x-kom hosting

System nie może uzyskac dostepu do urzadzenia

SebaSTI

SebaSTI

utworzono
utworzono (edytowane)

Przypuszczam ze posiadma jakiegos wirusa,po restarcie pc przestały działać gadzety, ikony z pulpitu nie otwieraja sie i na pasku nie odpala antywirusa, a co najdziwneijsze w folderach otwiera wszystko...Combofix tez nie odpala za kazdym razem jak cos chce otworzyc bład jest taki:

[img]http://upload.fototube.pl/pics/2010/11/01/img/626356480e10832e50a3ed656c19149d.jpg[/img]

ten wyskakuje po otwarciu antywirusa z paska

[img]http://upload.fototube.pl/pics/2010/11/01/img/84c3d10fab47713dadb91dbd1e6ff213.jpg[/img]

pc skanowalem różnymi programami typu Anti-Malware, ale nic szczegolnego nie wykryło

Mam nadzieje ze pomożecie, zeby sie obyło bez formatowania

fra

fra

komentarz
komentarz

Log z programu OTL prosimy.

SebaSTI

SebaSTI

komentarz
  • Autor
komentarz

MAM


[log]OTL logfile created on: 2010-11-01 22:23:40 - Run 1
OTL by OldTimer - Version 3.2.17.2 Folder = C:\Documents and Settings\seba\Pulpit
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

1,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 49,00% Memory free
3,00 Gb Paging File | 2,00 Gb Available in Paging File | 71,00% Paging File free
Paging file location(s): C:\pagefile.sys 2110 2110 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 19,53 Gb Total Space | 1,62 Gb Free Space | 8,29% Space Free | Partition Type: NTFS
Drive D: | 17,73 Gb Total Space | 11,47 Gb Free Space | 64,72% Space Free | Partition Type: NTFS
Drive F: | 78,13 Gb Total Space | 59,62 Gb Free Space | 76,31% Space Free | Partition Type: NTFS
Drive G: | 76,16 Gb Total Space | 72,58 Gb Free Space | 95,30% Space Free | Partition Type: NTFS

Computer Name: MX8PC | User Name: seba | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (All) ==========[/color]

PRC - [2010-11-01 22:15:19 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\seba\Pulpit\OTL.exe
PRC - [2010-10-27 17:23:16 | 001,483,072 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe
PRC - [2010-10-08 13:00:10 | 000,836,464 | ---- | M] (Opera Software) -- C:\Program Files\Opera\opera.exe
PRC - [2010-10-08 01:28:22 | 000,156,776 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe
PRC - [2010-10-07 09:04:26 | 012,661,344 | ---- | M] (GG Network S.A.) -- D:\Gadu-Gadu 10\gg.exe
PRC - [2010-08-19 10:12:44 | 000,066,872 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrA.exe
PRC - [2009-10-12 13:39:46 | 003,288,576 | ---- | M] (Antonio Da Cruz) -- D:\PhotoFiltre Studio X\pfstudiox.exe
PRC - [2009-07-21 13:34:33 | 000,185,089 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2009-07-04 23:07:33 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe
PRC - [2009-07-04 20:08:18 | 000,024,064 | ---- | M] (Creative Technology Ltd.) -- C:\WINDOWS\system32\devldr32.exe
PRC - [2009-06-27 15:16:26 | 003,642,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2009-05-13 15:48:22 | 000,108,289 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2009-03-02 12:08:47 | 000,209,153 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2009-01-26 15:31:16 | 002,144,088 | RHS- | M] (Safer Networking Limited) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2009-01-26 15:31:12 | 005,365,592 | RHS- | M] (Safer Networking Limited) -- C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
PRC - [2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe
PRC - [2008-04-14 22:51:44 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH]
PRC - [2008-04-14 22:51:40 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe
PRC - [2008-04-14 22:51:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe
PRC - [2008-04-14 22:51:12 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe
PRC - [2007-09-17 21:51:14 | 001,470,464 | ---- | M] (UASSOFT.COM) -- C:\Program Files\Multimedia Keyboard & Mouse Driver\V5\KMConfig.exe
PRC - [2007-05-08 16:00:48 | 002,179,072 | ---- | M] (UASSOFT.COM) -- C:\Program Files\Multimedia Keyboard & Mouse Driver\V5\KMWDSrv.exe
PRC - [2007-03-06 13:51:14 | 000,212,992 | ---- | M] (UASSOFT.COM) -- C:\Program Files\Multimedia Keyboard & Mouse Driver\V5\StartAutorun.exe
PRC - [2007-03-06 09:35:02 | 000,198,168 | ---- | M] (InterVideo Inc.) -- C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe


[color=#E56717]========== Modules (SafeList) ==========[/color]

MOD - [2010-11-01 22:15:19 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\seba\Pulpit\OTL.exe


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - File not found [On_Demand | Stopped] -- C:\WINDOWS\System32\alg.exe -- (ALG)
SRV - [2010-10-27 17:23:16 | 001,483,072 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc)
SRV - [2010-10-27 17:21:08 | 000,029,504 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
SRV - [2010-07-26 14:30:55 | 000,435,016 | ---- | M] (TuneUp Software) [On_Demand | Stopped] -- C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe -- (TuneUp.Defrag)
SRV - [2009-08-24 20:16:36 | 000,406,016 | ---- | M] (mst software GmbH, Germany) [On_Demand | Stopped] -- C:\Program Files\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe -- (DfSdkS)
SRV - [2009-07-21 13:34:33 | 000,185,089 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2009-05-13 15:48:22 | 000,108,289 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2007-11-30 12:18:51 | 000,026,488 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\system32\spupdsvc.exe -- (spupdsvc)
SRV - [2007-05-08 16:00:48 | 002,179,072 | ---- | M] (UASSOFT.COM) [Auto | Running] -- C:\Program Files\Multimedia Keyboard & Mouse Driver\V5\KMWDSrv.exe -- (KMWDSERVICE)
SRV - [2007-03-06 09:35:02 | 000,198,168 | ---- | M] (InterVideo Inc.) [Auto | Running] -- C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe -- (Capture Device Service)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\seba\USTAWI~1\Temp\cpuz132\cpuz132_x32.sys -- (cpuz132)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2010-10-08 09:30:00 | 009,587,776 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2010-10-07 12:34:32 | 000,010,064 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)
DRV - [2010-08-09 21:27:20 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010-07-09 12:18:54 | 000,020,328 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\cpuz134_x32.sys -- (cpuz134)
DRV - [2010-05-11 11:00:34 | 000,020,072 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\cpuz133_x32.sys -- (cpuz133)
DRV - [2009-11-25 11:19:02 | 000,056,816 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2009-07-05 00:19:05 | 000,062,208 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\si3112.sys -- (Si3112)
DRV - [2009-07-04 22:08:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Sterownik NT karty Realtek RTL8139(A/B/C)
DRV - [2009-07-04 22:08:30 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)
DRV - [2009-07-04 20:08:36 | 000,036,480 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sfmanm.sys -- (sfman) Sterownik Creative SoundFont Manager (WDM)
DRV - [2009-07-04 20:08:24 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2009-07-04 20:08:24 | 000,008,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hidgame.sys -- (hidgame)
DRV - [2009-07-04 20:08:20 | 000,283,904 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\emu10k1m.sys -- (emu10k) Creative SB Live! (WDM)
DRV - [2009-07-04 20:08:16 | 000,006,912 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctlfacem.sys -- (emu10k1) Sterownik Creative Interface Manager (WDM)
DRV - [2009-07-04 20:08:16 | 000,003,712 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctljystk.sys -- (ctljystk)
DRV - [2009-05-11 09:12:24 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2009-05-05 08:58:30 | 000,013,976 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\videX32.sys -- (videX32)
DRV - [2009-03-30 09:33:07 | 000,096,104 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2009-02-13 11:35:05 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio)
DRV - [2003-07-02 03:42:00 | 000,027,904 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\viaagp1.sys -- (viaagp1)
DRV - [2002-10-03 00:09:08 | 000,031,424 | ---- | M] (Robert Schlabbach) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RMSPPPOE.SYS -- (RMSPPPOE) WAN Miniport (PPP over Ethernet Protocol)
DRV - [2001-09-10 01:30:00 | 000,042,880 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\viaudio.sys -- (VIAudio) VIA AC'97 Enhanced Audio Controller (WDM)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.eu.microsoft.com/poland/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {872b5b88-9db5-4310-bdd0-ac189557e5f5}:2.7.0.14
FF - prefs.js..extensions.enabledItems: {ACAA314B-EEBA-48e4-AD47-84E31C44796C}:1.0.1
FF - prefs.js..extensions.enabledItems: {AB2CE124-6272-4b12-94A9-7303C7397BD1}:4.2.0.5198
FF - prefs.js..extensions.enabledItems: DTToolbar@toolbarnet.com:1.1.2.0185


FF - HKLM\software\mozilla\Mozilla Firefox 3.6.6\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-07-19 19:08:18 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.6\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-07-19 19:08:33 | 000,000,000 | ---D | M]

[2010-03-28 12:57:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\Mozilla\Extensions
[2010-10-16 14:00:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\Mozilla\Firefox\Profiles\42isqtk6.default\extensions
[2010-08-01 12:52:38 | 000,000,000 | ---D | M] (DVDVideoSoftTB Toolbar) -- C:\Documents and Settings\seba\Dane aplikacji\Mozilla\Firefox\Profiles\42isqtk6.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
[2010-08-01 12:26:40 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\seba\Dane aplikacji\Mozilla\Firefox\Profiles\42isqtk6.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2010-08-09 21:27:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\Mozilla\Firefox\Profiles\42isqtk6.default\extensions\DTToolbar@toolbarnet.com
[2010-08-09 21:27:24 | 000,002,059 | ---- | M] () -- C:\Documents and Settings\seba\Dane aplikacji\Mozilla\Firefox\Profiles\42isqtk6.default\searchplugins\daemon-search.xml
[2010-11-01 20:24:16 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010-07-07 21:52:45 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010-07-07 21:52:45 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2010-07-07 21:52:46 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2010-07-07 21:52:46 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010-07-07 21:52:46 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2010-07-07 21:52:46 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2001-10-26 17:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [KMConfig] C:\Program Files\Multimedia Keyboard & Mouse Driver\V5\StartAutorun.exe KMConfig.exe File not found
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe ()
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer Networking Limited)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktopCleanupWizard = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoInternetOpenWith = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableStatusMessages = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: VerboseStatus = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SynchronousMachineGroupPolicy = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SynchronousUserGroupPolicy = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 0
O8 - Extra context menu item: Free YouTube Download - C:\Documents and Settings\seba\Dane aplikacji\DVDVideoSoftIEHelpers\youtubedownload.htm ()
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Documents and Settings\seba\Dane aplikacji\DVDVideoSoftIEHelpers\youtubetomp3.htm ()
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\seba\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\seba\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 0
O32 - AutoRun File - [2010-03-22 15:15:21 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{1b7ed1b0-cf22-11df-aaae-00304f610ed7}\Shell\AutoRun\command - "" = tmpdata\tmpdata.exe
O33 - MountPoints2\{1b7ed1b0-cf22-11df-aaae-00304f610ed7}\Shell\explore\command - "" = tmpdata\tmpdata.exe
O33 - MountPoints2\{1b7ed1b0-cf22-11df-aaae-00304f610ed7}\Shell\open\command - "" = tmpdata\tmpdata.exe
O33 - MountPoints2\{1b7ed1b0-cf22-11df-aaae-00304f610ed7}\Shell\search\command - "" = tmpdata\tmpdata.exe
O33 - MountPoints2\{553336e0-e335-11df-aad0-00304f610ed7}\Shell\AutoRun\command - "" = tmpdata\tmpdata.exe
O33 - MountPoints2\{553336e0-e335-11df-aad0-00304f610ed7}\Shell\explore\command - "" = tmpdata\tmpdata.exe
O33 - MountPoints2\{553336e0-e335-11df-aad0-00304f610ed7}\Shell\open\command - "" = tmpdata\tmpdata.exe
O33 - MountPoints2\{553336e0-e335-11df-aad0-00304f610ed7}\Shell\search\command - "" = tmpdata\tmpdata.exe
O33 - MountPoints2\{804554cd-3683-11df-8ea9-00304f610ed7}\Shell\AutoRun\command - "" = tmpdata\tmpdata.exe
O33 - MountPoints2\{804554cd-3683-11df-8ea9-00304f610ed7}\Shell\explore\command - "" = tmpdata\tmpdata.exe
O33 - MountPoints2\{804554cd-3683-11df-8ea9-00304f610ed7}\Shell\open\command - "" = tmpdata\tmpdata.exe
O33 - MountPoints2\{804554cd-3683-11df-8ea9-00304f610ed7}\Shell\search\command - "" = tmpdata\tmpdata.exe
O33 - MountPoints2\{d9e1d069-6a75-11df-8f26-00304f610ed7}\Shell\AutoRun\command - "" = tmpdata\tmpdata.exe
O33 - MountPoints2\{d9e1d069-6a75-11df-8f26-00304f610ed7}\Shell\explore\command - "" = tmpdata\tmpdata.exe
O33 - MountPoints2\{d9e1d069-6a75-11df-8f26-00304f610ed7}\Shell\open\command - "" = tmpdata\tmpdata.exe
O33 - MountPoints2\{d9e1d069-6a75-11df-8f26-00304f610ed7}\Shell\search\command - "" = tmpdata\tmpdata.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2010-11-01 22:15:12 | 000,576,000 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\seba\Pulpit\OTL.exe
[2010-11-01 21:49:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\seba\Pulpit\Shameless Sexy Amatur VIP Photo
[2010-11-01 21:38:20 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2010-11-01 21:38:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Spybot - Search & Destroy
[2010-11-01 21:35:52 | 000,000,000 | ---D | C] -- C:\32788R22FWJFW
[2010-11-01 21:31:06 | 016,409,960 | ---- | C] (Safer Networking Limited ) -- C:\Documents and Settings\seba\Pulpit\spybotsd162.exe
[2010-11-01 21:26:40 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\seba\Recent
[2010-11-01 20:52:24 | 000,000,000 | ---D | C] -- C:\Program Files\RocketDock
[2010-11-01 18:48:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\seba\Ustawienia lokalne\Dane aplikacji\PackageAware
[2010-11-01 17:06:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\seba\Pulpit\Sex w wielkim mieście 2 Sex And The City 2 (2010) [DVDRip.RMVB-rafal900000] [Lektor PL]
[2010-11-01 17:06:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\seba\Pulpit\Czekając Na Sobotę (2010) [DVDRip.RMVB-rafal900000] [Lektor PL]
[2010-11-01 08:34:34 | 000,270,336 | ---- | C] (CJSC Computing Forces) -- C:\WINDOWS\Ilycaa.exe
[2010-11-01 08:34:17 | 000,454,656 | ---- | C] (CJSC Computing Forces) -- C:\WINDOWS\System32\sshnas21.dll
[2010-10-31 21:57:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\seba\Ustawienia lokalne\Dane aplikacji\Ceiiular
[2010-10-30 10:16:50 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2011
[2010-10-23 21:49:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Weskysoft
[2010-10-23 12:21:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\seba\Dane aplikacji\DriverCure
[2010-10-23 12:21:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\seba\Dane aplikacji\ParetoLogic
[2010-10-23 12:21:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ParetoLogic
[2010-10-23 11:53:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard
[2010-10-23 11:48:11 | 014,528,512 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvoglnt.dll
[2010-10-23 11:48:11 | 013,012,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcompiler.dll
[2010-10-23 11:48:11 | 004,882,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuda.dll
[2010-10-23 11:48:11 | 002,932,840 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvid.dll
[2010-10-23 11:48:11 | 002,666,088 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvenc.dll
[2010-10-23 11:48:11 | 000,888,424 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispco32.dll
[2010-10-23 11:48:11 | 000,813,672 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgenco32.dll
[2010-10-23 11:48:11 | 000,061,440 | ---- | C] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll
[2010-10-23 11:48:10 | 009,587,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nv4_mini.sys
[2010-10-23 11:48:10 | 006,358,784 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nv4_disp.dll
[2010-10-23 11:48:10 | 001,462,272 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvapi.dll
[2010-10-08 01:28:44 | 000,081,920 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwddi.dll
[2010-10-08 01:28:42 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsth.dll
[2010-10-08 01:28:42 | 000,249,856 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrseng.dll
[2010-10-08 01:28:38 | 000,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsel.dll
[2010-10-08 01:28:38 | 000,274,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsesm.dll
[2010-10-08 01:28:38 | 000,126,976 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszht.dll
[2010-10-08 01:28:36 | 000,331,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrshe.dll
[2010-10-08 01:28:36 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsda.dll
[2010-10-08 01:28:36 | 000,249,856 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsfi.dll
[2010-10-08 01:28:34 | 000,286,720 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsfr.dll
[2010-10-08 01:28:34 | 000,274,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsnl.dll
[2010-10-08 01:28:34 | 000,270,336 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsru.dll
[2010-10-08 01:28:34 | 000,262,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrshu.dll
[2010-10-08 01:28:34 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssl.dll
[2010-10-08 01:28:34 | 000,229,376 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszhc.dll
[2010-10-08 01:28:32 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrstr.dll
[2010-10-08 01:28:30 | 000,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrses.dll
[2010-10-08 01:28:30 | 000,266,240 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsko.dll
[2010-10-08 01:28:30 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssv.dll
[2010-10-08 01:28:30 | 000,249,856 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrscs.dll
[2010-10-08 01:28:28 | 000,335,872 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsar.dll
[2010-10-08 01:28:28 | 000,278,528 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsde.dll
[2010-10-08 01:28:28 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssk.dll
[2010-10-08 01:28:26 | 000,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsit.dll
[2010-10-08 01:28:26 | 000,274,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspt.dll
[2010-10-08 01:28:26 | 000,270,336 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsptb.dll
[2010-10-08 01:28:26 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspl.dll
[2010-10-08 01:28:26 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsno.dll
[2010-10-08 01:28:24 | 013,851,752 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpl.dll
[2010-10-08 01:28:24 | 000,277,608 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmccs.dll
[2010-10-08 01:28:24 | 000,270,336 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsja.dll
[2010-10-08 01:28:24 | 000,110,696 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmctray.dll
[2010-10-08 01:28:22 | 000,145,000 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcolor.exe
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2010-11-01 22:16:17 | 000,003,384 | ---- | M] () -- C:\WINDOWS\System32\NOTEPAD.ini
[2010-11-01 22:15:19 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\seba\Pulpit\OTL.exe
[2010-11-01 21:34:44 | 016,409,960 | ---- | M] (Safer Networking Limited ) -- C:\Documents and Settings\seba\Pulpit\spybotsd162.exe
[2010-11-01 21:27:55 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-11-01 21:27:51 | 1475,928,064 | -HS- | M] () -- C:\hiberfil.sys
[2010-11-01 21:15:36 | 000,019,286 | ---- | M] () -- C:\cleanup.exe
[2010-11-01 21:15:36 | 000,000,574 | ---- | M] () -- C:\cleanup.bat
[2010-11-01 18:33:03 | 000,002,560 | ---- | M] () -- C:\WINDOWS\_MSRSTRT.EXE
[2010-11-01 08:34:26 | 000,270,336 | ---- | M] (CJSC Computing Forces) -- C:\WINDOWS\Ilycaa.exe
[2010-11-01 08:34:17 | 000,454,656 | ---- | M] (CJSC Computing Forces) -- C:\WINDOWS\System32\sshnas21.dll
[2010-11-01 00:47:12 | 174,826,618 | ---- | M] () -- C:\Documents and Settings\seba\Pulpit\Wysiwyg 22.part2.rar
[2010-11-01 00:38:31 | 263,192,576 | ---- | M] () -- C:\Documents and Settings\seba\Pulpit\Wysiwyg 22.part1.rar
[2010-10-31 20:53:16 | 000,026,112 | ---- | M] () -- C:\Documents and Settings\seba\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-10-31 20:52:05 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010-10-31 08:29:20 | 000,497,586 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2010-10-31 08:29:19 | 000,438,750 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-10-31 08:29:19 | 000,087,244 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2010-10-31 08:29:19 | 000,069,926 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-10-31 08:26:50 | 000,002,184 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-10-28 21:50:07 | 006,462,401 | ---- | M] () -- C:\Documents and Settings\seba\Moje dokumenty\___ARESTRA___jacob ft tyra c - leaving (remix).mp3
[2010-10-28 21:50:07 | 004,527,459 | ---- | M] () -- C:\Documents and Settings\seba\Moje dokumenty\___ARESTRA___train-hey soul sister (remix dj wilson pirez).mp3
[2010-10-28 21:50:07 | 004,472,216 | ---- | M] () -- C:\Documents and Settings\seba\Moje dokumenty\___ARESTRA___18-master_blaster_-_come_clean_(electro_radio_mix).mp3
[2010-10-28 21:50:07 | 002,922,730 | ---- | M] () -- C:\Documents and Settings\seba\Moje dokumenty\___ARESTRA___train_hey_soul_sister_covered_my_momentsafter.mp3
[2010-10-28 21:43:45 | 004,537,463 | ---- | M] () -- C:\Documents and Settings\seba\Moje dokumenty\jacob tyra leaving (working).wma
[2010-10-27 17:25:18 | 000,031,552 | ---- | M] (TuneUp Software) -- C:\WINDOWS\System32\TURegOpt.exe
[2010-10-27 17:21:08 | 000,029,504 | ---- | M] (TuneUp Software) -- C:\WINDOWS\System32\uxtuneup.dll
[2010-10-23 21:31:05 | 000,000,446 | ---- | M] () -- C:\WINDOWS\tasks\SLOW-PCfighter.job
[2010-10-23 11:48:30 | 000,240,124 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2010-10-23 11:48:30 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin
[2010-10-23 11:48:24 | 000,240,124 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2010-10-23 11:48:24 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\nvdrswr.lk
[2010-10-14 18:49:15 | 007,067,648 | ---- | M] () -- C:\Documents and Settings\seba\Moje dokumenty\hey soul sister (karaoke instrumental) by train with on screen lyrics 21 4 2010(2).mp3
[2010-10-14 18:46:05 | 004,466,939 | ---- | M] () -- C:\Documents and Settings\seba\Moje dokumenty\train - hey_ soul sister (acoustic live_).mp3
[2010-10-08 09:30:00 | 014,528,512 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvoglnt.dll
[2010-10-08 09:30:00 | 013,012,992 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcompiler.dll
[2010-10-08 09:30:00 | 009,587,776 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nv4_mini.sys
[2010-10-08 09:30:00 | 006,358,784 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nv4_disp.dll
[2010-10-08 09:30:00 | 004,882,432 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuda.dll
[2010-10-08 09:30:00 | 002,932,840 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvid.dll
[2010-10-08 09:30:00 | 002,666,088 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvenc.dll
[2010-10-08 09:30:00 | 002,293,194 | ---- | M] () -- C:\WINDOWS\System32\nvdata.bin
[2010-10-08 09:30:00 | 001,462,272 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvapi.dll
[2010-10-08 09:30:00 | 000,888,424 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispco32.dll
[2010-10-08 09:30:00 | 000,813,672 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgenco32.dll
[2010-10-08 09:30:00 | 000,061,440 | ---- | M] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll
[2010-10-08 09:30:00 | 000,003,445 | ---- | M] () -- C:\WINDOWS\System32\nvinfo.pb
[2010-10-08 01:28:44 | 000,081,920 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwddi.dll
[2010-10-08 01:28:42 | 000,253,952 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsth.dll
[2010-10-08 01:28:42 | 000,249,856 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrseng.dll
[2010-10-08 01:28:38 | 000,282,624 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsel.dll
[2010-10-08 01:28:38 | 000,274,432 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsesm.dll
[2010-10-08 01:28:38 | 000,126,976 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszht.dll
[2010-10-08 01:28:36 | 000,331,776 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrshe.dll
[2010-10-08 01:28:36 | 000,253,952 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsda.dll
[2010-10-08 01:28:36 | 000,249,856 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsfi.dll
[2010-10-08 01:28:34 | 000,286,720 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsfr.dll
[2010-10-08 01:28:34 | 000,274,432 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsnl.dll
[2010-10-08 01:28:34 | 000,270,336 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsru.dll
[2010-10-08 01:28:34 | 000,262,144 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrshu.dll
[2010-10-08 01:28:34 | 000,258,048 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssl.dll
[2010-10-08 01:28:34 | 000,229,376 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszhc.dll
[2010-10-08 01:28:32 | 000,258,048 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrstr.dll
[2010-10-08 01:28:30 | 000,282,624 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrses.dll
[2010-10-08 01:28:30 | 000,266,240 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsko.dll
[2010-10-08 01:28:30 | 000,253,952 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssv.dll
[2010-10-08 01:28:30 | 000,249,856 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrscs.dll
[2010-10-08 01:28:28 | 000,335,872 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsar.dll
[2010-10-08 01:28:28 | 000,278,528 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsde.dll
[2010-10-08 01:28:28 | 000,258,048 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssk.dll
[2010-10-08 01:28:26 | 000,282,624 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsit.dll
[2010-10-08 01:28:26 | 000,274,432 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspt.dll
[2010-10-08 01:28:26 | 000,270,336 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsptb.dll
[2010-10-08 01:28:26 | 000,258,048 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspl.dll
[2010-10-08 01:28:26 | 000,253,952 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsno.dll
[2010-10-08 01:28:24 | 013,851,752 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpl.dll
[2010-10-08 01:28:24 | 000,277,608 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmccs.dll
[2010-10-08 01:28:24 | 000,270,336 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsja.dll
[2010-10-08 01:28:24 | 000,110,696 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmctray.dll
[2010-10-08 01:28:22 | 000,145,000 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcolor.exe
[2010-10-02 22:38:37 | 000,000,124 | ---- | M] () -- C:\Documents and Settings\seba\Pulpit\Skrót do Kosz.lnk
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2010-11-01 21:15:36 | 000,019,286 | ---- | C] () -- C:\cleanup.exe
[2010-11-01 21:15:36 | 000,000,574 | ---- | C] () -- C:\cleanup.bat
[2010-11-01 18:33:03 | 000,002,560 | ---- | C] () -- C:\WINDOWS\_MSRSTRT.EXE
[2010-11-01 00:38:32 | 174,826,618 | ---- | C] () -- C:\Documents and Settings\seba\Pulpit\Wysiwyg 22.part2.rar
[2010-11-01 00:25:12 | 263,192,576 | ---- | C] () -- C:\Documents and Settings\seba\Pulpit\Wysiwyg 22.part1.rar
[2010-10-28 21:37:13 | 006,462,401 | ---- | C] () -- C:\Documents and Settings\seba\Moje dokumenty\___ARESTRA___jacob ft tyra c - leaving (remix).mp3
[2010-10-28 21:37:12 | 004,537,463 | ---- | C] () -- C:\Documents and Settings\seba\Moje dokumenty\jacob tyra leaving (working).wma
[2010-10-23 11:51:13 | 1475,928,064 | -HS- | C] () -- C:\hiberfil.sys
[2010-10-23 11:48:30 | 000,240,124 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2010-10-23 11:48:24 | 000,240,124 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2010-10-23 11:48:24 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2010-10-23 11:48:24 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\nvdrswr.lk
[2010-10-23 11:48:11 | 002,293,194 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin
[2010-10-18 19:20:56 | 004,472,216 | ---- | C] () -- C:\Documents and Settings\seba\Moje dokumenty\___ARESTRA___18-master_blaster_-_come_clean_(electro_radio_mix).mp3
[2010-10-14 18:41:27 | 004,466,939 | ---- | C] () -- C:\Documents and Settings\seba\Moje dokumenty\train - hey_ soul sister (acoustic live_).mp3
[2010-10-14 18:41:19 | 002,922,730 | ---- | C] () -- C:\Documents and Settings\seba\Moje dokumenty\___ARESTRA___train_hey_soul_sister_covered_my_momentsafter.mp3
[2010-10-14 18:41:14 | 007,067,648 | ---- | C] () -- C:\Documents and Settings\seba\Moje dokumenty\hey soul sister (karaoke instrumental) by train with on screen lyrics 21 4 2010(2).mp3
[2010-10-14 18:41:09 | 004,527,459 | ---- | C] () -- C:\Documents and Settings\seba\Moje dokumenty\___ARESTRA___train-hey soul sister (remix dj wilson pirez).mp3
[2010-10-02 22:38:37 | 000,000,124 | ---- | C] () -- C:\Documents and Settings\seba\Pulpit\Skrót do Kosz.lnk
[2010-08-19 10:13:19 | 000,022,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2010-08-19 10:13:18 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\seba\Dane aplikacji\PnkBstrK.sys
[2010-08-09 21:27:20 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010-08-04 22:42:43 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010-05-29 21:16:52 | 000,001,480 | ---- | C] () -- C:\WINDOWS\autosend.ini
[2010-05-09 18:07:01 | 000,106,496 | ---- | C] () -- C:\WINDOWS\System32\SaiCfg.dll
[2010-03-27 08:20:38 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010-03-27 08:20:38 | 000,258,048 | ---- | C] () -- C:\WINDOWS\System32\libFLAC.dll
[2010-03-24 19:15:09 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010-03-24 19:15:08 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2010-03-24 19:15:00 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010-03-24 19:14:55 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010-03-23 19:00:12 | 000,026,112 | ---- | C] () -- C:\Documents and Settings\seba\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-03-23 14:47:28 | 000,010,752 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2010-03-22 19:21:37 | 000,003,384 | ---- | C] () -- C:\WINDOWS\System32\NOTEPAD.ini
[2010-03-22 15:57:20 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010-03-22 15:24:35 | 000,086,120 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2010-03-22 15:17:48 | 000,000,047 | ---- | C] () -- C:\WINDOWS\TransBar.ini
[2009-07-05 16:59:43 | 000,000,861 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2002-03-17 01:00:00 | 000,007,420 | ---- | C] () -- C:\WINDOWS\UA000088.DLL

[color=#E56717]========== LOP Check ==========[/color]

[2010-08-09 21:26:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2010-03-24 19:53:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DFX
[2010-09-10 19:26:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Fighters
[2010-03-22 18:43:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2010-10-23 21:29:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ParetoLogic
[2010-06-23 21:37:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Drivers HeadQuarters Inc
[2010-08-25 15:36:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Stardock
[2010-03-22 19:10:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2010-08-17 10:04:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Test Drive Unlimited
[2010-10-30 10:19:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TuneUp Software
[2010-08-03 10:27:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ulead Systems
[2010-10-23 21:49:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Weskysoft
[2010-07-26 14:29:47 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[2010-10-31 22:33:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\AIMP
[2010-09-19 11:28:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\Any Video Converter Professional
[2010-03-22 20:43:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\Astro Gemini Software
[2010-03-27 07:28:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\Bluefive software
[2010-03-27 08:15:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\BSplayer Pro
[2010-08-10 17:59:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\DAEMON Tools Lite
[2010-08-10 18:49:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\Disney Interactive Studios
[2010-04-02 20:25:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\DMCache
[2010-10-23 12:21:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\DriverCure
[2010-09-19 10:52:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\DVDVideoSoft
[2010-09-19 10:53:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\DVDVideoSoftIEHelpers
[2010-03-22 15:15:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\Foxit
[2010-09-01 17:59:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\Gadu-Gadu 10
[2010-06-23 21:33:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\GetRightToGo
[2010-03-22 21:19:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\OpenOffice.org
[2010-03-31 17:58:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\Opera
[2010-10-23 12:21:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\ParetoLogic
[2010-06-26 21:19:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\Participatory Culture Foundation
[2010-06-26 21:37:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\PCF-VLC
[2010-03-22 19:21:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\PhotoFiltre Studio X
[2010-10-30 10:17:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\TuneUp Software
[2010-04-02 17:48:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\Ulead Systems
[2010-08-04 08:44:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\Uniblue
[2010-11-01 17:12:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\uTorrent
[2010-10-23 21:31:05 | 000,000,446 | ---- | M] () -- C:\WINDOWS\Tasks\SLOW-PCfighter.job

[color=#E56717]========== Purity Check ==========[/color]



< End of report >
[/log]



[log]OTL Extras logfile created on: 2010-11-01 22:23:40 - Run 1
OTL by OldTimer - Version 3.2.17.2 Folder = C:\Documents and Settings\seba\Pulpit
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

1,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 49,00% Memory free
3,00 Gb Paging File | 2,00 Gb Available in Paging File | 71,00% Paging File free
Paging file location(s): C:\pagefile.sys 2110 2110 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 19,53 Gb Total Space | 1,62 Gb Free Space | 8,29% Space Free | Partition Type: NTFS
Drive D: | 17,73 Gb Total Space | 11,47 Gb Free Space | 64,72% Space Free | Partition Type: NTFS
Drive F: | 78,13 Gb Total Space | 59,62 Gb Free Space | 76,31% Space Free | Partition Type: NTFS
Drive G: | 76,16 Gb Total Space | 72,58 Gb Free Space | 95,30% Space Free | Partition Type: NTFS

Computer Name: MX8PC | User Name: seba | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = Opera.HTML] -- C:\Program Files\Opera\Opera.exe (Opera Software)
.inf [@ = inffile] -- C:\WINDOWS\System32\NOTEPAD.EXE ()
.ini [@ = inifile] -- C:\WINDOWS\System32\NOTEPAD.EXE ()
.txt [@ = txtfile] -- C:\WINDOWS\System32\NOTEPAD.EXE ()

[color=#E56717]========== Shell Spawning ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 ()
batfile [open] -- "%1" %*
batfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 ()
cmdfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 ()
cmdfile [open] -- "%1" %*
cmdfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 ()
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
http [open] -- "C:\Program Files\Opera\opera.exe" (Opera Software)
https [open] -- "C:\Program Files\Opera\opera.exe" (Opera Software)
inffile [open] -- %SystemRoot%\System32\NOTEPAD.EXE %1 ()
inffile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 ()
inifile [open] -- %SystemRoot%\System32\NOTEPAD.EXE %1 ()
inifile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 ()
jsfile [edit] -- %SystemRoot%\System32\Notepad.exe %1 ()
jsfile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 ()
jsefile [edit] -- %SystemRoot%\System32\Notepad.exe %1 ()
jsefile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 ()
piffile [open] -- "%1" %*
regfile [edit] -- %SystemRoot%\system32\NOTEPAD.EXE %1 ()
regfile [merge] -- Reg Error: Key error.
regfile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 ()
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
txtfile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 ()
txtfile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 ()
txtfile [printto] -- %SystemRoot%\system32\notepad.exe /pt "%1" "%2" "%3" "%4" ()
vbefile [edit] -- %SystemRoot%\System32\Notepad.exe %1 ()
vbefile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 ()
vbsfile [edit] -- %SystemRoot%\System32\Notepad.exe %1 ()
vbsfile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 ()
wsffile [edit] -- %SystemRoot%\System32\Notepad.exe %1 ()
wsffile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 ()
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /k cd "%L" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[color=#E56717]========== Security Center Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirewallDisableNotify" = 0

[color=#E56717]========== System Restore Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 4

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[color=#E56717]========== Authorized Applications List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Opera\opera.exe" = C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software)
"D:\Gadu-Gadu 10\gg.exe" = D:\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10 -- (GG Network S.A.)
"D:\uTorrent.exe" = D:\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\Program Files\Ares\Ares.exe" = C:\Program Files\Ares\Ares.exe:*:Enabled:Ares p2p for windows -- (Ares Development Group)
"C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)


[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{055A9D81-5E0A-4088-94B3-BAC849EC3C20}" = Multimedia Keyboard & Mouse Driver
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{23BE4DF2-293D-4077-82F4-1FD8C269277C}" = TuneUp Utilities Language Pack (en-US)
"{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}" = TuneUp Utilities 2011
"{26A24AE4-039D-4CA4-87B4-2F83216014FF}" = Java(TM) 6 Update 14
"{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3A9E0E2F-B0D1-452B-B833-7A7300EA1231}" = Saitek NT Controller Drivers
"{3F3733A5-8322-454D-A638-3B74E1C83752}" = Gadget Installer
"{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}" = NVIDIA PhysX
"{521AAD14-5030-44BB-8B0E-5CE65FCE57E0}" = InterVideo DeviceService
"{5454083B-1308-4485-BF17-1110000D8301}" = Grand Theft Auto IV
"{5454083B-1308-4485-BF17-1110000D8302}" = Grand Theft Auto IV
"{5454083B-1308-4485-BF17-1110000D8303}" = Grand Theft Auto IV
"{5BB1C4CC-E545-4A35-9FDC-E2D059686BC5}" = SLOW-PCfighter
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{85767617-E6B1-499E-8C1B-C92E2AAFF586}" = TuneUp Utilities Language Pack (pl-PL)
"{87CC8013-56D1-43E1-A0A5-AD406B4EBA95}" = Opera 10.63
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{90120000-008A-0409-0000-0000000FF1CE}" = Microsoft Office 2007 Recent Documents Gadget
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panel sterowania NVIDIA 260.89
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Sterownik graficzny 260.89
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 135.36
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Plus Web Player
"{BB05D173-9681-4812-A7FA-BD4042A3DA00}" = Alky for Applications (Windows XP)
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}" = TuneUp Utilities
"{D5A6D02F-3CBB-4FBF-8F65-C3A6D721E8A4}" = OpenOffice.org 3.2
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Photoshop 7.0 CE" = Adobe Photoshop 7.0 CE
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"AIMP2" = AIMP2
"Aimp2 advanced control 2.5.0.1" = Aimp2 advanced control 2.5.0.1
"ALLPlayer_is1" = ALLPlayer V4.X
"Any Video Converter Professional_is1" = Any Video Converter Professional 2.7.7
"Ares" = Ares 2.1.5
"Ashampoo WinOptimizer 6_is1" = Ashampoo WinOptimizer 6.60
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"CPUID CPU-Z_is1" = CPUID CPU-Z 1.55
"CPUID HWMonitor_is1" = CPUID HWMonitor 1.16
"CWK" = CWK (Czasowy Wyłącznik Komputera)
"DAEMON Tools Toolbar" = DAEMON Tools Toolbar
"DFX for AIMP2 1.2.5" = DFX for AIMP2 1.2.5
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"Driver Genius Professional Edition_is1" = Driver Genius Professional Edition
"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
"FastStone Capture" = FastStone Capture 6.3
"Foxit Reader" = Foxit Reader
"Fraps" = Fraps (remove only)
"Free Studio_is1" = Free Studio version 4.9
"Free YouTube Download_is1" = Free YouTube Download 2.8
"Gadu-Gadu 10" = Gadu-Gadu 10
"Image Grabber II" = Image Grabber II
"InstallShield_{055A9D81-5E0A-4088-94B3-BAC849EC3C20}" = Multimedia Keyboard & Mouse Driver
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platforma Menedżera urządzeń
"KLiteCodecPack_is1" = K-Lite Codec Pack 5.8.3 (Full)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"MediaInfo" = MediaInfo 0.7.33
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox (3.6.6)" = Mozilla Firefox (3.6.6)
"Nero7Lite_is1" = Nero 7 Lite 7.7.5.1
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager
"OpenAL" = OpenAL
"Ozone for AIMP 1.00" = Ozone for AIMP 1.00
"Pocket Tanks_is1" = Pocket Tanks v1.3
"PunkBusterSvc" = PunkBuster Services
"RBRTM" = RBR Tournament plugin (remove only)
"RealAlt_is1" = Real Alternative 2.0.2
"RocketDock_is1" = RocketDock 1.3.5
"SLOW-PCfighter" = SLOW-PCfighter
"Spolszczenie do GTR Evolution" = Spolszczenie do GTR Evolution
"TuneUp Utilities" = TuneUp Utilities
"TuneUp Utilities 2011" = TuneUp Utilities 2011
"Uninstall_is1" = Uninstall 1.0.0.1
"uTorrent" = µTorrent
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Sidebar" = Windows Sidebar
"WinRAR archiver" = Archiwizator WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"WMV9_VCM" = Microsoft Windows Media Video 9 VCM

[color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"PhotoFiltre Studio X" = PhotoFiltre Studio X

[color=#E56717]========== Last 10 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2010-08-09 15:28:24 | Computer Name = MX8PC | Source = WmiAdapter | ID = 4099
Description = Otwarcie usługi nie powiodło się.

Error - 2010-08-09 15:28:27 | Computer Name = MX8PC | Source = WmiAdapter | ID = 4099
Description = Otwarcie usługi nie powiodło się.

Error - 2010-08-09 15:28:28 | Computer Name = MX8PC | Source = WmiAdapter | ID = 4099
Description = Otwarcie usługi nie powiodło się.

Error - 2010-08-09 15:28:30 | Computer Name = MX8PC | Source = WmiAdapter | ID = 4099
Description = Otwarcie usługi nie powiodło się.

Error - 2010-08-09 15:28:31 | Computer Name = MX8PC | Source = WmiAdapter | ID = 4099
Description = Otwarcie usługi nie powiodło się.

Error - 2010-08-09 15:28:32 | Computer Name = MX8PC | Source = WmiAdapter | ID = 4099
Description = Otwarcie usługi nie powiodło się.

Error - 2010-08-09 15:28:34 | Computer Name = MX8PC | Source = WmiAdapter | ID = 4099
Description = Otwarcie usługi nie powiodło się.

Error - 2010-08-09 15:28:36 | Computer Name = MX8PC | Source = WmiAdapter | ID = 4099
Description = Otwarcie usługi nie powiodło się.

Error - 2010-08-09 15:28:38 | Computer Name = MX8PC | Source = WmiAdapter | ID = 4099
Description = Otwarcie usługi nie powiodło się.

Error - 2010-08-09 15:28:38 | Computer Name = MX8PC | Source = WmiAdapter | ID = 4099
Description = Otwarcie usługi nie powiodło się.

[ System Events ]
Error - 2010-08-15 14:55:22 | Computer Name = MX8PC | Source = DCOM | ID = 10005
Description = Model DCOM odebrał błąd „%1058” podczas próby uruchomienia usługi
SENS z argumentami „” w celu uruchomienia serwera: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}

Error - 2010-08-15 14:55:22 | Computer Name = MX8PC | Source = DCOM | ID = 10005
Description = Model DCOM odebrał błąd „%1058” podczas próby uruchomienia usługi
SENS z argumentami „” w celu uruchomienia serwera: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}

Error - 2010-08-15 14:55:22 | Computer Name = MX8PC | Source = DCOM | ID = 10005
Description = Model DCOM odebrał błąd „%1058” podczas próby uruchomienia usługi
SENS z argumentami „” w celu uruchomienia serwera: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}

Error - 2010-08-15 15:38:03 | Computer Name = MX8PC | Source = DCOM | ID = 10005
Description = Model DCOM odebrał błąd „%1058” podczas próby uruchomienia usługi
SENS z argumentami „” w celu uruchomienia serwera: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}

Error - 2010-08-15 15:38:03 | Computer Name = MX8PC | Source = DCOM | ID = 10005
Description = Model DCOM odebrał błąd „%1058” podczas próby uruchomienia usługi
SENS z argumentami „” w celu uruchomienia serwera: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}

Error - 2010-08-15 15:38:03 | Computer Name = MX8PC | Source = DCOM | ID = 10005
Description = Model DCOM odebrał błąd „%1058” podczas próby uruchomienia usługi
SENS z argumentami „” w celu uruchomienia serwera: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}

Error - 2010-08-15 17:25:37 | Computer Name = MX8PC | Source = DCOM | ID = 10005
Description = Model DCOM odebrał błąd „%1058” podczas próby uruchomienia usługi
SENS z argumentami „” w celu uruchomienia serwera: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}

Error - 2010-08-15 17:25:37 | Computer Name = MX8PC | Source = DCOM | ID = 10005
Description = Model DCOM odebrał błąd „%1058” podczas próby uruchomienia usługi
SENS z argumentami „” w celu uruchomienia serwera: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}

Error - 2010-08-15 17:25:37 | Computer Name = MX8PC | Source = DCOM | ID = 10005
Description = Model DCOM odebrał błąd „%1058” podczas próby uruchomienia usługi
SENS z argumentami „” w celu uruchomienia serwera: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}

Error - 2010-10-20 14:04:13 | Computer Name = MX8PC | Source = NetBT | ID = 4319
Description = W sieci TCP wykryto zduplikowaną nazwę. Adres IP komputera, który
wysłał wiadomość, przedstawiono w danych. Użyj polecenia nbtstat -n w oknie wiersza
polecenia, aby stwierdzić, która nazwa znajduje się w stanie konfliktu.

[ TuneUp Events ]
Error - 2010-11-01 10:47:48 | Computer Name = MX8PC | Source = TuneUp.UtilitiesSvc | ID = 300
Description =

Error - 2010-11-01 11:11:25 | Computer Name = MX8PC | Source = TuneUp.UtilitiesSvc | ID = 300
Description =

Error - 2010-11-01 11:11:32 | Computer Name = MX8PC | Source = TuneUp.UtilitiesSvc | ID = 300
Description =


< End of report >
[/log]

[color="#FF0000"]//Logi wstawiamy w tagi.
//Poprawiam
//Tom01[/color]

Tomek01

Tomek01

komentarz
komentarz

Odinstaluj DVDVideoSoftTB Toolbar, DAEMON Tools Toolbar.

Zastosuj [b][color=#0000CD][url=http://download.bleepingcomputer.com//sUBs/Flash_Disinfector.exe]Flash Disinfector[/url][/color][/b], najlepiej z podpiętym pendrive'm czy innymi pamięciami USB.



W OTL, w oknie Custom scan/fixes wklej:
[code]:Processes
Explorer.exe

:OTL
FF - prefs.js..extensions.enabledItems: DTToolbar@toolbarnet.com:1.1.2.0185
[2010-08-01 12:52:38 | 000,000,000 | ---D | M] (DVDVideoSoftTB Toolbar) -- C:\Documents and Settings\seba\Dane aplikacji\Mozilla\Firefox\Profiles\42isqtk6.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}
[2010-08-09 21:27:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\Mozilla\Firefox\Profiles\42isqtk6.default\extensions\DTToolbar@toolbarnet.com
[2010-08-09 21:27:24 | 000,002,059 | ---- | M] () -- C:\Documents and Settings\seba\Dane aplikacji\Mozilla\Firefox\Profiles\42isqtk6.default\searchplugins\daemon-search.xml
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O33 - MountPoints2\{1b7ed1b0-cf22-11df-aaae-00304f610ed7}\Shell\AutoRun\command - "" = tmpdata\tmpdata.exe
O33 - MountPoints2\{1b7ed1b0-cf22-11df-aaae-00304f610ed7}\Shell\explore\command - "" = tmpdata\tmpdata.exe
O33 - MountPoints2\{1b7ed1b0-cf22-11df-aaae-00304f610ed7}\Shell\open\command - "" = tmpdata\tmpdata.exe
O33 - MountPoints2\{1b7ed1b0-cf22-11df-aaae-00304f610ed7}\Shell\search\command - "" = tmpdata\tmpdata.exe
O33 - MountPoints2\{553336e0-e335-11df-aad0-00304f610ed7}\Shell\AutoRun\command - "" = tmpdata\tmpdata.exe
O33 - MountPoints2\{553336e0-e335-11df-aad0-00304f610ed7}\Shell\explore\command - "" = tmpdata\tmpdata.exe
O33 - MountPoints2\{553336e0-e335-11df-aad0-00304f610ed7}\Shell\open\command - "" = tmpdata\tmpdata.exe
O33 - MountPoints2\{553336e0-e335-11df-aad0-00304f610ed7}\Shell\search\command - "" = tmpdata\tmpdata.exe
O33 - MountPoints2\{804554cd-3683-11df-8ea9-00304f610ed7}\Shell\AutoRun\command - "" = tmpdata\tmpdata.exe
O33 - MountPoints2\{804554cd-3683-11df-8ea9-00304f610ed7}\Shell\explore\command - "" = tmpdata\tmpdata.exe
O33 - MountPoints2\{804554cd-3683-11df-8ea9-00304f610ed7}\Shell\open\command - "" = tmpdata\tmpdata.exe
O33 - MountPoints2\{804554cd-3683-11df-8ea9-00304f610ed7}\Shell\search\command - "" = tmpdata\tmpdata.exe
O33 - MountPoints2\{d9e1d069-6a75-11df-8f26-00304f610ed7}\Shell\AutoRun\command - "" = tmpdata\tmpdata.exe
O33 - MountPoints2\{d9e1d069-6a75-11df-8f26-00304f610ed7}\Shell\explore\command - "" = tmpdata\tmpdata.exe
O33 - MountPoints2\{d9e1d069-6a75-11df-8f26-00304f610ed7}\Shell\open\command - "" = tmpdata\tmpdata.exe
O33 - MountPoints2\{d9e1d069-6a75-11df-8f26-00304f610ed7}\Shell\search\command - "" = tmpdata\tmpdata.exe

:Files
C:\WINDOWS\Ilycaa.exe
C:\WINDOWS\System32\sshnas21.dll
C:\Documents and Settings\All Users\Dane aplikacji\Weskysof

:Services
SSHNAS

:Commands
[emptytemp]
[start explorer]
[Reboot][/code]
Klikasz run fix, komputer uruchamia się ponownie.
Wrzuć log z usuwania oraz nowe logi: OTL i RSIT. Tagi !

SebaSTI

SebaSTI

komentarz
  • Autor
komentarz

te dwa programy niby usunolem, ale lipa z Flash Disinfector nie odpala i wskakuje ten blad co wyzej podalem, wiec nie wiem czy uzywac teraz tego OTL? zeby mi pc calkowicie nie wykonczylo...pozdro

Tomek01

Tomek01

komentarz
komentarz

Stwórz punkt przywracania systemu i go wykonaj.

SebaSTI

SebaSTI

komentarz
  • Autor
komentarz

w tym zecz ze przywracanie systemu mialem wylaczone;/ wiec nie ma sensu wracac do czasu jak juz wirus byl...

Tomek01

Tomek01

komentarz
komentarz

Masz infekcję SSHNAS oraz infekcję z pendrive'a.
Wierz mi wykonanie tego skryptu nie spowoduje żadnych komplikacji, ponieważ nie usuwamy żadnych plików systemowych.

SebaSTI

SebaSTI

komentarz
  • Autor
komentarz

[quote name='Tomek01' timestamp='1288734876' post='1113147']
Masz infekcję SSHNAS oraz infekcję z pendrive'a.
Wierz mi wykonanie tego skryptu nie spowoduje żadnych komplikacji, ponieważ nie usuwamy żadnych plików systemowych.
[/quote]


Wykonałem twoje wczesniejsze zalecenie, ale dalej sa te błedy które były wczesniej Daje logi

OTL:


[log]OTL logfile created on: 2010-11-03 20:05:00 - Run 1
OTL by OldTimer - Version 3.2.17.2 Folder = C:\Documents and Settings\seba\Pulpit\w kolejce
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

1,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 61,00% Memory free
3,00 Gb Paging File | 3,00 Gb Available in Paging File | 79,00% Paging File free
Paging file location(s): C:\pagefile.sys 2110 2110 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 19,53 Gb Total Space | 1,95 Gb Free Space | 9,98% Space Free | Partition Type: NTFS
Drive D: | 17,73 Gb Total Space | 11,47 Gb Free Space | 64,72% Space Free | Partition Type: NTFS
Drive F: | 78,13 Gb Total Space | 59,62 Gb Free Space | 76,31% Space Free | Partition Type: NTFS
Drive G: | 76,16 Gb Total Space | 71,26 Gb Free Space | 93,57% Space Free | Partition Type: NTFS

Computer Name: MX8PC | User Name: seba | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: On | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days

[color=#E56717]========== Processes (All) ==========[/color]

PRC - [2010-11-03 17:33:35 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\seba\Pulpit\w kolejce\OTL.exe
PRC - [2010-10-27 17:23:16 | 001,483,072 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe
PRC - [2010-10-08 13:00:10 | 000,836,464 | ---- | M] (Opera Software) -- C:\Program Files\Opera\opera.exe
PRC - [2010-10-08 01:28:22 | 000,156,776 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe
PRC - [2010-10-07 09:04:26 | 012,661,344 | ---- | M] (GG Network S.A.) -- D:\Gadu-Gadu 10\gg.exe
PRC - [2010-09-10 23:41:42 | 001,901,056 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
PRC - [2010-09-10 23:41:20 | 002,500,552 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
PRC - [2010-08-19 10:12:44 | 000,066,872 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrA.exe
PRC - [2009-07-04 23:07:33 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe
PRC - [2009-07-04 20:08:18 | 000,024,064 | ---- | M] (Creative Technology Ltd.) -- C:\WINDOWS\system32\devldr32.exe
PRC - [2009-06-27 15:16:26 | 003,642,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2009-06-21 22:40:23 | 000,283,648 | ---- | M] () -- C:\WINDOWS\system32\notepad.exe
PRC - [2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe
PRC - [2008-04-14 22:51:44 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH]
PRC - [2008-04-14 22:51:40 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe
PRC - [2008-04-14 22:51:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe
PRC - [2008-04-14 22:51:12 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe
PRC - [2007-09-17 21:51:14 | 001,470,464 | ---- | M] (UASSOFT.COM) -- C:\Program Files\Multimedia Keyboard & Mouse Driver\V5\KMConfig.exe
PRC - [2007-05-08 16:00:48 | 002,179,072 | ---- | M] (UASSOFT.COM) -- C:\Program Files\Multimedia Keyboard & Mouse Driver\V5\KMWDSrv.exe
PRC - [2007-03-06 13:51:14 | 000,212,992 | ---- | M] (UASSOFT.COM) -- C:\Program Files\Multimedia Keyboard & Mouse Driver\V5\StartAutorun.exe
PRC - [2007-03-06 09:35:02 | 000,198,168 | ---- | M] (InterVideo Inc.) -- C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe


[color=#E56717]========== Modules (All) ==========[/color]

MOD - [2010-11-03 17:33:35 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\seba\Pulpit\w kolejce\OTL.exe
MOD - [2010-09-10 23:41:40 | 000,285,480 | ---- | M] (COMODO) -- C:\WINDOWS\system32\guard32.dll
MOD - [2009-07-05 13:23:12 | 025,167,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll
MOD - [2009-07-05 00:18:13 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll
MOD - [2009-07-04 23:07:33 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll
MOD - [2009-07-04 23:06:31 | 001,020,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll
MOD - [2009-07-04 23:06:28 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll
MOD - [2009-07-04 23:04:52 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll
MOD - [2009-06-09 00:47:53 | 000,631,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll
MOD - [2009-06-08 23:53:20 | 000,635,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll
MOD - [2009-02-09 15:00:17 | 000,723,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll
MOD - [2008-04-14 22:51:58 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv
MOD - [2008-04-14 22:50:58 | 000,732,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\userenv.dll
MOD - [2008-04-14 22:50:58 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wldap32.dll
MOD - [2008-04-14 22:50:58 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll
MOD - [2008-04-14 22:50:58 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll
MOD - [2008-04-14 22:50:48 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll
MOD - [2008-04-14 22:50:46 | 001,287,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll
MOD - [2008-04-14 22:50:46 | 000,584,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll
MOD - [2008-04-14 22:50:46 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll
MOD - [2008-04-14 22:50:46 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll
MOD - [2008-04-14 22:50:46 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samlib.dll
MOD - [2008-04-14 22:50:46 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll
MOD - [2008-04-14 22:50:42 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntmarta.dll
MOD - [2008-04-14 22:50:40 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll
MOD - [2008-04-14 22:50:34 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imm32.dll
MOD - [2008-04-14 22:50:32 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll
MOD - [2008-04-14 22:50:32 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\fltlib.dll
MOD - [2008-04-14 22:50:16 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll
MOD - [2008-04-14 22:50:14 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll
MOD - [2008-04-14 22:50:12 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll
MOD - [2008-04-14 22:46:34 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
MOD - [2008-04-14 22:43:00 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTFIME.IME
MOD - [2008-04-14 22:29:10 | 001,054,208 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - File not found [On_Demand | Stopped] -- C:\WINDOWS\System32\alg.exe -- (ALG)
SRV - [2010-10-27 17:23:16 | 001,483,072 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc)
SRV - [2010-10-27 17:21:08 | 000,029,504 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
SRV - [2010-09-10 23:41:42 | 001,901,056 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe -- (cmdAgent)
SRV - [2010-07-26 14:30:55 | 000,435,016 | ---- | M] (TuneUp Software) [On_Demand | Stopped] -- C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe -- (TuneUp.Defrag)
SRV - [2009-08-24 20:16:36 | 000,406,016 | ---- | M] (mst software GmbH, Germany) [On_Demand | Stopped] -- C:\Program Files\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe -- (DfSdkS)
SRV - [2007-11-30 12:18:51 | 000,026,488 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\system32\spupdsvc.exe -- (spupdsvc)
SRV - [2007-05-08 16:00:48 | 002,179,072 | ---- | M] (UASSOFT.COM) [Auto | Running] -- C:\Program Files\Multimedia Keyboard & Mouse Driver\V5\KMWDSrv.exe -- (KMWDSERVICE)
SRV - [2007-03-06 09:35:02 | 000,198,168 | ---- | M] (InterVideo Inc.) [Auto | Running] -- C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe -- (Capture Device Service)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\seba\USTAWI~1\Temp\cpuz132\cpuz132_x32.sys -- (cpuz132)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2010-10-08 09:30:00 | 009,587,776 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2010-10-07 12:34:32 | 000,010,064 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)
DRV - [2010-09-10 23:40:54 | 000,091,560 | ---- | M] (COMODO) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\inspect.sys -- (Inspect)
DRV - [2010-09-10 23:40:52 | 000,239,240 | ---- | M] (COMODO) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\cmdGuard.sys -- (cmdGuard)
DRV - [2010-09-10 23:40:52 | 000,025,240 | ---- | M] (COMODO) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\cmdhlp.sys -- (cmdHlp)
DRV - [2010-09-10 23:40:48 | 000,015,592 | ---- | M] (COMODO) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\cmderd.sys -- (cmderd)
DRV - [2010-08-09 21:27:20 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010-07-09 12:18:54 | 000,020,328 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\cpuz134_x32.sys -- (cpuz134)
DRV - [2010-05-11 11:00:34 | 000,020,072 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\cpuz133_x32.sys -- (cpuz133)
DRV - [2009-07-05 00:19:05 | 000,062,208 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\si3112.sys -- (Si3112)
DRV - [2009-07-04 22:08:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139) Sterownik NT karty Realtek RTL8139(A/B/C)
DRV - [2009-07-04 22:08:30 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)
DRV - [2009-07-04 20:08:36 | 000,036,480 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sfmanm.sys -- (sfman) Sterownik Creative SoundFont Manager (WDM)
DRV - [2009-07-04 20:08:24 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2009-07-04 20:08:24 | 000,008,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hidgame.sys -- (hidgame)
DRV - [2009-07-04 20:08:20 | 000,283,904 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\emu10k1m.sys -- (emu10k) Creative SB Live! (WDM)
DRV - [2009-07-04 20:08:16 | 000,006,912 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctlfacem.sys -- (emu10k1) Sterownik Creative Interface Manager (WDM)
DRV - [2009-07-04 20:08:16 | 000,003,712 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctljystk.sys -- (ctljystk)
DRV - [2009-05-05 08:58:30 | 000,013,976 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\videX32.sys -- (videX32)
DRV - [2003-07-02 03:42:00 | 000,027,904 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\viaagp1.sys -- (viaagp1)
DRV - [2002-10-03 00:09:08 | 000,031,424 | ---- | M] (Robert Schlabbach) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RMSPPPOE.SYS -- (RMSPPPOE) WAN Miniport (PPP over Ethernet Protocol)
DRV - [2001-09-10 01:30:00 | 000,042,880 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\viaudio.sys -- (VIAudio) VIA AC'97 Enhanced Audio Controller (WDM)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]



IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1409082233-688789844-1343024091-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.eu.microsoft.com/poland/
IE - HKU\S-1-5-21-1409082233-688789844-1343024091-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



O1 HOSTS File: ([2001-10-26 17:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O4 - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cfp.exe (COMODO)
O4 - HKLM..\Run: [KMConfig] C:\Program Files\Multimedia Keyboard & Mouse Driver\V5\StartAutorun.exe KMConfig.exe File not found
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe ()
O4 - HKU\.DEFAULT..\Run: [TransBar] C:\WINDOWS\TransBar.exe (AKSoftware)
O4 - HKU\S-1-5-18..\Run: [TransBar] C:\WINDOWS\TransBar.exe (AKSoftware)
O4 - HKU\S-1-5-20..\Run: [TransBar] C:\WINDOWS\TransBar.exe (AKSoftware)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktopCleanupWizard = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoInternetOpenWith = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableStatusMessages = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: VerboseStatus = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SynchronousMachineGroupPolicy = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SynchronousUserGroupPolicy = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-21-1409082233-688789844-1343024091-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1409082233-688789844-1343024091-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1
O7 - HKU\S-1-5-21-1409082233-688789844-1343024091-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKU\S-1-5-21-1409082233-688789844-1343024091-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-21-1409082233-688789844-1343024091-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-21-1409082233-688789844-1343024091-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-21-1409082233-688789844-1343024091-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-21-1409082233-688789844-1343024091-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 0
O8 - Extra context menu item: Free YouTube Download - C:\Documents and Settings\seba\Dane aplikacji\DVDVideoSoftIEHelpers\youtubedownload.htm ()
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Documents and Settings\seba\Dane aplikacji\DVDVideoSoftIEHelpers\youtubetomp3.htm ()
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\seba\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\seba\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 0
O32 - AutoRun File - [2010-03-22 15:15:21 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

[color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color]

[2010-11-03 20:01:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\seba\Pulpit\Racing Babes new Collections cz.4
[2010-11-03 19:52:18 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2010-11-03 14:28:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\seba\Pulpit\Gimnastic sexy babes Sport [VIP] cz.2
[2010-11-03 09:43:42 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\seba\Recent
[2010-11-02 07:30:59 | 000,000,000 | ---D | C] -- C:\32788R22FWJFW
[2010-11-01 23:05:46 | 000,000,000 | -H-D | C] -- C:\VritualRoot
[2010-11-01 22:50:51 | 000,000,000 | ---D | C] -- C:\Program Files\COMODO
[2010-11-01 22:50:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Comodo
[2010-11-01 22:49:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Comodo Downloader
[2010-11-01 21:38:20 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2010-11-01 21:38:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Spybot - Search & Destroy
[2010-11-01 20:52:24 | 000,000,000 | ---D | C] -- C:\Program Files\RocketDock
[2010-11-01 18:48:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\seba\Ustawienia lokalne\Dane aplikacji\PackageAware
[2010-11-01 17:06:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\seba\Pulpit\Sex w wielkim mieście 2 Sex And The City 2 (2010) [DVDRip.RMVB-rafal900000] [Lektor PL]
[2010-10-31 21:57:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\seba\Ustawienia lokalne\Dane aplikacji\Ceiiular
[2010-10-30 10:16:50 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2011
[2010-10-23 21:49:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Weskysoft
[2010-10-23 12:21:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\seba\Dane aplikacji\DriverCure
[2010-10-23 12:21:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\seba\Dane aplikacji\ParetoLogic
[2010-10-23 12:21:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ParetoLogic
[2010-10-23 11:53:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard
[2010-10-23 11:48:11 | 000,061,440 | ---- | C] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll
[2010-09-23 16:15:55 | 000,000,000 | ---D | C] -- C:\Program Files\Multimedia Keyboard & Mouse Driver
[2010-09-19 10:51:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\seba\Dane aplikacji\DVDVideoSoft
[2010-09-18 15:17:43 | 000,000,000 | ---D | C] -- C:\Program Files\Pocket Tanks
[2010-09-10 23:41:40 | 000,285,480 | ---- | C] (COMODO) -- C:\WINDOWS\System32\guard32.dll
[2010-09-10 23:40:54 | 000,091,560 | ---- | C] (COMODO) -- C:\WINDOWS\System32\drivers\inspect.sys
[2010-09-10 23:40:52 | 000,239,240 | ---- | C] (COMODO) -- C:\WINDOWS\System32\drivers\cmdGuard.sys
[2010-09-10 23:40:52 | 000,025,240 | ---- | C] (COMODO) -- C:\WINDOWS\System32\drivers\cmdhlp.sys
[2010-09-10 23:40:48 | 000,015,592 | ---- | C] (COMODO) -- C:\WINDOWS\System32\drivers\cmderd.sys
[2010-09-10 19:26:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Fighters
[2010-09-10 19:20:28 | 000,000,000 | ---D | C] -- C:\Program Files\Fighters

[color=#E56717]========== Files - Modified Within 60 Days ==========[/color]

[2010-11-03 19:56:39 | 000,422,672 | ---- | M] () -- C:\WINDOWS\System32\drivers\sfi.dat
[2010-11-03 19:46:49 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-11-03 19:46:40 | 1475,928,064 | -HS- | M] () -- C:\hiberfil.sys
[2010-11-03 19:43:14 | 000,003,384 | ---- | M] () -- C:\WINDOWS\System32\NOTEPAD.ini
[2010-11-03 17:14:53 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010-11-03 17:13:49 | 000,026,112 | ---- | M] () -- C:\Documents and Settings\seba\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-11-01 22:31:35 | 000,148,400 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-11-01 21:15:36 | 000,000,574 | ---- | M] () -- C:\cleanup.bat
[2010-11-01 18:33:03 | 000,002,560 | ---- | M] () -- C:\WINDOWS\_MSRSTRT.EXE
[2010-10-31 08:29:20 | 000,497,586 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2010-10-31 08:29:19 | 000,438,750 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-10-31 08:29:19 | 000,087,244 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2010-10-31 08:29:19 | 000,069,926 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-10-31 08:26:50 | 000,002,184 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-10-28 21:50:07 | 006,462,401 | ---- | M] () -- C:\Documents and Settings\seba\Moje dokumenty\___ARESTRA___jacob ft tyra c - leaving (remix).mp3
[2010-10-28 21:50:07 | 004,527,459 | ---- | M] () -- C:\Documents and Settings\seba\Moje dokumenty\___ARESTRA___train-hey soul sister (remix dj wilson pirez).mp3
[2010-10-28 21:50:07 | 004,472,216 | ---- | M] () -- C:\Documents and Settings\seba\Moje dokumenty\___ARESTRA___18-master_blaster_-_come_clean_(electro_radio_mix).mp3
[2010-10-28 21:50:07 | 002,922,730 | ---- | M] () -- C:\Documents and Settings\seba\Moje dokumenty\___ARESTRA___train_hey_soul_sister_covered_my_momentsafter.mp3
[2010-10-28 21:43:45 | 004,537,463 | ---- | M] () -- C:\Documents and Settings\seba\Moje dokumenty\jacob tyra leaving (working).wma
[2010-10-27 17:25:18 | 000,031,552 | ---- | M] (TuneUp Software) -- C:\WINDOWS\System32\TURegOpt.exe
[2010-10-27 17:21:08 | 000,029,504 | ---- | M] (TuneUp Software) -- C:\WINDOWS\System32\uxtuneup.dll
[2010-10-23 21:31:05 | 000,000,446 | ---- | M] () -- C:\WINDOWS\tasks\SLOW-PCfighter.job
[2010-10-23 11:48:30 | 000,240,124 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2010-10-23 11:48:30 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin
[2010-10-23 11:48:24 | 000,240,124 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2010-10-23 11:48:24 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\nvdrswr.lk
[2010-10-14 18:49:15 | 007,067,648 | ---- | M] () -- C:\Documents and Settings\seba\Moje dokumenty\hey soul sister (karaoke instrumental) by train with on screen lyrics 21 4 2010(2).mp3
[2010-10-14 18:46:05 | 004,466,939 | ---- | M] () -- C:\Documents and Settings\seba\Moje dokumenty\train - hey_ soul sister (acoustic live_).mp3
[2010-10-08 09:30:00 | 002,293,194 | ---- | M] () -- C:\WINDOWS\System32\nvdata.bin
[2010-10-08 09:30:00 | 000,061,440 | ---- | M] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll
[2010-10-08 09:30:00 | 000,003,445 | ---- | M] () -- C:\WINDOWS\System32\nvinfo.pb
[2010-10-02 22:38:37 | 000,000,124 | ---- | M] () -- C:\Documents and Settings\seba\Pulpit\Skrót do Kosz.lnk
[2010-09-10 23:41:40 | 000,285,480 | ---- | M] (COMODO) -- C:\WINDOWS\System32\guard32.dll
[2010-09-10 23:40:54 | 000,091,560 | ---- | M] (COMODO) -- C:\WINDOWS\System32\drivers\inspect.sys
[2010-09-10 23:40:52 | 000,239,240 | ---- | M] (COMODO) -- C:\WINDOWS\System32\drivers\cmdGuard.sys
[2010-09-10 23:40:52 | 000,025,240 | ---- | M] (COMODO) -- C:\WINDOWS\System32\drivers\cmdhlp.sys
[2010-09-10 23:40:48 | 000,015,592 | ---- | M] (COMODO) -- C:\WINDOWS\System32\drivers\cmderd.sys

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2010-11-01 22:54:50 | 000,422,672 | ---- | C] () -- C:\WINDOWS\System32\drivers\sfi.dat
[2010-11-01 21:15:36 | 000,000,574 | ---- | C] () -- C:\cleanup.bat
[2010-11-01 18:33:03 | 000,002,560 | ---- | C] () -- C:\WINDOWS\_MSRSTRT.EXE
[2010-10-28 21:37:13 | 006,462,401 | ---- | C] () -- C:\Documents and Settings\seba\Moje dokumenty\___ARESTRA___jacob ft tyra c - leaving (remix).mp3
[2010-10-28 21:37:12 | 004,537,463 | ---- | C] () -- C:\Documents and Settings\seba\Moje dokumenty\jacob tyra leaving (working).wma
[2010-10-23 11:51:13 | 1475,928,064 | -HS- | C] () -- C:\hiberfil.sys
[2010-10-23 11:48:30 | 000,240,124 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2010-10-23 11:48:24 | 000,240,124 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2010-10-23 11:48:24 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2010-10-23 11:48:24 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\nvdrswr.lk
[2010-10-23 11:48:11 | 002,293,194 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin
[2010-10-18 19:20:56 | 004,472,216 | ---- | C] () -- C:\Documents and Settings\seba\Moje dokumenty\___ARESTRA___18-master_blaster_-_come_clean_(electro_radio_mix).mp3
[2010-10-14 18:41:27 | 004,466,939 | ---- | C] () -- C:\Documents and Settings\seba\Moje dokumenty\train - hey_ soul sister (acoustic live_).mp3
[2010-10-14 18:41:19 | 002,922,730 | ---- | C] () -- C:\Documents and Settings\seba\Moje dokumenty\___ARESTRA___train_hey_soul_sister_covered_my_momentsafter.mp3
[2010-10-14 18:41:14 | 007,067,648 | ---- | C] () -- C:\Documents and Settings\seba\Moje dokumenty\hey soul sister (karaoke instrumental) by train with on screen lyrics 21 4 2010(2).mp3
[2010-10-14 18:41:09 | 004,527,459 | ---- | C] () -- C:\Documents and Settings\seba\Moje dokumenty\___ARESTRA___train-hey soul sister (remix dj wilson pirez).mp3
[2010-10-02 22:38:37 | 000,000,124 | ---- | C] () -- C:\Documents and Settings\seba\Pulpit\Skrót do Kosz.lnk
[2010-09-10 19:26:45 | 000,000,446 | ---- | C] () -- C:\WINDOWS\tasks\SLOW-PCfighter.job
[2010-08-19 10:13:19 | 000,022,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2010-08-19 10:13:18 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\seba\Dane aplikacji\PnkBstrK.sys
[2010-08-09 21:27:20 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010-08-04 22:42:43 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010-05-29 21:16:52 | 000,001,480 | ---- | C] () -- C:\WINDOWS\autosend.ini
[2010-05-09 18:07:01 | 000,106,496 | ---- | C] () -- C:\WINDOWS\System32\SaiCfg.dll
[2010-03-27 08:20:38 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010-03-27 08:20:38 | 000,258,048 | ---- | C] () -- C:\WINDOWS\System32\libFLAC.dll
[2010-03-24 19:15:09 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010-03-24 19:15:08 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2010-03-24 19:15:00 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010-03-24 19:14:55 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010-03-23 19:00:12 | 000,026,112 | ---- | C] () -- C:\Documents and Settings\seba\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-03-23 14:47:28 | 000,010,752 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2010-03-22 19:21:37 | 000,003,384 | ---- | C] () -- C:\WINDOWS\System32\NOTEPAD.ini
[2010-03-22 15:57:20 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010-03-22 15:24:35 | 000,086,120 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2010-03-22 15:17:48 | 000,000,047 | ---- | C] () -- C:\WINDOWS\TransBar.ini
[2009-07-05 16:59:43 | 000,000,861 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2002-03-17 01:00:00 | 000,007,420 | ---- | C] () -- C:\WINDOWS\UA000088.DLL

[color=#E56717]========== LOP Check ==========[/color]

[2010-03-22 15:15:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\Foxit
[2010-08-09 21:26:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2010-03-24 19:53:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DFX
[2010-09-10 19:26:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Fighters
[2010-03-22 18:43:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2010-10-23 21:29:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ParetoLogic
[2010-06-23 21:37:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Drivers HeadQuarters Inc
[2010-08-25 15:36:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Stardock
[2010-03-22 19:10:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2010-08-17 10:04:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Test Drive Unlimited
[2010-10-30 10:19:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TuneUp Software
[2010-08-03 10:27:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ulead Systems
[2010-10-23 21:49:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Weskysoft
[2010-07-26 14:29:47 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[2010-03-22 15:15:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Dane aplikacji\Foxit
[2010-10-31 22:33:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\AIMP
[2010-09-19 11:28:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\Any Video Converter Professional
[2010-03-22 20:43:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\Astro Gemini Software
[2010-03-27 07:28:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\Bluefive software
[2010-03-27 08:15:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\BSplayer Pro
[2010-08-10 17:59:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\DAEMON Tools Lite
[2010-08-10 18:49:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\Disney Interactive Studios
[2010-04-02 20:25:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\DMCache
[2010-10-23 12:21:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\DriverCure
[2010-09-19 10:52:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\DVDVideoSoft
[2010-09-19 10:53:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\DVDVideoSoftIEHelpers
[2010-03-22 15:15:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\Foxit
[2010-09-01 17:59:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\Gadu-Gadu 10
[2010-06-23 21:33:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\GetRightToGo
[2010-03-22 21:19:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\OpenOffice.org
[2010-03-31 17:58:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\Opera
[2010-10-23 12:21:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\ParetoLogic
[2010-06-26 21:19:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\Participatory Culture Foundation
[2010-06-26 21:37:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\PCF-VLC
[2010-03-22 19:21:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\PhotoFiltre Studio X
[2010-10-30 10:17:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\TuneUp Software
[2010-04-02 17:48:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\Ulead Systems
[2010-08-04 08:44:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\Uniblue
[2010-11-01 17:12:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\seba\Dane aplikacji\uTorrent
[2010-10-23 21:31:05 | 000,000,446 | ---- | M] () -- C:\WINDOWS\Tasks\SLOW-PCfighter.job

[color=#E56717]========== Purity Check ==========[/color]



< End of report >
[/log]





RSIT:


[log]info.txt logfile of random's system information tool 1.08 2010-11-03 19:52:56

======Uninstall list======

-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
µTorrent-->"D:\\uTorrent.exe" /UNINSTALL
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Photoshop 7.0 CE-->C:\WINDOWS\ISUN0415.EXE -f"C:\Program Files\Adobe\Photoshop 7.0 CE\Uninst.isu" -c"C:\Program Files\Adobe\Photoshop 7.0 CE\Uninst.dll"
Adobe Shockwave Player 11.5-->"C:\WINDOWS\system32\Adobe\Shockwave 11\uninstaller.exe"
Aimp2 advanced control 2.5.0.1-->D:\Aimp2\Uninstall.exe
AIMP2-->D:\Aimp2\Uninstall.exe
Alky for Applications (Windows XP)-->MsiExec.exe /X{BB05D173-9681-4812-A7FA-BD4042A3DA00}
ALLPlayer V4.X-->"C:\Program Files\ALLPlayer\unins000.exe"
Any Video Converter Professional 2.7.7-->"D:\Any Video Converter Professional\unins000.exe"
Archiwizator WinRAR-->C:\Program Files\WinRAR\uninstall.exe
Ares 2.1.5-->"C:\Program Files\Ares\uninstall.exe"
Ashampoo WinOptimizer 6.60-->"C:\Program Files\Ashampoo\Ashampoo WinOptimizer 6\unins000.exe"
COMODO Internet Security-->MsiExec.exe /I{FD8E178D-8B4E-42DA-B434-EFF270329B1C}
CPUID CPU-Z 1.55-->"C:\Program Files\CPUID\CPU-Z\unins000.exe"
CPUID HWMonitor 1.16-->"C:\Program Files\CPUID\HWMonitor\unins000.exe"
CWK (Czasowy Wyłącznik Komputera)-->"D:\cwk\CWK.exe" /uninstall
DFX for AIMP2 1.2.5-->D:\Aimp2\Uninstall.exe
DivX Player-->D:\DivX\DivXPlayerUninstall.exe /PLAYER
DivX Plus DirectShow Filters-->D:\DivX\DivXDSFiltersUninstall.exe /DSFILTERS
DivX Plus Web Player-->D:\DivX\DivXWebPlayerUninstall.exe /PLUGIN
Driver Genius Professional Edition-->"C:\Program Files\Driver-Soft\DriverGenius\unins000.exe"
EVEREST Home Edition v2.20-->"C:\Program Files\Lavalys\EVEREST Home Edition\unins000.exe"
FastStone Capture 6.3-->C:\Program Files\FastStone Capture\uninst.exe
Foxit Reader-->C:\Program Files\Foxit Software\Foxit Reader\Uninstall.exe
Fraps (remove only)-->"D:\Fraps\uninstall.exe"
Free Studio version 4.9-->"C:\Program Files\DVDVideoSoft\Free Studio\unins000.exe"
Free YouTube Download 2.8-->"C:\Program Files\DVDVideoSoft\Free YouTube Download\unins000.exe"
Gadget Installer-->MsiExec.exe /I{3F3733A5-8322-454D-A638-3B74E1C83752}
Gadu-Gadu 10-->D:\Gadu-Gadu 10\Uninstall.exe
Grand Theft Auto IV-->MsiExec.exe /I{5454083B-1308-4485-BF17-1110000D8301}
Grand Theft Auto IV-->MsiExec.exe /I{5454083B-1308-4485-BF17-1110000D8302}
Grand Theft Auto IV-->MsiExec.exe /I{5454083B-1308-4485-BF17-1110000D8303}
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
Image Grabber II-->"C:\Program Files\Image Grabber II\uninstall.exe"
InterVideo DeviceService-->MsiExec.exe /I{521AAD14-5030-44BB-8B0E-5CE65FCE57E0}
Java(TM) 6 Update 14-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216014FF}
K-Lite Codec Pack 5.8.3 (Full)-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
Malwarebytes' Anti-Malware-->"D:\Malwarebytes' Anti-Malware\unins000.exe"
MediaInfo 0.7.33-->C:\Program Files\MediaInfo\uninst.exe
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->c:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office 2007 Recent Documents Gadget-->MsiExec.exe /X{90120000-008A-0409-0000-0000000FF1CE}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Windows Media Video 9 VCM-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmv9vcm.inf, Uninstall
Multimedia Keyboard & Mouse Driver-->C:\Program Files\InstallShield Installation Information\{055A9D81-5E0A-4088-94B3-BAC849EC3C20}\setup.exe -runfromtemp -l0x0415
Nero 7 Lite 7.7.5.1-->"C:\Program Files\Nero\unins000.exe"
NVIDIA nView 135.36-->"C:\WINDOWS\system32\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.0\NVI2.DLL",UninstallPackage Display.NView
NVIDIA nView Desktop Manager-->C:\Program Files\NVIDIA Corporation\nView\nViewSetup.exe -uninstall
NVIDIA PhysX-->MsiExec.exe /X{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}
NVIDIA Sterownik graficzny 260.89-->"C:\WINDOWS\system32\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.0\NVI2.DLL",UninstallPackage Display.Driver
OpenAL-->"C:\Program Files\OpenAL\OpenALwEAX.exe" /U
OpenOffice.org 3.2-->MsiExec.exe /I{D5A6D02F-3CBB-4FBF-8F65-C3A6D721E8A4}
Opera 10.63-->MsiExec.exe /X{87CC8013-56D1-43E1-A0A5-AD406B4EBA95}
Ozone for AIMP 1.00-->D:\Aimp2\Uninstall.exe
Pocket Tanks v1.3-->"C:\Program Files\Pocket Tanks\unins000.exe"
PunkBuster Services-->C:\WINDOWS\system32\pbsvc.exe -u
RBR Tournament plugin (remove only)-->"D:\SCi Games\Richard Burns Rally\RBRTMuninst.exe"
Real Alternative 2.0.2-->"C:\Program Files\Real Alternative\unins000.exe"
RocketDock 1.3.5-->"C:\Program Files\RocketDock\unins000.exe"
Saitek NT Controller Drivers-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\Intel 32\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3A9E0E2F-B0D1-452B-B833-7A7300EA1231}\setup.exe" AddRem
Skype™ 4.2-->MsiExec.exe /X{D103C4BA-F905-437A-8049-DB24763BBE36}
SLOW-PCfighter-->C:\Program Files\Fighters\SLOW-PCfighter\Uninstall.exe
SLOW-PCfighter-->MsiExec.exe /X{5BB1C4CC-E545-4A35-9FDC-E2D059686BC5}
Spolszczenie do GTR Evolution-->F:\Torrenty i Inne\DOWNLOAD TORRENT\GTR.Evolution.Multi-9.Full-Rip.Skullptura\GTR.Evolution.Multi-9.Full-Rip.Skullptura\GTR-Evolution\Uninstal.exe
TuneUp Utilities 2011-->C:\Program Files\TuneUp Utilities 2011\TUInstallHelper.exe --Trigger-Uninstall
TuneUp Utilities-->C:\Program Files\TuneUp Utilities 2010\TUInstallHelper.exe --Trigger-Uninstall
Uninstall 1.0.0.1-->"C:\Program Files\Common Files\DVDVideoSoft\unins000.exe"
VC80CRTRedist - 8.0.50727.4053-->MsiExec.exe /I{5EE7D259-D137-4438-9A5F-42F432EC0421}
VIA Platforma Menedżera urządzeń-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\Intel 32\IDriver.exe /M{20D4A895-748C-4D88-871C-FDB1695B0169}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Sidebar-->RUNDLL32 advpack.dll,LaunchINFSection Sidebar.inf,UnInstall

======System event log======

Computer Name: MX8PC
Event Code: 6006
Message: Zatrzymano usługę Dziennik zdarzeń.

Record Number: 9804
Source Name: EventLog
Time Written: 20100726154511.000000+120
Event Type: informacje
User:

Computer Name: MX8PC
Event Code: 10005
Message: Model DCOM odebrał błąd „%1058” podczas próby uruchomienia usługi SENS z argumentami „”
w celu uruchomienia serwera:
{D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}

Record Number: 9803
Source Name: DCOM
Time Written: 20100726154455.000000+120
Event Type: błąd
User: ZARZĄDZANIE NT\SYSTEM

Computer Name: MX8PC
Event Code: 10005
Message: Model DCOM odebrał błąd „%1058” podczas próby uruchomienia usługi SENS z argumentami „”
w celu uruchomienia serwera:
{D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}

Record Number: 9802
Source Name: DCOM
Time Written: 20100726154455.000000+120
Event Type: błąd
User: ZARZĄDZANIE NT\SYSTEM

Computer Name: MX8PC
Event Code: 10005
Message: Model DCOM odebrał błąd „%1058” podczas próby uruchomienia usługi SENS z argumentami „”
w celu uruchomienia serwera:
{D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}

Record Number: 9801
Source Name: DCOM
Time Written: 20100726154455.000000+120
Event Type: błąd
User: ZARZĄDZANIE NT\SYSTEM

Computer Name: MX8PC
Event Code: 10005
Message: Model DCOM odebrał błąd „%1058” podczas próby uruchomienia usługi SENS z argumentami „”
w celu uruchomienia serwera:
{D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}

Record Number: 9800
Source Name: DCOM
Time Written: 20100726154455.000000+120
Event Type: błąd
User: ZARZĄDZANIE NT\SYSTEM

=====Application event log=====

Computer Name: MX8PC
Event Code: 4353
Message: System zdarzeń modelu COM+ próbował zwolnić zdarzenie EventObjectChange::ChangedSubscription, ale zwrócono zły kod. HRESULT 80040201.
Record Number: 833
Source Name: EventSystem
Time Written: 20100805091448.000000+120
Event Type: ostrzeżenie
User:

Computer Name: MX8PC
Event Code: 4356
Message: System zdarzeń modelu COM+ nie mógł utworzyć instancji subskrybenta partition:{41E90F3E-56C1-4633-81C3-6E8BAC8BDD70}!new:{D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}. CoGetObject zwróciło HRESULT 80070422.
Record Number: 832
Source Name: EventSystem
Time Written: 20100805091448.000000+120
Event Type: ostrzeżenie
User:

Computer Name: MX8PC
Event Code: 4353
Message: System zdarzeń modelu COM+ próbował zwolnić zdarzenie EventObjectChange::ChangedSubscription, ale zwrócono zły kod. HRESULT 80040201.
Record Number: 831
Source Name: EventSystem
Time Written: 20100805091448.000000+120
Event Type: ostrzeżenie
User:

Computer Name: MX8PC
Event Code: 4356
Message: System zdarzeń modelu COM+ nie mógł utworzyć instancji subskrybenta partition:{41E90F3E-56C1-4633-81C3-6E8BAC8BDD70}!new:{D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}. CoGetObject zwróciło HRESULT 80070422.
Record Number: 830
Source Name: EventSystem
Time Written: 20100805091448.000000+120
Event Type: ostrzeżenie
User:

Computer Name: MX8PC
Event Code: 4353
Message: System zdarzeń modelu COM+ próbował zwolnić zdarzenie EventObjectChange::ChangedSubscription, ale zwrócono zły kod. HRESULT 80040201.
Record Number: 829
Source Name: EventSystem
Time Written: 20100805091448.000000+120
Event Type: ostrzeżenie
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=C:\Program Files\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Alky for Applications\Libraries\;C:\Program Files\Common Files\DivX Shared\;C:\Program Files\Common Files\Ulead Systems\MPEG
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 8 Stepping 1, AuthenticAMD
"PROCESSOR_REVISION"=0801
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP

-----------------EOF-----------------[/log]





[log]eniLogfile of random's system information tool 1.08 (written by random/random)
Run by seba at 2010-11-03 19:52:15
Microsoft Windows XP Professional Dodatek Service Pack 3
System drive C: has 2 GB (10%) free of 20 GB
Total RAM: 1407 MB (53% free)


======Scheduled tasks folder======

C:\WINDOWS\tasks\SLOW-PCfighter.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-03-22 41368]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-03-22 73728]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"KMConfig"=C:\Program Files\Multimedia Keyboard & Mouse Driver\V5\StartAutorun.exe [2007-03-06 212992]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2010-10-08 110696]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2010-10-08 13851752]
"nwiz"=C:\Program Files\NVIDIA Corporation\nView\nwiz.exe [2010-08-25 1753192]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cfp.exe [2010-09-10 2500552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2009-07-04 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableStatusMessages"=1
"SynchronousMachineGroupPolicy"=0
"SynchronousUserGroupPolicy"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoSMMyPictures"=1
"NoSMConfigurePrograms"=1
"NoResolveTrack"=1
"NoResolveSearch"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDesktopCleanupWizard"=1
"HonorAutoRunSetting"=1
"NoResolveTrack"=1
"NoResolveSearch"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"D:\Gadu-Gadu 10\gg.exe"="D:\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10"
"D:\uTorrent.exe"="D:\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Ares\Ares.exe"="C:\Program Files\Ares\Ares.exe:*:Enabled:Ares p2p for windows"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Uruchamia plik DLL jako aplikację"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======List of files/folders created in the last 1 months======

2010-11-03 19:52:18 ----D---- C:\Program Files\trend micro
2010-11-03 19:52:15 ----D---- C:\rsit
2010-11-03 19:43:33 ----D---- C:\_OTL
2010-11-02 07:30:59 ----D---- C:\32788R22FWJFW
2010-11-01 23:05:46 ----HD---- C:\VritualRoot
2010-11-01 22:50:51 ----D---- C:\Program Files\COMODO
2010-11-01 22:50:30 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Comodo
2010-11-01 22:49:54 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Comodo Downloader
2010-11-01 21:38:20 ----D---- C:\Program Files\Spybot - Search & Destroy
2010-11-01 21:38:20 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Spybot - Search & Destroy
2010-11-01 21:15:36 ----A---- C:\cleanup.bat
2010-11-01 20:52:24 ----D---- C:\Program Files\RocketDock
2010-11-01 18:33:03 ----A---- C:\WINDOWS\_MSRSTRT.EXE
2010-10-30 10:16:50 ----D---- C:\Program Files\TuneUp Utilities 2011
2010-10-23 21:49:25 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Weskysoft
2010-10-23 12:21:15 ----D---- C:\Documents and Settings\seba\Dane aplikacji\DriverCure
2010-10-23 12:21:14 ----D---- C:\Documents and Settings\seba\Dane aplikacji\ParetoLogic
2010-10-23 12:21:01 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\ParetoLogic
2010-10-23 11:53:57 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2010-10-23 11:51:13 ----ASH---- C:\hiberfil.sys
2010-10-23 11:48:11 ----A---- C:\WINDOWS\system32\OpenCL.dll
2010-10-23 11:48:11 ----A---- C:\WINDOWS\system32\nvoglnt.dll
2010-10-23 11:48:11 ----A---- C:\WINDOWS\system32\nvgenco32.dll
2010-10-23 11:48:11 ----A---- C:\WINDOWS\system32\nvdispco32.dll
2010-10-23 11:48:11 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2010-10-23 11:48:11 ----A---- C:\WINDOWS\system32\nvcuvenc.dll
2010-10-23 11:48:11 ----A---- C:\WINDOWS\system32\nvcuda.dll
2010-10-23 11:48:11 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2010-10-23 11:48:10 ----A---- C:\WINDOWS\system32\nvapi.dll
2010-10-23 11:48:10 ----A---- C:\WINDOWS\system32\nv4_disp.dll
2010-10-23 11:48:10 ----A---- C:\WINDOWS\system32\drivers\nv4_mini.sys
2010-10-08 01:28:44 ----A---- C:\WINDOWS\system32\nvwddi.dll
2010-10-08 01:28:42 ----A---- C:\WINDOWS\system32\nvrsth.dll
2010-10-08 01:28:42 ----A---- C:\WINDOWS\system32\nvrseng.dll
2010-10-08 01:28:38 ----A---- C:\WINDOWS\system32\nvrszht.dll
2010-10-08 01:28:38 ----A---- C:\WINDOWS\system32\nvrsesm.dll
2010-10-08 01:28:38 ----A---- C:\WINDOWS\system32\nvrsel.dll
2010-10-08 01:28:36 ----A---- C:\WINDOWS\system32\nvrshe.dll
2010-10-08 01:28:36 ----A---- C:\WINDOWS\system32\nvrsfi.dll
2010-10-08 01:28:36 ----A---- C:\WINDOWS\system32\nvrsda.dll
2010-10-08 01:28:34 ----A---- C:\WINDOWS\system32\nvrszhc.dll
2010-10-08 01:28:34 ----A---- C:\WINDOWS\system32\nvrssl.dll
2010-10-08 01:28:34 ----A---- C:\WINDOWS\system32\nvrsru.dll
2010-10-08 01:28:34 ----A---- C:\WINDOWS\system32\nvrsnl.dll
2010-10-08 01:28:34 ----A---- C:\WINDOWS\system32\nvrshu.dll
2010-10-08 01:28:34 ----A---- C:\WINDOWS\system32\nvrsfr.dll
2010-10-08 01:28:32 ----A---- C:\WINDOWS\system32\nvrstr.dll
2010-10-08 01:28:30 ----A---- C:\WINDOWS\system32\nvrssv.dll
2010-10-08 01:28:30 ----A---- C:\WINDOWS\system32\nvrsko.dll
2010-10-08 01:28:30 ----A---- C:\WINDOWS\system32\nvrses.dll
2010-10-08 01:28:30 ----A---- C:\WINDOWS\system32\nvrscs.dll
2010-10-08 01:28:28 ----A---- C:\WINDOWS\system32\nvrssk.dll
2010-10-08 01:28:28 ----A---- C:\WINDOWS\system32\nvrsde.dll
2010-10-08 01:28:28 ----A---- C:\WINDOWS\system32\nvrsar.dll
2010-10-08 01:28:26 ----A---- C:\WINDOWS\system32\nvrsptb.dll
2010-10-08 01:28:26 ----A---- C:\WINDOWS\system32\nvrspt.dll
2010-10-08 01:28:26 ----A---- C:\WINDOWS\system32\nvrspl.dll
2010-10-08 01:28:26 ----A---- C:\WINDOWS\system32\nvrsno.dll
2010-10-08 01:28:26 ----A---- C:\WINDOWS\system32\nvrsit.dll
2010-10-08 01:28:24 ----A---- C:\WINDOWS\system32\nvrsja.dll
2010-10-08 01:28:24 ----A---- C:\WINDOWS\system32\nvmctray.dll
2010-10-08 01:28:24 ----A---- C:\WINDOWS\system32\nvmccs.dll
2010-10-08 01:28:24 ----A---- C:\WINDOWS\system32\nvcpl.dll
2010-10-08 01:28:22 ----A---- C:\WINDOWS\system32\nvsvc32.exe
2010-10-08 01:28:22 ----A---- C:\WINDOWS\system32\nvcolor.exe

======List of files/folders modified in the last 1 months======

2010-11-03 19:52:18 ----RD---- C:\Program Files
2010-11-03 19:48:07 ----D---- C:\WINDOWS\system32\CatRoot2
2010-11-03 19:47:29 ----D---- C:\WINDOWS\Temp
2010-11-03 19:45:22 ----D---- C:\WINDOWS\system32
2010-11-03 19:43:14 ----A---- C:\WINDOWS\system32\NOTEPAD.ini
2010-11-03 17:14:53 ----A---- C:\WINDOWS\NeroDigital.ini
2010-11-01 23:59:43 ----D---- C:\WINDOWS
2010-11-01 22:54:50 ----D---- C:\WINDOWS\system32\drivers
2010-11-01 22:51:36 ----SHD---- C:\WINDOWS\Installer
2010-11-01 20:24:16 ----RD---- C:\Program Files\Skype
2010-11-01 20:22:55 ----D---- C:\Program Files\Astro Gemini Software
2010-11-01 18:34:46 ----D---- C:\Program Files\Common Files\Stardock
2010-11-01 18:24:59 ----D---- C:\Program Files\MediaInfo
2010-11-01 17:20:12 ----HD---- C:\WINDOWS\inf
2010-11-01 17:13:50 ----D---- C:\WINDOWS\Prefetch
2010-11-01 17:12:46 ----D---- C:\Documents and Settings\seba\Dane aplikacji\uTorrent
2010-11-01 10:48:39 ----SD---- C:\WINDOWS\Tasks
2010-11-01 02:26:24 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-10-31 22:33:11 ----D---- C:\Documents and Settings\seba\Dane aplikacji\AIMP
2010-10-31 08:29:19 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-10-30 10:19:56 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\TuneUp Software
2010-10-30 10:17:14 ----D---- C:\Documents and Settings\seba\Dane aplikacji\TuneUp Software
2010-10-27 17:25:18 ----A---- C:\WINDOWS\system32\TURegOpt.exe
2010-10-27 17:21:08 ----A---- C:\WINDOWS\system32\uxtuneup.dll
2010-10-23 22:17:14 ----D---- C:\WINDOWS\WinSxS
2010-10-23 22:17:02 ----D---- C:\WINDOWS\system32\DirectX
2010-10-23 21:29:13 ----D---- C:\Program Files\Common Files
2010-10-23 12:04:39 ----RSD---- C:\WINDOWS\assembly
2010-10-23 11:59:38 ----HD---- C:\Program Files\InstallShield Installation Information
2010-10-23 11:54:16 ----D---- C:\Program Files\NVIDIA Corporation
2010-10-23 11:49:44 ----D---- C:\WINDOWS\Help
2010-10-23 11:49:44 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\NVIDIA Corporation
2010-10-15 17:24:13 ----D---- C:\Program Files\Opera

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 Inspect;COMODO Internet Security Firewall Driver; C:\WINDOWS\System32\DRIVERS\inspect.sys [2010-09-10 91560]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2009-11-14 43528]
R0 Si3112;Si3112; C:\WINDOWS\system32\drivers\Si3112.sys [2009-07-05 62208]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-08-09 691696]
R0 viaagp;Filtr magistrali AGP VIA; C:\WINDOWS\system32\DRIVERS\viaagp.sys [2009-07-04 42240]
R0 viaagp1;VIA AGP Filter; C:\WINDOWS\system32\DRIVERS\viaagp1.sys [2003-07-02 27904]
R0 videX32;videX32; C:\WINDOWS\system32\DRIVERS\videX32.sys [2009-05-05 13976]
R1 AmdK7;Sterownik procesora AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2009-07-05 41856]
R1 cmderd;COMODO Internet Security Eradication Driver; C:\WINDOWS\System32\DRIVERS\cmderd.sys [2010-09-10 15592]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [2010-09-10 239240]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\WINDOWS\System32\DRIVERS\cmdhlp.sys [2010-09-10 25240]
R1 kbdhid;Sterownik klawiatury HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
R2 cpuz133;cpuz133; \??\C:\WINDOWS\system32\drivers\cpuz133_x32.sys []
R2 cpuz134;cpuz134; \??\C:\WINDOWS\system32\drivers\cpuz134_x32.sys []
R3 ctljystk;Port gier dla karty Creative SB Live!; C:\WINDOWS\system32\DRIVERS\ctljystk.sys [2009-07-04 3712]
R3 emu10k;Creative SB Live! (WDM); C:\WINDOWS\system32\drivers\emu10k1m.sys [2009-07-04 283904]
R3 emu10k1;Sterownik Creative Interface Manager (WDM); C:\WINDOWS\system32\drivers\ctlfacem.sys [2009-07-04 6912]
R3 HidUsb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2009-07-04 12160]
R3 ms_mpu401;Sterownik portu MIDI UART Microsoft MPU-401; C:\WINDOWS\system32\drivers\msmpu401.sys [2009-07-04 2944]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2010-10-08 9587776]
R3 RMSPPPOE;WAN Miniport (PPP over Ethernet Protocol); C:\WINDOWS\system32\DRIVERS\RMSPPPOE.SYS [2002-10-03 31424]
R3 rtl8139;Sterownik NT karty Realtek RTL8139(A/B/C)-based PCI Fast Ethernet; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2009-07-04 20992]
R3 sfman;Sterownik Creative SoundFont Manager (WDM); C:\WINDOWS\system32\drivers\sfmanm.sys [2009-07-04 36480]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys []
R3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbuhci;Sterownik Miniport uniwersalnego kontrolera hosta USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S3 a6sow1k4;a6sow1k4; C:\WINDOWS\system32\drivers\a6sow1k4.sys []
S3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS []
S3 ASFWHide;ASFWHide; \??\C:\DOCUME~1\seba\USTAWI~1\Temp\ASFWHide []
S3 cpuz132;cpuz132; \??\C:\DOCUME~1\seba\USTAWI~1\Temp\cpuz132\cpuz132_x32.sys []
S3 hidgame;Włącznik Microsoft HID do portu joysticka; C:\WINDOWS\system32\DRIVERS\hidgame.sys [2009-07-04 8576]
S3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 VIAudio;VIA AC'97 Enhanced Audio Controller (WDM); C:\WINDOWS\system32\drivers\viaudio.sys [2001-09-10 42880]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2009-07-04 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2009-07-04 82944]
S4 exFat;exFat; C:\WINDOWS\system32\drivers\exFat.sys [2009-07-04 133632]
S4 WS2IFSL;Środowisko wspomagające dostawcę usług innych niż IFS - Windows Socket 2.0; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-08-17 12032]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Capture Device Service;Capture Device Service; C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe [2007-03-06 198168]
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2010-09-10 1901056]
R2 KMWDSERVICE;Keyboard And Mouse Communication Service; C:\Program Files\Multimedia Keyboard & Mouse Driver\V5\KMWDSrv.exe [2007-05-08 2179072]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2010-10-08 156776]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2010-08-19 66872]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe [2010-10-27 1483072]
R2 UxTuneUp;TuneUp Theme Extension; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S2 spupdsvc;Windows Service Pack Installer update service; C:\WINDOWS\system32\spupdsvc.exe [2007-11-30 26488]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 DfSdkS;Defragmentation-Service; C:\Program Files\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe [2009-08-24 406016]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-30 46104]
S3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe [2010-07-26 435016]
S3 WMPNetworkSvc;Usługa udostępniania w sieci programu Windows Media Player; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-12-01 918016]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-30 881664]
S4 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-03-22 152984]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-30 132096]

-----------------EOF-----------------
[/log]

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

Zadaj pytanie bez logowania
Przejdź do listy tematów
×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.

  Akceptuję