Skocz do zawartości
galka1

Nie Otwieraja Sie Moje Dokumenty

Rekomendowane odpowiedzi

[log]OTL logfile created on: 2009-12-21 15:18:13 - Run 1

OTL by OldTimer - Version 3.1.19.0 Folder = C:\Documents and Settings\Adam\Moje dokumenty\Pobieranie

Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 7.0.5730.13)

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

 

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 61,00% Memory free

4,00 Gb Paging File | 3,00 Gb Available in Paging File | 82,00% Paging File free

Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

 

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 596,16 Gb Total Space | 222,80 Gb Free Space | 37,37% Space Free | Partition Type: NTFS

D: Drive not present or media not loaded

E: Drive not present or media not loaded

F: Drive not present or media not loaded

G: Drive not present or media not loaded

H: Drive not present or media not loaded

I: Drive not present or media not loaded

 

Computer Name: STACJONARA

Current User Name: Adam

Logged in as Administrator.

 

Current Boot Mode: Normal

Scan Mode: All users

Company Name Whitelist: On

Skip Microsoft Files: On

File Age = 30 Days

Output = Standard

 

========== Processes (All) ==========

 

PRC - [2009-12-21 15:16:22 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Adam\Moje dokumenty\Pobieranie\OTL.exe

PRC - [2009-12-17 19:36:54 | 00,908,248 | ---- | M] (Mozilla Corporation) -- C:\Programy\Mozilla Firefox\firefox.exe

PRC - [2009-11-25 00:51:40 | 00,081,000 | ---- | M] (ALWIL Software) -- C:\Programy\Alwil Software\Avast4\ashDisp.exe

PRC - [2009-11-25 00:51:35 | 00,138,680 | ---- | M] (ALWIL Software) -- C:\Programy\Alwil Software\Avast4\ashServ.exe

PRC - [2009-11-25 00:51:21 | 00,254,040 | ---- | M] (ALWIL Software) -- C:\Programy\Alwil Software\Avast4\ashMaiSv.exe

PRC - [2009-11-25 00:48:48 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Programy\Alwil Software\Avast4\ashWebSv.exe

PRC - [2009-11-25 00:43:56 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Programy\Alwil Software\Avast4\aswUpdSv.exe

PRC - [2009-11-09 04:17:50 | 00,180,224 | ---- | M] (PowerISO Computing, Inc.) -- C:\Programy\PowerISO\PWRISOVM.EXE

PRC - [2009-08-19 09:53:18 | 07,418,368 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin

PRC - [2009-08-19 09:52:16 | 07,424,000 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe

PRC - [2009-05-28 10:23:12 | 10,486,376 | ---- | M] (GG Network S.A.) -- C:\Program Files\Nowe Gadu-Gadu\gg.exe

PRC - [2009-05-28 09:33:44 | 00,077,824 | ---- | M] () -- C:\Program Files\Nowe Gadu-Gadu\spellchecker_gg.exe

PRC - [2009-05-15 14:19:13 | 00,032,838 | ---- | M] (MyWebSearch.com) -- C:\Program Files\MyWebSearch\bar\5.bin\MWSOEMON.EXE

PRC - [2009-05-15 14:19:13 | 00,024,688 | ---- | M] (MyWebSearch.com) -- C:\Program Files\MyWebSearch\bar\5.bin\M3SRCHMN.EXE

PRC - [2009-04-12 15:06:03 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe

PRC - [2009-04-12 15:06:03 | 00,148,888 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe

PRC - [2009-02-22 20:15:14 | 05,668,864 | ---- | M] (http://www.emule-project.net) -- C:\Programy\eMule\emule.exe

PRC - [2009-02-09 12:25:57 | 00,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe

PRC - [2009-01-30 18:13:52 | 00,185,872 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Common Files\Real\Update_OB\realsched.exe

PRC - [2008-12-30 19:25:40 | 00,066,872 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrA.exe

PRC - [2008-12-29 11:40:30 | 00,687,560 | ---- | M] (DT Soft Ltd) -- C:\Programy\DAEMON Tools Lite\daemon.exe

PRC - [2008-12-05 16:11:54 | 00,935,208 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe

PRC - [2008-12-01 21:38:42 | 00,598,016 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe

PRC - [2008-09-05 23:30:06 | 00,952,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WgaTray.exe

PRC - [2008-09-02 11:48:12 | 00,049,152 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

PRC - [2008-09-02 11:40:46 | 00,049,152 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

PRC - [2008-08-04 00:02:20 | 00,036,352 | ---- | M] () -- C:\Programy\Winamp\winampa.exe

PRC - [2008-07-29 20:10:04 | 00,046,104 | ---- | M] (Microsoft Corporation) -- c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe

PRC - [2008-06-09 10:21:58 | 00,073,728 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe

PRC - [2008-06-09 10:16:32 | 02,363,392 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe

PRC - [2008-04-14 18:21:48 | 00,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe

PRC - [2008-04-14 18:21:43 | 00,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe

PRC - [2008-04-14 18:21:43 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [WUDFSERVICEGROUP]

PRC - [2008-04-14 18:21:43 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS]

PRC - [2008-04-14 18:21:43 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE]

PRC - [2008-04-14 18:21:43 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS]

PRC - [2008-04-14 18:21:43 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]

PRC - [2008-04-14 18:21:43 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]

PRC - [2008-04-14 18:21:43 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH]

PRC - [2008-04-14 18:21:42 | 00,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe

PRC - [2008-04-14 18:21:22 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe

PRC - [2008-04-14 18:21:16 | 01,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe

PRC - [2008-04-14 18:21:10 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe

PRC - [2008-04-14 18:21:10 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe

PRC - [2008-04-14 18:21:02 | 00,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe

PRC - [2008-02-13 07:31:34 | 16,857,600 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.exe

PRC - [2007-05-15 15:55:46 | 01,628,208 | ---- | M] (Nero AG) -- C:\Programy\nero\Nero 7\InCD\NBHGui.exe

PRC - [2007-05-15 15:55:46 | 01,550,896 | ---- | M] (Nero AG) -- C:\Programy\nero\Nero 7\InCD\InCDsrv.exe

PRC - [2007-05-15 15:55:26 | 01,057,328 | ---- | M] (Nero AG) -- C:\Programy\nero\Nero 7\InCD\InCD.exe

PRC - [2006-06-27 16:21:14 | 01,449,984 | ---- | M] (Time Information Services Ltd.) -- C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe

PRC - [2006-06-15 12:36:18 | 00,229,376 | ---- | M] (Nokia) -- C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe

PRC - [2006-06-09 10:37:18 | 00,471,552 | ---- | M] (Nokia Corporation) -- C:\Program Files\Common Files\Nokia\MPAPI\MPAPI3s.exe

PRC - [2006-06-05 13:59:18 | 00,174,080 | ---- | M] (Nokia.) -- C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe

PRC - [2005-12-09 15:54:56 | 00,966,756 | ---- | M] () -- C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe

PRC - [2003-10-16 18:07:12 | 00,053,248 | ---- | M] (France Télécom R&D) -- C:\Program Files\Neostrada TP\TaskBarIcon.exe

PRC - [2003-10-16 18:07:10 | 00,024,576 | ---- | M] () -- C:\Program Files\Neostrada TP\CnxMon.exe

 

 

========== Modules (All) ==========

 

MOD - [2009-12-21 15:16:22 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Adam\Moje dokumenty\Pobieranie\OTL.exe

MOD - [2009-06-25 09:27:54 | 00,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll

MOD - [2009-05-15 14:19:13 | 00,045,134 | ---- | M] (MyWebSearch.com) -- C:\Program Files\MyWebSearch\bar\5.bin\MWSOESTB.DLL

MOD - [2009-05-15 14:19:13 | 00,024,685 | ---- | M] (MyWebSearch.com) -- C:\Program Files\MyWebSearch\bar\5.bin\F3HKSTUB.DLL

MOD - [2009-04-15 15:54:38 | 00,585,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll

MOD - [2009-03-21 15:08:59 | 01,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll

MOD - [2009-02-09 11:53:44 | 00,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll

MOD - [2009-02-09 11:53:43 | 00,722,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll

MOD - [2008-10-23 13:42:41 | 00,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll

MOD - [2008-06-17 20:03:15 | 08,489,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll

MOD - [2008-04-14 22:50:48 | 00,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll

MOD - [2008-04-14 18:21:56 | 00,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv

MOD - [2008-04-14 18:20:57 | 00,172,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wldap32.dll

MOD - [2008-04-14 18:20:57 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll

MOD - [2008-04-14 18:20:56 | 00,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll

MOD - [2008-04-14 18:20:56 | 00,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll

MOD - [2008-04-14 18:20:56 | 00,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll

MOD - [2008-04-14 18:20:47 | 00,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll

MOD - [2008-04-14 18:20:45 | 00,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samlib.dll

MOD - [2008-04-14 18:20:44 | 01,287,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll

MOD - [2008-04-14 18:20:44 | 00,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll

MOD - [2008-04-14 18:20:44 | 00,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll

MOD - [2008-04-14 18:20:44 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll

MOD - [2008-04-14 18:20:41 | 00,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntmarta.dll

MOD - [2008-04-14 18:20:39 | 00,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll

MOD - [2008-04-14 18:20:36 | 00,297,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msctf.dll

MOD - [2008-04-14 18:20:32 | 00,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imm32.dll

MOD - [2008-04-14 18:20:31 | 00,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll

MOD - [2008-04-14 18:12:58 | 00,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msctfime.ime

MOD - [2008-04-14 17:59:08 | 01,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x- ww_35d4ce83\comctl32.dll

 

 

========== Win32 Services (SafeList) ==========

 

SRV - [2009-11-25 00:51:35 | 00,138,680 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Programy\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus)

SRV - [2009-11-25 00:51:21 | 00,254,040 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Programy\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner)

SRV - [2009-11-25 00:48:48 | 00,352,920 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Programy\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner)

SRV - [2009-11-25 00:43:56 | 00,018,752 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Programy\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv)

SRV - [2009-04-26 11:38:43 | 00,182,768 | ---- | M] (Google) [On_Demand | Stopped] -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc)

SRV - [2009-04-12 15:06:03 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) [Auto | Running] -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService)

SRV - [2009-04-08 20:46:13 | 00,133,104 | ---- | M] (Google Inc.) [Auto | Stopped] -- C:\Program Files\Google\Update\GoogleUpdate.exe -- (gupdate1c9b882ad862ee2) Usługa Google Update (gupdate1c9b882ad862ee2)

SRV - [2008-12-30 19:25:40 | 00,066,872 | ---- | M] () [Auto | Running] -- C:\WINDOWS\system32\PnkBstrA.exe -- (PnkBstrA)

SRV - [2008-12-05 16:11:54 | 00,935,208 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)

SRV - [2008-12-01 21:38:42 | 00,598,016 | ---- | M] (ATI Technologies Inc.) [Auto | Running] -- C:\WINDOWS\system32\ati2evxx.exe -- (Ati HotKey Poller)

SRV - [2008-12-01 14:35:00 | 00,593,920 | ---- | M] () [Auto | Stopped] -- C:\WINDOWS\system32\ati2sgag.exe -- (ATI Smart)

SRV - [2008-06-09 10:21:58 | 00,073,728 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe -- (LightScribeService)

SRV - [2007-05-15 15:55:46 | 01,550,896 | ---- | M] (Nero AG) [Auto | Running] -- C:\Programy\nero\Nero 7\InCD\InCDsrv.exe -- (InCDsrv)

SRV - [2007-05-08 19:47:22 | 00,271,920 | ---- | M] (Nero AG) [On_Demand | Stopped] -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService)

SRV - [2007-04-13 21:09:56 | 00,792,112 | ---- | M] (Nero AG) [On_Demand | Stopped] -- C:\Programy\nero\Nero 7\Nero BackItUp\NBService.exe -- (NBService)

SRV - [2006-06-05 13:59:18 | 00,174,080 | ---- | M] (Nokia.) [On_Demand | Running] -- C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe -- (ServiceLayer)

SRV - [2003-07-28 18:28:22 | 00,089,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose)

SRV - [2002-10-11 22:11:08 | 02,117,632 | ---- | M] () [Auto | Stopped] -- C:\Programy\Prime95\Prime95.exe -- (Prime95 Service)

 

 

========== Driver Services (SafeList) ==========

 

DRV - [2009-11-25 00:50:59 | 00,094,160 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswmon2.sys -- (aswMon2)

DRV - [2009-11-25 00:50:12 | 00,114,768 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP)

DRV - [2009-11-25 00:50:00 | 00,020,560 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk)

DRV - [2009-11-25 00:49:07 | 00,048,560 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)

DRV - [2009-11-25 00:48:57 | 00,023,120 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr)

DRV - [2009-11-25 00:47:54 | 00,027,408 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aavmker4.sys -- (Aavmker4)

DRV - [2009-11-09 04:21:18 | 00,059,388 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\scdemu.sys -- (SCDEmu)

DRV - [2009-05-24 18:40:09 | 00,281,504 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)

DRV - [2009-05-24 18:40:09 | 00,025,888 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)

DRV - [2009-05-10 17:49:20 | 00,721,904 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)

DRV - [2008-12-30 17:48:33 | 00,025,280 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)

DRV - [2008-12-01 23:13:40 | 03,452,928 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)

DRV - [2008-05-21 00:53:36 | 00,093,696 | R--- | M] (ATI Research Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtiHdmi.sys -- (AtiHdmiService)

DRV - [2008-04-13 17:39:16 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv)

DRV - [2008-04-13 17:36:05 | 00,144,384 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)

DRV - [2008-02-14 10:04:06 | 04,676,096 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)

DRV - [2008-01-27 23:02:40 | 00,013,904 | ---- | M] (OpenLibSys.org) [Kernel | On_Demand | Stopped] -- C:\Documents and Settings\Adam\Pulpit\Programy\RealTemp_2.70\RealTemp_2.70\WinRing0.sys -- (WinRing0_1_1_1)

DRV - [2008-01-03 15:10:16 | 00,105,856 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)

DRV - [2007-11-26 04:16:50 | 00,072,704 | R--- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\jraid.sys -- (JRAID)

DRV - [2007-05-15 15:55:36 | 00,118,576 | ---- | M] (Nero AG) [File_System | Disabled | Running] -- C:\WINDOWS\system32\drivers\InCDfs.sys -- (InCDfs)

DRV - [2007-05-15 15:55:36 | 00,038,576 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\InCDRm.sys -- (incdrm)

DRV - [2007-05-15 15:55:36 | 00,037,040 | ---- | M] (Nero AG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\InCDPass.sys -- (InCDPass)

DRV - [2007-03-08 00:51:00 | 00,043,528 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20)

DRV - [2006-09-24 14:28:46 | 00,005,248 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan)

DRV - [2006-05-29 08:26:38 | 00,127,488 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcd.sys -- (Nokia USB Phone Parent)

DRV - [2006-05-29 08:26:36 | 00,013,312 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdcj.sys -- (Nokia USB Port)

DRV - [2006-05-29 08:26:36 | 00,013,312 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdcm.sys -- (Nokia USB Modem)

DRV - [2006-05-29 08:26:36 | 00,008,704 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdc.sys -- (Nokia USB Generic)

DRV - [2004-03-02 09:26:58 | 00,050,007 | ---- | M] (Analog Deivces) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\adildr.sys -- (ADILOADER) General Purpose USB Driver (adildr.sys)

DRV - [2004-03-02 09:24:16 | 00,127,065 | ---- | M] (Analog Devices Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\adiusbaw.sys -- (adiusbaw)

DRV - [2001-08-18 00:49:56 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink)

DRV - [1996-04-03 20:33:26 | 00,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio)

 

 

========== Standard Registry (SafeList) ==========

 

 

========== Internet Explorer ==========

 

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

 

 

IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

 

IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

 

 

 

IE - HKU\S-1-5-21-1757981266-706699826-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.neostrada.pl/

IE - HKU\S-1-5-21-1757981266-706699826-725345543-1003\..\URLSearchHook: {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\bar\5.bin\MWSSRCAS.DLL (MyWebSearch.com)

IE - HKU\S-1-5-21-1757981266-706699826-725345543-1003\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Neostrada TP\SearchPageURL.dll ()

IE - HKU\S-1-5-21-1757981266-706699826-725345543-1003\S-1-5-21-1757981266-706699826-725345543-1003\ Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

 

========== FireFox ==========

 

FF - prefs.js..browser.startup.homepage: "http://search.bearshare.com/pl/"

FF - prefs.js..extensions.enabledItems: {5EB37AE4-DA0A-41ab-8037-BDEDDCC70669}:1.0

FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.8.20090123.1

FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0

FF - prefs.js..extensions.enabledItems: orbit_ffext@orbitdownloader:2.0.3

FF - prefs.js..extensions.enabledItems: dave2x@download:0.5.9

FF - prefs.js..keyword.URL: "http://www.mywebsearch.com/jsp/cfg_redir2.jsp?id=ZRxdm185YYPL&fl=0&ptb=9pC82EJIgwezdTu73vcoUQ& url=http://search.mywebsearch.com/mywebsearch/dft_redir.jhtml&st=kwd&gcht=tk&searchfor="

FF - prefs.js..network.proxy.http: "174.142.24.201"

FF - prefs.js..network.proxy.http_port: 3128

FF - prefs.js..network.proxy.type: 4

 

FF - HKLM\software\mozilla\Mozilla Firefox 3.5.6\extensions\\Components: C:\Programy\Mozilla Firefox\components [2009-12-17 19:37:00 | 00,000,000 | ---D | M]

FF - HKLM\software\mozilla\Mozilla Firefox 3.5.6\extensions\\Plugins: C:\Programy\Mozilla Firefox\plugins [2009-12-17 19:36:59 | 00,000,000 | ---D | M]

 

[2008-12-30 17:04:59 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Adam\Dane aplikacji\Mozilla\Extensions

[2009-12-20 18:22:07 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Adam\Dane aplikacji\Mozilla\Firefox\Profiles\5z16dzk4.default\extensions

[2009-07-14 08:44:29 | 00,000,000 | ---D | M] (Greasemonkey) -- C:\Documents and Settings\Adam\Dane aplikacji\Mozilla\Firefox\Profiles\5z16dzk4.default\extensions\{e4a8a97b- f2ed-450b-b12d-ee082ba24781}

[2009-10-02 12:29:36 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Adam\Dane aplikacji\Mozilla\Firefox\Profiles\5z16dzk4.default\extensions\dave2x@download

[2008-12-30 19:14:28 | 00,002,921 | ---- | M] () -- C:\Documents and Settings\Adam\Dane aplikacji\Mozilla\Firefox\Profiles\5z16dzk4.default\searchplugins\daemon- search.xml

[2009-05-15 16:51:14 | 00,009,899 | ---- | M] () -- C:\Documents and Settings\Adam\Dane aplikacji\Mozilla\Firefox\Profiles\5z16dzk4.default\searchplugins\mywebsearch. xml

 

O1 HOSTS File: (742 bytes) - C:\WINDOWS\system32\drivers\etc\hosts

O1 - Hosts: 127.0.0.1 localhost

O2 - BHO: (Octh Class) - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Programy\Orbitdownloader\orbitcth.dll (Orbitdownloader.com)

O2 - BHO: (MyWebSearch Search Assistant BHO) - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\bar\5.bin\MWSSRCAS.DLL (MyWebSearch.com)

O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programy\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)

O2 - BHO: (mwsBar BHO) - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\5.bin\MWSBAR.DLL (MyWebSearch.com)

O2 - BHO: (FG2CatchUrl) - {1F364306-AA45-47B5-9F9D-39A8B94E7EF1} - C:\Programy\FlashGet Network\FlashGet universal\ComDlls\bhoCATCH.dll (FlashGet)

O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)

O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)

O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll (Google Inc.)

O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)

O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)

O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\Adam\Dane aplikacji\Nowe Gadu-Gadu\_userdata\ggbho.1.dll (GG Network S.A.)

O3 - HKLM\..\Toolbar: (My Web Search) - {07B18EA9-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\5.bin\MWSBAR.DLL (MyWebSearch.com)

O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)

O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()

O3 - HKU\S-1-5-21-1757981266-706699826-725345543-1003\..\Toolbar\WebBrowser: (My Web Search) - {07B18EA9-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\5.bin\MWSBAR.DLL (MyWebSearch.com)

O3 - HKU\S-1-5-21-1757981266-706699826-725345543-1003\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)

O3 - HKU\S-1-5-21-1757981266-706699826-725345543-1003\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()

O4 - HKLM..\Run: [36X Raid Configurer] C:\WINDOWS\System32\xRaidSetup.exe (JMicron Technology Corp.)

O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)

O4 - HKLM..\Run: [avast!] C:\Programy\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)

O4 - HKLM..\Run: [inCD] C:\Programy\nero\Nero 7\InCD\InCD.exe (Nero AG)

O4 - HKLM..\Run: [JMB36X IDE Setup] C:\WINDOWS\RaidTool\xInsIDE.exe ()

O4 - HKLM..\Run: [My Web Search Bar Search Scope Monitor] C:\Program Files\MyWebSearch\bar\5.bin\M3SRCHMN.EXE (MyWebSearch.com)

O4 - HKLM..\Run: [MyWebSearch Email Plugin] C:\Program Files\MyWebSearch\bar\5.bin\MWSOEMON.EXE (MyWebSearch.com)

O4 - HKLM..\Run: [MyWebSearch Plugin] C:\Program Files\MyWebSearch\bar\5.bin\M3PLUGIN.DLL (MyWebSearch.com)

O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)

O4 - HKLM..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe (Nokia)

O4 - HKLM..\Run: [PWRISOVM.EXE] C:\Programy\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.)

O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\qttask.exe (Apple Inc.)

O4 - HKLM..\Run: [RTHDCPL] C:\WINDOWS\RTHDCPL.exe (Realtek Semiconductor Corp.)

O4 - HKLM..\Run: [securDisc] C:\Programy\nero\Nero 7\InCD\NBHGui.exe (Nero AG)

O4 - HKLM..\Run: [startCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)

O4 - HKLM..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)

O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)

O4 - HKLM..\Run: [WinampAgent] C:\Programy\Winamp\winampa.exe ()

O4 - HKLM..\Run: [WooCnxMon] C:\Program Files\Neostrada TP\CnxMon.exe ()

O4 - HKLM..\Run: [WOOTASKBARICON] C:\Program Files\Neostrada TP\TaskBarIcon.exe (France Télécom R&D)

O4 - HKLM..\Run: [WOOWATCH] C:\Program Files\Neostrada TP\Watch.exe (France Télécom R&D)

O4 - HKU\S-1-5-21-1757981266-706699826-725345543-1003..\Run: [amva] C:\WINDOWS\System32\amvo.exe File not found

O4 - HKU\S-1-5-21-1757981266-706699826-725345543-1003..\Run: [cdoosoft] C:\DOCUME~1\Adam\USTAWI~1\Temp\herss.exe File not found

O4 - HKU\S-1-5-21-1757981266-706699826-725345543-1003..\Run: [DAEMON Tools Lite] C:\Programy\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)

O4 - HKU\S-1-5-21-1757981266-706699826-725345543-1003..\Run: [Gadu-Gadu] C:\Programy\Gadu-Gadu\gg.exe (Gadu-Gadu S.A.)

O4 - HKU\S-1-5-21-1757981266-706699826-725345543-1003..\Run: [kamsoft] C:\WINDOWS\System32\ckvo.exe File not found

O4 - HKU\S-1-5-21-1757981266-706699826-725345543-1003..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe (Hewlett-Packard Company)

O4 - HKU\S-1-5-21-1757981266-706699826-725345543-1003..\Run: [MyWebSearch Email Plugin] C:\Program Files\MyWebSearch\bar\5.bin\MWSOEMON.EXE (MyWebSearch.com)

O4 - HKU\S-1-5-21-1757981266-706699826-725345543-1003..\Run: [Nowe Gadu-Gadu] C:\Program Files\Nowe Gadu-Gadu\gg.exe (GG Network S.A.)

O4 - HKU\S-1-5-21-1757981266-706699826-725345543-1003..\Run: [PcSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe (Time Information Services Ltd.)

O4 - HKU\S-1-5-21-1757981266-706699826-725345543-1003..\Run: [RGSC] C:\GRY\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe (Take-Two Interactive Software, Inc.)

O4 - HKU\S-1-5-21-1757981266-706699826-725345543-1003..\Run: [skype] C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)

O4 - HKU\S-1-5-21-1757981266-706699826-725345543-1003..\Run: [steam] C:\GRY\Steam\Steam.exe (Valve Corporation)

O4 - HKU\S-1-5-21-1757981266-706699826-725345543-1003..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)

O4 - Startup: C:\Documents and Settings\Adam\Menu Start\Programy\Autostart\OpenOffice.org 3.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()

O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe ()

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1

O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-21-1757981266-706699826-725345543-1003\SOFTWARE\Microsoft\Windows\ CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O8 - Extra context menu item: &Download All by FlashGet - C:\Programy\FlashGet Network\FlashGet universal\ComDlls\Bhoall.htm ()

O8 - Extra context menu item: &Download by FlashGet - C:\Programy\FlashGet Network\FlashGet universal\ComDlls\Bholink.htm ()

O8 - Extra context menu item: &Download by Orbit - C:\Programy\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)

O8 - Extra context menu item: &Grab video by Orbit - C:\Programy\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)

O8 - Extra context menu item: Do&wnload selected by Orbit - C:\Programy\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)

O8 - Extra context menu item: Down&load all by Orbit - C:\Programy\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)

O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll (Google Inc.)

O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)

O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.

O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} http://appldnld.appl...ex/qtplugin.cab (QuickTime Plugin Control)

O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} http://ak.exe.imgfar...etup1.0.1.1.cab (Reg Error: Key error.)

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://dl8-cdn-09.su...ows-i586-jc.cab (Java Plug-in 1.6.0_13)

O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.ma...r/ultrashim.cab (Reg Error: Key error.)

O16 - DPF: {CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA} http://java.sun.com/..._4_0_03-win.cab (Java Plug-in 1.4.0_03)

O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_13)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_13)

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macr...ash/swflash.cab (Shockwave Flash Object)

O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)

O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)

O24 - Desktop Components:0 (Moja bieżąca strona główna) - about:Home

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2008-12-30 15:44:00 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]

O33 - MountPoints2\{5b79d18d-d685-11dd-9a44-806d6172696f}\Shell - "" = AutoRun

O33 - MountPoints2\{5b79d18d-d685-11dd-9a44-806d6172696f}\Shell\AutoRun\command - "" = D:\setup.exe -- File not found

O33 - MountPoints2\{6a239ca0-3971-11de-823d-4d6564696130}\Shell\AutoRun\command - "" = F:\d6fagcs8.cmd -- File not found

O33 - MountPoints2\{6a239ca0-3971-11de-823d-4d6564696130}\Shell\explore\Command - "" = F:\d6fagcs8.cmd -- File not found

O33 - MountPoints2\{6a239ca0-3971-11de-823d-4d6564696130}\Shell\open\Command - "" = F:\d6fagcs8.cmd -- File not found

O33 - MountPoints2\{90a35c6b-d68b-11dd-97f0-4d6564696130}\Shell\AutoRun\command - "" = F:\eexyv.exe -- File not found

O33 - MountPoints2\{90a35c6b-d68b-11dd-97f0-4d6564696130}\Shell\open\Command - "" = F:\eexyv.exe -- File not found

O33 - MountPoints2\{fe80e58e-fa85-11dd-81e2-4d6564696130}\Shell\AutoRun\command - "" = F:\2fiy.bat -- File not found

O33 - MountPoints2\{fe80e58e-fa85-11dd-81e2-4d6564696130}\Shell\open\Command - "" = F:\2fiy.bat -- File not found

O34 - HKLM BootExecute: (autocheck autochk *) - File not found

O35 - comfile [open] -- "%1" %*

O35 - exefile [open] -- "%1" %*

 

NetSvcs: 6to4 - File not found

NetSvcs: Ias - C:\WINDOWS\system32\ias [2008-12-30 16:27:00 | 00,000,000 | ---D | M]

NetSvcs: Iprip - File not found

NetSvcs: Irmon - File not found

NetSvcs: NWCWorkstation - File not found

NetSvcs: Nwsapagent - File not found

NetSvcs: WmdmPmSp - File not found

 

========== Files/Folders - Created Within 30 Days ==========

 

[2009-12-19 09:41:06 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Adam\Dane aplikacji\OpenOffice.org

[2009-12-19 09:39:53 | 00,000,000 | ---D | C] -- C:\Program Files\OpenOffice.org 3

[2009-12-15 16:25:01 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Office

[2009-12-15 16:24:54 | 00,000,000 | ---D | C] -- C:\Program Files\MSECache

[2009-12-13 14:58:58 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Adam\Pulpit\Nowy folder

[2009-11-28 18:12:13 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Adam\Moje dokumenty\pieski

[2009-07-03 10:19:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Google

[2009-04-08 20:46:20 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Google

[2009-03-25 17:56:02 | 00,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft

[2009-01-02 10:50:55 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft

[2008-12-30 15:47:11 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft

[2008-12-30 15:43:57 | 00,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft

[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

 

========== Files - Modified Within 30 Days ==========

 

[2009-12-21 14:24:00 | 00,001,036 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

[2009-12-21 12:42:41 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl

[2009-12-21 12:41:09 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT

[2009-12-21 12:41:05 | 00,069,112 | ---- | M] () -- C:\WINDOWS\System32\ativvaxx.cap

[2009-12-21 12:41:05 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat

[2009-12-21 00:02:16 | 07,340,032 | ---- | M] () -- C:\Documents and Settings\Adam\ntuser.dat

[2009-12-21 00:02:16 | 00,000,188 | -HS- | M] () -- C:\Documents and Settings\Adam\ntuser.ini

[2009-12-20 15:24:00 | 00,001,032 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job

[2009-12-19 15:08:21 | 00,162,515 | ---- | M] () -- C:\Documents and Settings\Adam\Pulpit\scenki z jezyka angielskiego.odp

[2009-12-19 10:42:21 | 00,022,736 | ---- | M] () -- C:\Documents and Settings\Adam\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT

[2009-12-19 10:40:55 | 00,138,056 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT

[2009-12-19 09:41:31 | 00,000,864 | ---- | M] () -- C:\Documents and Settings\Adam\Menu Start\Programy\Autostart\OpenOffice.org 3.1.lnk

[2009-12-19 09:40:31 | 00,000,967 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\OpenOffice.org 3.1.lnk

[2009-12-18 15:55:03 | 00,156,160 | ---- | M] () -- C:\Documents and Settings\Adam\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2009-12-15 19:27:47 | 04,345,971 | ---- | M] () -- C:\Documents and Settings\Adam\Pulpit\mariah carey - all i want for christams is you.mp3.mp3

[2009-12-15 19:24:03 | 04,076,387 | ---- | M] () -- C:\Documents and Settings\Adam\Pulpit\celine dion - happy christmas.mp3.mp3

[2009-12-15 19:23:49 | 06,461,681 | ---- | M] () -- C:\Documents and Settings\Adam\Pulpit\wham - last christmas.mp3.mp3

[2009-12-15 19:19:12 | 04,847,103 | ---- | M] () -- C:\Documents and Settings\Adam\Pulpit\luther vandross - at cristmas time.mp3.mp3

[2009-12-15 19:13:56 | 03,929,684 | ---- | M] () -- C:\Documents and Settings\Adam\Pulpit\bryan adams - something about christmas time.mp3.mp3

[2009-12-13 15:39:28 | 79,632,8870 | ---- | M] () -- C:\Documents and Settings\Adam\Pulpit\Dziki_(The_Wild_One).avi

[2009-12-13 15:12:33 | 00,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini

[2009-12-12 00:57:15 | 01,087,636 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI

[2009-12-12 00:57:15 | 00,490,284 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat

[2009-12-12 00:57:15 | 00,432,356 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat

[2009-12-12 00:57:15 | 00,083,660 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat

[2009-12-12 00:57:15 | 00,067,312 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat

[2009-12-11 20:20:36 | 50,849,7920 | ---- | M] () -- C:\Documents and Settings\Adam\Pulpit\Waterloo_Bridge_(1940).avi

[2009-12-11 20:15:25 | 73,725,5424 | ---- | M] () -- C:\Documents and Settings\Adam\Pulpit\M_jak_morderstwo_(Dial_M_for_Murder).avi

[2009-12-11 19:38:15 | 72,770,5600 | ---- | M] () -- C:\Documents and Settings\Adam\Pulpit\Na_nabrzeĹĽach_(On_the_Waterfront)_.avi

[2009-12-11 01:11:39 | 00,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK

[2009-12-11 01:00:41 | 72,071,5934 | ---- | M] () -- C:\Documents and Settings\Adam\Pulpit\Tramwaj_zwany_poĹĽÄ…daniem_(A_Streetcar_Named_Desire).avi

[2009-12-10 18:21:08 | 04,315,846 | ---- | M] () -- C:\Documents and Settings\Adam\Pulpit\edith piaf - milord.mp3.mp3

[2009-12-10 13:25:47 | 03,371,676 | ---- | M] () -- C:\Documents and Settings\Adam\Pulpit\roy orbison - you got it.mp3.mp3

[2009-12-10 13:17:46 | 04,209,684 | ---- | M] () -- C:\Documents and Settings\Adam\Pulpit\queen - the show must go on.mp3.mp3

[2009-12-08 16:16:04 | 00,010,707 | ---- | M] () -- C:\Documents and Settings\Adam\Moje dokumenty\geografia.rtf

[2009-12-06 00:45:50 | 00,115,429 | ---- | M] () -- C:\Documents and Settings\Adam\Pulpit\Zdjęcie0187.jpg

[2009-12-06 00:45:04 | 00,091,136 | -H-- | M] () -- C:\Documents and Settings\Adam\Pulpit\photothumb.db

[2009-12-05 11:49:54 | 00,213,676 | ---- | M] () -- C:\Documents and Settings\Adam\Moje dokumenty\Dokument.rtf

[2009-12-05 09:36:23 | 00,002,645 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT

[2009-12-04 19:49:56 | 00,043,805 | ---- | M] () -- C:\Documents and Settings\Adam\Pulpit\Zdjęcie0195.jpg

[2009-12-04 19:48:52 | 00,045,063 | ---- | M] () -- C:\Documents and Settings\Adam\Pulpit\Zdjęcie0191.jpg

[2009-12-04 19:44:46 | 00,043,962 | ---- | M] () -- C:\Documents and Settings\Adam\Pulpit\Zdjęcie0182.jpg

[2009-12-04 19:41:04 | 00,050,689 | ---- | M] () -- C:\Documents and Settings\Adam\Pulpit\Zdjęcie0177.jpg

[2009-12-04 19:36:24 | 00,047,888 | ---- | M] () -- C:\Documents and Settings\Adam\Pulpit\Zdjęcie0169.jpg

[2009-12-04 19:34:46 | 00,046,709 | ---- | M] () -- C:\Documents and Settings\Adam\Pulpit\Zdjęcie0165.jpg

[2009-12-04 17:03:42 | 00,031,515 | ---- | M] () -- C:\Documents and Settings\Adam\Pulpit\ea0b91b69a.jpg

[2009-11-25 00:54:29 | 01,280,480 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe

[2009-11-25 00:51:09 | 00,093,424 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys

[2009-11-25 00:50:59 | 00,094,160 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys

[2009-11-25 00:50:12 | 00,114,768 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys

[2009-11-25 00:50:00 | 00,020,560 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys

[2009-11-25 00:49:07 | 00,048,560 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys

[2009-11-25 00:48:57 | 00,023,120 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys

[2009-11-25 00:47:54 | 00,027,408 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys

[2009-11-25 00:47:28 | 00,097,480 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\AvastSS.scr

[2009-11-22 19:43:31 | 00,000,000 | ---- | M] () -- C:\Documents and Settings\Adam\Moje dokumenty\TOTEM TANTRA.pps

[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

 

========== Files Created - No Company Name ==========

 

[2009-12-20 22:18:58 | 00,034,515 | ---- | C] () -- C:\Documents and Settings\Adam\Pulpit\873282649.jpg

[2009-12-20 22:07:12 | 00,031,515 | ---- | C] () -- C:\Documents and Settings\Adam\Pulpit\ea0b91b69a.jpg

[2009-12-19 15:06:30 | 00,162,515 | ---- | C] () -- C:\Documents and Settings\Adam\Pulpit\scenki z jezyka angielskiego.odp

[2009-12-19 09:41:31 | 00,000,864 | ---- | C] () -- C:\Documents and Settings\Adam\Menu Start\Programy\Autostart\OpenOffice.org 3.1.lnk

[2009-12-19 09:40:31 | 00,000,967 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\OpenOffice.org 3.1.lnk

[2009-12-15 19:27:47 | 04,345,971 | ---- | C] () -- C:\Documents and Settings\Adam\Pulpit\mariah carey - all i want for christams is you.mp3.mp3

[2009-12-15 19:24:03 | 04,076,387 | ---- | C] () -- C:\Documents and Settings\Adam\Pulpit\celine dion - happy christmas.mp3.mp3

[2009-12-15 19:23:49 | 06,461,681 | ---- | C] () -- C:\Documents and Settings\Adam\Pulpit\wham - last christmas.mp3.mp3

[2009-12-15 19:19:12 | 04,847,103 | ---- | C] () -- C:\Documents and Settings\Adam\Pulpit\luther vandross - at cristmas time.mp3.mp3

[2009-12-15 19:13:56 | 03,929,684 | ---- | C] () -- C:\Documents and Settings\Adam\Pulpit\bryan adams - something about christmas time.mp3.mp3

[2009-12-13 15:38:54 | 79,632,8870 | ---- | C] () -- C:\Documents and Settings\Adam\Pulpit\Dziki_(The_Wild_One).avi

[2009-12-11 20:20:02 | 50,849,7920 | ---- | C] () -- C:\Documents and Settings\Adam\Pulpit\Waterloo_Bridge_(1940).avi

[2009-12-11 20:14:22 | 73,725,5424 | ---- | C] () -- C:\Documents and Settings\Adam\Pulpit\M_jak_morderstwo_(Dial_M_for_Murder).avi

[2009-12-11 19:37:09 | 72,770,5600 | ---- | C] () -- C:\Documents and Settings\Adam\Pulpit\Na_nabrzeĹĽach_(On_the_Waterfront)_.avi

[2009-12-11 01:00:02 | 72,071,5934 | ---- | C] () -- C:\Documents and Settings\Adam\Pulpit\Tramwaj_zwany_poĹĽÄ…daniem_(A_Streetcar_Named_Desire).avi

[2009-12-10 18:21:08 | 04,315,846 | ---- | C] () -- C:\Documents and Settings\Adam\Pulpit\edith piaf - milord.mp3.mp3

[2009-12-10 13:25:47 | 03,371,676 | ---- | C] () -- C:\Documents and Settings\Adam\Pulpit\roy orbison - you got it.mp3.mp3

[2009-12-10 13:17:46 | 04,209,684 | ---- | C] () -- C:\Documents and Settings\Adam\Pulpit\queen - the show must go on.mp3.mp3

[2009-12-08 16:16:04 | 00,010,707 | ---- | C] () -- C:\Documents and Settings\Adam\Moje dokumenty\geografia.rtf

[2009-12-05 12:53:42 | 00,115,429 | ---- | C] () -- C:\Documents and Settings\Adam\Pulpit\Zdjęcie0187.jpg

[2009-12-05 12:53:42 | 00,045,063 | ---- | C] () -- C:\Documents and Settings\Adam\Pulpit\Zdjęcie0191.jpg

[2009-12-05 12:53:42 | 00,043,805 | ---- | C] () -- C:\Documents and Settings\Adam\Pulpit\Zdjęcie0195.jpg

[2009-12-05 12:53:41 | 00,043,962 | ---- | C] () -- C:\Documents and Settings\Adam\Pulpit\Zdjęcie0182.jpg

[2009-12-05 12:53:36 | 00,050,689 | ---- | C] () -- C:\Documents and Settings\Adam\Pulpit\Zdjęcie0177.jpg

[2009-12-05 12:53:20 | 00,047,888 | ---- | C] () -- C:\Documents and Settings\Adam\Pulpit\Zdjęcie0169.jpg

[2009-12-05 12:53:11 | 00,046,709 | ---- | C] () -- C:\Documents and Settings\Adam\Pulpit\Zdjęcie0165.jpg

[2009-11-22 19:43:31 | 00,000,000 | ---- | C] () -- C:\Documents and Settings\Adam\Moje dokumenty\TOTEM TANTRA.pps

[2009-11-15 15:59:40 | 00,001,131 | ---- | C] () -- C:\WINDOWS\ARCHPR.INI

[2009-08-08 02:18:10 | 00,474,792 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat

[2009-06-19 19:06:22 | 00,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll

[2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll

[2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll

[2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll

[2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll

[2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll

[2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll

[2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll

[2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll

[2009-06-19 19:06:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll

[2009-05-10 18:08:55 | 00,281,504 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys

[2009-05-10 18:08:54 | 00,025,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys

[2009-04-08 17:56:07 | 00,076,407 | ---- | C] () -- C:\Documents and Settings\Adam\Dane aplikacji\Smiley.ico

[2009-02-25 14:54:22 | 00,129,024 | ---- | C] () -- C:\WINDOWS\System32\AVERM.dll

[2009-02-15 14:41:22 | 00,000,849 | ---- | C] () -- C:\Documents and Settings\Adam\Dane aplikacji\NMM-MetaData.db

[2009-01-16 17:36:37 | 00,047,104 | ---- | C] () -- C:\WINDOWS\System32\KMVIDC32.DLL

[2009-01-16 14:34:18 | 00,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini

[2009-01-16 14:32:20 | 00,156,160 | ---- | C] () -- C:\Documents and Settings\Adam\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2008-12-30 23:09:47 | 00,004,767 | ---- | C] () -- C:\WINDOWS\Irremote.ini

[2008-12-30 19:26:19 | 00,138,464 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys

[2008-12-30 19:26:19 | 00,022,328 | ---- | C] () -- C:\Documents and Settings\Adam\Dane aplikacji\PnkBstrK.sys

[2008-12-30 17:51:16 | 00,164,352 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll

[2008-12-30 17:51:16 | 00,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini

[2008-12-30 17:51:13 | 03,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll

[2008-12-30 17:51:13 | 00,755,027 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll

[2008-12-30 17:51:13 | 00,159,839 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll

[2008-12-30 17:51:11 | 00,007,680 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll

[2008-12-30 17:51:11 | 00,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest

[2008-12-30 17:45:15 | 00,721,904 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys

[2008-12-30 16:22:12 | 00,000,154 | ---- | C] () -- C:\WINDOWS\adidsl.ini

[2008-12-30 16:22:12 | 00,000,021 | ---- | C] () -- C:\WINDOWS\Fast800.ini

[2008-12-30 16:22:09 | 00,000,342 | ---- | C] () -- C:\WINDOWS\adiras.ini

[2008-12-30 16:22:08 | 00,126,976 | ---- | C] () -- C:\WINDOWS\System32\coclassfast.dll

[2008-12-30 16:22:08 | 00,046,892 | ---- | C] () -- C:\WINDOWS\System32\adadix16.dll

[2008-12-30 16:21:48 | 00,041,068 | ---- | C] () -- C:\WINDOWS\System32\ActPanel.dll

[2008-10-28 17:40:48 | 00,173,552 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat

[2005-12-07 12:31:00 | 00,202,752 | R--- | C] () -- C:\WINDOWS\System32\CddbCdda.dll

[1996-04-03 20:33:26 | 00,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys

 

========== LOP Check ==========

 

[2009-02-19 23:48:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Adam\Dane aplikacji\BESTplayer

[2009-12-16 21:09:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Adam\Dane aplikacji\BITS

[2008-12-31 18:15:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Adam\Dane aplikacji\Capcom

[2009-05-11 11:35:03 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Adam\Dane aplikacji\DAEMON Tools

[2009-05-11 11:35:03 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Adam\Dane aplikacji\DAEMON Tools Lite

[2009-05-11 11:35:03 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Adam\Dane aplikacji\DAEMON Tools Pro

[2009-02-15 14:41:25 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Adam\Dane aplikacji\Datalayer

[2008-12-30 17:47:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Adam\Dane aplikacji\Gadu-Gadu

[2009-03-17 18:24:50 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Adam\Dane aplikacji\Grand Ages Rome

[2009-02-11 15:42:09 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Adam\Dane aplikacji\gtk-2.0

[2008-12-31 18:05:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Adam\Dane aplikacji\Leadertech

[2009-02-15 14:39:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Adam\Dane aplikacji\Nokia

[2009-02-19 13:13:17 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Adam\Dane aplikacji\Nokia Multimedia Player

[2009-12-20 19:07:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Adam\Dane aplikacji\Nowe Gadu-Gadu

[2009-07-07 22:31:05 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Adam\Dane aplikacji\OpenFM

[2009-12-19 09:41:06 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Adam\Dane aplikacji\OpenOffice.org

[2009-12-19 23:49:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Adam\Dane aplikacji\Orbit

[2009-02-14 18:12:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Adam\Dane aplikacji\PC Suite

[2009-02-15 16:05:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Adam\Dane aplikacji\Sports Interactive

[2009-09-25 15:07:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Adam\Dane aplikacji\uTorrent

[2009-06-13 12:42:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\10167

[2009-07-02 21:51:01 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\1242

[2009-06-23 13:54:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\18109

[2009-05-13 16:14:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\181D4

[2009-04-08 17:56:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\2338A

[2009-08-03 09:27:37 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\25186

[2009-08-04 21:35:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\2A167

[2009-07-02 12:27:43 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\2B1C1

[2009-09-07 15:35:53 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\353B9

[2009-06-13 19:29:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\382AF

[2009-08-08 22:30:09 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\9119

[2009-06-22 12:36:10 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\A1F4

[2009-02-11 16:19:36 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Avery

[2009-05-11 11:34:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite

[2009-02-14 18:11:53 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Downloaded Installations

[2009-10-30 21:16:22 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\KONAMI

[2008-12-31 16:42:57 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\LightScribe

[2009-02-14 18:12:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite

[2009-02-15 16:16:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Sports Interactive

[2009-05-24 18:40:11 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Tages

[2009-04-08 21:45:16 | 00,000,260 | ---- | M] () -- C:\WINDOWS\Tasks\WGASetup.job

 

========== Purity Check ==========

 

 

 

========== Custom Scans ==========

 

 

< %systemdrive%\*.* >

[2008-12-30 15:44:00 | 00,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT

[2008-12-30 15:38:51 | 00,000,211 | -HS- | M] () -- C:\boot.ini

[2001-07-22 01:13:54 | 00,004,952 | RHS- | M] () -- C:\Bootfont.bin

[2009-01-25 19:01:57 | 00,002,749 | ---- | M] () -- C:\Bug.txt

[2008-12-30 15:44:00 | 00,000,000 | ---- | M] () -- C:\CONFIG.SYS

[2008-12-30 15:44:00 | 00,000,000 | RHS- | M] () -- C:\IO.SYS

[2008-12-30 15:44:00 | 00,000,000 | RHS- | M] () -- C:\MSDOS.SYS

[2004-08-03 21:38:34 | 00,047,564 | RHS- | M] () -- C:\NTDETECT.COM

[2009-01-02 10:39:00 | 00,251,152 | RHS- | M] () -- C:\ntldr

[2009-12-21 12:41:02 | 21,453,86496 | -HS- | M] () -- C:\pagefile.sys

[2009-06-13 19:39:13 | 00,000,000 | ---- | M] () -- C:\testwma.raw

< End of report >[/log]

Udostępnij tę odpowiedź


Odnośnik do odpowiedzi
Udostępnij na innych stronach

Tzn katalog C:\Documents and Settings\Adam\Moje dokumenty sie nie otwiera? Jak wkleisz w uruchom to tez sie nie otwiera?

 

Co masz w tych katalogach?

C:\Documents and Settings\All Users\Dane aplikacji\10167

C:\Documents and Settings\All Users\Dane aplikacji\1242

C:\Documents and Settings\All Users\Dane aplikacji\18109

C:\Documents and Settings\All Users\Dane aplikacji\181D4

C:\Documents and Settings\All Users\Dane aplikacji\2338A

C:\Documents and Settings\All Users\Dane aplikacji\25186

C:\Documents and Settings\All Users\Dane aplikacji\2A167

C:\Documents and Settings\All Users\Dane aplikacji\2B1C1

C:\Documents and Settings\All Users\Dane aplikacji\353B9

C:\Documents and Settings\All Users\Dane aplikacji\382AF

C:\Documents and Settings\All Users\Dane aplikacji\9119

C:\Documents and Settings\All Users\Dane aplikacji\A1F4

 

Jezeli sa puste to do kasacji.

 

Odinstaluj: MyWebSearch oraz DAEMON Tools Toolbar.

 

Zrob skan przy pomocy cureit oraz mbam i usun znalezione infekcje.

 

Wklej do OTL:

 

:OTL

IE - HKU\S-1-5-21-1757981266-706699826-725345543-1003\..\URLSearchHook: {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\bar\5.bin\MWSSRCAS.DLL (MyWebSearch.com)

IE - HKU\S-1-5-21-1757981266-706699826-725345543-1003\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Neostrada TP\SearchPageURL.dll ()

FF - prefs.js..browser.startup.homepage: "http://search.bearshare.com/pl/"

FF - prefs.js..keyword.URL: "http://www.mywebsearch.com/jsp/cfg_redir2.jsp?id=ZRxdm185YYPL&fl=0&ptb=9pC82EJIgwezdTu73vcoUQ& url=http://search.mywebsearch.com/mywebsearch/dft_redir.jhtml&st=kwd&gcht=tk&searchfor="

O2 - BHO: (MyWebSearch Search Assistant BHO) - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\bar\5.bin\MWSSRCAS.DLL (MyWebSearch.com)

O2 - BHO: (mwsBar BHO) - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\5.bin\MWSBAR.DLL (MyWebSearch.com)

O3 - HKLM\..\Toolbar: (My Web Search) - {07B18EA9-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\5.bin\MWSBAR.DLL (MyWebSearch.com)

O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()

O3 - HKU\S-1-5-21-1757981266-706699826-725345543-1003\..\Toolbar\WebBrowser: (My Web Search) - {07B18EA9-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\5.bin\MWSBAR.DLL (MyWebSearch.com)

O3 - HKU\S-1-5-21-1757981266-706699826-725345543-1003\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()

O4 - HKLM..\Run: [My Web Search Bar Search Scope Monitor] C:\Program Files\MyWebSearch\bar\5.bin\M3SRCHMN.EXE (MyWebSearch.com)

O4 - HKLM..\Run: [MyWebSearch Email Plugin] C:\Program Files\MyWebSearch\bar\5.bin\MWSOEMON.EXE (MyWebSearch.com)

O4 - HKLM..\Run: [MyWebSearch Plugin] C:\Program Files\MyWebSearch\bar\5.bin\M3PLUGIN.DLL (MyWebSearch.com)

O4 - HKU\S-1-5-21-1757981266-706699826-725345543-1003..\Run: [amva] C:\WINDOWS\System32\amvo.exe File not found

O4 - HKU\S-1-5-21-1757981266-706699826-725345543-1003..\Run: [cdoosoft] C:\DOCUME~1\Adam\USTAWI~1\Temp\herss.exe File not found

O4 - HKU\S-1-5-21-1757981266-706699826-725345543-1003..\Run: [kamsoft] C:\WINDOWS\System32\ckvo.exe File not found

O4O4 - HKU\S-1-5-21-1757981266-706699826-725345543-1003..\Run: [MyWebSearch Email Plugin] C:\Program Files\MyWebSearch\bar\5.bin\MWSOEMON.EXE (MyWebSearch.com)

O33 - MountPoints2\{5b79d18d-d685-11dd-9a44-806d6172696f}\Shell - "" = AutoRun

O33 - MountPoints2\{5b79d18d-d685-11dd-9a44-806d6172696f}\Shell\AutoRun\command - "" = D:\setup.exe -- File not found

O33 - MountPoints2\{6a239ca0-3971-11de-823d-4d6564696130}\Shell\AutoRun\command - "" = F:\d6fagcs8.cmd -- File not found

O33 - MountPoints2\{6a239ca0-3971-11de-823d-4d6564696130}\Shell\explore\Command - "" = F:\d6fagcs8.cmd -- File not found

O33 - MountPoints2\{6a239ca0-3971-11de-823d-4d6564696130}\Shell\open\Command - "" = F:\d6fagcs8.cmd -- File not found

O33 - MountPoints2\{90a35c6b-d68b-11dd-97f0-4d6564696130}\Shell\AutoRun\command - "" = F:\eexyv.exe -- File not found

O33 - MountPoints2\{90a35c6b-d68b-11dd-97f0-4d6564696130}\Shell\open\Command - "" = F:\eexyv.exe -- File not found

O33 - MountPoints2\{fe80e58e-fa85-11dd-81e2-4d6564696130}\Shell\AutoRun\command - "" = F:\2fiy.bat -- File not found

O33 - MountPoints2\{fe80e58e-fa85-11dd-81e2-4d6564696130}\Shell\open\Command - "" = F:\2fiy.bat -- File not found

 

:Files

C:\Documents and Settings\Adam\Dane aplikacji\Mozilla\Firefox\Profiles\5z16dzk4.default\searchplugins\daemon- search.xml

C:\Documents and Settings\Adam\Dane aplikacji\Mozilla\Firefox\Profiles\5z16dzk4.default\searchplugins\mywebsearch. xml

 

:Commands

[emptytemp]

 

 

 

Po wszystkim zainstaluj i uzyj Panda USB Vaccine.

Edytowane przez Kolobos

Udostępnij tę odpowiedź


Odnośnik do odpowiedzi
Udostępnij na innych stronach

Dołącz do dyskusji

Możesz dodać zawartość już teraz a zarejestrować się później. Jeśli posiadasz już konto, zaloguj się aby dodać zawartość za jego pomocą.

Gość
Dodaj odpowiedź do tematu...

×   Wklejono zawartość z formatowaniem.   Przywróć formatowanie

  Dozwolonych jest tylko 75 emoji.

×   Odnośnik został automatycznie osadzony.   Przywróć wyświetlanie jako odnośnik

×   Przywrócono poprzednią zawartość.   Wyczyść edytor

×   Nie możesz bezpośrednio wkleić grafiki. Dodaj lub załącz grafiki z adresu URL.

Ładowanie


×
×
  • Dodaj nową pozycję...