x-kom hosting

Problem z automatycznym resetowaniem komputera

zagroo
utworzono
utworzono

Witam, mam taki problem prawdopodobnie z wirusem, po uruchomieniu się systemu wyskakuje takie coś:



[img]http://img46.imageshack.us/img46/9239/zdjcie0021r.jpg[/img]

Co 2-3 raz od włączenia komputera takie coś się pokazuje :/ Podaje log z OTL, proszę o pomoc:

[log]OTL logfile created on: 2010-05-25 13:34:43 - Run 2
OTL by OldTimer - Version 3.2.2.0 Folder = D:\programy
Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 74,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 88,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 49,10 Gb Total Space | 4,77 Gb Free Space | 9,71% Space Free | Partition Type: NTFS
Drive D: | 50,15 Gb Total Space | 4,04 Gb Free Space | 8,05% Space Free | Partition Type: NTFS
Drive E: | 49,80 Gb Total Space | 10,42 Gb Free Space | 20,91% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: ZAGRO
Current User Name: zagroo
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 60 Days
Output = Standard

[color=#E56717]========== Processes (All) ==========[/color]

PRC - [2010-04-22 14:55:19 | 000,562,176 | ---- | M] (OldTimer Tools) -- D:\programy\OTL.exe
PRC - [2010-04-12 17:29:29 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2010-04-03 19:23:16 | 000,154,216 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe
PRC - [2010-04-03 00:43:21 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010-02-18 11:43:18 | 000,248,040 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
PRC - [2009-08-04 16:36:42 | 008,354,592 | ---- | M] (VSO Software SARL) -- C:\Program Files\VSO\ConvertX\3\ConvertXtoDvd.exe
PRC - [2009-03-31 09:39:36 | 000,233,472 | ---- | M] (Teruten) -- C:\WINDOWS\system32\FsUsbExService.Exe
PRC - [2008-10-09 08:54:26 | 017,021,440 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.EXE
PRC - [2008-04-07 09:17:30 | 000,430,592 | ---- | M] (Nokia.) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
PRC - [2008-03-10 09:58:18 | 000,130,560 | ---- | M] () -- C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
PRC - [2008-02-22 09:11:02 | 000,120,320 | ---- | M] () -- C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
PRC - [2007-02-11 00:07:32 | 000,241,664 | ---- | M] (A4Tech Co.,Ltd.) -- C:\Program Files\A4Tech\Mouse\Amoumain.exe
PRC - [2005-10-27 01:02:19 | 001,162,240 | ---- | M] (Nullsoft) -- C:\Program Files\Winamp\winamp.exe
PRC - [2004-08-04 01:55:54 | 001,667,584 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Messenger\msmsgs.exe
PRC - [2004-08-04 00:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe
PRC - [2004-08-04 00:44:30 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapsrv.exe
PRC - [2004-08-04 00:44:30 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscntfy.exe
PRC - [2004-08-04 00:44:28 | 000,108,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe
PRC - [2004-08-04 00:44:28 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe
PRC - [2004-08-04 00:44:28 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe
PRC - [2004-08-04 00:44:28 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe
PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [WUDFSERVICEGROUP]
PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS]
PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE]
PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS]
PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [HTTPFILTER]
PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH]
PRC - [2004-08-04 00:44:22 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe
PRC - [2004-08-04 00:44:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2004-08-04 00:44:20 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe
PRC - [2004-08-04 00:44:20 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe
PRC - [2004-08-04 00:44:18 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe


[color=#E56717]========== Modules (All) ==========[/color]

MOD - [2010-04-22 14:55:19 | 000,562,176 | ---- | M] (OldTimer Tools) -- D:\programy\OTL.exe
MOD - [2007-02-10 23:51:40 | 000,036,864 | ---- | M] (A4Tech Co.,Ltd.) -- C:\WINDOWS\system32\Amhooker.dll
MOD - [2004-08-04 00:44:32 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv
MOD - [2004-08-04 00:44:16 | 000,178,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winmm.dll
MOD - [2004-08-04 00:44:14 | 000,729,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\userenv.dll
MOD - [2004-08-04 00:44:14 | 000,578,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll
MOD - [2004-08-04 00:44:14 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll
MOD - [2004-08-04 00:44:14 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll
MOD - [2004-08-04 00:44:12 | 000,473,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll
MOD - [2004-08-04 00:44:12 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll
MOD - [2004-08-04 00:44:12 | 000,065,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shimeng.dll
MOD - [2004-08-04 00:44:10 | 008,412,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll
MOD - [2004-08-04 00:44:10 | 000,996,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll
MOD - [2004-08-04 00:44:10 | 000,581,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll
MOD - [2004-08-04 00:44:10 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll
MOD - [2004-08-04 00:44:10 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll
MOD - [2004-08-04 00:44:08 | 001,281,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll
MOD - [2004-08-04 00:44:08 | 000,553,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll
MOD - [2004-08-04 00:44:08 | 000,083,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll
MOD - [2004-08-04 00:44:06 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll
MOD - [2004-08-04 00:44:04 | 000,294,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTF.dll
MOD - [2004-08-04 00:44:04 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msacm32.dll
MOD - [2004-08-04 00:44:02 | 001,012,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll
MOD - [2004-08-04 00:44:00 | 000,278,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll
MOD - [2004-08-04 00:43:58 | 000,185,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll
MOD - [2004-08-04 00:43:56 | 000,279,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll
MOD - [2004-08-04 00:43:52 | 001,852,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\AppPatch\AcGenral.dll
MOD - [2004-08-04 00:43:52 | 000,686,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll
MOD - [2004-08-04 00:43:48 | 000,716,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll
MOD - [2004-08-04 00:42:34 | 001,050,624 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - [2010-03-03 00:23:00 | 003,760,184 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\WINDOWS\System32\GameMon.des -- (npggsvc)
SRV - [2009-08-24 21:16:36 | 000,406,016 | ---- | M] (mst software GmbH, Germany) [On_Demand | Stopped] -- C:\Program Files\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe -- (DfSdkS)
SRV - [2009-03-31 09:39:36 | 000,233,472 | ---- | M] (Teruten) [Auto | Running] -- C:\WINDOWS\system32\FsUsbExService.Exe -- (FsUsbExService)
SRV - [2008-04-07 09:17:30 | 000,430,592 | ---- | M] (Nokia.) [On_Demand | Running] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - [2010-04-04 00:55:31 | 010,232,128 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2010-04-03 01:28:28 | 000,007,680 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nd.sys -- (ND)
DRV - [2010-03-29 19:21:05 | 000,025,280 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2010-03-10 14:52:22 | 000,279,712 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2010-03-10 14:52:22 | 000,025,888 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2010-03-10 14:34:52 | 000,717,296 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010-03-10 13:34:16 | 000,016,608 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\gdrv.sys -- (gdrv)
DRV - [2009-03-31 09:39:36 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2009-03-20 10:01:26 | 000,121,856 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ss_bmdm.sys -- (ss_bmdm)
DRV - [2009-03-20 10:01:26 | 000,090,112 | ---- | M] (MCCI) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ss_bbus.sys -- (ss_bbus) SAMSUNG USB Mobile Device (WDM)
DRV - [2009-03-20 10:01:26 | 000,014,976 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ss_bmdfl.sys -- (ss_bmdfl) SAMSUNG USB Mobile Modem (Filter)
DRV - [2008-10-13 12:26:10 | 004,879,360 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2008-09-25 15:51:42 | 000,115,328 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2007-09-17 15:53:26 | 000,021,632 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2007-06-29 15:47:34 | 000,034,304 | ---- | M] (AMD, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AmdLLD.sys -- (AmdLLD)
DRV - [2007-04-16 17:46:34 | 000,033,792 | ---- | M] (Advanced Micro Devices) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\AmdPPM.sys -- (AmdPPM)
DRV - [2007-02-11 01:55:50 | 000,013,824 | ---- | M] (A4Tech Co.,Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Amusbprt.sys -- (Amusbprt)
DRV - [2007-01-24 19:46:50 | 000,008,704 | ---- | M] (A4Tech Co.,Ltd.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\Amfilter.sys -- (Amfilter)
DRV - [2006-07-02 00:32:26 | 000,043,520 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2005-01-07 18:07:18 | 000,138,752 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Hdaudbus.sys -- (HDAudBus)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1417001333-2147181963-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.startup.homepage: "www.onet.pl"
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: firefox@tvunetworks.com:2
FF - prefs.js..extensions.enabledItems: 5
FF - prefs.js..extensions.enabledItems: 2
FF - prefs.js..extensions.enabledItems: 2
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-04-03 01:37:40 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-05-18 20:31:06 | 000,000,000 | ---D | M]

[2010-04-17 13:36:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Mozilla\Extensions
[2010-04-17 13:36:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Mozilla\Extensions\mozswing@mozswing.org
[2010-05-24 17:03:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Mozilla\Firefox\Profiles\nicwdk4j.default\extensions
[2010-03-14 15:40:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Mozilla\Firefox\Profiles\nicwdk4j.default\extensions\firefox@tvunetworks.com
[2010-05-24 17:03:26 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010-05-18 20:31:07 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010-04-12 17:29:19 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010-01-16 03:08:36 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010-01-16 03:08:36 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2010-01-16 03:08:36 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2010-01-16 03:08:36 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010-01-16 03:08:36 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2010-01-16 03:08:36 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2001-10-26 19:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe (AMD)
O4 - HKLM..\Run: [GEST] File not found
O4 - HKLM..\Run: [KernelFaultCheck] File not found
O4 - HKLM..\Run: [NPSStartup] File not found
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] File not found
O4 - HKLM..\Run: [WheelMouse] C:\Program Files\A4Tech\Mouse\Amoumain.exe (A4Tech Co.,Ltd.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1417001333-2147181963-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1417001333-2147181963-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} http://www.mks.com.pl/skaner/SkanerOnline.cab (MksSkanerOnline Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\kbupdate: DllName - kbupdate.dll - C:\WINDOWS\System32\kbupdate.dll ()
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010-03-10 13:26:29 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2010-03-10 14:11:08 | 000,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe - (Adobe Systems Incorporated)
MsConfig - StartUpReg: [b]AutoStartNPSAgent[/b] - hkey= - key= - C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe (Samsung Electronics Co., Ltd.)
MsConfig - StartUpReg: [b]DAEMON Tools Lite[/b] - hkey= - key= - C:\Program Files\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
MsConfig - StartUpReg: [b]Gadu-Gadu 10[/b] - hkey= - key= - C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.)
MsConfig - StartUpReg: [b]NeroFilterCheck[/b] - hkey= - key= - File not found
MsConfig - StartUpReg: [b]Steam[/b] - hkey= - key= - C:\Program Files\Steam\Steam.exe (Valve Corporation)
MsConfig - StartUpReg: [b]WinampAgent[/b] - hkey= - key= - C:\Program Files\Winamp\winampa.exe ()
MsConfig - State: "system.ini" - 0
MsConfig - State: "win.ini" - 0
MsConfig - State: "bootini" - 0
MsConfig - State: "services" - 0
MsConfig - State: "startup" - 2

SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PEVSystemStart - Service
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: procexp90.Sys - Driver
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PEVSystemStart - Service
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: procexp90.Sys - Driver
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

[color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color]

[2010-05-24 23:01:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2010-05-24 22:57:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\DEA314C409294250BC9298E4C105F28D.TMP
[2010-05-24 22:56:52 | 000,061,440 | ---- | C] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll
[2010-05-24 22:23:57 | 000,000,000 | ---D | C] -- C:\Program Files\Lavalys
[2010-05-24 22:23:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump
[2010-05-24 22:20:12 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2010-05-24 22:17:43 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2010-05-24 22:17:43 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2010-05-24 22:17:43 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2010-05-24 22:17:43 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2010-05-24 22:15:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010-05-24 22:15:08 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010-05-24 17:04:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\Grizzly City vol 1 - 2006
[2010-05-22 04:12:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\storage
[2010-05-22 04:11:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Ubisoft
[2010-05-22 04:10:15 | 000,000,000 | ---D | C] -- C:\Program Files\Ubisoft
[2010-05-19 12:48:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\fashawn-the_phenom-volume2-(dubcnn)
[2010-05-19 12:07:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\Fashawn_The_Phenom_Vol1-(DatPiff.com)
[2010-05-19 10:51:50 | 000,000,000 | ---D | C] -- C:\Program Files\eHurtownia-offline
[2010-05-18 20:34:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Sun
[2010-05-18 20:34:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2010-05-18 16:25:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\Pobieranie
[2010-05-18 16:08:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\Apple Computer
[2010-05-16 22:46:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Apple Computer
[2010-05-16 22:46:36 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime Alternative
[2010-05-16 19:24:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\Reflection_Eternal-Revolutions_Per_Minute-2010-H3X
[2010-05-16 19:24:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\DJWhooKidPresentsXXLs10FreshmanFor2010
[2010-05-11 23:08:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\Atmosphere - You Cant Imagine How Much Fun We are Having 2005
[2010-05-09 23:40:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\Nas_Damian_Marley-Distant_Relatives-2010-WEB
[2010-05-07 18:49:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\Incomplete
[2010-05-04 21:23:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\cd
[2010-05-03 23:11:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\DVDVideoSoft
[2010-05-03 23:11:43 | 000,000,000 | ---D | C] -- C:\Program Files\DVDVideoSoft
[2010-05-03 23:11:43 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DVDVideoSoft
[2010-05-02 19:16:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\My Games
[2010-04-24 18:12:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\My Art
[2010-04-24 18:12:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite
[2010-04-24 18:12:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Dane aplikacji\PC Suite
[2010-04-24 18:10:41 | 000,090,624 | ---- | C] (Nokia) -- C:\WINDOWS\System32\nmwcdcls.dll
[2010-04-24 18:10:38 | 000,021,632 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\pccsmcfd.sys
[2010-04-24 18:10:26 | 000,121,856 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\ss_bmdm.sys
[2010-04-24 18:10:26 | 000,090,112 | ---- | C] (MCCI) -- C:\WINDOWS\System32\drivers\ss_bbus.sys
[2010-04-24 18:10:26 | 000,014,976 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\ss_bmdfl.sys
[2010-04-24 18:10:26 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\ss_bwhnt.sys
[2010-04-24 18:10:26 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\ss_bwh.sys
[2010-04-24 18:10:26 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\ss_bcmnt.sys
[2010-04-24 18:10:26 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\ss_bcm.sys
[2010-04-24 18:10:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Samsung_USB_Drivers
[2010-04-24 18:10:22 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2010-04-24 18:10:19 | 000,233,472 | ---- | C] (Teruten) -- C:\WINDOWS\System32\FsUsbExService.Exe
[2010-04-24 18:10:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\My NPS Files
[2010-04-24 18:10:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Dane aplikacji\Samsung
[2010-04-24 18:09:56 | 000,000,000 | ---D | C] -- C:\Program Files\MarkAny
[2010-04-24 18:09:54 | 000,000,000 | ---D | C] -- C:\Program Files\PC Connectivity Solution
[2010-04-24 18:09:30 | 000,000,000 | ---D | C] -- C:\Program Files\Samsung
[2010-04-22 17:06:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\SHOVANY MIXTAPE vol.2
[2010-04-22 14:43:49 | 000,000,000 | ---D | C] -- C:\Program Files\Grupa IMAGE
[2010-04-20 15:51:30 | 000,000,000 | ---D | C] -- C:\Program Files\SkanerOnline
[2010-04-17 13:36:14 | 000,000,000 | ---D | C] -- C:\Program Files\LimeWire
[2010-04-17 13:08:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\LimeWire
[2010-04-13 13:11:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\4A Games
[2010-04-13 13:09:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\4A Games
[2010-04-11 19:32:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\Vlaflip(Roydolfje)
[2010-04-09 11:35:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\PES_Editor_6.0.6
[2010-04-07 17:39:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\USB Vibration
[2010-04-07 17:38:36 | 000,000,000 | ---D | C] -- C:\Program Files\USB Vibration
[2010-04-07 17:32:23 | 000,737,280 | ---- | C] (Indigo Rose Corporation) -- C:\WINDOWS\iun6002.exe
[2010-04-07 17:32:19 | 000,000,000 | ---D | C] -- C:\Program Files\DkZ Studio
[2010-04-07 17:07:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages
[2010-04-07 12:48:14 | 000,000,000 | ---D | C] -- C:\Program Files\NCH Software
[2010-04-06 17:23:23 | 000,000,000 | ---D | C] -- C:\Program Files\IrfanView
[2010-04-03 02:17:24 | 000,000,000 | ---D | C] -- C:\Program Files\Real Alternative
[2010-04-03 00:36:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\.limewire
[2010-04-02 12:27:30 | 000,028,160 | ---- | C] (mst software GmbH, Germany) -- C:\WINDOWS\System32\DfSdkBt.exe
[2010-04-02 12:27:05 | 000,000,000 | ---D | C] -- C:\Program Files\Ashampoo
[2010-03-29 19:21:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Dane aplikacji\Hamachi
[2010-03-29 19:21:05 | 000,025,280 | ---- | C] (LogMeIn, Inc.) -- C:\WINDOWS\System32\drivers\hamachi.sys
[2010-03-29 19:21:04 | 000,000,000 | ---D | C] -- C:\Program Files\Hamachi
[2010-03-29 17:19:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Dane aplikacji\teamspeak2
[2010-03-29 17:18:55 | 000,000,000 | ---D | C] -- C:\Program Files\Teamspeak2_RC2
[2010-03-29 17:03:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\Ahead
[2010-03-29 17:00:51 | 000,106,496 | ---- | C] (Pegasus Software) -- C:\WINDOWS\System32\TwnLib20.dll
[2010-03-29 17:00:50 | 001,568,768 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagX7.dll
[2010-03-29 17:00:50 | 000,476,320 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXpr7.dll
[2010-03-29 17:00:50 | 000,471,040 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXRA7.dll
[2010-03-29 17:00:50 | 000,262,144 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXR7.dll
[2010-03-29 17:00:50 | 000,155,648 | ---- | C] (Ahead Software Gmbh) -- C:\WINDOWS\System32\NeroCheck.exe
[2010-03-29 17:00:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Ahead
[2010-03-29 17:00:47 | 000,000,000 | ---D | C] -- C:\Program Files\Ahead
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 60 Days ==========[/color]

[2010-05-25 13:31:20 | 004,456,448 | -H-- | M] () -- C:\Documents and Settings\zagroo\NTUSER.DAT
[2010-05-25 13:31:20 | 000,027,339 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\Zdjęcie0021.jpg
[2010-05-25 13:28:38 | 000,001,044 | ---- | M] () -- C:\Documents and Settings\zagroo\Dane aplikacji\vso_ts_preview.xml
[2010-05-25 13:27:34 | 000,276,202 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml
[2010-05-25 13:27:28 | 000,000,020 | ---- | M] () -- C:\WINDOWS\System32\crt.dat
[2010-05-25 13:27:27 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010-05-25 13:27:26 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-05-25 13:26:28 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\zagroo\ntuser.ini
[2010-05-25 13:22:45 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010-05-25 13:03:23 | 004,632,803 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\heyyoungworld.mp3
[2010-05-25 12:06:29 | 000,068,096 | ---- | M] () -- C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-05-24 23:48:22 | 000,000,912 | ---- | M] () -- C:\WINDOWS\system.ini
[2010-05-24 23:48:22 | 000,000,507 | ---- | M] () -- C:\WINDOWS\win.ini
[2010-05-24 23:48:22 | 000,000,293 | RHS- | M] () -- C:\boot.ini
[2010-05-24 22:58:19 | 002,111,036 | -H-- | M] () -- C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2010-05-24 22:54:06 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010-05-24 22:24:00 | 000,000,767 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\EVEREST Home Edition.lnk
[2010-05-22 15:55:57 | 000,002,362 | ---- | M] () -- C:\WINDOWS\System32\kboem32.dat
[2010-05-22 04:11:06 | 000,000,866 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Tom Clancy's Splinter Cell Conviction.lnk
[2010-05-19 10:51:53 | 000,000,721 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\eHurtownia-offline.lnk
[2010-05-19 10:51:27 | 009,240,310 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\Setup_eHurtownia-offline_2.6.2.21.exe
[2010-05-18 20:30:49 | 001,087,700 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-05-18 20:30:49 | 000,490,628 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2010-05-18 20:30:49 | 000,432,492 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-05-18 20:30:49 | 000,083,880 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2010-05-18 20:30:49 | 000,067,448 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-05-18 17:50:40 | 000,604,190 | ---- | M] () -- C:\[;plop[.xps
[2010-05-18 15:19:57 | 000,069,730 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\4.jpg
[2010-05-18 15:18:22 | 000,118,181 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\1.jpg
[2010-05-18 15:18:11 | 000,111,769 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\2.jpg
[2010-05-18 14:41:47 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\umdf\Msft_User_WpdMtpDr_01_00_00.Wdf
[2010-05-18 13:00:10 | 000,725,048 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\20100518109.jpg
[2010-05-16 22:50:39 | 000,000,589 | ---- | M] () -- C:\WINDOWS\m3jpeg.ini
[2010-05-16 14:41:08 | 007,359,092 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\Eldo - Pale Majki.mp3
[2010-05-12 16:47:17 | 000,000,791 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\OpenFM.lnk
[2010-05-12 16:47:17 | 000,000,762 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk
[2010-05-10 12:32:31 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-05-07 14:15:25 | 000,529,137 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\wfd.mp3
[2010-05-07 13:11:02 | 000,002,119 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\RESIDENT EVIL 5.lnk
[2010-05-05 00:31:48 | 000,000,168 | ---- | M] () -- C:\WINDOWS\usdthank.ini
[2010-05-03 00:46:43 | 000,002,988 | ---- | M] () -- C:\WINDOWS\VPlayer.INI
[2010-05-03 00:46:43 | 000,000,089 | ---- | M] () -- C:\WINDOWS\VplayerINI.vpl
[2010-04-29 22:32:14 | 001,241,966 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\dree.mp3
[2010-04-27 12:38:33 | 010,967,593 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\Ice_Cube-I_Rep_That_West-2dope.mp3
[2010-04-27 12:19:02 | 000,000,664 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Steam.lnk
[2010-04-26 15:58:12 | 000,256,512 | ---- | M] () -- C:\WINDOWS\PEV.exe
[2010-04-24 18:10:13 | 000,002,528 | ---- | M] () -- C:\Documents and Settings\zagroo\Dane aplikacji\$_hpcst$.hpc
[2010-04-24 18:09:57 | 000,001,883 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Samsung New PC Studio.lnk
[2010-04-23 11:45:32 | 005,067,394 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\joell_ortiz-call_me__feat._novel_.mp3
[2010-04-22 15:51:43 | 000,013,880 | ---- | M] () -- C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2010-04-22 15:04:04 | 000,099,848 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-04-22 14:43:53 | 000,000,771 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\Testy B 2009.lnk
[2010-04-18 22:05:07 | 000,000,668 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\Counter-Strike Source.lnk
[2010-04-18 21:58:18 | 000,000,630 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\MoorHunt.lnk
[2010-04-17 13:36:23 | 000,001,578 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\LimeWire 5.5.8.lnk
[2010-04-13 22:44:01 | 000,000,583 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\Metro 2033.lnk
[2010-04-08 16:52:44 | 000,001,541 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\FEAR2.lnk
[2010-04-07 17:32:23 | 000,001,573 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\DKZ Studio.lnk
[2010-04-07 17:32:16 | 000,737,280 | ---- | M] (Indigo Rose Corporation) -- C:\WINDOWS\iun6002.exe
[2010-04-07 16:36:35 | 000,000,509 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\Pro Evolution Soccer 6.lnk
[2010-04-04 00:55:31 | 002,183,470 | ---- | M] () -- C:\WINDOWS\System32\nvdata.bin
[2010-04-04 00:55:31 | 000,061,440 | ---- | M] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll
[2010-04-04 00:55:31 | 000,009,046 | ---- | M] () -- C:\WINDOWS\System32\nvinfo.pb
[2010-04-03 19:22:32 | 000,066,714 | ---- | M] () -- C:\WINDOWS\System32\NvwsApps.xml
[2010-04-03 01:28:28 | 000,007,680 | ---- | M] () -- C:\WINDOWS\System32\drivers\nd.sys
[2010-04-03 01:28:19 | 000,197,120 | ---- | M] () -- C:\WINDOWS\System32\crt4.dll
[2010-04-03 01:28:19 | 000,111,616 | ---- | M] () -- C:\WINDOWS\System32\kbsnd32.dll
[2010-04-03 01:28:19 | 000,111,104 | ---- | M] () -- C:\WINDOWS\System32\kbddta.dll
[2010-04-03 01:28:19 | 000,098,304 | ---- | M] () -- C:\WINDOWS\System32\kbdatat4.dll
[2010-04-03 01:28:19 | 000,046,592 | ---- | M] () -- C:\WINDOWS\System32\kbupdate.dll
[2010-04-02 12:27:31 | 000,000,765 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Ashampoo WinOptimizer 6.lnk
[2010-03-29 19:21:05 | 000,025,280 | ---- | M] (LogMeIn, Inc.) -- C:\WINDOWS\System32\drivers\hamachi.sys
[2010-03-29 17:18:56 | 000,000,665 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\Teamspeak 2 RC2.lnk
[2010-03-29 17:01:16 | 000,001,251 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\Nero StartSmart.lnk
[2010-03-26 17:18:00 | 000,000,300 | ---- | M] () -- C:\WINDOWS\tasks\expressburnSevenDays.job
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2010-05-25 13:30:37 | 000,027,339 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\Zdjęcie0021.jpg
[2010-05-25 13:01:42 | 004,632,803 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\heyyoungworld.mp3
[2010-05-24 22:56:51 | 002,183,470 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin
[2010-05-24 22:54:06 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010-05-24 22:24:00 | 000,000,767 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\EVEREST Home Edition.lnk
[2010-05-24 22:20:16 | 000,000,223 | ---- | C] () -- C:\Boot.bak
[2010-05-24 22:20:14 | 000,262,400 | ---- | C] () -- C:\cmldr
[2010-05-24 22:17:43 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2010-05-24 22:17:43 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2010-05-24 22:17:43 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2010-05-24 22:17:43 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2010-05-24 22:17:43 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2010-05-22 04:11:06 | 000,000,866 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Tom Clancy's Splinter Cell Conviction.lnk
[2010-05-19 10:51:53 | 000,000,721 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\eHurtownia-offline.lnk
[2010-05-19 10:50:54 | 009,240,310 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\Setup_eHurtownia-offline_2.6.2.21.exe
[2010-05-18 17:50:36 | 000,604,190 | ---- | C] () -- C:\[;plop[.xps
[2010-05-18 15:19:57 | 000,069,730 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\4.jpg
[2010-05-18 13:00:08 | 000,725,048 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\20100518109.jpg
[2010-05-18 12:58:48 | 000,118,181 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\1.jpg
[2010-05-18 12:51:32 | 000,111,769 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\2.jpg
[2010-05-16 14:39:41 | 007,359,092 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\Eldo - Pale Majki.mp3
[2010-05-12 16:47:17 | 000,000,791 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\OpenFM.lnk
[2010-05-07 14:15:23 | 000,529,137 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\wfd.mp3
[2010-04-29 22:32:11 | 001,241,966 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\dree.mp3
[2010-04-27 12:33:01 | 010,967,593 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\Ice_Cube-I_Rep_That_West-2dope.mp3
[2010-04-24 18:10:19 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll
[2010-04-24 18:10:19 | 000,036,608 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys
[2010-04-24 18:10:13 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\zagroo\Dane aplikacji\$_hpcst$.hpc
[2010-04-24 18:09:57 | 000,001,883 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Samsung New PC Studio.lnk
[2010-04-23 11:45:09 | 005,067,394 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\joell_ortiz-call_me__feat._novel_.mp3
[2010-04-22 14:43:53 | 000,000,771 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\Testy B 2009.lnk
[2010-04-18 22:05:07 | 000,000,668 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\Counter-Strike Source.lnk
[2010-04-17 13:36:23 | 000,001,578 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\LimeWire 5.5.8.lnk
[2010-04-13 13:23:57 | 000,000,583 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\Metro 2033.lnk
[2010-04-07 17:32:23 | 000,001,573 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\DKZ Studio.lnk
[2010-04-07 17:21:46 | 001,246,208 | ---- | C] () -- C:\WINDOWS\System\quartz.dll
[2010-04-07 16:36:35 | 000,000,509 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\Pro Evolution Soccer 6.lnk
[2010-04-07 13:34:25 | 000,001,541 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\FEAR2.lnk
[2010-04-03 19:22:32 | 000,276,202 | ---- | C] () -- C:\WINDOWS\System32\NvApps.xml
[2010-04-03 19:22:32 | 000,066,714 | ---- | C] () -- C:\WINDOWS\System32\NvwsApps.xml
[2010-04-03 01:28:28 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\drivers\nd.sys
[2010-04-03 01:28:21 | 000,000,020 | ---- | C] () -- C:\WINDOWS\System32\crt.dat
[2010-04-03 01:28:19 | 000,197,120 | ---- | C] () -- C:\WINDOWS\System32\crt4.dll
[2010-04-03 01:28:19 | 000,111,616 | ---- | C] () -- C:\WINDOWS\System32\kbsnd32.dll
[2010-04-03 01:28:19 | 000,111,104 | ---- | C] () -- C:\WINDOWS\System32\kbddta.dll
[2010-04-03 01:28:19 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\kbdatat4.dll
[2010-04-03 01:28:19 | 000,046,592 | ---- | C] () -- C:\WINDOWS\System32\kbupdate.dll
[2010-04-03 01:28:19 | 000,002,362 | ---- | C] () -- C:\WINDOWS\System32\kboem32.dat
[2010-04-02 12:27:31 | 000,000,765 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Ashampoo WinOptimizer 6.lnk
[2010-03-30 02:00:35 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010-03-29 17:18:56 | 000,000,665 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\Teamspeak 2 RC2.lnk
[2010-03-29 17:01:04 | 000,001,251 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\Nero StartSmart.lnk
[2010-03-26 14:36:15 | 000,000,089 | ---- | C] () -- C:\WINDOWS\VplayerINI.vpl
[2010-03-26 14:35:48 | 000,002,988 | ---- | C] () -- C:\WINDOWS\VPlayer.INI
[2010-03-25 00:28:24 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010-03-25 00:28:24 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2010-03-25 00:28:23 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010-03-25 00:28:23 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010-03-25 00:28:22 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010-03-25 00:28:22 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2010-03-15 05:27:52 | 000,000,168 | ---- | C] () -- C:\WINDOWS\usdthank.ini
[2010-03-15 05:27:52 | 000,000,031 | ---- | C] () -- C:\WINDOWS\idc.ini
[2010-03-10 14:52:22 | 000,279,712 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2010-03-10 14:52:22 | 000,025,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2010-03-10 14:34:51 | 000,717,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010-03-10 13:46:05 | 000,000,087 | ---- | C] () -- C:\WINDOWS\VSWizard.ini
[2010-01-23 00:04:16 | 000,000,589 | ---- | C] () -- C:\WINDOWS\m3jpeg.ini
[2009-11-06 11:58:04 | 000,178,975 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2007-10-25 17:26:10 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2005-04-26 02:05:50 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\vbzlib.dll
[2005-04-26 02:05:50 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\vbaZlib.dll
[2004-08-04 00:44:00 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll
[2004-07-17 11:36:38 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
[2002-10-06 19:42:58 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll
[2002-10-05 00:04:26 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\VorbisEnc.dll
[2002-10-05 00:04:26 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2002-10-05 00:04:18 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll

[color=#E56717]========== LOP Check ==========[/color]

[2010-03-10 20:25:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2010-03-19 17:17:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\NCH Swift Sound
[2010-03-21 15:31:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM
[2010-04-24 18:12:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite
[2010-03-10 14:45:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\salvation
[2010-03-10 14:53:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Tages
[2010-03-18 23:23:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TrackMania
[2010-05-22 04:11:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ubisoft
[2010-03-15 22:08:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\vsosdk
[2010-03-10 14:48:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Atari
[2010-05-03 00:45:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\BESTplayer
[2010-03-10 14:34:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\DAEMON Tools
[2010-03-10 20:59:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Gadu-Gadu 10
[2010-03-19 17:17:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\NCH Swift Sound
[2010-03-21 15:31:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\OpenFM
[2010-04-24 18:12:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\PC Suite
[2010-04-24 18:10:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Samsung
[2010-03-15 17:49:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Thinstall
[2010-03-11 11:21:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\VitySoft
[2010-05-25 13:28:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Vso
[2010-03-26 17:18:00 | 000,000,300 | ---- | M] () -- C:\WINDOWS\Tasks\expressburnSevenDays.job
[2010-03-19 17:18:00 | 000,000,306 | ---- | M] () -- C:\WINDOWS\Tasks\expressburnSevenDaysInit.job
[2010-03-19 17:17:55 | 000,000,260 | ---- | M] () -- C:\WINDOWS\Tasks\expressburnShakeIcon.job

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Custom Scans ==========[/color]


[color=#A23BEC]< %systemdrive%\*.* >[/color]
[2010-03-10 13:26:29 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010-03-12 00:11:39 | 000,000,223 | ---- | M] () -- C:\Boot.bak
[2010-05-24 23:48:22 | 000,000,293 | RHS- | M] () -- C:\boot.ini
[2001-07-22 02:13:54 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin
[2004-08-03 23:00:14 | 000,262,400 | ---- | M] () -- C:\cmldr
[2010-03-10 13:26:29 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010-03-10 13:34:48 | 000,000,197 | ---- | M] () -- C:\csb.log
[2010-03-10 13:26:29 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010-04-20 18:50:41 | 000,007,532 | ---- | M] () -- C:\mksbasel.cpp.log
[2010-03-10 13:26:29 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2004-08-03 22:38:34 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2004-08-03 22:59:54 | 000,250,624 | RHS- | M] () -- C:\ntldr
[2010-05-25 13:27:23 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys
[2010-03-10 13:33:10 | 000,001,530 | ---- | M] () -- C:\RHDSetup.log
[2010-05-18 17:50:40 | 000,604,190 | ---- | M] () -- C:\[;plop[.xps


[color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
[2004-08-04 00:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:agp440.sys

[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2004-08-04 00:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2004-08-03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\drivers\atapi.sys

[color=#A23BEC]< MD5 for: BEEP.SYS >[/color]
[2001-08-18 01:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys
[2001-08-18 01:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys

[color=#A23BEC]< MD5 for: CDROM.SYS >[/color]
[2004-08-04 00:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2004-08-03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\system32\drivers\cdrom.sys

[color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color]
[2004-08-04 00:43:58 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=05684DE2DA55A04C8AAAB5911AFE7643 -- C:\WINDOWS\system32\dllcache\eventlog.dll
[2004-08-04 00:43:58 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=05684DE2DA55A04C8AAAB5911AFE7643 -- C:\WINDOWS\system32\eventlog.dll

[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]
[2004-08-03 23:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\dllcache\ndis.sys
[2004-08-03 23:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\drivers\ndis.sys

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2004-08-04 00:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- C:\WINDOWS\system32\dllcache\winlogon.exe
[2004-08-04 00:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- C:\WINDOWS\system32\winlogon.exe
< End of report >
[/log]

Sohei
komentarz
komentarz

[code]
:Processes
Explorer.exe

:OTL
O4 - HKLM..\Run: [GEST] File not found
O4 - HKLM..\Run: [KernelFaultCheck] File not found
O4 - HKLM..\Run: [NPSStartup] File not found

:Files
C:\WINDOWS\DEA314C409294250BC9298E4C105F28D.TMP
C:\WINDOWS\System32\d3d9caps.dat
C:\WINDOWS\System32\kboem32.dat
C:\[;plop[.xps

:Commands
[emptytemp]
[reboot]
[/code]

Wklej do OTL i kliknij run fix.

Wykonaj pełny skan [url=http://dobreprogramy.pl/index.php?dz=2&id=1998][b]DR WEB CureIt[/b][/url]
Wykonaj pełny skan[url=http://www.dobreprogramy.pl/Malwarebytes-AntiMalware,Program,Windows,13117.html][b]MBAM[/b][/url]
Co znajda usun po czym daj logi z usuwania + nowy log OTL

  • Dobra wypowiedź 1
zagroo
komentarz
komentarz

Wielkie dzięki za pomoc, zrobiłem to co napisałeś i wychodzi na to że komputer jest czysty i sprawnie działający :)

[log]OTL logfile created on: 2010-05-25 16:30:03 - Run 3
OTL by OldTimer - Version 3.2.2.0 Folder = D:\programy
Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 65,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 89,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 49,10 Gb Total Space | 5,24 Gb Free Space | 10,68% Space Free | Partition Type: NTFS
Drive D: | 50,15 Gb Total Space | 7,19 Gb Free Space | 14,34% Space Free | Partition Type: NTFS
Drive E: | 49,80 Gb Total Space | 6,24 Gb Free Space | 12,53% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: ZAGRO
Current User Name: zagroo
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 60 Days
Output = Standard

[color=#E56717]========== Processes (All) ==========[/color]

PRC - [2010-05-04 16:05:48 | 011,981,408 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe
PRC - [2010-04-22 14:55:19 | 000,562,176 | ---- | M] (OldTimer Tools) -- D:\programy\OTL.exe
PRC - [2010-04-12 17:29:29 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2010-04-03 19:23:16 | 000,154,216 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe
PRC - [2010-04-03 00:43:21 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010-02-18 11:43:18 | 000,248,040 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
PRC - [2009-03-31 09:39:36 | 000,233,472 | ---- | M] (Teruten) -- C:\WINDOWS\system32\FsUsbExService.Exe
PRC - [2008-10-09 08:54:26 | 017,021,440 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.EXE
PRC - [2007-02-11 00:07:32 | 000,241,664 | ---- | M] (A4Tech Co.,Ltd.) -- C:\Program Files\A4Tech\Mouse\Amoumain.exe
PRC - [2004-08-04 01:55:54 | 001,667,584 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Messenger\msmsgs.exe
PRC - [2004-08-04 00:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe
PRC - [2004-08-04 00:44:30 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapsrv.exe
PRC - [2004-08-04 00:44:30 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscntfy.exe
PRC - [2004-08-04 00:44:28 | 000,108,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe
PRC - [2004-08-04 00:44:28 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe
PRC - [2004-08-04 00:44:28 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe
PRC - [2004-08-04 00:44:28 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe
PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [WUDFSERVICEGROUP]
PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS]
PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE]
PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS]
PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [HTTPFILTER]
PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH]
PRC - [2004-08-04 00:44:22 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe
PRC - [2004-08-04 00:44:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2004-08-04 00:44:20 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe
PRC - [2004-08-04 00:44:20 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe
PRC - [2004-08-04 00:44:18 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe


[color=#E56717]========== Modules (All) ==========[/color]

MOD - [2010-04-22 14:55:19 | 000,562,176 | ---- | M] (OldTimer Tools) -- D:\programy\OTL.exe
MOD - [2007-02-10 23:51:40 | 000,036,864 | ---- | M] (A4Tech Co.,Ltd.) -- C:\WINDOWS\system32\Amhooker.dll
MOD - [2004-08-04 00:44:32 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv
MOD - [2004-08-04 00:44:16 | 000,178,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winmm.dll
MOD - [2004-08-04 00:44:14 | 000,729,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\userenv.dll
MOD - [2004-08-04 00:44:14 | 000,578,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll
MOD - [2004-08-04 00:44:14 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll
MOD - [2004-08-04 00:44:14 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll
MOD - [2004-08-04 00:44:12 | 000,473,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll
MOD - [2004-08-04 00:44:12 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll
MOD - [2004-08-04 00:44:12 | 000,065,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shimeng.dll
MOD - [2004-08-04 00:44:10 | 008,412,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll
MOD - [2004-08-04 00:44:10 | 000,996,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll
MOD - [2004-08-04 00:44:10 | 000,581,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll
MOD - [2004-08-04 00:44:10 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll
MOD - [2004-08-04 00:44:10 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll
MOD - [2004-08-04 00:44:08 | 001,281,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll
MOD - [2004-08-04 00:44:08 | 000,553,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll
MOD - [2004-08-04 00:44:08 | 000,083,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll
MOD - [2004-08-04 00:44:06 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll
MOD - [2004-08-04 00:44:04 | 000,294,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTF.dll
MOD - [2004-08-04 00:44:04 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msacm32.dll
MOD - [2004-08-04 00:44:02 | 001,012,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll
MOD - [2004-08-04 00:44:00 | 000,278,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll
MOD - [2004-08-04 00:43:58 | 000,185,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll
MOD - [2004-08-04 00:43:56 | 000,279,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll
MOD - [2004-08-04 00:43:52 | 001,852,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\AppPatch\AcGenral.dll
MOD - [2004-08-04 00:43:52 | 000,686,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll
MOD - [2004-08-04 00:43:48 | 000,716,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll
MOD - [2004-08-04 00:42:34 | 001,050,624 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - [2010-03-03 00:23:00 | 003,760,184 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\WINDOWS\System32\GameMon.des -- (npggsvc)
SRV - [2009-08-24 21:16:36 | 000,406,016 | ---- | M] (mst software GmbH, Germany) [On_Demand | Stopped] -- C:\Program Files\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe -- (DfSdkS)
SRV - [2009-03-31 09:39:36 | 000,233,472 | ---- | M] (Teruten) [Auto | Running] -- C:\WINDOWS\system32\FsUsbExService.Exe -- (FsUsbExService)
SRV - [2008-04-07 09:17:30 | 000,430,592 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - [2010-04-04 00:55:31 | 010,232,128 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2010-03-29 19:21:05 | 000,025,280 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2010-03-10 14:52:22 | 000,279,712 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2010-03-10 14:52:22 | 000,025,888 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2010-03-10 14:34:52 | 000,717,296 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010-03-10 13:34:16 | 000,016,608 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\gdrv.sys -- (gdrv)
DRV - [2009-03-31 09:39:36 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2009-03-20 10:01:26 | 000,121,856 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bmdm.sys -- (ss_bmdm)
DRV - [2009-03-20 10:01:26 | 000,090,112 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bbus.sys -- (ss_bbus) SAMSUNG USB Mobile Device (WDM)
DRV - [2009-03-20 10:01:26 | 000,014,976 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ss_bmdfl.sys -- (ss_bmdfl) SAMSUNG USB Mobile Modem (Filter)
DRV - [2008-10-13 12:26:10 | 004,879,360 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2008-09-25 15:51:42 | 000,115,328 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2007-09-17 15:53:26 | 000,021,632 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2007-06-29 15:47:34 | 000,034,304 | ---- | M] (AMD, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AmdLLD.sys -- (AmdLLD)
DRV - [2007-04-16 17:46:34 | 000,033,792 | ---- | M] (Advanced Micro Devices) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\AmdPPM.sys -- (AmdPPM)
DRV - [2007-02-11 01:55:50 | 000,013,824 | ---- | M] (A4Tech Co.,Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Amusbprt.sys -- (Amusbprt)
DRV - [2007-01-24 19:46:50 | 000,008,704 | ---- | M] (A4Tech Co.,Ltd.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\Amfilter.sys -- (Amfilter)
DRV - [2006-07-02 00:32:26 | 000,043,520 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2005-01-07 18:07:18 | 000,138,752 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Hdaudbus.sys -- (HDAudBus)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1417001333-2147181963-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.startup.homepage: "www.onet.pl"
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: firefox@tvunetworks.com:2
FF - prefs.js..extensions.enabledItems: 5
FF - prefs.js..extensions.enabledItems: 2
FF - prefs.js..extensions.enabledItems: 2
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-04-03 01:37:40 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-05-18 20:31:06 | 000,000,000 | ---D | M]

[2010-04-17 13:36:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Mozilla\Extensions
[2010-04-17 13:36:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Mozilla\Extensions\mozswing@mozswing.org
[2010-05-24 17:03:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Mozilla\Firefox\Profiles\nicwdk4j.default\extensions
[2010-03-14 15:40:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Mozilla\Firefox\Profiles\nicwdk4j.default\extensions\firefox@tvunetworks.com
[2010-05-24 17:03:26 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010-05-18 20:31:07 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010-04-12 17:29:19 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010-01-16 03:08:36 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010-01-16 03:08:36 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2010-01-16 03:08:36 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2010-01-16 03:08:36 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010-01-16 03:08:36 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2010-01-16 03:08:36 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2001-10-26 19:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe (AMD)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] File not found
O4 - HKLM..\Run: [WheelMouse] C:\Program Files\A4Tech\Mouse\Amoumain.exe (A4Tech Co.,Ltd.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1417001333-2147181963-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1417001333-2147181963-839522115-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} http://www.mks.com.pl/skaner/SkanerOnline.cab (MksSkanerOnline Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010-03-10 13:26:29 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2010-03-10 14:11:08 | 000,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe - (Adobe Systems Incorporated)
MsConfig - StartUpReg: [b]AutoStartNPSAgent[/b] - hkey= - key= - C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe (Samsung Electronics Co., Ltd.)
MsConfig - StartUpReg: [b]DAEMON Tools Lite[/b] - hkey= - key= - C:\Program Files\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
MsConfig - StartUpReg: [b]Gadu-Gadu 10[/b] - hkey= - key= - C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.)
MsConfig - StartUpReg: [b]NeroFilterCheck[/b] - hkey= - key= - File not found
MsConfig - StartUpReg: [b]Steam[/b] - hkey= - key= - C:\Program Files\Steam\Steam.exe (Valve Corporation)
MsConfig - StartUpReg: [b]WinampAgent[/b] - hkey= - key= - C:\Program Files\Winamp\winampa.exe ()
MsConfig - State: "system.ini" - 0
MsConfig - State: "win.ini" - 0
MsConfig - State: "bootini" - 0
MsConfig - State: "services" - 0
MsConfig - State: "startup" - 2

SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PEVSystemStart - Service
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: procexp90.Sys - Driver
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PEVSystemStart - Service
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: procexp90.Sys - Driver
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

[color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color]

[2010-05-25 16:11:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\DoctorWeb
[2010-05-25 16:02:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Dane aplikacji\Malwarebytes
[2010-05-25 16:02:12 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010-05-25 16:02:11 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010-05-25 16:02:11 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010-05-25 16:02:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes
[2010-05-25 14:28:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Dane aplikacji\NVIDIA
[2010-05-24 23:01:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2010-05-24 22:56:52 | 000,061,440 | ---- | C] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll
[2010-05-24 22:23:57 | 000,000,000 | ---D | C] -- C:\Program Files\Lavalys
[2010-05-24 22:23:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump
[2010-05-24 22:20:12 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2010-05-24 22:17:43 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2010-05-24 22:17:43 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2010-05-24 22:17:43 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2010-05-24 22:17:43 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2010-05-24 22:15:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010-05-24 22:15:08 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010-05-22 04:12:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\storage
[2010-05-22 04:11:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Ubisoft
[2010-05-22 04:10:15 | 000,000,000 | ---D | C] -- C:\Program Files\Ubisoft
[2010-05-19 12:48:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\fashawn-the_phenom-volume2-(dubcnn)
[2010-05-19 12:07:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\Fashawn_The_Phenom_Vol1-(DatPiff.com)
[2010-05-19 10:51:50 | 000,000,000 | ---D | C] -- C:\Program Files\eHurtownia-offline
[2010-05-18 20:34:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Sun
[2010-05-18 20:34:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2010-05-18 16:25:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\Pobieranie
[2010-05-18 16:08:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\Apple Computer
[2010-05-16 22:46:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Apple Computer
[2010-05-16 22:46:36 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime Alternative
[2010-05-16 19:24:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\Reflection_Eternal-Revolutions_Per_Minute-2010-H3X
[2010-05-11 23:08:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\Atmosphere - You Cant Imagine How Much Fun We are Having 2005
[2010-05-09 23:40:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\Nas_Damian_Marley-Distant_Relatives-2010-WEB
[2010-05-07 18:49:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\Incomplete
[2010-05-04 21:23:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\cd
[2010-05-03 23:11:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\DVDVideoSoft
[2010-05-03 23:11:43 | 000,000,000 | ---D | C] -- C:\Program Files\DVDVideoSoft
[2010-05-03 23:11:43 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DVDVideoSoft
[2010-05-02 19:16:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\My Games
[2010-04-24 18:12:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\My Art
[2010-04-24 18:12:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite
[2010-04-24 18:12:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Dane aplikacji\PC Suite
[2010-04-24 18:10:41 | 000,090,624 | ---- | C] (Nokia) -- C:\WINDOWS\System32\nmwcdcls.dll
[2010-04-24 18:10:38 | 000,021,632 | ---- | C] (Nokia) -- C:\WINDOWS\System32\drivers\pccsmcfd.sys
[2010-04-24 18:10:26 | 000,121,856 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\ss_bmdm.sys
[2010-04-24 18:10:26 | 000,090,112 | ---- | C] (MCCI) -- C:\WINDOWS\System32\drivers\ss_bbus.sys
[2010-04-24 18:10:26 | 000,014,976 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\ss_bmdfl.sys
[2010-04-24 18:10:26 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\ss_bwhnt.sys
[2010-04-24 18:10:26 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\ss_bwh.sys
[2010-04-24 18:10:26 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\ss_bcmnt.sys
[2010-04-24 18:10:26 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\ss_bcm.sys
[2010-04-24 18:10:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Samsung_USB_Drivers
[2010-04-24 18:10:22 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2010-04-24 18:10:19 | 000,233,472 | ---- | C] (Teruten) -- C:\WINDOWS\System32\FsUsbExService.Exe
[2010-04-24 18:10:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\My NPS Files
[2010-04-24 18:10:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Dane aplikacji\Samsung
[2010-04-24 18:09:56 | 000,000,000 | ---D | C] -- C:\Program Files\MarkAny
[2010-04-24 18:09:54 | 000,000,000 | ---D | C] -- C:\Program Files\PC Connectivity Solution
[2010-04-24 18:09:30 | 000,000,000 | ---D | C] -- C:\Program Files\Samsung
[2010-04-22 17:06:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\SHOVANY MIXTAPE vol.2
[2010-04-22 14:43:49 | 000,000,000 | ---D | C] -- C:\Program Files\Grupa IMAGE
[2010-04-20 15:51:30 | 000,000,000 | ---D | C] -- C:\Program Files\SkanerOnline
[2010-04-17 13:36:14 | 000,000,000 | ---D | C] -- C:\Program Files\LimeWire
[2010-04-17 13:08:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\LimeWire
[2010-04-13 13:11:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\4A Games
[2010-04-13 13:09:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\4A Games
[2010-04-11 19:32:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\Vlaflip(Roydolfje)
[2010-04-09 11:35:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Moje dokumenty\PES_Editor_6.0.6
[2010-04-07 17:39:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\USB Vibration
[2010-04-07 17:38:36 | 000,000,000 | ---D | C] -- C:\Program Files\USB Vibration
[2010-04-07 17:32:23 | 000,737,280 | ---- | C] (Indigo Rose Corporation) -- C:\WINDOWS\iun6002.exe
[2010-04-07 17:32:19 | 000,000,000 | ---D | C] -- C:\Program Files\DkZ Studio
[2010-04-07 17:07:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages
[2010-04-07 12:48:14 | 000,000,000 | ---D | C] -- C:\Program Files\NCH Software
[2010-04-06 17:23:23 | 000,000,000 | ---D | C] -- C:\Program Files\IrfanView
[2010-04-03 02:17:24 | 000,000,000 | ---D | C] -- C:\Program Files\Real Alternative
[2010-04-03 00:36:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\.limewire
[2010-04-02 12:27:30 | 000,028,160 | ---- | C] (mst software GmbH, Germany) -- C:\WINDOWS\System32\DfSdkBt.exe
[2010-04-02 12:27:05 | 000,000,000 | ---D | C] -- C:\Program Files\Ashampoo
[2010-03-29 19:21:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Dane aplikacji\Hamachi
[2010-03-29 19:21:05 | 000,025,280 | ---- | C] (LogMeIn, Inc.) -- C:\WINDOWS\System32\drivers\hamachi.sys
[2010-03-29 19:21:04 | 000,000,000 | ---D | C] -- C:\Program Files\Hamachi
[2010-03-29 17:19:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Dane aplikacji\teamspeak2
[2010-03-29 17:18:55 | 000,000,000 | ---D | C] -- C:\Program Files\Teamspeak2_RC2
[2010-03-29 17:03:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\Ahead
[2010-03-29 17:00:51 | 000,106,496 | ---- | C] (Pegasus Software) -- C:\WINDOWS\System32\TwnLib20.dll
[2010-03-29 17:00:50 | 001,568,768 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagX7.dll
[2010-03-29 17:00:50 | 000,476,320 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXpr7.dll
[2010-03-29 17:00:50 | 000,471,040 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXRA7.dll
[2010-03-29 17:00:50 | 000,262,144 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXR7.dll
[2010-03-29 17:00:50 | 000,155,648 | ---- | C] (Ahead Software Gmbh) -- C:\WINDOWS\System32\NeroCheck.exe
[2010-03-29 17:00:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Ahead
[2010-03-29 17:00:47 | 000,000,000 | ---D | C] -- C:\Program Files\Ahead

[color=#E56717]========== Files - Modified Within 60 Days ==========[/color]

[2010-05-25 16:29:26 | 004,456,448 | -H-- | M] () -- C:\Documents and Settings\zagroo\NTUSER.DAT
[2010-05-25 16:10:42 | 000,276,202 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml
[2010-05-25 16:10:39 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010-05-25 16:10:38 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-05-25 16:02:14 | 000,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk
[2010-05-25 15:58:36 | 001,087,700 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-05-25 15:58:36 | 000,490,628 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2010-05-25 15:58:36 | 000,432,492 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-05-25 15:58:36 | 000,083,880 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2010-05-25 15:58:36 | 000,067,448 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-05-25 15:54:14 | 000,001,044 | ---- | M] () -- C:\Documents and Settings\zagroo\Dane aplikacji\vso_ts_preview.xml
[2010-05-25 15:02:44 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010-05-25 14:12:49 | 000,067,072 | ---- | M] () -- C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-05-25 13:31:20 | 000,027,339 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\Zdjęcie0021.jpg
[2010-05-25 13:26:28 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\zagroo\ntuser.ini
[2010-05-24 23:48:22 | 000,000,912 | ---- | M] () -- C:\WINDOWS\system.ini
[2010-05-24 23:48:22 | 000,000,507 | ---- | M] () -- C:\WINDOWS\win.ini
[2010-05-24 23:48:22 | 000,000,293 | RHS- | M] () -- C:\boot.ini
[2010-05-24 22:58:19 | 002,111,036 | -H-- | M] () -- C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2010-05-24 22:24:00 | 000,000,767 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\EVEREST Home Edition.lnk
[2010-05-22 04:11:06 | 000,000,866 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Tom Clancy's Splinter Cell Conviction.lnk
[2010-05-19 10:51:53 | 000,000,721 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\eHurtownia-offline.lnk
[2010-05-18 15:19:57 | 000,069,730 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\4.jpg
[2010-05-18 15:18:22 | 000,118,181 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\1.jpg
[2010-05-18 15:18:11 | 000,111,769 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\2.jpg
[2010-05-18 14:41:47 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\umdf\Msft_User_WpdMtpDr_01_00_00.Wdf
[2010-05-18 13:00:10 | 000,725,048 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\20100518109.jpg
[2010-05-16 22:50:39 | 000,000,589 | ---- | M] () -- C:\WINDOWS\m3jpeg.ini
[2010-05-16 14:41:08 | 007,359,092 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\Eldo - Pale Majki.mp3
[2010-05-12 16:47:17 | 000,000,791 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\OpenFM.lnk
[2010-05-12 16:47:17 | 000,000,762 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk
[2010-05-10 12:32:31 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-05-07 14:15:25 | 000,529,137 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\wfd.mp3
[2010-05-07 13:11:02 | 000,002,119 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\RESIDENT EVIL 5.lnk
[2010-05-05 00:31:48 | 000,000,168 | ---- | M] () -- C:\WINDOWS\usdthank.ini
[2010-05-03 00:46:43 | 000,002,988 | ---- | M] () -- C:\WINDOWS\VPlayer.INI
[2010-05-03 00:46:43 | 000,000,089 | ---- | M] () -- C:\WINDOWS\VplayerINI.vpl
[2010-04-29 22:32:14 | 001,241,966 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\dree.mp3
[2010-04-29 15:39:38 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010-04-29 15:39:26 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010-04-27 12:38:33 | 010,967,593 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\Ice_Cube-I_Rep_That_West-2dope.mp3
[2010-04-27 12:19:02 | 000,000,664 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Steam.lnk
[2010-04-26 15:58:12 | 000,256,512 | ---- | M] () -- C:\WINDOWS\PEV.exe
[2010-04-24 18:10:13 | 000,002,528 | ---- | M] () -- C:\Documents and Settings\zagroo\Dane aplikacji\$_hpcst$.hpc
[2010-04-24 18:09:57 | 000,001,883 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Samsung New PC Studio.lnk
[2010-04-23 11:45:32 | 005,067,394 | ---- | M] () -- C:\Documents and Settings\zagroo\Moje dokumenty\joell_ortiz-call_me__feat._novel_.mp3
[2010-04-22 15:51:43 | 000,013,880 | ---- | M] () -- C:\Documents and Settings\zagroo\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2010-04-22 15:04:04 | 000,099,848 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-04-22 14:43:53 | 000,000,771 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\Testy B 2009.lnk
[2010-04-18 22:05:07 | 000,000,668 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\Counter-Strike Source.lnk
[2010-04-18 21:58:18 | 000,000,630 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\MoorHunt.lnk
[2010-04-17 13:36:23 | 000,001,578 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\LimeWire 5.5.8.lnk
[2010-04-13 22:44:01 | 000,000,583 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\Metro 2033.lnk
[2010-04-08 16:52:44 | 000,001,541 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\FEAR2.lnk
[2010-04-07 17:32:23 | 000,001,573 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\DKZ Studio.lnk
[2010-04-07 17:32:16 | 000,737,280 | ---- | M] (Indigo Rose Corporation) -- C:\WINDOWS\iun6002.exe
[2010-04-07 16:36:35 | 000,000,509 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\Pro Evolution Soccer 6.lnk
[2010-04-04 00:55:31 | 002,183,470 | ---- | M] () -- C:\WINDOWS\System32\nvdata.bin
[2010-04-04 00:55:31 | 000,061,440 | ---- | M] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll
[2010-04-04 00:55:31 | 000,009,046 | ---- | M] () -- C:\WINDOWS\System32\nvinfo.pb
[2010-04-03 19:22:32 | 000,066,714 | ---- | M] () -- C:\WINDOWS\System32\NvwsApps.xml
[2010-04-02 12:27:31 | 000,000,765 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Ashampoo WinOptimizer 6.lnk
[2010-03-29 19:21:05 | 000,025,280 | ---- | M] (LogMeIn, Inc.) -- C:\WINDOWS\System32\drivers\hamachi.sys
[2010-03-29 17:18:56 | 000,000,665 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\Teamspeak 2 RC2.lnk
[2010-03-29 17:01:16 | 000,001,251 | ---- | M] () -- C:\Documents and Settings\zagroo\Pulpit\Nero StartSmart.lnk
[2010-03-26 17:18:00 | 000,000,300 | ---- | M] () -- C:\WINDOWS\tasks\expressburnSevenDays.job

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2010-05-25 16:02:14 | 000,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk
[2010-05-25 13:30:37 | 000,027,339 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\Zdjęcie0021.jpg
[2010-05-24 22:56:51 | 002,183,470 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin
[2010-05-24 22:24:00 | 000,000,767 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\EVEREST Home Edition.lnk
[2010-05-24 22:20:16 | 000,000,223 | ---- | C] () -- C:\Boot.bak
[2010-05-24 22:20:14 | 000,262,400 | ---- | C] () -- C:\cmldr
[2010-05-24 22:17:43 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2010-05-24 22:17:43 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2010-05-24 22:17:43 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2010-05-24 22:17:43 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2010-05-24 22:17:43 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2010-05-22 04:11:06 | 000,000,866 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Tom Clancy's Splinter Cell Conviction.lnk
[2010-05-19 10:51:53 | 000,000,721 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\eHurtownia-offline.lnk
[2010-05-18 15:19:57 | 000,069,730 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\4.jpg
[2010-05-18 13:00:08 | 000,725,048 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\20100518109.jpg
[2010-05-18 12:58:48 | 000,118,181 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\1.jpg
[2010-05-18 12:51:32 | 000,111,769 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\2.jpg
[2010-05-16 14:39:41 | 007,359,092 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\Eldo - Pale Majki.mp3
[2010-05-12 16:47:17 | 000,000,791 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\OpenFM.lnk
[2010-05-07 14:15:23 | 000,529,137 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\wfd.mp3
[2010-04-29 22:32:11 | 001,241,966 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\dree.mp3
[2010-04-27 12:33:01 | 010,967,593 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\Ice_Cube-I_Rep_That_West-2dope.mp3
[2010-04-24 18:10:19 | 000,110,592 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDevice.Dll
[2010-04-24 18:10:19 | 000,036,608 | ---- | C] () -- C:\WINDOWS\System32\FsUsbExDisk.Sys
[2010-04-24 18:10:13 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\zagroo\Dane aplikacji\$_hpcst$.hpc
[2010-04-24 18:09:57 | 000,001,883 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Samsung New PC Studio.lnk
[2010-04-23 11:45:09 | 005,067,394 | ---- | C] () -- C:\Documents and Settings\zagroo\Moje dokumenty\joell_ortiz-call_me__feat._novel_.mp3
[2010-04-22 14:43:53 | 000,000,771 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\Testy B 2009.lnk
[2010-04-18 22:05:07 | 000,000,668 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\Counter-Strike Source.lnk
[2010-04-17 13:36:23 | 000,001,578 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\LimeWire 5.5.8.lnk
[2010-04-13 13:23:57 | 000,000,583 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\Metro 2033.lnk
[2010-04-07 17:32:23 | 000,001,573 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\DKZ Studio.lnk
[2010-04-07 17:21:46 | 001,246,208 | ---- | C] () -- C:\WINDOWS\System\quartz.dll
[2010-04-07 16:36:35 | 000,000,509 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\Pro Evolution Soccer 6.lnk
[2010-04-07 13:34:25 | 000,001,541 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\FEAR2.lnk
[2010-04-03 19:22:32 | 000,276,202 | ---- | C] () -- C:\WINDOWS\System32\NvApps.xml
[2010-04-03 19:22:32 | 000,066,714 | ---- | C] () -- C:\WINDOWS\System32\NvwsApps.xml
[2010-04-02 12:27:31 | 000,000,765 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Ashampoo WinOptimizer 6.lnk
[2010-03-30 02:00:35 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010-03-29 17:18:56 | 000,000,665 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\Teamspeak 2 RC2.lnk
[2010-03-29 17:01:04 | 000,001,251 | ---- | C] () -- C:\Documents and Settings\zagroo\Pulpit\Nero StartSmart.lnk
[2010-03-26 14:35:48 | 000,002,988 | ---- | C] () -- C:\WINDOWS\VPlayer.INI
[2010-03-25 00:28:24 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010-03-25 00:28:24 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2010-03-25 00:28:23 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010-03-25 00:28:23 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010-03-25 00:28:22 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010-03-25 00:28:22 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2010-03-15 05:27:52 | 000,000,168 | ---- | C] () -- C:\WINDOWS\usdthank.ini
[2010-03-15 05:27:52 | 000,000,031 | ---- | C] () -- C:\WINDOWS\idc.ini
[2010-03-10 14:52:22 | 000,279,712 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2010-03-10 14:52:22 | 000,025,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2010-03-10 14:34:51 | 000,717,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010-03-10 13:46:05 | 000,000,087 | ---- | C] () -- C:\WINDOWS\VSWizard.ini
[2010-01-23 00:04:16 | 000,000,589 | ---- | C] () -- C:\WINDOWS\m3jpeg.ini
[2009-11-06 11:58:04 | 000,178,975 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2007-10-25 17:26:10 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2005-04-26 02:05:50 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\vbzlib.dll
[2005-04-26 02:05:50 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\vbaZlib.dll
[2004-08-04 00:44:00 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll
[2004-07-17 11:36:38 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
[2002-10-06 19:42:58 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll
[2002-10-05 00:04:26 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\VorbisEnc.dll
[2002-10-05 00:04:26 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2002-10-05 00:04:18 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll

[color=#E56717]========== LOP Check ==========[/color]

[2010-03-10 20:25:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2010-03-19 17:17:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\NCH Swift Sound
[2010-03-21 15:31:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM
[2010-04-24 18:12:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite
[2010-03-10 14:45:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\salvation
[2010-03-10 14:53:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Tages
[2010-03-18 23:23:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TrackMania
[2010-05-22 04:11:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ubisoft
[2010-03-15 22:08:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\vsosdk
[2010-03-10 14:48:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Atari
[2010-05-03 00:45:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\BESTplayer
[2010-03-10 14:34:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\DAEMON Tools
[2010-03-10 20:59:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Gadu-Gadu 10
[2010-03-19 17:17:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\NCH Swift Sound
[2010-03-21 15:31:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\OpenFM
[2010-04-24 18:12:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\PC Suite
[2010-04-24 18:10:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Samsung
[2010-03-15 17:49:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Thinstall
[2010-03-11 11:21:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\VitySoft
[2010-05-25 15:01:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\zagroo\Dane aplikacji\Vso
[2010-03-26 17:18:00 | 000,000,300 | ---- | M] () -- C:\WINDOWS\Tasks\expressburnSevenDays.job
[2010-03-19 17:18:00 | 000,000,306 | ---- | M] () -- C:\WINDOWS\Tasks\expressburnSevenDaysInit.job
[2010-03-19 17:17:55 | 000,000,260 | ---- | M] () -- C:\WINDOWS\Tasks\expressburnShakeIcon.job

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Custom Scans ==========[/color]


[color=#A23BEC]< %systemdrive%\*.* >[/color]
[2010-03-10 13:26:29 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010-03-12 00:11:39 | 000,000,223 | ---- | M] () -- C:\Boot.bak
[2010-05-24 23:48:22 | 000,000,293 | RHS- | M] () -- C:\boot.ini
[2001-07-22 02:13:54 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin
[2004-08-03 23:00:14 | 000,262,400 | ---- | M] () -- C:\cmldr
[2010-03-10 13:26:29 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010-03-10 13:34:48 | 000,000,197 | ---- | M] () -- C:\csb.log
[2010-03-10 13:26:29 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010-04-20 18:50:41 | 000,007,532 | ---- | M] () -- C:\mksbasel.cpp.log
[2010-03-10 13:26:29 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2004-08-03 22:38:34 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2004-08-03 22:59:54 | 000,250,624 | RHS- | M] () -- C:\ntldr
[2010-05-25 16:10:35 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys
[2010-03-10 13:33:10 | 000,001,530 | ---- | M] () -- C:\RHDSetup.log


[color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
[2004-08-04 00:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:agp440.sys

[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2004-08-04 00:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2004-08-03 22:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\drivers\atapi.sys

[color=#A23BEC]< MD5 for: BEEP.SYS >[/color]
[2001-08-18 01:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys
[2001-08-18 01:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys

[color=#A23BEC]< MD5 for: CDROM.SYS >[/color]
[2004-08-04 00:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2004-08-03 22:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\system32\drivers\cdrom.sys

[color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color]
[2004-08-04 00:43:58 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=05684DE2DA55A04C8AAAB5911AFE7643 -- C:\WINDOWS\system32\dllcache\eventlog.dll
[2004-08-04 00:43:58 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=05684DE2DA55A04C8AAAB5911AFE7643 -- C:\WINDOWS\system32\eventlog.dll

[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]
[2004-08-03 23:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\dllcache\ndis.sys
[2004-08-03 23:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\drivers\ndis.sys

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2004-08-04 00:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- C:\WINDOWS\system32\dllcache\winlogon.exe
[2004-08-04 00:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- C:\WINDOWS\system32\winlogon.exe
< End of report >
[/log]

Sohei
komentarz
komentarz

Jesli programy nic wiecej nie znalazly to prosze w OTL kliknac claen up oraz dysk i rejestr przeczyscic ccleaner; )To wszystko

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.