zagroo utworzono 25 maja 2010 utworzono 25 maja 2010 Witam, mam taki problem prawdopodobnie z wirusem, po uruchomieniu się systemu wyskakuje takie coś: [img]http://img46.imageshack.us/img46/9239/zdjcie0021r.jpg[/img] Co 2-3 raz od włączenia komputera takie coś się pokazuje :/ Podaje log z OTL, proszę o pomoc: [log]OTL logfile created on: 2010-05-25 13:34:43 - Run 2 OTL by OldTimer - Version 3.2.2.0 Folder = D:\programy Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.2180) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 74,00% Memory free 4,00 Gb Paging File | 3,00 Gb Available in Paging File | 88,00% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 49,10 Gb Total Space | 4,77 Gb Free Space | 9,71% Space Free | Partition Type: NTFS Drive D: | 50,15 Gb Total Space | 4,04 Gb Free Space | 8,05% Space Free | Partition Type: NTFS Drive E: | 49,80 Gb Total Space | 10,42 Gb Free Space | 20,91% Space Free | Partition Type: NTFS F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: ZAGRO Current User Name: zagroo Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: On Skip Microsoft Files: On File Age = 60 Days Output = Standard [color=#E56717]========== Processes (All) ==========[/color] PRC - [2010-04-22 14:55:19 | 000,562,176 | ---- | M] (OldTimer Tools) -- D:\programy\OTL.exe PRC - [2010-04-12 17:29:29 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe PRC - [2010-04-03 19:23:16 | 000,154,216 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe PRC - [2010-04-03 00:43:21 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2010-02-18 11:43:18 | 000,248,040 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe PRC - [2009-08-04 16:36:42 | 008,354,592 | ---- | M] (VSO Software SARL) -- C:\Program Files\VSO\ConvertX\3\ConvertXtoDvd.exe PRC - [2009-03-31 09:39:36 | 000,233,472 | ---- | M] (Teruten) -- C:\WINDOWS\system32\FsUsbExService.Exe PRC - [2008-10-09 08:54:26 | 017,021,440 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.EXE PRC - [2008-04-07 09:17:30 | 000,430,592 | ---- | M] (Nokia.) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe PRC - [2008-03-10 09:58:18 | 000,130,560 | ---- | M] () -- C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe PRC - [2008-02-22 09:11:02 | 000,120,320 | ---- | M] () -- C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe PRC - [2007-02-11 00:07:32 | 000,241,664 | ---- | M] (A4Tech Co.,Ltd.) -- C:\Program Files\A4Tech\Mouse\Amoumain.exe PRC - [2005-10-27 01:02:19 | 001,162,240 | ---- | M] (Nullsoft) -- C:\Program Files\Winamp\winamp.exe PRC - [2004-08-04 01:55:54 | 001,667,584 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Messenger\msmsgs.exe PRC - [2004-08-04 00:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe PRC - [2004-08-04 00:44:30 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapsrv.exe PRC - [2004-08-04 00:44:30 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscntfy.exe PRC - [2004-08-04 00:44:28 | 000,108,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe PRC - [2004-08-04 00:44:28 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe PRC - [2004-08-04 00:44:28 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe PRC - [2004-08-04 00:44:28 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [WUDFSERVICEGROUP] PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS] PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE] PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS] PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [HTTPFILTER] PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH] PRC - [2004-08-04 00:44:22 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe PRC - [2004-08-04 00:44:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2004-08-04 00:44:20 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe PRC - [2004-08-04 00:44:20 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe PRC - [2004-08-04 00:44:18 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2010-04-22 14:55:19 | 000,562,176 | ---- | M] (OldTimer Tools) -- D:\programy\OTL.exe MOD - [2007-02-10 23:51:40 | 000,036,864 | ---- | M] (A4Tech Co.,Ltd.) -- C:\WINDOWS\system32\Amhooker.dll MOD - [2004-08-04 00:44:32 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv MOD - [2004-08-04 00:44:16 | 000,178,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winmm.dll MOD - [2004-08-04 00:44:14 | 000,729,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\userenv.dll MOD - [2004-08-04 00:44:14 | 000,578,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll MOD - [2004-08-04 00:44:14 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll MOD - [2004-08-04 00:44:14 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll MOD - [2004-08-04 00:44:12 | 000,473,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll MOD - [2004-08-04 00:44:12 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll MOD - [2004-08-04 00:44:12 | 000,065,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shimeng.dll MOD - [2004-08-04 00:44:10 | 008,412,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll MOD - [2004-08-04 00:44:10 | 000,996,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll MOD - [2004-08-04 00:44:10 | 000,581,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll MOD - [2004-08-04 00:44:10 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll MOD - [2004-08-04 00:44:10 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll MOD - [2004-08-04 00:44:08 | 001,281,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll MOD - [2004-08-04 00:44:08 | 000,553,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll MOD - [2004-08-04 00:44:08 | 000,083,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll MOD - [2004-08-04 00:44:06 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll MOD - [2004-08-04 00:44:04 | 000,294,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTF.dll MOD - [2004-08-04 00:44:04 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msacm32.dll MOD - [2004-08-04 00:44:02 | 001,012,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll MOD - [2004-08-04 00:44:00 | 000,278,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll MOD - [2004-08-04 00:43:58 | 000,185,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll MOD - [2004-08-04 00:43:56 | 000,279,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll MOD - [2004-08-04 00:43:52 | 001,852,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\AppPatch\AcGenral.dll MOD - [2004-08-04 00:43:52 | 000,686,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll MOD - [2004-08-04 00:43:48 | 000,716,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll MOD - [2004-08-04 00:42:34 | 001,050,624 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2010-03-03 00:23:00 | 003,760,184 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\WINDOWS\System32\GameMon.des -- (npggsvc) SRV - [2009-08-24 21:16:36 | 000,406,016 | ---- | M] (mst software GmbH, Germany) [On_Demand | Stopped] -- C:\Program Files\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe -- (DfSdkS) SRV - [2009-03-31 09:39:36 | 000,233,472 | ---- | M] (Teruten) [Auto | Running] -- C:\WINDOWS\system32\FsUsbExService.Exe -- (FsUsbExService) SRV - [2008-04-07 09:17:30 | 000,430,592 | ---- | M] (Nokia.) [On_Demand | Running] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2010-04-04 00:55:31 | 010,232,128 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [2010-04-03 01:28:28 | 000,007,680 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nd.sys -- (ND) DRV - [2010-03-29 19:21:05 | 000,025,280 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi) DRV - [2010-03-10 14:52:22 | 000,279,712 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt) DRV - [2010-03-10 14:52:22 | 000,025,888 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt) DRV - [2010-03-10 14:34:52 | 000,717,296 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2010-03-10 13:34:16 | 000,016,608 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\gdrv.sys -- (gdrv) DRV - [2009-03-31 09:39:36 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk) DRV - [2009-03-20 10:01:26 | 000,121,856 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ss_bmdm.sys -- (ss_bmdm) DRV - [2009-03-20 10:01:26 | 000,090,112 | ---- | M] (MCCI) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ss_bbus.sys -- (ss_bbus) SAMSUNG USB Mobile Device (WDM) DRV - [2009-03-20 10:01:26 | 000,014,976 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ss_bmdfl.sys -- (ss_bmdfl) SAMSUNG USB Mobile Modem (Filter) DRV - [2008-10-13 12:26:10 | 004,879,360 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2008-09-25 15:51:42 | 000,115,328 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp) DRV - [2007-09-17 15:53:26 | 000,021,632 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd) DRV - [2007-06-29 15:47:34 | 000,034,304 | ---- | M] (AMD, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AmdLLD.sys -- (AmdLLD) DRV - [2007-04-16 17:46:34 | 000,033,792 | ---- | M] (Advanced Micro Devices) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\AmdPPM.sys -- (AmdPPM) DRV - [2007-02-11 01:55:50 | 000,013,824 | ---- | M] (A4Tech Co.,Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Amusbprt.sys -- (Amusbprt) DRV - [2007-01-24 19:46:50 | 000,008,704 | ---- | M] (A4Tech Co.,Ltd.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\Amfilter.sys -- (Amfilter) DRV - [2006-07-02 00:32:26 | 000,043,520 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8) DRV - [2005-01-07 18:07:18 | 000,138,752 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Hdaudbus.sys -- (HDAudBus) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1417001333-2147181963-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.startup.homepage: "www.onet.pl" FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: firefox@tvunetworks.com:2 FF - prefs.js..extensions.enabledItems: 5 FF - prefs.js..extensions.enabledItems: 2 FF - prefs.js..extensions.enabledItems: 2 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20 FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-04-03 01:37:40 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-05-18 20:31:06 | 000,000,000 | ---D | M] [2010-04-17 13:36:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Mozilla\Extensions [2010-04-17 13:36:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Mozilla\Extensions\mozswing@mozswing.org [2010-05-24 17:03:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Mozilla\Firefox\Profiles\nicwdk4j.default\extensions [2010-03-14 15:40:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Mozilla\Firefox\Profiles\nicwdk4j.default\extensions\firefox@tvunetworks.com [2010-05-24 17:03:26 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010-05-18 20:31:07 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} [2010-04-12 17:29:19 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll [2010-01-16 03:08:36 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-01-16 03:08:36 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-01-16 03:08:36 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-01-16 03:08:36 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-01-16 03:08:36 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-01-16 03:08:36 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2001-10-26 19:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe (AMD) O4 - HKLM..\Run: [GEST] File not found O4 - HKLM..\Run: [KernelFaultCheck] File not found O4 - HKLM..\Run: [NPSStartup] File not found O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] File not found O4 - HKLM..\Run: [WheelMouse] C:\Program Files\A4Tech\Mouse\Amoumain.exe (A4Tech Co.,Ltd.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1417001333-2147181963-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\S-1-5-21-1417001333-2147181963-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} http://www.mks.com.pl/skaner/SkanerOnline.cab (MksSkanerOnline Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\kbupdate: DllName - kbupdate.dll - C:\WINDOWS\System32\kbupdate.dll () O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010-03-10 13:26:29 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: Ias - C:\WINDOWS\system32\ias [2010-03-10 14:11:08 | 000,000,000 | ---D | M] NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe - (Adobe Systems Incorporated) MsConfig - StartUpReg: [b]AutoStartNPSAgent[/b] - hkey= - key= - C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe (Samsung Electronics Co., Ltd.) MsConfig - StartUpReg: [b]DAEMON Tools Lite[/b] - hkey= - key= - C:\Program Files\DAEMON Tools Lite\daemon.exe (DT Soft Ltd) MsConfig - StartUpReg: [b]Gadu-Gadu 10[/b] - hkey= - key= - C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.) MsConfig - StartUpReg: [b]NeroFilterCheck[/b] - hkey= - key= - File not found MsConfig - StartUpReg: [b]Steam[/b] - hkey= - key= - C:\Program Files\Steam\Steam.exe (Valve Corporation) MsConfig - StartUpReg: [b]WinampAgent[/b] - hkey= - key= - C:\Program Files\Winamp\winampa.exe () MsConfig - State: "system.ini" - 0 MsConfig - State: "win.ini" - 0 MsConfig - State: "bootini" - 0 MsConfig - State: "services" - 0 MsConfig - State: "startup" - 2 SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PEVSystemStart - Service SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: procexp90.Sys - Driver SafeBootMin: SCSI Class - Driver Group SafeBootMin: sermouse.sys - Driver SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vga.sys - Driver SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PEVSystemStart - Service SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: procexp90.Sys - Driver SafeBootNet: SCSI Class - Driver Group SafeBootNet: sermouse.sys - Driver SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vga.sys - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2010-05-24 23:01:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss [2010-05-24 22:57:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\DEA314C409294250BC9298E4C105F28D.TMP [2010-05-24 22:56:52 | 000,061,440 | ---- | C] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll [2010-05-24 22:23:57 | 000,000,000 | ---D | C] -- C:\Program Files\Lavalys [2010-05-24 22:23:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump [2010-05-24 22:20:12 | 000,000,000 | RHSD | C] -- C:\cmdcons [2010-05-24 22:17:43 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe [2010-05-24 22:17:43 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe [2010-05-24 22:17:43 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe [2010-05-24 22:17:43 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe [2010-05-24 22:15:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT [2010-05-24 22:15:08 | 000,000,000 | ---D | C] -- C:\Qoobox [2010-05-24 17:04:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\Grizzly City vol 1 - 2006 [2010-05-22 04:12:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\storage [2010-05-22 04:11:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Ubisoft [2010-05-22 04:10:15 | 000,000,000 | ---D | C] -- C:\Program Files\Ubisoft [2010-05-19 12:48:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\fashawn-the_phenom-volume2-(dubcnn) [2010-05-19 12:07:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\Fashawn_The_Phenom_Vol1-(DatPiff.com) [2010-05-19 10:51:50 | 000,000,000 | ---D | C] -- C:\Program Files\eHurtownia-offline [2010-05-18 20:34:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Sun [2010-05-18 20:34:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2010-05-18 16:25:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\Pobieranie [2010-05-18 16:08:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\Apple Computer [2010-05-16 22:46:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Apple Computer [2010-05-16 22:46:36 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime Alternative [2010-05-16 19:24:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\Reflection_Eternal-Revolutions_Per_Minute-2010-H3X [2010-05-16 19:24:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\DJWhooKidPresentsXXLs10FreshmanFor2010 [2010-05-11 23:08:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\Atmosphere - You Cant Imagine How Much Fun We are Having 2005 [2010-05-09 23:40:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\Nas_Damian_Marley-Distant_Relatives-2010-WEB [2010-05-07 18:49:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\Incomplete [2010-05-04 21:23:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\cd [2010-05-03 23:11:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\DVDVideoSoft [2010-05-03 23:11:43 | 000,000,000 | ---D | C] -- C:\Program Files\DVDVideoSoft [2010-05-03 23:11:43 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DVDVideoSoft [2010-05-02 19:16:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\My Games [2010-04-24 18:12:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\My Art [2010-04-24 18:12:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite [2010-04-24 18:12:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Dane aplikacji\PC Suite [2010-04-24 18:10:41 | 000,090,624 | ---- | C] (Nokia) -- C:\WINDOWS\System32\nmwcdcls.dll [2010-04-24 18:10:38 | 000,021,632 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\pccsmcfd.sys [2010-04-24 18:10:26 | 000,121,856 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\ss_bmdm.sys [2010-04-24 18:10:26 | 000,090,112 | ---- | C] (MCCI) -- C:\WINDOWS\System32\drivers\ss_bbus.sys [2010-04-24 18:10:26 | 000,014,976 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\ss_bmdfl.sys [2010-04-24 18:10:26 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\ss_bwhnt.sys [2010-04-24 18:10:26 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\ss_bwh.sys [2010-04-24 18:10:26 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\ss_bcmnt.sys [2010-04-24 18:10:26 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\ss_bcm.sys [2010-04-24 18:10:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Samsung_USB_Drivers [2010-04-24 18:10:22 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX [2010-04-24 18:10:19 | 000,233,472 | ---- | C] (Teruten) -- C:\WINDOWS\System32\FsUsbExService.Exe [2010-04-24 18:10:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\My NPS Files [2010-04-24 18:10:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Dane aplikacji\Samsung [2010-04-24 18:09:56 | 000,000,000 | ---D | C] -- C:\Program Files\MarkAny [2010-04-24 18:09:54 | 000,000,000 | ---D | C] -- C:\Program Files\PC Connectivity Solution [2010-04-24 18:09:30 | 000,000,000 | ---D | C] -- C:\Program Files\Samsung [2010-04-22 17:06:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\SHOVANY MIXTAPE vol.2 [2010-04-22 14:43:49 | 000,000,000 | ---D | C] -- C:\Program Files\Grupa IMAGE [2010-04-20 15:51:30 | 000,000,000 | ---D | C] -- C:\Program Files\SkanerOnline [2010-04-17 13:36:14 | 000,000,000 | ---D | C] -- C:\Program Files\LimeWire [2010-04-17 13:08:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\LimeWire [2010-04-13 13:11:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\4A Games [2010-04-13 13:09:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\4A Games [2010-04-11 19:32:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\Vlaflip(Roydolfje) [2010-04-09 11:35:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\PES_Editor_6.0.6 [2010-04-07 17:39:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\USB Vibration [2010-04-07 17:38:36 | 000,000,000 | ---D | C] -- C:\Program Files\USB Vibration [2010-04-07 17:32:23 | 000,737,280 | ---- | C] (Indigo Rose Corporation) -- C:\WINDOWS\iun6002.exe [2010-04-07 17:32:19 | 000,000,000 | ---D | C] -- C:\Program Files\DkZ Studio [2010-04-07 17:07:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages [2010-04-07 12:48:14 | 000,000,000 | ---D | C] -- C:\Program Files\NCH Software [2010-04-06 17:23:23 | 000,000,000 | ---D | C] -- C:\Program Files\IrfanView [2010-04-03 02:17:24 | 000,000,000 | ---D | C] -- C:\Program Files\Real Alternative [2010-04-03 00:36:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\.limewire [2010-04-02 12:27:30 | 000,028,160 | ---- | C] (mst software GmbH, Germany) -- C:\WINDOWS\System32\DfSdkBt.exe [2010-04-02 12:27:05 | 000,000,000 | ---D | C] -- C:\Program Files\Ashampoo [2010-03-29 19:21:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Dane aplikacji\Hamachi [2010-03-29 19:21:05 | 000,025,280 | ---- | C] (LogMeIn, Inc.) -- C:\WINDOWS\System32\drivers\hamachi.sys [2010-03-29 19:21:04 | 000,000,000 | ---D | C] -- C:\Program Files\Hamachi [2010-03-29 17:19:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Dane aplikacji\teamspeak2 [2010-03-29 17:18:55 | 000,000,000 | ---D | C] -- C:\Program Files\Teamspeak2_RC2 [2010-03-29 17:03:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\Ahead [2010-03-29 17:00:51 | 000,106,496 | ---- | C] (Pegasus Software) -- C:\WINDOWS\System32\TwnLib20.dll [2010-03-29 17:00:50 | 001,568,768 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagX7.dll [2010-03-29 17:00:50 | 000,476,320 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXpr7.dll [2010-03-29 17:00:50 | 000,471,040 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXRA7.dll [2010-03-29 17:00:50 | 000,262,144 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXR7.dll [2010-03-29 17:00:50 | 000,155,648 | ---- | C] (Ahead Software Gmbh) -- C:\WINDOWS\System32\NeroCheck.exe [2010-03-29 17:00:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Ahead [2010-03-29 17:00:47 | 000,000,000 | ---D | C] -- C:\Program Files\Ahead [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2010-05-25 13:31:20 | 004,456,448 | -H-- | M] () -- C:\Documents and Settings\zagroo\NTUSER.DAT [2010-05-25 13:31:20 | 000,027,339 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\Zdjęcie0021.jpg [2010-05-25 13:28:38 | 000,001,044 | ---- | M] () -- C:\Documents and Settings\zagroo\Dane aplikacji\vso_ts_preview.xml [2010-05-25 13:27:34 | 000,276,202 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml [2010-05-25 13:27:28 | 000,000,020 | ---- | M] () -- C:\WINDOWS\System32\crt.dat [2010-05-25 13:27:27 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010-05-25 13:27:26 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-05-25 13:26:28 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\zagroo\ntuser.ini [2010-05-25 13:22:45 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2010-05-25 13:03:23 | 004,632,803 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\heyyoungworld.mp3 [2010-05-25 12:06:29 | 000,068,096 | ---- | M] () -- C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-05-24 23:48:22 | 000,000,912 | ---- | M] () -- C:\WINDOWS\system.ini [2010-05-24 23:48:22 | 000,000,507 | ---- | M] () -- C:\WINDOWS\win.ini [2010-05-24 23:48:22 | 000,000,293 | RHS- | M] () -- C:\boot.ini [2010-05-24 22:58:19 | 002,111,036 | -H-- | M] () -- C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010-05-24 22:54:06 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat [2010-05-24 22:24:00 | 000,000,767 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\EVEREST Home Edition.lnk [2010-05-22 15:55:57 | 000,002,362 | ---- | M] () -- C:\WINDOWS\System32\kboem32.dat [2010-05-22 04:11:06 | 000,000,866 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Tom Clancy's Splinter Cell Conviction.lnk [2010-05-19 10:51:53 | 000,000,721 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\eHurtownia-offline.lnk [2010-05-19 10:51:27 | 009,240,310 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\Setup_eHurtownia-offline_2.6.2.21.exe [2010-05-18 20:30:49 | 001,087,700 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010-05-18 20:30:49 | 000,490,628 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2010-05-18 20:30:49 | 000,432,492 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010-05-18 20:30:49 | 000,083,880 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2010-05-18 20:30:49 | 000,067,448 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010-05-18 17:50:40 | 000,604,190 | ---- | M] () -- C:\[;plop[.xps [2010-05-18 15:19:57 | 000,069,730 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\4.jpg [2010-05-18 15:18:22 | 000,118,181 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\1.jpg [2010-05-18 15:18:11 | 000,111,769 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\2.jpg [2010-05-18 14:41:47 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\umdf\Msft_User_WpdMtpDr_01_00_00.Wdf [2010-05-18 13:00:10 | 000,725,048 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\20100518109.jpg [2010-05-16 22:50:39 | 000,000,589 | ---- | M] () -- C:\WINDOWS\m3jpeg.ini [2010-05-16 14:41:08 | 007,359,092 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\Eldo - Pale Majki.mp3 [2010-05-12 16:47:17 | 000,000,791 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\OpenFM.lnk [2010-05-12 16:47:17 | 000,000,762 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk [2010-05-10 12:32:31 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-05-07 14:15:25 | 000,529,137 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\wfd.mp3 [2010-05-07 13:11:02 | 000,002,119 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\RESIDENT EVIL 5.lnk [2010-05-05 00:31:48 | 000,000,168 | ---- | M] () -- C:\WINDOWS\usdthank.ini [2010-05-03 00:46:43 | 000,002,988 | ---- | M] () -- C:\WINDOWS\VPlayer.INI [2010-05-03 00:46:43 | 000,000,089 | ---- | M] () -- C:\WINDOWS\VplayerINI.vpl [2010-04-29 22:32:14 | 001,241,966 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\dree.mp3 [2010-04-27 12:38:33 | 010,967,593 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\Ice_Cube-I_Rep_That_West-2dope.mp3 [2010-04-27 12:19:02 | 000,000,664 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Steam.lnk [2010-04-26 15:58:12 | 000,256,512 | ---- | M] () -- C:\WINDOWS\PEV.exe [2010-04-24 18:10:13 | 000,002,528 | ---- | M] () -- C:\Documents and Settings\zagroo\Dane aplikacji\$_hpcst$.hpc [2010-04-24 18:09:57 | 000,001,883 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Samsung New PC Studio.lnk [2010-04-23 11:45:32 | 005,067,394 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\joell_ortiz-call_me__feat._novel_.mp3 [2010-04-22 15:51:43 | 000,013,880 | ---- | M] () -- C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2010-04-22 15:04:04 | 000,099,848 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-04-22 14:43:53 | 000,000,771 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\Testy B 2009.lnk [2010-04-18 22:05:07 | 000,000,668 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\Counter-Strike Source.lnk [2010-04-18 21:58:18 | 000,000,630 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\MoorHunt.lnk [2010-04-17 13:36:23 | 000,001,578 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\LimeWire 5.5.8.lnk [2010-04-13 22:44:01 | 000,000,583 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\Metro 2033.lnk [2010-04-08 16:52:44 | 000,001,541 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\FEAR2.lnk [2010-04-07 17:32:23 | 000,001,573 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\DKZ Studio.lnk [2010-04-07 17:32:16 | 000,737,280 | ---- | M] (Indigo Rose Corporation) -- C:\WINDOWS\iun6002.exe [2010-04-07 16:36:35 | 000,000,509 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\Pro Evolution Soccer 6.lnk [2010-04-04 00:55:31 | 002,183,470 | ---- | M] () -- C:\WINDOWS\System32\nvdata.bin [2010-04-04 00:55:31 | 000,061,440 | ---- | M] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll [2010-04-04 00:55:31 | 000,009,046 | ---- | M] () -- C:\WINDOWS\System32\nvinfo.pb [2010-04-03 19:22:32 | 000,066,714 | ---- | M] () -- C:\WINDOWS\System32\NvwsApps.xml [2010-04-03 01:28:28 | 000,007,680 | ---- | M] () -- C:\WINDOWS\System32\drivers\nd.sys [2010-04-03 01:28:19 | 000,197,120 | ---- | M] () -- C:\WINDOWS\System32\crt4.dll [2010-04-03 01:28:19 | 000,111,616 | ---- | M] () -- C:\WINDOWS\System32\kbsnd32.dll [2010-04-03 01:28:19 | 000,111,104 | ---- | M] () -- C:\WINDOWS\System32\kbddta.dll [2010-04-03 01:28:19 | 000,098,304 | ---- | M] () -- C:\WINDOWS\System32\kbdatat4.dll [2010-04-03 01:28:19 | 000,046,592 | ---- | M] () -- C:\WINDOWS\System32\kbupdate.dll [2010-04-02 12:27:31 | 000,000,765 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Ashampoo WinOptimizer 6.lnk [2010-03-29 19:21:05 | 000,025,280 | ---- | M] (LogMeIn, Inc.) -- C:\WINDOWS\System32\drivers\hamachi.sys [2010-03-29 17:18:56 | 000,000,665 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\Teamspeak 2 RC2.lnk [2010-03-29 17:01:16 | 000,001,251 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\Nero StartSmart.lnk [2010-03-26 17:18:00 | 000,000,300 | ---- | M] () -- C:\WINDOWS\tasks\expressburnSevenDays.job [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-05-25 13:30:37 | 000,027,339 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\Zdjęcie0021.jpg [2010-05-25 13:01:42 | 004,632,803 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\heyyoungworld.mp3 [2010-05-24 22:56:51 | 002,183,470 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin [2010-05-24 22:54:06 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2010-05-24 22:24:00 | 000,000,767 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\EVEREST Home Edition.lnk [2010-05-24 22:20:16 | 000,000,223 | ---- | C] () -- C:\Boot.bak [2010-05-24 22:20:14 | 000,262,400 | ---- | C] () -- C:\cmldr [2010-05-24 22:17:43 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe [2010-05-24 22:17:43 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe [2010-05-24 22:17:43 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe [2010-05-24 22:17:43 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe [2010-05-24 22:17:43 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe [2010-05-22 04:11:06 | 000,000,866 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Tom Clancy's Splinter Cell Conviction.lnk [2010-05-19 10:51:53 | 000,000,721 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\eHurtownia-offline.lnk [2010-05-19 10:50:54 | 009,240,310 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\Setup_eHurtownia-offline_2.6.2.21.exe [2010-05-18 17:50:36 | 000,604,190 | ---- | C] () -- C:\[;plop[.xps [2010-05-18 15:19:57 | 000,069,730 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\4.jpg [2010-05-18 13:00:08 | 000,725,048 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\20100518109.jpg [2010-05-18 12:58:48 | 000,118,181 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\1.jpg [2010-05-18 12:51:32 | 000,111,769 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\2.jpg [2010-05-16 14:39:41 | 007,359,092 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\Eldo - Pale Majki.mp3 [2010-05-12 16:47:17 | 000,000,791 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\OpenFM.lnk [2010-05-07 14:15:23 | 000,529,137 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\wfd.mp3 [2010-04-29 22:32:11 | 001,241,966 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\dree.mp3 [2010-04-27 12:33:01 | 010,967,593 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\Ice_Cube-I_Rep_That_West-2dope.mp3 [2010-04-24 18:10:19 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll [2010-04-24 18:10:19 | 000,036,608 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys [2010-04-24 18:10:13 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\zagroo\Dane aplikacji\$_hpcst$.hpc [2010-04-24 18:09:57 | 000,001,883 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Samsung New PC Studio.lnk [2010-04-23 11:45:09 | 005,067,394 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\joell_ortiz-call_me__feat._novel_.mp3 [2010-04-22 14:43:53 | 000,000,771 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\Testy B 2009.lnk [2010-04-18 22:05:07 | 000,000,668 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\Counter-Strike Source.lnk [2010-04-17 13:36:23 | 000,001,578 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\LimeWire 5.5.8.lnk [2010-04-13 13:23:57 | 000,000,583 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\Metro 2033.lnk [2010-04-07 17:32:23 | 000,001,573 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\DKZ Studio.lnk [2010-04-07 17:21:46 | 001,246,208 | ---- | C] () -- C:\WINDOWS\System\quartz.dll [2010-04-07 16:36:35 | 000,000,509 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\Pro Evolution Soccer 6.lnk [2010-04-07 13:34:25 | 000,001,541 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\FEAR2.lnk [2010-04-03 19:22:32 | 000,276,202 | ---- | C] () -- C:\WINDOWS\System32\NvApps.xml [2010-04-03 19:22:32 | 000,066,714 | ---- | C] () -- C:\WINDOWS\System32\NvwsApps.xml [2010-04-03 01:28:28 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\drivers\nd.sys [2010-04-03 01:28:21 | 000,000,020 | ---- | C] () -- C:\WINDOWS\System32\crt.dat [2010-04-03 01:28:19 | 000,197,120 | ---- | C] () -- C:\WINDOWS\System32\crt4.dll [2010-04-03 01:28:19 | 000,111,616 | ---- | C] () -- C:\WINDOWS\System32\kbsnd32.dll [2010-04-03 01:28:19 | 000,111,104 | ---- | C] () -- C:\WINDOWS\System32\kbddta.dll [2010-04-03 01:28:19 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\kbdatat4.dll [2010-04-03 01:28:19 | 000,046,592 | ---- | C] () -- C:\WINDOWS\System32\kbupdate.dll [2010-04-03 01:28:19 | 000,002,362 | ---- | C] () -- C:\WINDOWS\System32\kboem32.dat [2010-04-02 12:27:31 | 000,000,765 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Ashampoo WinOptimizer 6.lnk [2010-03-30 02:00:35 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2010-03-29 17:18:56 | 000,000,665 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\Teamspeak 2 RC2.lnk [2010-03-29 17:01:04 | 000,001,251 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\Nero StartSmart.lnk [2010-03-26 14:36:15 | 000,000,089 | ---- | C] () -- C:\WINDOWS\VplayerINI.vpl [2010-03-26 14:35:48 | 000,002,988 | ---- | C] () -- C:\WINDOWS\VPlayer.INI [2010-03-25 00:28:24 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2010-03-25 00:28:24 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini [2010-03-25 00:28:23 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2010-03-25 00:28:23 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2010-03-25 00:28:22 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2010-03-25 00:28:22 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest [2010-03-15 05:27:52 | 000,000,168 | ---- | C] () -- C:\WINDOWS\usdthank.ini [2010-03-15 05:27:52 | 000,000,031 | ---- | C] () -- C:\WINDOWS\idc.ini [2010-03-10 14:52:22 | 000,279,712 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys [2010-03-10 14:52:22 | 000,025,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys [2010-03-10 14:34:51 | 000,717,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys [2010-03-10 13:46:05 | 000,000,087 | ---- | C] () -- C:\WINDOWS\VSWizard.ini [2010-01-23 00:04:16 | 000,000,589 | ---- | C] () -- C:\WINDOWS\m3jpeg.ini [2009-11-06 11:58:04 | 000,178,975 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat [2007-10-25 17:26:10 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys [2005-04-26 02:05:50 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\vbzlib.dll [2005-04-26 02:05:50 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\vbaZlib.dll [2004-08-04 00:44:00 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll [2004-07-17 11:36:38 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys [2002-10-06 19:42:58 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll [2002-10-05 00:04:26 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\VorbisEnc.dll [2002-10-05 00:04:26 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll [2002-10-05 00:04:18 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll [color=#E56717]========== LOP Check ==========[/color] [2010-03-10 20:25:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-03-19 17:17:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\NCH Swift Sound [2010-03-21 15:31:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2010-04-24 18:12:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite [2010-03-10 14:45:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\salvation [2010-03-10 14:53:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Tages [2010-03-18 23:23:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TrackMania [2010-05-22 04:11:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ubisoft [2010-03-15 22:08:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\vsosdk [2010-03-10 14:48:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Atari [2010-05-03 00:45:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\BESTplayer [2010-03-10 14:34:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\DAEMON Tools [2010-03-10 20:59:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Gadu-Gadu 10 [2010-03-19 17:17:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\NCH Swift Sound [2010-03-21 15:31:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\OpenFM [2010-04-24 18:12:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\PC Suite [2010-04-24 18:10:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Samsung [2010-03-15 17:49:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Thinstall [2010-03-11 11:21:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\VitySoft [2010-05-25 13:28:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Vso [2010-03-26 17:18:00 | 000,000,300 | ---- | M] () -- C:\WINDOWS\Tasks\expressburnSevenDays.job [2010-03-19 17:18:00 | 000,000,306 | ---- | M] () -- C:\WINDOWS\Tasks\expressburnSevenDaysInit.job [2010-03-19 17:17:55 | 000,000,260 | ---- | M] () -- C:\WINDOWS\Tasks\expressburnShakeIcon.job [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2010-03-10 13:26:29 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-03-12 00:11:39 | 000,000,223 | ---- | M] () -- C:\Boot.bak [2010-05-24 23:48:22 | 000,000,293 | RHS- | M] () -- C:\boot.ini [2001-07-22 02:13:54 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin [2004-08-03 23:00:14 | 000,262,400 | ---- | M] () -- C:\cmldr [2010-03-10 13:26:29 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-03-10 13:34:48 | 000,000,197 | ---- | M] () -- C:\csb.log [2010-03-10 13:26:29 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-04-20 18:50:41 | 000,007,532 | ---- | M] () -- C:\mksbasel.cpp.log [2010-03-10 13:26:29 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2004-08-03 22:38:34 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2004-08-03 22:59:54 | 000,250,624 | RHS- | M] () -- C:\ntldr [2010-05-25 13:27:23 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys [2010-03-10 13:33:10 | 000,001,530 | ---- | M] () -- C:\RHDSetup.log [2010-05-18 17:50:40 | 000,604,190 | ---- | M] () -- C:\[;plop[.xps [color=#A23BEC]< MD5 for: AGP440.SYS >[/color] [2004-08-04 00:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:agp440.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2004-08-04 00:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys [2004-08-03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\drivers\atapi.sys [color=#A23BEC]< MD5 for: BEEP.SYS >[/color] [2001-08-18 01:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys [2001-08-18 01:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2004-08-04 00:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys [2004-08-03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\system32\drivers\cdrom.sys [color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color] [2004-08-04 00:43:58 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=05684DE2DA55A04C8AAAB5911AFE7643 -- C:\WINDOWS\system32\dllcache\eventlog.dll [2004-08-04 00:43:58 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=05684DE2DA55A04C8AAAB5911AFE7643 -- C:\WINDOWS\system32\eventlog.dll [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2004-08-03 23:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\dllcache\ndis.sys [2004-08-03 23:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\drivers\ndis.sys [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2004-08-04 00:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- C:\WINDOWS\system32\dllcache\winlogon.exe [2004-08-04 00:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- C:\WINDOWS\system32\winlogon.exe < End of report > [/log]
Sohei komentarz 25 maja 2010 komentarz 25 maja 2010 [code] :Processes Explorer.exe :OTL O4 - HKLM..\Run: [GEST] File not found O4 - HKLM..\Run: [KernelFaultCheck] File not found O4 - HKLM..\Run: [NPSStartup] File not found :Files C:\WINDOWS\DEA314C409294250BC9298E4C105F28D.TMP C:\WINDOWS\System32\d3d9caps.dat C:\WINDOWS\System32\kboem32.dat C:\[;plop[.xps :Commands [emptytemp] [reboot] [/code] Wklej do OTL i kliknij run fix. Wykonaj pełny skan [url=http://dobreprogramy.pl/index.php?dz=2&id=1998][b]DR WEB CureIt[/b][/url] Wykonaj pełny skan[url=http://www.dobreprogramy.pl/Malwarebytes-AntiMalware,Program,Windows,13117.html][b]MBAM[/b][/url] Co znajda usun po czym daj logi z usuwania + nowy log OTL 1
zagroo komentarz 25 maja 2010 Autor komentarz 25 maja 2010 Wielkie dzięki za pomoc, zrobiłem to co napisałeś i wychodzi na to że komputer jest czysty i sprawnie działający [log]OTL logfile created on: 2010-05-25 16:30:03 - Run 3 OTL by OldTimer - Version 3.2.2.0 Folder = D:\programy Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.2180) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 65,00% Memory free 4,00 Gb Paging File | 3,00 Gb Available in Paging File | 89,00% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 49,10 Gb Total Space | 5,24 Gb Free Space | 10,68% Space Free | Partition Type: NTFS Drive D: | 50,15 Gb Total Space | 7,19 Gb Free Space | 14,34% Space Free | Partition Type: NTFS Drive E: | 49,80 Gb Total Space | 6,24 Gb Free Space | 12,53% Space Free | Partition Type: NTFS F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: ZAGRO Current User Name: zagroo Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: On Skip Microsoft Files: On File Age = 60 Days Output = Standard [color=#E56717]========== Processes (All) ==========[/color] PRC - [2010-05-04 16:05:48 | 011,981,408 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe PRC - [2010-04-22 14:55:19 | 000,562,176 | ---- | M] (OldTimer Tools) -- D:\programy\OTL.exe PRC - [2010-04-12 17:29:29 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe PRC - [2010-04-03 19:23:16 | 000,154,216 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe PRC - [2010-04-03 00:43:21 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2010-02-18 11:43:18 | 000,248,040 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe PRC - [2009-03-31 09:39:36 | 000,233,472 | ---- | M] (Teruten) -- C:\WINDOWS\system32\FsUsbExService.Exe PRC - [2008-10-09 08:54:26 | 017,021,440 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.EXE PRC - [2007-02-11 00:07:32 | 000,241,664 | ---- | M] (A4Tech Co.,Ltd.) -- C:\Program Files\A4Tech\Mouse\Amoumain.exe PRC - [2004-08-04 01:55:54 | 001,667,584 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Messenger\msmsgs.exe PRC - [2004-08-04 00:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe PRC - [2004-08-04 00:44:30 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapsrv.exe PRC - [2004-08-04 00:44:30 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscntfy.exe PRC - [2004-08-04 00:44:28 | 000,108,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe PRC - [2004-08-04 00:44:28 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe PRC - [2004-08-04 00:44:28 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe PRC - [2004-08-04 00:44:28 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [WUDFSERVICEGROUP] PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS] PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE] PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS] PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [HTTPFILTER] PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH] PRC - [2004-08-04 00:44:22 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe PRC - [2004-08-04 00:44:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2004-08-04 00:44:20 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe PRC - [2004-08-04 00:44:20 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe PRC - [2004-08-04 00:44:18 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2010-04-22 14:55:19 | 000,562,176 | ---- | M] (OldTimer Tools) -- D:\programy\OTL.exe MOD - [2007-02-10 23:51:40 | 000,036,864 | ---- | M] (A4Tech Co.,Ltd.) -- C:\WINDOWS\system32\Amhooker.dll MOD - [2004-08-04 00:44:32 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv MOD - [2004-08-04 00:44:16 | 000,178,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winmm.dll MOD - [2004-08-04 00:44:14 | 000,729,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\userenv.dll MOD - [2004-08-04 00:44:14 | 000,578,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll MOD - [2004-08-04 00:44:14 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll MOD - [2004-08-04 00:44:14 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll MOD - [2004-08-04 00:44:12 | 000,473,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll MOD - [2004-08-04 00:44:12 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll MOD - [2004-08-04 00:44:12 | 000,065,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shimeng.dll MOD - [2004-08-04 00:44:10 | 008,412,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll MOD - [2004-08-04 00:44:10 | 000,996,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll MOD - [2004-08-04 00:44:10 | 000,581,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll MOD - [2004-08-04 00:44:10 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll MOD - [2004-08-04 00:44:10 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll MOD - [2004-08-04 00:44:08 | 001,281,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll MOD - [2004-08-04 00:44:08 | 000,553,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll MOD - [2004-08-04 00:44:08 | 000,083,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll MOD - [2004-08-04 00:44:06 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll MOD - [2004-08-04 00:44:04 | 000,294,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTF.dll MOD - [2004-08-04 00:44:04 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msacm32.dll MOD - [2004-08-04 00:44:02 | 001,012,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll MOD - [2004-08-04 00:44:00 | 000,278,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll MOD - [2004-08-04 00:43:58 | 000,185,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll MOD - [2004-08-04 00:43:56 | 000,279,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll MOD - [2004-08-04 00:43:52 | 001,852,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\AppPatch\AcGenral.dll MOD - [2004-08-04 00:43:52 | 000,686,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll MOD - [2004-08-04 00:43:48 | 000,716,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll MOD - [2004-08-04 00:42:34 | 001,050,624 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2010-03-03 00:23:00 | 003,760,184 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\WINDOWS\System32\GameMon.des -- (npggsvc) SRV - [2009-08-24 21:16:36 | 000,406,016 | ---- | M] (mst software GmbH, Germany) [On_Demand | Stopped] -- C:\Program Files\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe -- (DfSdkS) SRV - [2009-03-31 09:39:36 | 000,233,472 | ---- | M] (Teruten) [Auto | Running] -- C:\WINDOWS\system32\FsUsbExService.Exe -- (FsUsbExService) SRV - [2008-04-07 09:17:30 | 000,430,592 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2010-04-04 00:55:31 | 010,232,128 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [2010-03-29 19:21:05 | 000,025,280 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi) DRV - [2010-03-10 14:52:22 | 000,279,712 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt) DRV - [2010-03-10 14:52:22 | 000,025,888 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt) DRV - [2010-03-10 14:34:52 | 000,717,296 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2010-03-10 13:34:16 | 000,016,608 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\gdrv.sys -- (gdrv) DRV - [2009-03-31 09:39:36 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk) DRV - [2009-03-20 10:01:26 | 000,121,856 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bmdm.sys -- (ss_bmdm) DRV - [2009-03-20 10:01:26 | 000,090,112 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bbus.sys -- (ss_bbus) SAMSUNG USB Mobile Device (WDM) DRV - [2009-03-20 10:01:26 | 000,014,976 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bmdfl.sys -- (ss_bmdfl) SAMSUNG USB Mobile Modem (Filter) DRV - [2008-10-13 12:26:10 | 004,879,360 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2008-09-25 15:51:42 | 000,115,328 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp) DRV - [2007-09-17 15:53:26 | 000,021,632 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd) DRV - [2007-06-29 15:47:34 | 000,034,304 | ---- | M] (AMD, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AmdLLD.sys -- (AmdLLD) DRV - [2007-04-16 17:46:34 | 000,033,792 | ---- | M] (Advanced Micro Devices) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\AmdPPM.sys -- (AmdPPM) DRV - [2007-02-11 01:55:50 | 000,013,824 | ---- | M] (A4Tech Co.,Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Amusbprt.sys -- (Amusbprt) DRV - [2007-01-24 19:46:50 | 000,008,704 | ---- | M] (A4Tech Co.,Ltd.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\Amfilter.sys -- (Amfilter) DRV - [2006-07-02 00:32:26 | 000,043,520 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8) DRV - [2005-01-07 18:07:18 | 000,138,752 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Hdaudbus.sys -- (HDAudBus) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1417001333-2147181963-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.startup.homepage: "www.onet.pl" FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: firefox@tvunetworks.com:2 FF - prefs.js..extensions.enabledItems: 5 FF - prefs.js..extensions.enabledItems: 2 FF - prefs.js..extensions.enabledItems: 2 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20 FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-04-03 01:37:40 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-05-18 20:31:06 | 000,000,000 | ---D | M] [2010-04-17 13:36:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Mozilla\Extensions [2010-04-17 13:36:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Mozilla\Extensions\mozswing@mozswing.org [2010-05-24 17:03:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Mozilla\Firefox\Profiles\nicwdk4j.default\extensions [2010-03-14 15:40:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Mozilla\Firefox\Profiles\nicwdk4j.default\extensions\firefox@tvunetworks.com [2010-05-24 17:03:26 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010-05-18 20:31:07 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} [2010-04-12 17:29:19 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll [2010-01-16 03:08:36 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-01-16 03:08:36 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-01-16 03:08:36 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-01-16 03:08:36 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-01-16 03:08:36 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-01-16 03:08:36 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2001-10-26 19:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe (AMD) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] File not found O4 - HKLM..\Run: [WheelMouse] C:\Program Files\A4Tech\Mouse\Amoumain.exe (A4Tech Co.,Ltd.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1417001333-2147181963-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\S-1-5-21-1417001333-2147181963-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} http://www.mks.com.pl/skaner/SkanerOnline.cab (MksSkanerOnline Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010-03-10 13:26:29 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: Ias - C:\WINDOWS\system32\ias [2010-03-10 14:11:08 | 000,000,000 | ---D | M] NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe - (Adobe Systems Incorporated) MsConfig - StartUpReg: [b]AutoStartNPSAgent[/b] - hkey= - key= - C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe (Samsung Electronics Co., Ltd.) MsConfig - StartUpReg: [b]DAEMON Tools Lite[/b] - hkey= - key= - C:\Program Files\DAEMON Tools Lite\daemon.exe (DT Soft Ltd) MsConfig - StartUpReg: [b]Gadu-Gadu 10[/b] - hkey= - key= - C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.) MsConfig - StartUpReg: [b]NeroFilterCheck[/b] - hkey= - key= - File not found MsConfig - StartUpReg: [b]Steam[/b] - hkey= - key= - C:\Program Files\Steam\Steam.exe (Valve Corporation) MsConfig - StartUpReg: [b]WinampAgent[/b] - hkey= - key= - C:\Program Files\Winamp\winampa.exe () MsConfig - State: "system.ini" - 0 MsConfig - State: "win.ini" - 0 MsConfig - State: "bootini" - 0 MsConfig - State: "services" - 0 MsConfig - State: "startup" - 2 SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PEVSystemStart - Service SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: procexp90.Sys - Driver SafeBootMin: SCSI Class - Driver Group SafeBootMin: sermouse.sys - Driver SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vga.sys - Driver SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PEVSystemStart - Service SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: procexp90.Sys - Driver SafeBootNet: SCSI Class - Driver Group SafeBootNet: sermouse.sys - Driver SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vga.sys - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2010-05-25 16:11:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\DoctorWeb [2010-05-25 16:02:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Dane aplikacji\Malwarebytes [2010-05-25 16:02:12 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2010-05-25 16:02:11 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2010-05-25 16:02:11 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2010-05-25 16:02:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes [2010-05-25 14:28:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Dane aplikacji\NVIDIA [2010-05-24 23:01:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss [2010-05-24 22:56:52 | 000,061,440 | ---- | C] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll [2010-05-24 22:23:57 | 000,000,000 | ---D | C] -- C:\Program Files\Lavalys [2010-05-24 22:23:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump [2010-05-24 22:20:12 | 000,000,000 | RHSD | C] -- C:\cmdcons [2010-05-24 22:17:43 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe [2010-05-24 22:17:43 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe [2010-05-24 22:17:43 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe [2010-05-24 22:17:43 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe [2010-05-24 22:15:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT [2010-05-24 22:15:08 | 000,000,000 | ---D | C] -- C:\Qoobox [2010-05-22 04:12:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\storage [2010-05-22 04:11:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Ubisoft [2010-05-22 04:10:15 | 000,000,000 | ---D | C] -- C:\Program Files\Ubisoft [2010-05-19 12:48:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\fashawn-the_phenom-volume2-(dubcnn) [2010-05-19 12:07:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\Fashawn_The_Phenom_Vol1-(DatPiff.com) [2010-05-19 10:51:50 | 000,000,000 | ---D | C] -- C:\Program Files\eHurtownia-offline [2010-05-18 20:34:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Sun [2010-05-18 20:34:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2010-05-18 16:25:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\Pobieranie [2010-05-18 16:08:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\Apple Computer [2010-05-16 22:46:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Apple Computer [2010-05-16 22:46:36 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime Alternative [2010-05-16 19:24:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\Reflection_Eternal-Revolutions_Per_Minute-2010-H3X [2010-05-11 23:08:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\Atmosphere - You Cant Imagine How Much Fun We are Having 2005 [2010-05-09 23:40:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\Nas_Damian_Marley-Distant_Relatives-2010-WEB [2010-05-07 18:49:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\Incomplete [2010-05-04 21:23:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\cd [2010-05-03 23:11:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\DVDVideoSoft [2010-05-03 23:11:43 | 000,000,000 | ---D | C] -- C:\Program Files\DVDVideoSoft [2010-05-03 23:11:43 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DVDVideoSoft [2010-05-02 19:16:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\My Games [2010-04-24 18:12:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\My Art [2010-04-24 18:12:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite [2010-04-24 18:12:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Dane aplikacji\PC Suite [2010-04-24 18:10:41 | 000,090,624 | ---- | C] (Nokia) -- C:\WINDOWS\System32\nmwcdcls.dll [2010-04-24 18:10:38 | 000,021,632 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\pccsmcfd.sys [2010-04-24 18:10:26 | 000,121,856 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\ss_bmdm.sys [2010-04-24 18:10:26 | 000,090,112 | ---- | C] (MCCI) -- C:\WINDOWS\System32\drivers\ss_bbus.sys [2010-04-24 18:10:26 | 000,014,976 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\ss_bmdfl.sys [2010-04-24 18:10:26 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\ss_bwhnt.sys [2010-04-24 18:10:26 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\ss_bwh.sys [2010-04-24 18:10:26 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\ss_bcmnt.sys [2010-04-24 18:10:26 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\ss_bcm.sys [2010-04-24 18:10:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Samsung_USB_Drivers [2010-04-24 18:10:22 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX [2010-04-24 18:10:19 | 000,233,472 | ---- | C] (Teruten) -- C:\WINDOWS\System32\FsUsbExService.Exe [2010-04-24 18:10:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\My NPS Files [2010-04-24 18:10:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Dane aplikacji\Samsung [2010-04-24 18:09:56 | 000,000,000 | ---D | C] -- C:\Program Files\MarkAny [2010-04-24 18:09:54 | 000,000,000 | ---D | C] -- C:\Program Files\PC Connectivity Solution [2010-04-24 18:09:30 | 000,000,000 | ---D | C] -- C:\Program Files\Samsung [2010-04-22 17:06:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\SHOVANY MIXTAPE vol.2 [2010-04-22 14:43:49 | 000,000,000 | ---D | C] -- C:\Program Files\Grupa IMAGE [2010-04-20 15:51:30 | 000,000,000 | ---D | C] -- C:\Program Files\SkanerOnline [2010-04-17 13:36:14 | 000,000,000 | ---D | C] -- C:\Program Files\LimeWire [2010-04-17 13:08:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\LimeWire [2010-04-13 13:11:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\4A Games [2010-04-13 13:09:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\4A Games [2010-04-11 19:32:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\Vlaflip(Roydolfje) [2010-04-09 11:35:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\PES_Editor_6.0.6 [2010-04-07 17:39:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\USB Vibration [2010-04-07 17:38:36 | 000,000,000 | ---D | C] -- C:\Program Files\USB Vibration [2010-04-07 17:32:23 | 000,737,280 | ---- | C] (Indigo Rose Corporation) -- C:\WINDOWS\iun6002.exe [2010-04-07 17:32:19 | 000,000,000 | ---D | C] -- C:\Program Files\DkZ Studio [2010-04-07 17:07:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages [2010-04-07 12:48:14 | 000,000,000 | ---D | C] -- C:\Program Files\NCH Software [2010-04-06 17:23:23 | 000,000,000 | ---D | C] -- C:\Program Files\IrfanView [2010-04-03 02:17:24 | 000,000,000 | ---D | C] -- C:\Program Files\Real Alternative [2010-04-03 00:36:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\.limewire [2010-04-02 12:27:30 | 000,028,160 | ---- | C] (mst software GmbH, Germany) -- C:\WINDOWS\System32\DfSdkBt.exe [2010-04-02 12:27:05 | 000,000,000 | ---D | C] -- C:\Program Files\Ashampoo [2010-03-29 19:21:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Dane aplikacji\Hamachi [2010-03-29 19:21:05 | 000,025,280 | ---- | C] (LogMeIn, Inc.) -- C:\WINDOWS\System32\drivers\hamachi.sys [2010-03-29 19:21:04 | 000,000,000 | ---D | C] -- C:\Program Files\Hamachi [2010-03-29 17:19:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Dane aplikacji\teamspeak2 [2010-03-29 17:18:55 | 000,000,000 | ---D | C] -- C:\Program Files\Teamspeak2_RC2 [2010-03-29 17:03:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\Ahead [2010-03-29 17:00:51 | 000,106,496 | ---- | C] (Pegasus Software) -- C:\WINDOWS\System32\TwnLib20.dll [2010-03-29 17:00:50 | 001,568,768 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagX7.dll [2010-03-29 17:00:50 | 000,476,320 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXpr7.dll [2010-03-29 17:00:50 | 000,471,040 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXRA7.dll [2010-03-29 17:00:50 | 000,262,144 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXR7.dll [2010-03-29 17:00:50 | 000,155,648 | ---- | C] (Ahead Software Gmbh) -- C:\WINDOWS\System32\NeroCheck.exe [2010-03-29 17:00:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Ahead [2010-03-29 17:00:47 | 000,000,000 | ---D | C] -- C:\Program Files\Ahead [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2010-05-25 16:29:26 | 004,456,448 | -H-- | M] () -- C:\Documents and Settings\zagroo\NTUSER.DAT [2010-05-25 16:10:42 | 000,276,202 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml [2010-05-25 16:10:39 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010-05-25 16:10:38 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-05-25 16:02:14 | 000,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk [2010-05-25 15:58:36 | 001,087,700 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010-05-25 15:58:36 | 000,490,628 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2010-05-25 15:58:36 | 000,432,492 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010-05-25 15:58:36 | 000,083,880 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2010-05-25 15:58:36 | 000,067,448 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010-05-25 15:54:14 | 000,001,044 | ---- | M] () -- C:\Documents and Settings\zagroo\Dane aplikacji\vso_ts_preview.xml [2010-05-25 15:02:44 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2010-05-25 14:12:49 | 000,067,072 | ---- | M] () -- C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-05-25 13:31:20 | 000,027,339 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\Zdjęcie0021.jpg [2010-05-25 13:26:28 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\zagroo\ntuser.ini [2010-05-24 23:48:22 | 000,000,912 | ---- | M] () -- C:\WINDOWS\system.ini [2010-05-24 23:48:22 | 000,000,507 | ---- | M] () -- C:\WINDOWS\win.ini [2010-05-24 23:48:22 | 000,000,293 | RHS- | M] () -- C:\boot.ini [2010-05-24 22:58:19 | 002,111,036 | -H-- | M] () -- C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010-05-24 22:24:00 | 000,000,767 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\EVEREST Home Edition.lnk [2010-05-22 04:11:06 | 000,000,866 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Tom Clancy's Splinter Cell Conviction.lnk [2010-05-19 10:51:53 | 000,000,721 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\eHurtownia-offline.lnk [2010-05-18 15:19:57 | 000,069,730 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\4.jpg [2010-05-18 15:18:22 | 000,118,181 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\1.jpg [2010-05-18 15:18:11 | 000,111,769 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\2.jpg [2010-05-18 14:41:47 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\umdf\Msft_User_WpdMtpDr_01_00_00.Wdf [2010-05-18 13:00:10 | 000,725,048 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\20100518109.jpg [2010-05-16 22:50:39 | 000,000,589 | ---- | M] () -- C:\WINDOWS\m3jpeg.ini [2010-05-16 14:41:08 | 007,359,092 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\Eldo - Pale Majki.mp3 [2010-05-12 16:47:17 | 000,000,791 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\OpenFM.lnk [2010-05-12 16:47:17 | 000,000,762 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk [2010-05-10 12:32:31 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-05-07 14:15:25 | 000,529,137 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\wfd.mp3 [2010-05-07 13:11:02 | 000,002,119 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\RESIDENT EVIL 5.lnk [2010-05-05 00:31:48 | 000,000,168 | ---- | M] () -- C:\WINDOWS\usdthank.ini [2010-05-03 00:46:43 | 000,002,988 | ---- | M] () -- C:\WINDOWS\VPlayer.INI [2010-05-03 00:46:43 | 000,000,089 | ---- | M] () -- C:\WINDOWS\VplayerINI.vpl [2010-04-29 22:32:14 | 001,241,966 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\dree.mp3 [2010-04-29 15:39:38 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2010-04-29 15:39:26 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2010-04-27 12:38:33 | 010,967,593 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\Ice_Cube-I_Rep_That_West-2dope.mp3 [2010-04-27 12:19:02 | 000,000,664 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Steam.lnk [2010-04-26 15:58:12 | 000,256,512 | ---- | M] () -- C:\WINDOWS\PEV.exe [2010-04-24 18:10:13 | 000,002,528 | ---- | M] () -- C:\Documents and Settings\zagroo\Dane aplikacji\$_hpcst$.hpc [2010-04-24 18:09:57 | 000,001,883 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Samsung New PC Studio.lnk [2010-04-23 11:45:32 | 005,067,394 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\joell_ortiz-call_me__feat._novel_.mp3 [2010-04-22 15:51:43 | 000,013,880 | ---- | M] () -- C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2010-04-22 15:04:04 | 000,099,848 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-04-22 14:43:53 | 000,000,771 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\Testy B 2009.lnk [2010-04-18 22:05:07 | 000,000,668 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\Counter-Strike Source.lnk [2010-04-18 21:58:18 | 000,000,630 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\MoorHunt.lnk [2010-04-17 13:36:23 | 000,001,578 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\LimeWire 5.5.8.lnk [2010-04-13 22:44:01 | 000,000,583 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\Metro 2033.lnk [2010-04-08 16:52:44 | 000,001,541 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\FEAR2.lnk [2010-04-07 17:32:23 | 000,001,573 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\DKZ Studio.lnk [2010-04-07 17:32:16 | 000,737,280 | ---- | M] (Indigo Rose Corporation) -- C:\WINDOWS\iun6002.exe [2010-04-07 16:36:35 | 000,000,509 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\Pro Evolution Soccer 6.lnk [2010-04-04 00:55:31 | 002,183,470 | ---- | M] () -- C:\WINDOWS\System32\nvdata.bin [2010-04-04 00:55:31 | 000,061,440 | ---- | M] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll [2010-04-04 00:55:31 | 000,009,046 | ---- | M] () -- C:\WINDOWS\System32\nvinfo.pb [2010-04-03 19:22:32 | 000,066,714 | ---- | M] () -- C:\WINDOWS\System32\NvwsApps.xml [2010-04-02 12:27:31 | 000,000,765 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Ashampoo WinOptimizer 6.lnk [2010-03-29 19:21:05 | 000,025,280 | ---- | M] (LogMeIn, Inc.) -- C:\WINDOWS\System32\drivers\hamachi.sys [2010-03-29 17:18:56 | 000,000,665 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\Teamspeak 2 RC2.lnk [2010-03-29 17:01:16 | 000,001,251 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\Nero StartSmart.lnk [2010-03-26 17:18:00 | 000,000,300 | ---- | M] () -- C:\WINDOWS\tasks\expressburnSevenDays.job [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-05-25 16:02:14 | 000,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk [2010-05-25 13:30:37 | 000,027,339 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\Zdjęcie0021.jpg [2010-05-24 22:56:51 | 002,183,470 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin [2010-05-24 22:24:00 | 000,000,767 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\EVEREST Home Edition.lnk [2010-05-24 22:20:16 | 000,000,223 | ---- | C] () -- C:\Boot.bak [2010-05-24 22:20:14 | 000,262,400 | ---- | C] () -- C:\cmldr [2010-05-24 22:17:43 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe [2010-05-24 22:17:43 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe [2010-05-24 22:17:43 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe [2010-05-24 22:17:43 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe [2010-05-24 22:17:43 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe [2010-05-22 04:11:06 | 000,000,866 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Tom Clancy's Splinter Cell Conviction.lnk [2010-05-19 10:51:53 | 000,000,721 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\eHurtownia-offline.lnk [2010-05-18 15:19:57 | 000,069,730 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\4.jpg [2010-05-18 13:00:08 | 000,725,048 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\20100518109.jpg [2010-05-18 12:58:48 | 000,118,181 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\1.jpg [2010-05-18 12:51:32 | 000,111,769 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\2.jpg [2010-05-16 14:39:41 | 007,359,092 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\Eldo - Pale Majki.mp3 [2010-05-12 16:47:17 | 000,000,791 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\OpenFM.lnk [2010-05-07 14:15:23 | 000,529,137 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\wfd.mp3 [2010-04-29 22:32:11 | 001,241,966 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\dree.mp3 [2010-04-27 12:33:01 | 010,967,593 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\Ice_Cube-I_Rep_That_West-2dope.mp3 [2010-04-24 18:10:19 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll [2010-04-24 18:10:19 | 000,036,608 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys [2010-04-24 18:10:13 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\zagroo\Dane aplikacji\$_hpcst$.hpc [2010-04-24 18:09:57 | 000,001,883 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Samsung New PC Studio.lnk [2010-04-23 11:45:09 | 005,067,394 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\joell_ortiz-call_me__feat._novel_.mp3 [2010-04-22 14:43:53 | 000,000,771 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\Testy B 2009.lnk [2010-04-18 22:05:07 | 000,000,668 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\Counter-Strike Source.lnk [2010-04-17 13:36:23 | 000,001,578 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\LimeWire 5.5.8.lnk [2010-04-13 13:23:57 | 000,000,583 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\Metro 2033.lnk [2010-04-07 17:32:23 | 000,001,573 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\DKZ Studio.lnk [2010-04-07 17:21:46 | 001,246,208 | ---- | C] () -- C:\WINDOWS\System\quartz.dll [2010-04-07 16:36:35 | 000,000,509 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\Pro Evolution Soccer 6.lnk [2010-04-07 13:34:25 | 000,001,541 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\FEAR2.lnk [2010-04-03 19:22:32 | 000,276,202 | ---- | C] () -- C:\WINDOWS\System32\NvApps.xml [2010-04-03 19:22:32 | 000,066,714 | ---- | C] () -- C:\WINDOWS\System32\NvwsApps.xml [2010-04-02 12:27:31 | 000,000,765 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Ashampoo WinOptimizer 6.lnk [2010-03-30 02:00:35 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2010-03-29 17:18:56 | 000,000,665 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\Teamspeak 2 RC2.lnk [2010-03-29 17:01:04 | 000,001,251 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\Nero StartSmart.lnk [2010-03-26 14:35:48 | 000,002,988 | ---- | C] () -- C:\WINDOWS\VPlayer.INI [2010-03-25 00:28:24 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2010-03-25 00:28:24 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini [2010-03-25 00:28:23 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2010-03-25 00:28:23 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2010-03-25 00:28:22 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2010-03-25 00:28:22 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest [2010-03-15 05:27:52 | 000,000,168 | ---- | C] () -- C:\WINDOWS\usdthank.ini [2010-03-15 05:27:52 | 000,000,031 | ---- | C] () -- C:\WINDOWS\idc.ini [2010-03-10 14:52:22 | 000,279,712 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys [2010-03-10 14:52:22 | 000,025,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys [2010-03-10 14:34:51 | 000,717,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys [2010-03-10 13:46:05 | 000,000,087 | ---- | C] () -- C:\WINDOWS\VSWizard.ini [2010-01-23 00:04:16 | 000,000,589 | ---- | C] () -- C:\WINDOWS\m3jpeg.ini [2009-11-06 11:58:04 | 000,178,975 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat [2007-10-25 17:26:10 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys [2005-04-26 02:05:50 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\vbzlib.dll [2005-04-26 02:05:50 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\vbaZlib.dll [2004-08-04 00:44:00 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll [2004-07-17 11:36:38 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys [2002-10-06 19:42:58 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll [2002-10-05 00:04:26 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\VorbisEnc.dll [2002-10-05 00:04:26 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll [2002-10-05 00:04:18 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll [color=#E56717]========== LOP Check ==========[/color] [2010-03-10 20:25:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-03-19 17:17:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\NCH Swift Sound [2010-03-21 15:31:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2010-04-24 18:12:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite [2010-03-10 14:45:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\salvation [2010-03-10 14:53:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Tages [2010-03-18 23:23:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TrackMania [2010-05-22 04:11:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ubisoft [2010-03-15 22:08:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\vsosdk [2010-03-10 14:48:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Atari [2010-05-03 00:45:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\BESTplayer [2010-03-10 14:34:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\DAEMON Tools [2010-03-10 20:59:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Gadu-Gadu 10 [2010-03-19 17:17:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\NCH Swift Sound [2010-03-21 15:31:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\OpenFM [2010-04-24 18:12:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\PC Suite [2010-04-24 18:10:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Samsung [2010-03-15 17:49:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Thinstall [2010-03-11 11:21:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\VitySoft [2010-05-25 15:01:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Vso [2010-03-26 17:18:00 | 000,000,300 | ---- | M] () -- C:\WINDOWS\Tasks\expressburnSevenDays.job [2010-03-19 17:18:00 | 000,000,306 | ---- | M] () -- C:\WINDOWS\Tasks\expressburnSevenDaysInit.job [2010-03-19 17:17:55 | 000,000,260 | ---- | M] () -- C:\WINDOWS\Tasks\expressburnShakeIcon.job [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2010-03-10 13:26:29 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-03-12 00:11:39 | 000,000,223 | ---- | M] () -- C:\Boot.bak [2010-05-24 23:48:22 | 000,000,293 | RHS- | M] () -- C:\boot.ini [2001-07-22 02:13:54 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin [2004-08-03 23:00:14 | 000,262,400 | ---- | M] () -- C:\cmldr [2010-03-10 13:26:29 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-03-10 13:34:48 | 000,000,197 | ---- | M] () -- C:\csb.log [2010-03-10 13:26:29 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-04-20 18:50:41 | 000,007,532 | ---- | M] () -- C:\mksbasel.cpp.log [2010-03-10 13:26:29 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2004-08-03 22:38:34 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2004-08-03 22:59:54 | 000,250,624 | RHS- | M] () -- C:\ntldr [2010-05-25 16:10:35 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys [2010-03-10 13:33:10 | 000,001,530 | ---- | M] () -- C:\RHDSetup.log [color=#A23BEC]< MD5 for: AGP440.SYS >[/color] [2004-08-04 00:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:agp440.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2004-08-04 00:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys [2004-08-03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\drivers\atapi.sys [color=#A23BEC]< MD5 for: BEEP.SYS >[/color] [2001-08-18 01:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys [2001-08-18 01:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2004-08-04 00:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys [2004-08-03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\system32\drivers\cdrom.sys [color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color] [2004-08-04 00:43:58 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=05684DE2DA55A04C8AAAB5911AFE7643 -- C:\WINDOWS\system32\dllcache\eventlog.dll [2004-08-04 00:43:58 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=05684DE2DA55A04C8AAAB5911AFE7643 -- C:\WINDOWS\system32\eventlog.dll [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2004-08-03 23:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\dllcache\ndis.sys [2004-08-03 23:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\drivers\ndis.sys [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2004-08-04 00:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- C:\WINDOWS\system32\dllcache\winlogon.exe [2004-08-04 00:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- C:\WINDOWS\system32\winlogon.exe < End of report > [/log]
Sohei komentarz 25 maja 2010 komentarz 25 maja 2010 Jesli programy nic wiecej nie znalazly to prosze w OTL kliknac claen up oraz dysk i rejestr przeczyscic ccleaner; )To wszystko
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.