\yep.7z
[2010-03-12 20:01:54 | 000,000,510 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Silkroad.lnk
[2010-03-10 08:52:52 | 000,015,360 | -H-- | C] () -- C:\Documents and Settings\Administrator\My Documents\photothumb.db
[2010-03-08 13:15:23 | 000,000,467 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\ooVoo.lnk
[2010-03-07 16:05:39 | 000,000,722 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Project Torque.lnk
[2010-03-06 22:23:55 | 000,046,469 | ---- | C] () -- C:\Documents and Settings\Administrator\My Documents\crysis.rtf
[2010-03-06 22:23:55 | 000,000,236 | ---- | C] () -- C:\Program Files\Common Files\dx.reg
[2010-03-06 22:23:53 | 001,029,126 | ---- | C] () -- C:\WINDOWS\System32\d3d10.dll
[2010-03-06 22:23:53 | 000,874,502 | ---- | C] () -- C:\WINDOWS\System32\kernel32new.dll
[2010-03-06 22:23:53 | 000,716,153 | ---- | C] () -- C:\WINDOWS\System32\unins000.exe
[2010-03-06 22:23:53 | 000,681,478 | ---- | C] () -- C:\WINDOWS\System32\msvcrtnew.dll
[2010-03-06 22:23:53 | 000,187,398 | ---- | C] () -- C:\WINDOWS\System32\d3d10core.dll
[2010-03-06 22:23:53 | 000,002,944 | ---- | C] () -- C:\WINDOWS\System32\unins000.dat
[2010-03-06 18:39:22 | 000,000,484 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Mount&Blade.lnk
[2010-03-06 10:41:34 | 002,684,416 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\India_sacra.pps
[2010-03-05 22:03:43 | 000,000,581 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Gothic III CP.lnk
[2010-03-05 20:15:23 | 000,000,661 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Gothic III.lnk
[2010-03-05 20:15:16 | 000,278,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2010-03-05 20:15:15 | 000,018,048 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2010-03-05 19:18:40 | 000,000,803 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Crysis Natural Mod.lnk
[2010-03-05 18:21:59 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2010-03-05 18:21:36 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat
[2010-03-05 18:21:36 | 000,455,520 | ---- | C] () -- C:\WINDOWS\System32\ativvaxx.cap
[2010-03-05 18:21:35 | 000,294,912 | ---- | C] () -- C:\WINDOWS\System32\ATIODE.exe
[2010-03-05 18:21:35 | 000,198,341 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2010-03-05 18:21:35 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ATIODCLI.exe
[2010-03-05 18:21:35 | 000,031,240 | ---- | C] () -- C:\WINDOWS\System32\atiapfxx.blb
[2010-03-05 18:21:35 | 000,020,274 | ---- | C] () -- C:\WINDOWS\atiogl.xml
[2010-03-05 18:21:35 | 000,000,003 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat
[2010-03-05 14:03:39 | 000,029,696 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-02-13 16:12:08 | 000,015,498 | ---- | C] () -- C:\WINDOWS\snp325.ini
[2010-02-13 10:40:23 | 000,138,184 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2010-02-13 04:27:38 | 000,073,728 | R--- | C] () -- C:\WINDOWS\System32\RtNicProp32.dll
[2010-02-13 04:24:09 | 000,147,456 | R--- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4935.dll
[2010-02-13 04:21:35 | 000,024,815 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini
[2010-02-13 04:20:56 | 000,001,746 | ---- | C] () -- C:\WINDOWS\Language_trs.ini
[2010-02-13 04:20:14 | 000,017,185 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2010-02-13 04:20:14 | 000,010,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2010-02-12 19:39:48 | 000,005,810 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2008-06-19 20:39:45 | 000,394,240 | ---- | C] () -- C:\WINDOWS\System32\HMTCD.dll
[2008-04-14 12:00:00 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\CopyToSendTo.dll
[2008-02-20 11:11:16 | 000,033,800 | ---- | C] () -- C:\WINDOWS\System32\drivers\epfwtdir.sys
[2007-09-13 07:54:48 | 000,141,180 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2002-03-17 00:00:00 | 000,007,420 | ---- | C] () -- C:\WINDOWS\UA000088.DLL

[color="#e56717"]========== LOP Check ==========[/color]

[2010-05-03 13:34:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Audacity
[2010-03-27 23:34:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Camfrog
[2010-02-12 20:48:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Gadu-Gadu 10
[2010-04-21 14:23:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\gtk-2.0
[2010-05-02 10:32:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Locktime
[2010-03-06 19:34:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Mount&Blade
[2010-03-08 13:16:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\ooVoo Details
[2010-04-30 11:25:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\OpenFM
[2010-03-29 15:41:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\SecondLife
[2010-02-13 04:19:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Styler
[2010-03-05 21:55:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\SystemRequirementsLab
[2010-03-19 13:15:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Tomato
[2010-04-10 19:25:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Ubisoft
[2010-04-17 21:51:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Ulead Systems
[2010-04-17 19:59:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Xilisoft Corporation
[2010-05-02 11:08:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ESET
[2010-02-12 20:44:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Gadu-Gadu 10
[2010-04-17 21:09:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\InterVideo
[2010-05-02 10:30:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Locktime
[2010-04-30 15:37:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\OpenFM
[2010-04-26 15:18:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PMB Files
[2010-04-04 15:42:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Test Drive Unlimited
[2010-04-10 19:11:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ubisoft
[2010-04-17 21:10:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ulead Systems

[color="#e56717"]========== Custom Scans ==========[/color]


[color="#a23bec"]< %systemdrive%\*.* >[/color]
[2010-02-13 03:59:25 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010-02-13 03:59:25 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010-02-13 03:59:25 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010-02-13 03:59:25 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010-05-03 13:42:26 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys
[2010-02-13 04:25:16 | 000,001,794 | ---- | M] () -- C:\RHDSetup.log


[color="#a23bec"]< MD5 for: AGP440.SYS >[/color]
[2008-06-19 20:46:53 | 018,163,061 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys

[color="#a23bec"]< MD5 for: ATAPI.SYS >[/color]
[2008-06-19 20:46:53 | 018,163,061 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008-04-14 05:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys

[color="#a23bec"]< MD5 for: BEEP.SYS >[/color]
[2008-04-14 12:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys

[color="#a23bec"]< MD5 for: CDROM.SYS >[/color]
[2008-06-19 20:46:53 | 018,163,061 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008-04-14 12:00:00 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys

[color="#a23bec"]< MD5 for: EVENTLOG.DLL >[/color]
[2008-04-14 12:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\system32\eventlog.dll

[color="#a23bec"]< MD5 for: NDIS.SYS >[/color]
[2008-04-14 12:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys

[color="#a23bec"]< MD5 for: WINLOGON.EXE >[/color]
[2008-04-14 12:00:00 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=ED0EF0A136DEC83DF69F04118870003E -- C:\WINDOWS\system32\winlogon.exe
< End of report >
[2010-05-03 15:35:40 | 004,456,448 | -H-- | M] () -- C:\Documents and Settings\Administrator\NTUSER.DAT
[2010-05-03 15:32:33 | 000,006,161 | ---- | M] () -- C:\Documents and Settings\Administrator\.recently-used.xbel
[2010-05-03 15:30:28 | 000,065,554 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\head.tga
[2010-05-03 15:19:00 | 000,000,900 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010-05-03 15:16:00 | 000,001,160 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1220945662-1801674531-1214014110-500UA.job
[2010-05-03 14:19:00 | 000,000,896 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010-05-03 13:46:34 | 000,025,760 | -H-- | M] () -- C:\WINDOWS\System32\mlfcache.dat
[2010-05-03 13:46:18 | 000,001,854 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Safari.lnk
[2010-05-03 13:45:38 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2010-05-03 13:42:32 | 000,002,261 | ---- | M] () -- C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\Styler.lnk
[2010-05-03 13:42:30 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010-05-03 13:42:29 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-05-03 13:41:22 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Administrator\ntuser.ini
[2010-05-02 10:33:29 | 000,000,856 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Szybkie Czyszczenie Dysku.lnk
[2010-05-02 10:33:29 | 000,000,760 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Odkurzacz.lnk
[2010-05-02 10:30:33 | 000,001,656 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\NetLimiter 2 Monitor.lnk
[2010-04-30 12:39:37 | 000,029,696 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-04-30 06:16:00 | 000,001,108 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1220945662-1801674531-1214014110-500Core.job
[2010-04-30 06:13:46 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2010-04-29 21:04:59 | 000,002,228 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-04-29 14:13:14 | 000,215,016 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.xtr
[2010-04-29 09:41:42 | 000,002,344 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Google Chrome.lnk
[2010-04-29 09:41:14 | 000,028,432 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2010-04-29 09:40:59 | 000,130,888 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-04-28 14:58:11 | 000,138,056 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\PnkBstrK.sys
[2010-04-28 14:57:52 | 002,427,248 | ---- | M] () -- C:\WINDOWS\System32\pbsvc_heroes.exe
[2010-04-26 18:08:41 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat
[2010-04-26 18:08:34 | 000,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2010-04-26 11:19:48 | 000,002,233 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\LevelR.lnk
[2010-04-26 10:01:44 | 000,001,883 | ---- | M] () -- C:\WINDOWS\System32\kboem32.dat
[2010-04-25 08:31:11 | 000,000,766 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Gadu-Gadu 10.lnk
[2010-04-22 06:13:24 | 000,521,942 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-04-22 06:13:24 | 000,441,454 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-04-22 06:13:24 | 000,071,264 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-04-18 13:00:52 | 000,034,213 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Graf.jpg
[2010-04-18 11:21:34 | 000,001,493 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\DivX Movies.lnk
[2010-04-18 11:21:09 | 000,000,777 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\DivX Plus Player.lnk
[2010-04-18 11:20:47 | 000,000,817 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\DivX Plus Converter.lnk
[2010-04-17 21:08:59 | 000,001,821 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Ulead VideoStudio 11.lnk
[2010-04-17 20:51:19 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2010-04-17 19:59:02 | 000,001,819 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Xilisoft Video Converter Ultimate.lnk
[2010-04-15 19:30:29 | 000,397,863 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\DSC00309.JPG
[2010-04-11 10:51:06 | 000,093,078 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\assasin.JPG
[2010-04-10 22:15:50 | 000,000,231 | ---- | M] () -- C:\WINDOWS\system.ini
[2010-04-10 19:09:58 | 000,000,733 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Assassin's Creed.lnk
[2010-04-09 13:32:51 | 000,000,781 | ---- | M] () -- C:\WINDOWS\win.ini
[2010-04-08 13:12:20 | 000,685,921 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\jaa..lepiej
[2010-04-07 21:56:24 | 007,482,353 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\My Documents.7z
[2010-04-06 18:31:09 | 001,485,206 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\DSC01335.JPG
[2010-04-03 11:37:59 | 000,000,721 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Load Advanced AI in SandBox2.lnk
[2010-04-02 22:10:58 | 000,000,478 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Fraps.lnk
[2010-04-02 21:49:27 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\BattleLAN.ini
[2010-03-31 01:58:24 | 000,353,592 | ---- | M] (DivX, Inc.) -- C:\WINDOWS\System32\DivXControlPanelApplet.cpl
[2010-03-29 15:41:06 | 000,000,644 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Second Life.lnk
[2010-03-28 13:22:26 | 000,086,016 | ---- | M] (Beepa P/L) -- C:\WINDOWS\System32\frapsvid.dll
[2010-03-19 23:08:37 | 000,000,510 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Silkroad.lnk
[2010-03-17 21:52:23 | 006,396,210 | -H-- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\IconCache.db
[2010-03-13 20:16:46 | 000,244,438 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\Set nr 2.rar
[2010-03-13 18:00:16 | 003,737,832 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\yep.7z
[2010-03-13 15:06:15 | 000,015,360 | -H-- | M] () -- C:\Documents and Settings\Administrator\My Documents\photothumb.db
[2010-03-10 08:04:54 | 000,421,888 | ---- | M] (Gabest) -- C:\WINDOWS\System32\RealMediaSplitter.ax
[2010-03-10 08:04:54 | 000,278,528 | ---- | M] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2010-03-08 17:59:18 | 000,094,208 | ---- | M] (DivX, Inc.) -- C:\WINDOWS\System32\dpl100.dll
[2010-03-08 13:15:23 | 000,000,467 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\ooVoo.lnk
[2010-03-07 16:05:39 | 000,000,722 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Project Torque.lnk
[2010-03-06 22:23:55 | 000,002,944 | ---- | M] () -- C:\WINDOWS\System32\unins000.dat
[2010-03-06 22:23:25 | 000,716,153 | ---- | M] () -- C:\WINDOWS\System32\unins000.exe
[2010-03-06 18:39:22 | 000,000,484 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Mount&Blade.lnk
[2010-03-06 15:53:38 | 000,000,581 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Gothic III CP.lnk
[2010-03-06 10:41:47 | 002,684,416 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\India_sacra.pps
[2010-03-05 23:56:45 | 000,000,803 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Crysis Natural Mod.lnk
[2010-03-05 20:15:23 | 000,000,661 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Gothic III.lnk
[2010-03-05 18:21:59 | 000,000,000 | ---- | M] () -- C:\WINDOWS\ativpsrm.bin
[3 C:\Documents and Settings\Administrator\*.tmp files -> C:\Documents and Settings\Administrator\*.tmp -> ]

[color="#e56717"]========== LOP Check ==========[/color]

[2010-05-03 13:34:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Audacity
[2010-03-27 23:34:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Camfrog
[2010-02-12 20:48:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Gadu-Gadu 10
[2010-04-21 14:23:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\gtk-2.0
[2010-05-02 10:32:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Locktime
[2010-03-06 19:34:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Mount&Blade
[2010-03-08 13:16:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\ooVoo Details
[2010-04-30 11:25:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\OpenFM
[2010-03-29 15:41:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\SecondLife
[2010-02-13 04:19:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Styler
[2010-03-05 21:55:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\SystemRequirementsLab
[2010-03-19 13:15:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Tomato
[2010-04-10 19:25:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Ubisoft
[2010-04-17 21:51:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Ulead Systems
[2010-04-17 19:59:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Xilisoft Corporation
[2010-05-02 11:08:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ESET
[2010-02-12 20:44:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Gadu-Gadu 10
[2010-04-17 21:09:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\InterVideo
[2010-05-02 10:30:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Locktime
[2010-04-30 15:37:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\OpenFM
[2010-04-26 15:18:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PMB Files
[2010-04-04 15:42:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Test Drive Unlimited
[2010-04-10 19:11:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ubisoft
[2010-04-17 21:10:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ulead Systems

[color="#e56717"]========== Custom Scans ==========[/color]


[color="#a23bec"]< %systemdrive%\*.* >[/color]
[2010-02-13 03:59:25 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010-02-13 03:59:25 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010-02-13 03:59:25 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010-02-13 03:59:25 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010-05-03 13:42:26 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys
[2010-02-13 04:25:16 | 000,001,794 | ---- | M] () -- C:\RHDSetup.log


[color="#a23bec"]< MD5 for: AGP440.SYS >[/color]
[2008-06-19 20:46:53 | 018,163,061 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys

[color="#a23bec"]< MD5 for: ATAPI.SYS >[/color]
[2008-06-19 20:46:53 | 018,163,061 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008-04-14 05:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys

[color="#a23bec"]< MD5 for: BEEP.SYS >[/color]
[2008-04-14 12:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys

[color="#a23bec"]< MD5 for: CDROM.SYS >[/color]
[2008-06-19 20:46:53 | 018,163,061 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008-04-14 12:00:00 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys

[color="#a23bec"]< MD5 for: EVENTLOG.DLL >[/color]
[2008-04-14 12:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\system32\eventlog.dll

[color="#a23bec"]< MD5 for: NDIS.SYS >[/color]
[2008-04-14 12:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys

[color="#a23bec"]< MD5 for: WINLOGON.EXE >[/color]
[2008-04-14 12:00:00 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=ED0EF0A136DEC83DF69F04118870003E -- C:\WINDOWS\system32\winlogon.exe

< End of report >
[2010-05-03 15:30:28 | 000,065,554 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\head.tga
[2010-05-03 14:30:56 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft
[2010-05-03 14:25:07 | 000,000,000 | -H-D | M] -- C:\Program Files\InstallShield Installation Information
[2010-05-03 14:19:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Google
[2010-05-03 14:16:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Google
[2010-05-03 14:16:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Google
[2010-05-03 14:15:51 | 000,000,000 | ---D | M] -- C:\Program Files\Google
[2010-05-03 14:15:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Temp
[2010-05-03 14:14:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Google
[2010-05-03 14:06:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\PMB Files
[2010-05-03 13:46:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Apple Computer
[2010-05-03 13:46:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Apple Computer
[2010-05-03 13:46:18 | 000,001,854 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Safari.lnk
[2010-05-03 13:46:18 | 000,000,000 | ---D | M] -- C:\Program Files\Safari
[2010-05-03 13:45:58 | 000,000,000 | ---D | M] -- C:\Program Files\Bonjour
[2010-05-03 13:45:43 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files
[2010-05-03 13:45:43 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\Apple
[2010-05-03 13:45:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Apple
[2010-05-03 13:45:36 | 000,000,000 | ---D | M] -- C:\Program Files\Apple Software Update
[2010-05-03 13:43:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\LogMeIn Hamachi
[2010-05-03 13:43:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\LogMeIn Hamachi
[2010-05-03 13:42:32 | 000,002,261 | ---- | M] () -- C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\Styler.lnk
[2010-05-03 13:34:56 | 000,000,000 | ---D | M] -- C:\Program Files\NetLimiter 2 Monitor
[2010-05-03 13:34:56 | 000,000,000 | ---D | M] -- C:\Program Files\Hotspot Shield
[2010-05-03 13:34:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Audacity
[2010-05-03 13:34:55 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\Akamai
[2010-05-03 13:34:43 | 000,000,000 | ---D | M] -- C:\Program Files\Odkurzacz
[2010-05-03 01:04:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Skype
[2010-05-03 00:17:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\skypePM
[2010-05-02 11:20:35 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Application Data\Microsoft
[2010-05-02 11:08:36 | 000,000,000 | ---D | M] -- C:\Program Files\ESET
[2010-05-02 10:44:51 | 000,000,000 | ---D | M] -- C:\Program Files\PhotoScape
[2010-05-02 10:44:51 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft PowerToys
[2010-05-02 10:44:51 | 000,000,000 | ---D | M] -- C:\Program Files\LClock
[2010-05-02 10:44:50 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Media Connect 2
[2010-05-02 10:33:29 | 000,000,856 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Szybkie Czyszczenie Dysku.lnk
[2010-05-02 10:33:29 | 000,000,760 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Odkurzacz.lnk
[2010-05-02 10:32:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Locktime
[2010-05-02 10:30:33 | 000,001,656 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\NetLimiter 2 Monitor.lnk
[2010-04-30 16:09:54 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\Symantec Shared
[2010-04-30 12:39:37 | 000,029,696 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-04-30 11:25:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\OpenFM
[2010-04-29 20:43:31 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Media Player
[2010-04-29 09:41:42 | 000,002,344 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Google Chrome.lnk
[2010-04-29 09:41:14 | 000,028,432 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2010-04-28 16:03:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\PunkBuster
[2010-04-28 14:58:11 | 000,138,056 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\PnkBstrK.sys
[2010-04-26 18:09:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Mozilla
[2010-04-26 18:08:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Mozilla
[2010-04-26 18:08:34 | 000,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2010-04-26 18:08:33 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox
[2010-04-26 11:19:48 | 000,002,233 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\LevelR.lnk
[2010-04-25 19:44:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\DivX
[2010-04-25 08:31:11 | 000,000,766 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Gadu-Gadu 10.lnk
[2010-04-25 08:31:11 | 000,000,000 | ---D | M] -- C:\Program Files\Gadu-Gadu 10
[2010-04-24 12:07:23 | 000,000,000 | ---D | M] -- C:\Program Files\Pando Networks
[2010-04-23 19:45:21 | 000,000,000 | --SD | M] -- C:\Documents and Settings\Administrator\Application Data\Microsoft
[2010-04-23 19:45:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Identities
[2010-04-23 16:19:09 | 000,000,000 | ---D | M] -- C:\Program Files\InTune
[2010-04-22 13:51:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\CAPCOM
[2010-04-21 14:23:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\gtk-2.0
[2010-04-21 13:21:31 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\Skype
[2010-04-18 14:16:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Symantec
[2010-04-18 13:00:52 | 000,034,213 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Graf.jpg
[2010-04-18 11:21:35 | 000,000,000 | ---D | M] -- C:\Program Files\DivX
[2010-04-18 11:21:34 | 000,001,493 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\DivX Movies.lnk
[2010-04-18 11:21:09 | 000,000,777 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\DivX Plus Player.lnk
[2010-04-18 11:20:47 | 000,000,817 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\DivX Plus Converter.lnk
[2010-04-18 11:20:14 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\DivX Shared
[2010-04-17 21:51:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Ulead Systems
[2010-04-17 21:10:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ulead Systems
[2010-04-17 21:09:38 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\InterVideo
[2010-04-17 21:09:07 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\InstallShield
[2010-04-17 21:08:59 | 000,001,821 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Ulead VideoStudio 11.lnk
[2010-04-17 21:08:47 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Media Components
[2010-04-17 21:08:45 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files\Ulead Systems
[2010-04-17 21:07:33 | 000,000,000 | ---D | M] -- C:\Program Files\Ulead Systems
[2010-04-17 19:59:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Xilisoft Corporation
[2010-04-17 19:59:02 | 000,001,819 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Xilisoft Video Converter Ultimate.lnk
[2010-04-17 19:58:40 | 000,000,000 | ---D | M] -- C:\Program Files\Xilisoft
[2010-04-15 19:30:29 | 000,397,863 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\DSC00309.JPG
[2010-04-13 12:52:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
[2010-04-11 13:42:28 | 000,000,000 | ---D | M] -- C:\Program Files\Internet Explorer
[2010-04-11 10:51:06 | 000,093,078 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\assasin.JPG
[2010-04-10 19:25:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Ubisoft
[2010-04-10 19:11:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ubisoft
[2010-04-10 19:09:58 | 000,000,733 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Assassin's Creed.lnk
[2010-04-09 16:01:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\The Witcher
[2010-04-09 13:01:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\SecondLife
[2010-04-08 13:12:20 | 000,685,921 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\jaa..lepiej
[2010-04-08 12:41:23 | 000,000,000 | ---D | M] -- C:\Program Files\Lame for Audacity
[2010-04-07 21:56:24 | 007,482,353 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\My Documents.7z
[2010-04-06 18:31:09 | 001,485,206 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\DSC01335.JPG
[2010-04-04 15:42:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Test Drive Unlimited
[2010-04-03 11:37:59 | 000,000,721 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Load Advanced AI in SandBox2.lnk
[2010-04-02 22:10:58 | 000,000,478 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Fraps.lnk
[2010-04-02 21:49:27 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\BattleLAN.ini
[2010-03-29 15:41:06 | 000,000,644 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Second Life.lnk
[2010-03-19 23:08:37 | 000,000,510 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Silkroad.lnk
[2010-03-13 20:16:46 | 000,244,438 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\Set nr 2.rar
[2010-03-13 18:00:16 | 003,737,832 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\yep.7z
[2010-03-13 15:06:15 | 000,015,360 | -H-- | M] () -- C:\Documents and Settings\Administrator\My Documents\photothumb.db
[2010-03-08 13:15:23 | 000,000,467 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\ooVoo.lnk
[2010-03-07 16:05:39 | 000,000,722 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Project Torque.lnk
[2010-03-06 18:39:22 | 000,000,484 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Mount&Blade.lnk
[2010-03-06 15:53:38 | 000,000,581 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Gothic III CP.lnk
[2010-03-06 10:41:47 | 002,684,416 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\India_sacra.pps
[2010-03-05 23:56:45 | 000,000,803 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Crysis Natural Mod.lnk
[2010-03-05 20:15:23 | 000,000,661 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Gothic III.lnk

[color="#e56717"]========== Files - Modified Within 60 Days ==========[/color]

[2010-05-03 15:35:40 | 004,456,448 | -H-- | M] () -- C:\Documents and Settings\Administrator\NTUSER.DAT
[2010-05-03 15:32:33 | 000,006,161 | ---- | M] () -- C:\Documents and Settings\Administrator\.recently-used.xbel
[2010-05-03 15:30:28 | 000,065,554 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\head.tga
[2010-05-03 15:19:00 | 000,000,900 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010-05-03 15:16:00 | 000,001,160 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1220945662-1801674531-1214014110-500UA.job
[2010-05-03 14:19:00 | 000,000,896 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010-05-03 13:46:34 | 000,025,760 | -H-- | M] () -- C:\WINDOWS\System32\mlfcache.dat
[2010-05-03 13:46:18 | 000,001,854 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Safari.lnk
[2010-05-03 13:45:38 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2010-05-03 13:42:53 | 000,000,441 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.ics
[2010-05-03 13:42:32 | 000,002,261 | ---- | M] () -- C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\Styler.lnk
[2010-05-03 13:42:30 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010-05-03 13:42:29 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-05-03 13:41:22 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Administrator\ntuser.ini
[2010-05-02 11:07:59 | 000,002,577 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010-05-02 10:33:29 | 000,000,856 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Szybkie Czyszczenie Dysku.lnk
[2010-05-02 10:33:29 | 000,000,760 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Odkurzacz.lnk
[2010-05-02 10:30:33 | 000,001,656 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\NetLimiter 2 Monitor.lnk
[2010-05-01 09:39:11 | 000,000,020 | ---- | M] () -- C:\WINDOWS\System32\crt.dat
[2010-04-30 12:39:37 | 000,029,696 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-04-30 06:16:00 | 000,001,108 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1220945662-1801674531-1214014110-500Core.job
[2010-04-30 06:13:46 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2010-04-30 06:13:46 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2010-04-29 21:04:59 | 000,002,228 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-04-29 14:13:14 | 000,215,016 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.xtr
[2010-04-29 11:11:50 | 000,138,184 | ---- | M] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2010-04-29 09:41:42 | 000,002,344 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Google Chrome.lnk
[2010-04-29 09:41:14 | 000,028,432 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2010-04-29 09:40:59 | 000,130,888 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-04-28 14:58:11 | 000,138,056 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\PnkBstrK.sys
[2010-04-28 14:57:52 | 002,427,248 | ---- | M] () -- C:\WINDOWS\System32\pbsvc_heroes.exe
[2010-04-26 18:08:41 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat
[2010-04-26 18:08:34 | 000,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2010-04-26 11:19:48 | 000,002,233 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\LevelR.lnk
[2010-04-26 10:01:44 | 000,001,883 | ---- | M] () -- C:\WINDOWS\System32\kboem32.dat
[2010-04-25 08:31:11 | 000,000,766 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Gadu-Gadu 10.lnk
[2010-04-22 06:13:24 | 000,521,942 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-04-22 06:13:24 | 000,441,454 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-04-22 06:13:24 | 000,071,264 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-04-18 13:00:52 | 000,034,213 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Graf.jpg
[2010-04-18 11:21:34 | 000,001,493 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\DivX Movies.lnk
[2010-04-18 11:21:09 | 000,000,777 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\DivX Plus Player.lnk
[2010-04-18 11:20:47 | 000,000,817 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\DivX Plus Converter.lnk
[2010-04-17 21:08:59 | 000,001,821 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Ulead VideoStudio 11.lnk
[2010-04-17 20:51:19 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2010-04-17 19:59:02 | 000,001,819 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Xilisoft Video Converter Ultimate.lnk
[2010-04-15 19:30:29 | 000,397,863 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\DSC00309.JPG
[2010-04-11 10:51:06 | 000,093,078 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\assasin.JPG
[2010-04-10 22:15:50 | 000,000,231 | ---- | M] () -- C:\WINDOWS\system.ini
[2010-04-10 19:09:58 | 000,000,733 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Assassin's Creed.lnk
[2010-04-09 13:32:51 | 000,000,781 | ---- | M] () -- C:\WINDOWS\win.ini
[2010-04-08 13:31:18 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\cd.dat
[2010-04-08 13:12:20 | 000,685,921 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\jaa..lepiej
[2010-04-07 21:56:24 | 007,482,353 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\My Documents.7z
[2010-04-06 18:31:09 | 001,485,206 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\DSC01335.JPG
[2010-04-03 14:34:04 | 000,278,984 | ---- | M] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2010-04-03 11:37:59 | 000,000,721 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Load Advanced AI in SandBox2.lnk
[2010-04-02 22:10:58 | 000,000,478 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Fraps.lnk
[2010-04-02 21:56:02 | 000,007,680 | ---- | M] () -- C:\WINDOWS\System32\drivers\nd.sys
[2010-04-02 21:49:27 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\BattleLAN.ini
[2010-03-31 01:58:24 | 000,353,592 | ---- | M] (DivX, Inc.) -- C:\WINDOWS\System32\DivXControlPanelApplet.cpl
[2010-03-29 15:41:06 | 000,000,644 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Second Life.lnk
[2010-03-28 13:22:26 | 000,086,016 | ---- | M] (Beepa P/L) -- C:\WINDOWS\System32\frapsvid.dll
[2010-03-25 08:49:06 | 000,082,360 | ---- | M] (Locktime Software) -- C:\WINDOWS\System32\drivers\nltdi.sys
[2010-03-19 23:08:37 | 000,000,510 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Silkroad.lnk
[2010-03-17 21:52:23 | 006,396,210 | -H-- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\IconCache.db
[2010-03-13 20:16:46 | 000,244,438 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\Set nr 2.rar
[2010-03-13 18:00:16 | 003,737,832 | ---- | M] () -- C:\Documents and Settings\Administrator\My Documents\yep.7z
[2010-03-13 15:06:15 | 000,015,360 | -H-- | M] () -- C:\Documents and Settings\Administrator\My Documents\photothumb.db
[2010-03-10 08:04:54 | 000,421,888 | ---- | M] (Gabest) -- C:\WINDOWS\System32\RealMediaSplitter.ax
[2010-03-10 08:04:54 | 000,278,528 | ---- | M] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2010-03-08 17:59:18 | 000,094,208 | ---- | M] (DivX, Inc.) -- C:\WINDOWS\System32\dpl100.dll
[2010-03-08 13:15:23 | 000,000,467 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\ooVoo.lnk
[2010-03-07 16:05:39 | 000,000,722 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Project Torque.lnk
[2010-03-06 22:23:55 | 000,002,944 | ---- | M] () -- C:\WINDOWS\System32\unins000.dat
[2010-03-06 22:23:25 | 000,716,153 | ---- | M] () -- C:\WINDOWS\System32\unins000.exe
[2010-03-06 18:39:22 | 000,000,484 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Mount&Blade.lnk
[2010-03-06 15:53:38 | 000,000,581 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Gothic III CP.lnk
[2010-03-06 10:41:47 | 002,684,416 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\India_sacra.pps
[2010-03-05 23:56:45 | 000,000,803 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Crysis Natural Mod.lnk
[2010-03-05 20:40:57 | 000,107,888 | ---- | M] (Sony DADC Austria AG.) -- C:\WINDOWS\System32\CmdLineExt.dll
[2010-03-05 20:15:23 | 000,000,661 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Gothic III.lnk
[2010-03-05 20:15:15 | 000,018,048 | ---- | M] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2010-03-05 18:21:59 | 000,000,000 | ---- | M] () -- C:\WINDOWS\ativpsrm.bin
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[3 C:\Documents and Settings\Administrator\*.tmp files -> C:\Documents and Settings\Administrator\*.tmp -> ]

[color="#e56717"]========== LOP Check ==========[/color]

[2010-05-03 13:34:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Audacity
[2010-03-27 23:34:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Camfrog
[2010-02-12 20:48:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Gadu-Gadu 10
[2010-04-21 14:23:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\gtk-2.0
[2010-05-02 10:32:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Locktime
[2010-03-06 19:34:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Mount&Blade
[2010-03-08 13:16:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\ooVoo Details
[2010-04-30 11:25:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\OpenFM
[2010-03-29 15:41:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\SecondLife
[2010-02-13 04:19:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Styler
[2010-03-05 21:55:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\SystemRequirementsLab
[2010-03-19 13:15:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Tomato
[2010-04-10 19:25:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Ubisoft
[2010-04-17 21:51:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Ulead Systems
[2010-04-17 19:59:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Xilisoft Corporation
[2010-05-02 11:08:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ESET
[2010-02-12 20:44:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Gadu-Gadu 10
[2010-04-17 21:09:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\InterVideo
[2010-05-02 10:30:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Locktime
[2010-04-30 15:37:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\OpenFM
[2010-04-26 15:18:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PMB Files
[2010-04-04 15:42:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Test Drive Unlimited
[2010-04-10 19:11:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ubisoft
[2010-04-17 21:10:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ulead Systems

[color="#e56717"]========== Custom Scans ==========[/color]


[color="#a23bec"]< %systemdrive%\*.* >[/color]
[2010-02-13 03:59:25 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010-02-13 03:59:25 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010-02-13 03:59:25 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010-02-13 03:59:25 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010-05-03 13:42:26 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys
[2010-02-13 04:25:16 | 000,001,794 | ---- | M] () -- C:\RHDSetup.log


[color="#a23bec"]< MD5 for: AGP440.SYS >[/color]
[2008-06-19 20:46:53 | 018,163,061 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys

[color="#a23bec"]< MD5 for: ATAPI.SYS >[/color]
[2008-06-19 20:46:53 | 018,163,061 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008-04-14 05:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys

[color="#a23bec"]< MD5 for: BEEP.SYS >[/color]
[2008-04-14 12:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys

[color="#a23bec"]< MD5 for: CDROM.SYS >[/color]
[2008-06-19 20:46:53 | 018,163,061 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008-04-14 12:00:00 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys

[color="#a23bec"]< MD5 for: EVENTLOG.DLL >[/color]
[2008-04-14 12:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\system32\eventlog.dll

[color="#a23bec"]< MD5 for: NDIS.SYS >[/color]
[2008-04-14 12:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys

[color="#a23bec"]< MD5 for: WINLOGON.EXE >[/color]
[2008-04-14 12:00:00 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=ED0EF0A136DEC83DF69F04118870003E -- C:\WINDOWS\system32\winlogon.exe

< End of report >
[/log]

Ok wysyłam log OTL. Okey! Widze pare rzeczy i jest lista stron tam sprawdzilem je i wszystkie wyrzucają do google.pl . Co z tym zrobic? i jeszcze problem z 404-not found zostaje jak to sie naprawi.
To pomoze ktos? Prosze, szybko.... Komputer umnie jest glownym srodkiem zarobku a 3/4 stron mam poblokowanych....Prosze,prosze,prosze :C
Długo mam czekać?

Sprawdzcie ten link bo pradopodobnie zawarty w tym instalator do niewiadomo czego jest tego przyczyną(link kolega miał w opisie a ja ciekawski wiedzy sciągnołem to xd ( Zainstalowalem na E i tego czegoś niema nigdzie ani nie czyta tego Search)

Newsy..Wybaczcie za double posta ale zostałem przez was całkowicie olany... Czego innego sie spodziewałem po takim forum.... Zauwazyłem ze w pliku hosts mam poblokowane ok 140 witryn internetowych wdodatku nie moge nadpisać pliku. Co zrobić z tym fantem?

Sohei
komentarz
komentarz (edytowane)

Kolego my mamy szkoly robote itd... Wiec nie badz w goracej wodzie kompany!
Zaraz zajme sie twoimi logami.
I prosze cie nie podawaj linkow pelnych w poscie zeby inni z ciekawosci nie wchodzili

[code]:Processes
Explorer.exe

:OTL

PRC - [2007-04-25 23:36:26 | 000,835,584 | ---- | M] () -- C:\WINDOWS\vsnp325.exe
PRC - [2007-04-21 17:30:54 | 000,270,336 | ---- | M] () -- C:\WINDOWS\tsnp325.exe
O4 - HKLM..\Run: [snp325] C:\WINDOWS\vsnp325.exe ()
O4 - HKLM..\Run: [tsnp325] C:\WINDOWS\tsnp325.exe ()
O4 - HKU\S-1-5-18..\RunOnce: [ShowDeskFix] File not found
O4 - HKU\S-1-5-20..\RunOnce: [ShowDeskFix] File not found

:files
C:\WINDOWS\tsnp325.exe
C:\WINDOWS\vsnp325.exe
C:\WINDOWS\System32\vsnp325.dll
C:\WINDOWS\System32\csnp325.dll
C:\WINDOWS\System32\rsnp325.dll
C:\WINDOWS\System32\crt.dat
C:\WINDOWS\System32\kboem32.dat
C:\WINDOWS\snp325.ini
C:\WINDOWS\UA000088.DLL

:Commands
[emptytemp]
[reboot][/code]

Wklejasz do OTL i klikasz run fix potem log z usuwania i
Wykonaj pełny skan [url=http://dobreprogramy.pl/index.php?dz=2&id=1998][b]DR WEB CureIt[/b][/url]
Wykonaj pełny skan[url=http://www.dobreprogramy.pl/Malwarebytes-AntiMalware,Program,Windows,13117.html][b]MBAM[/b][/url] + co znajda usun
nowy log z OTL




Pliki poniżej przeskanuj na virustotal i daj link do wyników
C:\WINDOWS\ativpsrm.bin
-- C:\WINDOWS\System32\IVIresizeW7.dll
C:\WINDOWS\System32\nscompat.tlb


C:\WINDOWS\System32\antiwpa.dll--->pirac dalej...


Usun plik hosts z folderu c:/windows/system32/drivers/ets
i wklej tam ten oto plik http://www.speedyshare.com/files/22597401/hosts : )
tu jest moja kopia hostsa masz pozabezpieczane szkodliwe strony.
Jeśli twój plik hosts nie bedzie chcial sie normlanie usunac zastosuj unlockera lecz pamietaj aby odrazu podmienic
tam czysta kopie:)

Po wrzuceniu mojego pliku prawym kliknij na niego wlasciwosci i wybierz opcje tylko do odczytu i zastosuj. To uchroni przed przyszla infekcja

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.