x-kom hosting

Search Settings v1.2.3 prosze o pomoc.

Cabeza
utworzono
utworzono

Witam od wczorajszego skanowania dysku programem NOD32 gdy włączam jakiś folder wyskakuje mi okienko z instalacja Search Settings v1.2.3
Oto logi z OTL:
[log]OTL logfile created on: 2010-06-23 09:35:32 - Run 1
OTL by OldTimer - Version 3.2.6.1 Folder = F:\
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

3,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 72,00% Memory free
5,00 Gb Paging File | 4,00 Gb Available in Paging File | 81,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 83,01 Gb Total Space | 2,68 Gb Free Space | 3,23% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 146,48 Gb Total Space | 26,11 Gb Free Space | 17,82% Space Free | Partition Type: NTFS
Drive F: | 236,27 Gb Total Space | 177,54 Gb Free Space | 75,14% Space Free | Partition Type: NTFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: DOM-1F26A3A173C
Current User Name: aa
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 60 Days
Output = Standard

[color=#E56717]========== Processes (All) ==========[/color]

PRC - [2010-06-23 09:24:35 | 000,574,464 | ---- | M] (OldTimer Tools) -- F:\OTL.exe
PRC - [2010-05-13 16:12:40 | 026,192,168 | R--- | M] (Skype Technologies S.A.) -- C:\Program Files\Skype\Phone\Skype.exe
PRC - [2010-05-13 16:12:40 | 000,080,256 | R--- | M] (Skype Technologies) -- C:\Program Files\Skype\Plugin Manager\skypePM.exe
PRC - [2010-05-07 13:27:36 | 001,238,352 | ---- | M] (Valve Corporation) -- E:\Call of Duty Modern Warfare 2\steam.exe
PRC - [2010-05-04 16:05:48 | 011,981,408 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe
PRC - [2010-04-07 21:08:52 | 000,810,120 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2010-04-07 21:08:30 | 002,145,000 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
PRC - [2010-03-30 11:16:16 | 001,820,040 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
PRC - [2010-03-30 11:16:12 | 001,107,336 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
PRC - [2010-03-26 01:10:02 | 000,142,120 | ---- | M] (Apple Inc.) -- C:\Program Files\iTunes\iTunesHelper.exe
PRC - [2010-03-26 01:09:52 | 000,545,576 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe
PRC - [2010-03-24 20:17:47 | 000,952,768 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
PRC - [2010-03-19 10:49:20 | 000,144,672 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
PRC - [2010-03-04 03:33:50 | 001,795,880 | ---- | M] (Apple Inc.) -- C:\Program Files\Safari\Safari.exe
PRC - [2010-02-26 02:21:50 | 000,126,392 | R--- | M] (Symantec Corporation) -- C:\Program Files\Norton AntiVirus\Engine\17.7.0.12\ccsvchst.exe
PRC - [2010-02-12 11:46:12 | 000,345,376 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2010-02-02 23:45:50 | 014,252,952 | ---- | M] (Redefine Sp z o.o.) -- C:\Program Files\ipla\ipla.exe
PRC - [2009-10-16 17:59:40 | 001,236,992 | ---- | M] (Palringo Limited) -- C:\Program Files\Palringo\palringo.exe
PRC - [2009-10-04 09:18:20 | 000,365,056 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\Downloads\Nowy folder (92)\gta.sa\GTA San Andreas\samp.exe
PRC - [2009-08-13 17:05:52 | 001,096,192 | ---- | M] (BitDefender S.R.L.) -- C:\Program Files\BitDefender\BitDefender 2010\bdagent.exe
PRC - [2009-08-11 23:36:58 | 001,061,376 | ---- | M] (BitDefender S.R.L.) -- C:\Program Files\BitDefender\BitDefender 2010\seccenter.exe
PRC - [2009-08-11 15:08:32 | 001,576,976 | ---- | M] (BitDefender S.R.L.) -- C:\Program Files\BitDefender\BitDefender 2010\vsserv.exe
PRC - [2009-08-06 20:24:06 | 000,053,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe
PRC - [2009-08-05 18:33:04 | 000,075,064 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrA.exe
PRC - [2009-07-20 08:31:46 | 000,152,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2009-07-20 08:31:46 | 000,148,888 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe
PRC - [2009-04-23 15:51:38 | 000,691,656 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\daemon.exe
PRC - [2009-02-09 13:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe
PRC - [2009-02-06 15:14:34 | 000,068,136 | ---- | M] () -- C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe
PRC - [2009-02-06 12:10:02 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvse.exe
PRC - [2009-01-13 08:37:06 | 018,084,864 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.EXE
PRC - [2008-12-03 09:39:45 | 000,163,908 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe
PRC - [2008-08-13 05:49:30 | 000,405,504 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Software Update 3\SoftAuto.exe
PRC - [2008-07-29 21:10:04 | 000,046,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
PRC - [2008-04-24 17:57:00 | 000,368,640 | ---- | M] (Creative Technology Ltd.) -- C:\Program Files\Creative\Creative Media Lite\CTZDetec.exe
PRC - [2008-04-15 14:00:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008-04-15 14:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe
PRC - [2008-04-15 14:00:00 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapsrv.exe
PRC - [2008-04-15 14:00:00 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msiexec.exe
PRC - [2008-04-15 14:00:00 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe
PRC - [2008-04-15 14:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe
PRC - [2008-04-15 14:00:00 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe
PRC - [2008-04-15 14:00:00 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe
PRC - [2008-04-15 14:00:00 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe
PRC - [2008-04-15 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [WUDFSERVICEGROUP]
PRC - [2008-04-15 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS]
PRC - [2008-04-15 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE]
PRC - [2008-04-15 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS]
PRC - [2008-04-15 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-04-15 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-04-15 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [IMGSVC]
PRC - [2008-04-15 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH]
PRC - [2008-04-15 14:00:00 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscntfy.exe
PRC - [2008-04-15 14:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe
PRC - [2008-04-15 14:00:00 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe
PRC - [2007-06-01 10:21:30 | 001,209,904 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
PRC - [2007-06-01 10:21:30 | 000,271,920 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
PRC - [2007-06-01 10:21:08 | 000,153,136 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
PRC - [2007-05-15 17:20:12 | 000,079,400 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe
PRC - [2007-05-15 17:12:10 | 000,484,904 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
PRC - [2007-04-02 08:15:40 | 000,061,440 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Shared Files\CTDevSrv.exe
PRC - [2006-11-13 14:39:52 | 001,289,000 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft ActiveSync\wcescomm.exe
PRC - [2006-11-13 14:39:34 | 000,199,464 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft ActiveSync\rapimgr.exe
PRC - [2005-12-06 14:53:30 | 000,819,200 | ---- | M] (France Télécom R&D) -- C:\Program Files\neostrada tp\neostradatp.exe
PRC - [2005-11-22 12:54:18 | 000,249,856 | ---- | M] (France Télécom R&D) -- C:\Program Files\neostrada tp\ComComp.exe
PRC - [2004-11-02 15:31:20 | 000,069,632 | ---- | M] (France Telecom R&D) -- C:\Program Files\neostrada tp\Toaster.exe
PRC - [2004-10-27 11:30:44 | 000,032,768 | ---- | M] () -- C:\Program Files\neostrada tp\Inactivity.exe
PRC - [2004-10-27 11:07:06 | 000,069,632 | ---- | M] () -- C:\Program Files\neostrada tp\PollingModule.exe
PRC - [2004-10-21 08:50:52 | 000,045,056 | ---- | M] () -- C:\WINDOWS\system32\AlertModule\AlertModule.exe
PRC - [2004-10-05 17:00:12 | 000,061,440 | ---- | M] (France Télécom R&D) -- C:\Program Files\neostrada tp\TaskBarIcon.exe
PRC - [2004-08-23 14:49:56 | 000,040,960 | ---- | M] (France Telecom) -- C:\WINDOWS\system32\FTRTSVC.exe
PRC - [2004-08-23 14:49:56 | 000,020,480 | ---- | M] (France Télécom R&D) -- C:\Program Files\neostrada tp\Watch.exe
PRC - [2004-04-13 07:07:18 | 000,069,632 | ---- | M] (InstallShield Software Corporation) -- C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
PRC - [1999-12-13 09:01:00 | 000,044,032 | ---- | M] (Creative Technology Ltd) -- C:\WINDOWS\system32\CTSVCCDA.EXE


[color=#E56717]========== Modules (All) ==========[/color]

MOD - [2010-06-23 09:24:35 | 000,574,464 | ---- | M] (OldTimer Tools) -- F:\OTL.exe
MOD - [2009-12-08 11:25:45 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll
MOD - [2009-06-25 10:27:54 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll
MOD - [2009-04-15 16:54:38 | 000,585,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll
MOD - [2009-03-21 16:08:59 | 001,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll
MOD - [2009-02-09 12:53:44 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll
MOD - [2009-02-09 12:53:43 | 000,722,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll
MOD - [2008-10-23 14:42:41 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll
MOD - [2008-06-17 21:03:15 | 008,489,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll
MOD - [2008-04-15 14:00:00 | 001,287,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll
MOD - [2008-04-15 14:00:00 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
MOD - [2008-04-15 14:00:00 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll
MOD - [2008-04-15 14:00:00 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll
MOD - [2008-04-15 14:00:00 | 000,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll
MOD - [2008-04-15 14:00:00 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll
MOD - [2008-04-15 14:00:00 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll
MOD - [2008-04-15 14:00:00 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll
MOD - [2008-04-15 14:00:00 | 000,297,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTF.dll
MOD - [2008-04-15 14:00:00 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll
MOD - [2008-04-15 14:00:00 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll
MOD - [2008-04-15 14:00:00 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll
MOD - [2008-04-15 14:00:00 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv
MOD - [2008-04-15 14:00:00 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
MOD - [2008-04-15 14:00:00 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll
MOD - [2008-04-15 14:00:00 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll
MOD - [2008-04-15 14:00:00 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll
MOD - [2008-04-15 14:00:00 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll
MOD - [2004-10-26 09:49:34 | 000,028,672 | ---- | M] () -- C:\Program Files\neostrada tp\Inactivity.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - [2010-04-17 12:43:03 | 000,316,816 | ---- | M] (Protection Technology) [Auto | Stopped] -- C:\WINDOWS\System32\appdrvrem01.exe -- (appdrvrem01) Application Driver Auto Removal Service (01)
SRV - [2010-04-07 21:13:20 | 000,033,560 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV - [2010-04-07 21:08:52 | 000,810,120 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2010-03-30 11:16:12 | 001,107,336 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2010-03-19 10:49:20 | 000,144,672 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2010-02-26 02:21:50 | 000,126,392 | R--- | M] (Symantec Corporation) [Unknown | Running] -- C:\Program Files\Norton AntiVirus\Engine\17.7.0.12\ccSvcHst.exe -- (NAV)
SRV - [2009-08-11 15:08:32 | 001,576,976 | ---- | M] (BitDefender S.R.L.) [Auto | Running] -- C:\Program Files\BitDefender\BitDefender 2010\vsserv.exe -- (VSSERV)
SRV - [2009-08-07 11:54:44 | 000,330,200 | ---- | M] (BitDefender S.R.L.) [Auto | Stopped] -- C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe -- (LIVESRV)
SRV - [2009-07-13 20:28:18 | 000,323,584 | ---- | M] (S.C. BitDefender S.R.L) [On_Demand | Stopped] -- C:\Program Files\Common Files\BitDefender\BitDefender Threat Scanner\scan.dll -- (scan)
SRV - [2009-06-25 16:04:32 | 000,176,128 | ---- | M] (BitDefender S.R.L. http://www.bitdefender.com) [On_Demand | Stopped] -- C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe -- (Arrakis3)
SRV - [2009-02-06 15:14:34 | 000,068,136 | ---- | M] () [Auto | Running] -- C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe -- (GEST Service)
SRV - [2007-04-02 08:15:40 | 000,061,440 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files\Creative\Shared Files\CTDevSrv.exe -- (CTDevice_Srv)
SRV - [2004-08-23 14:49:56 | 000,040,960 | ---- | M] (France Telecom) [Auto | Running] -- C:\WINDOWS\system32\FTRTSVC.exe -- (FTRTSVC)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - [2010-06-23 09:02:12 | 000,017,488 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\gdrv.sys -- (gdrv)
DRV - [2010-05-27 14:01:25 | 000,371,248 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2010-05-27 14:01:25 | 000,102,448 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2010-05-12 20:51:39 | 001,347,504 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\VirusDefs\20100526.039\NAVEX15.SYS -- (NAVEX15)
DRV - [2010-05-12 20:51:39 | 000,085,552 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\VirusDefs\20100526.039\NAVENG.SYS -- (NAVENG)
DRV - [2010-05-12 20:35:45 | 000,124,976 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2010-05-06 06:01:59 | 000,361,904 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\NAV\1107000.00C\SYMTDI.SYS -- (SYMTDI)
DRV - [2010-04-29 17:46:04 | 000,537,136 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\BASHDefs\20100429.001\BHDrvx86.sys -- (BHDrvx86)
DRV - [2010-04-29 07:03:51 | 000,116,784 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NAV\1107000.00C\Ironx86.SYS -- (SymIRON)
DRV - [2010-04-22 05:02:20 | 000,173,104 | ---- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\NAV\1107000.00C\SYMEFA.SYS -- (SymEFA)
DRV - [2010-04-22 04:29:50 | 000,325,680 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\System32\Drivers\NAV\1107000.00C\SRTSP.SYS -- (SRTSP)
DRV - [2010-04-22 04:29:50 | 000,043,696 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NAV\1107000.00C\SRTSPX.SYS -- (SRTSPX) Symantec Real Time Storage Protection (PEL)
DRV - [2010-04-17 12:43:04 | 002,712,176 | ---- | M] (Protection Technology) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\appdrv01.sys -- (appdrv01) Application Driver (01)
DRV - [2010-04-07 21:09:48 | 000,095,872 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir)
DRV - [2010-04-07 21:08:36 | 000,114,984 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2010-04-07 21:05:12 | 000,140,216 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2010-02-26 02:22:57 | 000,501,888 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NAV\1107000.00C\ccHPx86.sys -- (ccHP)
DRV - [2010-02-03 15:56:56 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2009-10-29 00:37:24 | 000,329,592 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\IPSDefs\20100520.001\IDSXpx86.sys -- (IDSxpx86)
DRV - [2009-10-05 21:03:14 | 000,271,360 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2009-10-05 21:03:13 | 000,018,048 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2009-08-30 02:17:18 | 000,328,752 | R--- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\NAV\1107000.00C\SYMDS.SYS -- (SymDS)
DRV - [2009-08-06 16:34:34 | 000,118,536 | ---- | M] (BitDefender LLC) [Kernel | System | Running] -- C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdftdif.sys -- (bdftdif)
DRV - [2009-07-24 12:26:08 | 000,285,704 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\bdfsfltr.sys -- (bdfsfltr)
DRV - [2009-06-29 14:12:38 | 000,152,328 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\bdfm.sys -- (bdfm)
DRV - [2009-06-20 18:28:02 | 000,721,904 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009-05-07 04:22:06 | 000,039,808 | ---- | M] (BitDefender S.R.L.) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\BitDefender\BitDefender Threat Scanner\trufos.sys -- (Trufos)
DRV - [2009-05-07 04:22:06 | 000,014,720 | ---- | M] (BitDefender S.R.L.) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\BitDefender\BitDefender Threat Scanner\profos.sys -- (Profos)
DRV - [2009-01-20 12:53:06 | 005,027,840 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2009-01-12 12:27:58 | 000,008,832 | ---- | M] (BitDefender S.R.L.) [Kernel | On_Demand | Running] -- C:\Program Files\BitDefender\BitDefender 2010\bdselfpr.sys -- (BDSelfPr)
DRV - [2008-12-03 09:39:45 | 006,188,320 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2008-10-30 15:14:20 | 000,117,888 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2008-04-15 14:00:00 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2006-09-19 12:03:28 | 000,116,992 | ---- | M] (Analog Devices Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\e4usbaw.sys -- (e4usbaw)
DRV - [2006-09-15 12:07:54 | 000,064,000 | ---- | M] (Analog Deivces) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\e4ldr.sys -- (IKANLOADER2) General Purpose USB Driver (e4ldr.sys)
DRV - [2006-07-05 14:46:06 | 000,063,352 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01a.sys -- (sfdrv01a) StarForce Protection Environment Driver (version 1.x.a)
DRV - [2006-06-14 16:56:56 | 000,013,680 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2003-08-04 13:22:44 | 000,016,128 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\PCANDIS5.SYS -- (PCANDIS5)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\..\URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1343024091-606747145-1417001333-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource=10&ctid=CT2530240
IE - HKU\S-1-5-21-1343024091-606747145-1417001333-1004\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
IE - HKU\S-1-5-21-1343024091-606747145-1417001333-1004\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\neostrada tp\SearchPageURL.dll ()
IE - HKU\S-1-5-21-1343024091-606747145-1417001333-1004\..\URLSearchHook: {c86eb8a9-ccc2-4b6c-b75d-73576ed591bf} - C:\Program Files\Softonic-Polska\tbSof1.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-1343024091-606747145-1417001333-1004\..\URLSearchHook: {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - Reg Error: Value error. File not found
IE - HKU\S-1-5-21-1343024091-606747145-1417001333-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.defaultthis.engineName: "Softonic-Polska Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2530240&SearchSource=3&q={searchTerms}"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=867034"
FF - prefs.js..browser.search.selectedEngine: "Ask.com"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://search.conduit.com/?ctid=CT2530240&SearchSource=13"
FF - prefs.js..extensions.enabledItems: toolbar@ask.com:3.5.0.145
FF - prefs.js..extensions.enabledItems: FFToolbar@bitdefender.com:2.0
FF - prefs.js..extensions.enabledItems: dealio@mybrowserbar.com:4.0.2
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {BBDA0591-3099-440a-AA10-41764D9DB4DB}:2.0
FF - prefs.js..extensions.enabledItems: searchsettings@spigot.com:1.2.3
FF - prefs.js..extensions.enabledItems: {c86eb8a9-ccc2-4b6c-b75d-73576ed591bf}:2.5.6.0
FF - prefs.js..keyword.URL: "http://websearch.ask.com/redirect?client=ff&src=kw&tb=BT3&o=14979&locale=en_US&apn_uid=7791EC4E-E7DF-4DF0-B007-4DDB870B6FD6&apn_ptnrs=J7&apn_sauid=A7BA9A11-BE6C-47E1-9B0C-FB6DB9F48283&apn_dtid=&q="

FF - HKLM\software\mozilla\Firefox\extensions\\FFToolbar@bitdefender.com: C:\Program Files\BitDefender\BitDefender 2010\bdaphffext\ [2009-09-30 16:34:49 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\IPSFFPlgn\ [2010-05-27 14:01:18 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Flock 2.5\extensions\\Components: C:\Program Files\Flock\components [2010-04-20 00:42:18 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Flock 2.5\extensions\\Plugins: C:\Program Files\Flock\plugins [2010-04-25 13:02:25 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.9\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-05-31 21:13:13 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.9\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-04-25 13:02:25 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2010-06-22 10:00:07 | 000,000,000 | ---D | M]

[2009-12-25 15:45:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Mozilla\Extensions
[2009-12-25 15:45:38 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\aa\Dane aplikacji\Mozilla\Extensions\{a463f10c-3994-11da-9945-000d60ca027b}
[2010-06-22 22:38:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Mozilla\Firefox\Profiles\ujkscw76.default\extensions
[2009-10-04 16:32:56 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\aa\Dane aplikacji\Mozilla\Firefox\Profiles\ujkscw76.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}
[2009-09-02 18:38:54 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\aa\Dane aplikacji\Mozilla\Firefox\Profiles\ujkscw76.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009-09-06 08:43:35 | 000,000,000 | ---D | M] (Fast Video Download) -- C:\Documents and Settings\aa\Dane aplikacji\Mozilla\Firefox\Profiles\ujkscw76.default\extensions\{c50ca3c4-5656-43c2-a061-13e717f73fc8}
[2010-06-12 08:54:22 | 000,000,000 | ---D | M] (Softonic-Polska Toolbar) -- C:\Documents and Settings\aa\Dane aplikacji\Mozilla\Firefox\Profiles\ujkscw76.default\extensions\{c86eb8a9-ccc2-4b6c-b75d-73576ed591bf}
[2009-10-04 16:32:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Mozilla\Firefox\Profiles\ujkscw76.default\extensions\staged-xpis
[2010-06-07 22:01:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Mozilla\Firefox\Profiles\ujkscw76.default\extensions\toolbar@ask.com
[2010-06-22 17:03:38 | 000,002,555 | ---- | M] () -- C:\Documents and Settings\aa\Dane aplikacji\Mozilla\Firefox\Profiles\ujkscw76.default\searchplugins\askcom.xml
[2010-02-09 17:25:50 | 000,000,933 | ---- | M] () -- C:\Documents and Settings\aa\Dane aplikacji\Mozilla\Firefox\Profiles\ujkscw76.default\searchplugins\conduit.xml
[2010-06-13 08:36:34 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2009-08-07 10:38:10 | 000,044,544 | ---- | M] (BitDefender S.R.L.) -- C:\Program Files\Mozilla Firefox\components\FFComm.dll
[2010-01-10 01:09:51 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010-01-10 01:09:51 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2010-01-10 01:09:51 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2010-01-10 01:09:51 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010-01-10 01:09:51 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2010-01-10 01:09:52 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2008-04-15 14:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Dealio Toolbar) - {01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - Reg Error: Value error. File not found
O2 - BHO: (Winamp Toolbar Loader) - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton AntiVirus\Engine\17.7.0.12\ipsbho.dll (Symantec Corporation)
O2 - BHO: (CatcherBHO Class) - {9B4DF450-DCC7-4B07-935D-0CD757A64583} - C:\Program Files\Moyea\YouTube FLV Downloader\MoyeaCatcher.dll (Moyea Software Co., Ltd.)
O2 - BHO: (Softonic-Polska Toolbar) - {c86eb8a9-ccc2-4b6c-b75d-73576ed591bf} - C:\Program Files\Softonic-Polska\tbSof1.dll (Conduit Ltd.)
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O2 - BHO: (SearchSettings Class) - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - Reg Error: Value error. File not found
O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10\_userdata\ggbho.2.dll (GG Network S.A.)
O3 - HKLM\..\Toolbar: (Dealio Toolbar) - {01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - Reg Error: Value error. File not found
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (BitDefender Toolbar) - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2010\ietoolbar.dll (BitDefender S.R.L.)
O3 - HKLM\..\Toolbar: (Softonic-Polska Toolbar) - {c86eb8a9-ccc2-4b6c-b75d-73576ed591bf} - C:\Program Files\Softonic-Polska\tbSof1.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKLM\..\Toolbar: (Winamp Toolbar) - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
O3 - HKU\S-1-5-21-1343024091-606747145-1417001333-1004\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKU\S-1-5-21-1343024091-606747145-1417001333-1004\..\Toolbar\WebBrowser: (Softonic-Polska Toolbar) - {C86EB8A9-CCC2-4B6C-B75D-73576ED591BF} - C:\Program Files\Softonic-Polska\tbSof1.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-1343024091-606747145-1417001333-1004\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKU\S-1-5-21-1343024091-606747145-1417001333-1004\..\Toolbar\WebBrowser: (Winamp Toolbar) - {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe (Apple Inc.)
O4 - HKLM..\Run: [BDAgent] C:\Program Files\BitDefender\BitDefender 2010\bdagent.exe (BitDefender S.R.L.)
O4 - HKLM..\Run: [BitDefender Antiphishing Helper] C:\Program Files\BitDefender\BitDefender 2010\IEShow.exe (BitDefender S.R.L.)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [ISUSPM Startup] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe (InstallShield Software Corporation)
O4 - HKLM..\Run: [ISUSScheduler] C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe (InstallShield Software Corporation)
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [WOOTASKBARICON] C:\PROGRA~1\NEOSTR~1\GestMaj.exe TaskBarIcon.exe File not found
O4 - HKLM..\Run: [WOOWATCH] C:\Program Files\neostrada tp\Watch.exe (France Télécom R&D)
O4 - HKU\S-1-5-21-1343024091-606747145-1417001333-1004..\Run: [ares] C:\Program Files\Ares\Ares.exe File not found
O4 - HKU\S-1-5-21-1343024091-606747145-1417001333-1004..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKU\S-1-5-21-1343024091-606747145-1417001333-1004..\Run: [CTZDetec.exe] C:\Program Files\Creative\Creative Media Lite\CTZDetec.exe (Creative Technology Ltd.)
O4 - HKU\S-1-5-21-1343024091-606747145-1417001333-1004..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-1343024091-606747145-1417001333-1004..\Run: [Gadu-Gadu 10] C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.)
O4 - HKU\S-1-5-21-1343024091-606747145-1417001333-1004..\Run: [H/PC Connection Agent] C:\Program Files\Microsoft ActiveSync\wcescomm.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1343024091-606747145-1417001333-1004..\Run: [IPLA!] C:\Program Files\ipla\ipla.exe (Redefine Sp z o.o.)
O4 - HKU\S-1-5-21-1343024091-606747145-1417001333-1004..\Run: [Palringo] C:\Program Files\Palringo\Palringo.exe (Palringo Limited)
O4 - HKU\S-1-5-21-1343024091-606747145-1417001333-1004..\Run: [RGSC] C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe (Take-Two Interactive Software, Inc.)
O4 - HKU\S-1-5-21-1343024091-606747145-1417001333-1004..\Run: [SoftAuto.exe] C:\Program Files\Creative\Software Update 3\SoftAuto.exe (Creative Technology Ltd)
O4 - HKU\S-1-5-21-1343024091-606747145-1417001333-1004..\Run: [Steam] e:\call of duty modern warfare 2\steam.exe (Valve Corporation)
O4 - Startup: C:\Documents and Settings\aa\Menu Start\Programy\Autostart\Registration Brothers In Arms.LNK = K:\Support\Register\RegistrationReminder.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1343024091-606747145-1417001333-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 95 00 00 00 [binary data]
O8 - Extra context menu item: &Winamp Search - C:\Documents and Settings\All Users\Dane aplikacji\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html ()
O9 - Extra Button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {1E53EA77-34F2-474E-9046-B2B0C86F1821} http://www.eska.pl/streamplayers/OggX.ocx (OggX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA} http://java.sun.com/products/plugin/autodl/jinstall-1_4_0_03-win.cab (Java Plug-in 1.4.0_03)
O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-06-17 18:49:20 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2009-06-17 20:34:02 | 000,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: Wmi - C:\WINDOWS\system32\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp - File not found


SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: Hamachi2Svc - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.)
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

[color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color]

[2010-06-23 09:17:33 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2010-06-22 11:27:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Dane aplikacji\Avnex
[2010-06-22 11:26:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Application Data
[2010-06-22 11:25:53 | 000,000,000 | ---D | C] -- C:\Program Files\AV Vcs 7.0 DIAMOND
[2010-06-22 10:05:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\ESET
[2010-06-22 10:00:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Ustawienia lokalne\Dane aplikacji\ESET
[2010-06-22 10:00:07 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2010-06-22 10:00:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET
[2010-06-21 13:19:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Moje dokumenty\sergiej
[2010-06-16 16:11:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Pulpit\Nowy folder
[2010-06-15 16:15:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Pulpit\blrp
[2010-06-14 23:48:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Softonic-Polska
[2010-06-13 12:54:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\.ultramixer
[2010-06-13 12:54:25 | 000,000,000 | ---D | C] -- C:\Program Files\UltraMixer
[2010-06-12 08:54:30 | 000,000,000 | ---D | C] -- C:\Program Files\Conduit
[2010-06-12 08:54:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Ustawienia lokalne\Dane aplikacji\Conduit
[2010-06-12 08:54:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Ustawienia lokalne\Dane aplikacji\Softonic-Polska
[2010-06-12 08:54:25 | 000,000,000 | ---D | C] -- C:\Program Files\Softonic-Polska
[2010-06-12 01:52:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Ustawienia lokalne\Dane aplikacji\LogMeIn Hamachi
[2010-06-12 01:52:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\LogMeIn Hamachi
[2010-06-12 01:52:22 | 000,000,000 | ---D | C] -- C:\Program Files\LogMeIn Hamachi
[2010-06-09 21:51:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Moje dokumenty\Dose Files
[2010-06-09 15:33:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Ustawienia lokalne\Dane aplikacji\PCHealth
[2010-06-08 21:34:37 | 000,000,000 | ---D | C] -- C:\Lxk1100
[2010-06-08 21:22:51 | 000,000,000 | ---D | C] -- C:\Lexmark
[2010-06-05 15:21:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Pulpit\Wszystko
[2010-06-02 11:53:38 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\aa\Moje dokumenty\Runes of Magic
[2010-05-30 17:46:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Dane aplikacji\Gadu-Gadu 10
[2010-05-30 17:46:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2010-05-30 17:45:23 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu 10
[2010-05-27 17:35:33 | 000,107,888 | ---- | C] (Sony DADC Austria AG.) -- C:\WINDOWS\System32\CmdLineExt.dll
[2010-05-27 15:10:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Moje dokumenty\Rockstar Games
[2010-05-27 15:02:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\microsoft
[2010-05-27 15:02:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Ustawienia lokalne\Dane aplikacji\Rockstar Games
[2010-05-27 14:54:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\umdf
[2010-05-27 14:53:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xlive
[2010-05-27 14:53:36 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Games for Windows - LIVE
[2010-05-26 13:56:45 | 000,361,904 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symtdi.sys
[2010-05-26 13:56:45 | 000,339,504 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symtdiv.sys
[2010-05-26 13:56:45 | 000,328,752 | R--- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symds.sys
[2010-05-26 13:56:45 | 000,325,680 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\srtsp.sys
[2010-05-26 13:56:45 | 000,173,104 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symefa.sys
[2010-05-26 13:56:45 | 000,116,784 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\ironx86.sys
[2010-05-26 13:56:45 | 000,043,696 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\srtspx.sys
[2010-05-26 13:56:44 | 000,501,888 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\cchpx86.sys
[2010-05-26 13:56:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\NAV\1107000.00C
[2010-05-23 16:07:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Dane aplikacji\COWON
[2010-05-23 16:00:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\COWON
[2010-05-23 15:26:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Dane aplikacji\Cream Software
[2010-05-22 22:03:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Xfire
[2010-05-22 22:01:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Dane aplikacji\Xfire
[2010-05-22 22:01:07 | 000,000,000 | ---D | C] -- C:\Program Files\Xfire
[2010-05-20 18:50:06 | 000,000,000 | ---D | C] -- C:\Program Files\Safari
[2010-05-16 20:18:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Google
[2010-05-16 20:15:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Dane aplikacji\Google
[2010-05-16 20:13:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Google
[2010-05-16 20:13:10 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2010-05-15 08:04:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Dane aplikacji\BlackBean
[2010-05-12 20:36:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Ustawienia lokalne\Dane aplikacji\Tific
[2010-05-12 20:36:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Dane aplikacji\Tific
[2010-05-12 20:36:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Ustawienia lokalne\Dane aplikacji\Symantec
[2010-05-12 20:35:45 | 000,124,976 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\SYMEVENT.SYS
[2010-05-12 20:35:45 | 000,060,808 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\S32EVNT1.DLL
[2010-05-12 20:35:45 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared
[2010-05-12 20:35:45 | 000,000,000 | ---D | C] -- C:\Program Files\Symantec
[2010-05-12 20:35:25 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Sidebar
[2010-05-12 20:35:25 | 000,000,000 | ---D | C] -- C:\Program Files\Norton AntiVirus
[2010-05-12 20:35:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\NAV
[2010-05-12 20:35:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton
[2010-05-12 20:35:20 | 000,000,000 | ---D | C] -- C:\Program Files\NortonInstaller
[2010-05-12 20:35:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\NortonInstaller
[2010-05-12 20:16:26 | 000,341,064 | ---- | C] (McAfee, Inc) -- C:\WINDOWS\System32\mcinsctl.dll
[2010-05-12 20:16:26 | 000,279,624 | ---- | C] (McAfee, Inc) -- C:\WINDOWS\System32\mcgdmgr.dll
[2010-05-12 20:16:26 | 000,000,000 | ---D | C] -- C:\Program Files\McAfee.com
[2010-05-09 14:52:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\.thumbnails
[2010-05-08 16:48:20 | 000,000,000 | ---D | C] -- C:\Program Files\No-IP
[2010-05-03 00:07:26 | 000,000,000 | ---D | C] -- C:\Program Files\Rockstar Games
[2010-05-02 15:26:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Ustawienia lokalne\Dane aplikacji\VDownloader
[2010-05-02 15:26:06 | 000,000,000 | ---D | C] -- C:\Program Files\VDownloader
[2010-05-02 15:10:04 | 000,000,000 | ---D | C] -- C:\Program Files\You Ripper
[2010-04-25 13:02:13 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2010-04-25 13:02:13 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2010-04-25 06:54:45 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2009-12-25 15:55:26 | 000,057,344 | ---- | C] ( ) -- C:\WINDOWS\System32\csnpstd.dll
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 60 Days ==========[/color]

[2010-06-23 09:25:12 | 009,175,040 | -H-- | M] () -- C:\Documents and Settings\aa\NTUSER.DAT
[2010-06-23 09:23:00 | 000,001,028 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010-06-23 09:17:33 | 000,001,734 | ---- | M] () -- C:\Documents and Settings\aa\Pulpit\HijackThis.lnk
[2010-06-23 09:05:12 | 000,002,267 | ---- | M] () -- C:\Documents and Settings\aa\Pulpit\Skype.lnk
[2010-06-23 09:04:32 | 000,000,376 | ---- | M] () -- C:\Documents and Settings\aa\Dane aplikacjiprivacy.xml
[2010-06-23 09:02:05 | 000,203,188 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2010-06-23 09:02:01 | 000,001,024 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010-06-23 09:01:57 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010-06-23 09:01:54 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-06-23 01:17:23 | 000,000,132 | ---- | M] () -- C:\WINDOWS\System32\rezumatenoi.dat
[2010-06-23 01:01:00 | 000,001,120 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1343024091-606747145-1417001333-1004UA.job
[2010-06-23 01:01:00 | 000,000,228 | ---- | M] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
[2010-06-22 23:01:00 | 000,001,068 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1343024091-606747145-1417001333-1004Core.job
[2010-06-22 22:36:33 | 000,039,310 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\O. Pelanowski.rtf
[2010-06-22 13:23:06 | 000,002,271 | ---- | M] () -- C:\WINDOWS\wincmd.ini
[2010-06-22 13:20:09 | 000,000,470 | ---- | M] () -- C:\WINDOWS\wcx_ftp.ini
[2010-06-22 09:37:32 | 000,540,555 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\sa-mp-064.png
[2010-06-22 09:37:20 | 000,215,282 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\sa-mp-063.png
[2010-06-21 19:08:03 | 000,167,940 | -H-- | M] () -- C:\treeinfo.wc
[2010-06-20 14:13:47 | 002,296,392 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\blrp1.pwn
[2010-06-20 10:53:54 | 000,315,984 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\sa-mp-022.png
[2010-06-20 09:28:11 | 002,820,626 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\blrp1.amx
[2010-06-20 09:28:11 | 002,820,626 | ---- | M] () -- C:\blrp1.amx
[2010-06-20 02:17:39 | 001,087,700 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-06-20 02:17:39 | 000,490,628 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2010-06-20 02:17:39 | 000,432,492 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-06-20 02:17:39 | 000,083,880 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2010-06-20 02:17:39 | 000,067,448 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-06-19 23:04:05 | 002,820,626 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\blrp1_www.przeklej.pl.amx
[2010-06-19 23:04:05 | 002,820,626 | ---- | M] () -- C:\blrp1_www.przeklej.pl.amx
[2010-06-18 23:27:02 | 000,008,809 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\DMV.amx
[2010-06-18 17:04:36 | 002,820,826 | ---- | M] () -- C:\blrp.amx
[2010-06-14 23:48:00 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2010-06-12 11:39:54 | 001,576,080 | -H-- | M] () -- C:\Documents and Settings\aa\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2010-06-12 09:09:15 | 000,001,316 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-06-12 09:09:15 | 000,001,316 | ---- | M] () -- C:\WINDOWS\System32\wpa.bak
[2010-06-11 13:49:47 | 000,104,624 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-06-11 00:09:15 | 000,579,614 | ---- | M] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\Cat.DB
[2010-06-11 00:09:07 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010-06-08 21:33:54 | 024,666,624 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\CJXP1100EN.exe
[2010-06-08 20:53:17 | 000,000,008 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\Nowy Dokument sformatowany.rtf
[2010-06-05 16:27:08 | 000,000,151 | ---- | M] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2010-06-04 00:27:33 | 000,020,480 | ---- | M] () -- C:\WINDOWS\System32\H@tKeysH@@k.DLL
[2010-06-02 07:29:45 | 000,388,814 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\dom.skp
[2010-06-01 20:58:46 | 000,370,291 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\dom.skb
[2010-06-01 18:02:45 | 003,462,405 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\ky-mani marley -so hot.mp31275409051_[mp3.teledyski.info].mp3
[2010-06-01 17:56:36 | 002,375,294 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\nas & damian marley - as we enter.mp31275407844_[mp3.teledyski.info].mp3
[2010-06-01 17:51:35 | 003,750,379 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\bob marley - don't worry be happy.mp31275407473_[mp3.teledyski.info].mp3
[2010-06-01 17:47:59 | 002,641,116 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\bob marley - 400 years.mp31275407314_[mp3.teledyski.info].mp3
[2010-06-01 07:16:30 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\umdf\Msft_User_WpdMtpDr_01_00_00.Wdf
[2010-05-30 17:48:01 | 000,000,728 | ---- | M] () -- C:\Documents and Settings\aa\Pulpit\Gadu-Gadu 10.lnk
[2010-05-27 17:35:33 | 000,107,888 | ---- | M] (Sony DADC Austria AG.) -- C:\WINDOWS\System32\CmdLineExt.dll
[2010-05-27 14:55:44 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\umdf\MsftWdf_user_01_00_00.Wdf
[2010-05-27 14:55:02 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2010-05-25 23:24:34 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010-05-25 20:25:43 | 000,028,160 | ---- | M] () -- C:\Documents and Settings\aa\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-05-21 14:37:37 | 000,108,894 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\id.php.png
[2010-05-20 18:50:23 | 000,009,392 | -H-- | M] () -- C:\WINDOWS\System32\mlfcache.dat
[2010-05-20 14:08:33 | 000,007,895 | ---- | M] () -- C:\zombiemod.amx
[2010-05-14 20:40:58 | 000,043,520 | ---- | M] () -- C:\WINDOWS\System32\CmdLineExt03.dll
[2010-05-14 08:36:08 | 000,000,172 | ---- | M] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\isolate.ini
[2010-05-12 20:35:45 | 000,124,976 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\SYMEVENT.SYS
[2010-05-12 20:35:45 | 000,060,808 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\S32EVNT1.DLL
[2010-05-12 20:35:45 | 000,007,443 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.CAT
[2010-05-12 20:35:45 | 000,000,805 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.INF
[2010-05-11 20:32:38 | 000,041,872 | ---- | M] () -- C:\WINDOWS\System32\xfcodec.dll
[2010-05-09 14:54:20 | 000,000,876 | ---- | M] () -- C:\Documents and Settings\aa\.recently-used.xbel
[2010-05-06 06:01:59 | 000,361,904 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symtdi.sys
[2010-05-06 06:01:59 | 000,339,504 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symtdiv.sys
[2010-05-06 06:01:43 | 000,001,473 | ---- | M] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symnetv.inf
[2010-05-06 06:01:43 | 000,001,445 | ---- | M] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symnet.inf
[2010-05-05 23:33:45 | 000,000,079 | ---- | M] () -- C:\Documents and Settings\aa\default.pls
[2010-05-01 18:39:40 | 000,000,323 | ---- | M] () -- C:\WINDOWS\mafosav.INI
[2010-05-01 18:39:31 | 000,000,100 | ---- | M] () -- C:\WINDOWS\forevermopt.INI
[2010-04-29 07:03:51 | 000,116,784 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\ironx86.sys
[2010-04-29 07:03:51 | 000,007,438 | ---- | M] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\iron.cat
[2010-04-29 07:03:51 | 000,000,741 | ---- | M] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\iron.inf
[2010-04-26 10:18:40 | 000,007,873 | ---- | M] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symefa.cat
[2010-04-24 13:31:04 | 000,003,373 | ---- | M] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symefa.inf
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2010-06-23 09:17:33 | 000,001,734 | ---- | C] () -- C:\Documents and Settings\aa\Pulpit\HijackThis.lnk
[2010-06-22 22:36:33 | 000,039,310 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\O. Pelanowski.rtf
[2010-06-22 09:37:14 | 000,540,555 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\sa-mp-064.png
[2010-06-22 09:37:11 | 000,215,282 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\sa-mp-063.png
[2010-06-20 10:53:43 | 000,315,984 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\sa-mp-022.png
[2010-06-20 09:28:11 | 002,820,626 | ---- | C] () -- C:\blrp1.amx
[2010-06-20 09:27:56 | 002,820,626 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\blrp1.amx
[2010-06-19 23:00:52 | 002,820,626 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\blrp1_www.przeklej.pl.amx
[2010-06-19 22:59:43 | 002,296,392 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\blrp1.pwn
[2010-06-18 23:27:00 | 000,008,809 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\DMV.amx
[2010-06-18 16:08:05 | 002,820,826 | ---- | C] () -- C:\blrp.amx
[2010-06-18 16:03:05 | 002,820,626 | ---- | C] () -- C:\blrp1_www.przeklej.pl.amx
[2010-06-15 16:18:14 | 000,167,940 | -H-- | C] () -- C:\treeinfo.wc
[2010-06-15 00:33:03 | 000,766,736 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2010-06-12 20:32:19 | 000,000,012 | ---- | C] () -- C:\Documents and Settings\aa\Ważne.txt
[2010-06-11 17:05:35 | 000,001,614 | ---- | C] () -- C:\Documents and Settings\aa\Pulpit\Mozilla Firefox.lnk
[2010-06-08 20:53:17 | 000,000,008 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\Nowy Dokument sformatowany.rtf
[2010-06-08 14:24:42 | 024,666,624 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\CJXP1100EN.exe
[2010-06-02 07:29:45 | 000,370,291 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\dom.skb
[2010-06-01 23:08:13 | 000,000,030 | ---- | C] () -- C:\Documents and Settings\aa\t.txt
[2010-06-01 22:36:51 | 000,000,012 | ---- | C] () -- C:\Documents and Settings\aa\ania.txt
[2010-06-01 20:58:46 | 000,388,814 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\dom.skp
[2010-06-01 17:59:49 | 003,462,405 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\ky-mani marley -so hot.mp31275409051_[mp3.teledyski.info].mp3
[2010-06-01 17:54:35 | 002,375,294 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\nas & damian marley - as we enter.mp31275407844_[mp3.teledyski.info].mp3
[2010-06-01 17:48:25 | 003,750,379 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\bob marley - don't worry be happy.mp31275407473_[mp3.teledyski.info].mp3
[2010-06-01 17:45:45 | 002,641,116 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\bob marley - 400 years.mp31275407314_[mp3.teledyski.info].mp3
[2010-06-01 07:16:30 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\umdf\Msft_User_WpdMtpDr_01_00_00.Wdf
[2010-05-30 17:48:01 | 000,000,728 | ---- | C] () -- C:\Documents and Settings\aa\Pulpit\Gadu-Gadu 10.lnk
[2010-05-27 16:58:44 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\LocalService\Dane aplikacji\$_hpcst$.hpc
[2010-05-27 14:55:44 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\umdf\MsftWdf_user_01_00_00.Wdf
[2010-05-27 13:48:54 | 000,579,614 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\Cat.DB
[2010-05-26 13:56:45 | 000,007,873 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symefa.cat
[2010-05-26 13:56:45 | 000,007,787 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symnetv.cat
[2010-05-26 13:56:45 | 000,007,442 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\srtspx.cat
[2010-05-26 13:56:45 | 000,007,438 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\srtsp.cat
[2010-05-26 13:56:45 | 000,007,425 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symds.cat
[2010-05-26 13:56:45 | 000,007,368 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symnet.cat
[2010-05-26 13:56:45 | 000,003,373 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symefa.inf
[2010-05-26 13:56:45 | 000,002,793 | R--- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symds.inf
[2010-05-26 13:56:45 | 000,001,473 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symnetv.inf
[2010-05-26 13:56:45 | 000,001,445 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symnet.inf
[2010-05-26 13:56:45 | 000,001,388 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\srtspx.inf
[2010-05-26 13:56:45 | 000,001,382 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\srtsp.inf
[2010-05-26 13:56:45 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\iron.inf
[2010-05-26 13:56:44 | 000,007,438 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\iron.cat
[2010-05-26 13:56:44 | 000,007,396 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\cchpx86.cat
[2010-05-26 13:56:44 | 000,001,754 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\cchpx86.inf
[2010-05-26 13:56:29 | 000,000,172 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\isolate.ini
[2010-05-21 14:37:37 | 000,108,894 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\id.php.png
[2010-05-20 18:50:23 | 000,009,392 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2010-05-20 14:08:33 | 000,007,895 | ---- | C] () -- C:\zombiemod.amx
[2010-05-16 20:13:16 | 000,001,028 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010-05-16 20:13:16 | 000,001,024 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010-05-12 20:35:45 | 000,007,443 | ---- | C] () -- C:\WINDOWS\System32\drivers\SYMEVENT.CAT
[2010-05-12 20:35:45 | 000,000,805 | ---- | C] () -- C:\WINDOWS\System32\drivers\SYMEVENT.INF
[2010-05-11 20:32:38 | 000,041,872 | ---- | C] () -- C:\WINDOWS\System32\xfcodec.dll
[2010-05-09 14:54:20 | 000,000,876 | ---- | C] () -- C:\Documents and Settings\aa\.recently-used.xbel
[2010-05-02 15:26:07 | 000,026,694 | ---- | C] () -- C:\WINDOWS\System32\eBay.ico
[2010-04-02 17:17:34 | 000,179,091 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2010-01-10 18:46:54 | 000,039,899 | ---- | C] () -- C:\WINDOWS\System32\rtsicis.ini
[2010-01-10 18:46:53 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\lxczcnv7.dll
[2010-01-10 18:46:53 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\lxczcnv6.dll
[2010-01-01 23:55:47 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\H@tKeysH@@k.DLL
[2010-01-01 11:35:01 | 000,000,010 | ---- | C] () -- C:\WINDOWS\WININIT.INI
[2009-12-25 15:55:50 | 000,015,541 | ---- | C] () -- C:\WINDOWS\snpstd.ini
[2009-12-25 15:55:49 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\dsnpstd.dll
[2009-12-25 15:55:33 | 000,270,848 | ---- | C] () -- C:\WINDOWS\System32\drivers\snpstd.sys
[2009-12-25 15:55:26 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\vsnpstd.dll
[2009-11-29 01:03:15 | 000,000,470 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
[2009-11-29 01:02:32 | 000,002,271 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2009-11-14 17:54:57 | 000,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll
[2009-11-13 19:57:49 | 000,000,168 | ---- | C] () -- C:\WINDOWS\adidsl.ini
[2009-11-13 19:57:49 | 000,000,021 | ---- | C] () -- C:\WINDOWS\Fast800.ini
[2009-11-13 19:57:41 | 000,126,976 | ---- | C] () -- C:\WINDOWS\System32\coclassfast.dll
[2009-11-13 19:57:39 | 000,046,892 | ---- | C] () -- C:\WINDOWS\System32\ADADIX16.DLL
[2009-11-12 16:20:04 | 000,000,632 | ---- | C] () -- C:\WINDOWS\CoD.INI
[2009-10-31 11:32:45 | 000,002,481 | ---- | C] () -- C:\WINDOWS\ACROREAD.INI
[2009-10-05 21:03:14 | 000,271,360 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2009-10-05 21:03:13 | 000,018,048 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2009-06-25 09:17:56 | 000,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2009-06-22 16:31:39 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009-06-20 21:28:12 | 000,138,944 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2009-06-20 20:12:11 | 000,041,068 | ---- | C] () -- C:\WINDOWS\System32\ActPanel.dll
[2009-06-20 18:28:02 | 000,721,904 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2009-06-17 19:04:14 | 000,002,226 | ---- | C] () -- C:\WINDOWS\ATICIM.INI
[2009-01-15 13:45:34 | 000,181,248 | ---- | C] () -- C:\WINDOWS\System32\txmlutil.dll
[2008-12-03 09:39:45 | 001,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2008-12-03 09:39:45 | 001,486,848 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2008-12-03 09:39:45 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2008-12-03 09:39:45 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2008-12-03 09:39:45 | 000,007,237 | ---- | C] () -- C:\WINDOWS\cadx2.ini
[2008-10-07 10:13:30 | 000,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll
[2008-10-07 10:13:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2008-10-07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2008-10-07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2008-10-07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2008-10-07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2008-10-07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2008-10-07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2008-10-07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2008-10-07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2007-01-31 14:50:32 | 000,913,408 | ---- | C] () -- C:\WINDOWS\System32\xreglib.dll
[2005-01-25 16:15:42 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\PA207USD.DLL
[2004-01-02 01:28:29 | 000,000,100 | ---- | C] () -- C:\WINDOWS\forevermopt.INI
[2004-01-02 01:28:13 | 000,000,323 | ---- | C] () -- C:\WINDOWS\mafosav.INI
[2004-01-02 00:05:12 | 000,092,400 | ---- | C] () -- C:\WINDOWS\ktkm7.dll
[2004-01-02 00:05:12 | 000,058,192 | ---- | C] () -- C:\WINDOWS\ktkm6.dll
[2004-01-02 00:05:12 | 000,055,186 | ---- | C] () -- C:\WINDOWS\ktkm5.dll
[2004-01-02 00:05:12 | 000,030,166 | ---- | C] () -- C:\WINDOWS\ktkm9.dll
[2004-01-02 00:05:12 | 000,023,364 | ---- | C] () -- C:\WINDOWS\ktkm8.dll
[2004-01-02 00:05:12 | 000,022,926 | ---- | C] () -- C:\WINDOWS\ktkm4.dll
[2004-01-02 00:05:11 | 000,268,621 | ---- | C] () -- C:\WINDOWS\ktkm33.dll
[2004-01-02 00:05:11 | 000,098,442 | ---- | C] () -- C:\WINDOWS\ktkm35.dll
[2004-01-02 00:05:11 | 000,082,542 | ---- | C] () -- C:\WINDOWS\ktkm37.dll
[2004-01-02 00:05:11 | 000,020,926 | ---- | C] () -- C:\WINDOWS\ktkm36.dll
[2004-01-02 00:05:11 | 000,010,240 | ---- | C] () -- C:\WINDOWS\ktkm34.dll
[2004-01-02 00:05:10 | 000,326,441 | ---- | C] () -- C:\WINDOWS\ktkm32.dll
[2004-01-02 00:05:10 | 000,197,408 | ---- | C] () -- C:\WINDOWS\ktkm29.dll
[2004-01-02 00:05:10 | 000,128,042 | ---- | C] () -- C:\WINDOWS\ktkm30.dll
[2004-01-02 00:05:10 | 000,116,841 | ---- | C] () -- C:\WINDOWS\ktkm26.dll
[2004-01-02 00:05:10 | 000,100,786 | ---- | C] () -- C:\WINDOWS\ktkm28.dll
[2004-01-02 00:05:10 | 000,081,427 | ---- | C] () -- C:\WINDOWS\ktkm31.dll
[2004-01-02 00:05:10 | 000,065,092 | ---- | C] () -- C:\WINDOWS\ktkm27.dll
[2004-01-02 00:05:10 | 000,022,657 | ---- | C] () -- C:\WINDOWS\ktkm3.dll
[2004-01-02 00:05:09 | 000,538,410 | ---- | C] () -- C:\WINDOWS\ktkm20.dll
[2004-01-02 00:05:09 | 000,524,537 | ---- | C] () -- C:\WINDOWS\ktkm18.dll
[2004-01-02 00:05:09 | 000,370,880 | ---- | C] () -- C:\WINDOWS\ktkm22.dll
[2004-01-02 00:05:09 | 000,126,720 | ---- | C] () -- C:\WINDOWS\ktkm23.dll
[2004-01-02 00:05:09 | 000,070,888 | ---- | C] () -- C:\WINDOWS\ktkm19.dll
[2004-01-02 00:05:09 | 000,066,908 | ---- | C] () -- C:\WINDOWS\ktkm17.dll
[2004-01-02 00:05:09 | 000,064,070 | ---- | C] () -- C:\WINDOWS\ktkm21.dll
[2004-01-02 00:05:09 | 000,056,992 | ---- | C] () -- C:\WINDOWS\ktkm24.dll
[2004-01-02 00:05:09 | 000,049,094 | ---- | C] () -- C:\WINDOWS\ktkm25.dll
[2004-01-02 00:05:09 | 000,020,974 | ---- | C] () -- C:\WINDOWS\ktkm2.dll
[2004-01-02 00:05:08 | 000,803,601 | ---- | C] () -- C:\WINDOWS\ktkm16.dll
[2004-01-02 00:05:08 | 000,524,164 | ---- | C] () -- C:\WINDOWS\ktkm12.dll
[2004-01-02 00:05:08 | 000,307,617 | ---- | C] () -- C:\WINDOWS\ktkm15.dll
[2004-01-02 00:05:08 | 000,209,936 | ---- | C] () -- C:\WINDOWS\ktkm14.dll
[2004-01-02 00:05:08 | 000,099,867 | ---- | C] () -- C:\WINDOWS\ktkm13.dll
[2004-01-02 00:05:08 | 000,096,166 | ---- | C] () -- C:\WINDOWS\ktkm1.dll
[2004-01-02 00:05:08 | 000,062,631 | ---- | C] () -- C:\WINDOWS\ktkm11.dll
[2004-01-02 00:05:08 | 000,058,015 | ---- | C] () -- C:\WINDOWS\ktkm10.dll

[color=#E56717]========== LOP Check ==========[/color]

[2010-06-22 11:27:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Avnex
[2009-09-30 16:35:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\BitDefender
[2010-05-08 11:20:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\BitTorrent
[2009-07-20 18:32:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Black Sea Studios
[2010-05-15 08:04:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\BlackBean
[2010-05-23 16:07:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\COWON
[2010-05-23 15:26:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Cream Software
[2009-09-05 14:48:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\DAEMON Tools Lite
[2009-06-20 18:35:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\DAEMON Tools Pro
[2010-04-05 12:12:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Dealio
[2009-08-12 13:42:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\FileZilla
[2009-12-25 15:45:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Flock
[2010-04-05 00:14:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\FreeFLVConverter
[2010-06-22 09:36:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Gadu-Gadu 10
[2009-08-12 13:49:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\GlobalSCAPE
[2010-05-14 17:41:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\gtk-2.0
[2009-08-05 18:33:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\id Software
[2010-01-23 09:24:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Imperium Romanum
[2010-06-23 09:02:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\ipla
[2009-10-27 19:41:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Leadertech
[2010-04-18 16:01:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Mount&Blade
[2010-04-04 23:29:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Moyea
[2010-04-18 13:07:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Notepad++
[2009-10-22 20:41:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Nowe Gadu-Gadu
[2009-09-04 22:56:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\OpenFM
[2010-01-04 21:26:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Opera
[2009-06-20 23:55:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\PCToolsFirewallPlus
[2009-06-20 23:55:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\PCToolsSpamMonitorPlus
[2010-01-25 09:16:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\SA-MP Audio Plugin
[2010-06-22 22:37:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Search Settings
[2010-01-16 05:07:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\The Creative Assembly
[2010-05-12 20:36:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Tific
[2009-12-09 21:05:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Ubisoft
[2009-10-04 11:35:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\VitySoft
[2009-09-30 16:37:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\BitDefender
[2009-06-20 18:33:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2010-01-04 20:47:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Downloaded Installations
[2010-06-22 10:00:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET
[2009-08-15 15:44:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Firefly Studios
[2010-05-30 17:46:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2009-08-12 13:49:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\GlobalSCAPE
[2009-08-05 18:32:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\id Software
[2010-03-24 19:15:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla
[2009-06-20 23:43:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\LightScribe
[2010-05-30 17:55:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM
[2009-07-19 22:07:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Synetic
[2009-07-02 12:16:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2009-12-09 21:05:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ubisoft
[2009-07-01 09:07:14 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{26009715-9383-403E-996E-D70BE8109C3D}
[2010-04-20 00:44:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2009-12-01 22:13:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2010-06-23 01:01:00 | 000,000,228 | ---- | M] () -- C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Custom Scans ==========[/color]


[color=#A23BEC]< %systemdrive%\*.* >[/color]
[2009-08-09 21:34:00 | 000,002,115 | ---- | M] () -- C:\adminspec.amx
[2009-08-16 11:48:00 | 000,001,230 | ---- | M] () -- C:\Alex_Green.ini
[2009-08-09 22:14:07 | 000,001,228 | ---- | M] () -- C:\Alex_Smith.ini
[2009-12-28 15:45:31 | 000,009,948 | ---- | M] () -- C:\anim.amx
[2009-12-23 19:31:02 | 000,178,858 | ---- | M] () -- C:\AS.amx
[2009-06-17 18:49:20 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2009-08-25 10:35:00 | 000,040,339 | ---- | M] () -- C:\ban.log
[2010-06-18 17:04:36 | 002,820,826 | ---- | M] () -- C:\blrp.amx
[2010-06-20 09:28:11 | 002,820,626 | ---- | M] () -- C:\blrp1.amx
[2010-06-19 23:04:05 | 002,820,626 | ---- | M] () -- C:\blrp1_www.przeklej.pl.amx
[2009-06-17 18:45:32 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2008-04-15 14:00:00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin
[2009-08-09 22:26:20 | 000,001,229 | ---- | M] () -- C:\Chris_Cornell.ini
[2009-12-23 15:10:17 | 001,168,462 | ---- | M] () -- C:\cl.amx
[2009-06-17 18:49:20 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2009-06-17 19:02:53 | 000,000,010 | ---- | M] () -- C:\csb.log
[2010-03-30 14:58:28 | 000,000,277 | ---- | M] () -- C:\debugInstaller.txt
[2010-01-08 16:20:54 | 001,209,744 | ---- | M] () -- C:\GF.amx
[2009-08-17 09:30:00 | 000,001,239 | ---- | M] () -- C:\Hikua_Takamoto.ini
[2009-06-17 19:02:30 | 000,000,197 | ---- | M] () -- C:\Install.log
[2009-06-17 18:49:20 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2009-08-28 05:44:00 | 000,001,235 | ---- | M] () -- C:\Iwan_Lebiediew.ini
[2009-08-13 20:10:02 | 000,001,233 | ---- | M] () -- C:\Marco_Buccini.ini
[2010-01-17 00:04:52 | 004,194,322 | ---- | M] () -- C:\memory_map.tga
[2009-06-17 18:49:20 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010-01-09 11:54:27 | 002,111,769 | ---- | M] () -- C:\new.amx
[2008-04-15 14:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2008-04-15 14:00:00 | 000,251,152 | RHS- | M] () -- C:\ntldr
[2010-06-23 09:01:52 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys
[2009-08-10 18:12:06 | 000,001,232 | ---- | M] () -- C:\Patrick_Torres.ini
[2009-09-30 16:44:03 | 000,000,000 | ---- | M] () -- C:\pcconf.ini
[2009-09-30 16:44:03 | 000,000,000 | ---- | M] () -- C:\pcwords.dat
[2009-09-30 16:44:03 | 000,000,000 | ---- | M] () -- C:\pcwords2.dat
[2009-09-30 16:44:03 | 000,000,000 | ---- | M] () -- C:\pc_sign.slf
[2010-01-10 17:39:57 | 001,887,808 | ---- | M] () -- C:\prp.amx
[2009-06-17 19:00:52 | 000,001,519 | ---- | M] () -- C:\RHDSetup.log
[2010-01-09 20:11:37 | 001,706,734 | ---- | M] () -- C:\RLLS.amx
[2010-01-08 20:05:15 | 000,000,000 | ---- | M] () -- C:\RP.amx
[2010-01-08 22:42:57 | 002,557,272 | ---- | M] () -- C:\RPPL611s.amx
[2009-12-28 00:27:49 | 001,234,133 | ---- | M] () -- C:\SanFierroRolePlay.amx
[2010-06-23 09:40:23 | 000,020,255 | ---- | M] () -- C:\service.log
[2009-08-24 20:46:00 | 000,001,233 | ---- | M] () -- C:\Titon_Wanton.ini
[2010-06-21 19:08:03 | 000,167,940 | -H-- | M] () -- C:\treeinfo.wc
[2009-08-09 21:34:00 | 000,005,916 | ---- | M] () -- C:\vactions.amx
[2009-08-10 18:09:56 | 000,001,233 | ---- | M] () -- C:\Yakuzo_Akuaj.ini
[2010-05-20 14:08:33 | 000,007,895 | ---- | M] () -- C:\zombiemod.amx


[color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
[2008-04-15 14:00:00 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys

[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2008-04-15 14:00:00 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\dllcache\atapi.sys
[2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2008-04-15 14:00:00 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0005\DriverFiles\i386\atapi.sys

[color=#A23BEC]< MD5 for: BEEP.SYS >[/color]
[2008-04-15 14:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys
[2008-04-15 14:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys

[color=#A23BEC]< MD5 for: CDROM.SYS >[/color]
[2008-04-15 14:00:00 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008-04-15 14:00:00 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys

[color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color]
[2008-04-15 14:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\dllcache\eventlog.dll
[2008-04-15 14:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\eventlog.dll
[2009-06-25 16:04:32 | 000,001,536 | ---- | M] () MD5=8D4CD834292293F4055BAC313268E2DE -- C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\lib\eventlog.dll

[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]
[2008-04-15 14:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\dllcache\ndis.sys
[2008-04-15 14:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2008-04-15 14:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\dllcache\winlogon.exe
[2008-04-15 14:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\winlogon.exe

[color=#E56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 487 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:05EE1EEF
@Alternate Data Stream - 123 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:1CA73D29
@Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:E66C08A1
< End of report >
[/log]

Mateusz J.
komentarz
komentarz

Uruchom OTL i w oknie Custom Scans/Fixes wklej[code]
:Processes
explorer.exe

:OTL
IE - HKU\S-1-5-21-1343024091-606747145-1417001333-1004\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O2 - BHO: (SearchSettings Class) - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - Reg Error: Value error. File not found
O3 - HKLM\..\Toolbar: (Dealio Toolbar) - {01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - Reg Error: Value error. File not found
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (BitDefender Toolbar) - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2010\ietoolbar.dll (BitDefender S.R.L.)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKLM\..\Toolbar: (Winamp Toolbar) - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
O3 - HKU\S-1-5-21-1343024091-606747145-1417001333-1004\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKU\S-1-5-21-1343024091-606747145-1417001333-1004\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKU\S-1-5-21-1343024091-606747145-1417001333-1004\..\Toolbar\WebBrowser: (Winamp Toolbar) - {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
FF - prefs.js..extensions.enabledItems: searchsettings@spigot.com:1.2.3

:Files
C:\Program Files\Ask.com
C:\Documents and Settings\aa\Dane aplikacji\Search Settings
C:\Documents and Settings\aa\Dane aplikacji\Dealio

:Commands
[emptytemp]
[Reboot][/code]Kliknij Run Fix. Zatwierdź restart komputera.
Po ponownym uruchomieniu komputera tworzysz nowy log i pokazujesz do kontroli.


Wykonaj: http://www.forumpc.pl/index.php?showtopic=107753
Usuwasz wszystko co znajdzie program, a raport pokazuje na forum.

Cabeza
komentarz
komentarz

Nowe logi z OTL:
[log]OTL logfile created on: 2010-06-23 10:36:06 - Run 2
OTL by OldTimer - Version 3.2.6.1 Folder = F:\
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

3,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 80,00% Memory free
5,00 Gb Paging File | 5,00 Gb Available in Paging File | 87,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 83,01 Gb Total Space | 5,81 Gb Free Space | 7,00% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 146,48 Gb Total Space | 26,11 Gb Free Space | 17,82% Space Free | Partition Type: NTFS
Drive F: | 236,27 Gb Total Space | 177,54 Gb Free Space | 75,14% Space Free | Partition Type: NTFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: DOM-1F26A3A173C
Current User Name: aa
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 60 Days
Output = Standard

[color=#E56717]========== Processes (All) ==========[/color]

PRC - [2010-06-23 09:24:35 | 000,574,464 | ---- | M] (OldTimer Tools) -- F:\OTL.exe
PRC - [2010-05-07 13:27:36 | 001,238,352 | ---- | M] (Valve Corporation) -- E:\Call of Duty Modern Warfare 2\steam.exe
PRC - [2010-04-07 21:08:52 | 000,810,120 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2010-04-07 21:08:30 | 002,145,000 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
PRC - [2010-03-30 11:16:16 | 001,820,040 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
PRC - [2010-03-30 11:16:12 | 001,107,336 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
PRC - [2010-03-26 01:10:02 | 000,142,120 | ---- | M] (Apple Inc.) -- C:\Program Files\iTunes\iTunesHelper.exe
PRC - [2010-03-26 01:09:52 | 000,545,576 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe
PRC - [2010-03-24 20:17:47 | 000,952,768 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
PRC - [2010-03-19 10:49:20 | 000,144,672 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
PRC - [2010-03-04 03:33:50 | 001,795,880 | ---- | M] (Apple Inc.) -- C:\Program Files\Safari\Safari.exe
PRC - [2010-02-26 02:21:50 | 000,126,392 | R--- | M] (Symantec Corporation) -- C:\Program Files\Norton AntiVirus\Engine\17.7.0.12\ccsvchst.exe
PRC - [2010-02-12 11:46:12 | 000,345,376 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2010-02-02 23:45:50 | 014,252,952 | ---- | M] (Redefine Sp z o.o.) -- C:\Program Files\ipla\ipla.exe
PRC - [2010-01-08 00:51:02 | 000,380,928 | ---- | M] (Spigot, Inc.) -- C:\Program Files\Application Updater\ApplicationUpdater.exe
PRC - [2009-10-16 17:59:40 | 001,236,992 | ---- | M] (Palringo Limited) -- C:\Program Files\Palringo\palringo.exe
PRC - [2009-08-13 17:05:52 | 001,096,192 | ---- | M] (BitDefender S.R.L.) -- C:\Program Files\BitDefender\BitDefender 2010\bdagent.exe
PRC - [2009-08-11 23:36:58 | 001,061,376 | ---- | M] (BitDefender S.R.L.) -- C:\Program Files\BitDefender\BitDefender 2010\seccenter.exe
PRC - [2009-08-11 15:08:32 | 001,576,976 | ---- | M] (BitDefender S.R.L.) -- C:\Program Files\BitDefender\BitDefender 2010\vsserv.exe
PRC - [2009-08-06 20:24:06 | 000,053,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe
PRC - [2009-08-05 18:33:04 | 000,075,064 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrA.exe
PRC - [2009-07-20 08:31:46 | 000,152,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2009-07-20 08:31:46 | 000,148,888 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe
PRC - [2009-04-23 15:51:38 | 000,691,656 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\daemon.exe
PRC - [2009-02-09 13:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe
PRC - [2009-02-06 15:14:34 | 000,068,136 | ---- | M] () -- C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe
PRC - [2009-02-06 12:10:02 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvse.exe
PRC - [2009-01-13 08:37:06 | 018,084,864 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.EXE
PRC - [2008-12-03 09:39:45 | 000,163,908 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe
PRC - [2008-08-13 05:49:30 | 000,405,504 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Software Update 3\SoftAuto.exe
PRC - [2008-07-29 21:10:04 | 000,046,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
PRC - [2008-04-24 17:57:00 | 000,368,640 | ---- | M] (Creative Technology Ltd.) -- C:\Program Files\Creative\Creative Media Lite\CTZDetec.exe
PRC - [2008-04-15 14:00:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008-04-15 14:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe
PRC - [2008-04-15 14:00:00 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapsrv.exe
PRC - [2008-04-15 14:00:00 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe
PRC - [2008-04-15 14:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe
PRC - [2008-04-15 14:00:00 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe
PRC - [2008-04-15 14:00:00 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe
PRC - [2008-04-15 14:00:00 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe
PRC - [2008-04-15 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [WUDFSERVICEGROUP]
PRC - [2008-04-15 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS]
PRC - [2008-04-15 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE]
PRC - [2008-04-15 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS]
PRC - [2008-04-15 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-04-15 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-04-15 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [IMGSVC]
PRC - [2008-04-15 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH]
PRC - [2008-04-15 14:00:00 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscntfy.exe
PRC - [2008-04-15 14:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe
PRC - [2008-04-15 14:00:00 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe
PRC - [2007-06-01 10:21:30 | 001,209,904 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
PRC - [2007-06-01 10:21:30 | 000,271,920 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
PRC - [2007-06-01 10:21:08 | 000,153,136 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
PRC - [2007-05-15 17:20:12 | 000,079,400 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe
PRC - [2007-05-15 17:12:10 | 000,484,904 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
PRC - [2007-04-02 08:15:40 | 000,061,440 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Shared Files\CTDevSrv.exe
PRC - [2006-11-13 14:39:52 | 001,289,000 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft ActiveSync\wcescomm.exe
PRC - [2006-11-13 14:39:34 | 000,199,464 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft ActiveSync\rapimgr.exe
PRC - [2005-12-06 14:53:30 | 000,819,200 | ---- | M] (France Télécom R&D) -- C:\Program Files\neostrada tp\neostradatp.exe
PRC - [2005-11-22 12:54:18 | 000,249,856 | ---- | M] (France Télécom R&D) -- C:\Program Files\neostrada tp\ComComp.exe
PRC - [2004-11-02 15:31:20 | 000,069,632 | ---- | M] (France Telecom R&D) -- C:\Program Files\neostrada tp\Toaster.exe
PRC - [2004-10-27 11:30:44 | 000,032,768 | ---- | M] () -- C:\Program Files\neostrada tp\Inactivity.exe
PRC - [2004-10-27 11:07:06 | 000,069,632 | ---- | M] () -- C:\Program Files\neostrada tp\PollingModule.exe
PRC - [2004-10-21 08:50:52 | 000,045,056 | ---- | M] () -- C:\WINDOWS\system32\AlertModule\AlertModule.exe
PRC - [2004-10-05 17:00:12 | 000,061,440 | ---- | M] (France Télécom R&D) -- C:\Program Files\neostrada tp\TaskBarIcon.exe
PRC - [2004-08-23 14:49:56 | 000,040,960 | ---- | M] (France Telecom) -- C:\WINDOWS\system32\FTRTSVC.exe
PRC - [2004-08-23 14:49:56 | 000,020,480 | ---- | M] (France Télécom R&D) -- C:\Program Files\neostrada tp\Watch.exe
PRC - [2004-04-13 07:07:18 | 000,069,632 | ---- | M] (InstallShield Software Corporation) -- C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
PRC - [1999-12-13 09:01:00 | 000,044,032 | ---- | M] (Creative Technology Ltd) -- C:\WINDOWS\system32\CTSVCCDA.EXE


[color=#E56717]========== Modules (All) ==========[/color]

MOD - [2010-06-23 09:24:35 | 000,574,464 | ---- | M] (OldTimer Tools) -- F:\OTL.exe
MOD - [2009-12-08 11:25:45 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll
MOD - [2009-06-25 10:27:54 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll
MOD - [2009-04-15 16:54:38 | 000,585,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll
MOD - [2009-03-21 16:08:59 | 001,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll
MOD - [2009-02-09 12:53:44 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll
MOD - [2009-02-09 12:53:43 | 000,722,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll
MOD - [2008-10-23 14:42:41 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll
MOD - [2008-06-17 21:03:15 | 008,489,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll
MOD - [2008-04-15 14:00:00 | 001,287,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll
MOD - [2008-04-15 14:00:00 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
MOD - [2008-04-15 14:00:00 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll
MOD - [2008-04-15 14:00:00 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll
MOD - [2008-04-15 14:00:00 | 000,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll
MOD - [2008-04-15 14:00:00 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll
MOD - [2008-04-15 14:00:00 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll
MOD - [2008-04-15 14:00:00 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll
MOD - [2008-04-15 14:00:00 | 000,297,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTF.dll
MOD - [2008-04-15 14:00:00 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll
MOD - [2008-04-15 14:00:00 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll
MOD - [2008-04-15 14:00:00 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll
MOD - [2008-04-15 14:00:00 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv
MOD - [2008-04-15 14:00:00 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
MOD - [2008-04-15 14:00:00 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll
MOD - [2008-04-15 14:00:00 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll
MOD - [2008-04-15 14:00:00 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll
MOD - [2008-04-15 14:00:00 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll
MOD - [2004-10-26 09:49:34 | 000,028,672 | ---- | M] () -- C:\Program Files\neostrada tp\Inactivity.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - [2010-04-17 12:43:03 | 000,316,816 | ---- | M] (Protection Technology) [Auto | Stopped] -- C:\WINDOWS\System32\appdrvrem01.exe -- (appdrvrem01) Application Driver Auto Removal Service (01)
SRV - [2010-04-07 21:13:20 | 000,033,560 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV - [2010-04-07 21:08:52 | 000,810,120 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2010-03-30 11:16:12 | 001,107,336 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2010-03-19 10:49:20 | 000,144,672 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2010-02-26 02:21:50 | 000,126,392 | R--- | M] (Symantec Corporation) [Unknown | Running] -- C:\Program Files\Norton AntiVirus\Engine\17.7.0.12\ccSvcHst.exe -- (NAV)
SRV - [2010-01-08 00:51:02 | 000,380,928 | ---- | M] (Spigot, Inc.) [Auto | Running] -- C:\Program Files\Application Updater\ApplicationUpdater.exe -- (Application Updater)
SRV - [2009-08-11 15:08:32 | 001,576,976 | ---- | M] (BitDefender S.R.L.) [Auto | Running] -- C:\Program Files\BitDefender\BitDefender 2010\vsserv.exe -- (VSSERV)
SRV - [2009-08-07 11:54:44 | 000,330,200 | ---- | M] (BitDefender S.R.L.) [Auto | Stopped] -- C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe -- (LIVESRV)
SRV - [2009-07-13 20:28:18 | 000,323,584 | ---- | M] (S.C. BitDefender S.R.L) [On_Demand | Stopped] -- C:\Program Files\Common Files\BitDefender\BitDefender Threat Scanner\scan.dll -- (scan)
SRV - [2009-06-25 16:04:32 | 000,176,128 | ---- | M] (BitDefender S.R.L. http://www.bitdefender.com) [On_Demand | Stopped] -- C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe -- (Arrakis3)
SRV - [2009-02-06 15:14:34 | 000,068,136 | ---- | M] () [Auto | Running] -- C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe -- (GEST Service)
SRV - [2007-04-02 08:15:40 | 000,061,440 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files\Creative\Shared Files\CTDevSrv.exe -- (CTDevice_Srv)
SRV - [2004-08-23 14:49:56 | 000,040,960 | ---- | M] (France Telecom) [Auto | Running] -- C:\WINDOWS\system32\FTRTSVC.exe -- (FTRTSVC)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - [2010-06-23 10:28:35 | 000,017,488 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\gdrv.sys -- (gdrv)
DRV - [2010-05-27 14:01:25 | 000,371,248 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2010-05-27 14:01:25 | 000,102,448 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2010-05-12 20:51:39 | 001,347,504 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\VirusDefs\20100526.039\NAVEX15.SYS -- (NAVEX15)
DRV - [2010-05-12 20:51:39 | 000,085,552 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\VirusDefs\20100526.039\NAVENG.SYS -- (NAVENG)
DRV - [2010-05-12 20:35:45 | 000,124,976 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2010-05-06 06:01:59 | 000,361,904 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\NAV\1107000.00C\SYMTDI.SYS -- (SYMTDI)
DRV - [2010-04-29 17:46:04 | 000,537,136 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\BASHDefs\20100429.001\BHDrvx86.sys -- (BHDrvx86)
DRV - [2010-04-29 07:03:51 | 000,116,784 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NAV\1107000.00C\Ironx86.SYS -- (SymIRON)
DRV - [2010-04-22 05:02:20 | 000,173,104 | ---- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\NAV\1107000.00C\SYMEFA.SYS -- (SymEFA)
DRV - [2010-04-22 04:29:50 | 000,325,680 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\System32\Drivers\NAV\1107000.00C\SRTSP.SYS -- (SRTSP)
DRV - [2010-04-22 04:29:50 | 000,043,696 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NAV\1107000.00C\SRTSPX.SYS -- (SRTSPX) Symantec Real Time Storage Protection (PEL)
DRV - [2010-04-17 12:43:04 | 002,712,176 | ---- | M] (Protection Technology) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\appdrv01.sys -- (appdrv01) Application Driver (01)
DRV - [2010-04-07 21:09:48 | 000,095,872 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir)
DRV - [2010-04-07 21:08:36 | 000,114,984 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2010-04-07 21:05:12 | 000,140,216 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2010-02-26 02:22:57 | 000,501,888 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NAV\1107000.00C\ccHPx86.sys -- (ccHP)
DRV - [2010-02-03 15:56:56 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2009-10-29 00:37:24 | 000,329,592 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\IPSDefs\20100520.001\IDSXpx86.sys -- (IDSxpx86)
DRV - [2009-10-05 21:03:14 | 000,271,360 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2009-10-05 21:03:13 | 000,018,048 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2009-08-30 02:17:18 | 000,328,752 | R--- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\NAV\1107000.00C\SYMDS.SYS -- (SymDS)
DRV - [2009-08-06 16:34:34 | 000,118,536 | ---- | M] (BitDefender LLC) [Kernel | System | Running] -- C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdftdif.sys -- (bdftdif)
DRV - [2009-07-24 12:26:08 | 000,285,704 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\bdfsfltr.sys -- (bdfsfltr)
DRV - [2009-06-29 14:12:38 | 000,152,328 | ---- | M] (BitDefender S.R.L. Bucharest, ROMANIA) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\bdfm.sys -- (bdfm)
DRV - [2009-06-20 18:28:02 | 000,721,904 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009-05-07 04:22:06 | 000,039,808 | ---- | M] (BitDefender S.R.L.) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\BitDefender\BitDefender Threat Scanner\trufos.sys -- (Trufos)
DRV - [2009-05-07 04:22:06 | 000,014,720 | ---- | M] (BitDefender S.R.L.) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\BitDefender\BitDefender Threat Scanner\profos.sys -- (Profos)
DRV - [2009-01-20 12:53:06 | 005,027,840 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2009-01-12 12:27:58 | 000,008,832 | ---- | M] (BitDefender S.R.L.) [Kernel | On_Demand | Running] -- C:\Program Files\BitDefender\BitDefender 2010\bdselfpr.sys -- (BDSelfPr)
DRV - [2008-12-03 09:39:45 | 006,188,320 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2008-10-30 15:14:20 | 000,117,888 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2008-04-15 14:00:00 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2006-09-19 12:03:28 | 000,116,992 | ---- | M] (Analog Devices Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\e4usbaw.sys -- (e4usbaw)
DRV - [2006-09-15 12:07:54 | 000,064,000 | ---- | M] (Analog Deivces) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\e4ldr.sys -- (IKANLOADER2) General Purpose USB Driver (e4ldr.sys)
DRV - [2006-07-05 14:46:06 | 000,063,352 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01a.sys -- (sfdrv01a) StarForce Protection Environment Driver (version 1.x.a)
DRV - [2006-06-14 16:56:56 | 000,013,680 | ---- | M] (Protection Technology (StarForce)) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2003-08-04 13:22:44 | 000,016,128 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\PCANDIS5.SYS -- (PCANDIS5)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\..\URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll File not found


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1343024091-606747145-1417001333-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource=10&ctid=CT2530240
IE - HKU\S-1-5-21-1343024091-606747145-1417001333-1004\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\neostrada tp\SearchPageURL.dll ()
IE - HKU\S-1-5-21-1343024091-606747145-1417001333-1004\..\URLSearchHook: {c86eb8a9-ccc2-4b6c-b75d-73576ed591bf} - C:\Program Files\Softonic-Polska\tbSof1.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-1343024091-606747145-1417001333-1004\..\URLSearchHook: {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-1343024091-606747145-1417001333-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.defaultthis.engineName: "Softonic-Polska Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2530240&SearchSource=3&q={searchTerms}"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=867034"
FF - prefs.js..browser.search.selectedEngine: "Ask.com"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://search.conduit.com/?ctid=CT2530240&SearchSource=13"
FF - prefs.js..extensions.enabledItems: toolbar@ask.com:3.5.0.145
FF - prefs.js..extensions.enabledItems: FFToolbar@bitdefender.com:2.0
FF - prefs.js..extensions.enabledItems: dealio@mybrowserbar.com:4.0.2
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {BBDA0591-3099-440a-AA10-41764D9DB4DB}:2.0
FF - prefs.js..extensions.enabledItems: searchsettings@spigot.com:1.2.3
FF - prefs.js..extensions.enabledItems: {c86eb8a9-ccc2-4b6c-b75d-73576ed591bf}:2.5.6.0
FF - prefs.js..keyword.URL: "http://websearch.ask.com/redirect?client=ff&src=kw&tb=BT3&o=14979&locale=en_US&apn_uid=7791EC4E-E7DF-4DF0-B007-4DDB870B6FD6&apn_ptnrs=J7&apn_sauid=A7BA9A11-BE6C-47E1-9B0C-FB6DB9F48283&apn_dtid=&q="

FF - HKLM\software\mozilla\Firefox\extensions\\FFToolbar@bitdefender.com: C:\Program Files\BitDefender\BitDefender 2010\bdaphffext\ [2009-09-30 16:34:49 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\IPSFFPlgn\ [2010-05-27 14:01:18 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Flock 2.5\extensions\\Components: C:\Program Files\Flock\components [2010-04-20 00:42:18 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Flock 2.5\extensions\\Plugins: C:\Program Files\Flock\plugins [2010-04-25 13:02:25 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.9\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-05-31 21:13:13 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.9\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-04-25 13:02:25 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2010-06-22 10:00:07 | 000,000,000 | ---D | M]

[2009-12-25 15:45:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Mozilla\Extensions
[2009-12-25 15:45:38 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\aa\Dane aplikacji\Mozilla\Extensions\{a463f10c-3994-11da-9945-000d60ca027b}
[2010-06-22 22:38:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Mozilla\Firefox\Profiles\ujkscw76.default\extensions
[2009-10-04 16:32:56 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\aa\Dane aplikacji\Mozilla\Firefox\Profiles\ujkscw76.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}
[2009-09-02 18:38:54 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\aa\Dane aplikacji\Mozilla\Firefox\Profiles\ujkscw76.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009-09-06 08:43:35 | 000,000,000 | ---D | M] (Fast Video Download) -- C:\Documents and Settings\aa\Dane aplikacji\Mozilla\Firefox\Profiles\ujkscw76.default\extensions\{c50ca3c4-5656-43c2-a061-13e717f73fc8}
[2010-06-12 08:54:22 | 000,000,000 | ---D | M] (Softonic-Polska Toolbar) -- C:\Documents and Settings\aa\Dane aplikacji\Mozilla\Firefox\Profiles\ujkscw76.default\extensions\{c86eb8a9-ccc2-4b6c-b75d-73576ed591bf}
[2009-10-04 16:32:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Mozilla\Firefox\Profiles\ujkscw76.default\extensions\staged-xpis
[2010-06-07 22:01:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Mozilla\Firefox\Profiles\ujkscw76.default\extensions\toolbar@ask.com
[2010-06-22 17:03:38 | 000,002,555 | ---- | M] () -- C:\Documents and Settings\aa\Dane aplikacji\Mozilla\Firefox\Profiles\ujkscw76.default\searchplugins\askcom.xml
[2010-02-09 17:25:50 | 000,000,933 | ---- | M] () -- C:\Documents and Settings\aa\Dane aplikacji\Mozilla\Firefox\Profiles\ujkscw76.default\searchplugins\conduit.xml
[2010-06-13 08:36:34 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2009-08-07 10:38:10 | 000,044,544 | ---- | M] (BitDefender S.R.L.) -- C:\Program Files\Mozilla Firefox\components\FFComm.dll
[2010-01-10 01:09:51 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010-01-10 01:09:51 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2010-01-10 01:09:51 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2010-01-10 01:09:51 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010-01-10 01:09:51 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2010-01-10 01:09:52 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2008-04-15 14:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (no name) - {01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - No CLSID value found.
O2 - BHO: (Winamp Toolbar Loader) - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll File not found
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton AntiVirus\Engine\17.7.0.12\ipsbho.dll (Symantec Corporation)
O2 - BHO: (CatcherBHO Class) - {9B4DF450-DCC7-4B07-935D-0CD757A64583} - C:\Program Files\Moyea\YouTube FLV Downloader\MoyeaCatcher.dll (Moyea Software Co., Ltd.)
O2 - BHO: (Softonic-Polska Toolbar) - {c86eb8a9-ccc2-4b6c-b75d-73576ed591bf} - C:\Program Files\Softonic-Polska\tbSof1.dll (Conduit Ltd.)
O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10\_userdata\ggbho.2.dll (GG Network S.A.)
O3 - HKLM\..\Toolbar: (Softonic-Polska Toolbar) - {c86eb8a9-ccc2-4b6c-b75d-73576ed591bf} - C:\Program Files\Softonic-Polska\tbSof1.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-1343024091-606747145-1417001333-1004\..\Toolbar\WebBrowser: (Softonic-Polska Toolbar) - {C86EB8A9-CCC2-4B6C-B75D-73576ED591BF} - C:\Program Files\Softonic-Polska\tbSof1.dll (Conduit Ltd.)
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe (Apple Inc.)
O4 - HKLM..\Run: [BDAgent] C:\Program Files\BitDefender\BitDefender 2010\bdagent.exe (BitDefender S.R.L.)
O4 - HKLM..\Run: [BitDefender Antiphishing Helper] C:\Program Files\BitDefender\BitDefender 2010\IEShow.exe (BitDefender S.R.L.)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [ISUSPM Startup] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe (InstallShield Software Corporation)
O4 - HKLM..\Run: [ISUSScheduler] C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe (InstallShield Software Corporation)
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [WOOTASKBARICON] C:\PROGRA~1\NEOSTR~1\GestMaj.exe TaskBarIcon.exe File not found
O4 - HKLM..\Run: [WOOWATCH] C:\Program Files\neostrada tp\Watch.exe (France Télécom R&D)
O4 - HKU\S-1-5-21-1343024091-606747145-1417001333-1004..\Run: [ares] C:\Program Files\Ares\Ares.exe File not found
O4 - HKU\S-1-5-21-1343024091-606747145-1417001333-1004..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKU\S-1-5-21-1343024091-606747145-1417001333-1004..\Run: [CTZDetec.exe] C:\Program Files\Creative\Creative Media Lite\CTZDetec.exe (Creative Technology Ltd.)
O4 - HKU\S-1-5-21-1343024091-606747145-1417001333-1004..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-1343024091-606747145-1417001333-1004..\Run: [Gadu-Gadu 10] C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.)
O4 - HKU\S-1-5-21-1343024091-606747145-1417001333-1004..\Run: [H/PC Connection Agent] C:\Program Files\Microsoft ActiveSync\wcescomm.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1343024091-606747145-1417001333-1004..\Run: [IPLA!] C:\Program Files\ipla\ipla.exe (Redefine Sp z o.o.)
O4 - HKU\S-1-5-21-1343024091-606747145-1417001333-1004..\Run: [Palringo] C:\Program Files\Palringo\Palringo.exe (Palringo Limited)
O4 - HKU\S-1-5-21-1343024091-606747145-1417001333-1004..\Run: [RGSC] C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe (Take-Two Interactive Software, Inc.)
O4 - HKU\S-1-5-21-1343024091-606747145-1417001333-1004..\Run: [SoftAuto.exe] C:\Program Files\Creative\Software Update 3\SoftAuto.exe (Creative Technology Ltd)
O4 - HKU\S-1-5-21-1343024091-606747145-1417001333-1004..\Run: [Steam] e:\call of duty modern warfare 2\steam.exe (Valve Corporation)
O4 - Startup: C:\Documents and Settings\aa\Menu Start\Programy\Autostart\Registration Brothers In Arms.LNK = K:\Support\Register\RegistrationReminder.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1343024091-606747145-1417001333-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 95 00 00 00 [binary data]
O8 - Extra context menu item: &Winamp Search - C:\Documents and Settings\All Users\Dane aplikacji\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html ()
O9 - Extra Button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {1E53EA77-34F2-474E-9046-B2B0C86F1821} http://www.eska.pl/streamplayers/OggX.ocx (OggX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA} http://java.sun.com/products/plugin/autodl/jinstall-1_4_0_03-win.cab (Java Plug-in 1.4.0_03)
O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-06-17 18:49:20 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2009-06-17 20:34:02 | 000,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: Wmi - C:\WINDOWS\system32\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp - File not found


SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: Hamachi2Svc - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.)
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

[color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color]

[2010-06-23 10:37:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Dane aplikacji\Malwarebytes
[2010-06-23 10:37:49 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010-06-23 10:37:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes
[2010-06-23 10:32:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Dane aplikacji\Search Settings
[2010-06-23 10:32:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Dane aplikacji\Dealio
[2010-06-23 09:17:33 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2010-06-22 11:27:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Dane aplikacji\Avnex
[2010-06-22 11:26:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Application Data
[2010-06-22 11:25:53 | 000,000,000 | ---D | C] -- C:\Program Files\AV Vcs 7.0 DIAMOND
[2010-06-22 10:05:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\ESET
[2010-06-22 10:00:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Ustawienia lokalne\Dane aplikacji\ESET
[2010-06-22 10:00:07 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2010-06-22 10:00:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET
[2010-06-21 13:19:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Moje dokumenty\sergiej
[2010-06-16 16:11:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Pulpit\Nowy folder
[2010-06-15 16:15:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Pulpit\blrp
[2010-06-14 23:48:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Softonic-Polska
[2010-06-13 12:54:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\.ultramixer
[2010-06-13 12:54:25 | 000,000,000 | ---D | C] -- C:\Program Files\UltraMixer
[2010-06-12 08:54:30 | 000,000,000 | ---D | C] -- C:\Program Files\Conduit
[2010-06-12 08:54:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Ustawienia lokalne\Dane aplikacji\Conduit
[2010-06-12 08:54:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Ustawienia lokalne\Dane aplikacji\Softonic-Polska
[2010-06-12 08:54:25 | 000,000,000 | ---D | C] -- C:\Program Files\Softonic-Polska
[2010-06-12 01:52:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Ustawienia lokalne\Dane aplikacji\LogMeIn Hamachi
[2010-06-12 01:52:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\LogMeIn Hamachi
[2010-06-12 01:52:22 | 000,000,000 | ---D | C] -- C:\Program Files\LogMeIn Hamachi
[2010-06-09 21:51:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Moje dokumenty\Dose Files
[2010-06-09 15:33:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Ustawienia lokalne\Dane aplikacji\PCHealth
[2010-06-08 21:34:37 | 000,000,000 | ---D | C] -- C:\Lxk1100
[2010-06-08 21:22:51 | 000,000,000 | ---D | C] -- C:\Lexmark
[2010-06-05 15:21:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Pulpit\Wszystko
[2010-06-02 11:53:38 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\aa\Moje dokumenty\Runes of Magic
[2010-05-30 17:46:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Dane aplikacji\Gadu-Gadu 10
[2010-05-30 17:46:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2010-05-30 17:45:23 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu 10
[2010-05-27 17:35:33 | 000,107,888 | ---- | C] (Sony DADC Austria AG.) -- C:\WINDOWS\System32\CmdLineExt.dll
[2010-05-27 15:10:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Moje dokumenty\Rockstar Games
[2010-05-27 15:02:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\microsoft
[2010-05-27 15:02:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Ustawienia lokalne\Dane aplikacji\Rockstar Games
[2010-05-27 14:54:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\umdf
[2010-05-27 14:53:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xlive
[2010-05-27 14:53:36 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Games for Windows - LIVE
[2010-05-26 13:56:45 | 000,361,904 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symtdi.sys
[2010-05-26 13:56:45 | 000,339,504 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symtdiv.sys
[2010-05-26 13:56:45 | 000,328,752 | R--- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symds.sys
[2010-05-26 13:56:45 | 000,325,680 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\srtsp.sys
[2010-05-26 13:56:45 | 000,173,104 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symefa.sys
[2010-05-26 13:56:45 | 000,116,784 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\ironx86.sys
[2010-05-26 13:56:45 | 000,043,696 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\srtspx.sys
[2010-05-26 13:56:44 | 000,501,888 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\cchpx86.sys
[2010-05-26 13:56:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\NAV\1107000.00C
[2010-05-23 16:07:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Dane aplikacji\COWON
[2010-05-23 16:00:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\COWON
[2010-05-23 15:26:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Dane aplikacji\Cream Software
[2010-05-22 22:03:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Xfire
[2010-05-22 22:01:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Dane aplikacji\Xfire
[2010-05-22 22:01:07 | 000,000,000 | ---D | C] -- C:\Program Files\Xfire
[2010-05-20 18:50:06 | 000,000,000 | ---D | C] -- C:\Program Files\Safari
[2010-05-16 20:18:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Google
[2010-05-16 20:15:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Dane aplikacji\Google
[2010-05-16 20:13:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Google
[2010-05-16 20:13:10 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2010-05-15 08:04:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Dane aplikacji\BlackBean
[2010-05-12 20:36:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Ustawienia lokalne\Dane aplikacji\Tific
[2010-05-12 20:36:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Dane aplikacji\Tific
[2010-05-12 20:36:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Ustawienia lokalne\Dane aplikacji\Symantec
[2010-05-12 20:35:45 | 000,124,976 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\SYMEVENT.SYS
[2010-05-12 20:35:45 | 000,060,808 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\S32EVNT1.DLL
[2010-05-12 20:35:45 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared
[2010-05-12 20:35:45 | 000,000,000 | ---D | C] -- C:\Program Files\Symantec
[2010-05-12 20:35:25 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Sidebar
[2010-05-12 20:35:25 | 000,000,000 | ---D | C] -- C:\Program Files\Norton AntiVirus
[2010-05-12 20:35:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\NAV
[2010-05-12 20:35:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton
[2010-05-12 20:35:20 | 000,000,000 | ---D | C] -- C:\Program Files\NortonInstaller
[2010-05-12 20:35:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\NortonInstaller
[2010-05-12 20:16:26 | 000,341,064 | ---- | C] (McAfee, Inc) -- C:\WINDOWS\System32\mcinsctl.dll
[2010-05-12 20:16:26 | 000,279,624 | ---- | C] (McAfee, Inc) -- C:\WINDOWS\System32\mcgdmgr.dll
[2010-05-12 20:16:26 | 000,000,000 | ---D | C] -- C:\Program Files\McAfee.com
[2010-05-09 14:52:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\.thumbnails
[2010-05-08 16:48:20 | 000,000,000 | ---D | C] -- C:\Program Files\No-IP
[2010-05-03 00:07:26 | 000,000,000 | ---D | C] -- C:\Program Files\Rockstar Games
[2010-05-02 15:26:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Ustawienia lokalne\Dane aplikacji\VDownloader
[2010-05-02 15:26:06 | 000,000,000 | ---D | C] -- C:\Program Files\VDownloader
[2010-05-02 15:10:04 | 000,000,000 | ---D | C] -- C:\Program Files\You Ripper
[2010-04-25 13:02:13 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2010-04-25 13:02:13 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2010-04-25 06:54:45 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2009-12-25 15:55:26 | 000,057,344 | ---- | C] ( ) -- C:\WINDOWS\System32\csnpstd.dll

[color=#E56717]========== Files - Modified Within 60 Days ==========[/color]

[2010-06-23 10:37:54 | 000,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk
[2010-06-23 10:29:49 | 000,203,188 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2010-06-23 10:28:31 | 000,001,024 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010-06-23 10:28:27 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010-06-23 10:28:24 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-06-23 10:27:25 | 009,175,040 | -H-- | M] () -- C:\Documents and Settings\aa\NTUSER.DAT
[2010-06-23 10:27:04 | 000,000,132 | ---- | M] () -- C:\WINDOWS\System32\rezumatenoi.dat
[2010-06-23 10:23:00 | 000,001,028 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010-06-23 10:01:00 | 000,001,120 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1343024091-606747145-1417001333-1004UA.job
[2010-06-23 10:01:00 | 000,000,228 | ---- | M] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
[2010-06-23 09:17:33 | 000,001,734 | ---- | M] () -- C:\Documents and Settings\aa\Pulpit\HijackThis.lnk
[2010-06-23 09:05:12 | 000,002,267 | ---- | M] () -- C:\Documents and Settings\aa\Pulpit\Skype.lnk
[2010-06-23 09:04:32 | 000,000,376 | ---- | M] () -- C:\Documents and Settings\aa\Dane aplikacjiprivacy.xml
[2010-06-22 23:01:00 | 000,001,068 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1343024091-606747145-1417001333-1004Core.job
[2010-06-22 22:36:33 | 000,039,310 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\O. Pelanowski.rtf
[2010-06-22 13:23:06 | 000,002,271 | ---- | M] () -- C:\WINDOWS\wincmd.ini
[2010-06-22 13:20:09 | 000,000,470 | ---- | M] () -- C:\WINDOWS\wcx_ftp.ini
[2010-06-22 09:37:32 | 000,540,555 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\sa-mp-064.png
[2010-06-22 09:37:20 | 000,215,282 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\sa-mp-063.png
[2010-06-21 19:08:03 | 000,167,940 | -H-- | M] () -- C:\treeinfo.wc
[2010-06-20 14:13:47 | 002,296,392 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\blrp1.pwn
[2010-06-20 10:53:54 | 000,315,984 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\sa-mp-022.png
[2010-06-20 09:28:11 | 002,820,626 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\blrp1.amx
[2010-06-20 09:28:11 | 002,820,626 | ---- | M] () -- C:\blrp1.amx
[2010-06-20 02:17:39 | 001,087,700 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-06-20 02:17:39 | 000,490,628 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2010-06-20 02:17:39 | 000,432,492 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-06-20 02:17:39 | 000,083,880 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2010-06-20 02:17:39 | 000,067,448 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-06-19 23:04:05 | 002,820,626 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\blrp1_www.przeklej.pl.amx
[2010-06-19 23:04:05 | 002,820,626 | ---- | M] () -- C:\blrp1_www.przeklej.pl.amx
[2010-06-18 23:27:02 | 000,008,809 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\DMV.amx
[2010-06-18 17:04:36 | 002,820,826 | ---- | M] () -- C:\blrp.amx
[2010-06-14 23:48:00 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2010-06-12 11:39:54 | 001,576,080 | -H-- | M] () -- C:\Documents and Settings\aa\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2010-06-12 09:09:15 | 000,001,316 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-06-12 09:09:15 | 000,001,316 | ---- | M] () -- C:\WINDOWS\System32\wpa.bak
[2010-06-11 13:49:47 | 000,104,624 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-06-11 00:09:15 | 000,579,614 | ---- | M] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\Cat.DB
[2010-06-11 00:09:07 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010-06-08 21:33:54 | 024,666,624 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\CJXP1100EN.exe
[2010-06-08 20:53:17 | 000,000,008 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\Nowy Dokument sformatowany.rtf
[2010-06-05 16:27:08 | 000,000,151 | ---- | M] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2010-06-04 00:27:33 | 000,020,480 | ---- | M] () -- C:\WINDOWS\System32\H@tKeysH@@k.DLL
[2010-06-02 07:29:45 | 000,388,814 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\dom.skp
[2010-06-01 20:58:46 | 000,370,291 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\dom.skb
[2010-06-01 18:02:45 | 003,462,405 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\ky-mani marley -so hot.mp31275409051_[mp3.teledyski.info].mp3
[2010-06-01 17:56:36 | 002,375,294 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\nas & damian marley - as we enter.mp31275407844_[mp3.teledyski.info].mp3
[2010-06-01 17:51:35 | 003,750,379 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\bob marley - don't worry be happy.mp31275407473_[mp3.teledyski.info].mp3
[2010-06-01 17:47:59 | 002,641,116 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\bob marley - 400 years.mp31275407314_[mp3.teledyski.info].mp3
[2010-06-01 07:16:30 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\umdf\Msft_User_WpdMtpDr_01_00_00.Wdf
[2010-05-30 17:48:01 | 000,000,728 | ---- | M] () -- C:\Documents and Settings\aa\Pulpit\Gadu-Gadu 10.lnk
[2010-05-27 17:35:33 | 000,107,888 | ---- | M] (Sony DADC Austria AG.) -- C:\WINDOWS\System32\CmdLineExt.dll
[2010-05-27 14:55:44 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\umdf\MsftWdf_user_01_00_00.Wdf
[2010-05-27 14:55:02 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2010-05-25 23:24:34 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010-05-25 20:25:43 | 000,028,160 | ---- | M] () -- C:\Documents and Settings\aa\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-05-21 14:37:37 | 000,108,894 | ---- | M] () -- C:\Documents and Settings\aa\Moje dokumenty\id.php.png
[2010-05-20 18:50:23 | 000,009,392 | -H-- | M] () -- C:\WINDOWS\System32\mlfcache.dat
[2010-05-20 14:08:33 | 000,007,895 | ---- | M] () -- C:\zombiemod.amx
[2010-05-14 20:40:58 | 000,043,520 | ---- | M] () -- C:\WINDOWS\System32\CmdLineExt03.dll
[2010-05-14 08:36:08 | 000,000,172 | ---- | M] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\isolate.ini
[2010-05-12 20:35:45 | 000,124,976 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\SYMEVENT.SYS
[2010-05-12 20:35:45 | 000,060,808 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\S32EVNT1.DLL
[2010-05-12 20:35:45 | 000,007,443 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.CAT
[2010-05-12 20:35:45 | 000,000,805 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.INF
[2010-05-11 20:32:38 | 000,041,872 | ---- | M] () -- C:\WINDOWS\System32\xfcodec.dll
[2010-05-09 14:54:20 | 000,000,876 | ---- | M] () -- C:\Documents and Settings\aa\.recently-used.xbel
[2010-05-06 06:01:59 | 000,361,904 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symtdi.sys
[2010-05-06 06:01:59 | 000,339,504 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symtdiv.sys
[2010-05-06 06:01:43 | 000,001,473 | ---- | M] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symnetv.inf
[2010-05-06 06:01:43 | 000,001,445 | ---- | M] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symnet.inf
[2010-05-05 23:33:45 | 000,000,079 | ---- | M] () -- C:\Documents and Settings\aa\default.pls
[2010-05-01 18:39:40 | 000,000,323 | ---- | M] () -- C:\WINDOWS\mafosav.INI
[2010-05-01 18:39:31 | 000,000,100 | ---- | M] () -- C:\WINDOWS\forevermopt.INI
[2010-04-29 15:39:38 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010-04-29 15:39:26 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010-04-29 07:03:51 | 000,116,784 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\ironx86.sys
[2010-04-29 07:03:51 | 000,007,438 | ---- | M] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\iron.cat
[2010-04-29 07:03:51 | 000,000,741 | ---- | M] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\iron.inf
[2010-04-26 10:18:40 | 000,007,873 | ---- | M] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symefa.cat
[2010-04-24 13:31:04 | 000,003,373 | ---- | M] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symefa.inf

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2010-06-23 10:37:54 | 000,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk
[2010-06-23 09:17:33 | 000,001,734 | ---- | C] () -- C:\Documents and Settings\aa\Pulpit\HijackThis.lnk
[2010-06-22 22:36:33 | 000,039,310 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\O. Pelanowski.rtf
[2010-06-22 09:37:14 | 000,540,555 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\sa-mp-064.png
[2010-06-22 09:37:11 | 000,215,282 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\sa-mp-063.png
[2010-06-20 10:53:43 | 000,315,984 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\sa-mp-022.png
[2010-06-20 09:28:11 | 002,820,626 | ---- | C] () -- C:\blrp1.amx
[2010-06-20 09:27:56 | 002,820,626 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\blrp1.amx
[2010-06-19 23:00:52 | 002,820,626 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\blrp1_www.przeklej.pl.amx
[2010-06-19 22:59:43 | 002,296,392 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\blrp1.pwn
[2010-06-18 23:27:00 | 000,008,809 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\DMV.amx
[2010-06-18 16:08:05 | 002,820,826 | ---- | C] () -- C:\blrp.amx
[2010-06-18 16:03:05 | 002,820,626 | ---- | C] () -- C:\blrp1_www.przeklej.pl.amx
[2010-06-15 16:18:14 | 000,167,940 | -H-- | C] () -- C:\treeinfo.wc
[2010-06-15 00:33:03 | 000,766,736 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2010-06-12 20:32:19 | 000,000,012 | ---- | C] () -- C:\Documents and Settings\aa\Ważne.txt
[2010-06-11 17:05:35 | 000,001,614 | ---- | C] () -- C:\Documents and Settings\aa\Pulpit\Mozilla Firefox.lnk
[2010-06-08 20:53:17 | 000,000,008 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\Nowy Dokument sformatowany.rtf
[2010-06-08 14:24:42 | 024,666,624 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\CJXP1100EN.exe
[2010-06-02 07:29:45 | 000,370,291 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\dom.skb
[2010-06-01 23:08:13 | 000,000,030 | ---- | C] () -- C:\Documents and Settings\aa\t.txt
[2010-06-01 22:36:51 | 000,000,012 | ---- | C] () -- C:\Documents and Settings\aa\ania.txt
[2010-06-01 20:58:46 | 000,388,814 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\dom.skp
[2010-06-01 17:59:49 | 003,462,405 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\ky-mani marley -so hot.mp31275409051_[mp3.teledyski.info].mp3
[2010-06-01 17:54:35 | 002,375,294 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\nas & damian marley - as we enter.mp31275407844_[mp3.teledyski.info].mp3
[2010-06-01 17:48:25 | 003,750,379 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\bob marley - don't worry be happy.mp31275407473_[mp3.teledyski.info].mp3
[2010-06-01 17:45:45 | 002,641,116 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\bob marley - 400 years.mp31275407314_[mp3.teledyski.info].mp3
[2010-06-01 07:16:30 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\umdf\Msft_User_WpdMtpDr_01_00_00.Wdf
[2010-05-30 17:48:01 | 000,000,728 | ---- | C] () -- C:\Documents and Settings\aa\Pulpit\Gadu-Gadu 10.lnk
[2010-05-27 16:58:44 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\LocalService\Dane aplikacji\$_hpcst$.hpc
[2010-05-27 14:55:44 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\umdf\MsftWdf_user_01_00_00.Wdf
[2010-05-27 13:48:54 | 000,579,614 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\Cat.DB
[2010-05-26 13:56:45 | 000,007,873 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symefa.cat
[2010-05-26 13:56:45 | 000,007,787 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symnetv.cat
[2010-05-26 13:56:45 | 000,007,442 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\srtspx.cat
[2010-05-26 13:56:45 | 000,007,438 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\srtsp.cat
[2010-05-26 13:56:45 | 000,007,425 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symds.cat
[2010-05-26 13:56:45 | 000,007,368 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symnet.cat
[2010-05-26 13:56:45 | 000,003,373 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symefa.inf
[2010-05-26 13:56:45 | 000,002,793 | R--- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symds.inf
[2010-05-26 13:56:45 | 000,001,473 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symnetv.inf
[2010-05-26 13:56:45 | 000,001,445 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\symnet.inf
[2010-05-26 13:56:45 | 000,001,388 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\srtspx.inf
[2010-05-26 13:56:45 | 000,001,382 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\srtsp.inf
[2010-05-26 13:56:45 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\iron.inf
[2010-05-26 13:56:44 | 000,007,438 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\iron.cat
[2010-05-26 13:56:44 | 000,007,396 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\cchpx86.cat
[2010-05-26 13:56:44 | 000,001,754 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\cchpx86.inf
[2010-05-26 13:56:29 | 000,000,172 | ---- | C] () -- C:\WINDOWS\System32\drivers\NAV\1107000.00C\isolate.ini
[2010-05-21 14:37:37 | 000,108,894 | ---- | C] () -- C:\Documents and Settings\aa\Moje dokumenty\id.php.png
[2010-05-20 18:50:23 | 000,009,392 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2010-05-20 14:08:33 | 000,007,895 | ---- | C] () -- C:\zombiemod.amx
[2010-05-16 20:13:16 | 000,001,028 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010-05-16 20:13:16 | 000,001,024 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010-05-12 20:35:45 | 000,007,443 | ---- | C] () -- C:\WINDOWS\System32\drivers\SYMEVENT.CAT
[2010-05-12 20:35:45 | 000,000,805 | ---- | C] () -- C:\WINDOWS\System32\drivers\SYMEVENT.INF
[2010-05-11 20:32:38 | 000,041,872 | ---- | C] () -- C:\WINDOWS\System32\xfcodec.dll
[2010-05-09 14:54:20 | 000,000,876 | ---- | C] () -- C:\Documents and Settings\aa\.recently-used.xbel
[2010-05-02 15:26:07 | 000,026,694 | ---- | C] () -- C:\WINDOWS\System32\eBay.ico
[2010-04-02 17:17:34 | 000,179,091 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2010-01-10 18:46:54 | 000,039,899 | ---- | C] () -- C:\WINDOWS\System32\rtsicis.ini
[2010-01-10 18:46:53 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\lxczcnv7.dll
[2010-01-10 18:46:53 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\lxczcnv6.dll
[2010-01-01 23:55:47 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\H@tKeysH@@k.DLL
[2010-01-01 11:35:01 | 000,000,010 | ---- | C] () -- C:\WINDOWS\WININIT.INI
[2009-12-25 15:55:50 | 000,015,541 | ---- | C] () -- C:\WINDOWS\snpstd.ini
[2009-12-25 15:55:49 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\dsnpstd.dll
[2009-12-25 15:55:33 | 000,270,848 | ---- | C] () -- C:\WINDOWS\System32\drivers\snpstd.sys
[2009-12-25 15:55:26 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\vsnpstd.dll
[2009-11-29 01:03:15 | 000,000,470 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
[2009-11-29 01:02:32 | 000,002,271 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2009-11-14 17:54:57 | 000,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll
[2009-11-13 19:57:49 | 000,000,168 | ---- | C] () -- C:\WINDOWS\adidsl.ini
[2009-11-13 19:57:49 | 000,000,021 | ---- | C] () -- C:\WINDOWS\Fast800.ini
[2009-11-13 19:57:41 | 000,126,976 | ---- | C] () -- C:\WINDOWS\System32\coclassfast.dll
[2009-11-13 19:57:39 | 000,046,892 | ---- | C] () -- C:\WINDOWS\System32\ADADIX16.DLL
[2009-11-12 16:20:04 | 000,000,632 | ---- | C] () -- C:\WINDOWS\CoD.INI
[2009-10-31 11:32:45 | 000,002,481 | ---- | C] () -- C:\WINDOWS\ACROREAD.INI
[2009-10-05 21:03:14 | 000,271,360 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2009-10-05 21:03:13 | 000,018,048 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2009-06-25 09:17:56 | 000,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2009-06-22 16:31:39 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2009-06-20 21:28:12 | 000,138,944 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2009-06-20 20:12:11 | 000,041,068 | ---- | C] () -- C:\WINDOWS\System32\ActPanel.dll
[2009-06-20 18:28:02 | 000,721,904 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2009-06-17 19:04:14 | 000,002,226 | ---- | C] () -- C:\WINDOWS\ATICIM.INI
[2009-01-15 13:45:34 | 000,181,248 | ---- | C] () -- C:\WINDOWS\System32\txmlutil.dll
[2008-12-03 09:39:45 | 001,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2008-12-03 09:39:45 | 001,486,848 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2008-12-03 09:39:45 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2008-12-03 09:39:45 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2008-12-03 09:39:45 | 000,007,237 | ---- | C] () -- C:\WINDOWS\cadx2.ini
[2008-10-07 10:13:30 | 000,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll
[2008-10-07 10:13:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2008-10-07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2008-10-07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2008-10-07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2008-10-07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2008-10-07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2008-10-07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2008-10-07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2008-10-07 10:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2007-01-31 14:50:32 | 000,913,408 | ---- | C] () -- C:\WINDOWS\System32\xreglib.dll
[2005-01-25 16:15:42 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\PA207USD.DLL
[2004-01-02 01:28:29 | 000,000,100 | ---- | C] () -- C:\WINDOWS\forevermopt.INI
[2004-01-02 01:28:13 | 000,000,323 | ---- | C] () -- C:\WINDOWS\mafosav.INI
[2004-01-02 00:05:12 | 000,092,400 | ---- | C] () -- C:\WINDOWS\ktkm7.dll
[2004-01-02 00:05:12 | 000,058,192 | ---- | C] () -- C:\WINDOWS\ktkm6.dll
[2004-01-02 00:05:12 | 000,055,186 | ---- | C] () -- C:\WINDOWS\ktkm5.dll
[2004-01-02 00:05:12 | 000,030,166 | ---- | C] () -- C:\WINDOWS\ktkm9.dll
[2004-01-02 00:05:12 | 000,023,364 | ---- | C] () -- C:\WINDOWS\ktkm8.dll
[2004-01-02 00:05:12 | 000,022,926 | ---- | C] () -- C:\WINDOWS\ktkm4.dll
[2004-01-02 00:05:11 | 000,268,621 | ---- | C] () -- C:\WINDOWS\ktkm33.dll
[2004-01-02 00:05:11 | 000,098,442 | ---- | C] () -- C:\WINDOWS\ktkm35.dll
[2004-01-02 00:05:11 | 000,082,542 | ---- | C] () -- C:\WINDOWS\ktkm37.dll
[2004-01-02 00:05:11 | 000,020,926 | ---- | C] () -- C:\WINDOWS\ktkm36.dll
[2004-01-02 00:05:11 | 000,010,240 | ---- | C] () -- C:\WINDOWS\ktkm34.dll
[2004-01-02 00:05:10 | 000,326,441 | ---- | C] () -- C:\WINDOWS\ktkm32.dll
[2004-01-02 00:05:10 | 000,197,408 | ---- | C] () -- C:\WINDOWS\ktkm29.dll
[2004-01-02 00:05:10 | 000,128,042 | ---- | C] () -- C:\WINDOWS\ktkm30.dll
[2004-01-02 00:05:10 | 000,116,841 | ---- | C] () -- C:\WINDOWS\ktkm26.dll
[2004-01-02 00:05:10 | 000,100,786 | ---- | C] () -- C:\WINDOWS\ktkm28.dll
[2004-01-02 00:05:10 | 000,081,427 | ---- | C] () -- C:\WINDOWS\ktkm31.dll
[2004-01-02 00:05:10 | 000,065,092 | ---- | C] () -- C:\WINDOWS\ktkm27.dll
[2004-01-02 00:05:10 | 000,022,657 | ---- | C] () -- C:\WINDOWS\ktkm3.dll
[2004-01-02 00:05:09 | 000,538,410 | ---- | C] () -- C:\WINDOWS\ktkm20.dll
[2004-01-02 00:05:09 | 000,524,537 | ---- | C] () -- C:\WINDOWS\ktkm18.dll
[2004-01-02 00:05:09 | 000,370,880 | ---- | C] () -- C:\WINDOWS\ktkm22.dll
[2004-01-02 00:05:09 | 000,126,720 | ---- | C] () -- C:\WINDOWS\ktkm23.dll
[2004-01-02 00:05:09 | 000,070,888 | ---- | C] () -- C:\WINDOWS\ktkm19.dll
[2004-01-02 00:05:09 | 000,066,908 | ---- | C] () -- C:\WINDOWS\ktkm17.dll
[2004-01-02 00:05:09 | 000,064,070 | ---- | C] () -- C:\WINDOWS\ktkm21.dll
[2004-01-02 00:05:09 | 000,056,992 | ---- | C] () -- C:\WINDOWS\ktkm24.dll
[2004-01-02 00:05:09 | 000,049,094 | ---- | C] () -- C:\WINDOWS\ktkm25.dll
[2004-01-02 00:05:09 | 000,020,974 | ---- | C] () -- C:\WINDOWS\ktkm2.dll
[2004-01-02 00:05:08 | 000,803,601 | ---- | C] () -- C:\WINDOWS\ktkm16.dll
[2004-01-02 00:05:08 | 000,524,164 | ---- | C] () -- C:\WINDOWS\ktkm12.dll
[2004-01-02 00:05:08 | 000,307,617 | ---- | C] () -- C:\WINDOWS\ktkm15.dll
[2004-01-02 00:05:08 | 000,209,936 | ---- | C] () -- C:\WINDOWS\ktkm14.dll
[2004-01-02 00:05:08 | 000,099,867 | ---- | C] () -- C:\WINDOWS\ktkm13.dll
[2004-01-02 00:05:08 | 000,096,166 | ---- | C] () -- C:\WINDOWS\ktkm1.dll
[2004-01-02 00:05:08 | 000,062,631 | ---- | C] () -- C:\WINDOWS\ktkm11.dll
[2004-01-02 00:05:08 | 000,058,015 | ---- | C] () -- C:\WINDOWS\ktkm10.dll

[color=#E56717]========== LOP Check ==========[/color]

[2010-06-22 11:27:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Avnex
[2009-09-30 16:35:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\BitDefender
[2010-05-08 11:20:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\BitTorrent
[2009-07-20 18:32:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Black Sea Studios
[2010-05-15 08:04:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\BlackBean
[2010-05-23 16:07:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\COWON
[2010-05-23 15:26:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Cream Software
[2009-09-05 14:48:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\DAEMON Tools Lite
[2009-06-20 18:35:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\DAEMON Tools Pro
[2010-06-23 10:32:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Dealio
[2009-08-12 13:42:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\FileZilla
[2009-12-25 15:45:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Flock
[2010-04-05 00:14:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\FreeFLVConverter
[2010-06-22 09:36:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Gadu-Gadu 10
[2009-08-12 13:49:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\GlobalSCAPE
[2010-05-14 17:41:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\gtk-2.0
[2009-08-05 18:33:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\id Software
[2010-01-23 09:24:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Imperium Romanum
[2010-06-23 10:30:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\ipla
[2009-10-27 19:41:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Leadertech
[2010-04-18 16:01:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Mount&Blade
[2010-04-04 23:29:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Moyea
[2010-04-18 13:07:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Notepad++
[2009-10-22 20:41:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Nowe Gadu-Gadu
[2009-09-04 22:56:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\OpenFM
[2010-01-04 21:26:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Opera
[2009-06-20 23:55:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\PCToolsFirewallPlus
[2009-06-20 23:55:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\PCToolsSpamMonitorPlus
[2010-01-25 09:16:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\SA-MP Audio Plugin
[2010-06-23 10:32:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Search Settings
[2010-01-16 05:07:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\The Creative Assembly
[2010-05-12 20:36:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Tific
[2009-12-09 21:05:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\Ubisoft
[2009-10-04 11:35:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\aa\Dane aplikacji\VitySoft
[2009-09-30 16:37:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\BitDefender
[2009-06-20 18:33:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2010-01-04 20:47:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Downloaded Installations
[2010-06-22 10:00:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET
[2009-08-15 15:44:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Firefly Studios
[2010-05-30 17:46:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2009-08-12 13:49:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\GlobalSCAPE
[2009-08-05 18:32:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\id Software
[2010-03-24 19:15:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla
[2009-06-20 23:43:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\LightScribe
[2010-05-30 17:55:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM
[2009-07-19 22:07:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Synetic
[2009-07-02 12:16:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2009-12-09 21:05:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ubisoft
[2009-07-01 09:07:14 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{26009715-9383-403E-996E-D70BE8109C3D}
[2010-04-20 00:44:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2009-12-01 22:13:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2010-06-23 10:01:00 | 000,000,228 | ---- | M] () -- C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Custom Scans ==========[/color]


[color=#A23BEC]< %systemdrive%\*.* >[/color]
[2009-08-09 21:34:00 | 000,002,115 | ---- | M] () -- C:\adminspec.amx
[2009-08-16 11:48:00 | 000,001,230 | ---- | M] () -- C:\Alex_Green.ini
[2009-08-09 22:14:07 | 000,001,228 | ---- | M] () -- C:\Alex_Smith.ini
[2009-12-28 15:45:31 | 000,009,948 | ---- | M] () -- C:\anim.amx
[2009-12-23 19:31:02 | 000,178,858 | ---- | M] () -- C:\AS.amx
[2009-06-17 18:49:20 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2009-08-25 10:35:00 | 000,040,339 | ---- | M] () -- C:\ban.log
[2010-06-18 17:04:36 | 002,820,826 | ---- | M] () -- C:\blrp.amx
[2010-06-20 09:28:11 | 002,820,626 | ---- | M] () -- C:\blrp1.amx
[2010-06-19 23:04:05 | 002,820,626 | ---- | M] () -- C:\blrp1_www.przeklej.pl.amx
[2009-06-17 18:45:32 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2008-04-15 14:00:00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin
[2009-08-09 22:26:20 | 000,001,229 | ---- | M] () -- C:\Chris_Cornell.ini
[2009-12-23 15:10:17 | 001,168,462 | ---- | M] () -- C:\cl.amx
[2009-06-17 18:49:20 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2009-06-17 19:02:53 | 000,000,010 | ---- | M] () -- C:\csb.log
[2010-03-30 14:58:28 | 000,000,277 | ---- | M] () -- C:\debugInstaller.txt
[2010-01-08 16:20:54 | 001,209,744 | ---- | M] () -- C:\GF.amx
[2009-08-17 09:30:00 | 000,001,239 | ---- | M] () -- C:\Hikua_Takamoto.ini
[2009-06-17 19:02:30 | 000,000,197 | ---- | M] () -- C:\Install.log
[2009-06-17 18:49:20 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2009-08-28 05:44:00 | 000,001,235 | ---- | M] () -- C:\Iwan_Lebiediew.ini
[2009-08-13 20:10:02 | 000,001,233 | ---- | M] () -- C:\Marco_Buccini.ini
[2010-01-17 00:04:52 | 004,194,322 | ---- | M] () -- C:\memory_map.tga
[2009-06-17 18:49:20 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010-01-09 11:54:27 | 002,111,769 | ---- | M] () -- C:\new.amx
[2008-04-15 14:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2008-04-15 14:00:00 | 000,251,152 | RHS- | M] () -- C:\ntldr
[2010-06-23 10:28:21 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys
[2009-08-10 18:12:06 | 000,001,232 | ---- | M] () -- C:\Patrick_Torres.ini
[2009-09-30 16:44:03 | 000,000,000 | ---- | M] () -- C:\pcconf.ini
[2009-09-30 16:44:03 | 000,000,000 | ---- | M] () -- C:\pcwords.dat
[2009-09-30 16:44:03 | 000,000,000 | ---- | M] () -- C:\pcwords2.dat
[2009-09-30 16:44:03 | 000,000,000 | ---- | M] () -- C:\pc_sign.slf
[2010-01-10 17:39:57 | 001,887,808 | ---- | M] () -- C:\prp.amx
[2009-06-17 19:00:52 | 000,001,519 | ---- | M] () -- C:\RHDSetup.log
[2010-01-09 20:11:37 | 001,706,734 | ---- | M] () -- C:\RLLS.amx
[2010-01-08 20:05:15 | 000,000,000 | ---- | M] () -- C:\RP.amx
[2010-01-08 22:42:57 | 002,557,272 | ---- | M] () -- C:\RPPL611s.amx
[2009-12-28 00:27:49 | 001,234,133 | ---- | M] () -- C:\SanFierroRolePlay.amx
[2010-06-23 10:40:20 | 000,005,572 | ---- | M] () -- C:\service.log
[2009-08-24 20:46:00 | 000,001,233 | ---- | M] () -- C:\Titon_Wanton.ini
[2010-06-21 19:08:03 | 000,167,940 | -H-- | M] () -- C:\treeinfo.wc
[2009-08-09 21:34:00 | 000,005,916 | ---- | M] () -- C:\vactions.amx
[2009-08-10 18:09:56 | 000,001,233 | ---- | M] () -- C:\Yakuzo_Akuaj.ini
[2010-05-20 14:08:33 | 000,007,895 | ---- | M] () -- C:\zombiemod.amx


[color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
[2008-04-15 14:00:00 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys

[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2008-04-15 14:00:00 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\dllcache\atapi.sys
[2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2008-04-15 14:00:00 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0005\DriverFiles\i386\atapi.sys

[color=#A23BEC]< MD5 for: BEEP.SYS >[/color]
[2008-04-15 14:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys
[2008-04-15 14:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys

[color=#A23BEC]< MD5 for: CDROM.SYS >[/color]
[2008-04-15 14:00:00 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008-04-15 14:00:00 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys

[color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color]
[2008-04-15 14:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\dllcache\eventlog.dll
[2008-04-15 14:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\eventlog.dll
[2009-06-25 16:04:32 | 000,001,536 | ---- | M] () MD5=8D4CD834292293F4055BAC313268E2DE -- C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\lib\eventlog.dll

[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]
[2008-04-15 14:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\dllcache\ndis.sys
[2008-04-15 14:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2008-04-15 14:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\dllcache\winlogon.exe
[2008-04-15 14:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\winlogon.exe

[color=#E56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 487 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:05EE1EEF
@Alternate Data Stream - 123 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:1CA73D29
@Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:E66C08A1
< End of report >[/log]

Raport z Malwarebytes' Anti-Malware

[log]Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Wersja bazy: 4052

Windows 5.1.2600 Dodatek Service Pack 3
Internet Explorer 6.0.2900.5512

2010-06-23 12:09:20
mbam-log-2010-06-23 (12-09-20).txt

Typ skanowania: Pełne skanowanie (C:\|E:\|F:\|)
Przeskanowano obiektów: 338869
Upłynęło: 1 godzin(y), 29 minut(y), 44 sekund(y)

Zainfekowanych procesów w pamięci: 0
Zainfekowanych modułów w pamięci: 0
Zainfekowanych kluczy rejestru: 0
Zainfekowanych wartości rejestru: 0
Zainfekowane informacje rejestru systemowego: 0
Zainfekowanych folderów: 0
Zainfekowanych plików: 1

Zainfekowanych procesów w pamięci:
(Nie znaleziono zagrożeń)

Zainfekowanych modułów w pamięci:
(Nie znaleziono zagrożeń)

Zainfekowanych kluczy rejestru:
(Nie znaleziono zagrożeń)

Zainfekowanych wartości rejestru:
(Nie znaleziono zagrożeń)

Zainfekowane informacje rejestru systemowego:
(Nie znaleziono zagrożeń)

Zainfekowanych folderów:
(Nie znaleziono zagrożeń)

Zainfekowanych plików:
C:\WINDOWS\system32\h@tkeysh@@k.dll (Trojan.Agent) -> Quarantined and deleted successfully.
[/log]

Już wszystko dobrze, wielkie dzięki za pomoc.

Mateusz J.
komentarz
komentarz

[code][2010-06-23 10:32:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Dane aplikacji\Search Settings
[2010-06-23 10:32:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\aa\Dane aplikacji\Dealio[/code]Usuń te dwa foldery ręcznie.

W OTL użyj opcji CleanUP.

Czysto.

Cabeza
komentarz
komentarz

Zrobione, dzięki.

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.