Bryant24 utworzono 26 sierpnia 2010 utworzono 26 sierpnia 2010 Witam posiadam internet 1mb/s i mam pewien problem mianowicie internet zaczął mi wolniej chodzić filmiki na youtube długo się buforują i mam wolny transfer gdy pobieram jakieś 20kb/s wcześniej miałem około 120kb/s POMÓŻCIE!
Bryant24 komentarz 27 sierpnia 2010 Autor komentarz 27 sierpnia 2010 posiadam osiedlówke a i jeszcze jedno to na pewno wina komputera bo jak podłączyłem drugi komputer to wszystko było normalnie.ktoś pomoże ? ;/
Tomek01 komentarz 27 sierpnia 2010 komentarz 27 sierpnia 2010 Wrzuć logi OTL i RSIT zgodnie z zasadami forum. Info: [b]Regulamin[/b].
Bryant24 komentarz 27 sierpnia 2010 Autor komentarz 27 sierpnia 2010 (edytowane) [log]OTL logfile created on: 2010-08-27 17:25:28 - Run 2 OTL by OldTimer - Version 3.2.10.0 Folder = C:\Documents and Settings\Administrator\Moje dokumenty\Downloads Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.2180) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 44,00% Memory free 3,00 Gb Paging File | 3,00 Gb Available in Paging File | 78,00% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 37,57 Gb Total Space | 12,33 Gb Free Space | 32,83% Space Free | Partition Type: NTFS Drive D: | 97,65 Gb Total Space | 90,13 Gb Free Space | 92,29% Space Free | Partition Type: NTFS Drive E: | 97,65 Gb Total Space | 97,57 Gb Free Space | 99,92% Space Free | Partition Type: NTFS F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: USER-CD76208F36 Current User Name: Administrator Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: On Skip Microsoft Files: On File Age = 60 Days Output = Standard [color=#E56717]========== Processes (All) ==========[/color] PRC - [2010-08-26 23:31:41 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Moje dokumenty\Downloads\OTL.exe PRC - [2010-07-23 00:02:16 | 000,945,720 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe PRC - [2010-03-18 11:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe PRC - [2009-09-07 09:24:36 | 000,923,208 | ---- | M] (G Data Software AG) -- C:\Program Files\G Data\AntiVirus\AVKTray\AVKTray.exe PRC - [2009-08-24 13:17:42 | 001,045,576 | ---- | M] (G DATA Software AG) -- C:\Program Files\Common Files\G DATA\AVKProxy\AVKProxy.exe PRC - [2009-08-24 13:17:42 | 000,397,896 | ---- | M] (G Data Software AG) -- C:\Program Files\G Data\AntiVirus\AVK\AVKService.exe PRC - [2009-08-06 20:24:06 | 000,053,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe PRC - [2009-07-30 12:33:30 | 001,244,760 | ---- | M] (G Data Software AG) -- C:\Program Files\G Data\AntiVirus\AVK\AVKWCtl.exe PRC - [2009-07-27 03:03:58 | 000,300,616 | ---- | M] (G Data Software AG) -- C:\Program Files\Common Files\G DATA\GDScan\GDScan.exe PRC - [2009-07-17 20:56:42 | 000,152,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe PRC - [2009-02-09 12:10:45 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe PRC - [2009-02-06 18:39:29 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvse.exe PRC - [2007-06-15 03:50:10 | 000,479,232 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe PRC - [2006-07-03 15:22:58 | 000,049,152 | ---- | M] (Alpha Networks Inc.) -- C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe PRC - [2005-01-28 14:44:28 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wdfmgr.exe PRC - [2004-08-04 00:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe PRC - [2004-08-04 00:44:30 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapsrv.exe PRC - [2004-08-04 00:44:30 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscntfy.exe PRC - [2004-08-04 00:44:28 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe PRC - [2004-08-04 00:44:28 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS] PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE] PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS] PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [IMGSVC] PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH] PRC - [2004-08-04 00:44:28 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [AKAMAI] PRC - [2004-08-04 00:44:22 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe PRC - [2004-08-04 00:44:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2004-08-04 00:44:20 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe PRC - [2004-08-04 00:44:18 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2010-08-26 23:31:41 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Moje dokumenty\Downloads\OTL.exe MOD - [2010-04-16 17:37:04 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll MOD - [2009-06-25 10:48:08 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll MOD - [2009-04-15 17:18:19 | 000,584,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll MOD - [2009-03-21 16:21:24 | 001,014,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll MOD - [2009-02-09 12:22:08 | 000,686,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll MOD - [2009-02-09 12:22:06 | 000,722,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll MOD - [2008-10-23 15:01:37 | 000,283,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll MOD - [2008-07-03 15:16:27 | 008,483,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll MOD - [2004-08-04 00:44:32 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv MOD - [2004-08-04 00:44:14 | 000,729,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\userenv.dll MOD - [2004-08-04 00:44:14 | 000,578,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll MOD - [2004-08-04 00:44:14 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll MOD - [2004-08-04 00:44:14 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll MOD - [2004-08-04 00:44:12 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll MOD - [2004-08-04 00:44:10 | 000,996,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll MOD - [2004-08-04 00:44:10 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll MOD - [2004-08-04 00:44:08 | 001,281,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll MOD - [2004-08-04 00:44:08 | 000,553,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll MOD - [2004-08-04 00:44:08 | 000,083,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll MOD - [2004-08-04 00:44:06 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll MOD - [2004-08-04 00:44:00 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imm32.dll MOD - [2004-08-04 00:43:58 | 000,185,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll MOD - [2004-08-04 00:43:56 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll MOD - [2004-08-04 00:43:56 | 000,279,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll MOD - [2004-08-04 00:43:54 | 000,501,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll MOD - [2004-08-04 00:43:54 | 000,126,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\apphelp.dll MOD - [2004-08-04 00:42:58 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTFIME.IME MOD - [2004-08-04 00:42:34 | 001,050,624 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll MOD - [2004-08-03 23:01:18 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Disabled | Stopped] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ) SRV - File not found [Disabled | Stopped] -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc) SRV - File not found [Auto | Stopped] -- -- (AVTasks2) SRV - [2010-08-19 09:18:21 | 002,854,488 | ---- | M] () [Auto | Running] -- c:\Program Files\Common Files\Akamai\rswin_3745.dll -- (Akamai) SRV - [2010-03-18 11:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) [Auto | Running] -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon) SRV - [2009-12-01 20:43:02 | 000,051,384 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_Helper.dll -- (getPlusHelper) getPlus(R) SRV - [2009-08-24 13:17:42 | 001,045,576 | ---- | M] (G DATA Software AG) [Auto | Running] -- C:\Program Files\Common Files\G DATA\AVKProxy\AVKProxy.exe -- (AVKProxy) SRV - [2009-08-24 13:17:42 | 000,397,896 | ---- | M] (G Data Software AG) [Auto | Running] -- C:\Program Files\G Data\AntiVirus\AVK\AVKService.exe -- (AVKService) SRV - [2009-07-30 12:33:30 | 001,244,760 | ---- | M] (G Data Software AG) [Auto | Running] -- C:\Program Files\G Data\AntiVirus\AVK\AVKWCtl.exe -- (AVKWCtl) SRV - [2009-07-27 03:03:58 | 000,300,616 | ---- | M] (G Data Software AG) [On_Demand | Running] -- C:\Program Files\Common Files\G DATA\GDScan\GDScan.exe -- (GDScan) SRV - [2006-07-03 15:22:58 | 000,049,152 | ---- | M] (Alpha Networks Inc.) [Auto | Running] -- C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe -- (ANIWZCSdService) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\EagleNT.sys -- (EagleNT) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\catchme.sys -- (catchme) DRV - [2010-08-27 14:00:19 | 000,068,976 | ---- | M] (G Data Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\GRD.sys -- (GRD) DRV - [2010-08-27 13:57:12 | 000,053,320 | ---- | M] (G Data Software AG) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\MiniIcpt.sys -- (GDMnIcpt) DRV - [2010-08-27 13:57:03 | 000,051,784 | ---- | M] (G DATA Software AG) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\GDTdiIcpt.sys -- (GDTdiInterceptor) DRV - [2010-08-27 13:57:02 | 000,034,632 | ---- | M] (G Data Software AG) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HookCentre.sys -- (HookCentre) DRV - [2010-08-27 13:56:41 | 000,027,720 | ---- | M] (G Data Software AG) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\GDBehave.sys -- (GDBehave) DRV - [2010-03-17 10:31:25 | 000,691,696 | ---- | M] (Duplex Secure Ltd.) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd) DRV - [2010-02-03 15:56:56 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi) DRV - [2009-02-17 16:55:54 | 005,026,816 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2009-01-06 11:04:17 | 000,015,600 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\gdrv.sys -- (gdrv) DRV - [2008-08-05 20:10:12 | 001,684,736 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt) DRV - [2007-06-28 13:46:42 | 000,020,480 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus) DRV - [2007-06-28 13:46:40 | 000,045,824 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD) DRV - [2007-06-15 03:58:54 | 002,301,440 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag) DRV - [2006-12-28 18:44:44 | 000,084,992 | R--- | M] (ATI Research Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtiHdAud.sys -- (HdAudAddService) DRV - [2006-06-19 00:51:32 | 000,043,520 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8) DRV - [2006-01-04 15:41:48 | 001,389,056 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt) DRV - [2005-12-11 11:55:38 | 000,028,195 | ---- | M] (Alpha Networks Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\ANIO.sys -- (ANIO) DRV - [2005-11-03 20:39:02 | 000,245,504 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Dr71WU.sys -- (RT73) DRV - [2005-01-07 18:07:18 | 000,138,752 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Hdaudbus.sys -- (HDAudBus) DRV - [2004-10-15 12:50:20 | 000,015,295 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\BrScnUsb.sys -- (BrScnUsb) DRV - [2004-08-03 23:03:36 | 000,088,448 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkipx.sys -- (NwlnkIpx) DRV - [2004-08-03 22:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Sterownik NT karty Realtek RTL8139(A/B/C) DRV - [2001-08-17 21:54:18 | 000,063,232 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnknb.sys -- (NwlnkNb) DRV - [2001-08-17 21:54:18 | 000,055,936 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkspx.sys -- (NwlnkSpx) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-789336058-1454471165-839522115-500\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.flashget.com/ IE - HKU\S-1-5-21-789336058-1454471165-839522115-500\..\URLSearchHook: {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\Program Files\Crawler\Toolbar\ctbr.dll (Crawler.com) IE - HKU\S-1-5-21-789336058-1454471165-839522115-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultenginename: "Crawler Search" FF - prefs.js..browser.search.defaulturl: "http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampie7&query=" FF - prefs.js..browser.search.order.1: "Crawler Search" FF - prefs.js..browser.search.selectedEngine: "" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "http://www.ask.com/web?&o=13799&l=dis&q=" FF - prefs.js..extensions.enabledItems: {AAF6454A-4000-4015-84C1-6CD844C06B19}:1.0 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {0b38152b-1b20-484d-a11f-5e04a9b0661f}:5.6.12.1 FF - prefs.js..extensions.enabledItems: {4B3803EA-5230-4DC3-A7FC-33638F3D3542}:1.3 FF - prefs.js..extensions.enabledItems: {9AA46F4F-4DC7-4c06-97AF-5035170633FE}:20.1.0.4 FF - prefs.js..keyword.URL: "http://www.crawler.com/search/dispatcher.aspx?tp=aus&tbid=60347&qkw=" FF - HKLM\software\mozilla\Firefox\Extensions\\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}: C:\Program Files\Crawler\Toolbar\firefox\ [2010-08-26 12:18:37 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-08-25 13:13:39 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-08-25 11:36:00 | 000,000,000 | ---D | M] [2010-07-31 21:38:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Extensions [2010-08-27 14:55:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\rnp6zkle.default\extensions [2010-08-25 16:18:51 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\rnp6zkle.default\extensions\{0329E7D6-6F54-462D-93F6-F5C3118BADF2} [2010-08-01 09:57:34 | 000,000,000 | ---D | M] (Winamp Toolbar) -- C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\rnp6zkle.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f} [2010-07-31 22:01:46 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\rnp6zkle.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-07-31 21:38:14 | 000,009,927 | ---- | M] () -- C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\rnp6zkle.default\searchplugins\IObitBar.xml [2010-08-01 09:59:23 | 000,001,196 | ---- | M] () -- C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\rnp6zkle.default\searchplugins\winamp-search.xml [2010-08-27 14:55:53 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010-08-27 13:56:45 | 000,000,000 | ---D | M] (G Data WebFilter) -- C:\Program Files\Mozilla Firefox\extensions\{9AA46F4F-4DC7-4c06-97AF-5035170633FE} [2010-04-07 11:03:08 | 000,000,000 | ---D | M] (QuestService) -- C:\Program Files\Mozilla Firefox\extensions\{AAF6454A-4000-4015-84C1-6CD844C06B19} [2009-05-29 22:49:04 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\arcabit@www.arcabit.pl [2009-07-16 18:23:24 | 000,873,976 | ---- | M] (Ganymede Technologies) -- C:\Program Files\Mozilla Firefox\plugins\NPCARDS.dll [2009-08-03 16:07:42 | 000,373,104 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\plugins\npOGAPlugin.dll [2009-08-27 18:36:42 | 000,591,352 | ---- | M] (Ganymede Technologies) -- C:\Program Files\Mozilla Firefox\plugins\NPROULETTE.dll [2009-08-31 14:10:22 | 000,550,400 | ---- | M] (Ganymede Technologies) -- C:\Program Files\Mozilla Firefox\plugins\NPSLOTS70.dll [2009-08-31 14:11:40 | 000,620,016 | ---- | M] (Ganymede Technologies) -- C:\Program Files\Mozilla Firefox\plugins\NPSOCCER.dll [2010-07-12 18:33:56 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npwachk.dll [2010-07-23 02:41:44 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2009-09-21 12:24:16 | 000,001,329 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\crawlersrch.xml [2010-07-23 02:41:44 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-07-23 02:41:44 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-07-23 02:41:44 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-07-23 02:41:44 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-07-23 02:41:44 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2010-08-26 17:30:19 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (G Data WebFilter) - {0124123D-61B4-456f-AF86-78C53A0790C5} - C:\Program Files\G Data\AntiVirus\Webfilter\AvkWebIE.dll (G Data Software AG) O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: () - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\Program Files\Crawler\Toolbar\ctbr.dll (Crawler.com) O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask) O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\Administrator\Dane aplikacji\Nowe Gadu-Gadu\_userdata\ggbho.1.dll (GG Network S.A.) O2 - BHO: (no name) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - No CLSID value found. O3 - HKLM\..\Toolbar: (G Data WebFilter) - {0124123D-61B4-456f-AF86-78C53A0790C5} - C:\Program Files\G Data\AntiVirus\Webfilter\AvkWebIE.dll (G Data Software AG) O3 - HKLM\..\Toolbar: (Pasek &Crawler) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\Program Files\Crawler\Toolbar\ctbr.dll (Crawler.com) O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask) O3 - HKU\S-1-5-21-789336058-1454471165-839522115-500\..\Toolbar\WebBrowser: (Pasek &Crawler) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\Program Files\Crawler\Toolbar\ctbr.dll (Crawler.com) O3 - HKU\S-1-5-21-789336058-1454471165-839522115-500\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask) O4 - HKLM..\Run: [G DATA AntiVirus Trayapplication] C:\Program Files\G Data\AntiVirus\AVKTray\AVKTray.exe (G Data Software AG) O4 - HKU\S-1-5-21-789336058-1454471165-839522115-500..\Run: [Gadu-Gadu 10] C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.) O4 - HKU\S-1-5-21-789336058-1454471165-839522115-500..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe File not found O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-789336058-1454471165-839522115-500\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-21-789336058-1454471165-839522115-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKU\S-1-5-21-789336058-1454471165-839522115-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-21-789336058-1454471165-839522115-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O9 - Extra Button: ArcaVir >> - {40525A66-DB98-480D-BCF9-7AF88C1AF438} - Reg Error: Key error. File not found O9 - Extra 'Tools' menuitem : ArcaVir >> - {40525A66-DB98-480D-BCF9-7AF88C1AF438} - Reg Error: Key error. File not found O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation) O16 - DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} https://oas.support.microsoft.com/ActiveX/MSDcode.cab (Microsoft Data Collection Control) O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool) O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O18 - Protocol\Handler\tbr {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\Program Files\Crawler\Toolbar\ctbr.dll (Crawler.com) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O30 - LSA: Authentication Packages - (nwprovau) - C:\WINDOWS\System32\nwprovau.dll (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009-01-06 10:52:24 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = ComFile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2010-08-27 14:00:19 | 000,068,976 | ---- | C] (G Data Software) -- C:\WINDOWS\System32\drivers\GRD.sys [2010-08-27 13:57:12 | 000,053,320 | ---- | C] (G Data Software AG) -- C:\WINDOWS\System32\drivers\MiniIcpt.sys [2010-08-27 13:57:03 | 000,051,784 | ---- | C] (G DATA Software AG) -- C:\WINDOWS\System32\drivers\GDTdiIcpt.sys [2010-08-27 13:57:02 | 000,034,632 | ---- | C] (G Data Software AG) -- C:\WINDOWS\System32\drivers\HookCentre.sys [2010-08-27 13:56:41 | 000,027,720 | ---- | C] (G Data Software AG) -- C:\WINDOWS\System32\drivers\GDBehave.sys [2010-08-27 13:56:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\G DATA [2010-08-27 13:56:11 | 000,000,000 | ---D | C] -- C:\Program Files\G Data [2010-08-27 13:56:11 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\G DATA [2010-08-26 23:38:59 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Sidebar [2010-08-26 23:04:05 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator\Recent [2010-08-26 22:15:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Lavasoft [2010-08-26 20:21:48 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2010-08-26 20:21:47 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2010-08-26 20:21:47 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2010-08-26 20:04:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Pulpit\avz4 [2010-08-26 19:40:59 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner [2010-08-26 19:40:50 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2010-08-26 16:22:20 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro [2010-08-26 12:18:23 | 000,000,000 | ---D | C] -- C:\Program Files\Crawler [2010-08-26 11:38:04 | 000,000,000 | ---D | C] -- C:\!KillBox [2010-08-26 11:24:18 | 000,000,000 | ---D | C] -- C:\Program Files\AA Antimalware [2010-08-25 16:17:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\DoctorWeb [2010-08-25 16:12:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data [2010-08-25 16:11:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\SpeedBit [2010-08-25 13:35:24 | 000,000,000 | ---D | C] -- C:\Program Files\jv16 PowerTools 2010 [2010-08-25 13:13:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\FlashGet [2010-08-25 12:53:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Malwarebytes [2010-08-25 12:52:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes [2010-08-25 11:39:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Media Player Classic [2010-08-25 11:35:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Real [2010-08-23 15:35:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\IObit [2010-08-23 15:35:28 | 000,000,000 | ---D | C] -- C:\Program Files\IObit [2010-08-23 12:44:39 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight [2010-08-23 11:29:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Nowe Gadu-Gadu [2010-08-23 11:25:43 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu 10 [2010-08-21 15:57:20 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp Detect [2010-08-21 15:56:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Winamp [2010-08-20 22:36:14 | 000,000,000 | -H-D | C] -- C:\WINDOWS\System32\GroupPolicy [2010-08-19 12:43:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Auslogics [2010-08-19 09:49:51 | 000,000,000 | ---D | C] -- C:\Program Files\Raccoonworks [2010-08-19 09:49:48 | 000,796,672 | ---- | C] (Qsc) -- C:\WINDOWS\GPInstall.exe [2010-08-17 11:12:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\GlarySoft [2010-08-16 15:18:52 | 000,000,000 | ---D | C] -- C:\Program Files\Raxco [2010-08-15 00:20:22 | 000,000,000 | ---D | C] -- C:\Program Files\Defraggler [2010-08-12 07:19:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Pulpit\Elyr+Yitian2 [2010-08-12 06:55:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Pulpit\pack [2010-08-12 06:48:16 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Pulpit\masz dzialac [2010-08-06 22:54:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Spybot - Search & Destroy [2010-08-04 10:31:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Ares [2010-08-03 16:19:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\VS Revo Group [2010-08-03 00:17:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\WinRAR [2010-08-02 22:11:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles [2010-08-02 22:02:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\SpeedUpMyPC [2010-08-02 22:02:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Przyspiesz_Komputer [2010-08-01 14:29:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Moje dokumenty\Downloads [2010-08-01 14:21:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Temp [2010-08-01 14:21:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google [2010-08-01 09:41:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Sun [2010-07-31 21:45:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\2K Sports [2010-07-31 21:42:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Moje dokumenty\Pobieranie [2010-07-31 21:37:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Mozilla [2010-07-31 21:37:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla [2010-07-31 20:38:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\cache [2010-07-31 20:31:20 | 000,000,000 | RHSD | C] -- C:\cmdcons [2010-07-31 20:28:41 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe [2010-07-31 20:28:41 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe [2010-07-31 20:28:41 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe [2010-07-31 20:28:41 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe [2010-07-31 20:28:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT [2010-07-31 20:25:42 | 000,000,000 | ---D | C] -- C:\Qoobox [2010-07-31 20:21:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Macromedia [2010-07-31 20:20:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Adobe [2010-07-31 20:20:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Gadu-Gadu 10 [2010-07-31 20:20:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Toolbar4 [2010-07-31 20:20:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\AskToolbar [2010-07-31 20:18:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Identities [2010-07-31 20:17:39 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Moje dokumenty\Moje obrazy [2010-07-31 20:17:39 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Moje dokumenty\Moja muzyka [2010-07-31 20:17:27 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Administrator\Cookies [2010-07-31 20:17:26 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Administrator\Dane aplikacji\Microsoft [2010-07-31 20:17:26 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator\SendTo [2010-07-31 20:17:26 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator\Dane aplikacji [2010-07-31 20:17:26 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Ulubione [2010-07-31 20:17:26 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Moje dokumenty [2010-07-31 20:17:26 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Menu Start [2010-07-31 20:17:26 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator\Ustawienia lokalne [2010-07-31 20:17:26 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator\Szablony [2010-07-31 20:17:26 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator\PrintHood [2010-07-31 20:17:26 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator\NetHood [2010-07-31 20:17:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Pulpit [2010-07-31 20:17:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-07-26 19:07:12 | 000,000,000 | ---D | C] -- C:\Program Files\Ask.com [2010-07-26 19:04:02 | 000,000,000 | ---D | C] -- C:\Program Files\ToniArts [2010-07-24 12:06:11 | 000,000,000 | ---D | C] -- C:\Program Files\A4K12 JoyPad Driver [2010-07-24 11:58:13 | 000,000,000 | ---D | C] -- C:\Program Files\Twin Shock GamePad [2010-07-23 18:01:39 | 000,000,000 | ---D | C] -- C:\Program Files\Lavalys [2010-07-23 11:55:15 | 000,290,816 | ---- | C] (Realtek Semiconductor Crop.) -- C:\WINDOWS\vncutil.exe [2010-07-23 11:55:14 | 000,104,992 | ---- | C] (Realtek Semiconductor) -- C:\WINDOWS\RtkAudioService.exe [2010-07-23 11:55:12 | 002,808,832 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE [2010-07-23 11:55:12 | 001,684,736 | ---- | C] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys [2010-07-23 11:42:15 | 000,020,992 | ---- | C] (Realtek Semiconductor Corporation) -- C:\WINDOWS\System32\drivers\RTL8139.sys [2010-07-23 11:42:15 | 000,020,992 | ---- | C] (Realtek Semiconductor Corporation) -- C:\WINDOWS\System32\dllcache\rtl8139.sys [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2010-08-27 17:20:32 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-08-27 17:19:51 | 000,000,276 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-789336058-1454471165-839522115-1003.job [2010-08-27 17:19:50 | 000,000,294 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-789336058-1454471165-839522115-500.job [2010-08-27 17:19:45 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010-08-27 17:19:41 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-08-27 15:06:42 | 002,097,152 | ---- | M] () -- C:\Documents and Settings\Administrator\NTUSER.DAT [2010-08-27 15:06:42 | 000,000,292 | -HS- | M] () -- C:\Documents and Settings\Administrator\ntuser.ini [2010-08-27 15:06:34 | 002,258,166 | -H-- | M] () -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010-08-27 15:01:00 | 000,000,232 | ---- | M] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job [2010-08-27 14:26:00 | 000,001,112 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-789336058-1454471165-839522115-500Core.job [2010-08-27 14:00:19 | 000,068,976 | ---- | M] (G Data Software) -- C:\WINDOWS\System32\drivers\GRD.sys [2010-08-27 13:57:12 | 000,053,320 | ---- | M] (G Data Software AG) -- C:\WINDOWS\System32\drivers\MiniIcpt.sys [2010-08-27 13:57:03 | 000,051,784 | ---- | M] (G DATA Software AG) -- C:\WINDOWS\System32\drivers\GDTdiIcpt.sys [2010-08-27 13:57:03 | 000,001,710 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\G Data AntiVirus.lnk [2010-08-27 13:57:02 | 000,034,632 | ---- | M] (G Data Software AG) -- C:\WINDOWS\System32\drivers\HookCentre.sys [2010-08-27 13:56:41 | 000,027,720 | ---- | M] (G Data Software AG) -- C:\WINDOWS\System32\drivers\GDBehave.sys [2010-08-27 13:08:37 | 000,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job [2010-08-26 23:19:22 | 000,000,318 | -H-- | M] () -- C:\aaw7boot.cmd [2010-08-26 20:21:50 | 000,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk [2010-08-26 19:41:00 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\Administrator\Pulpit\CCleaner.lnk [2010-08-26 19:36:55 | 000,001,709 | ---- | M] () -- C:\Documents and Settings\Administrator\Pulpit\Dokonaj zakupu RegSupreme Pro.lnk [2010-08-26 19:36:47 | 000,000,023 | -HS- | M] () -- C:\WINDOWS\System32\cadbe_d.dll [2010-08-26 19:36:47 | 000,000,023 | ---- | M] () -- C:\WINDOWS\System32\dedffffa8_d.ocx [2010-08-26 17:30:26 | 000,000,246 | ---- | M] () -- C:\WINDOWS\system.ini [2010-08-26 17:30:19 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts [2010-08-26 17:12:28 | 003,828,374 | R--- | M] () -- C:\Documents and Settings\Administrator\Moje dokumenty\ComboFix.exe [2010-08-26 16:22:22 | 000,001,996 | ---- | M] () -- C:\Documents and Settings\Administrator\Pulpit\HiJackThis.lnk [2010-08-26 16:14:29 | 000,000,414 | RHS- | M] () -- C:\Documents and Settings\All Users\ntuser.pol [2010-08-25 19:57:28 | 000,000,608 | ---- | M] () -- C:\WINDOWS\win.ini [2010-08-25 19:57:28 | 000,000,317 | RHS- | M] () -- C:\boot.ini [2010-08-25 13:13:50 | 000,000,025 | ---- | M] () -- C:\WINDOWS\libem.INI [2010-08-25 12:37:00 | 000,000,302 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-789336058-1454471165-839522115-500.job [2010-08-24 07:47:56 | 000,000,230 | ---- | M] () -- C:\WINDOWS\System32\spupdsvc.inf [2010-08-23 15:35:32 | 000,000,745 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Switch to Gaming Mode.lnk [2010-08-23 15:35:32 | 000,000,737 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Game Booster.lnk [2010-08-23 11:26:09 | 000,000,762 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk [2010-08-21 15:57:21 | 000,000,654 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk [2010-08-21 14:58:13 | 001,089,712 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010-08-21 14:58:13 | 000,493,844 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2010-08-21 14:58:13 | 000,435,396 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010-08-21 14:58:13 | 000,085,136 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2010-08-21 14:58:13 | 000,068,292 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010-08-21 13:40:11 | 000,000,459 | ---- | M] () -- C:\Documents and Settings\Administrator\Moje dokumenty\FIX.REG [2010-08-19 09:49:48 | 000,796,672 | ---- | M] (Qsc) -- C:\WINDOWS\GPInstall.exe [2010-08-17 11:01:47 | 002,097,152 | -H-- | M] () -- C:\Documents and Settings\Administrator\NTUSER.DAT.rcbak [2010-08-16 20:13:58 | 000,004,608 | ---- | M] () -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-08-15 11:52:33 | 000,285,065 | ---- | M] () -- C:\Documents and Settings\Administrator\Pulpit\kobe-bryant-bringit.jpg [2010-08-15 00:20:23 | 000,001,580 | ---- | M] () -- C:\Documents and Settings\Administrator\Pulpit\Defraggler.lnk [2010-08-14 22:14:34 | 006,471,638 | ---- | M] () -- C:\Documents and Settings\Administrator\Moje dokumenty\11-youngbloodz-imma_shine(2)(1).mp3 [2010-08-14 22:14:26 | 007,971,827 | ---- | M] () -- C:\Documents and Settings\Administrator\Moje dokumenty\Three 6 Mafia Ft. Kaleena - Shake My Ass.mp3 [2010-08-14 22:14:17 | 003,630,857 | ---- | M] () -- C:\Documents and Settings\Administrator\Moje dokumenty\stanky-legg_hq.mp3 [2010-08-14 22:14:00 | 003,811,027 | ---- | M] () -- C:\Documents and Settings\Administrator\Moje dokumenty\pitbull - private dancer ( 2oo8 ) ;d.mp3 [2010-08-14 22:13:55 | 003,671,494 | ---- | M] () -- C:\Documents and Settings\Administrator\Moje dokumenty\Drake - Juice www.gowherehiphop.com.mp3 [2010-08-14 22:13:48 | 004,857,420 | ---- | M] () -- C:\Documents and Settings\Administrator\Moje dokumenty\Game_Ft_50_Cent_-_This_Is_How_We_Do(1).mp3 [2010-08-14 22:13:38 | 008,133,802 | ---- | M] () -- C:\Documents and Settings\Administrator\Moje dokumenty\Tay Jasper - Test Drive (Prod. by Ric-Gip).mp3 [2010-08-14 22:13:23 | 007,735,632 | ---- | M] () -- C:\Documents and Settings\Administrator\Moje dokumenty\Ray Rizzy Ft Trina_ Paul Wall_ Nelly_ Gorilla Zoe_ B.G._ Jay Money _ Pat Pimp- Flip Sumn _Remix_ www.hiphopearly.com.mp3 [2010-08-14 22:13:15 | 008,454,988 | ---- | M] () -- C:\Documents and Settings\Administrator\Moje dokumenty\Kevin Cossom - I Get Paper (feat. Drake)(Prod. By Boi1Da)_Digitaldripped.com.mp3 [2010-08-14 22:13:03 | 007,987,680 | ---- | M] () -- C:\Documents and Settings\Administrator\Moje dokumenty\DJ King G - The Game Ft. Mims_ T.I_ Kanye West_ Lupe Fiasco - Hit The Switch _Love Game Remix_.mp3 [2010-08-14 22:12:55 | 006,201,420 | ---- | M] () -- C:\Documents and Settings\Administrator\Moje dokumenty\Young Dro - On Fire.mp3 [2010-08-14 22:12:37 | 005,609,472 | ---- | M] () -- C:\Documents and Settings\Administrator\Moje dokumenty\The Ian Carey Project - Get Shaky.mp3 [2010-08-14 22:12:32 | 003,587,482 | ---- | M] () -- C:\Documents and Settings\Administrator\Moje dokumenty\Mims - Like This(1).mp3 [2010-08-14 22:12:20 | 006,153,227 | ---- | M] () -- C:\Documents and Settings\Administrator\Moje dokumenty\ivan carsten - bumpin' hard (tuneboy remix) [www.MP3-find.eu].mp3 [2010-08-14 22:12:13 | 006,589,377 | ---- | M] () -- C:\Documents and Settings\Administrator\Moje dokumenty\620132.mp3 [2010-08-13 18:21:17 | 000,000,045 | ---- | M] () -- C:\WINDOWS\System32\initdebug.nfo [2010-08-12 19:40:11 | 016,163,837 | ---- | M] () -- C:\Documents and Settings\Administrator\Moje dokumenty\Jason Derulo Ridin' Solo (Dj Smerfikk Remix.).mp3 [2010-08-12 19:39:03 | 008,307,870 | ---- | M] () -- C:\Documents and Settings\Administrator\Moje dokumenty\Jason Derulo - In My Head (Dj Smerfikk. Remix).mp3 [2010-08-12 19:38:55 | 009,988,210 | ---- | M] () -- C:\Documents and Settings\Administrator\Moje dokumenty\Enrique Iglesias Feat Pitbull - I Like It (Dj Smerfikk. Remix).mp3 [2010-08-12 19:38:52 | 016,187,559 | ---- | M] () -- C:\Documents and Settings\Administrator\Moje dokumenty\Kelly Rowland – Commander (Dj Smerfikk. Remix).mp3 [2010-08-12 19:38:34 | 019,582,432 | ---- | M] () -- C:\Documents and Settings\Administrator\Moje dokumenty\Dj Smerfikk Remix.mp3 [2010-08-06 22:50:06 | 000,000,022 | -HS- | M] () -- C:\Documents and Settings\Administrator\Dane aplikacji\Sys6925.Config Collection.sys [2010-08-06 22:50:06 | 000,000,022 | -HS- | M] () -- C:\WINDOWS\Sys3390 SettingsCollection.bin [2010-08-06 22:43:31 | 000,000,421 | ---- | M] () -- C:\WINDOWS\ODBC.INI [2010-08-06 11:18:07 | 000,001,824 | ---- | M] () -- C:\WINDOWS\TSearch.INI [2010-08-05 01:04:10 | 002,506,159 | ---- | M] () -- C:\Documents and Settings\Administrator\Moje dokumenty\Nu Brand ft. Brags - Runway (Dj Smerfikk Remix.).mp3 [2010-08-04 11:56:40 | 003,067,016 | ---- | M] () -- C:\Documents and Settings\Administrator\Moje dokumenty\Nu Brand ft. Brags - Runway (www.TwojaNuta.pl).mp3 [2010-08-01 21:09:21 | 000,000,787 | ---- | M] () -- C:\Documents and Settings\Administrator\Pulpit\EVEREST Ultimate Edition.lnk [2010-08-01 14:24:28 | 000,002,362 | ---- | M] () -- C:\Documents and Settings\Administrator\Pulpit\Google Chrome.lnk [2010-08-01 12:59:51 | 000,045,008 | ---- | M] () -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2010-08-01 09:48:32 | 003,609,109 | ---- | M] () -- C:\Documents and Settings\Administrator\Moje dokumenty\flo rida - r.o.o.t.s (www.TwojaNuta.pl).mp3 [2010-07-31 20:42:49 | 000,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk [2010-07-31 20:21:52 | 000,000,104 | ---- | M] () -- C:\Documents and Settings\Administrator\Pulpit\Mój komputer.lnk [2010-07-31 20:16:46 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-789336058-1454471165-839522115-1003.job [2010-07-23 10:32:32 | 000,201,736 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-08-27 13:57:21 | 000,002,596 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Config.nt.bak [2010-08-27 13:57:21 | 000,001,843 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Autoexec.nt.bak [2010-08-27 13:57:21 | 000,000,027 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\hosts.bak [2010-08-27 13:57:03 | 000,001,710 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\G Data AntiVirus.lnk [2010-08-26 22:46:31 | 000,000,318 | -H-- | C] () -- C:\aaw7boot.cmd [2010-08-26 22:19:49 | 000,000,472 | ---- | C] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job [2010-08-26 20:21:50 | 000,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk [2010-08-26 19:41:00 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\CCleaner.lnk [2010-08-26 19:36:55 | 000,001,709 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\Dokonaj zakupu RegSupreme Pro.lnk [2010-08-26 19:36:47 | 000,000,023 | -HS- | C] () -- C:\WINDOWS\System32\cadbe_d.dll [2010-08-26 19:36:47 | 000,000,023 | ---- | C] () -- C:\WINDOWS\System32\dedffffa8_d.ocx [2010-08-26 17:00:51 | 003,828,374 | R--- | C] () -- C:\Documents and Settings\Administrator\Moje dokumenty\ComboFix.exe [2010-08-26 16:22:22 | 000,001,996 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\HiJackThis.lnk [2010-08-26 16:14:15 | 000,000,414 | RHS- | C] () -- C:\Documents and Settings\All Users\ntuser.pol [2010-08-25 13:13:50 | 000,000,025 | ---- | C] () -- C:\WINDOWS\libem.INI [2010-08-24 07:47:56 | 000,000,230 | ---- | C] () -- C:\WINDOWS\System32\spupdsvc.inf [2010-08-23 15:35:32 | 000,000,737 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Game Booster.lnk [2010-08-23 11:26:09 | 000,000,762 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk [2010-08-21 15:57:21 | 000,000,654 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk [2010-08-21 13:40:11 | 000,000,459 | ---- | C] () -- C:\Documents and Settings\Administrator\Moje dokumenty\FIX.REG [2010-08-17 11:01:32 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\Administrator\NTUSER.DAT.rctemp.LOG [2010-08-16 20:13:56 | 000,004,608 | ---- | C] () -- C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-08-15 11:52:33 | 000,285,065 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\kobe-bryant-bringit.jpg [2010-08-15 00:20:23 | 000,001,580 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\Defraggler.lnk [2010-08-14 22:14:30 | 006,471,638 | ---- | C] () -- C:\Documents and Settings\Administrator\Moje dokumenty\11-youngbloodz-imma_shine(2)(1).mp3 [2010-08-14 22:14:20 | 007,971,827 | ---- | C] () -- C:\Documents and Settings\Administrator\Moje dokumenty\Three 6 Mafia Ft. Kaleena - Shake My Ass.mp3 [2010-08-14 22:14:14 | 003,630,857 | ---- | C] () -- C:\Documents and Settings\Administrator\Moje dokumenty\stanky-legg_hq.mp3 [2010-08-14 22:13:56 | 003,811,027 | ---- | C] () -- C:\Documents and Settings\Administrator\Moje dokumenty\pitbull - private dancer ( 2oo8 ) ;d.mp3 [2010-08-14 22:13:52 | 003,671,494 | ---- | C] () -- C:\Documents and Settings\Administrator\Moje dokumenty\Drake - Juice www.gowherehiphop.com.mp3 [2010-08-14 22:13:44 | 004,857,420 | ---- | C] () -- C:\Documents and Settings\Administrator\Moje dokumenty\Game_Ft_50_Cent_-_This_Is_How_We_Do(1).mp3 [2010-08-14 22:13:33 | 008,133,802 | ---- | C] () -- C:\Documents and Settings\Administrator\Moje dokumenty\Tay Jasper - Test Drive (Prod. by Ric-Gip).mp3 [2010-08-14 22:13:17 | 007,735,632 | ---- | C] () -- C:\Documents and Settings\Administrator\Moje dokumenty\Ray Rizzy Ft Trina_ Paul Wall_ Nelly_ Gorilla Zoe_ B.G._ Jay Money _ Pat Pimp- Flip Sumn _Remix_ www.hiphopearly.com.mp3 [2010-08-14 22:13:09 | 008,454,988 | ---- | C] () -- C:\Documents and Settings\Administrator\Moje dokumenty\Kevin Cossom - I Get Paper (feat. Drake)(Prod. By Boi1Da)_Digitaldripped.com.mp3 [2010-08-14 22:12:58 | 007,987,680 | ---- | C] () -- C:\Documents and Settings\Administrator\Moje dokumenty\DJ King G - The Game Ft. Mims_ T.I_ Kanye West_ Lupe Fiasco - Hit The Switch _Love Game Remix_.mp3 [2010-08-14 22:12:50 | 006,201,420 | ---- | C] () -- C:\Documents and Settings\Administrator\Moje dokumenty\Young Dro - On Fire.mp3 [2010-08-14 22:12:33 | 005,609,472 | ---- | C] () -- C:\Documents and Settings\Administrator\Moje dokumenty\The Ian Carey Project - Get Shaky.mp3 [2010-08-14 22:12:29 | 003,587,482 | ---- | C] () -- C:\Documents and Settings\Administrator\Moje dokumenty\Mims - Like This(1).mp3 [2010-08-14 22:12:16 | 006,153,227 | ---- | C] () -- C:\Documents and Settings\Administrator\Moje dokumenty\ivan carsten - bumpin' hard (tuneboy remix) [www.MP3-find.eu].mp3 [2010-08-14 22:12:09 | 006,589,377 | ---- | C] () -- C:\Documents and Settings\Administrator\Moje dokumenty\620132.mp3 [2010-08-12 19:40:01 | 016,163,837 | ---- | C] () -- C:\Documents and Settings\Administrator\Moje dokumenty\Jason Derulo Ridin' Solo (Dj Smerfikk Remix.).mp3 [2010-08-12 19:38:57 | 008,307,870 | ---- | C] () -- C:\Documents and Settings\Administrator\Moje dokumenty\Jason Derulo - In My Head (Dj Smerfikk. Remix).mp3 [2010-08-12 19:38:46 | 009,988,210 | ---- | C] () -- C:\Documents and Settings\Administrator\Moje dokumenty\Enrique Iglesias Feat Pitbull - I Like It (Dj Smerfikk. Remix).mp3 [2010-08-12 19:38:38 | 016,187,559 | ---- | C] () -- C:\Documents and Settings\Administrator\Moje dokumenty\Kelly Rowland – Commander (Dj Smerfikk. Remix).mp3 [2010-08-12 19:38:21 | 019,582,432 | ---- | C] () -- C:\Documents and Settings\Administrator\Moje dokumenty\Dj Smerfikk Remix.mp3 [2010-08-06 22:50:06 | 000,000,022 | -HS- | C] () -- C:\Documents and Settings\Administrator\Dane aplikacji\Sys6925.Config Collection.sys [2010-08-06 22:50:06 | 000,000,022 | -HS- | C] () -- C:\WINDOWS\Sys3390 SettingsCollection.bin [2010-08-04 22:31:55 | 002,506,159 | ---- | C] () -- C:\Documents and Settings\Administrator\Moje dokumenty\Nu Brand ft. Brags - Runway (Dj Smerfikk Remix.).mp3 [2010-08-04 11:54:11 | 003,067,016 | ---- | C] () -- C:\Documents and Settings\Administrator\Moje dokumenty\Nu Brand ft. Brags - Runway (www.TwojaNuta.pl).mp3 [2010-08-03 00:33:50 | 000,001,824 | ---- | C] () -- C:\WINDOWS\TSearch.INI [2010-08-02 22:10:08 | 000,117,776 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat [2010-08-01 21:09:21 | 000,000,787 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\EVEREST Ultimate Edition.lnk [2010-08-01 14:24:28 | 000,002,362 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\Google Chrome.lnk [2010-08-01 14:21:37 | 000,001,112 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-789336058-1454471165-839522115-500Core.job [2010-08-01 09:45:36 | 003,609,109 | ---- | C] () -- C:\Documents and Settings\Administrator\Moje dokumenty\flo rida - r.o.o.t.s (www.TwojaNuta.pl).mp3 [2010-07-31 21:43:07 | 000,000,745 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Switch to Gaming Mode.lnk [2010-07-31 20:43:16 | 000,000,294 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-789336058-1454471165-839522115-500.job [2010-07-31 20:43:15 | 000,000,302 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-789336058-1454471165-839522115-500.job [2010-07-31 20:42:49 | 000,001,602 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk [2010-07-31 20:31:25 | 000,262,400 | ---- | C] () -- C:\cmldr [2010-07-31 20:28:41 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe [2010-07-31 20:28:41 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe [2010-07-31 20:28:41 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe [2010-07-31 20:28:41 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe [2010-07-31 20:28:41 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe [2010-07-31 20:21:52 | 000,000,104 | ---- | C] () -- C:\Documents and Settings\Administrator\Pulpit\Mój komputer.lnk [2010-07-31 20:17:33 | 000,000,292 | -HS- | C] () -- C:\Documents and Settings\Administrator\ntuser.ini [2010-07-31 20:17:31 | 000,020,480 | -H-- | C] () -- C:\Documents and Settings\Administrator\ntuser.dat.LOG [2010-07-31 20:17:25 | 002,097,152 | -H-- | C] () -- C:\Documents and Settings\Administrator\NTUSER.DAT.rcbak [2010-07-31 20:17:25 | 002,097,152 | ---- | C] () -- C:\Documents and Settings\Administrator\NTUSER.DAT [2010-07-26 19:07:17 | 000,000,232 | ---- | C] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job [2010-06-24 22:15:20 | 000,000,050 | ---- | C] () -- C:\WINDOWS\cdplayer.ini [2009-11-30 17:36:28 | 000,000,095 | ---- | C] () -- C:\WINDOWS\Metin2_spamer.ini [2009-09-18 19:06:49 | 000,000,404 | ---- | C] () -- C:\WINDOWS\BRWMARK.INI [2009-09-18 19:06:49 | 000,000,027 | ---- | C] () -- C:\WINDOWS\BRPP2KA.INI [2009-09-15 21:45:49 | 000,000,030 | ---- | C] () -- C:\WINDOWS\TextSpy.ini [2009-09-14 17:15:10 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\JJAKEn.dll [2009-09-08 20:41:00 | 000,000,144 | ---- | C] () -- C:\WINDOWS\hdkctnts.ini [2009-04-25 17:39:13 | 000,000,894 | ---- | C] () -- C:\WINDOWS\Gfact.ini [2009-02-26 16:04:12 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2009-01-06 12:27:51 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2003-04-08 13:40:22 | 000,005,679 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI [2000-02-02 16:43:37 | 000,005,647 | ---- | C] () -- C:\WINDOWS\System32\HDK3CRYP.DLL [1996-04-03 21:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys [color=#E56717]========== LOP Check ==========[/color] [2010-07-31 21:45:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\2K Sports [2010-08-19 12:43:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\Auslogics [2010-08-25 13:13:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\FlashGet [2010-08-01 16:19:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\Gadu-Gadu 10 [2010-08-17 11:12:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\GlarySoft [2010-08-23 15:35:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\IObit [2010-08-23 11:29:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\Nowe Gadu-Gadu [2010-08-26 14:33:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\Toolbar4 [2010-05-30 10:22:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AlawarWrapper [2009-08-07 00:14:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ArcaBit [2010-04-05 15:57:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CasualForge [2010-03-17 10:31:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite [2009-09-20 18:42:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET [2009-10-28 22:50:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Farm Frenzy [2010-05-16 17:02:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\FarmFrenzy-PizzaParty [2010-08-27 14:00:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\G DATA [2010-04-17 21:39:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2009-09-15 08:11:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Odlotowa Farma [2010-04-05 15:11:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OdlotowaFarma2 [2010-08-06 22:45:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2010-07-23 10:28:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ScanSoft [2010-08-26 14:33:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\SpeedBit [2010-05-21 11:40:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2010-04-05 15:14:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\VirtualFarm [2010-08-25 14:31:57 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{3FBCB668-C0C4-45F3-89F9-93EB868DDA09} [2009-05-29 22:57:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\ArcaBit [2010-08-27 13:08:37 | 000,000,472 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job [2010-08-27 15:15:54 | 000,032,570 | ---- | M] () -- C:\WINDOWS\Tasks\SCHEDLGU.TXT [2010-08-27 15:01:00 | 000,000,232 | ---- | M] () -- C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 136 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:9591C9FE @Alternate Data Stream - 134 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:671329E4[/log] [color="#FF0000"]//Logi wstawiamy w tagi ! //Zmieniam //Tom01[/color]
Tomek01 komentarz 27 sierpnia 2010 komentarz 27 sierpnia 2010 Używałeś Combofix'a i nawet o tym nie wspomniałeś. Jest to niezgodne z zasadami forum nie bez powodu. Można sobie narobić szkód. Wrzuć w takim razie log z Combo. Odinstaluj: Crawler Toolbar, Ask Toolbar, W OTL, w oknie Custom scan/fixes wklej: [code]:Processes Explorer.exe :OTL IE - HKU\S-1-5-21-789336058-1454471165-839522115-500\..\URLSearchHook: {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\Program Files\Crawler\Toolbar\ctbr.dll (Crawler.com) FF - prefs.js..browser.search.defaultenginename: "Crawler Search" FF - prefs.js..browser.search.defaulturl: "http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampie7&query=" FF - prefs.js..browser.search.order.1: "Crawler Search" FF - prefs.js..browser.startup.homepage: "http://www.ask.com/web?&o=13799&l=dis&q=" FF - prefs.js..keyword.URL: "http://www.crawler.com/search/dispatcher.aspx?tp=aus&tbid=60347&qkw=" FF - HKLM\software\mozilla\Firefox\Extensions\\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}: C:\Program Files\Crawler\Toolbar\firefox\ [2010-08-26 12:18:37 | 000,000,000 | ---D | M][2010-08-01 09:57:34 | 000,000,000 | ---D | M] (Winamp Toolbar) -- C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\rnp6zkle.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f} [2010-07-31 21:38:14 | 000,009,927 | ---- | M] () -- C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\rnp6zkle.default\searchplugins\IObitBar.xml [2010-08-01 09:59:23 | 000,001,196 | ---- | M] () -- C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\rnp6zkle.default\searchplugins\winamp-search.xml [2009-09-21 12:24:16 | 000,001,329 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\crawlersrch.xml O2 - BHO: () - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\Program Files\Crawler\Toolbar\ctbr.dll (Crawler.com) O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask) O2 - BHO: (no name) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - No CLSID value found. O3 - HKLM\..\Toolbar: (G Data WebFilter) - {0124123D-61B4-456f-AF86-78C53A0790C5} - C:\Program Files\G Data\AntiVirus\Webfilter\AvkWebIE.dll (G Data Software AG) O3 - HKLM\..\Toolbar: (Pasek &Crawler) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\Program Files\Crawler\Toolbar\ctbr.dll (Crawler.com) O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask) O3 - HKU\S-1-5-21-789336058-1454471165-839522115-500\..\Toolbar\WebBrowser: (Pasek &Crawler) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\Program Files\Crawler\Toolbar\ctbr.dll (Crawler.com) O3 - HKU\S-1-5-21-789336058-1454471165-839522115-500\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)C:\Program Files\Crawler @Alternate Data Stream - 136 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:9591C9FE @Alternate Data Stream - 134 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:671329E4 :Files C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\AskToolbar C:\Program Files\Ask.com C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Config.nt.bak C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Autoexec.nt.bak C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\hosts.bak :Commands [emptytemp] [start explorer] [Reboot][/code] Klikasz run fix, komputer uruchamia się ponownie. Wrzucasz log z usuwania oraz nowe logi OTL i RSIT wklejając je w tagi.
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.