Zit utworzono 28 sierpnia 2010 utworzono 28 sierpnia 2010 Witam Od jakiegoś czasu komputer strasznie mi przymula. Często się lekko przywiesza i ogółem nie chodzi zbyt szybko. Niedawno był formatowany i wszystko było w porządku. Jednak ostatnio w Menedżerze Zadań Windows zaobserwowałem dziwne zjawisko (Screen poniżej, chodzi mi o pozycje z czerwoną kropką). Wcześniej tyle tego nie było (i było napisane raz, może dwa i małą czcionką) i nie ssało tyle procesora. Co może być tego powodem? Jak to pozmieniać/naprawić? Screen: [img]http://img265.imageshack.us/img265/1986/menederzadawindows.png[/img] W moim temacie (http://www.forumpc.pl/index.php?showtopic=173374&st=0&p=1078491&#entry1078491) poradzono mi, bym zrobił skany OTL i RSIT i zamieścił je tutaj. Oto skan OTL.txt: [log]OTL logfile created on: 2010-08-28 20:28:21 - Run 1 OTL by OldTimer - Version 3.2.10.0 Folder = C:\Documents and Settings\USERS\Moje dokumenty\Pobieranie Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.5512) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 511,00 Mb Total Physical Memory | 318,00 Mb Available Physical Memory | 62,00% Memory free 1,00 Gb Paging File | 1,00 Gb Available in Paging File | 88,00% Paging File free Paging file location(s): D:\pagefile.sys 1024 4096 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 39,07 Gb Total Space | 0,73 Gb Free Space | 1,87% Space Free | Partition Type: FAT32 Drive D: | 35,45 Gb Total Space | 8,96 Gb Free Space | 25,26% Space Free | Partition Type: NTFS E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: XXX Current User Name: USERS Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: On Skip Microsoft Files: On File Age = 60 Days Output = Standard [color=#E56717]========== Processes (All) ==========[/color] PRC - [2010-08-28 20:07:46 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\USERS\Moje dokumenty\Pobieranie\OTL.exe PRC - [2010-08-11 20:34:46 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe PRC - [2010-06-28 22:57:18 | 002,837,864 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe PRC - [2010-06-28 22:57:16 | 000,040,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe PRC - [2010-05-14 11:44:46 | 000,248,552 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe PRC - [2010-04-01 11:16:20 | 000,357,696 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe PRC - [2010-01-15 14:49:20 | 000,255,536 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe PRC - [2009-08-06 19:24:06 | 000,053,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe PRC - [2009-02-09 13:25:58 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe PRC - [2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe PRC - [2008-04-14 22:51:44 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe PRC - [2008-04-14 22:51:44 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH] PRC - [2008-04-14 22:51:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe PRC - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2008-04-14 22:51:12 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe PRC - [2008-04-14 22:51:12 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe PRC - [2008-04-14 22:51:04 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe PRC - [2007-01-16 01:09:42 | 000,185,896 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Common Files\Real\Update_OB\realsched.exe PRC - [2006-07-25 15:54:54 | 000,849,408 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe PRC - [2005-01-28 13:44:28 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wdfmgr.exe PRC - [2003-06-19 23:25:00 | 000,322,120 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [color=#E56717]========== Modules (All) ==========[/color] MOD - [2010-08-28 20:07:46 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\USERS\Moje dokumenty\Pobieranie\OTL.exe MOD - [2009-12-08 11:25:46 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll MOD - [2009-06-25 10:27:54 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll MOD - [2009-04-15 16:54:38 | 000,585,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll MOD - [2009-03-21 16:09:00 | 001,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll MOD - [2009-02-09 12:53:44 | 000,722,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll MOD - [2009-02-09 12:53:44 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll MOD - [2008-10-23 14:42:42 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll MOD - [2008-06-17 21:03:16 | 008,489,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll MOD - [2008-04-14 22:51:58 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv MOD - [2008-04-14 22:50:58 | 000,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll MOD - [2008-04-14 22:50:58 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll MOD - [2008-04-14 22:50:58 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wldap32.dll MOD - [2008-04-14 22:50:58 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll MOD - [2008-04-14 22:50:58 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll MOD - [2008-04-14 22:50:48 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll MOD - [2008-04-14 22:50:46 | 001,287,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll MOD - [2008-04-14 22:50:46 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll MOD - [2008-04-14 22:50:46 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll MOD - [2008-04-14 22:50:46 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samlib.dll MOD - [2008-04-14 22:50:46 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll MOD - [2008-04-14 22:50:42 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntmarta.dll MOD - [2008-04-14 22:50:40 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll MOD - [2008-04-14 22:50:38 | 000,297,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msctf.dll MOD - [2008-04-14 22:50:32 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll MOD - [2008-04-14 22:50:16 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll MOD - [2008-04-14 22:50:14 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll MOD - [2008-04-14 22:50:12 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll MOD - [2008-04-14 22:46:34 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx MOD - [2008-04-14 22:29:10 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2010-06-28 22:57:16 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner) SRV - [2010-06-28 22:57:16 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner) SRV - [2010-06-28 22:57:16 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus) SRV - [2010-01-15 14:49:20 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe -- (McComponentHostService) SRV - [2006-07-25 15:54:54 | 000,849,408 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe -- (InCDsrv) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2010-06-28 22:37:52 | 000,046,672 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi) DRV - [2010-06-28 22:37:30 | 000,165,456 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP) DRV - [2010-06-28 22:33:14 | 000,023,376 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr) DRV - [2010-06-28 22:32:46 | 000,100,176 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2) DRV - [2010-06-28 22:32:34 | 000,017,744 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk) DRV - [2010-06-28 22:32:16 | 000,028,880 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4) DRV - [2010-06-19 11:37:20 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2010-04-12 10:44:34 | 000,059,388 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\scdemu.sys -- (SCDEmu) DRV - [2008-04-14 00:26:08 | 000,088,320 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkipx.sys -- (NwlnkIpx) DRV - [2006-11-30 16:14:04 | 000,097,088 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se45mdm.sys -- (se45mdm) DRV - [2006-11-30 16:14:04 | 000,009,360 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se45mdfl.sys -- (se45mdfl) DRV - [2006-11-30 16:13:56 | 000,061,536 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se45bus.sys -- (se45bus) Sony Ericsson Device 069 driver (WDM) DRV - [2006-07-25 15:54:02 | 000,033,792 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\InCDRm.sys -- (incdrm) DRV - [2006-07-25 15:52:46 | 000,031,488 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\InCDPass.sys -- (InCDPass) DRV - [2006-07-25 15:51:56 | 000,102,912 | ---- | M] (Nero AG) [File_System | Disabled | Running] -- C:\WINDOWS\system32\drivers\InCDfs.sys -- (InCDfs) DRV - [2004-08-03 22:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Sterownik NT karty Realtek RTL8139(A/B/C) DRV - [2004-08-03 22:29:56 | 001,897,408 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [2003-07-02 04:42:00 | 000,027,904 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\viaagp1.sys -- (viaagp1) DRV - [2003-02-26 16:04:00 | 000,370,048 | R--- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\viaudios.sys -- (VIAudio) VIA AC'97 Audio Controller (WDM) DRV - [2001-08-17 21:54:18 | 000,063,232 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnknb.sys -- (NwlnkNb) DRV - [2001-08-17 21:54:18 | 000,055,936 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkspx.sys -- (NwlnkSpx) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-796845957-1409082233-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com?o=15446&l=dis IE - HKU\S-1-5-21-796845957-1409082233-725345543-1003\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com) IE - HKU\S-1-5-21-796845957-1409082233-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultengine: "Ask.com" FF - prefs.js..browser.search.defaultenginename: "Ask.com" FF - prefs.js..browser.search.order.1: "Ask.com" FF - prefs.js..browser.search.selectedEngine: "Google" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "" FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2 FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.7.4 FF - prefs.js..extensions.enabledItems: {AB2CE124-6272-4b12-94A9-7303C7397BD1}:4.2.0.5198 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..keyword.URL: "http://www.google.com/search?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&q=" FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-07-18 20:19:36 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-06-16 10:04:12 | 000,000,000 | ---D | M] [2010-06-16 10:04:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\USERS\Dane aplikacji\Mozilla\Extensions [2010-06-16 10:04:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\USERS\Dane aplikacji\Mozilla\Firefox\Profiles\0u0q3ql5.default\extensions [2010-07-24 17:21:12 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\USERS\Dane aplikacji\Mozilla\Firefox\Profiles\0u0q3ql5.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2010-06-16 18:07:44 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\USERS\Dane aplikacji\Mozilla\Firefox\Profiles\0u0q3ql5.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [2010-07-06 11:27:56 | 000,002,424 | ---- | M] () -- C:\Documents and Settings\USERS\Dane aplikacji\Mozilla\Firefox\Profiles\0u0q3ql5.default\searchplugins\askcom.xml [2010-07-18 20:19:36 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010-08-09 10:37:56 | 000,000,000 | ---D | M] (Skype extension for Firefox) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1} [2010-08-11 20:34:58 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} [2010-08-11 20:34:46 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll [2010-07-22 14:23:16 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-07-22 14:23:16 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-07-22 14:23:18 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-07-22 14:23:18 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-07-22 14:23:18 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-07-22 14:23:18 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2001-10-26 15:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (SnagIt Toolbar Loader) - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\Snagit 10\SnagitBHO.dll (TechSmith Corporation) O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com) O3 - HKLM\..\Toolbar: (Snagit) - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\Snagit 10\SnagitIEAddin.dll (TechSmith Corporation) O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com) O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software) O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.) O4 - HKU\S-1-5-21-796845957-1409082233-725345543-1003..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe (McAfee, Inc.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-796845957-1409082233-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation) O15 - HKU\S-1-5-21-796845957-1409082233-725345543-1003\..Trusted Domains: com.pl ([mks] http in Zaufane witryny) O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://fpdownload.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control) O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft.com/fwlink/?linkid=39204 (Windows Genuine Advantage Validation Tool) O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1167608442468 (WUWebControl Class) O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} http://www.mks.com.pl/skaner/SkanerOnline.cab (MainControl Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_10-windows-i586.cab (Java Plug-in 1.5.0_10) O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/get/flashplayer/current/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.134.128.19 192.168.10.1 O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\USERS\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\USERS\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2007-01-01 00:16:54 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ FAT32 ] O33 - MountPoints2\{21baa810-7b82-11df-9ebf-000ae6774e0b}\Shell - "" = AutoRun O33 - MountPoints2\{21baa810-7b82-11df-9ebf-000ae6774e0b}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -- File not found O33 - MountPoints2\{a396f9b2-7fbd-11df-9ed2-000ae6774e0b}\Shell\AutoRun\command - "" = ljepa\\karla.exe O33 - MountPoints2\{a396f9b2-7fbd-11df-9ed2-000ae6774e0b}\Shell\explore\command - "" = ljepa\karla.exe O33 - MountPoints2\{a396f9b2-7fbd-11df-9ed2-000ae6774e0b}\Shell\install\command - "" = ljepa\karla.exe O33 - MountPoints2\{a396f9b2-7fbd-11df-9ed2-000ae6774e0b}\Shell\open\command - "" = ljepa\karla.exe O33 - MountPoints2\{a396f9b3-7fbd-11df-9ed2-000ae6774e0b}\Shell\AutoRun\command - "" = ljepa\\karla.exe O33 - MountPoints2\{a396f9b3-7fbd-11df-9ed2-000ae6774e0b}\Shell\explore\command - "" = ljepa\karla.exe O33 - MountPoints2\{a396f9b3-7fbd-11df-9ed2-000ae6774e0b}\Shell\install\command - "" = ljepa\karla.exe O33 - MountPoints2\{a396f9b3-7fbd-11df-9ed2-000ae6774e0b}\Shell\open\command - "" = ljepa\karla.exe O33 - MountPoints2\{b225f55e-8095-11df-9ed6-000ae6774e0b}\Shell\AutoRun\command - "" = pupica\\makaroni.exe O33 - MountPoints2\{b225f55e-8095-11df-9ed6-000ae6774e0b}\Shell\explore\command - "" = pupica\\\makaroni.exe O33 - MountPoints2\{b225f55e-8095-11df-9ed6-000ae6774e0b}\Shell\open\command - "" = pupica\\\makaroni.exe O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found MsConfig - StartUpReg: [b]BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}[/b] - hkey= - key= - C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG) MsConfig - StartUpReg: [b]InCD[/b] - hkey= - key= - C:\Program Files\Nero\Nero 7\InCD\InCD.exe (Nero AG) MsConfig - StartUpReg: [b]LGODDFU[/b] - hkey= - key= - C:\Program Files\lg_fwupdate\fwupdate.exe (BL) MsConfig - StartUpReg: [b]Load[/b] - hkey= - key= - c:\Program Files\YDPDICT\WATCH.EXE () MsConfig - StartUpReg: [b]MSMSGS[/b] - hkey= - key= - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation) MsConfig - StartUpReg: [b]NeroFilterCheck[/b] - hkey= - key= - C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG) MsConfig - StartUpReg: [b]QuickTime Task[/b] - hkey= - key= - C:\Program Files\QuickTime\qttask.exe File not found MsConfig - StartUpReg: [b]RemoteControl[/b] - hkey= - key= - C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe (Cyberlink Corp.) MsConfig - StartUpReg: [b]SunJavaUpdateSched[/b] - hkey= - key= - C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe (Sun Microsystems, Inc.) MsConfig - StartUpReg: [b]TkBellExe[/b] - hkey= - key= - C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.) MsConfig - State: "system.ini" - 0 MsConfig - State: "win.ini" - 0 MsConfig - State: "bootini" - 0 MsConfig - State: "services" - 0 MsConfig - State: "startup" - 2 SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: SCSI Class - Driver Group SafeBootMin: sermouse.sys - Driver SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vds - Service SafeBootMin: vga.sys - Driver SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: nm - File not found SafeBootNet: nm.sys - File not found SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: SCSI Class - Driver Group SafeBootNet: sermouse.sys - Driver SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vga.sys - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2010-08-28 18:46:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\McAfee [2010-08-28 11:48:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\USERS\Pulpit\Nowy folder [2010-08-28 10:04:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Last.fm [2010-08-28 10:03:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\USERS\Ustawienia lokalne\Dane aplikacji\Last.fm [2010-08-26 22:17:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\.jagex_cache_32 [2010-08-25 18:42:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\McAfee [2010-08-25 18:42:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\McAfee Security Scan [2010-08-25 18:42:25 | 000,000,000 | ---D | C] -- C:\Program Files\McAfee Security Scan [2010-08-23 10:49:26 | 000,000,000 | -HSD | C] -- C:\FOUND.009 [2010-08-20 17:52:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\USERS\Moje dokumenty\Snagit [2010-08-20 17:52:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\USERS\Ustawienia lokalne\Dane aplikacji\assembly [2010-08-20 17:50:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\TechSmith [2010-08-20 17:50:40 | 000,000,000 | ---D | C] -- C:\Program Files\TechSmith [2010-08-20 17:50:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\USERS\Ustawienia lokalne\Dane aplikacji\TechSmith [2010-08-20 17:49:53 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard [2010-08-19 20:19:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\USERS\Moje dokumenty\GTA San Andreas User Files [2010-08-19 17:36:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\USERS\Moje dokumenty\NeroVision [2010-08-19 13:42:30 | 000,000,000 | -HSD | C] -- C:\FOUND.008 [2010-08-18 11:01:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\USERS\Ustawienia lokalne\Dane aplikacji\cache [2010-08-18 10:53:10 | 000,000,000 | -HSD | C] -- C:\FOUND.007 [2010-08-16 22:53:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\USERS\.gstreamer-0.10 [2010-08-16 22:52:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2010-08-16 22:52:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\USERS\Dane aplikacji\OpenFM [2010-08-16 22:03:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\USERS\Ustawienia lokalne\Dane aplikacji\WMTools Downloaded Files [2010-08-15 20:37:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\USERS\Pulpit\Zlot Powidz 2010 [2010-08-13 15:32:42 | 000,000,000 | -HSD | C] -- C:\FOUND.006 [2010-08-11 20:35:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Sun [2010-08-11 13:12:47 | 000,000,000 | ---D | C] -- C:\Program Files\Activision [2010-08-11 13:11:12 | 000,000,000 | -HSD | C] -- C:\WINDOWS\ftpcache [2010-08-11 13:08:36 | 000,000,000 | ---D | C] -- C:\Program Files\PowerISO [2010-08-09 10:39:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\USERS\Dane aplikacji\skypePM [2010-08-09 10:38:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\USERS\Dane aplikacji\Skype [2010-08-09 10:36:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype [2010-08-09 10:36:33 | 000,000,000 | R--D | C] -- C:\Program Files\Skype [2010-08-09 10:36:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Skype [2010-08-08 19:25:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\USERS\Pulpit\Do zgrania [2010-08-08 14:53:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\USERS\Dane aplikacji\.purple [2010-08-08 14:49:46 | 000,000,000 | ---D | C] -- C:\Program Files\Pidgin [2010-08-08 14:47:05 | 000,000,000 | R--D | C] -- C:\Documents and Settings\USERS\Pulpit\Sebastian [2010-08-08 14:37:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\USERS\Dane aplikacji\Gadu-Gadu 10 [2010-08-08 14:36:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-08-08 14:35:45 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu 10 [2010-08-08 10:57:04 | 000,000,000 | -HSD | C] -- C:\FOUND.005 [2010-08-04 12:17:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\USERS\Dane aplikacji\dvdcss [2010-08-03 18:26:36 | 000,000,000 | -HSD | C] -- C:\FOUND.004 [2010-08-03 10:08:48 | 000,000,000 | -HSD | C] -- C:\FOUND.003 [2010-08-02 18:17:56 | 000,000,000 | -HSD | C] -- C:\FOUND.002 [2010-07-31 13:17:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\USERS\Dane aplikacji\gtk-2.0 [2010-07-31 09:27:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\USERS\.thumbnails [2010-07-31 09:26:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\USERS\.gimp-2.6 [2010-07-31 09:26:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\USERS\Moje dokumenty\gegl-0.0 [2010-07-31 09:24:57 | 000,000,000 | ---D | C] -- C:\Program Files\GIMP-2.0 [2010-07-30 17:57:32 | 000,000,000 | ---D | C] -- C:\Program Files\ReadManiac [2010-07-28 09:09:20 | 000,000,000 | -HSD | C] -- C:\FOUND.001 [2010-07-26 12:00:14 | 000,000,000 | ---D | C] -- C:\Program Files\BitTorrent [2010-07-24 17:37:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\USERS\dwhelper [2010-07-24 17:29:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\USERS\Moje dokumenty\UltraGet [2010-07-24 17:29:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\USERS\Dane aplikacji\UltraGet [2010-07-21 13:42:08 | 000,000,000 | -HSD | C] -- C:\FOUND.000 [2010-07-21 13:36:22 | 000,038,848 | ---- | C] (ALWIL Software) -- C:\WINDOWS\avastSS.scr [2010-07-16 09:42:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\USERS\Dane aplikacji\BitTorrent [2010-07-15 17:54:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\USERS\Dane aplikacji\vlc [2010-07-15 17:53:36 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN [2010-07-14 17:33:10 | 000,000,000 | ---D | C] -- C:\Program Files\NAPI-PROJEKT [2010-07-06 18:20:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\USERS\Moje dokumenty\Dungeon Siege LOA [2010-07-06 18:20:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\USERS\Moje dokumenty\Dungeon Siege [2010-07-06 18:11:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\Installing Adobe Acrobat Reader [2010-07-06 10:57:35 | 000,000,000 | ---D | C] -- C:\Program Files\Ask.com [2010-07-02 10:28:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\DAEMON Tools Images [2010-06-30 15:39:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\USERS\Ustawienia lokalne\Dane aplikacji\Identities [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2010-08-28 20:01:04 | 000,000,234 | ---- | M] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job [2010-08-28 19:27:24 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010-08-28 19:27:10 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-08-28 18:57:06 | 003,932,160 | -H-- | M] () -- C:\Documents and Settings\USERS\NTUSER.DAT [2010-08-28 18:57:06 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\USERS\ntuser.ini [2010-08-28 18:45:30 | 000,001,619 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\McAfee Security Scan Plus.lnk [2010-08-28 18:45:30 | 000,001,611 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\McAfee Security Scan Plus.lnk [2010-08-28 16:37:04 | 002,110,676 | -H-- | M] () -- C:\Documents and Settings\USERS\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010-08-28 16:37:00 | 000,000,095 | ---- | M] () -- C:\WINDOWS\winamp.ini [2010-08-28 12:30:22 | 000,029,184 | ---- | M] () -- C:\Documents and Settings\USERS\Moje dokumenty\rozkład jazdy pks.doc [2010-08-28 11:15:40 | 000,548,406 | ---- | M] () -- C:\Documents and Settings\USERS\Pulpit\Menedżer Zadań Windows.bmp [2010-08-28 10:03:48 | 000,000,496 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Last.fm.lnk [2010-08-26 22:45:46 | 000,000,099 | ---- | M] () -- C:\Documents and Settings\USERS\jagex_runescape_preferences2.dat [2010-08-26 22:45:44 | 000,000,046 | ---- | M] () -- C:\Documents and Settings\USERS\jagex_runescape_preferences.dat [2010-08-26 22:19:34 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\USERS\jagex__preferences3.dat [2010-08-26 13:10:24 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-08-25 17:57:54 | 000,031,744 | ---- | M] () -- C:\Documents and Settings\USERS\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-08-24 00:02:16 | 000,143,436 | ---- | M] () -- C:\Documents and Settings\USERS\Pulpit\333h.JPG [2010-08-20 18:03:08 | 070,020,096 | ---- | M] () -- C:\Documents and Settings\USERS\Moje dokumenty\crash.avi [2010-08-20 18:01:48 | 000,131,314 | ---- | M] () -- C:\Documents and Settings\USERS\Moje dokumenty\p.png [2010-08-20 17:34:04 | 020,570,096 | ---- | M] () -- C:\Documents and Settings\USERS\Moje dokumenty\file-92213861.flv [2010-08-19 21:30:02 | 000,001,219 | ---- | M] () -- C:\WINDOWS\wincmd.ini [2010-08-19 20:03:34 | 000,000,531 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\GTA San Andreas.lnk [2010-08-17 11:25:16 | 000,152,527 | ---- | M] () -- C:\Documents and Settings\USERS\Pulpit\emoty ssb.JPG [2010-08-16 22:11:04 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2010-08-13 17:02:54 | 000,000,374 | ---- | M] () -- C:\Documents and Settings\USERS\Pulpit\Skrót do Sunn O))).lnk [2010-08-11 13:20:10 | 000,001,563 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Call of Duty(R) 2 Singleplayer.lnk [2010-08-11 13:20:10 | 000,001,563 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Call of Duty(R) 2 Multiplayer.lnk [2010-08-11 13:20:08 | 000,000,287 | ---- | M] () -- C:\WINDOWS\game.ini [2010-08-11 13:08:40 | 000,000,592 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\PowerISO.lnk [2010-08-09 10:39:50 | 000,000,056 | -H-- | M] () -- C:\WINDOWS\System32\ezsidmv.dat [2010-08-09 10:36:54 | 000,001,880 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2010-08-08 14:55:04 | 000,005,700 | ---- | M] () -- C:\Documents and Settings\USERS\.recently-used.xbel [2010-08-08 14:36:50 | 000,000,701 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\OpenFM.lnk [2010-08-08 14:36:50 | 000,000,672 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk [2010-08-02 22:57:32 | 000,000,020 | -H-- | M] () -- C:\Documents and Settings\USERS\Pulpit\IMG_0668x.JPG.sha [2010-07-31 09:25:26 | 000,000,706 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\GIMP 2.lnk [2010-07-30 17:57:36 | 000,000,691 | ---- | M] () -- C:\Documents and Settings\USERS\Pulpit\ReadManiac Builder Wizard.lnk [2010-07-25 15:02:44 | 000,000,020 | -H-- | M] () -- C:\Documents and Settings\USERS\Moje dokumenty\IMG_0061.jpg.sha [2010-07-25 15:02:44 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\USERS\Moje dokumenty\IMG_0061.jpg [2010-07-24 17:37:30 | 008,646,239 | ---- | M] () -- C:\Documents and Settings\USERS\Moje dokumenty\tragiczny_20skok_20do_20wody-1.avi [2010-07-24 17:37:16 | 008,646,239 | ---- | M] () -- C:\Documents and Settings\USERS\Moje dokumenty\tragiczny_20skok_20do_20wody.flv [2010-07-21 13:36:24 | 000,002,645 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2010-07-21 10:35:40 | 000,000,000 | R--- | M] () -- C:\logwmemory.bin [2010-07-18 20:19:40 | 000,001,512 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk [2010-07-15 17:54:14 | 000,000,629 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\VLC media player.lnk [2010-07-15 16:21:16 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\USERS\Moje dokumenty\2010-07-11 00.43.11.jpg [2010-07-15 16:18:20 | 000,000,020 | -H-- | M] () -- C:\Documents and Settings\USERS\Moje dokumenty\2010-07-11 00.43.11.jpg.sha [2010-07-14 17:33:12 | 000,000,572 | ---- | M] () -- C:\Documents and Settings\USERS\Pulpit\NapiProjekt.lnk [2010-07-08 21:02:28 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\USERS\Moje dokumenty\IMG_0177.jpg [2010-07-06 18:16:28 | 000,000,759 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Dungeon Siege.lnk [2010-07-06 18:16:28 | 000,000,720 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Dungeon Siege Legends of Aranna.lnk [2010-07-04 18:30:02 | 000,000,477 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Counter-Strike 1.6.lnk [2010-07-04 18:30:02 | 000,000,448 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Half-Life.lnk [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-08-28 12:30:20 | 000,029,184 | ---- | C] () -- C:\Documents and Settings\USERS\Moje dokumenty\rozkład jazdy pks.doc [2010-08-28 11:15:38 | 000,548,406 | ---- | C] () -- C:\Documents and Settings\USERS\Pulpit\Menedżer Zadań Windows.bmp [2010-08-28 10:03:47 | 000,000,496 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Last.fm.lnk [2010-08-26 22:19:32 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\USERS\jagex__preferences3.dat [2010-08-26 22:19:23 | 000,000,099 | ---- | C] () -- C:\Documents and Settings\USERS\jagex_runescape_preferences2.dat [2010-08-26 22:18:01 | 000,000,046 | ---- | C] () -- C:\Documents and Settings\USERS\jagex_runescape_preferences.dat [2010-08-25 18:42:32 | 000,001,619 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\McAfee Security Scan Plus.lnk [2010-08-25 18:42:32 | 000,001,611 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\McAfee Security Scan Plus.lnk [2010-08-24 00:02:14 | 000,143,436 | ---- | C] () -- C:\Documents and Settings\USERS\Pulpit\333h.JPG [2010-08-20 18:01:45 | 000,131,314 | ---- | C] () -- C:\Documents and Settings\USERS\Moje dokumenty\p.png [2010-08-20 18:00:18 | 070,020,096 | ---- | C] () -- C:\Documents and Settings\USERS\Moje dokumenty\crash.avi [2010-08-20 17:30:17 | 020,570,096 | ---- | C] () -- C:\Documents and Settings\USERS\Moje dokumenty\file-92213861.flv [2010-08-19 20:16:11 | 000,000,833 | ---- | C] () -- C:\Documents and Settings\USERS\Pulpit\Skrót do GTA-SA Crazy Trainer.lnk [2010-08-19 20:03:33 | 000,000,531 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\GTA San Andreas.lnk [2010-08-17 11:25:15 | 000,152,527 | ---- | C] () -- C:\Documents and Settings\USERS\Pulpit\emoty ssb.JPG [2010-08-13 17:02:54 | 000,000,374 | ---- | C] () -- C:\Documents and Settings\USERS\Pulpit\Skrót do Sunn O))).lnk [2010-08-11 13:20:08 | 000,001,563 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Call of Duty(R) 2 Singleplayer.lnk [2010-08-11 13:20:08 | 000,001,563 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Call of Duty(R) 2 Multiplayer.lnk [2010-08-11 13:20:07 | 000,000,287 | ---- | C] () -- C:\WINDOWS\game.ini [2010-08-11 13:08:38 | 000,000,592 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\PowerISO.lnk [2010-08-09 10:39:48 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat [2010-08-09 10:36:53 | 000,001,880 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2010-08-08 14:55:02 | 000,005,700 | ---- | C] () -- C:\Documents and Settings\USERS\.recently-used.xbel [2010-08-08 14:36:48 | 000,000,701 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\OpenFM.lnk [2010-08-08 14:36:48 | 000,000,672 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk [2010-08-02 22:57:30 | 000,000,020 | -H-- | C] () -- C:\Documents and Settings\USERS\Pulpit\IMG_0668x.JPG.sha [2010-07-31 09:25:24 | 000,000,706 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\GIMP 2.lnk [2010-07-30 17:57:34 | 000,000,691 | ---- | C] () -- C:\Documents and Settings\USERS\Pulpit\ReadManiac Builder Wizard.lnk [2010-07-25 15:02:42 | 000,000,020 | -H-- | C] () -- C:\Documents and Settings\USERS\Moje dokumenty\IMG_0061.jpg.sha [2010-07-25 15:02:42 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\USERS\Moje dokumenty\IMG_0061.jpg [2010-07-24 17:37:28 | 008,646,239 | ---- | C] () -- C:\Documents and Settings\USERS\Moje dokumenty\tragiczny_20skok_20do_20wody-1.avi [2010-07-24 17:37:15 | 008,646,239 | ---- | C] () -- C:\Documents and Settings\USERS\Moje dokumenty\tragiczny_20skok_20do_20wody.flv [2010-07-21 10:35:38 | 000,000,000 | R--- | C] () -- C:\logwmemory.bin [2010-07-18 20:19:38 | 000,001,512 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk [2010-07-15 17:54:13 | 000,000,629 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\VLC media player.lnk [2010-07-15 16:18:18 | 000,000,020 | -H-- | C] () -- C:\Documents and Settings\USERS\Moje dokumenty\2010-07-11 00.43.11.jpg.sha [2010-07-15 16:18:17 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\USERS\Moje dokumenty\2010-07-11 00.43.11.jpg [2010-07-14 17:33:11 | 000,000,572 | ---- | C] () -- C:\Documents and Settings\USERS\Pulpit\NapiProjekt.lnk [2010-07-08 21:02:27 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\USERS\Moje dokumenty\IMG_0177.jpg [2010-07-06 18:16:26 | 000,000,759 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Dungeon Siege.lnk [2010-07-06 18:16:26 | 000,000,720 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Dungeon Siege Legends of Aranna.lnk [2010-07-06 10:57:40 | 000,000,234 | ---- | C] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job [2010-07-04 18:30:01 | 000,000,477 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Counter-Strike 1.6.lnk [2010-07-04 18:30:01 | 000,000,448 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Half-Life.lnk [2010-06-19 13:54:37 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll [2010-06-19 11:37:18 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys [2010-06-17 16:09:56 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll [2010-06-16 09:33:49 | 000,031,744 | ---- | C] () -- C:\Documents and Settings\USERS\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-06-16 09:33:48 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2010-06-14 15:29:30 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\UnAudioNT.dll [2007-07-23 09:03:32 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll [2007-07-23 09:03:32 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll [2007-07-23 09:03:32 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll [2007-07-23 09:03:30 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll [2007-07-23 09:03:30 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll [2007-07-23 09:03:30 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll [2007-07-23 09:03:30 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll [2007-07-23 09:03:30 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll [2007-07-23 09:03:30 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll [2007-01-16 01:22:32 | 000,040,960 | ---- | C] () -- C:\Program Files\Uninstall_CDS.exe [2007-01-16 01:16:00 | 000,000,792 | ---- | C] () -- C:\WINDOWS\VPlayer.INI [2007-01-16 01:11:22 | 000,000,095 | ---- | C] () -- C:\WINDOWS\winamp.ini [2007-01-16 01:01:20 | 000,000,324 | ---- | C] () -- C:\WINDOWS\lgfwup.ini [2007-01-16 00:50:36 | 000,000,000 | ---- | C] () -- C:\WINDOWS\PROTOCOL.INI [2007-01-16 00:49:03 | 000,000,261 | ---- | C] () -- C:\WINDOWS\MAXLINK.INI [2007-01-16 00:48:37 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll [2007-01-16 00:48:36 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\vorbisenc.dll [2007-01-16 00:48:32 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll [2007-01-16 00:48:31 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll [2007-01-16 00:48:23 | 000,009,216 | ---- | C] () -- C:\WINDOWS\System32\cpuinf32.dll [2007-01-16 00:48:10 | 000,679,936 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2007-01-16 00:48:10 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2007-01-16 00:48:07 | 000,626,688 | ---- | C] () -- C:\WINDOWS\System32\xvid.dll [2007-01-16 00:45:33 | 000,000,794 | ---- | C] () -- C:\WINDOWS\YDPDICT.INI [2007-01-16 00:42:34 | 000,006,688 | ---- | C] () -- C:\WINDOWS\System32\Digita.sys [2007-01-16 00:42:33 | 000,335,872 | ---- | C] () -- C:\WINDOWS\System32\ldf252.dll [2007-01-15 23:43:03 | 000,000,130 | ---- | C] () -- C:\Documents and Settings\USERS\Ustawienia lokalne\Dane aplikacji\fusioncache.dat [2007-01-01 00:48:50 | 000,001,219 | ---- | C] () -- C:\WINDOWS\wincmd.ini [2007-01-01 00:35:27 | 000,000,672 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2006-12-13 13:24:56 | 000,715,048 | ---- | C] () -- C:\WINDOWS\System32\SkanerOnline.dll [2003-04-08 11:40:22 | 000,005,679 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI [color=#E56717]========== LOP Check ==========[/color] [2010-06-14 15:02:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software [2010-06-19 11:36:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite [2010-08-08 14:36:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-08-16 22:53:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2010-08-20 17:50:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TechSmith [2010-08-28 10:04:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Last.fm [2007-01-16 00:43:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\USERS\Dane aplikacji\ACD Systems [2010-06-16 20:57:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\USERS\Dane aplikacji\Gadu-Gadu [2010-06-19 11:36:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\USERS\Dane aplikacji\DAEMON Tools Lite [2010-07-16 09:42:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\USERS\Dane aplikacji\BitTorrent [2010-07-24 17:29:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\USERS\Dane aplikacji\UltraGet [2010-07-31 13:17:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\USERS\Dane aplikacji\gtk-2.0 [2010-08-08 14:37:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\USERS\Dane aplikacji\Gadu-Gadu 10 [2010-08-08 14:53:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\USERS\Dane aplikacji\.purple [2010-08-16 22:52:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\USERS\Dane aplikacji\OpenFM [2010-08-28 20:01:04 | 000,000,234 | ---- | M] () -- C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2001-07-21 22:13:54 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin [2010-06-14 13:28:24 | 000,251,152 | RHS- | M] () -- C:\ntldr [2004-08-03 20:38:34 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2007-01-16 01:48:14 | 000,000,211 | -HS- | M] () -- C:\boot.ini [2007-01-01 00:16:54 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2007-01-01 00:16:54 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2007-01-01 00:16:54 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2007-01-01 00:16:54 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2010-07-21 10:35:40 | 000,000,000 | R--- | M] () -- C:\logwmemory.bin [color=#A23BEC]< MD5 for: AGP440.SYS >[/color] [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\78712c6f839e99cc0b\i386\sp3.cab:agp440.sys [2004-08-03 22:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:agp440.sys [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:agp440.sys [2008-04-14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys [2008-04-14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\78712c6f839e99cc0b\i386\sp3.cab:atapi.sys [2004-08-03 22:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys [2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys [2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys [2004-08-03 20:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys [color=#A23BEC]< MD5 for: BEEP.SYS >[/color] [2001-08-17 21:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys [2001-08-17 21:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\78712c6f839e99cc0b\i386\sp3.cab:cdrom.sys [2004-08-03 22:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys [2008-04-14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys [2008-04-14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys [2004-08-03 20:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys [color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color] [2004-08-03 22:43:58 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=05684DE2DA55A04C8AAAB5911AFE7643 -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll [2008-04-14 22:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll [2008-04-14 22:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\eventlog.dll [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2008-04-14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys [2008-04-14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys [2004-08-03 21:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2004-08-03 22:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe [2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe [2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\winlogon.exe < End of report > [/log] A tutaj z RSIT: info.txt [log]info.txt logfile of random's system information tool 1.08 2010-08-28 20:39:51 ======Uninstall list====== -->C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0 -->C:\Program Files\Nero\Nero 7\nero\uninstall\UNNERO.exe /UNINSTALL -->C:\WINDOWS\NuNInst.exe /UNINSTALL -->C:\WINDOWS\UNNeroBackItUp.exe /UNINSTALL -->C:\WINDOWS\UNNeroMediaHome.exe /UNINSTALL -->C:\WINDOWS\UNNeroShowTime.exe /UNINSTALL -->C:\WINDOWS\UNNeroVision.exe /UNINSTALL -->C:\WINDOWS\UNRecode.exe /UNINSTALL -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf ACDSee Trial Version-->C:\PROGRA~1\ACDSYS~1\ACDSEE\UNWISE.EXE C:\PROGRA~1\ACDSYS~1\ACDSEE\INSTALL.LOG Acrobat.com-->C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe -uninstall com.adobe.mauby 4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 Acrobat.com-->MsiExec.exe /I{77DCDCE3-2DED-62F3-8154-05E745472D07} Adobe AIR-->C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Updater.exe -arp:uninstall Adobe AIR-->MsiExec.exe /I{00203668-8170-44A0-BE44-B632FA4D780F} Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10h_Plugin.exe -maintain plugin Adobe Flash Player 9 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil9b.exe -uninstallDelete Adobe Reader 9-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A90000000001} Adobe Shockwave Player-->C:\WINDOWS\system32\MACROMED\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\MACROMED\SHOCKW~1\Install.log Aktualizacja dla systemu Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB955759)-->"C:\WINDOWS\$NtUninstallKB955759$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB968389)-->"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB971737)-->"C:\WINDOWS\$NtUninstallKB971737$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB973687)-->"C:\WINDOWS\$NtUninstallKB973687$\spuninst\spuninst.exe" Aktualizacja dla systemu Windows XP (KB973815)-->"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player (KB954155)-->"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player (KB978695)-->"C:\WINDOWS\$NtUninstallKB978695_WM9$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla programu Windows Media Player 10 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf Aktualizacja zabezpieczeń dla systemu Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB956744)-->"C:\WINDOWS\$NtUninstallKB956744$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB956844)-->"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB958869)-->"C:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB960859)-->"C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB969059)-->"C:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB970430)-->"C:\WINDOWS\$NtUninstallKB970430$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB971468)-->"C:\WINDOWS\$NtUninstallKB971468$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB971657)-->"C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB971961)-->"C:\WINDOWS\$NtUninstallKB971961$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB972270)-->"C:\WINDOWS\$NtUninstallKB972270$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB973507)-->"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB973869)-->"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB973904)-->"C:\WINDOWS\$NtUninstallKB973904$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB974112)-->"C:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB974318)-->"C:\WINDOWS\$NtUninstallKB974318$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB974392)-->"C:\WINDOWS\$NtUninstallKB974392$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB974571)-->"C:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB975025)-->"C:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB975467)-->"C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB975560)-->"C:\WINDOWS\$NtUninstallKB975560$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB975561)-->"C:\WINDOWS\$NtUninstallKB975561$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB975562)-->"C:\WINDOWS\$NtUninstallKB975562$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB975713)-->"C:\WINDOWS\$NtUninstallKB975713$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB977816)-->"C:\WINDOWS\$NtUninstallKB977816$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB977914)-->"C:\WINDOWS\$NtUninstallKB977914$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB978037)-->"C:\WINDOWS\$NtUninstallKB978037$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB978338)-->"C:\WINDOWS\$NtUninstallKB978338$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB978542)-->"C:\WINDOWS\$NtUninstallKB978542$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB978601)-->"C:\WINDOWS\$NtUninstallKB978601$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB978706)-->"C:\WINDOWS\$NtUninstallKB978706$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB979309)-->"C:\WINDOWS\$NtUninstallKB979309$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB979482)-->"C:\WINDOWS\$NtUninstallKB979482$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB979559)-->"C:\WINDOWS\$NtUninstallKB979559$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB979683)-->"C:\WINDOWS\$NtUninstallKB979683$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB980195)-->"C:\WINDOWS\$NtUninstallKB980195$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB980218)-->"C:\WINDOWS\$NtUninstallKB980218$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB980232)-->"C:\WINDOWS\$NtUninstallKB980232$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB981349)-->"C:\WINDOWS\$NtUninstallKB981349$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla systemu Windows XP (KB982381)-->"C:\WINDOWS\$NtUninstallKB982381$\spuninst\spuninst.exe" Aktualizacja zabezpieczeń dla Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe" ALLPlayer V2.2-->C:\Program Files\MarBit\ALLPlayer\UnGins.exe "C:\Program Files\MarBit\ALLPlayer\install.log" Archiwizator WinRAR-->C:\Program Files\WinRAR\uninstall.exe Ask Toolbar-->MsiExec.exe /I{86D4B82A-ABED-442A-BE86-96357B70F4FE} avast! Free Antivirus-->C:\Program Files\Alwil Software\Avast5\aswRunDll.exe "C:\Program Files\Alwil Software\Avast5\Setup\setiface.dll" RunSetup BitTorrent-->C:\Program Files\BitTorrent\bittorrent.exe /UNINSTALL Call of Duty(R) 2-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{D0A05794-48C2-4424-A15A-9F20FCFDD374} /l2057 Counter-Strike 1.6-->C:\Gry\CS 1.6\Uninstal.exe Crane Simulator 2009-->"D:\Gry\Crane Simulator 2009\unins000.exe" DivX Codec-->C:\WINDOWS\unvise32.exe C:\Program Files\DivX\uninstal.log Dungeon Siege Legends of Aranna-->"D:\Gry\Dungeon Siege Legends of Aranna\UNINSTAL.EXE" /runtemp /addremove DVD Solution-->"C:\Program Files\Uninstall_CDS.exe" FIFA 07-->C:\Program Files\EA SPORTS\FIFA 07\EAUninstall.exe Gadu-Gadu 10-->C:\Program Files\Gadu-Gadu 10\Uninstall.exe Gadu-Gadu 7.7-->D:\GG\Gadu-Gadu\Setup.exe GIMP 2.6.10-->"C:\Program Files\GIMP-2.0\setup\unins000.exe" GTA San Andreas-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}\setup.exe" -l0x9 -removeonly Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT="" Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT="" Hotfix for Windows Media Format SDK (KB902344)-->"C:\WINDOWS\$NtUninstallKB902344$\spuninst\spuninst.exe" IrfanView (remove only)-->C:\Program Files\IrfanView\iv_uninstall.exe J2SE Runtime Environment 5.0 Update 10-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150100} Java(TM) 6 Update 21-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216021FF} King-->D:\Gry\King Of The Road\King\uninst.exe Last.fm 1.5.4.24567-->"D:\Programy\Last.fm\unins000.exe" LG ODD Auto Firmware Update-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6179550A-3E7C-499E-BCC9-9E8113E0A285}\Setup.exe" McAfee Security Scan Plus-->"C:\Program Files\McAfee Security Scan\uninstall.exe" Microsoft .NET Framework 1.1 Polish Language Pack-->MsiExec.exe /X{64CB2553-C109-4132-AA51-1F421B515FD1} Microsoft .NET Framework 1.1 Security Update (KB979906)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M979906\M979906Uninstall.msp" Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 2.0 — pakiet języka polskiego-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - PLK\install.exe Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7} Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} Microsoft Office Professional Edition 2003-->MsiExec.exe /I{90110415-6000-11D3-8CFE-0150048383C9} Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c} Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989} Mistrz Klawiatury-->C:\WINDOWS\unin0415.exe -f"C:\Program Files\Mistrz Klawiatury\DeIsL1.isu" Mozilla Firefox (3.6.8)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe NapiProjekt 1.0.6.9-->"C:\Program Files\NAPI-PROJEKT\unins000.exe" Nero 7 Ultra Edition-->MsiExec.exe /I{F14B8ECC-BDA0-4987-9201-D7B7DBE11045} NVIDIA GAME System Software 2.8.1-->MsiExec.exe /I{4F0C7CCF-5666-474B-B02E-AC514A95EC93} Pakiet podstawowego dostawcy usług kryptograficznych kart inteligentnych Microsoft-->"C:\WINDOWS\$NtUninstallbasecsp$\spuninst\spuninst.exe" PhotoNow! 1.0-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D36DD326-7280-11D8-97C8-000129760CBE}\setup.exe" -uninstall Pidgin-->C:\Program Files\Pidgin\pidgin-uninst.exe Poprawka dla systemu Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe" Poprawka dla systemu Windows XP (KB981793)-->"C:\WINDOWS\$NtUninstallKB981793$\spuninst\spuninst.exe" PowerDVD-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}\setup.exe" -uninstall PowerISO-->"C:\Program Files\PowerISO\uninstall.exe" PowerProducer-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B7A0CE06-068E-11D6-97FD-0050BACBF861}\setup.exe" -uninstall QuickTime Alternative 1.95-->"C:\Program Files\QuickTime Alternative\unins000.exe" ReadManiac 2.5.2-->"C:\Program Files\ReadManiac\unins000.exe" Real Alternative 1.51-->"C:\Program Files\Real Alternative\unins000.exe" RealPlayer-->C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0 Skaner on-line mks_vir-->C:\WINDOWS\system32\SkanerOnlineUninstall.exe Skype Toolbars-->MsiExec.exe /I{981029E0-7FC9-4CF3-AB39-6F133621921A} Skype™ 4.2-->MsiExec.exe /X{D103C4BA-F905-437A-8049-DB24763BBE36} Snagit 10-->MsiExec.exe /I{5BCC634A-58AD-42F9-B3C6-2EA52F81CF85} Sprint & FineReader 5.0-->C:\WINDOWS\bitdein2.exe C:\PROGRA~1\SPRINT~1.0\bitdeins.ini Total Commander (Remove or Repair)-->C:\Program Files\totalcmd\tcuninst.exe VIA Audio Driver Setup Program-->RunDll32.exe UnAudioNT.dll,UninstallAudio C:\WINDOWS\IsUninst.exe -f"C:\PROGRA~1\VIATEC~1\VIAAUD~1/Uninst.isu" VIA Platform Device Manager-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{20D4A895-748C-4D88-871C-FDB1695B0169} VLC media player 1.1.0-->C:\Program Files\VideoLAN\VLC\uninstall.exe Vplayer-->MsiExec.exe /I{A05BE20E-6510-44BC-95ED-6E6D730407D3} Winamp (remove only)-->"C:\Program Files\Winamp\UninstWA.exe" Windows Media Format Runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll Windows Media Format SDK Hotfix - KB891122-->"C:\WINDOWS\$NtUninstallKB891122$\spuninst\spuninst.exe" Windows Media Player 10-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe" WinZip-->"C:\Program Files\WinZip\WINZIP32.EXE" /uninstall ======System event log====== Computer Name: XXX Event Code: 7036 Message: Usługa avast! Mail Scanner weszła w stan uruchomienia. Record Number: 6675 Source Name: Service Control Manager Time Written: 20100803101006.000000+120 Event Type: informacje User: Computer Name: XXX Event Code: 7036 Message: Usługa Usługa bramy warstwy aplikacji weszła w stan uruchomienia. Record Number: 6674 Source Name: Service Control Manager Time Written: 20100803101006.000000+120 Event Type: informacje User: Computer Name: XXX Event Code: 7035 Message: Do usługi Usługa bramy warstwy aplikacji został pomyślnie wysłany kod sterowania uruchom. Record Number: 6673 Source Name: Service Control Manager Time Written: 20100803101006.000000+120 Event Type: informacje User: ZARZĄDZANIE NT\SYSTEM Computer Name: XXX Event Code: 7035 Message: Do usługi aswRdr został pomyślnie wysłany kod sterowania uruchom. Record Number: 6672 Source Name: Service Control Manager Time Written: 20100803101005.000000+120 Event Type: informacje User: ZARZĄDZANIE NT\SYSTEM Computer Name: XXX Event Code: 7036 Message: Usługa avast! Web Scanner weszła w stan uruchomienia. Record Number: 6671 Source Name: Service Control Manager Time Written: 20100803101005.000000+120 Event Type: informacje User: =====Application event log===== Computer Name: XXX Event Code: 1000 Message: Liczniki wydajności dla usługi MSDTC (MSDTC) zostały pomyślnie załadowane. Dane rekordu zawierają nowe wartości indeksu przypisane do tej usługi. Record Number: 5 Source Name: LoadPerf Time Written: 20070101001339.000000+060 Event Type: informacje User: Computer Name: XXX Event Code: 1000 Message: Liczniki wydajności dla usługi TermService (Usługi terminalowe) zostały pomyślnie załadowane. Dane rekordu zawierają nowe wartości indeksu przypisane do tej usługi. Record Number: 4 Source Name: LoadPerf Time Written: 20070101001337.000000+060 Event Type: informacje User: Computer Name: XXX Event Code: 1000 Message: Liczniki wydajności dla usługi RemoteAccess (Routing i dostęp zdalny) zostały pomyślnie załadowane. Dane rekordu zawierają nowe wartości indeksu przypisane do tej usługi. Record Number: 3 Source Name: LoadPerf Time Written: 20070101001202.000000+060 Event Type: informacje User: Computer Name: XXX Event Code: 1000 Message: Liczniki wydajności dla usługi PSched (PSched) zostały pomyślnie załadowane. Dane rekordu zawierają nowe wartości indeksu przypisane do tej usługi. Record Number: 2 Source Name: LoadPerf Time Written: 20070101001143.000000+060 Event Type: informacje User: Computer Name: XXX Event Code: 1000 Message: Liczniki wydajności dla usługi RSVP (QoS RSVP) zostały pomyślnie załadowane. Dane rekordu zawierają nowe wartości indeksu przypisane do tej usługi. Record Number: 1 Source Name: LoadPerf Time Written: 20070101001143.000000+060 Event Type: informacje User: ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem "windir"=%SystemRoot% "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_LEVEL"=6 "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 8 Stepping 1, AuthenticAMD "PROCESSOR_REVISION"=0801 "NUMBER_OF_PROCESSORS"=1 "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP "CLASSPATH"=.; -----------------EOF----------------- [/log] log.txt [log]Logfile of random's system information tool 1.08 (written by random/random) Run by USERS at 2010-08-28 20:39:38 Microsoft Windows XP Professional Dodatek Service Pack 3 System drive C: has 747 MB (2%) free of 40 GB Total RAM: 511 MB (62% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 20:39:47, on 2010-08-28 Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Alwil Software\Avast5\AvastSvc.exe C:\WINDOWS\Explorer.EXE C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe C:\Program Files\Common Files\Real\Update_OB\realsched.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\DAEMON Tools Lite\DTLite.exe C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\system32\wuauclt.exe C:\Documents and Settings\USERS\Moje dokumenty\Pobieranie\RSIT.exe C:\Program Files\trend micro\USERS.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com?o=15446&l=dis R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll O2 - BHO: SnagIt Toolbar Loader - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\Snagit 10\SnagitBHO.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll O3 - Toolbar: Snagit - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\Snagit 10\SnagitIEAddin.dll O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA LOKALNA') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA SIECIOWA') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: McAfee Security Scan Plus.lnk = ? O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll O15 - Trusted Zone: http://mks.com.pl O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1167608442468 O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} (MainControl Class) - http://www.mks.com.pl/skaner/SkanerOnline.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{D207F6D6-A46D-48AE-9F12-05B4D7DCE5AC}: NameServer = 192.168.0.1 O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe -- End of file - 6691 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00C6482D-C502-44C8-8409-FCE54AD9C208}] SnagIt Toolbar Loader - C:\Program Files\TechSmith\Snagit 10\SnagitBHO.dll [2010-04-13 63304] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] Skype add-on for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}] Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2010-02-04 1197448] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-08-11 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-08-11 79648] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2010-02-04 1197448] {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - Snagit - C:\Program Files\TechSmith\Snagit 10\SnagitIEAddin.dll [2010-04-13 206152] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2010-06-28 2837864] "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672] "TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2007-01-16 185896] "SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360] "DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2006-10-09 139264] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD] C:\Program Files\Nero\Nero 7\InCD\InCD.exe [2006-07-25 1043968] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LGODDFU] C:\Program Files\lg_fwupdate\fwupdate.exe [2007-01-16 249856] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Load] c:\progra~1\YDPDict\watch.exe [1997-06-03 48576] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS] C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2006-01-12 155648] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] C:\Program Files\QuickTime\qttask.exe -atboottime [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl] C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe [2004-11-02 32768] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe [2006-11-09 49263] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2007-01-16 185896] C:\Documents and Settings\All Users\Menu Start\Programy\Autostart McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"=1 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "D:\GG\Gadu-Gadu\gg.exe"="D:\GG\Gadu-Gadu\gg.exe:*:Enabled:Gadu-Gadu - program główny" "C:\Gry\CS 1.6\hl.exe"="C:\Gry\CS 1.6\hl.exe:*:Enabled:Half-Life Launcher" "C:\Program Files\BitTorrent\bittorrent.exe"="C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent" "C:\Program Files\Gadu-Gadu 10\gg.exe"="C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10" "C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype" "C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager" "C:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe"="C:\Program Files\Activision\Call of Duty 2\CoD2MP_s.exe:*:Enabled:CoD2MP_s" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" ======List of files/folders created in the last 1 months====== 2010-08-28 20:39:40 ----D---- C:\Program Files\trend micro 2010-08-28 20:39:38 ----D---- C:\rsit 2010-08-28 10:04:27 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Last.fm 2010-08-26 22:17:46 ----D---- C:\WINDOWS\.jagex_cache_32 2010-08-25 18:42:45 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\McAfee 2010-08-25 18:42:42 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\McAfee Security Scan 2010-08-25 18:42:25 ----D---- C:\Program Files\McAfee Security Scan 2010-08-23 10:49:26 ----SHD---- C:\FOUND.009 2010-08-20 17:50:46 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\TechSmith 2010-08-20 17:50:40 ----D---- C:\Program Files\TechSmith 2010-08-20 17:49:53 ----D---- C:\Program Files\Common Files\Wise Installation Wizard 2010-08-19 13:42:30 ----SHD---- C:\FOUND.008 2010-08-18 10:53:10 ----SHD---- C:\FOUND.007 2010-08-16 22:52:58 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM 2010-08-16 22:52:54 ----D---- C:\Documents and Settings\USERS\Dane aplikacji\OpenFM 2010-08-13 15:32:42 ----SHD---- C:\FOUND.006 2010-08-11 20:35:19 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Sun 2010-08-11 20:34:54 ----A---- C:\WINDOWS\system32\javaw.exe 2010-08-11 20:34:54 ----A---- C:\WINDOWS\system32\java.exe 2010-08-11 20:34:54 ----A---- C:\WINDOWS\system32\deployJava1.dll 2010-08-11 13:20:07 ----A---- C:\WINDOWS\game.ini 2010-08-11 13:12:47 ----D---- C:\Program Files\Activision 2010-08-11 13:11:12 ----SHD---- C:\WINDOWS\ftpcache 2010-08-11 13:08:36 ----D---- C:\Program Files\PowerISO 2010-08-09 10:39:40 ----D---- C:\Documents and Settings\USERS\Dane aplikacji\skypePM 2010-08-09 10:38:19 ----D---- C:\Documents and Settings\USERS\Dane aplikacji\Skype 2010-08-09 10:36:48 ----D---- C:\Program Files\Common Files\Skype 2010-08-09 10:36:33 ----RD---- C:\Program Files\Skype 2010-08-09 10:36:03 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Skype 2010-08-08 14:53:29 ----D---- C:\Documents and Settings\USERS\Dane aplikacji\.purple 2010-08-08 14:49:46 ----D---- C:\Program Files\Pidgin 2010-08-08 14:37:18 ----D---- C:\Documents and Settings\USERS\Dane aplikacji\Gadu-Gadu 10 2010-08-08 14:36:48 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 2010-08-08 14:35:45 ----D---- C:\Program Files\Gadu-Gadu 10 2010-08-08 10:57:04 ----SHD---- C:\FOUND.005 2010-08-04 12:17:59 ----D---- C:\Documents and Settings\USERS\Dane aplikacji\dvdcss 2010-08-03 18:26:36 ----SHD---- C:\FOUND.004 2010-08-03 10:08:48 ----SHD---- C:\FOUND.003 2010-08-02 18:17:56 ----SHD---- C:\FOUND.002 2010-07-31 13:17:13 ----D---- C:\Documents and Settings\USERS\Dane aplikacji\gtk-2.0 2010-07-31 09:24:57 ----D---- C:\Program Files\GIMP-2.0 2010-07-30 17:57:32 ----D---- C:\Program Files\ReadManiac ======List of files/folders modified in the last 1 months====== 2010-08-28 18:57:24 ----A---- C:\WINDOWS\SchedLgU.Txt 2010-08-28 16:37:00 ----A---- C:\WINDOWS\winamp.ini 2010-08-19 21:30:02 ----A---- C:\WINDOWS\wincmd.ini 2010-08-16 22:11:04 ----A---- C:\WINDOWS\NeroDigital.ini 2010-08-11 20:34:46 ----A---- C:\WINDOWS\system32\javaws.exe ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-06-19 691696] R0 viaagp;Filtr magistrali AGP VIA; C:\WINDOWS\system32\DRIVERS\viaagp.sys [2008-04-14 42240] R0 viaagp1;VIA AGP Filter; C:\WINDOWS\system32\DRIVERS\viaagp1.sys [2003-07-02 27904] R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2010-06-28 28880] R1 AmdK7;Sterownik procesora AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2008-04-14 41856] R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2010-06-28 165456] R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2010-06-28 46672] R1 InCDPass;InCDPass; C:\WINDOWS\system32\drivers\InCDPass.sys [2006-07-25 31488] R1 incdrm;InCD Reader; C:\WINDOWS\system32\drivers\InCDRm.sys [2006-07-25 33792] R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2010-04-12 59388] R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2010-06-28 17744] R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2010-06-28 100176] R2 NwlnkIpx;Protokół transportowy zgodny z NWLink IPX/SPX/NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2008-04-14 88320] R2 NwlnkNb;System NetBIOS NWLink; C:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2001-08-17 63232] R2 NwlnkSpx;Protokół NWLink SPX/SPXII; C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2001-08-17 55936] R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2010-06-28 23376] R3 FETNDIS;Sterownik NT karty VIA PCI 10/100Mb Fast Ethernet; C:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-17 27165] R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2004-08-03 1897408] R3 usbuhci;Sterownik Miniport uniwersalnego kontrolera hosta USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608] R3 VIAudio;VIA AC'97 Audio Controller (WDM); C:\WINDOWS\system32\drivers\viaudios.sys [2003-02-26 370048] R4 InCDfs;InCD File System; C:\WINDOWS\system32\drivers\InCDFs.sys [2006-07-25 102912] S1 kbdhid;Sterownik klawiatury HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720] S3 as1oscup;as1oscup; C:\WINDOWS\system32\drivers\as1oscup.sys [] S3 HidUsb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368] S3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-26 12160] S3 rtl8139;Sterownik NT karty Realtek RTL8139(A/B/C)-based PCI Fast Ethernet; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992] S3 se45bus;Sony Ericsson Device 069 driver (WDM); C:\WINDOWS\system32\DRIVERS\se45bus.sys [2006-11-30 61536] S3 se45mdfl;Sony Ericsson Device 069 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\se45mdfl.sys [2006-11-30 9360] S3 se45mdm;Sony Ericsson Device 069 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\se45mdm.sys [2006-11-30 97088] S3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128] S3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384] R2 InCDsrv;InCD Helper; C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe [2006-07-25 849408] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-08-11 153376] R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120] R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912] R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384] R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384] S3 aspnet_state;„Usługa stanu ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104] S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632] S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664] S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232] S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2006-10-09 724992] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136] S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096] -----------------EOF----------------- [/log] Za pomoc wszelaką pomoc, dziękuję :]
Sohei komentarz 28 sierpnia 2010 komentarz 28 sierpnia 2010 Procesy są jak najbardziej poprawne! [code]:Processes Explorer.exe :OTL O33 - MountPoints2\{21baa810-7b82-11df-9ebf-000ae6774e0b}\Shell - "" = AutoRun O33 - MountPoints2\{21baa810-7b82-11df-9ebf-000ae6774e0b}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -- File not found O33 - MountPoints2\{a396f9b2-7fbd-11df-9ed2-000ae6774e0b}\Shell\AutoRun\command - "" = ljepa\\karla.exe O33 - MountPoints2\{a396f9b2-7fbd-11df-9ed2-000ae6774e0b}\Shell\explore\command - "" = ljepa\karla.exe O33 - MountPoints2\{a396f9b2-7fbd-11df-9ed2-000ae6774e0b}\Shell\install\command - "" = ljepa\karla.exe O33 - MountPoints2\{a396f9b2-7fbd-11df-9ed2-000ae6774e0b}\Shell\open\command - "" = ljepa\karla.exe O33 - MountPoints2\{a396f9b3-7fbd-11df-9ed2-000ae6774e0b}\Shell\AutoRun\command - "" = ljepa\\karla.exe O33 - MountPoints2\{a396f9b3-7fbd-11df-9ed2-000ae6774e0b}\Shell\explore\command - "" = ljepa\karla.exe O33 - MountPoints2\{a396f9b3-7fbd-11df-9ed2-000ae6774e0b}\Shell\install\command - "" = ljepa\karla.exe O33 - MountPoints2\{a396f9b3-7fbd-11df-9ed2-000ae6774e0b}\Shell\open\command - "" = ljepa\karla.exe O33 - MountPoints2\{b225f55e-8095-11df-9ed6-000ae6774e0b}\Shell\AutoRun\command - "" = pupica\\makaroni.exe O33 - MountPoints2\{b225f55e-8095-11df-9ed6-000ae6774e0b}\Shell\explore\command - "" = pupica\\\makaroni.exe O33 - MountPoints2\{b225f55e-8095-11df-9ed6-000ae6774e0b}\Shell\open\command - "" = pupica\\\makaroni.exe :files C:\FOUND.009 C:\FOUND.008 C:\FOUND.007 C:\FOUND.006 C:\FOUND.005 C:\FOUND.002 C:\FOUND.003 C:\FOUND.004 C:\FOUND.000 C:\Program Files\Ask.com :Commands [emptytemp] [start explorer] [reboot][/code] Wklejasz to do OTL w białe okienko i klikasz run fix. Wykonaj pełny skan [url=http://dobreprogramy.pl/index.php?dz=2&id=1998][b]DR WEB CureIt[/b][/url] Wykonaj pełny skan[url=http://www.dobreprogramy.pl/Malwarebytes-AntiMalware,Program,Windows,13117.html][b]MBAM[/b][/url] Co znajda usun po czym daj logi z usuwania + nowy log OTL
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.