Sulski utworzono 17 listopada 2010 utworzono 17 listopada 2010 Witam , za kazdym razem po formacie i instalacji windowsa jestem zmuszony prosic o pomoc tutaj na forum, problem jest zwiazany z internetem, mianowicie strony www nie wczytuja sie od razu musze parokrotnie odswiezyc aby zaskoczylo ,albo wczytuja sie do pewnego momentu i trzeba troche poodswiezac ponownie, dzieje sie to tylko gdy zainstaluje system XP i niewazne czy czysta kopie czy jego modyfikacje. Zatem prosze o sprawdzenie logow i o pokierowanie mnie jak moge temu zaradzic. Musze dodac ze potrzebuje teraz miec wlasnie XP , wiec przeinstalowanie na inny system nie wchodzi w gre. Z gory dziekuje za czas osoby ktora postanowi sie przyjrzec mojemu problemowi. Teraz czas na logi : OTL wklejam obydwa logi : [log]OTL logfile created on: 2010-11-17 11:31:21 - Run 1 OTL by OldTimer - Version 3.2.17.3 Folder = D:\Instalki\Programy do logów Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 52,00% Memory free 3,00 Gb Paging File | 3,00 Gb Available in Paging File | 82,00% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 39,06 Gb Total Space | 27,50 Gb Free Space | 70,39% Space Free | Partition Type: NTFS Drive D: | 193,82 Gb Total Space | 135,01 Gb Free Space | 69,66% Space Free | Partition Type: NTFS Computer Name: WINDOWZ | User Name: Sulski | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (All) ==========[/color] PRC - [2010-11-17 11:29:08 | 000,575,488 | ---- | M] (OldTimer Tools) -- D:\Instalki\Programy do logów\OTL.exe PRC - [2010-10-08 14:00:10 | 000,836,464 | ---- | M] (Opera Software) -- C:\Program Files\Opera\opera.exe PRC - [2010-10-07 09:04:26 | 012,661,344 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe PRC - [2009-12-18 01:30:48 | 000,039,424 | ---- | M] (Nullsoft) -- C:\Program Files\Winamp\winampa.exe PRC - [2009-11-28 00:22:46 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvse.exe PRC - [2009-11-28 00:22:45 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe PRC - [2009-11-20 20:32:14 | 000,154,216 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe PRC - [2009-11-19 11:43:58 | 001,592,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2009-10-30 12:57:08 | 000,369,200 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe PRC - [2008-06-02 21:44:28 | 001,660,952 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Messenger\Msmsgs.exe PRC - [2008-04-15 12:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe PRC - [2008-04-15 12:00:00 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe PRC - [2008-04-15 12:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe PRC - [2008-04-15 12:00:00 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\unsecapp.exe PRC - [2008-04-15 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS] PRC - [2008-04-15 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE] PRC - [2008-04-15 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS] PRC - [2008-04-15 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-15 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-15 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH] PRC - [2008-04-15 12:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe PRC - [2008-04-15 12:00:00 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe PRC - [2006-08-02 22:12:00 | 000,577,536 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\soundman.exe PRC - [2005-01-17 07:43:46 | 000,084,480 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvraidservice.exe PRC - [2004-09-19 19:27:44 | 000,065,536 | ---- | M] () -- C:\Program Files\LClock\LClock.exe PRC - [2002-12-27 15:54:06 | 000,194,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wisptis.exe PRC - [2001-11-15 18:17:36 | 000,196,608 | ---- | M] (HP) -- C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2010-11-17 11:29:08 | 000,575,488 | ---- | M] (OldTimer Tools) -- D:\Instalki\Programy do logów\OTL.exe MOD - [2009-11-28 00:24:36 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll MOD - [2009-11-28 00:22:43 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll MOD - [2009-11-26 20:26:31 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll MOD - [2009-11-26 20:26:30 | 000,585,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll MOD - [2009-11-26 20:25:24 | 001,020,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll MOD - [2009-11-26 20:25:19 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll MOD - [2009-11-19 20:08:36 | 026,339,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll MOD - [2009-11-19 11:43:51 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll MOD - [2009-11-19 11:43:22 | 000,678,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll MOD - [2009-02-09 11:00:17 | 000,723,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll MOD - [2009-01-12 16:19:02 | 000,011,000 | ---- | M] (O&K Software) -- C:\Program Files\Prio\prio.dll MOD - [2008-04-15 12:00:00 | 001,287,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll MOD - [2008-04-15 12:00:00 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll MOD - [2008-04-15 12:00:00 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll MOD - [2008-04-15 12:00:00 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll MOD - [2008-04-15 12:00:00 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll MOD - [2008-04-15 12:00:00 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll MOD - [2008-04-15 12:00:00 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll MOD - [2008-04-15 12:00:00 | 000,406,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\usp10.dll MOD - [2008-04-15 12:00:00 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll MOD - [2008-04-15 12:00:00 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll MOD - [2008-04-15 12:00:00 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTFIME.IME MOD - [2008-04-15 12:00:00 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wldap32.dll MOD - [2008-04-15 12:00:00 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv MOD - [2008-04-15 12:00:00 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntmarta.dll MOD - [2008-04-15 12:00:00 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx MOD - [2008-04-15 12:00:00 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imm32.dll MOD - [2008-04-15 12:00:00 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll MOD - [2008-04-15 12:00:00 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll MOD - [2008-04-15 12:00:00 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samlib.dll MOD - [2008-04-15 12:00:00 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll MOD - [2008-04-15 12:00:00 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lpk.dll MOD - [2008-04-15 12:00:00 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2009-09-06 12:38:06 | 000,071,096 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\CDBurnerXP\NMSAccessU.exe -- (NMSAccessU) SRV - [2009-01-12 16:18:54 | 000,005,120 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\Prio\prio_svc.exe -- (prio_svc) SRV - [2008-03-21 00:55:58 | 000,071,680 | ---- | M] (zett42) [Disabled | Stopped] -- C:\Program Files\FlashFolder\FlashFolder.exe -- (FlashFolder) SRV - [2007-11-14 21:46:00 | 000,131,072 | ---- | M] (Brio) [Disabled | Stopped] -- C:\Program Files\FolderSize\FolderSizeSvc.exe -- (FolderSize) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2010-11-11 14:09:32 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2009-11-28 00:26:05 | 000,069,168 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\si3112.sys -- (Si3112) DRV - [2009-11-28 00:26:03 | 000,217,128 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\Si3132r5.sys -- (Si3132r5) DRV - [2009-11-28 00:26:02 | 000,080,424 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\si3132.sys -- (Si3132) DRV - [2009-11-28 00:25:59 | 000,076,208 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\si3124.sys -- (Si3124) DRV - [2009-11-28 00:25:58 | 000,209,200 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\Si3114r5.sys -- (Si3114r5) DRV - [2009-11-28 00:25:23 | 000,145,952 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvgts.sys -- (nvgts) DRV - [2009-11-28 00:25:22 | 000,133,152 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvrd32.sys -- (nvrd32) DRV - [2009-11-21 03:34:54 | 010,235,968 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [2009-09-28 20:57:28 | 000,007,168 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen) DRV - [2006-08-18 06:52:00 | 004,017,536 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcxwdm.sys -- (ALCXWDM) Service for Realtek AC97 Audio (WDM) DRV - [2005-05-17 10:45:12 | 000,076,288 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvraid.sys -- (nvraid) NVIDIA nForce(tm) DRV - [2005-05-17 10:45:08 | 000,092,800 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvatabus.sys -- (nvatabus) DRV - [2005-04-05 20:22:30 | 000,012,928 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus) DRV - [2005-04-05 20:22:28 | 000,033,536 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 O1 HOSTS File: ([2008-04-15 12:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Loader Class) - {F880A4A8-C436-4AC4-AFD1-AA0BDC9552DD} - C:\WINDOWS\system32\FindeXer.dll (A Part of the LessCliX Suite by Alianyn) O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll () O3 - HKLM\..\Toolbar: (no name) - {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - No CLSID value found. O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found. O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {63AB4C54-3310-44c9-85D8-AA92C2263D58} - No CLSID value found. O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {EBE9E2B5-B526-48BC-AD46-687263EDCB0E} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll () O4 - HKLM..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe (HP) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [NVRaidService] C:\WINDOWS\system32\nvraidservice.exe (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] File not found O4 - HKLM..\Run: [Resume copy] C:\WINDOWS\copyfstq.exe () O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\soundman.exe (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe (Nullsoft) O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) O4 - HKCU..\Run: [Gadu-Gadu 10] C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.) O4 - HKCU..\Run: [LClock] C:\Program Files\LClock\LClock.exe () O4 - Startup: C:\Documents and Settings\Sulski\Menu Start\Programy\Autostart\Transparent fx - lite.lnk = C:\Program Files\Fadebar\Fadebar.exe (Nookian Apps) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktopCleanupWizard = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRemoteRecursiveEvents = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoClose = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuEjectPC = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: StartMenuLogoff = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoInternetOpenWith = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableStatusMessages = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: VerboseStatus = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0 O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.241.79.37 192.168.1.100 O20 - AppInit_DLLs: (prio.dll) - C:\Program Files\Prio\prio.dll (O&K Software) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UIHost - (%windir%\\system32\\LogonuiZ.exe) - C:\WINDOWS\\system32\\LogonuiZ.exe () O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010-11-11 11:08:31 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2010-11-17 01:11:08 | 000,000,000 | ---D | C] -- C:\Program Files\hp deskjet 840c series [2010-11-17 01:11:08 | 000,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard [2010-11-17 01:10:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Pulpit\win2k_xp [2010-11-13 20:08:37 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2010-11-13 20:08:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Moje dokumenty\Downloads [2010-11-13 19:57:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Identities [2010-11-13 19:49:04 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger [2010-11-13 19:43:34 | 000,000,000 | ---D | C] -- C:\Program Files\JDownloader [2010-11-13 19:43:31 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje wideo [2010-11-13 19:24:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Skype [2010-11-13 16:36:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Apple Computer [2010-11-13 16:32:30 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll [2010-11-13 16:32:30 | 000,185,920 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\rmoc3260.dll [2010-11-13 16:32:30 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll [2010-11-13 16:32:30 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll [2010-11-13 16:32:29 | 000,000,000 | ---D | C] -- C:\Program Files\Real Alternative [2010-11-13 16:32:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Real [2010-11-13 16:32:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Real [2010-11-13 16:32:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Real [2010-11-13 15:39:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\vlc [2010-11-13 15:20:30 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN [2010-11-13 15:15:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\BESTplayer [2010-11-13 12:33:46 | 000,000,000 | ---D | C] -- C:\Program Files\NAPI-PROJEKT [2010-11-13 09:49:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun [2010-11-12 15:11:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\WinRAR [2010-11-12 15:08:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\WinZip [2010-11-12 15:08:45 | 000,000,000 | ---D | C] -- C:\Program Files\WinZip [2010-11-12 02:18:25 | 000,000,000 | ---D | C] -- C:\Program Files\Damian Pasternak [2010-11-11 14:09:59 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Toolbar [2010-11-11 14:09:31 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite [2010-11-11 14:09:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\DAEMON Tools Lite [2010-11-11 14:09:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite [2010-11-11 12:01:09 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moja muzyka [2010-11-11 12:00:54 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer [2010-11-11 12:00:53 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC [2010-11-11 12:00:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines [2010-11-11 12:00:49 | 000,000,000 | ---D | C] -- C:\Program Files [2010-11-11 12:00:49 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared [2010-11-11 12:00:49 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files [2010-11-11 12:00:38 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dgrpsetu.dll [2010-11-11 12:00:38 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\EqnClass.Dll [2010-11-11 12:00:38 | 000,085,532 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dgsetup.dll [2010-11-11 12:00:38 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll [2010-11-11 12:00:26 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start [2010-11-11 12:00:26 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty [2010-11-11 12:00:26 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Szablony [2010-11-11 12:00:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Ulubione [2010-11-11 11:58:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2 [2010-11-11 11:58:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot [2010-11-11 11:58:00 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft [2010-11-11 11:58:00 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji [2010-11-11 11:57:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings [2010-11-11 11:53:25 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2010-11-11 11:48:06 | 001,650,688 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplva6.dll [2010-11-11 11:48:06 | 001,581,056 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplvw7.dll [2010-11-11 11:48:06 | 001,552,384 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplvm6.dll [2010-11-11 11:48:06 | 001,122,304 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplvpx.dll [2010-11-11 11:48:06 | 000,077,824 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplaw7.dll [2010-11-11 11:48:06 | 000,077,824 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplaa6.dll [2010-11-11 11:48:06 | 000,065,536 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplapx.dll [2010-11-11 11:48:06 | 000,065,536 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplam6.dll [2010-11-11 11:48:02 | 000,000,000 | ---D | C] -- C:\Program Files\ACE Mega CoDecS Pack [2010-11-11 11:47:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Media Player Classic [2010-11-11 11:41:31 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp Detect [2010-11-11 11:41:28 | 001,858,032 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxsfs.dll [2010-11-11 11:41:28 | 000,670,192 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\px.dll [2010-11-11 11:41:28 | 000,551,408 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxdrv.dll [2010-11-11 11:41:28 | 000,436,720 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxwave.dll [2010-11-11 11:41:28 | 000,219,632 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxmas.dll [2010-11-11 11:41:28 | 000,129,520 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxafs.dll [2010-11-11 11:41:28 | 000,096,752 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\vxblock.dll [2010-11-11 11:41:28 | 000,072,176 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxhpinst.exe [2010-11-11 11:41:28 | 000,066,544 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpya64.exe [2010-11-11 11:41:28 | 000,066,032 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsa64.exe [2010-11-11 11:41:28 | 000,009,200 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\cdralw2k.sys [2010-11-11 11:41:28 | 000,009,072 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys [2010-11-11 11:41:28 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp [2010-11-11 11:41:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Winamp [2010-11-11 11:41:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-11-11 11:38:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\cache [2010-11-11 11:38:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\SxsCaPendDel [2010-11-11 11:38:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Gadu-Gadu 10 [2010-11-11 11:38:07 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu 10 [2010-11-11 11:38:04 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files [2010-11-11 11:38:04 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts [2010-11-11 11:38:04 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Web [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32 [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32 [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\system [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\security [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\PCHealth [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Network Diagnostic [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\L2Schemas [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\java [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\inf [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076 [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052 [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054 [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1045 [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042 [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041 [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037 [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033 [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031 [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028 [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025 [2010-11-11 11:32:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Opera [2010-11-11 11:32:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Opera [2010-11-11 11:32:31 | 000,000,000 | ---D | C] -- C:\Program Files\Opera [2010-11-11 11:30:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Macromedia [2010-11-11 11:30:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Adobe [2010-11-11 11:29:15 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Sulski\PrivacIE [2010-11-11 11:25:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution [2010-11-11 11:24:47 | 000,454,656 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\CapabilityTable.exe [2010-11-11 11:24:41 | 000,077,312 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardtr.dll [2010-11-11 11:24:41 | 000,067,072 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardzht.dll [2010-11-11 11:24:41 | 000,065,536 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardzhc.dll [2010-11-11 11:24:41 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidtr.dll [2010-11-11 11:24:41 | 000,018,944 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidzht.dll [2010-11-11 11:24:41 | 000,018,944 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidzhc.dll [2010-11-11 11:24:41 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvtr.dll [2010-11-11 11:24:41 | 000,005,120 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvzht.dll [2010-11-11 11:24:41 | 000,005,120 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvzhc.dll [2010-11-11 11:24:41 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionzht.dll [2010-11-11 11:24:41 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionzhc.dll [2010-11-11 11:24:41 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectiontr.dll [2010-11-11 11:24:41 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionth.dll [2010-11-11 11:24:40 | 000,081,920 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardde.dll [2010-11-11 11:24:40 | 000,080,896 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardpt.dll [2010-11-11 11:24:40 | 000,079,360 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardit.dll [2010-11-11 11:24:40 | 000,079,360 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardfr.dll [2010-11-11 11:24:40 | 000,079,360 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardes.dll [2010-11-11 11:24:40 | 000,079,360 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardel.dll [2010-11-11 11:24:40 | 000,078,336 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardsl.dll [2010-11-11 11:24:40 | 000,078,336 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardptb.dll [2010-11-11 11:24:40 | 000,077,824 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardru.dll [2010-11-11 11:24:40 | 000,077,312 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardno.dll [2010-11-11 11:24:40 | 000,077,312 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardnl.dll [2010-11-11 11:24:40 | 000,077,312 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardcs.dll [2010-11-11 11:24:40 | 000,076,800 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardth.dll [2010-11-11 11:24:40 | 000,076,800 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardhu.dll [2010-11-11 11:24:40 | 000,076,288 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardsv.dll [2010-11-11 11:24:40 | 000,076,288 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardpl.dll [2010-11-11 11:24:40 | 000,076,288 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardfi.dll [2010-11-11 11:24:40 | 000,075,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardsk.dll [2010-11-11 11:24:40 | 000,075,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardda.dll [2010-11-11 11:24:40 | 000,075,264 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardeng.dll [2010-11-11 11:24:40 | 000,074,752 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardhe.dll [2010-11-11 11:24:40 | 000,068,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardko.dll [2010-11-11 11:24:40 | 000,068,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardja.dll [2010-11-11 11:24:40 | 000,021,504 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidel.dll [2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidsl.dll [2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidru.dll [2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidptb.dll [2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidpt.dll [2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidpl.dll [2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidnl.dll [2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidit.dll [2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidhu.dll [2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidfr.dll [2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaides.dll [2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidde.dll [2010-11-11 11:24:40 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidth.dll [2010-11-11 11:24:40 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidsv.dll [2010-11-11 11:24:40 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidsk.dll [2010-11-11 11:24:40 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidno.dll [2010-11-11 11:24:40 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidfi.dll [2010-11-11 11:24:40 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaideng.dll [2010-11-11 11:24:40 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidda.dll [2010-11-11 11:24:40 | 000,019,968 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidhe.dll [2010-11-11 11:24:40 | 000,019,456 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidko.dll [2010-11-11 11:24:40 | 000,019,456 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidja.dll [2010-11-11 11:24:40 | 000,006,656 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvpt.dll [2010-11-11 11:24:40 | 000,006,656 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvde.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvth.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvsv.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvsl.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvsk.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvru.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvptb.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvpl.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvno.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvnl.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvit.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvhu.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvhe.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvfr.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvfi.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSves.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSveng.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvel.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvda.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvcs.dll [2010-11-11 11:24:40 | 000,005,120 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvko.dll [2010-11-11 11:24:40 | 000,005,120 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvja.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionsv.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionsl.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionsk.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionru.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionptb.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionpt.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionpl.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionno.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionnl.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionko.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionja.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionit.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionhu.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionhe.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionfr.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionfi.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectiones.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectioneng.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionel.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionde.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionda.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectioncs.dll [2010-11-11 11:24:39 | 000,400,384 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizard.dll [2010-11-11 11:24:39 | 000,084,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvraidservice.exe [2010-11-11 11:24:39 | 000,075,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardEnu.dll [2010-11-11 11:24:39 | 000,073,216 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardar.dll [2010-11-11 11:24:39 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidcs.dll [2010-11-11 11:24:39 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidEnu.dll [2010-11-11 11:24:39 | 000,019,968 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidar.dll [2010-11-11 11:24:39 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvEnu.dll [2010-11-11 11:24:39 | 000,005,632 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvar.dll [2010-11-11 11:24:39 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionEnu.dll [2010-11-11 11:24:39 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionar.dll [2010-11-11 11:23:56 | 000,176,128 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvunrm.exe [2010-11-11 11:23:55 | 000,176,128 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvusmb.exe [2010-11-11 11:23:54 | 000,176,128 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NVUNINST.EXE [2010-11-11 11:23:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups [2010-11-11 11:21:55 | 004,017,536 | R--- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\alcxwdm.sys [2010-11-11 11:21:53 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek Sound Manager [2010-11-11 11:21:52 | 000,000,000 | ---D | C] -- C:\Program Files\AvRack [2010-11-11 11:21:46 | 010,528,768 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTLCPL.exe [2010-11-11 11:21:46 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek AC97 [2010-11-11 11:21:45 | 018,804,736 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\alsndmgr.cpl [2010-11-11 11:21:45 | 000,577,536 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\soundman.exe [2010-11-11 11:21:44 | 000,315,392 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\alcupd.exe [2010-11-11 11:21:44 | 000,217,088 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\Alcrmv.exe [2010-11-11 11:21:44 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2010-11-11 11:21:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2010-11-11 11:20:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\NVIDIA Corporation [2010-11-11 11:20:44 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation [2010-11-11 11:20:11 | 013,602,816 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvoglnt.dll [2010-11-11 11:20:11 | 011,374,592 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcompiler.dll [2010-11-11 11:20:11 | 010,235,968 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nv4_mini.sys [2010-11-11 11:20:11 | 004,038,656 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuda.dll [2010-11-11 11:20:11 | 002,259,560 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvid.dll [2010-11-11 11:20:11 | 001,989,224 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvenc.dll [2010-11-11 11:20:11 | 001,056,768 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvapi.dll [2010-11-11 11:20:11 | 000,182,888 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcodins.dll [2010-11-11 11:20:11 | 000,182,888 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcod.dll [2010-11-11 11:20:11 | 000,069,632 | ---- | C] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll [2010-11-11 11:20:09 | 006,282,752 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nv4_disp.dll [2010-11-11 11:20:06 | 000,000,000 | ---D | C] -- C:\NVIDIA [2010-11-11 11:19:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Xentient [2010-11-11 11:18:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Identities [2010-11-11 11:18:52 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Sulski\Moje dokumenty\Moje obrazy [2010-11-11 11:18:52 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Sulski\Moje dokumenty\Moja muzyka [2010-11-11 11:18:52 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information [2010-11-11 11:18:34 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Sulski\Ulubione [2010-11-11 11:18:34 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Sulski\Moje dokumenty [2010-11-11 11:18:34 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-11-11 11:18:34 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Sulski\SendTo [2010-11-11 11:18:34 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Sulski\Recent [2010-11-11 11:18:34 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Sulski\IETldCache [2010-11-11 11:18:34 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Sulski\Cookies [2010-11-11 11:18:34 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne [2010-11-11 11:18:34 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Sulski\Szablony [2010-11-11 11:18:34 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Sulski\PrintHood [2010-11-11 11:18:34 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Sulski\NetHood [2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\uTorrent [2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Sun [2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Pulpit [2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\nss71F.tmp [2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Microsoft [2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Menu Start [2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\FindeXer [2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Finder Bar [2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Finder Bar [2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji [2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\AIMP [2010-11-11 11:15:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit [2010-11-11 11:15:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Finder Bar [2010-11-11 11:15:52 | 000,000,000 | ---D | C] -- C:\Program Files\FlashFolder [2010-11-11 11:15:50 | 000,000,000 | ---D | C] -- C:\Program Files\FolderSize [2010-11-11 11:15:46 | 000,000,000 | ---D | C] -- C:\Program Files\Command Prompt Explorer Bar [2010-11-11 11:14:36 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC [2010-11-11 11:14:32 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-11-11 11:14:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2010-11-11 11:14:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [2010-11-11 11:14:29 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-11-11 11:14:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [2010-11-11 11:12:59 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\nircmd.exe [2010-11-11 11:12:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Gry [2010-11-11 11:12:53 | 000,880,640 | ---- | C] (Xentient) -- C:\WINDOWS\System32\thumbs.dll [2010-11-11 11:12:53 | 000,150,256 | ---- | C] (Moon Software) -- C:\WINDOWS\System32\UrlFileShellExt.dll [2010-11-11 11:12:53 | 000,069,632 | ---- | C] (Villain) -- C:\WINDOWS\System32\TaskbarForms.exe [2010-11-11 11:12:53 | 000,053,248 | ---- | C] (Quizo) -- C:\WINDOWS\System32\QTFileTools.dll [2010-11-11 11:12:53 | 000,036,864 | ---- | C] (Quizo) -- C:\WINDOWS\System32\QTViewModeButton.dll [2010-11-11 11:12:53 | 000,020,480 | ---- | C] (Quizo) -- C:\WINDOWS\System32\OptionButton.dll [2010-11-11 11:12:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Unlocker [2010-11-11 11:12:52 | 000,488,448 | ---- | C] (MiTeC) -- C:\WINDOWS\System32\MIPSE.dll [2010-11-11 11:12:52 | 000,414,208 | ---- | C] (MiTeC) -- C:\WINDOWS\System32\MPEISE.dll [2010-11-11 11:12:52 | 000,387,584 | ---- | C] (MiTeC) -- C:\WINDOWS\System32\MAISE.dll [2010-11-11 11:12:52 | 000,185,856 | ---- | C] (A Part of the LessCliX Suite by Alianyn) -- C:\WINDOWS\System32\FindeXer.dll [2010-11-11 11:12:52 | 000,146,672 | ---- | C] (Moon Software) -- C:\WINDOWS\System32\FolderBackgroundShellExt.dll [2010-11-11 11:12:52 | 000,016,792 | ---- | C] (NTWind Software) -- C:\WINDOWS\System32\hstart.exe [2010-11-11 11:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\locale [2010-11-11 11:12:51 | 001,312,256 | ---- | C] (Softpointer Inc) -- C:\WINDOWS\System32\AudioShellExt.dll [2010-11-11 11:12:51 | 000,151,552 | ---- | C] (Minimalist) -- C:\WINDOWS\System32\BCToolbar.dll [2010-11-11 11:12:51 | 000,150,256 | ---- | C] (Moon Software) -- C:\WINDOWS\System32\AnyFileShellExt.dll [2010-11-11 11:12:51 | 000,036,864 | ---- | C] (Quizo) -- C:\WINDOWS\System32\CreateNewItemButton.dll [2010-11-11 11:12:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\books [2010-11-11 11:12:48 | 000,000,000 | ---D | C] -- C:\Program Files\Zapodaj Uploader [2010-11-11 11:12:48 | 000,000,000 | ---D | C] -- C:\Program Files\AeroSnap [2010-11-11 11:12:48 | 000,000,000 | ---D | C] -- C:\Program Files\Aero shake [2010-11-11 11:12:48 | 000,000,000 | ---D | C] -- C:\Program Files\AbiSuite2 [2010-11-11 11:12:47 | 000,000,000 | ---D | C] -- C:\Program Files\WinFlip [2010-11-11 11:12:44 | 000,000,000 | ---D | C] -- C:\Program Files\WindowZ [2010-11-11 11:12:43 | 000,000,000 | ---D | C] -- C:\Program Files\WinDirStat [2010-11-11 11:12:43 | 000,000,000 | ---D | C] -- C:\Program Files\ViGlance OneStep [2010-11-11 11:12:43 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent [2010-11-11 11:12:42 | 000,000,000 | ---D | C] -- C:\Program Files\TrueTransparency [2010-11-11 11:12:42 | 000,000,000 | ---D | C] -- C:\Program Files\Thumbnail Resize [2010-11-11 11:12:42 | 000,000,000 | ---D | C] -- C:\Program Files\Taskix [2010-11-11 11:12:42 | 000,000,000 | ---D | C] -- C:\Program Files\TaskbarEx [2010-11-11 11:12:42 | 000,000,000 | ---D | C] -- C:\Program Files\SubEdit-Player [2010-11-11 11:12:41 | 000,000,000 | ---D | C] -- C:\Program Files\Stack [2010-11-11 11:12:41 | 000,000,000 | ---D | C] -- C:\Program Files\SpiritPyre Extensions [2010-11-11 11:12:40 | 000,000,000 | ---D | C] -- C:\Program Files\shutoffxp [2010-11-11 11:12:40 | 000,000,000 | ---D | C] -- C:\Program Files\Shellka [2010-11-11 11:12:39 | 000,000,000 | ---D | C] -- C:\Program Files\RightClick [2010-11-11 11:12:39 | 000,000,000 | ---D | C] -- C:\Program Files\Q-Dir [2010-11-11 11:12:39 | 000,000,000 | ---D | C] -- C:\Program Files\QDAcces [2010-11-11 11:12:39 | 000,000,000 | ---D | C] -- C:\Program Files\PNotes [2010-11-11 11:12:39 | 000,000,000 | ---D | C] -- C:\Program Files\Placesbar Constructor [2010-11-11 11:12:39 | 000,000,000 | ---D | C] -- C:\Program Files\Perlovga Removal Tool [2010-11-11 11:12:37 | 000,000,000 | ---D | C] -- C:\Program Files\OxelonMedia [2010-11-11 11:12:37 | 000,000,000 | ---D | C] -- C:\Program Files\MimeTeXeditor [2010-11-11 11:12:37 | 000,000,000 | ---D | C] -- C:\Program Files\MaZZicK [2010-11-11 11:12:36 | 000,000,000 | ---D | C] -- C:\Program Files\LogonZ Designer [2010-11-11 11:12:35 | 000,000,000 | ---D | C] -- C:\Program Files\LaunchTab [2010-11-11 11:12:33 | 000,000,000 | ---D | C] -- C:\Program Files\Ikony paska narzędzi [2010-11-11 11:12:30 | 000,000,000 | ---D | C] -- C:\Program Files\IconZ [2010-11-11 11:12:30 | 000,000,000 | ---D | C] -- C:\Program Files\IconViewer [2010-11-11 11:12:30 | 000,000,000 | ---D | C] -- C:\Program Files\Google Hacks [2010-11-11 11:12:30 | 000,000,000 | ---D | C] -- C:\Program Files\GG Lite [2010-11-11 11:12:28 | 000,000,000 | ---D | C] -- C:\Program Files\FreeRapiD-0.82 [2010-11-11 11:12:26 | 000,000,000 | ---D | C] -- C:\Program Files\Foxit Reader [2010-11-11 11:12:26 | 000,000,000 | ---D | C] -- C:\Program Files\Fadebar [2010-11-11 11:12:26 | 000,000,000 | ---D | C] -- C:\Program Files\Everything Search Engine [2010-11-11 11:12:26 | 000,000,000 | ---D | C] -- C:\Program Files\EdgeSwap [2010-11-11 11:12:25 | 000,000,000 | ---D | C] -- C:\Program Files\Drive Space Indicator [2010-11-11 11:12:25 | 000,000,000 | ---D | C] -- C:\Program Files\DIPS [2010-11-11 11:12:25 | 000,000,000 | ---D | C] -- C:\Program Files\DesktopListViewv1.0 [2010-11-11 11:12:25 | 000,000,000 | ---D | C] -- C:\Program Files\Cymes Desktop Changer 1.7 [2010-11-11 11:12:25 | 000,000,000 | ---D | C] -- C:\Program Files\Contextaware [2010-11-11 11:12:24 | 000,000,000 | ---D | C] -- C:\Program Files\Console [2010-11-11 11:12:24 | 000,000,000 | ---D | C] -- C:\Program Files\Blue Onion Software [2010-11-11 11:12:24 | 000,000,000 | ---D | C] -- C:\Program Files\BESTplayer [2010-11-11 11:12:24 | 000,000,000 | ---D | C] -- C:\Program Files\Aqua Dock [2010-11-11 11:12:23 | 000,000,000 | ---D | C] -- C:\Program Files\VS Revo Group [2010-11-11 11:12:22 | 000,000,000 | ---D | C] -- C:\Program Files\VisualTaskTips [2010-11-11 11:12:21 | 000,000,000 | ---D | C] -- C:\Program Files\VPX.PL Uploader [2010-11-11 11:12:20 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2010-11-11 11:12:18 | 000,000,000 | ---D | C] -- C:\Program Files\Switch Off [2010-11-11 11:12:18 | 000,000,000 | ---D | C] -- C:\Program Files\StyleFolder [2010-11-11 11:12:17 | 000,172,032 | ---- | C] (Herf Consulting LLC) -- C:\WINDOWS\vjpeg.exe [2010-11-11 11:12:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe [2010-11-11 11:12:08 | 000,000,000 | ---D | C] -- C:\Program Files\LClock [2010-11-11 11:12:07 | 000,000,000 | ---D | C] -- C:\Program Files\Quizo [2010-11-11 11:12:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Apple Computer [2010-11-11 11:12:00 | 000,094,208 | ---- | C] (Apple Inc.) -- C:\WINDOWS\System32\QuickTimeVR.qtx [2010-11-11 11:12:00 | 000,069,632 | ---- | C] (Apple Inc.) -- C:\WINDOWS\System32\QuickTime.qts [2010-11-11 11:11:54 | 000,000,000 | ---D | C] -- C:\Program Files\QT Lite [2010-11-11 11:11:51 | 000,000,000 | ---D | C] -- C:\Program Files\Prio [2010-11-11 11:11:48 | 000,000,000 | ---D | C] -- C:\Program Files\RegCompact Pro [2010-11-11 11:11:46 | 000,000,000 | ---D | C] -- C:\Program Files\System [2010-11-11 11:11:43 | 000,000,000 | ---D | C] -- C:\Program Files\IrfanView [2010-11-11 11:11:40 | 000,526,184 | ---- | C] (Xceed Software Inc (450) 442-2626 support@xceedsoft.com www.xceedsoft.com) -- C:\WINDOWS\System32\XceedCry.dll [2010-11-11 11:11:40 | 000,456,536 | ---- | C] (Xceed Software Inc (450) 442-2626 support@xceedsoft.com www.xceedsoft.com) -- C:\WINDOWS\System32\XCEEDZIP.DLL [2010-11-11 11:11:39 | 000,000,000 | ---D | C] -- C:\Program Files\Driver Magician [2010-11-11 11:11:38 | 000,000,000 | ---D | C] -- C:\Program Files\Defraggler [2010-11-11 11:11:31 | 000,000,000 | ---D | C] -- C:\Program Files\CDBurnerXP [2010-11-11 11:11:28 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner [2010-11-11 11:11:26 | 000,000,000 | ---D | C] -- C:\Program Files\AIMP2 [2010-11-11 11:11:23 | 000,000,000 | ---D | C] -- C:\Program Files\TrueCrypt [2010-11-11 11:11:09 | 000,000,000 | ---D | C] -- C:\Program Files\AbiWord [2010-11-11 11:10:45 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft [2010-11-11 11:10:43 | 000,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deploytk.dll [2010-11-11 11:10:43 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe [2010-11-11 11:10:43 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe [2010-11-11 11:10:43 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe [2010-11-11 11:10:43 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl [2010-11-11 11:10:37 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2010-11-11 11:08:53 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly [2010-11-11 11:08:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTemp [2010-11-11 11:08:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET [2010-11-11 11:07:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dllcache [2010-11-11 11:07:15 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM [2010-11-11 11:07:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje obrazy [2010-11-11 11:06:52 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online [2010-11-11 11:06:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services [2010-11-11 11:06:22 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks [2010-11-11 11:06:19 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap [2010-11-11 11:06:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore [2010-11-11 11:06:03 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express [2010-11-11 11:05:53 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System [2010-11-11 11:05:51 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer [2010-11-11 11:05:19 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications [2010-11-11 11:05:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration [2010-11-11 11:05:00 | 000,774,144 | ---- | C] (3Planesoft) -- C:\WINDOWS\System32\Deep Space 3D Screensaver.scr [2010-11-11 11:04:56 | 012,360,192 | ---- | C] (3Planesoft) -- C:\WINDOWS\System32\Deep Space 3D Screensaver.exe [2010-11-11 11:04:55 | 000,848,896 | ---- | C] (3Planesoft) -- C:\WINDOWS\System32\Mechanical Clock 3D Screensaver.scr [2010-11-11 11:04:54 | 002,529,280 | ---- | C] (3Planesoft) -- C:\WINDOWS\System32\Mechanical Clock 3D Screensaver.exe [2010-11-11 11:04:54 | 000,841,728 | ---- | C] (3Planesoft) -- C:\WINDOWS\System32\Koi Fish 3D Screensaver.scr [2010-11-11 11:04:50 | 010,203,136 | ---- | C] (3Planesoft) -- C:\WINDOWS\System32\Koi Fish 3D Screensaver.exe [2010-11-11 11:04:44 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2 [2010-11-11 11:04:43 | 000,044,544 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hticons.dll [2010-11-11 11:04:43 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player [2010-11-11 11:04:20 | 000,351,744 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hypertrm.dll [2010-11-11 11:04:20 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT [2010-11-11 11:04:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc [2010-11-11 11:04:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [1 C:\Documents and Settings\Sulski\*.tmp files -> C:\Documents and Settings\Sulski\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2010-11-17 09:40:43 | 000,272,291 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml [2010-11-17 09:39:29 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-11-17 01:11:33 | 000,000,800 | ---- | M] () -- C:\WINDOWS\hpinfo.lnk [2010-11-16 16:55:34 | 000,109,400 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-11-16 09:57:59 | 000,002,184 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-11-16 00:14:26 | 000,000,661 | ---- | M] () -- C:\Documents and Settings\Sulski\Pulpit\ŃôąâĘąĂü2010ŐýĘ˝°ć.lnk [2010-11-14 09:10:19 | 000,004,608 | ---- | M] () -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-11-13 20:04:14 | 000,000,630 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\µTorrent.lnk [2010-11-13 19:43:40 | 000,000,746 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\JDownloader.lnk [2010-11-13 15:20:45 | 000,000,719 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\VLC media player.lnk [2010-11-13 12:33:46 | 000,000,662 | ---- | M] () -- C:\Documents and Settings\Sulski\Pulpit\NapiProjekt.lnk [2010-11-12 15:08:55 | 000,001,732 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\WinZip.lnk [2010-11-12 02:18:25 | 000,000,845 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\CWK.lnk [2010-11-11 14:09:32 | 000,691,696 | ---- | M] () -- C:\WINDOWS\System32\drivers\sptd.sys [2010-11-11 14:09:32 | 000,001,613 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk [2010-11-11 12:00:58 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF [2010-11-11 11:48:27 | 000,001,001 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Media Player Classic.lnk [2010-11-11 11:48:27 | 000,000,949 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\ACE Mega CoDecS Pack DashBoard.lnk [2010-11-11 11:48:27 | 000,000,893 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\BSPlayer.lnk [2010-11-11 11:41:31 | 000,000,654 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk [2010-11-11 11:40:01 | 000,454,962 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2010-11-11 11:40:01 | 000,398,554 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010-11-11 11:40:01 | 000,077,594 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2010-11-11 11:40:01 | 000,061,074 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010-11-11 11:38:23 | 000,000,703 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\OpenFM.lnk [2010-11-11 11:38:23 | 000,000,674 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk [2010-11-11 11:32:33 | 000,000,592 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Opera.lnk [2010-11-11 11:28:39 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD [2010-11-11 11:21:53 | 000,001,519 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\AvRack.lnk [2010-11-11 11:19:03 | 000,001,474 | ---- | M] () -- C:\Documents and Settings\Sulski\Menu Start\Programy\Autostart\Transparent fx - lite.lnk [2010-11-11 11:17:35 | 000,000,315 | ---- | M] () -- C:\WINDOWS\System32\ResHacker.ini [2010-11-11 11:13:41 | 000,001,314 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2010-11-11 11:12:17 | 000,172,032 | ---- | M] (Herf Consulting LLC) -- C:\WINDOWS\vjpeg.exe [2010-11-11 11:12:17 | 000,053,812 | ---- | M] () -- C:\WINDOWS\uninst-vj.exe [2010-11-11 11:12:14 | 000,001,958 | ---- | M] () -- C:\WINDOWS\uninstall.ini [2010-11-11 11:12:13 | 000,082,898 | ---- | M] () -- C:\WINDOWS\uninstall.exe [2010-11-11 11:10:38 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deploytk.dll [2010-11-11 11:10:38 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe [2010-11-11 11:10:38 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe [2010-11-11 11:10:38 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe [2010-11-11 11:10:38 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl [2010-11-11 11:08:31 | 000,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2010-11-11 11:08:31 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2010-11-11 11:08:31 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-11-11 11:08:31 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-11-11 11:08:31 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-11-11 11:08:24 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2010-11-11 11:08:24 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2010-11-11 11:08:23 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2010-11-11 11:07:41 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2010-11-11 11:05:27 | 000,021,856 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [2010-11-11 11:03:19 | 000,000,211 | -HS- | M] () -- C:\boot.ini [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [1 C:\Documents and Settings\Sulski\*.tmp files -> C:\Documents and Settings\Sulski\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-11-17 01:11:33 | 000,000,800 | ---- | C] () -- C:\WINDOWS\hpinfo.lnk [2010-11-16 00:14:26 | 000,000,661 | ---- | C] () -- C:\Documents and Settings\Sulski\Pulpit\ŃôąâĘąĂü2010ŐýĘ˝°ć.lnk [2010-11-13 20:04:14 | 000,000,630 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\µTorrent.lnk [2010-11-13 19:43:40 | 000,000,746 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\JDownloader.lnk [2010-11-13 15:41:28 | 000,004,608 | ---- | C] () -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-11-13 15:20:45 | 000,000,719 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\VLC media player.lnk [2010-11-13 12:33:46 | 000,000,662 | ---- | C] () -- C:\Documents and Settings\Sulski\Pulpit\NapiProjekt.lnk [2010-11-12 15:08:55 | 000,001,732 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\WinZip.lnk [2010-11-12 02:18:25 | 000,000,845 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\CWK.lnk [2010-11-11 14:09:32 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys [2010-11-11 14:09:32 | 000,001,613 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk [2010-11-11 12:00:58 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF [2010-11-11 12:00:53 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2010-11-11 12:00:35 | 000,001,734 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT [2010-11-11 12:00:34 | 000,792,576 | ---- | C] () -- C:\WINDOWS\NOTEPAD.EXE [2010-11-11 11:57:37 | 000,109,400 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-11-11 11:56:53 | 000,000,211 | -HS- | C] () -- C:\boot.ini [2010-11-11 11:56:51 | 000,001,314 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf [2010-11-11 11:48:27 | 000,001,001 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Media Player Classic.lnk [2010-11-11 11:48:27 | 000,000,949 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\ACE Mega CoDecS Pack DashBoard.lnk [2010-11-11 11:48:27 | 000,000,893 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\BSPlayer.lnk [2010-11-11 11:48:24 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\vp6dec_settings.cpl [2010-11-11 11:48:09 | 000,000,702 | ---- | C] () -- C:\WINDOWS\mmtvmj.ini [2010-11-11 11:48:08 | 000,000,761 | ---- | C] () -- C:\WINDOWS\m3jp2k.ini [2010-11-11 11:48:08 | 000,000,714 | ---- | C] () -- C:\WINDOWS\m3jpeg.ini [2010-11-11 11:48:06 | 000,019,968 | ---- | C] () -- C:\WINDOWS\System32\cpuinf32.dll [2010-11-11 11:48:05 | 000,761,856 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2010-11-11 11:48:03 | 000,417,792 | ---- | C] () -- C:\WINDOWS\System32\ac3filter.cpl [2010-11-11 11:41:31 | 000,000,654 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk [2010-11-11 11:38:23 | 000,000,703 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\OpenFM.lnk [2010-11-11 11:38:23 | 000,000,674 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk [2010-11-11 11:32:32 | 000,000,592 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Opera.lnk [2010-11-11 11:28:39 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD [2010-11-11 11:24:39 | 000,249,344 | ---- | C] () -- C:\WINDOWS\System32\NvRaidMan.exe [2010-11-11 11:24:39 | 000,223,232 | ---- | C] () -- C:\WINDOWS\System32\nvsataconnection.exe [2010-11-11 11:23:56 | 000,003,596 | ---- | C] () -- C:\WINDOWS\System32\nvnrm.nvu [2010-11-11 11:23:54 | 000,001,231 | ---- | C] () -- C:\WINDOWS\System32\nvsmb.nvu [2010-11-11 11:22:22 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe [2010-11-11 11:21:53 | 000,001,519 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\AvRack.lnk [2010-11-11 11:21:52 | 000,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini [2010-11-11 11:21:46 | 000,141,016 | ---- | C] () -- C:\WINDOWS\System32\alsndmgr.wav [2010-11-11 11:21:45 | 000,143,360 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll [2010-11-11 11:20:11 | 000,008,743 | ---- | C] () -- C:\WINDOWS\System32\nvinfo.pb [2010-11-11 11:20:09 | 002,293,286 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin [2010-11-11 11:18:35 | 000,534,508 | ---- | C] () -- C:\Documents and Settings\Sulski\dd_vcredistMSI3CA1.txt [2010-11-11 11:18:35 | 000,015,552 | ---- | C] () -- C:\Documents and Settings\Sulski\dd_vcredistUI3CA1.txt [2010-11-11 11:18:35 | 000,001,474 | ---- | C] () -- C:\Documents and Settings\Sulski\Menu Start\Programy\Autostart\Transparent fx - lite.lnk [2010-11-11 11:18:35 | 000,000,172 | ---- | C] () -- C:\Documents and Settings\Sulski\Pulpit\ .lnk [2010-11-11 11:18:35 | 000,000,026 | ---- | C] () -- C:\Documents and Settings\Sulski\Dane aplikacji\prio.ini [2010-11-11 11:18:34 | 000,110,754 | ---- | C] () -- C:\Documents and Settings\Sulski\Setup Log 2010-11-11 #001.txt [2010-11-11 11:17:34 | 000,000,315 | ---- | C] () -- C:\WINDOWS\System32\ResHacker.ini [2010-11-11 11:16:27 | 000,000,916 | ---- | C] () -- C:\WINDOWS\System32\subfolderoff.reg [2010-11-11 11:16:27 | 000,000,910 | ---- | C] () -- C:\WINDOWS\System32\subfolderon.reg [2010-11-11 11:13:34 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2010-11-11 11:12:59 | 000,483,328 | ---- | C] () -- C:\WINDOWS\Helios.scr [2010-11-11 11:12:59 | 000,348,160 | ---- | C] () -- C:\WINDOWS\labels.dll [2010-11-11 11:12:59 | 000,025,780 | ---- | C] () -- C:\WINDOWS\Windowz.png [2010-11-11 11:12:59 | 000,007,690 | ---- | C] () -- C:\WINDOWS\Lng_QTTabBar_Polish.xml [2010-11-11 11:12:59 | 000,000,042 | ---- | C] () -- C:\WINDOWS\labelsoff.cmd [2010-11-11 11:12:59 | 000,000,039 | ---- | C] () -- C:\WINDOWS\labelson.cmd [2010-11-11 11:12:59 | 000,000,026 | ---- | C] () -- C:\WINDOWS\prio.ini [2010-11-11 11:12:53 | 001,026,560 | ---- | C] () -- C:\WINDOWS\System32\ResHacker.exe [2010-11-11 11:12:53 | 000,131,072 | ---- | C] () -- C:\WINDOWS\System32\ql.exe [2010-11-11 11:12:53 | 000,003,241 | ---- | C] () -- C:\WINDOWS\System32\SendToQuickLaunch.vbs [2010-11-11 11:12:53 | 000,002,362 | ---- | C] () -- C:\WINDOWS\System32\opty.vbs [2010-11-11 11:12:53 | 000,000,454 | ---- | C] () -- C:\WINDOWS\System32\qlon.vbs [2010-11-11 11:12:53 | 000,000,454 | ---- | C] () -- C:\WINDOWS\System32\qloff.vbs [2010-11-11 11:12:53 | 000,000,401 | ---- | C] () -- C:\WINDOWS\System32\y.cmd [2010-11-11 11:12:53 | 000,000,066 | ---- | C] () -- C:\WINDOWS\System32\undock.vbs [2010-11-11 11:12:53 | 000,000,055 | ---- | C] () -- C:\WINDOWS\System32\subfolderoff.cmd [2010-11-11 11:12:53 | 000,000,051 | ---- | C] () -- C:\WINDOWS\System32\subfolderon.cmd [2010-11-11 11:12:53 | 000,000,045 | ---- | C] () -- C:\WINDOWS\System32\uninstall.bat [2010-11-11 11:12:53 | 000,000,034 | ---- | C] () -- C:\WINDOWS\System32\UrlFileOff.bat [2010-11-11 11:12:53 | 000,000,031 | ---- | C] () -- C:\WINDOWS\System32\UrlFileOn.bat [2010-11-11 11:12:53 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ToolbarOff.bat [2010-11-11 11:12:53 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\optymalizacja.cmd [2010-11-11 11:12:53 | 000,000,027 | ---- | C] () -- C:\WINDOWS\System32\Unregister.bat [2010-11-11 11:12:53 | 000,000,025 | ---- | C] () -- C:\WINDOWS\System32\ToolbarOn.bat [2010-11-11 11:12:53 | 000,000,021 | ---- | C] () -- C:\WINDOWS\System32\Register.bat [2010-11-11 11:12:52 | 000,363,089 | ---- | C] () -- C:\WINDOWS\System32\hddspace.exe [2010-11-11 11:12:52 | 000,211,968 | ---- | C] () -- C:\WINDOWS\System32\Formats.dll [2010-11-11 11:12:52 | 000,104,960 | ---- | C] () -- C:\WINDOWS\System32\opensub.dll [2010-11-11 11:12:52 | 000,031,232 | ---- | C] () -- C:\WINDOWS\System32\fstoggle.exe [2010-11-11 11:12:52 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\instalacja.bat [2010-11-11 11:12:52 | 000,000,297 | ---- | C] () -- C:\WINDOWS\System32\find_target.vbs [2010-11-11 11:12:52 | 000,000,064 | ---- | C] () -- C:\WINDOWS\System32\install.bat [2010-11-11 11:12:52 | 000,000,043 | ---- | C] () -- C:\WINDOWS\System32\FolderBackgrounOff.bat [2010-11-11 11:12:52 | 000,000,040 | ---- | C] () -- C:\WINDOWS\System32\FolderBackgrounOn.bat [2010-11-11 11:12:52 | 000,000,034 | ---- | C] () -- C:\WINDOWS\System32\notatkaoff.bat [2010-11-11 11:12:52 | 000,000,031 | ---- | C] () -- C:\WINDOWS\System32\notatkaon.bat [2010-11-11 11:12:52 | 000,000,025 | ---- | C] () -- C:\WINDOWS\System32\MPEISEoff.bat [2010-11-11 11:12:52 | 000,000,024 | ---- | C] () -- C:\WINDOWS\System32\MIPSEoff.bat [2010-11-11 11:12:52 | 000,000,024 | ---- | C] () -- C:\WINDOWS\System32\MAISEoff.bat [2010-11-11 11:12:52 | 000,000,022 | ---- | C] () -- C:\WINDOWS\System32\MPEISEon.bat [2010-11-11 11:12:52 | 000,000,021 | ---- | C] () -- C:\WINDOWS\System32\MIPSEon.bat [2010-11-11 11:12:52 | 000,000,021 | ---- | C] () -- C:\WINDOWS\System32\MAISEon.bat [2010-11-11 11:12:51 | 001,583,189 | ---- | C] () -- C:\WINDOWS\System32\eco-timer.scr [2010-11-11 11:12:51 | 000,040,448 | ---- | C] () -- C:\WINDOWS\System32\cdeject.dll [2010-11-11 11:12:51 | 000,000,008 | ---- | C] () -- C:\WINDOWS\System32\czysc.cmd [2010-11-11 11:12:17 | 000,053,812 | ---- | C] () -- C:\WINDOWS\uninst-vj.exe [2010-11-11 11:12:14 | 000,001,958 | ---- | C] () -- C:\WINDOWS\uninstall.ini [2010-11-11 11:12:13 | 000,082,898 | ---- | C] () -- C:\WINDOWS\uninstall.exe [2010-11-11 11:11:45 | 000,208,896 | ---- | C] () -- C:\WINDOWS\System32\cttune.cpl [2010-11-11 11:11:45 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\startup.cpl [2010-11-11 11:11:40 | 000,110,602 | ---- | C] () -- C:\WINDOWS\System32\xcdsfx32.bin [2010-11-11 11:11:32 | 000,007,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys [2010-11-11 11:10:57 | 000,178,176 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2010-11-11 11:08:31 | 000,002,596 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT [2010-11-11 11:08:31 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS [2010-11-11 11:08:31 | 000,000,000 | RHS- | C] () -- C:\IO.SYS [2010-11-11 11:08:31 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS [2010-11-11 11:08:31 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT [2010-11-11 11:08:24 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb [2010-11-11 11:08:24 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb [2010-11-11 11:08:23 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx [2010-11-11 11:05:27 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2010-11-11 11:04:35 | 006,160,384 | ---- | C] () -- C:\WINDOWS\System32\calc.exe [2010-11-11 11:04:34 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h [2010-11-11 11:04:34 | 000,001,225 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd [2010-11-11 11:04:32 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h [2010-11-11 11:04:22 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc [2009-11-26 20:26:48 | 000,014,336 | ---- | C] () -- C:\WINDOWS\System32\tzchange.dll [2003-06-09 14:05:18 | 000,094,636 | ---- | C] () -- C:\WINDOWS\dropcpyr.dll [color=#E56717]========== LOP Check ==========[/color] [2010-11-11 14:09:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite [2010-11-11 11:15:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Finder Bar [2010-11-11 11:41:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-11-12 15:09:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\WinZip [2009-09-17 21:38:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\AIMP [2010-11-13 15:16:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\BESTplayer [2010-11-11 14:13:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\DAEMON Tools Lite [2010-11-11 11:16:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\Finder Bar [2009-11-10 16:15:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\FindeXer [2010-11-11 11:41:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\Gadu-Gadu 10 [2010-11-11 11:32:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\Opera [2010-11-13 21:29:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\uTorrent [2010-11-11 11:19:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\Xentient [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2010-11-11 11:08:31 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-11-11 11:03:19 | 000,000,211 | -HS- | M] () -- C:\boot.ini [2008-04-15 12:00:00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin [2010-11-11 11:08:31 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-11-11 11:08:31 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-11-11 11:08:31 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2008-04-15 12:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2008-04-15 12:00:00 | 000,251,152 | RHS- | M] () -- C:\ntldr [2010-11-17 09:39:27 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys < End of report > [/log] http://wklej.org/id/420629/ Hijack : http://wklej.org/id/420630/
MC Jay komentarz 17 listopada 2010 komentarz 17 listopada 2010 (edytowane) w hijt zaznacz to (chociarz nie wiem czy to cś da) R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = WindowZ IE O2 - BHO: CommandBar.CtrlMHook - {3f1ab67e-12aa-352e-b4e0-a5f1810b60dd} - mscoree.dll (file missing) O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jr O3 - Toolbar: QT Breadcrumbs Address Bar - {af83e43c-dd2b-4787-826b-31b17dee52ed} - mscoree.dll (file missing) O3 - Toolbar: QT TabBar - {d2bf470e-ed1c-487f-a333-2bd8835eb6ce} - mscoree.dll (file missing) O3 - Toolbar: QT Tab Standard Buttons - {D2BF470E-ED1C-487F-A666-2BD8835EB6CE} - mscoree.dll (file missing) O3 - Toolbar: (no name) - {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - (no file) O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll O4 - HKLM\..\Run: [Resume copy] copyfstq.exe /startup O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe" O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe O4 - HKCU\..\Run: [LClock] C:\Program Files\LClock\LClock.exe O4 - HKCU\..\Run: [Gadu-Gadu 10] "C:\Program Files\Gadu-Gadu 10\gg.exe" O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun O4 - HKUS\S-1-5-19\..\Run: [LClock] C:\Program Files\LClock\LClock.exe (User 'USŁUGA LOKALNA') O4 - HKUS\S-1-5-19\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'USŁUGA LOKALNA') O4 - HKUS\S-1-5-20\..\Run: [LClock] C:\Program Files\LClock\LClock.exe (User 'USŁUGA SIECIOWA') O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'USŁUGA SIECIOWA') O4 - HKUS\S-1-5-18\..\Run: [LClock] C:\Program Files\LClock\LClock.exe (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [LClock] C:\Program Files\LClock\LClock.exe (User 'Default user') O4 - HKUS\.DEFAULT\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user') O4 - S-1-5-18 Startup: Transparent fx - lite.lnk = C:\Program Files\Fadebar\Fadebar.exe (User 'SYSTEM') O4 - S-1-5-18 Startup: z.cmd (User 'SYSTEM') O4 - .DEFAULT Startup: Transparent fx - lite.lnk = C:\Program Files\Fadebar\Fadebar.exe (User 'Default user') O4 - .DEFAULT Startup: z.cmd (User 'Default user') O4 - .DEFAULT User Startup: Transparent fx - lite.lnk = C:\Program Files\Fadebar\Fadebar.exe (User 'Default user') O4 - .DEFAULT User Startup: z.cmd (User 'Default user') O4 - Startup: Transparent fx - lite.lnk = C:\Program Files\Fadebar\Fadebar.exe napisz jaki masz internet dokładniej tzn. czy bezprzewodowy, itp. być może ze sterowniki lub sam sprzęt przez jaki uzyskujesz internet słabo współpracuje z xp
Sulski komentarz 17 listopada 2010 Autor komentarz 17 listopada 2010 (edytowane) Niestety nie dalo nic , internet mam z netii 2mb , i zamula tylko zawsze po formacie i instalacji XP , pozniej gdy pisalem tematy z prosba o pomoc , ktos zawsze pomagal , tylko wtedy zawsze kazano uzywac Combofixa. Robie jeszcze skana malwarebytes , moze cos wychwyci. log z malware : http://wklej.org/id/420836/ Oczywiscie wszystkie usunalem .
Tomek01 komentarz 17 listopada 2010 komentarz 17 listopada 2010 Niewiele tu widać. Odinstaluj DAEMON Tools Toolbar. W OTL, w oknie Custom scan/fixes wklej: [code]:Processes Explorer.exe :OTL O2 - BHO: (Loader Class) - {F880A4A8-C436-4AC4-AFD1-AA0BDC9552DD} - C:\WINDOWS\system32\FindeXer.dll (A Part of the LessCliX Suite by Alianyn) O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll () O3 - HKLM\..\Toolbar: (no name) - {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - No CLSID value found. O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found. O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {63AB4C54-3310-44c9-85D8-AA92C2263D58} - No CLSID value found. O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {EBE9E2B5-B526-48BC-AD46-687263EDCB0E} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll () :Files C:\Program Files\DAEMON Tools Toolbar :Commands [emptytemp] [start explorer] [Reboot][/code] Klikasz run fix, komputer uruchamia się ponownie. Wrzuć log z usuwania oraz nowe logi: OTL i RSIT. Wykonaj pełny skan [url=http://www.instalki.pl/programy/download_c/14/155.html][color=#0000CD][b]DrWebCureIt[/b][/color][/url] oraz [url=http://www.instalki.pl/programy/download_c/13/96.html][color=#0000CD][b]Malwarebytes Anti-Malware[/b][/color][/url] i wyniki pokaż na forum.
MC Jay komentarz 17 listopada 2010 komentarz 17 listopada 2010 hmmm... może posprawdzaj stan wtyczek i kabli bo sam miałem ten problem i w moim przypadku był zbyt mocno zgiety kabel i czasami po prostu nie chciało łączyć
Tomek01 komentarz 17 listopada 2010 komentarz 17 listopada 2010 Combofixa nie używaj. Ew dorzuć do logów log z Gmera. Odinstaluj przed tym jednak jednostki emulujące napęd, czyli np Deamon Tools, Alcohol oraz sterownik sptd.sys. Dopiero wtedy log z Gmer'a będzie wiarygodny.
Sulski komentarz 17 listopada 2010 Autor komentarz 17 listopada 2010 (edytowane) Bede wrzucal te logi pokolei i edytowal post bo pozniej by mi sie pogmatwalo. Z usuwania : http://wklej.org/id/420896/ OTL ponowny skan : http://wklej.org/id/420903/ http://wklej.org/id/420904/ RSIT : http://wklej.org/id/420905/ http://wklej.org/id/420906/ Malware ani DrWeb nic nie wykryly. [color="#FF0000"]//Proszę edytować i wstawić logi w odpowiednim formacie. //Przeczytałeś zasady wstawiania logów ? //Tom01[/color]
Sohei komentarz 18 listopada 2010 komentarz 18 listopada 2010 [code]:Processes Explorer.exe :OTL [2010-11-11 11:48:09 | 000,000,702 | ---- | C] () -- C:\WINDOWS\mmtvmj.ini [2010-11-11 11:48:08 | 000,000,761 | ---- | C] () -- C:\WINDOWS\m3jp2k.ini [2010-11-11 11:48:08 | 000,000,714 | ---- | C] () -- C:\WINDOWS\m3jpeg.ini O4 - Startup: C:\Documents and Settings\Administrator\Menu Start\Programy\Autostart\del.exe () O4 - Startup: C:\Documents and Settings\Default User\Menu Start\Programy\Autostart\z.cmd () O4 - Startup: C:\Documents and Settings\Administrator\Menu Start\Programy\Autostart\run.lnk = C:\Program Files\WindowZ\Kreator post-instalacyjny\run.bat () :files C:\Documents and Settings\Default User\Menu Start\Programy\Autostart\z.cmd C:\Documents and Settings\Administrator\Menu Start\Programy\Autostart\del.exe C:\Documents and Settings\Administrator\Menu Start\Programy\Autostart\run.lnk = C:\Program Files\WindowZ\Kreator post-instalacyjny\run.bat :Commands [emptytemp] [start explorer] [reboot][/code] Wklejasz to do OTL w białe okienko i klikasz run fix(wykonaj skrypt). Wykonaj pełny skan [url=http://dobreprogramy.pl/index.php?dz=2&id=1998][b]DR WEB CureIt[/b][/url] Wykonaj pełny skan[url=http://www.dobreprogramy.pl/Malwarebytes-AntiMalware,Program,Windows,13117.html][b]MBAM[/b][/url] Co znajda usun po czym daj logi z usuwania + nowy log OTL Do tego plik C:\WINDOWS\NOTEPAD.EXE przeskanuj na virustotal.Nie jestem pewien czy notatnik przypadkowo nie jest zainfekowany
Sulski komentarz 20 listopada 2010 Autor komentarz 20 listopada 2010 log z wykonania skryptu : [log]All processes killed ========== PROCESSES ========== No active process named Explorer.exe was found! ========== OTL ========== C:\WINDOWS\mmtvmj.ini moved successfully. C:\WINDOWS\m3jp2k.ini moved successfully. C:\WINDOWS\m3jpeg.ini moved successfully. C:\Documents and Settings\Administrator\Menu Start\Programy\Autostart\del.exe moved successfully. C:\Documents and Settings\Default User\Menu Start\Programy\Autostart\z.cmd moved successfully. C:\Documents and Settings\Administrator\Menu Start\Programy\Autostart\run.lnk moved successfully. C:\Program Files\WindowZ\Kreator post-instalacyjny\run.bat moved successfully. ========== FILES ========== File\Folder C:\Documents and Settings\Default User\Menu Start\Programy\Autostart\z.cmd not found. File\Folder C:\Documents and Settings\Administrator\Menu Start\Programy\Autostart\del.exe not found. File\Folder C:\Documents and Settings\Administrator\Menu Start\Programy\Autostart\run.lnk = C:\Program Files\WindowZ\Kreator post-instalacyjny\run.bat not found. ========== COMMANDS ========== [EMPTYTEMP] User: Administrator ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: All Users User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: LocalService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: NetworkService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Sulski ->Temp folder emptied: 10896568 bytes ->Temporary Internet Files folder emptied: 759231 bytes ->Java cache emptied: 0 bytes ->Opera cache emptied: 1641327370 bytes ->Flash cache emptied: 1579 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32\dllcache .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 0 bytes RecycleBin emptied: 0 bytes Total Files Cleaned = 1 576,00 mb OTL by OldTimer - Version 3.2.17.3 log created on 11202010_011615 Files\Folders moved on Reboot... Registry entries deleted on Reboot... [/log] log z DrWeba: [log]Movements.dll;C:\Program Files\MaZZicK;Trojan.MulDrop1.42673;Niewyleczalny.Przeniesiony.; dqm.exe;D:\;Trojan.PWS.Wsgame.12661;Usunięty.; e9naq.exe;D:\;Trojan.PWS.Wsgame.12661;Usunięty.; ji83j.exe;D:\;Prawdopodobnie Trojan.Packed.580;; pbyqfn.exe;D:\;Trojan.PWS.Wsgame.12661;Usunięty.; Seven Transformation Pack 3.0.exe\data029;D:\Instalki\7TP3.exe/7TP3\Seven Transformation Pack 3.0.exe;Tool.Prockill;; Seven Transformation Pack 3.0.exe/data036\data009;D:\Instalki\7TP3.exe/7TP3\Seven Transformation Pack 3.0.exe/data036;Tool.Prockill;; data036;D:\Instalki\7TP3.exe/7TP3;Kontener zawiera zainfekowane obiekty;; 7TP3\Seven Transformation Pack 3.0.exe;D:\Instalki\7TP3.exe/7TP3;Kontener zawiera zainfekowane obiekty;; 7TP3.exe;D:\Instalki;Archiwum zawierające zainfekowane obiekty;Przeniesiony.; BSINSTALLPL_(www.programs.pl).exe\data018;D:\Instalki\BSINSTALLPL_(www.programs.pl).exe;Adware.SearchAid.40;; BSINSTALLPL_(www.programs.pl).exe/data025\data004;D:\Instalki\BSINSTALLPL_(www.programs.pl).exe/data025;Adware.Websearch.54;; data025;D:\Instalki;Kontener zawiera zainfekowane obiekty;; BSINSTALLPL_(www.programs.pl).exe;D:\Instalki;Kontener zawiera zainfekowane obiekty;Przeniesiony.; Seven Transformation Pack 3.0.exe\data029;D:\Instalki\7TP3\Seven Transformation Pack 3.0.exe;Tool.Prockill;; Seven Transformation Pack 3.0.exe/data036\data009;D:\Instalki\7TP3\Seven Transformation Pack 3.0.exe/data036;Tool.Prockill;; data036;D:\Instalki\7TP3;Kontener zawiera zainfekowane obiekty;; Seven Transformation Pack 3.0.exe;D:\Instalki\7TP3;Kontener zawiera zainfekowane obiekty;Przeniesiony.; RunMSC.dll;D:\Instalki\BS;Adware.SearchAid.40;; A0042234.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP16;Prawdopodobnie Trojan.Packed.580;; A0042301.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP17;Prawdopodobnie Trojan.Packed.580;; A0043335.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP17;Trojan.PWS.Gamania.25032;Niewyleczalny.Przeniesiony.; A0043354.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP17;Trojan.PWS.Gamania.25032;Niewyleczalny.Przeniesiony.; A0043638.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP19;Prawdopodobnie Trojan.Packed.580;; A0001507.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP2;Trojan.PWS.Wsgame.12661;Usunięty.; A0043645.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP20;Prawdopodobnie Trojan.Packed.580;; A0043685.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP20;Prawdopodobnie Trojan.Packed.580;; A0050126.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP25;Trojan.PWS.Wsgame.12661;Usunięty.; A0050138.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP25;Trojan.PWS.Wsgame.12661;Usunięty.; A0050241.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP25;Trojan.PWS.Wsgame.12661;Usunięty.; A0050245.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP26;Trojan.PWS.Wsgame.12661;Usunięty.; A0050261.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP26;Trojan.PWS.Wsgame.12661;Usunięty.; A0005629.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP3;Trojan.PWS.Wsgame.12661;Usunięty.; A0006631.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP3;Trojan.PWS.Wsgame.12661;Usunięty.; A0007627.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP3;Trojan.PWS.Wsgame.12661;Usunięty.; A0009662.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP3;Trojan.PWS.Wsgame.12661;Usunięty.; A0062775.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP31;Trojan.PWS.Wsgame.12661;Usunięty.; A0063769.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP31;Trojan.PWS.Wsgame.12661;Usunięty.; A0064791.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP31;Trojan.PWS.Wsgame.12661;Usunięty.; A0064881.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP31;Trojan.PWS.Wsgame.12661;Usunięty.; A0015992.exe;D:\System Volume Information\_restore{C27932B6-9123-41F0-AD67-D8B41E271B70}\RP9;Trojan.PWS.Wsgame.12661;Usunięty.; [/log] MBAM : [log]Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Wersja bazy: 5138 Windows 5.1.2600 Dodatek Service Pack 3 Internet Explorer 8.0.6001.18702 2010-11-20 10:08:05 mbam-log-2010-11-20 (10-08-05).txt Typ skanowania: Pełne skanowanie (C:\|D:\|) Przeskanowano obiektów: 211755 Upłynęło: 21 minut(y), 1 sekund(y) Zainfekowanych procesów w pamięci: 0 Zainfekowanych modułów w pamięci: 0 Zainfekowanych kluczy rejestru: 0 Zainfekowanych wartości rejestru: 0 Zainfekowane informacje rejestru systemowego: 0 Zainfekowanych folderów: 0 Zainfekowanych plików: 0 Zainfekowanych procesów w pamięci: (Nie znaleziono zagrożeń) Zainfekowanych modułów w pamięci: (Nie znaleziono zagrożeń) Zainfekowanych kluczy rejestru: (Nie znaleziono zagrożeń) Zainfekowanych wartości rejestru: (Nie znaleziono zagrożeń) Zainfekowane informacje rejestru systemowego: (Nie znaleziono zagrożeń) Zainfekowanych folderów: (Nie znaleziono zagrożeń) Zainfekowanych plików: (Nie znaleziono zagrożeń)[/log] OTL : [log]OTL Extras logfile created on: 2010-11-20 10:10:29 - Run 3 OTL by OldTimer - Version 3.2.17.3 Folder = D:\Instalki\Programy do logów Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 56,00% Memory free 3,00 Gb Paging File | 3,00 Gb Available in Paging File | 81,00% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 39,06 Gb Total Space | 27,42 Gb Free Space | 70,20% Space Free | Partition Type: NTFS Drive D: | 193,82 Gb Total Space | 135,05 Gb Free Space | 69,68% Space Free | Partition Type: NTFS Computer Name: WINDOWZ | User Name: Sulski | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days [color="#E56717"]========== Extra Registry (SafeList) ==========[/color] [color="#E56717"]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .html [@ = Opera.HTML] -- C:\Program Files\Opera\opera.exe (Opera Software) .inf [@ = inffile] -- C:\WINDOWS\System32\NOTEPAD.EXE () .ini [@ = inifile] -- C:\WINDOWS\System32\NOTEPAD.EXE () .txt [@ = txtfile] -- C:\WINDOWS\notepad.exe () [color="#E56717"]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 () batfile [open] -- "%1" %* batfile [print] -- Reg Error: Key error. cmdfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 () cmdfile [open] -- "%1" %* cmdfile [print] -- Reg Error: Key error. comfile [open] -- "%1" %* exefile [open] -- "%1" %* htmlfile [edit] -- Reg Error: Key error. http [open] -- "C:\Program Files\Opera\opera.exe" "%1" (Opera Software) https [open] -- "C:\Program Files\Opera\opera.exe" "%1" (Opera Software) inffile [open] -- %SystemRoot%\System32\NOTEPAD.EXE %1 () inffile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 () inifile [open] -- C:\WINDOWS\System32\NOTEPAD.EXE %1 () inifile [print] -- Reg Error: Key error. jsfile [edit] -- %SystemRoot%\System32\Notepad.exe %1 () jsfile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 () jsefile [edit] -- %SystemRoot%\System32\Notepad.exe %1 () jsefile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 () piffile [open] -- "%1" %* regfile [edit] -- %SystemRoot%\system32\NOTEPAD.EXE %1 () regfile [merge] -- Reg Error: Key error. regfile [print] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. txtfile [open] -- C:\WINDOWS\notepad.exe %1 () txtfile [print] -- Reg Error: Key error. txtfile [printto] -- %SystemRoot%\system32\notepad.exe /pt "%1" "%2" "%3" "%4" () vbefile [edit] -- %SystemRoot%\System32\Notepad.exe %1 () vbefile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 () vbsfile [edit] -- %SystemRoot%\System32\Notepad.exe %1 () vbsfile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 () wsffile [edit] -- %SystemRoot%\System32\Notepad.exe %1 () wsffile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 () Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [cmd] -- cmd.exe /k cd "%L" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [openNew] -- explorer %1 (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Directory [StyleFolder] -- "C:\Program Files\StyleFolder\StyleFolder.exe" %1 (Xaviorsoft Studios) Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft) Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft) Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color="#E56717"]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 [color="#E56717"]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 3 [color="#E56717"]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 0 "DoNotAllowExceptions" = 0 "DisableNotifications" = 0 "DisableUnicastResponsesToMulticastBroadcast" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 0 "DoNotAllowExceptions" = 0 "DisableNotifications" = 0 "DisableUnicastResponsesToMulticastBroadcast" = 0 [color="#E56717"]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] [color="#E56717"]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java™ 6 Update 17 "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{3CA54984-A14B-42FE-9FF1-7EA90151D725}" = Tencent QQ "{7131646D-CD3C-40F4-97B9-CD9E4E6262EF}" = Microsoft .NET Framework 2.0 "{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{878CDC75-04C7-41A3-9033-43250D3D37B4}" = FlashFolder "{87CC8013-56D1-43E1-A0A5-AD406B4EBA95}" = Opera 10.63 "{9DC696F3-BEDF-4069-A18D-89B41BF89769}" = Command Prompt Explorer Bar "{C93C7A4B-7DD9-4725-9993-4F032063926B}_is1" = VPX.PL Uploader 1.0 "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 SP1 "{CD95F661-A5C4-44F5-A6AA-ECDD91C240BE}" = WinZip 15.0 "{D1E44702-21F5-4918-B8A3-6D126D5BD33C}" = Windows Messenger 5.1 "{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio "{FC8D21C8-7B29-4104-ADB0-FEE9CA1C7922}" = Folder Size for Windows "{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 "{FFFF6D5C-E2F1-4B40-BC89-8923312E89EB}}_is1" = ACE Mega CoDecS Pack "AbiWord2" = AbiWord 2.8.1 "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "Adobe Shockwave Player" = Adobe Shockwave Player 11.5 "AIMP2" = AIMP2 "CCleaner" = CCleaner "conduitEngine" = Conduit Engine "CPLBonus" = Kels' CPL Bonus Pack! "CWK" = CWK (Czasowy Wyłącznik Komputera) "Deep Space 3D Screensaver" = Deep Space 3D Screensaver "Defraggler" = Defraggler "Driver Magician_is1" = Driver Magician 3.45 "Gadu-Gadu 10" = Gadu-Gadu 10 "HashCheck Shell Extension" = HashCheck Shell Extension (x86-32) "HFSLIPTotalSlipstream" = HFSLIP Total Slipstream (v1.7.8, build 80614) "HijackThis" = HijackThis 2.0.2 "hp deskjet 840c series" = hp deskjet 840c series (Tylko usuń) "hp deskjet 840c series_Driver" = hp deskjet 840c series "IrfanView" = IrfanView (remove only) "JDownloader" = JDownloader "Koi Fish 3D Screensaver" = Koi Fish 3D Screensaver "LClock" = LClock "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware "Mechanical Clock 3D Screensaver" = Mechanical Clock 3D Screensaver "Microsoft .NET Framework 2.0" = Microsoft .NET Framework 2.0 "NapiProjekt_is1" = NapiProjekt 1.0.6.9 "NVIDIA Display Control Panel" = NVIDIA Display Control Panel "NVIDIA Drivers" = NVIDIA Drivers "NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager "Prio" = Prio v1.9.9.1732 "qt7lite_is1" = QT Lite 3.0.0 "RealAlt_is1" = Real Alternative 1.9.0 "RegCompact Pro" = RegCompact Pro 2.6.7 "Revo Uninstaller" = Revo Uninstaller 1.83 "Softonic-Eng7 Toolbar" = Softonic-Eng7 Toolbar "StyleFolder_is1" = StyleFolder 1.0.3 "SwitchOff" = Switch Off "Total Copy 1.1 NetHorror Edition" = Total Copy 1.1 NetHorror Edition "uTorrent" = µTorrent "Visual Task Tips" = Visual Task Tips 3.4 "vjpeg" = VJPEG Image Viewer (remove) "VLC media player" = VLC media player 1.1.4 "vShare" = vShare Plugin "Winamp" = Winamp "WinRAR archiver" = Archiwizator WinRAR [color="#E56717"]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-1454471165-583907252-682003330-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Winamp Detect" = Detektor Winampa [color="#E56717"]========== Last 10 Event Log Errors ==========[/color] [ Application Events ] Error - 2010-11-11 06:10:22 | Computer Name = WINDOWZ | Source = .NET Runtime Optimization Service | ID = 1111 Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32) - Service reached limit of transient errors. Will shut down. Last error returned from Service Manager: 0x800736b1. Error - 2010-11-11 06:10:45 | Computer Name = WINDOWZ | Source = PerfNet | ID = 2004 Description = Nie można otworzyć usługi Server. Dane wydajności usługi Server nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. [ System Events ] Error - 2010-11-15 19:41:58 | Computer Name = WINDOWZ | Source = Cdrom | ID = 262151 Description = W urządzeniu \Device\CdRom0 wystąpił zły blok. Error - 2010-11-15 19:42:27 | Computer Name = WINDOWZ | Source = Cdrom | ID = 262151 Description = W urządzeniu \Device\CdRom0 wystąpił zły blok. Error - 2010-11-15 19:42:47 | Computer Name = WINDOWZ | Source = Cdrom | ID = 262151 Description = W urządzeniu \Device\CdRom0 wystąpił zły blok. Error - 2010-11-15 19:42:54 | Computer Name = WINDOWZ | Source = Cdrom | ID = 262151 Description = W urządzeniu \Device\CdRom0 wystąpił zły blok. Error - 2010-11-15 19:43:01 | Computer Name = WINDOWZ | Source = Cdrom | ID = 262151 Description = W urządzeniu \Device\CdRom0 wystąpił zły blok. Error - 2010-11-17 06:21:02 | Computer Name = WINDOWZ | Source = DCOM | ID = 10005 Description = Model DCOM odebrał błąd „%1058” podczas próby uruchomienia usługi wuauserv z argumentami „” w celu uruchomienia serwera: {E60687F7-01A1-40AA-86AC-DB1CBF673334} Error - 2010-11-17 13:22:11 | Computer Name = WINDOWZ | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: atapi nvgts nvrd32 PCIIde Si3112 Si3124 Si3132 Si3132r5 Error - 2010-11-17 14:34:51 | Computer Name = WINDOWZ | Source = DCOM | ID = 10005 Description = Model DCOM odebrał błąd „%1058” podczas próby uruchomienia usługi wuauserv z argumentami „” w celu uruchomienia serwera: {E60687F7-01A1-40AA-86AC-DB1CBF673334} Error - 2010-11-17 14:38:23 | Computer Name = WINDOWZ | Source = Service Control Manager | ID = 7034 Description = Usługa NVIDIA Display Driver Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error - 2010-11-19 20:16:15 | Computer Name = WINDOWZ | Source = Service Control Manager | ID = 7034 Description = Usługa NVIDIA Display Driver Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. < End of report > [/log] [log]OTL logfile created on: 2010-11-20 10:10:29 - Run 3 OTL by OldTimer - Version 3.2.17.3 Folder = D:\Instalki\Programy do logów Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 56,00% Memory free 3,00 Gb Paging File | 3,00 Gb Available in Paging File | 81,00% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 39,06 Gb Total Space | 27,42 Gb Free Space | 70,20% Space Free | Partition Type: NTFS Drive D: | 193,82 Gb Total Space | 135,05 Gb Free Space | 69,68% Space Free | Partition Type: NTFS Computer Name: WINDOWZ | User Name: Sulski | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days [color="#E56717"]========== Processes (All) ==========[/color] PRC - [2010-11-17 11:29:08 | 000,575,488 | ---- | M] (OldTimer Tools) -- D:\Instalki\Programy do logów\OTL.exe PRC - [2010-10-08 14:00:10 | 000,836,464 | ---- | M] (Opera Software) -- C:\Program Files\Opera\opera.exe PRC - [2010-10-07 09:04:26 | 012,661,344 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe PRC - [2009-11-28 00:22:46 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvse.exe PRC - [2009-11-28 00:22:45 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe PRC - [2009-11-20 20:32:14 | 000,154,216 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe PRC - [2009-11-19 11:43:58 | 001,592,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2008-04-15 12:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe PRC - [2008-04-15 12:00:00 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe PRC - [2008-04-15 12:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe PRC - [2008-04-15 12:00:00 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\unsecapp.exe PRC - [2008-04-15 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS] PRC - [2008-04-15 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE] PRC - [2008-04-15 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS] PRC - [2008-04-15 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-15 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-15 12:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH] PRC - [2008-04-15 12:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe PRC - [2008-04-15 12:00:00 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe PRC - [2006-08-02 22:12:00 | 000,577,536 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\soundman.exe PRC - [2005-01-17 07:43:46 | 000,084,480 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvraidservice.exe PRC - [2002-12-27 15:54:06 | 000,194,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wisptis.exe [color="#E56717"]========== Modules (All) ==========[/color] MOD - [2010-11-17 11:29:08 | 000,575,488 | ---- | M] (OldTimer Tools) -- D:\Instalki\Programy do logów\OTL.exe MOD - [2009-11-28 00:24:36 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll MOD - [2009-11-28 00:22:43 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll MOD - [2009-11-26 20:26:31 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll MOD - [2009-11-26 20:26:30 | 000,585,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll MOD - [2009-11-26 20:25:24 | 001,020,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll MOD - [2009-11-26 20:25:19 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll MOD - [2009-11-19 20:08:36 | 026,339,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll MOD - [2009-11-19 11:43:51 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll MOD - [2009-11-19 11:43:22 | 000,678,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll MOD - [2009-02-09 11:00:17 | 000,723,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll MOD - [2009-01-12 16:19:02 | 000,011,000 | ---- | M] (O&K Software) -- C:\Program Files\Prio\prio.dll MOD - [2008-04-15 12:00:00 | 001,287,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll MOD - [2008-04-15 12:00:00 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll MOD - [2008-04-15 12:00:00 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll MOD - [2008-04-15 12:00:00 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll MOD - [2008-04-15 12:00:00 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll MOD - [2008-04-15 12:00:00 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll MOD - [2008-04-15 12:00:00 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll MOD - [2008-04-15 12:00:00 | 000,406,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\usp10.dll MOD - [2008-04-15 12:00:00 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll MOD - [2008-04-15 12:00:00 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll MOD - [2008-04-15 12:00:00 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTFIME.IME MOD - [2008-04-15 12:00:00 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wldap32.dll MOD - [2008-04-15 12:00:00 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv MOD - [2008-04-15 12:00:00 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntmarta.dll MOD - [2008-04-15 12:00:00 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx MOD - [2008-04-15 12:00:00 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imm32.dll MOD - [2008-04-15 12:00:00 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll MOD - [2008-04-15 12:00:00 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll MOD - [2008-04-15 12:00:00 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samlib.dll MOD - [2008-04-15 12:00:00 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll MOD - [2008-04-15 12:00:00 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lpk.dll MOD - [2008-04-15 12:00:00 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll [color="#E56717"]========== Win32 Services (SafeList) ==========[/color] SRV - [2009-09-06 12:38:06 | 000,071,096 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\CDBurnerXP\NMSAccessU.exe -- (NMSAccessU) SRV - [2009-01-12 16:18:54 | 000,005,120 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\Prio\prio_svc.exe -- (prio_svc) SRV - [2008-03-21 00:55:58 | 000,071,680 | ---- | M] (zett42) [Disabled | Stopped] -- C:\Program Files\FlashFolder\FlashFolder.exe -- (FlashFolder) SRV - [2007-11-14 21:46:00 | 000,131,072 | ---- | M] (Brio) [Disabled | Stopped] -- C:\Program Files\FolderSize\FolderSizeSvc.exe -- (FolderSize) [color="#E56717"]========== Driver Services (SafeList) ==========[/color] DRV - File not found [File_System | Unknown | Running] -- -- (DwProt) DRV - [2010-11-11 14:09:32 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2009-11-28 00:26:05 | 000,069,168 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\si3112.sys -- (Si3112) DRV - [2009-11-28 00:26:03 | 000,217,128 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\Si3132r5.sys -- (Si3132r5) DRV - [2009-11-28 00:26:02 | 000,080,424 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\si3132.sys -- (Si3132) DRV - [2009-11-28 00:25:59 | 000,076,208 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\si3124.sys -- (Si3124) DRV - [2009-11-28 00:25:58 | 000,209,200 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\Si3114r5.sys -- (Si3114r5) DRV - [2009-11-28 00:25:23 | 000,145,952 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvgts.sys -- (nvgts) DRV - [2009-11-28 00:25:22 | 000,133,152 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvrd32.sys -- (nvrd32) DRV - [2009-11-21 03:34:54 | 010,235,968 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [2009-09-28 20:57:28 | 000,007,168 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\StarOpen.sys -- (StarOpen) DRV - [2006-08-18 06:52:00 | 004,017,536 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcxwdm.sys -- (ALCXWDM) Service for Realtek AC97 Audio (WDM) DRV - [2005-05-17 10:45:12 | 000,076,288 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvraid.sys -- (nvraid) NVIDIA nForce™ DRV - [2005-05-17 10:45:08 | 000,092,800 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvatabus.sys -- (nvatabus) DRV - [2005-04-05 20:22:30 | 000,012,928 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus) DRV - [2005-04-05 20:22:28 | 000,033,536 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD) [color="#E56717"]========== Standard Registry (SafeList) ==========[/color] [color="#E56717"]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [url="http://www.msn.com/"]http://www.msn.com/[/url] IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.windowz.pl IE - HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchURL\g, = [url="http://www.google.pl/search?q=%s"]http://www.google.pl/search?q=%s[/url] IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.windowz.pl IE - HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchURL\g, = [url="http://www.google.pl/search?q=%s"]http://www.google.pl/search?q=%s[/url] IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.windowz.pl IE - HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchURL\g, = [url="http://www.google.pl/search?q=%s"]http://www.google.pl/search?q=%s[/url] IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.windowz.pl IE - HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchURL\g, = [url="http://www.google.pl/search?q=%s"]http://www.google.pl/search?q=%s[/url] IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1454471165-583907252-682003330-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [url="http://www.google.com/"]http://www.google.com/[/url] IE - HKU\S-1-5-21-1454471165-583907252-682003330-1002\Software\Microsoft\Internet Explorer\SearchURL\g, = [url="http://www.google.com/search?q=%s"]http://www.google.com/search?q=%s[/url] IE - HKU\S-1-5-21-1454471165-583907252-682003330-1002\..\URLSearchHook: {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Program Files\Softonic-Eng7\tbSoft.dll (Conduit Ltd.) IE - HKU\S-1-5-21-1454471165-583907252-682003330-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 O1 HOSTS File: ([2008-04-15 12:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (vShare Plugin) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files\vShare\vshare_toolbar.dll () O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.) O2 - BHO: (Softonic-Eng7 Toolbar) - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Program Files\Softonic-Eng7\tbSoft.dll (Conduit Ltd.) O3 - HKLM\..\Toolbar: (vShare Plugin) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files\vShare\vshare_toolbar.dll () O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.) O3 - HKLM\..\Toolbar: (Softonic-Eng7 Toolbar) - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Program Files\Softonic-Eng7\tbSoft.dll (Conduit Ltd.) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [NVRaidService] C:\WINDOWS\system32\nvraidservice.exe (NVIDIA Corporation) O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\soundman.exe (Realtek Semiconductor Corp.) O4 - HKU\S-1-5-21-1454471165-583907252-682003330-1002..\Run: [QQIntl] C:\Program Files\Tencent\QQIntl\Bin\QQ.exe (Tencent) O4 - Startup: C:\Documents and Settings\Administrator\Menu Start\Programy\Autostart\Transparent fx - lite.lnk = C:\Program Files\Fadebar\Fadebar.exe (Nookian Apps) O4 - Startup: C:\Documents and Settings\Default User\Menu Start\Programy\Autostart\Transparent fx - lite.lnk = C:\Program Files\Fadebar\Fadebar.exe (Nookian Apps) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktopCleanupWizard = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRemoteRecursiveEvents = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoClose = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuEjectPC = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: StartMenuLogoff = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoInternetOpenWith = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableStatusMessages = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: VerboseStatus = 0 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0 O7 - HKU\S-1-5-21-1454471165-583907252-682003330-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1454471165-583907252-682003330-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1 O7 - HKU\S-1-5-21-1454471165-583907252-682003330-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKU\S-1-5-21-1454471165-583907252-682003330-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 O7 - HKU\S-1-5-21-1454471165-583907252-682003330-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1 O7 - HKU\S-1-5-21-1454471165-583907252-682003330-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1 O7 - HKU\S-1-5-21-1454471165-583907252-682003330-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O7 - HKU\S-1-5-21-1454471165-583907252-682003330-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0 O7 - HKU\S-1-5-21-1454471165-583907252-682003330-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 0 O8 - Extra context menu item: QQ - C:\Program Files\Tencent\QQIntl\Bin\AddEmotion.htm () O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_17) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.241.79.37 192.168.1.100 O18 - Protocol\Handler\vsharechrome {3F3A4B8A-86FC-43A4-BB00-6D7EBE9D4484} - C:\Program Files\vShare\vshare_toolbar.dll () O20 - AppInit_DLLs: (prio.dll) - C:\Program Files\Prio\prio.dll (O&K Software) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UIHost - (%windir%\\system32\\LogonuiZ.exe) - C:\WINDOWS\\system32\\LogonuiZ.exe () O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010-11-11 11:08:31 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: SCSI Class - Driver Group SafeBootMin: sermouse.sys - Driver SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vga.sys - Driver SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: Messenger - Service SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: SCSI Class - Driver Group SafeBootNet: sermouse.sys - Driver SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vga.sys - Driver SafeBootNet: {1a3e09be-1e45-494b-9174-d7385b45bbf5} - Reg Error: Value error. SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices [color="#E56717"]========== Files/Folders - Created Within 60 Days ==========[/color] [2010-11-19 11:57:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\Tencent [2010-11-19 11:38:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Conduit [2010-11-19 11:38:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Softonic-Eng7 [2010-11-19 11:38:45 | 000,000,000 | ---D | C] -- C:\Program Files\Conduit [2010-11-19 11:38:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\ConduitEngine [2010-11-19 11:38:43 | 000,000,000 | ---D | C] -- C:\Program Files\ConduitEngine [2010-11-19 11:38:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Temp [2010-11-19 11:38:41 | 000,000,000 | ---D | C] -- C:\Program Files\Softonic-Eng7 [2010-11-19 11:38:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Tencent [2010-11-19 11:38:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Moje dokumenty\Tencent Files [2010-11-19 11:38:20 | 000,000,000 | ---D | C] -- C:\Program Files\Tencent [2010-11-19 11:38:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Tencent [2010-11-17 19:57:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\DoctorWeb [2010-11-17 19:46:43 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro [2010-11-17 19:46:42 | 000,000,000 | ---D | C] -- C:\rsit [2010-11-17 19:00:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\vShare [2010-11-17 19:00:46 | 000,000,000 | ---D | C] -- C:\Program Files\vShare [2010-11-17 17:52:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Malwarebytes [2010-11-17 17:52:26 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2010-11-17 17:52:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes [2010-11-17 17:52:25 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2010-11-17 17:52:25 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2010-11-17 01:11:08 | 000,000,000 | ---D | C] -- C:\Program Files\hp deskjet 840c series [2010-11-17 01:11:08 | 000,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard [2010-11-17 01:10:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Pulpit\win2k_xp [2010-11-13 20:08:37 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2010-11-13 20:08:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Moje dokumenty\Downloads [2010-11-13 19:57:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Identities [2010-11-13 19:49:04 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger [2010-11-13 19:43:34 | 000,000,000 | ---D | C] -- C:\Program Files\JDownloader [2010-11-13 19:43:31 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje wideo [2010-11-13 19:24:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Skype [2010-11-13 16:36:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Apple Computer [2010-11-13 16:32:30 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll [2010-11-13 16:32:30 | 000,185,920 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\rmoc3260.dll [2010-11-13 16:32:30 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll [2010-11-13 16:32:30 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll [2010-11-13 16:32:29 | 000,000,000 | ---D | C] -- C:\Program Files\Real Alternative [2010-11-13 16:32:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Real [2010-11-13 16:32:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Real [2010-11-13 16:32:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Real [2010-11-13 15:39:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\vlc [2010-11-13 15:20:30 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN [2010-11-13 15:15:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\BESTplayer [2010-11-13 12:33:46 | 000,000,000 | ---D | C] -- C:\Program Files\NAPI-PROJEKT [2010-11-13 09:49:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun [2010-11-12 15:11:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\WinRAR [2010-11-12 15:08:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\WinZip [2010-11-12 15:08:45 | 000,000,000 | ---D | C] -- C:\Program Files\WinZip [2010-11-12 02:18:25 | 000,000,000 | ---D | C] -- C:\Program Files\Damian Pasternak [2010-11-11 14:09:31 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite [2010-11-11 14:09:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\DAEMON Tools Lite [2010-11-11 14:09:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite [2010-11-11 12:01:09 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moja muzyka [2010-11-11 12:00:54 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer [2010-11-11 12:00:53 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC [2010-11-11 12:00:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines [2010-11-11 12:00:49 | 000,000,000 | ---D | C] -- C:\Program Files [2010-11-11 12:00:49 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared [2010-11-11 12:00:49 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files [2010-11-11 12:00:38 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dgrpsetu.dll [2010-11-11 12:00:38 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\EqnClass.Dll [2010-11-11 12:00:38 | 000,085,532 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dgsetup.dll [2010-11-11 12:00:38 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll [2010-11-11 12:00:26 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start [2010-11-11 12:00:26 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty [2010-11-11 12:00:26 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Szablony [2010-11-11 12:00:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Ulubione [2010-11-11 11:58:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2 [2010-11-11 11:58:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot [2010-11-11 11:58:00 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft [2010-11-11 11:58:00 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji [2010-11-11 11:57:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings [2010-11-11 11:53:25 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2010-11-11 11:48:06 | 001,650,688 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplva6.dll [2010-11-11 11:48:06 | 001,581,056 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplvw7.dll [2010-11-11 11:48:06 | 001,552,384 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplvm6.dll [2010-11-11 11:48:06 | 001,122,304 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplvpx.dll [2010-11-11 11:48:06 | 000,077,824 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplaw7.dll [2010-11-11 11:48:06 | 000,077,824 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplaa6.dll [2010-11-11 11:48:06 | 000,065,536 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplapx.dll [2010-11-11 11:48:06 | 000,065,536 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplam6.dll [2010-11-11 11:48:02 | 000,000,000 | ---D | C] -- C:\Program Files\ACE Mega CoDecS Pack [2010-11-11 11:47:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Media Player Classic [2010-11-11 11:41:31 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp Detect [2010-11-11 11:41:28 | 001,858,032 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxsfs.dll [2010-11-11 11:41:28 | 000,670,192 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\px.dll [2010-11-11 11:41:28 | 000,551,408 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxdrv.dll [2010-11-11 11:41:28 | 000,436,720 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxwave.dll [2010-11-11 11:41:28 | 000,219,632 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxmas.dll [2010-11-11 11:41:28 | 000,129,520 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxafs.dll [2010-11-11 11:41:28 | 000,096,752 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\vxblock.dll [2010-11-11 11:41:28 | 000,072,176 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxhpinst.exe [2010-11-11 11:41:28 | 000,066,544 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpya64.exe [2010-11-11 11:41:28 | 000,066,032 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsa64.exe [2010-11-11 11:41:28 | 000,009,200 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\cdralw2k.sys [2010-11-11 11:41:28 | 000,009,072 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys [2010-11-11 11:41:28 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp [2010-11-11 11:41:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Winamp [2010-11-11 11:41:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-11-11 11:38:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\cache [2010-11-11 11:38:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\SxsCaPendDel [2010-11-11 11:38:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Gadu-Gadu 10 [2010-11-11 11:38:07 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu 10 [2010-11-11 11:38:04 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files [2010-11-11 11:38:04 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts [2010-11-11 11:38:04 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Web [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32 [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32 [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\system [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\security [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\PCHealth [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Network Diagnostic [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\L2Schemas [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\java [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\inf [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076 [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052 [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054 [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1045 [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042 [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041 [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037 [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033 [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031 [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028 [2010-11-11 11:38:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025 [2010-11-11 11:32:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Opera [2010-11-11 11:32:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Opera [2010-11-11 11:32:31 | 000,000,000 | ---D | C] -- C:\Program Files\Opera [2010-11-11 11:30:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Macromedia [2010-11-11 11:30:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Adobe [2010-11-11 11:29:15 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Sulski\PrivacIE [2010-11-11 11:25:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution [2010-11-11 11:24:47 | 000,454,656 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\CapabilityTable.exe [2010-11-11 11:24:41 | 000,077,312 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardtr.dll [2010-11-11 11:24:41 | 000,067,072 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardzht.dll [2010-11-11 11:24:41 | 000,065,536 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardzhc.dll [2010-11-11 11:24:41 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidtr.dll [2010-11-11 11:24:41 | 000,018,944 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidzht.dll [2010-11-11 11:24:41 | 000,018,944 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidzhc.dll [2010-11-11 11:24:41 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvtr.dll [2010-11-11 11:24:41 | 000,005,120 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvzht.dll [2010-11-11 11:24:41 | 000,005,120 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvzhc.dll [2010-11-11 11:24:41 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionzht.dll [2010-11-11 11:24:41 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionzhc.dll [2010-11-11 11:24:41 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectiontr.dll [2010-11-11 11:24:41 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionth.dll [2010-11-11 11:24:40 | 000,081,920 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardde.dll [2010-11-11 11:24:40 | 000,080,896 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardpt.dll [2010-11-11 11:24:40 | 000,079,360 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardit.dll [2010-11-11 11:24:40 | 000,079,360 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardfr.dll [2010-11-11 11:24:40 | 000,079,360 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardes.dll [2010-11-11 11:24:40 | 000,079,360 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardel.dll [2010-11-11 11:24:40 | 000,078,336 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardsl.dll [2010-11-11 11:24:40 | 000,078,336 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardptb.dll [2010-11-11 11:24:40 | 000,077,824 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardru.dll [2010-11-11 11:24:40 | 000,077,312 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardno.dll [2010-11-11 11:24:40 | 000,077,312 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardnl.dll [2010-11-11 11:24:40 | 000,077,312 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardcs.dll [2010-11-11 11:24:40 | 000,076,800 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardth.dll [2010-11-11 11:24:40 | 000,076,800 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardhu.dll [2010-11-11 11:24:40 | 000,076,288 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardsv.dll [2010-11-11 11:24:40 | 000,076,288 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardpl.dll [2010-11-11 11:24:40 | 000,076,288 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardfi.dll [2010-11-11 11:24:40 | 000,075,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardsk.dll [2010-11-11 11:24:40 | 000,075,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardda.dll [2010-11-11 11:24:40 | 000,075,264 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardeng.dll [2010-11-11 11:24:40 | 000,074,752 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardhe.dll [2010-11-11 11:24:40 | 000,068,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardko.dll [2010-11-11 11:24:40 | 000,068,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardja.dll [2010-11-11 11:24:40 | 000,021,504 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidel.dll [2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidsl.dll [2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidru.dll [2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidptb.dll [2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidpt.dll [2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidpl.dll [2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidnl.dll [2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidit.dll [2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidhu.dll [2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidfr.dll [2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaides.dll [2010-11-11 11:24:40 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidde.dll [2010-11-11 11:24:40 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidth.dll [2010-11-11 11:24:40 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidsv.dll [2010-11-11 11:24:40 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidsk.dll [2010-11-11 11:24:40 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidno.dll [2010-11-11 11:24:40 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidfi.dll [2010-11-11 11:24:40 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaideng.dll [2010-11-11 11:24:40 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidda.dll [2010-11-11 11:24:40 | 000,019,968 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidhe.dll [2010-11-11 11:24:40 | 000,019,456 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidko.dll [2010-11-11 11:24:40 | 000,019,456 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidja.dll [2010-11-11 11:24:40 | 000,006,656 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvpt.dll [2010-11-11 11:24:40 | 000,006,656 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvde.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvth.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvsv.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvsl.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvsk.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvru.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvptb.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvpl.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvno.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvnl.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvit.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvhu.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvhe.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvfr.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvfi.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSves.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSveng.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvel.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvda.dll [2010-11-11 11:24:40 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvcs.dll [2010-11-11 11:24:40 | 000,005,120 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvko.dll [2010-11-11 11:24:40 | 000,005,120 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvja.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionsv.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionsl.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionsk.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionru.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionptb.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionpt.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionpl.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionno.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionnl.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionko.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionja.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionit.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionhu.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionhe.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionfr.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionfi.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectiones.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectioneng.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionel.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionde.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionda.dll [2010-11-11 11:24:40 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectioncs.dll [2010-11-11 11:24:39 | 000,400,384 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizard.dll [2010-11-11 11:24:39 | 000,084,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvraidservice.exe [2010-11-11 11:24:39 | 000,075,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardEnu.dll [2010-11-11 11:24:39 | 000,073,216 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidWizardar.dll [2010-11-11 11:24:39 | 000,020,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidcs.dll [2010-11-11 11:24:39 | 000,020,480 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidEnu.dll [2010-11-11 11:24:39 | 000,019,968 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidar.dll [2010-11-11 11:24:39 | 000,006,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvEnu.dll [2010-11-11 11:24:39 | 000,005,632 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvRaidSvar.dll [2010-11-11 11:24:39 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionEnu.dll [2010-11-11 11:24:39 | 000,004,096 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NvSataConnectionar.dll [2010-11-11 11:23:56 | 000,176,128 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvunrm.exe [2010-11-11 11:23:55 | 000,176,128 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvusmb.exe [2010-11-11 11:23:54 | 000,176,128 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NVUNINST.EXE [2010-11-11 11:23:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups [2010-11-11 11:21:55 | 004,017,536 | R--- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\alcxwdm.sys [2010-11-11 11:21:53 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek Sound Manager [2010-11-11 11:21:52 | 000,000,000 | ---D | C] -- C:\Program Files\AvRack [2010-11-11 11:21:46 | 010,528,768 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTLCPL.exe [2010-11-11 11:21:46 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek AC97 [2010-11-11 11:21:45 | 018,804,736 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\alsndmgr.cpl [2010-11-11 11:21:45 | 000,577,536 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\soundman.exe [2010-11-11 11:21:44 | 000,315,392 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\alcupd.exe [2010-11-11 11:21:44 | 000,217,088 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\Alcrmv.exe [2010-11-11 11:21:44 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2010-11-11 11:21:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2010-11-11 11:20:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\NVIDIA Corporation [2010-11-11 11:20:44 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation [2010-11-11 11:20:11 | 013,602,816 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvoglnt.dll [2010-11-11 11:20:11 | 011,374,592 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcompiler.dll [2010-11-11 11:20:11 | 010,235,968 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nv4_mini.sys [2010-11-11 11:20:11 | 004,038,656 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuda.dll [2010-11-11 11:20:11 | 002,259,560 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvid.dll [2010-11-11 11:20:11 | 001,989,224 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvenc.dll [2010-11-11 11:20:11 | 001,056,768 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvapi.dll [2010-11-11 11:20:11 | 000,182,888 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcodins.dll [2010-11-11 11:20:11 | 000,182,888 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcod.dll [2010-11-11 11:20:11 | 000,069,632 | ---- | C] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll [2010-11-11 11:20:09 | 006,282,752 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nv4_disp.dll [2010-11-11 11:20:06 | 000,000,000 | ---D | C] -- C:\NVIDIA [2010-11-11 11:19:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Xentient [2010-11-11 11:18:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Identities [2010-11-11 11:18:52 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Sulski\Moje dokumenty\Moje obrazy [2010-11-11 11:18:52 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Sulski\Moje dokumenty\Moja muzyka [2010-11-11 11:18:52 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information [2010-11-11 11:18:34 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Sulski\Ulubione [2010-11-11 11:18:34 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Sulski\Moje dokumenty [2010-11-11 11:18:34 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-11-11 11:18:34 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Sulski\SendTo [2010-11-11 11:18:34 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Sulski\Recent [2010-11-11 11:18:34 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Sulski\IETldCache [2010-11-11 11:18:34 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Sulski\Cookies [2010-11-11 11:18:34 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne [2010-11-11 11:18:34 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Sulski\Szablony [2010-11-11 11:18:34 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Sulski\PrintHood [2010-11-11 11:18:34 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Sulski\NetHood [2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\uTorrent [2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Sun [2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Pulpit [2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\nss71F.tmp [2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Microsoft [2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Menu Start [2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\FindeXer [2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\Finder Bar [2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\Finder Bar [2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji [2010-11-11 11:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sulski\Dane aplikacji\AIMP [2010-11-11 11:15:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit [2010-11-11 11:15:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Finder Bar [2010-11-11 11:15:52 | 000,000,000 | ---D | C] -- C:\Program Files\FlashFolder [2010-11-11 11:15:50 | 000,000,000 | ---D | C] -- C:\Program Files\FolderSize [2010-11-11 11:15:46 | 000,000,000 | ---D | C] -- C:\Program Files\Command Prompt Explorer Bar [2010-11-11 11:14:36 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC [2010-11-11 11:14:32 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-11-11 11:14:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2010-11-11 11:14:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [2010-11-11 11:14:29 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-11-11 11:14:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [2010-11-11 11:12:59 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\nircmd.exe [2010-11-11 11:12:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Gry [2010-11-11 11:12:53 | 000,880,640 | ---- | C] (Xentient) -- C:\WINDOWS\System32\thumbs.dll [2010-11-11 11:12:53 | 000,150,256 | ---- | C] (Moon Software) -- C:\WINDOWS\System32\UrlFileShellExt.dll [2010-11-11 11:12:53 | 000,069,632 | ---- | C] (Villain) -- C:\WINDOWS\System32\TaskbarForms.exe [2010-11-11 11:12:53 | 000,053,248 | ---- | C] (Quizo) -- C:\WINDOWS\System32\QTFileTools.dll [2010-11-11 11:12:53 | 000,036,864 | ---- | C] (Quizo) -- C:\WINDOWS\System32\QTViewModeButton.dll [2010-11-11 11:12:53 | 000,020,480 | ---- | C] (Quizo) -- C:\WINDOWS\System32\OptionButton.dll [2010-11-11 11:12:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Unlocker [2010-11-11 11:12:52 | 000,488,448 | ---- | C] (MiTeC) -- C:\WINDOWS\System32\MIPSE.dll [2010-11-11 11:12:52 | 000,414,208 | ---- | C] (MiTeC) -- C:\WINDOWS\System32\MPEISE.dll [2010-11-11 11:12:52 | 000,387,584 | ---- | C] (MiTeC) -- C:\WINDOWS\System32\MAISE.dll [2010-11-11 11:12:52 | 000,146,672 | ---- | C] (Moon Software) -- C:\WINDOWS\System32\FolderBackgroundShellExt.dll [2010-11-11 11:12:52 | 000,016,792 | ---- | C] (NTWind Software) -- C:\WINDOWS\System32\hstart.exe [2010-11-11 11:12:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\locale [2010-11-11 11:12:51 | 001,312,256 | ---- | C] (Softpointer Inc) -- C:\WINDOWS\System32\AudioShellExt.dll [2010-11-11 11:12:51 | 000,151,552 | ---- | C] (Minimalist) -- C:\WINDOWS\System32\BCToolbar.dll [2010-11-11 11:12:51 | 000,150,256 | ---- | C] (Moon Software) -- C:\WINDOWS\System32\AnyFileShellExt.dll [2010-11-11 11:12:51 | 000,036,864 | ---- | C] (Quizo) -- C:\WINDOWS\System32\CreateNewItemButton.dll [2010-11-11 11:12:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\books [2010-11-11 11:12:48 | 000,000,000 | ---D | C] -- C:\Program Files\Zapodaj Uploader [2010-11-11 11:12:48 | 000,000,000 | ---D | C] -- C:\Program Files\AeroSnap [2010-11-11 11:12:48 | 000,000,000 | ---D | C] -- C:\Program Files\Aero shake [2010-11-11 11:12:48 | 000,000,000 | ---D | C] -- C:\Program Files\AbiSuite2 [2010-11-11 11:12:47 | 000,000,000 | ---D | C] -- C:\Program Files\WinFlip [2010-11-11 11:12:44 | 000,000,000 | ---D | C] -- C:\Program Files\WindowZ [2010-11-11 11:12:43 | 000,000,000 | ---D | C] -- C:\Program Files\WinDirStat [2010-11-11 11:12:43 | 000,000,000 | ---D | C] -- C:\Program Files\ViGlance OneStep [2010-11-11 11:12:43 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent [2010-11-11 11:12:42 | 000,000,000 | ---D | C] -- C:\Program Files\TrueTransparency [2010-11-11 11:12:42 | 000,000,000 | ---D | C] -- C:\Program Files\Thumbnail Resize [2010-11-11 11:12:42 | 000,000,000 | ---D | C] -- C:\Program Files\Taskix [2010-11-11 11:12:42 | 000,000,000 | ---D | C] -- C:\Program Files\TaskbarEx [2010-11-11 11:12:42 | 000,000,000 | ---D | C] -- C:\Program Files\SubEdit-Player [2010-11-11 11:12:41 | 000,000,000 | ---D | C] -- C:\Program Files\Stack [2010-11-11 11:12:41 | 000,000,000 | ---D | C] -- C:\Program Files\SpiritPyre Extensions [2010-11-11 11:12:40 | 000,000,000 | ---D | C] -- C:\Program Files\shutoffxp [2010-11-11 11:12:40 | 000,000,000 | ---D | C] -- C:\Program Files\Shellka [2010-11-11 11:12:39 | 000,000,000 | ---D | C] -- C:\Program Files\RightClick [2010-11-11 11:12:39 | 000,000,000 | ---D | C] -- C:\Program Files\Q-Dir [2010-11-11 11:12:39 | 000,000,000 | ---D | C] -- C:\Program Files\QDAcces [2010-11-11 11:12:39 | 000,000,000 | ---D | C] -- C:\Program Files\PNotes [2010-11-11 11:12:39 | 000,000,000 | ---D | C] -- C:\Program Files\Placesbar Constructor [2010-11-11 11:12:39 | 000,000,000 | ---D | C] -- C:\Program Files\Perlovga Removal Tool [2010-11-11 11:12:37 | 000,000,000 | ---D | C] -- C:\Program Files\OxelonMedia [2010-11-11 11:12:37 | 000,000,000 | ---D | C] -- C:\Program Files\MimeTeXeditor [2010-11-11 11:12:37 | 000,000,000 | ---D | C] -- C:\Program Files\MaZZicK [2010-11-11 11:12:36 | 000,000,000 | ---D | C] -- C:\Program Files\LogonZ Designer [2010-11-11 11:12:35 | 000,000,000 | ---D | C] -- C:\Program Files\LaunchTab [2010-11-11 11:12:33 | 000,000,000 | ---D | C] -- C:\Program Files\Ikony paska narzędzi [2010-11-11 11:12:30 | 000,000,000 | ---D | C] -- C:\Program Files\IconZ [2010-11-11 11:12:30 | 000,000,000 | ---D | C] -- C:\Program Files\IconViewer [2010-11-11 11:12:30 | 000,000,000 | ---D | C] -- C:\Program Files\Google Hacks [2010-11-11 11:12:30 | 000,000,000 | ---D | C] -- C:\Program Files\GG Lite [2010-11-11 11:12:28 | 000,000,000 | ---D | C] -- C:\Program Files\FreeRapiD-0.82 [2010-11-11 11:12:26 | 000,000,000 | ---D | C] -- C:\Program Files\Foxit Reader [2010-11-11 11:12:26 | 000,000,000 | ---D | C] -- C:\Program Files\Fadebar [2010-11-11 11:12:26 | 000,000,000 | ---D | C] -- C:\Program Files\Everything Search Engine [2010-11-11 11:12:26 | 000,000,000 | ---D | C] -- C:\Program Files\EdgeSwap [2010-11-11 11:12:25 | 000,000,000 | ---D | C] -- C:\Program Files\Drive Space Indicator [2010-11-11 11:12:25 | 000,000,000 | ---D | C] -- C:\Program Files\DIPS [2010-11-11 11:12:25 | 000,000,000 | ---D | C] -- C:\Program Files\DesktopListViewv1.0 [2010-11-11 11:12:25 | 000,000,000 | ---D | C] -- C:\Program Files\Cymes Desktop Changer 1.7 [2010-11-11 11:12:25 | 000,000,000 | ---D | C] -- C:\Program Files\Contextaware [2010-11-11 11:12:24 | 000,000,000 | ---D | C] -- C:\Program Files\Console [2010-11-11 11:12:24 | 000,000,000 | ---D | C] -- C:\Program Files\Blue Onion Software [2010-11-11 11:12:24 | 000,000,000 | ---D | C] -- C:\Program Files\BESTplayer [2010-11-11 11:12:24 | 000,000,000 | ---D | C] -- C:\Program Files\Aqua Dock [2010-11-11 11:12:23 | 000,000,000 | ---D | C] -- C:\Program Files\VS Revo Group [2010-11-11 11:12:22 | 000,000,000 | ---D | C] -- C:\Program Files\VisualTaskTips [2010-11-11 11:12:21 | 000,000,000 | ---D | C] -- C:\Program Files\VPX.PL Uploader [2010-11-11 11:12:20 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2010-11-11 11:12:18 | 000,000,000 | ---D | C] -- C:\Program Files\Switch Off [2010-11-11 11:12:18 | 000,000,000 | ---D | C] -- C:\Program Files\StyleFolder [2010-11-11 11:12:17 | 000,172,032 | ---- | C] (Herf Consulting LLC) -- C:\WINDOWS\vjpeg.exe [2010-11-11 11:12:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe [2010-11-11 11:12:08 | 000,000,000 | ---D | C] -- C:\Program Files\LClock [2010-11-11 11:12:07 | 000,000,000 | ---D | C] -- C:\Program Files\Quizo [2010-11-11 11:12:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Apple Computer [2010-11-11 11:12:00 | 000,094,208 | ---- | C] (Apple Inc.) -- C:\WINDOWS\System32\QuickTimeVR.qtx [2010-11-11 11:12:00 | 000,069,632 | ---- | C] (Apple Inc.) -- C:\WINDOWS\System32\QuickTime.qts [2010-11-11 11:11:54 | 000,000,000 | ---D | C] -- C:\Program Files\QT Lite [2010-11-11 11:11:51 | 000,000,000 | ---D | C] -- C:\Program Files\Prio [2010-11-11 11:11:48 | 000,000,000 | ---D | C] -- C:\Program Files\RegCompact Pro [2010-11-11 11:11:46 | 000,000,000 | ---D | C] -- C:\Program Files\System [2010-11-11 11:11:43 | 000,000,000 | ---D | C] -- C:\Program Files\IrfanView [2010-11-11 11:11:40 | 000,526,184 | ---- | C] (Xceed Software Inc (450) 442-2626 support@xceedsoft.com www.xceedsoft.com) -- C:\WINDOWS\System32\XceedCry.dll [2010-11-11 11:11:40 | 000,456,536 | ---- | C] (Xceed Software Inc (450) 442-2626 support@xceedsoft.com www.xceedsoft.com) -- C:\WINDOWS\System32\XCEEDZIP.DLL [2010-11-11 11:11:39 | 000,000,000 | ---D | C] -- C:\Program Files\Driver Magician [2010-11-11 11:11:38 | 000,000,000 | ---D | C] -- C:\Program Files\Defraggler [2010-11-11 11:11:31 | 000,000,000 | ---D | C] -- C:\Program Files\CDBurnerXP [2010-11-11 11:11:28 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner [2010-11-11 11:11:26 | 000,000,000 | ---D | C] -- C:\Program Files\AIMP2 [2010-11-11 11:11:23 | 000,000,000 | ---D | C] -- C:\Program Files\TrueCrypt [2010-11-11 11:11:09 | 000,000,000 | ---D | C] -- C:\Program Files\AbiWord [2010-11-11 11:10:45 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft [2010-11-11 11:10:43 | 000,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deploytk.dll [2010-11-11 11:10:43 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe [2010-11-11 11:10:43 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe [2010-11-11 11:10:43 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe [2010-11-11 11:10:43 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl [2010-11-11 11:10:37 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2010-11-11 11:08:53 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly [2010-11-11 11:08:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTemp [2010-11-11 11:08:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET [2010-11-11 11:07:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dllcache [2010-11-11 11:07:15 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM [2010-11-11 11:07:00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje obrazy [2010-11-11 11:06:52 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online [2010-11-11 11:06:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services [2010-11-11 11:06:22 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks [2010-11-11 11:06:19 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap [2010-11-11 11:06:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore [2010-11-11 11:06:03 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express [2010-11-11 11:05:53 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System [2010-11-11 11:05:51 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer [2010-11-11 11:05:19 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications [2010-11-11 11:05:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration [2010-11-11 11:05:00 | 000,774,144 | ---- | C] (3Planesoft) -- C:\WINDOWS\System32\Deep Space 3D Screensaver.scr [2010-11-11 11:04:56 | 012,360,192 | ---- | C] (3Planesoft) -- C:\WINDOWS\System32\Deep Space 3D Screensaver.exe [2010-11-11 11:04:55 | 000,848,896 | ---- | C] (3Planesoft) -- C:\WINDOWS\System32\Mechanical Clock 3D Screensaver.scr [2010-11-11 11:04:54 | 002,529,280 | ---- | C] (3Planesoft) -- C:\WINDOWS\System32\Mechanical Clock 3D Screensaver.exe [2010-11-11 11:04:54 | 000,841,728 | ---- | C] (3Planesoft) -- C:\WINDOWS\System32\Koi Fish 3D Screensaver.scr [2010-11-11 11:04:50 | 010,203,136 | ---- | C] (3Planesoft) -- C:\WINDOWS\System32\Koi Fish 3D Screensaver.exe [2010-11-11 11:04:44 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2 [2010-11-11 11:04:43 | 000,044,544 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hticons.dll [2010-11-11 11:04:43 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player [2010-11-11 11:04:20 | 000,351,744 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hypertrm.dll [2010-11-11 11:04:20 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT [2010-11-11 11:04:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc [2010-11-11 11:04:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com [1 C:\Documents and Settings\Sulski\*.tmp files -> C:\Documents and Settings\Sulski\*.tmp -> ] [color="#E56717"]========== Files - Modified Within 60 Days ==========[/color] [2010-11-20 09:43:31 | 000,004,551 | ---- | M] () -- C:\Documents and Settings\Sulski\Moje dokumenty\DrWeb.csv [2010-11-20 01:17:27 | 000,272,291 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml [2010-11-20 01:17:22 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-11-19 11:38:34 | 006,187,008 | ---- | M] () -- C:\Documents and Settings\Sulski\Pulpit\Softonic-Eng7.exe [2010-11-19 11:38:27 | 000,001,906 | ---- | M] () -- C:\Documents and Settings\Sulski\Pulpit\Tencent QQ.lnk [2010-11-19 11:37:57 | 018,298,184 | ---- | M] () -- C:\Documents and Settings\Sulski\Pulpit\QQIntl_Beta3.exe [2010-11-17 17:52:29 | 000,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk [2010-11-17 01:11:33 | 000,000,800 | ---- | M] () -- C:\WINDOWS\hpinfo.lnk [2010-11-16 16:55:34 | 000,109,400 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-11-16 09:57:59 | 000,002,184 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-11-16 00:14:26 | 000,000,661 | ---- | M] () -- C:\Documents and Settings\Sulski\Pulpit\ŃôąâĘąĂü2010ŐýĘ˝°ć.lnk [2010-11-14 09:10:19 | 000,004,608 | ---- | M] () -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-11-13 20:04:14 | 000,000,630 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\µTorrent.lnk [2010-11-13 19:43:40 | 000,000,746 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\JDownloader.lnk [2010-11-13 15:20:45 | 000,000,719 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\VLC media player.lnk [2010-11-13 12:33:46 | 000,000,662 | ---- | M] () -- C:\Documents and Settings\Sulski\Pulpit\NapiProjekt.lnk [2010-11-12 15:08:55 | 000,001,732 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\WinZip.lnk [2010-11-12 02:18:25 | 000,000,845 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\CWK.lnk [2010-11-11 14:09:32 | 000,691,696 | ---- | M] () -- C:\WINDOWS\System32\drivers\sptd.sys [2010-11-11 14:09:32 | 000,001,613 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk [2010-11-11 12:00:58 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF [2010-11-11 11:48:27 | 000,001,001 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Media Player Classic.lnk [2010-11-11 11:48:27 | 000,000,949 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\ACE Mega CoDecS Pack DashBoard.lnk [2010-11-11 11:48:27 | 000,000,893 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\BSPlayer.lnk [2010-11-11 11:41:31 | 000,000,654 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk [2010-11-11 11:40:01 | 000,454,962 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2010-11-11 11:40:01 | 000,398,554 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010-11-11 11:40:01 | 000,077,594 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2010-11-11 11:40:01 | 000,061,074 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010-11-11 11:38:23 | 000,000,703 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\OpenFM.lnk [2010-11-11 11:38:23 | 000,000,674 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk [2010-11-11 11:32:33 | 000,000,592 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Opera.lnk [2010-11-11 11:28:39 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD [2010-11-11 11:21:53 | 000,001,519 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\AvRack.lnk [2010-11-11 11:17:35 | 000,000,315 | ---- | M] () -- C:\WINDOWS\System32\ResHacker.ini [2010-11-11 11:13:41 | 000,001,314 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2010-11-11 11:12:17 | 000,172,032 | ---- | M] (Herf Consulting LLC) -- C:\WINDOWS\vjpeg.exe [2010-11-11 11:12:17 | 000,053,812 | ---- | M] () -- C:\WINDOWS\uninst-vj.exe [2010-11-11 11:12:14 | 000,001,958 | ---- | M] () -- C:\WINDOWS\uninstall.ini [2010-11-11 11:12:13 | 000,082,898 | ---- | M] () -- C:\WINDOWS\uninstall.exe [2010-11-11 11:10:38 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deploytk.dll [2010-11-11 11:10:38 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe [2010-11-11 11:10:38 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe [2010-11-11 11:10:38 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe [2010-11-11 11:10:38 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl [2010-11-11 11:08:31 | 000,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2010-11-11 11:08:31 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2010-11-11 11:08:31 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-11-11 11:08:31 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-11-11 11:08:31 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-11-11 11:08:24 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2010-11-11 11:08:24 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2010-11-11 11:08:23 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2010-11-11 11:07:41 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2010-11-11 11:05:27 | 000,021,856 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [2010-11-11 11:03:19 | 000,000,211 | -HS- | M] () -- C:\boot.ini [1 C:\Documents and Settings\Sulski\*.tmp files -> C:\Documents and Settings\Sulski\*.tmp -> ] [color="#E56717"]========== Files Created - No Company Name ==========[/color] [2010-11-20 09:43:31 | 000,004,551 | ---- | C] () -- C:\Documents and Settings\Sulski\Moje dokumenty\DrWeb.csv [2010-11-19 11:38:27 | 000,001,906 | ---- | C] () -- C:\Documents and Settings\Sulski\Pulpit\Tencent QQ.lnk [2010-11-19 11:35:31 | 018,298,184 | ---- | C] () -- C:\Documents and Settings\Sulski\Pulpit\QQIntl_Beta3.exe [2010-11-19 11:35:31 | 006,187,008 | ---- | C] () -- C:\Documents and Settings\Sulski\Pulpit\Softonic-Eng7.exe [2010-11-17 17:52:29 | 000,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk [2010-11-17 01:11:33 | 000,000,800 | ---- | C] () -- C:\WINDOWS\hpinfo.lnk [2010-11-16 00:14:26 | 000,000,661 | ---- | C] () -- C:\Documents and Settings\Sulski\Pulpit\ŃôąâĘąĂü2010ŐýĘ˝°ć.lnk [2010-11-13 20:04:14 | 000,000,630 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\µTorrent.lnk [2010-11-13 19:43:40 | 000,000,746 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\JDownloader.lnk [2010-11-13 15:41:28 | 000,004,608 | ---- | C] () -- C:\Documents and Settings\Sulski\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-11-13 15:20:45 | 000,000,719 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\VLC media player.lnk [2010-11-13 12:33:46 | 000,000,662 | ---- | C] () -- C:\Documents and Settings\Sulski\Pulpit\NapiProjekt.lnk [2010-11-12 15:08:55 | 000,001,732 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\WinZip.lnk [2010-11-12 02:18:25 | 000,000,845 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\CWK.lnk [2010-11-11 14:09:32 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys [2010-11-11 14:09:32 | 000,001,613 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk [2010-11-11 12:00:58 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF [2010-11-11 12:00:53 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2010-11-11 12:00:35 | 000,001,734 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT [2010-11-11 12:00:34 | 000,792,576 | ---- | C] () -- C:\WINDOWS\NOTEPAD.EXE [2010-11-11 11:57:37 | 000,109,400 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-11-11 11:56:53 | 000,000,211 | -HS- | C] () -- C:\boot.ini [2010-11-11 11:56:51 | 000,001,314 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf [2010-11-11 11:48:27 | 000,001,001 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Media Player Classic.lnk [2010-11-11 11:48:27 | 000,000,949 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\ACE Mega CoDecS Pack DashBoard.lnk [2010-11-11 11:48:27 | 000,000,893 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\BSPlayer.lnk [2010-11-11 11:48:24 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\vp6dec_settings.cpl [2010-11-11 11:48:06 | 000,019,968 | ---- | C] () -- C:\WINDOWS\System32\cpuinf32.dll [2010-11-11 11:48:05 | 000,761,856 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2010-11-11 11:48:03 | 000,417,792 | ---- | C] () -- C:\WINDOWS\System32\ac3filter.cpl [2010-11-11 11:41:31 | 000,000,654 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk [2010-11-11 11:38:23 | 000,000,703 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\OpenFM.lnk [2010-11-11 11:38:23 | 000,000,674 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk [2010-11-11 11:32:32 | 000,000,592 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Opera.lnk [2010-11-11 11:28:39 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD [2010-11-11 11:24:39 | 000,249,344 | ---- | C] () -- C:\WINDOWS\System32\NvRaidMan.exe [2010-11-11 11:24:39 | 000,223,232 | ---- | C] () -- C:\WINDOWS\System32\nvsataconnection.exe [2010-11-11 11:23:56 | 000,003,596 | ---- | C] () -- C:\WINDOWS\System32\nvnrm.nvu [2010-11-11 11:23:54 | 000,001,231 | ---- | C] () -- C:\WINDOWS\System32\nvsmb.nvu [2010-11-11 11:22:22 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe [2010-11-11 11:21:53 | 000,001,519 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\AvRack.lnk [2010-11-11 11:21:52 | 000,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini [2010-11-11 11:21:46 | 000,141,016 | ---- | C] () -- C:\WINDOWS\System32\alsndmgr.wav [2010-11-11 11:21:45 | 000,143,360 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll [2010-11-11 11:20:11 | 000,008,743 | ---- | C] () -- C:\WINDOWS\System32\nvinfo.pb [2010-11-11 11:20:09 | 002,293,286 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin [2010-11-11 11:18:35 | 000,534,508 | ---- | C] () -- C:\Documents and Settings\Sulski\dd_vcredistMSI3CA1.txt [2010-11-11 11:18:35 | 000,015,552 | ---- | C] () -- C:\Documents and Settings\Sulski\dd_vcredistUI3CA1.txt [2010-11-11 11:18:35 | 000,000,172 | ---- | C] () -- C:\Documents and Settings\Sulski\Pulpit\ .lnk [2010-11-11 11:18:35 | 000,000,026 | ---- | C] () -- C:\Documents and Settings\Sulski\Dane aplikacji\prio.ini [2010-11-11 11:18:34 | 000,110,754 | ---- | C] () -- C:\Documents and Settings\Sulski\Setup Log 2010-11-11 #001.txt [2010-11-11 11:17:34 | 000,000,315 | ---- | C] () -- C:\WINDOWS\System32\ResHacker.ini [2010-11-11 11:16:27 | 000,000,916 | ---- | C] () -- C:\WINDOWS\System32\subfolderoff.reg [2010-11-11 11:16:27 | 000,000,910 | ---- | C] () -- C:\WINDOWS\System32\subfolderon.reg [2010-11-11 11:13:34 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2010-11-11 11:12:59 | 000,483,328 | ---- | C] () -- C:\WINDOWS\Helios.scr [2010-11-11 11:12:59 | 000,348,160 | ---- | C] () -- C:\WINDOWS\labels.dll [2010-11-11 11:12:59 | 000,025,780 | ---- | C] () -- C:\WINDOWS\Windowz.png [2010-11-11 11:12:59 | 000,007,690 | ---- | C] () -- C:\WINDOWS\Lng_QTTabBar_Polish.xml [2010-11-11 11:12:59 | 000,000,042 | ---- | C] () -- C:\WINDOWS\labelsoff.cmd [2010-11-11 11:12:59 | 000,000,039 | ---- | C] () -- C:\WINDOWS\labelson.cmd [2010-11-11 11:12:59 | 000,000,026 | ---- | C] () -- C:\WINDOWS\prio.ini [2010-11-11 11:12:53 | 001,026,560 | ---- | C] () -- C:\WINDOWS\System32\ResHacker.exe [2010-11-11 11:12:53 | 000,131,072 | ---- | C] () -- C:\WINDOWS\System32\ql.exe [2010-11-11 11:12:53 | 000,003,241 | ---- | C] () -- C:\WINDOWS\System32\SendToQuickLaunch.vbs [2010-11-11 11:12:53 | 000,002,362 | ---- | C] () -- C:\WINDOWS\System32\opty.vbs [2010-11-11 11:12:53 | 000,000,454 | ---- | C] () -- C:\WINDOWS\System32\qlon.vbs [2010-11-11 11:12:53 | 000,000,454 | ---- | C] () -- C:\WINDOWS\System32\qloff.vbs [2010-11-11 11:12:53 | 000,000,401 | ---- | C] () -- C:\WINDOWS\System32\y.cmd [2010-11-11 11:12:53 | 000,000,066 | ---- | C] () -- C:\WINDOWS\System32\undock.vbs [2010-11-11 11:12:53 | 000,000,055 | ---- | C] () -- C:\WINDOWS\System32\subfolderoff.cmd [2010-11-11 11:12:53 | 000,000,051 | ---- | C] () -- C:\WINDOWS\System32\subfolderon.cmd [2010-11-11 11:12:53 | 000,000,045 | ---- | C] () -- C:\WINDOWS\System32\uninstall.bat [2010-11-11 11:12:53 | 000,000,034 | ---- | C] () -- C:\WINDOWS\System32\UrlFileOff.bat [2010-11-11 11:12:53 | 000,000,031 | ---- | C] () -- C:\WINDOWS\System32\UrlFileOn.bat [2010-11-11 11:12:53 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ToolbarOff.bat [2010-11-11 11:12:53 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\optymalizacja.cmd [2010-11-11 11:12:53 | 000,000,027 | ---- | C] () -- C:\WINDOWS\System32\Unregister.bat [2010-11-11 11:12:53 | 000,000,025 | ---- | C] () -- C:\WINDOWS\System32\ToolbarOn.bat [2010-11-11 11:12:53 | 000,000,021 | ---- | C] () -- C:\WINDOWS\System32\Register.bat [2010-11-11 11:12:52 | 000,363,089 | ---- | C] () -- C:\WINDOWS\System32\hddspace.exe [2010-11-11 11:12:52 | 000,211,968 | ---- | C] () -- C:\WINDOWS\System32\Formats.dll [2010-11-11 11:12:52 | 000,104,960 | ---- | C] () -- C:\WINDOWS\System32\opensub.dll [2010-11-11 11:12:52 | 000,031,232 | ---- | C] () -- C:\WINDOWS\System32\fstoggle.exe [2010-11-11 11:12:52 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\instalacja.bat [2010-11-11 11:12:52 | 000,000,297 | ---- | C] () -- C:\WINDOWS\System32\find_target.vbs [2010-11-11 11:12:52 | 000,000,064 | ---- | C] () -- C:\WINDOWS\System32\install.bat [2010-11-11 11:12:52 | 000,000,043 | ---- | C] () -- C:\WINDOWS\System32\FolderBackgrounOff.bat [2010-11-11 11:12:52 | 000,000,040 | ---- | C] () -- C:\WINDOWS\System32\FolderBackgrounOn.bat [2010-11-11 11:12:52 | 000,000,034 | ---- | C] () -- C:\WINDOWS\System32\notatkaoff.bat [2010-11-11 11:12:52 | 000,000,031 | ---- | C] () -- C:\WINDOWS\System32\notatkaon.bat [2010-11-11 11:12:52 | 000,000,025 | ---- | C] () -- C:\WINDOWS\System32\MPEISEoff.bat [2010-11-11 11:12:52 | 000,000,024 | ---- | C] () -- C:\WINDOWS\System32\MIPSEoff.bat [2010-11-11 11:12:52 | 000,000,024 | ---- | C] () -- C:\WINDOWS\System32\MAISEoff.bat [2010-11-11 11:12:52 | 000,000,022 | ---- | C] () -- C:\WINDOWS\System32\MPEISEon.bat [2010-11-11 11:12:52 | 000,000,021 | ---- | C] () -- C:\WINDOWS\System32\MIPSEon.bat [2010-11-11 11:12:52 | 000,000,021 | ---- | C] () -- C:\WINDOWS\System32\MAISEon.bat [2010-11-11 11:12:51 | 001,583,189 | ---- | C] () -- C:\WINDOWS\System32\eco-timer.scr [2010-11-11 11:12:51 | 000,040,448 | ---- | C] () -- C:\WINDOWS\System32\cdeject.dll [2010-11-11 11:12:51 | 000,000,008 | ---- | C] () -- C:\WINDOWS\System32\czysc.cmd [2010-11-11 11:12:17 | 000,053,812 | ---- | C] () -- C:\WINDOWS\uninst-vj.exe [2010-11-11 11:12:14 | 000,001,958 | ---- | C] () -- C:\WINDOWS\uninstall.ini [2010-11-11 11:12:13 | 000,082,898 | ---- | C] () -- C:\WINDOWS\uninstall.exe [2010-11-11 11:11:45 | 000,208,896 | ---- | C] () -- C:\WINDOWS\System32\cttune.cpl [2010-11-11 11:11:45 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\startup.cpl [2010-11-11 11:11:40 | 000,110,602 | ---- | C] () -- C:\WINDOWS\System32\xcdsfx32.bin [2010-11-11 11:11:32 | 000,007,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys [2010-11-11 11:10:57 | 000,178,176 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2010-11-11 11:08:31 | 000,002,596 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT [2010-11-11 11:08:31 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS [2010-11-11 11:08:31 | 000,000,000 | RHS- | C] () -- C:\IO.SYS [2010-11-11 11:08:31 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS [2010-11-11 11:08:31 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT [2010-11-11 11:08:24 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb [2010-11-11 11:08:24 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb [2010-11-11 11:08:23 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx [2010-11-11 11:05:27 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2010-11-11 11:04:35 | 006,160,384 | ---- | C] () -- C:\WINDOWS\System32\calc.exe [2010-11-11 11:04:34 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h [2010-11-11 11:04:34 | 000,001,225 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd [2010-11-11 11:04:32 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h [2010-11-11 11:04:22 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc [2009-11-26 20:26:48 | 000,014,336 | ---- | C] () -- C:\WINDOWS\System32\tzchange.dll [2003-06-09 14:05:18 | 000,094,636 | ---- | C] () -- C:\WINDOWS\dropcpyr.dll [color="#E56717"]========== LOP Check ==========[/color] [2009-11-28 13:34:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\uTorrent [2010-11-11 11:15:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\Xentient [2010-11-11 14:09:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite [2010-11-11 11:15:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Finder Bar [2010-11-11 11:41:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-11-12 15:09:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\WinZip [2009-09-17 21:38:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Dane aplikacji\AIMP [2010-11-11 11:16:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Dane aplikacji\Finder Bar [2009-11-10 16:15:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Dane aplikacji\FindeXer [2009-11-28 13:34:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Dane aplikacji\uTorrent [2009-09-17 21:38:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\AIMP [2010-11-13 15:16:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\BESTplayer [2010-11-11 14:13:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\DAEMON Tools Lite [2010-11-11 11:16:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\Finder Bar [2009-11-10 16:15:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\FindeXer [2010-11-11 11:41:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\Gadu-Gadu 10 [2010-11-11 11:32:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\Opera [2010-11-19 12:23:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\Tencent [2010-11-13 21:29:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\uTorrent [2010-11-17 19:00:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\vShare [2010-11-11 11:19:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sulski\Dane aplikacji\Xentient [color="#E56717"]========== Purity Check ==========[/color] [color="#E56717"]========== Custom Scans ==========[/color] [color="#A23BEC"]< %systemdrive%\*.* >[/color] [2010-11-11 11:08:31 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-11-11 11:03:19 | 000,000,211 | -HS- | M] () -- C:\boot.ini [2008-04-15 12:00:00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin [2010-11-11 11:08:31 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-11-11 11:08:31 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-11-11 11:08:31 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2008-04-15 12:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2008-04-15 12:00:00 | 000,251,152 | RHS- | M] () -- C:\ntldr [2010-11-20 01:17:20 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys [color="#A23BEC"]< MD5 for: AGP440.SYS >[/color] [2009-11-28 00:33:45 | 014,513,072 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys [color="#A23BEC"]< MD5 for: ATAPI.SYS >[/color] [2009-11-28 00:33:45 | 014,513,072 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys [2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys [2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0002\DriverFiles\i386\atapi.sys [color="#A23BEC"]< MD5 for: BEEP.SYS >[/color] [2008-04-15 12:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys [color="#A23BEC"]< MD5 for: CDROM.SYS >[/color] [2009-11-26 20:23:51 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=4B0A100EAF5C49EF3CCA8C641431EACC -- C:\WINDOWS\system32\drivers\cdrom.sys [color="#A23BEC"]< MD5 for: EVENTLOG.DLL >[/color] [2008-04-15 12:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\eventlog.dll [color="#A23BEC"]< MD5 for: NDIS.SYS >[/color] [2008-04-15 12:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys [color="#A23BEC"]< MD5 for: WINLOGON.EXE >[/color] [2008-04-15 12:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\winlogon.exe < End of report > [/log] Nic nie wykryto w pliku notepad.exe W dalszym ciagu problem pozostaje nie rozwiozany , [color="#FF0000"]o dziwo[/color] Wasze forum wczytuje sie dobrze , problemem sa inne fora , serwisy typu wp itp , takze jezeli nie ustanie to prosilbym o pozwolenie uzycia Combofixa na moja odpowiedzialnosc , on zawsze pomagal w tym problemie kiedys. [color="#FF0000"]//nie mówi się "o dziwo" tylko "proszę pani" //ciama[/color]
Sohei komentarz 20 listopada 2010 komentarz 20 listopada 2010 wątpię aby combofix coś tutaj dał gdyż infekcja już nie występuje. Sprawdz dziennik zdarzeń i zobacz czy tam nie występuje jakiś błąd
Sulski komentarz 20 listopada 2010 Autor komentarz 20 listopada 2010 W dzienniku nie wiedzialem o co tam chodzi, wiec chwycilem sie przyslowiowej brzytwy i uzylem combofixa , bo pomyslalem ze jak nie pomoze to i tak czeka mnie instalacja windows 7 a najwyzej popsuje terazniejszy system wiec nic nie tracilem , wkleje ten log i bardzo prosze o przejrzenie gdyz combofix wykryl jakiegos "rootkita" po czym zrestartowal i dokonczyl skan. [log]ComboFix 10-11-19.04 - Sulski 2010-11-20 13:30:02.1.1 - x86 Microsoft Windows XP Professional 5.1.2600.3.1250.48.1045.18.1535.1253 [GMT 1:00] Uruchomiony z: c:\documents and settings\Sulski\Pulpit\ComboFix.exe . ((((((((((((((((((((((((((((((((((((((( Usunięto ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\windows\copyfstq.exe c:\windows\dropcpyr.dll c:\windows\system32\Install.bat c:\windows\system32\msconfig.exe c:\windows\system32\y.cmd c:\windows\Uninstall.ini D:\bbjl2g.exe . ((((((((((((((((((((((((( Pliki utworzone od 2010-10-20 do 2010-11-20 ))))))))))))))))))))))))))))))) . 2010-11-17 18:46 . 2010-11-17 18:46 -------- d-----w- C:\rsit 2010-11-11 11:00 . 2010-11-19 10:38 -------- d-----w- C:\Program Files . (((((((((((((((((((((((((((((((((((((((( Sekcja Find3M )))))))))))))))))))))))))))))))))))))))))))))))))))) . . ------- Sigcheck ------- [-] 2009-11-27 . 1F39C7BDBA4C5F3F01C4EABF7EDBF4B3 . 361600 . . [5.1.2600.5625] . . c:\windows\system32\drivers\tcpip.sys [-] 2009-11-19 . 07CFE293CE37D0E558E3D4AC2FB70CED . 629760 . . [5.82] . . c:\windows\system32\comctl32.dll [7] 2008-04-15 . AEF3D788DBF40C7C4D204EA45EB0C505 . 921088 . . [6.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.0.0_x-ww_1382d70a\comctl32.dll [7] 2008-04-15 . 737739FACEAD60683AA8D7FF7602FD14 . 1054208 . . [6.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll [-] 2009-06-23 . 150852B3EB5F0C3FB44D38D0375578BB . 8356864 . . [8.00.6001.22873] . . c:\windows\system32\mshtml.dll [-] 2009-11-19 . 3E6099B9B5A95B78FF634FCCEA5C8474 . 2331136 . . [5.1.2600.5857] . . c:\windows\system32\ntoskrnl.exe [-] 2009-11-19 . 3902506156DC2F68D85CFA797F12EBEE . 678400 . . [5.1.2600.5512] . . c:\windows\system32\user32.dll [-] 2009-11-19 . E88010D761E8C3C54B6FD30E742F8C53 . 1592832 . . [6.00.2900.5512] . . c:\windows\explorer.exe [-] 2009-11-19 . A6134E9536AE89970E71B2E27A4E383D . 2208000 . . [5.1.2600.5857] . . c:\windows\system32\ntkrnlpa.exe c:\windows\System32\ctfmon.exe ... - brak elementu !! c:\windows\System32\regsvc.dll ... - brak elementu !! . ((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane REGEDIT4 [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks] "{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}"= "c:\program files\Softonic-Eng7\tbSoft.dll" [2010-10-10 3906656] [HKEY_CLASSES_ROOT\clsid\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}] [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}] 2010-10-10 14:51 3906656 ----a-w- c:\program files\ConduitEngine\ConduitEngine.dll [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}] 2010-10-10 14:51 3906656 ----a-w- c:\program files\Softonic-Eng7\tbSoft.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}"= "c:\program files\Softonic-Eng7\tbSoft.dll" [2010-10-10 3906656] "{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files\ConduitEngine\ConduitEngine.dll" [2010-10-10 3906656] [HKEY_CLASSES_ROOT\clsid\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}] [HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "QQIntl"="c:\program files\Tencent\QQIntl\Bin\QQ.exe" [2010-11-19 144712] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SoundMan"="SOUNDMAN.EXE" [2006-08-02 577536] "NVRaidService"="c:\windows\system32\nvraidservice.exe" [2005-01-17 84480] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-11-20 12669544] c:\windows\system32\config\systemprofile\Menu Start\Programy\Autostart\ z.cmd [2009-11-20 611] c:\documents and settings\Administrator\Menu Start\Programy\Autostart\ Transparent fx - lite.lnk - c:\program files\Fadebar\Fadebar.exe [2010-11-11 211333] c:\documents and settings\Default User\Menu Start\Programy\Autostart\ Transparent fx - lite.lnk - c:\program files\Fadebar\Fadebar.exe [2010-11-11 211333] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "DisableStatusMessages"= 1 (0x1) [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer] "NoStartMenuEjectPC"= 1 (0x1) [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] "NoSMMyPictures"= 1 (0x1) "NoSMConfigurePrograms"= 1 (0x1) "NoResolveTrack"= 1 (0x1) [HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer] "NoSMHelp"= 1 (0x1) "ForceClassicControlPanel"= 1 (0x1) "NoSMMyPictures"= 1 (0x1) "NoSMConfigurePrograms"= 1 (0x1) "NoResolveTrack"= 1 (0x1) [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon] "UIHost"="%windir%\\system32\\LogonuiZ.exe" [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) "DisableUnicastResponsesToMulticastBroadcast"= 0 (0x0) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "%windir%\\system32\\sessmgr.exe"= R0 Si3124;Si3124;c:\windows\system32\drivers\si3124.sys [2009-11-28 76208] R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [2010-11-11 691696] S4 FlashFolder;FlashFolder;c:\program files\FlashFolder\FlashFolder.exe [2008-03-21 71680] S4 prio_svc;Prio Service;c:\program files\Prio\prio_svc.exe [2009-01-12 5120] --- Inne Usługi/Sterowniki w Pamięci --- *NewlyCreated* - HELPSVC . . ------- Skan uzupełniający ------- . uStart Page = hxxp://www.google.com/ IE: QQ - c:\program files\Tencent\QQIntl\Bin\AddEmotion.htm . . ------- Skojarzenia plików ------- . txtfile=c:\windows\notepad.exe %1 . - - - - USUNIĘTO PUSTE WPISY - - - - AddRemove-HijackThis - d:\instalki\Programy do logów\HijackThis.exe ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2010-11-20 13:33 Windows 5.1.2600 Dodatek Service Pack 3 NTFS skanowanie ukrytych procesów ... skanowanie ukrytych wpisów autostartu ... skanowanie ukrytych plików ... skanowanie pomyślnie ukończone ukryte pliki: 0 ************************************************************************** . --------------------- Pliki DLL ładowane pod uruchomionymi procesami --------------------- - - - - - - - > 'winlogon.exe'(1052) c:\windows\system32\cscui.dll - - - - - - - > 'lsass.exe'(1124) c:\windows\system32\scecli.dll . Czas ukończenia: 2010-11-20 13:34:11 ComboFix-quarantined-files.txt 2010-11-20 12:34 Przed: 29 341 769 728 bajtów wolnych Po: 29 317 165 056 bajtów wolnych WindowsXP-KB310994-SP2-Pro-BootDisk-PLK.exe [boot loader] timeout=2 default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS [operating systems] c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons UnsupportedDebug="do not select this" /debug multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect - - End Of File - - 08C432E503DED4BE1206EC3190B4BAFD [/log] Pamietam ze kiedys dawaliscie jeszcze jakis program do zamykania robaczywych portow , jesli mozna prosic o nazwe to bede wdzieczny. Pozdrawiam
danielek316 komentarz 20 listopada 2010 komentarz 20 listopada 2010 [quote name='Sulski' timestamp='1290257168' post='1125555'] Pamietam ze kiedys dawaliscie jeszcze jakis program do zamykania robaczywych portow [/quote] [url="http://storage.dobreprogramy.pl/bezpieczenstwo/wwdc_141_%28dobreprogramy.pl%29.exe"][b]Windows Worms Doors Cleaner[/b][/url]
Sohei komentarz 20 listopada 2010 komentarz 20 listopada 2010 Rootkita to on tutaj nie pokazał żeby wkyrył. Usuną pliki infekcji które nie było widoczne wcześniej w logu. Dodatkowo wskazał barki bardzo ważnych plików c:\windows\System32\ctfmon.exe ... - brak elementu !! c:\windows\System32\regsvc.dll ... - brak elementu !! Odnajdz te pliki na płytce windowsa i wrzuć je w podana lokalizacje.
Sulski komentarz 20 listopada 2010 Autor komentarz 20 listopada 2010 (edytowane) Gmer: [log]GMER 1.0.15.15530 - http://www.gmer.net Rootkit scan 2010-11-20 17:22:51 Windows 5.1.2600 Dodatek Service Pack 3 Harddisk0\DR0 -> \Device\00000065 WDC_WD2500JB-00REA0 rev.20.00K20 Running: hjf36qu1.exe; Driver: C:\DOCUME~1\Sulski\USTAWI~1\Temp\uwtdqpob.sys ---- System - GMER 1.0.15 ---- SSDT spgb.sys ZwCreateKey [0xB7EB50E0] SSDT spgb.sys ZwEnumerateKey [0xB7ECDDA4] SSDT spgb.sys ZwEnumerateValueKey [0xB7ECE132] SSDT spgb.sys ZwOpenKey [0xB7EB50C0] SSDT spgb.sys ZwQueryKey [0xB7ECE20A] SSDT spgb.sys ZwQueryValueKey [0xB7ECE08A] SSDT spgb.sys ZwSetValueKey [0xB7ECE29C] INT 0x62 ? 8986CBF8 INT 0x63 ? 8986CBF8 INT 0x73 ? 8986CBF8 INT 0x82 ? 8986CBF8 INT 0xA4 ? 8986BBF8 INT 0xB4 ? 8986BBF8 ---- Kernel code sections - GMER 1.0.15 ---- ? spgb.sys Nie można odnaleźć określonego pliku. ! .text USBPORT.SYS!DllUnload B6A2D8AC 5 Bytes JMP 8986B1D8 .text C:\WINDOWS\system32\DRIVERS\nv4_mini.sys section is writeable [0xB572C380, 0x5414D5, 0xE8000020] .text akd3qnpa.SYS B56DF386 35 Bytes [00, 00, 00, 00, 00, 00, 20, ...] .text akd3qnpa.SYS B56DF3AA 24 Bytes [00, 00, 00, 00, 00, 00, 00, ...] .text akd3qnpa.SYS B56DF3C4 3 Bytes [00, 80, 02] .text akd3qnpa.SYS B56DF3C9 1 Byte [30] .text akd3qnpa.SYS B56DF3C9 11 Bytes [30, 00, 00, 00, 5E, 02, 00, ...] {XOR [EAX], AL; ADD [EAX], AL; POP ESI; ADD AL, [EAX]; ADD [EAX], AL; ADD [EAX], AL} .text ... ---- Kernel IAT/EAT - GMER 1.0.15 ---- IAT atapi.sys[HAL.dll!READ_PORT_UCHAR] [B7EB6042] spgb.sys IAT atapi.sys[HAL.dll!READ_PORT_BUFFER_USHORT] [B7EB613E] spgb.sys IAT atapi.sys[HAL.dll!READ_PORT_USHORT] [B7EB60C0] spgb.sys IAT atapi.sys[HAL.dll!WRITE_PORT_BUFFER_USHORT] [B7EB6800] spgb.sys IAT atapi.sys[HAL.dll!WRITE_PORT_UCHAR] [B7EB66D6] spgb.sys IAT \SystemRoot\System32\Drivers\akd3qnpa.SYS[HAL.dll!KfAcquireSpinLock] 18C4830E IAT \SystemRoot\System32\Drivers\akd3qnpa.SYS[HAL.dll!READ_PORT_UCHAR] 1C959E88 IAT \SystemRoot\System32\Drivers\akd3qnpa.SYS[HAL.dll!KeGetCurrentIrql] 9E880000 IAT \SystemRoot\System32\Drivers\akd3qnpa.SYS[HAL.dll!KfRaiseIrql] 00001CB1 IAT \SystemRoot\System32\Drivers\akd3qnpa.SYS[HAL.dll!KfLowerIrql] 0E798366 IAT \SystemRoot\System32\Drivers\akd3qnpa.SYS[HAL.dll!HalGetInterruptVector] 74AAB000 IAT \SystemRoot\System32\Drivers\akd3qnpa.SYS[HAL.dll!HalTranslateBusAddress] 8986C636 IAT \SystemRoot\System32\Drivers\akd3qnpa.SYS[HAL.dll!KeStallExecutionProcessor] 1A00001C IAT \SystemRoot\System32\Drivers\akd3qnpa.SYS[HAL.dll!KfReleaseSpinLock] 1C8B86C6 IAT \SystemRoot\System32\Drivers\akd3qnpa.SYS[HAL.dll!READ_PORT_BUFFER_USHORT] C6020000 IAT \SystemRoot\System32\Drivers\akd3qnpa.SYS[HAL.dll!READ_PORT_USHORT] 001C9686 IAT \SystemRoot\System32\Drivers\akd3qnpa.SYS[HAL.dll!WRITE_PORT_BUFFER_USHORT] 86C60200 IAT \SystemRoot\System32\Drivers\akd3qnpa.SYS[HAL.dll!WRITE_PORT_UCHAR] 00001CB2 IAT \SystemRoot\System32\Drivers\akd3qnpa.SYS[WMILIB.SYS!WmiSystemControl] 8800001C IAT \SystemRoot\System32\Drivers\akd3qnpa.SYS[WMILIB.SYS!WmiCompleteRequest] 001CB99E IAT \SystemRoot\system32\DRIVERS\i8042prt.sys[HAL.dll!READ_PORT_UCHAR] [B7EC5B90] spgb.sys ---- Devices - GMER 1.0.15 ---- Device \FileSystem\Ntfs \Ntfs 898D51F8 Device \Driver\PCI_PNP9764 \Device\00000042 spgb.sys Device \Driver\usbohci \Device\USBPDO-0 896C7500 Device \Driver\usbehci \Device\USBPDO-1 896D61F8 Device \Driver\dmio \Device\DmControl\DmIoDaemon 898DA1F8 Device \Driver\dmio \Device\DmControl\DmConfig 898DA1F8 Device \Driver\dmio \Device\DmControl\DmPnP 898DA1F8 Device \Driver\dmio \Device\DmControl\DmInfo 898DA1F8 Device \Driver\sptd \Device\1068718514 spgb.sys Device \Driver\Ftdisk \Device\HarddiskVolume1 8986E1F8 Device \Driver\nvatabus \Device\00000065 8986C1F8 Device \Driver\Ftdisk \Device\HarddiskVolume2 8986E1F8 Device \Driver\Cdrom \Device\CdRom0 895C3500 Device \Driver\Cdrom \Device\CdRom1 895C3500 Device \Driver\nvatabus \Device\00000066 8986C1F8 Device \Driver\NetBT \Device\NetBt_Wins_Export 88A2E500 Device \Driver\usbohci \Device\USBFDO-0 896C7500 Device \Driver\usbehci \Device\USBFDO-1 896D61F8 Device \Driver\nvatabus \Device\NvAta0 8986C1F8 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver 8956D500 Device \Driver\NetBT \Device\NetBT_Tcpip_{FF2C1D20-D4F0-43A7-9EDB-268227FC0AD9} 88A2E500 Device \Driver\nvatabus \Device\NvAta1 8986C1F8 Device \FileSystem\MRxSmb \Device\LanmanRedirector 8956D500 Device \Driver\nvatabus \Device\NvAta2 8986C1F8 Device \Driver\Ftdisk \Device\FtControl 8986E1F8 Device \Driver\akd3qnpa \Device\Scsi\akd3qnpa1 894E21F8 Device \Driver\akd3qnpa \Device\Scsi\akd3qnpa1Port4Path0Target0Lun0 894E21F8 Device \FileSystem\Cdfs \Cdfs 88944500 ---- Registry - GMER 1.0.15 ---- Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s1 771343423 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s2 285507792 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@h0 1 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0xD4 0xC3 0x97 0x02 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0xB3 0x2E 0xFE 0x8C ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0x3A 0xEA 0xE6 0x11 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0x0C 0xA0 0x3A 0xC9 ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0xD4 0xC3 0x97 0x02 ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0 Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0xB3 0x2E 0xFE 0x8C ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0x3A 0xEA 0xE6 0x11 ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0x0C 0xA0 0x3A 0xC9 ... ---- EOF - GMER 1.0.15 ----[/log] Te pliki moga byc przyczyna tytulowego problemu ??
Sohei komentarz 20 listopada 2010 komentarz 20 listopada 2010 mogły spowodować wolne wczytywanie się stron(mowa tu o plikach infekcji) Pliki które ci podałem do uzupełnienia odpowiadają za co innego ale są bardzo ważne ! Czy teraz działa wszystko poprawnie?
Sulski komentarz 21 listopada 2010 Autor komentarz 21 listopada 2010 Niestety nie , nie mam juz pomyslow , wiec prawdopodobnie czeka mnie powrot do 7.
Sohei komentarz 21 listopada 2010 komentarz 21 listopada 2010 sądzę iż wina leży po stronie DNS. Panel sterownia --->połączenia sieciowe---->twoj połączenie ---prawy i właściwości ---> porotokół tpc/ip własciwosci---> Uzyj nastepujacych serwerów DNS i wpisz serwery odpowiednie dla dostawcy twojego internetu.
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.