vertal Opublikowano 19 Lutego 2010 Zgłoś Opublikowano 19 Lutego 2010 Witam wszystkich. Pierwsze co chciałem z góry przeprosić jeżeli ten temat nie powinien tu być, lecz szczerze mówiąc nie wiedziałem gdzie go stworzyć. Oto mój log z OTL podany poniżej, chciałbym aby ktoś go sprawdził i powiedział mi co mogę wyłączyć aby uzyskać jak najwięcej RAMu oraz chciałbym się dowiedzieć czy nie mam czasem jakiś programów które mogą mi zagrażać. Jestem zielony w tych tematach i sam mogę wyłączyć tylko znane mi programy, lecz większość nic mi nie mówi, dlatego wolę zwrócić się do was o pomoc. Z góry dziękuję. OTL logfile created on: 2010-02-19 22:17:22 - Run 2OTL by OldTimer - Version 3.1.30.1 Folder = C:\Documents and Settings\Wojsław Peruner\Moje dokumenty\PobieranieWindows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstationInternet Explorer (Version = 6.0.2900.5512)Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 80,00% Memory free4,00 Gb Paging File | 4,00 Gb Available in Paging File | 94,00% Paging File freePaging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program FilesDrive C: | 34,18 Gb Total Space | 6,93 Gb Free Space | 20,26% Space Free | Partition Type: NTFSDrive D: | 68,36 Gb Total Space | 21,50 Gb Free Space | 31,45% Space Free | Partition Type: NTFSDrive E: | 50,83 Gb Total Space | 24,90 Gb Free Space | 48,99% Space Free | Partition Type: NTFSF: Drive not present or media not loadedG: Drive not present or media not loadedH: Drive not present or media not loadedI: Drive not present or media not loaded Computer Name: LANETCurrent User Name: Wojsław PerunerLogged in as Administrator. Current Boot Mode: NormalScan Mode: Current userCompany Name Whitelist: OffSkip Microsoft Files: OffFile Age = 30 DaysOutput = Standard ========== Processes (SafeList) ========== PRC - [2010-02-19 21:52:45 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Wojsław Peruner\Moje dokumenty\Pobieranie\OTL.exePRC - [2010-02-18 20:21:18 | 000,908,248 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exePRC - [2009-12-27 22:01:01 | 000,949,376 | ---- | M] (Eset ) -- C:\Program Files\ESET\nod32kui.exePRC - [2009-12-27 22:01:01 | 000,552,064 | ---- | M] (Eset ) -- C:\Program Files\ESET\nod32krn.exePRC - [2009-12-26 11:23:07 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exePRC - [2009-12-26 11:23:07 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exePRC - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exePRC - [2006-10-22 12:22:00 | 000,159,810 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exePRC - [2006-04-10 17:54:14 | 000,241,664 | ---- | M] (ASUSTeK COMPUTER INC.) -- C:\WINDOWS\ATKKBService.exePRC - [2005-09-07 15:35:36 | 000,716,800 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMax4.exePRC - [2005-05-20 10:11:06 | 000,925,696 | R--- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\Core\smax4pnp.exe ========== Modules (SafeList) ========== MOD - [2010-02-19 21:52:45 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Wojsław Peruner\Moje dokumenty\Pobieranie\OTL.exeMOD - [2008-04-14 22:50:36 | 000,586,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mlang.dll ========== Win32 Services (SafeList) ========== SRV - [2009-12-27 22:01:01 | 000,552,064 | ---- | M] (Eset ) [Auto | Running] -- C:\Program Files\Eset\nod32krn.exe -- (NOD32krn)SRV - [2009-12-26 11:23:07 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) [Auto | Running] -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService)SRV - [2009-07-26 06:43:14 | 000,025,832 | ---- | M] (BioWare) [On_Demand | Stopped] -- C:\Program Files\Dragon Age\bin_ship\daupdatersvc.service.exe -- (DAUpdaterSvc)SRV - [2006-10-22 12:22:00 | 000,159,810 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\WINDOWS\system32\nvsvc32.exe -- (NVSvc)SRV - [2006-04-10 17:54:14 | 000,241,664 | ---- | M] (ASUSTeK COMPUTER INC.) [Auto | Running] -- C:\WINDOWS\ATKKBService.exe -- (ATKKeyboardService) ========== Driver Services (SafeList) ========== DRV - [2010-02-06 19:58:25 | 000,278,984 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)DRV - [2010-02-06 19:58:25 | 000,025,416 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)DRV - [2009-12-27 22:01:02 | 000,512,096 | ---- | M] (Eset ) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\amon.sys -- (AMON)DRV - [2009-12-27 22:01:01 | 000,015,424 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\nod32drv.sys -- (nod32drv)DRV - [2009-12-26 21:39:44 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)DRV - [2008-07-04 11:22:36 | 000,044,944 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20)DRV - [2008-04-13 22:09:18 | 000,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv)DRV - [2008-04-13 22:06:06 | 000,144,384 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)DRV - [2006-10-22 12:22:00 | 003,994,624 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)DRV - [2006-07-20 14:39:24 | 000,041,728 | R--- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\jraid.sys -- (JRAID)DRV - [2006-06-14 06:56:00 | 000,012,288 | R--- | M] (ASUSTeK Computer Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\EIO.sys -- (EIO)DRV - [2006-03-02 13:00:00 | 000,100,992 | ---- | M] (VIA Technologies inc,.ltd) [Kernel | Boot | Stopped] -- C:\WINDOWS\system32\drivers\VIAMRAID.SYS -- (viamraid)DRV - [2006-03-02 13:00:00 | 000,017,792 | ---- | M] (Parallel Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink)DRV - [2006-03-02 13:00:00 | 000,005,810 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)DRV - [2006-02-23 04:39:06 | 000,011,264 | R--- | M] (VIA Technologies,Inc) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\xfilt.sys -- (xfilt)DRV - [2006-02-23 04:38:32 | 000,009,728 | R--- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\videX32.sys -- (videX32)DRV - [2006-02-07 12:52:58 | 000,006,912 | R--- | M] (JMicron ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\JGOGO.sys -- (JGOGO)DRV - [2005-12-22 03:22:18 | 000,005,685 | R--- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AsIO.sys -- (AsIO)DRV - [2005-10-18 15:01:38 | 000,011,008 | ---- | M] (ASUSTeK COMPUTER INC.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\atkkbnt.sys -- (asuskbnt)DRV - [2005-10-17 23:48:14 | 000,042,496 | ---- | M] (VIA Technologies, Inc. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\fetnd5bv.sys -- (FETND5BV)DRV - [2005-10-05 18:21:10 | 000,141,312 | R--- | M] (Analog Devices, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ADIHdAud.sys -- (ADIHdAudAddService)DRV - [2005-08-11 14:49:28 | 000,393,088 | R--- | M] (Sensaura) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\senfilt.sys -- (SenFiltService)DRV - [2005-03-04 21:53:00 | 000,127,872 | R--- | M] (Andrea Electronics Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\aeaudio.sys -- (AEAudioService)DRV - [2004-10-27 15:21:30 | 000,145,920 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Hdaudio.sys -- (HdAudAddService)DRV - [2001-08-17 21:13:08 | 000,027,165 | ---- | M] (VIA Technologies, Inc. ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\fetnd5.sys -- (FETNDIS) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = [url="http://www.pcf.pl/"]http://www.pcf.pl/[/url]IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [url="http://www.pcf.pl/"]http://www.pcf.pl/[/url]IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.1.3FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - HKLM\software\mozilla\Mozilla Firefox 3.5.8\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-02-18 20:21:24 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Mozilla Firefox 3.5.8\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-02-18 20:21:24 | 000,000,000 | ---D | M]FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2009-12-26 11:31:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Wojsław Peruner\Dane aplikacji\Mozilla\Extensions[2010-02-19 19:47:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Wojsław Peruner\Dane aplikacji\Mozilla\Firefox\Profiles\5ymm44vl.default\extensions[2010-02-19 19:47:10 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\Wojsław Peruner\Dane aplikacji\Mozilla\Firefox\Profiles\5ymm44vl.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}[2009-12-26 11:26:17 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions[2009-12-02 09:23:35 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml[2009-12-02 09:23:35 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml[2009-12-02 09:23:35 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml[2009-12-02 09:23:35 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml[2009-12-02 09:23:35 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml[2009-12-02 09:23:35 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2010-01-09 20:24:23 | 000,000,804 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hostsO1 - Hosts: 127.0.0.1 localhostO1 - Hosts: 127.0.0.1 q4master.idsoftware.comO1 - Hosts: 127.0.0.1 idnet.ua-corp.comO2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\Wojsław Peruner\Dane aplikacji\Gadu-Gadu 10\_userdata\ggbho.2.dll (GG Network S.A.)O4 - HKLM..\Run: [High Definition Audio Property Page Shortcut] C:\WINDOWS\System32\HdAShCut.exe (Windows ® Server 2003 DDK provider)O4 - HKLM..\Run: [JMB36X Configure] C:\WINDOWS\System32\JMRaidTool.exe (JMicron Technology Corp.)O4 - HKLM..\Run: [KernelFaultCheck] File not foundO4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)O4 - HKLM..\Run: [nod32kui] C:\Program Files\Eset\nod32kui.exe (Eset )O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()O4 - HKLM..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe (Analog Devices, Inc.)O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)O4 - Startup: C:\Documents and Settings\Wojsław Peruner\Menu Start\Programy\Autostart\PMB Media Check Tool.lnk = C:\Program Files\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe (Sony Corporation)O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\System32\imon.dll (Eset )O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\System32\imon.dll (Eset )O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\System32\imon.dll (Eset )O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\System32\imon.dll (Eset )O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\System32\imon.dll (Eset )O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\WINDOWS\System32\imon.dll (Eset )O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.O16 - DPF: {00000075-9980-0010-8000-00AA00389B71} [url="http://codecs.microsoft.com/codecs/i386/voxacm.CAB"]http://codecs.microsoft.com/codecs/i386/voxacm.CAB[/url] (Reg Error: Key error.)O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab"]http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab[/url] (Java Plug-in 1.6.0_17)O16 - DPF: {CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.5.0/jinstall-1_5_0_07-windows-i586.cab"]http://java.sun.com/update/1.5.0/jinstall-...indows-i586.cab[/url] (Java Plug-in 1.5.0_07)O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab"]http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab[/url] (Java Plug-in 1.6.0_17)O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab"]http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab[/url] (Java Plug-in 1.6.0_17)O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} [url="http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab"]http://download.macromedia.com/pub/shockwa...ash/swflash.cab[/url] (Shockwave Flash Object)O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 87.99.33.26 87.99.33.159 87.99.33.160O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:HomeO24 - Desktop WallPaper: C:\Documents and Settings\Wojsław Peruner\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmpO24 - Desktop BackupWallPaper: C:\Documents and Settings\Wojsław Peruner\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmpO32 - HKLM CDRom: AutoRun - 1O32 - AutoRun File - [2009-12-26 10:48:39 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]O33 - MountPoints2\{9ddcb333-f475-11de-a23b-0018f3cef388}\Shell - "" = AutoRunO33 - MountPoints2\I\Shell - "" = AutoRunO34 - HKLM BootExecute: (autocheck autochk *) - File not foundO35 - comfile [open] -- "%1" %*O35 - exefile [open] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2010-02-19 21:53:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump[2010-02-19 14:28:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Wojsław Peruner\Pulpit\Europa Uniwersalis 2 [PL][bart] +2patche[2010-02-11 16:28:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Wojsław Peruner\Pulpit\moto[2010-02-11 01:36:54 | 000,000,000 | ---D | C] -- C:\Downloads[2010-02-11 01:36:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Wojsław Peruner\Dane aplikacji\BitComet[2010-02-11 01:33:43 | 000,000,000 | ---D | C] -- C:\Program Files\BitComet[2010-02-09 22:01:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Wojsław Peruner\Pulpit\KARPACZ do nagrania[2010-02-08 21:36:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Wojsław Peruner\Moje dokumenty\FIFA 10[2010-02-08 21:26:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Wojsław Peruner\Dane aplikacji\Leadertech[2010-02-06 02:01:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Wojsław Peruner\Dane aplikacji\fltk.org[2010-02-06 01:49:10 | 000,000,000 | ---D | C] -- C:\Program Files\ZynAddSubFX[2010-02-04 20:25:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Wojsław Peruner\Pulpit\paczka 3[2010-01-31 21:20:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Wojsław Peruner\Pulpit\komenty[2010-01-24 19:12:53 | 000,000,000 | ---D | C] -- C:\Program Files\Paint.NET[2010-01-24 19:12:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Wojsław Peruner\Ustawienia lokalne\Dane aplikacji\Paint.NET[2010-01-23 21:32:24 | 000,217,088 | ---- | C] (www.helixcommunity.org) -- C:\WINDOWS\System32\yv12vfw.dll[2010-01-23 21:32:24 | 000,118,784 | ---- | C] (fccHandler) -- C:\WINDOWS\System32\ac3acm.acm[2010-01-23 21:32:12 | 000,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack[2010-01-23 03:13:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Wojsław Peruner\Ustawienia lokalne\Dane aplikacji\Identities[2009-12-28 09:33:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft[2009-12-26 15:44:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\ESET[2009-12-26 10:57:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft[2009-12-26 10:54:07 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft[2009-12-26 10:54:07 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ][1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2010-02-19 22:15:53 | 000,088,309 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml[2010-02-19 22:15:44 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT[2010-02-19 22:15:41 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat[2010-02-19 19:46:52 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini[2010-02-19 19:46:49 | 000,088,064 | ---- | M] () -- C:\Documents and Settings\Wojsław Peruner\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini[2010-02-19 14:45:20 | 000,000,528 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Europa Universalis 2.lnk[2010-02-19 01:55:07 | 003,670,016 | -H-- | M] () -- C:\Documents and Settings\Wojsław Peruner\NTUSER.DAT[2010-02-19 01:55:07 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\Wojsław Peruner\ntuser.ini[2010-02-19 01:54:59 | 002,110,914 | -H-- | M] () -- C:\Documents and Settings\Wojsław Peruner\Ustawienia lokalne\Dane aplikacji\IconCache.db[2010-02-18 21:50:23 | 000,001,215 | ---- | M] () -- C:\Documents and Settings\Wojsław Peruner\Pulpit\aaaaaaaaaaaDokument.rtf[2010-02-18 15:11:20 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl[2010-02-11 22:38:42 | 000,000,769 | ---- | M] () -- C:\Documents and Settings\Wojsław Peruner\Pulpit\Skrót do Drumsite.exe.lnk[2010-02-11 13:02:04 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK[2010-02-11 01:34:24 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\BitComet.lnk[2010-02-08 22:25:58 | 000,000,594 | ---- | M] () -- C:\Documents and Settings\Wojsław Peruner\Pulpit\Dokumentnoc.rtf[2010-02-08 21:15:49 | 000,001,439 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\FIFA 10.lnk[2010-02-07 15:32:34 | 000,005,789 | ---- | M] () -- C:\Documents and Settings\Wojsław Peruner\Pulpit\_Lot.rar[2010-02-06 21:47:36 | 000,117,640 | ---- | M] () -- C:\test.htm[2010-02-06 19:58:25 | 000,278,984 | ---- | M] () -- C:\WINDOWS\System32\drivers\atksgt.sys[2010-02-06 19:58:25 | 000,025,416 | ---- | M] () -- C:\WINDOWS\System32\drivers\lirsgt.sys[2010-02-06 01:49:13 | 000,001,647 | ---- | M] () -- C:\Documents and Settings\Wojsław Peruner\Pulpit\ZynAddSubFX.lnk[2010-02-01 19:15:30 | 000,000,623 | ---- | M] () -- C:\Documents and Settings\Wojsław Peruner\Pulpit\Dokumenmordercyt.rtf[2010-01-31 14:43:44 | 000,148,999 | ---- | M] () -- C:\Documents and Settings\Wojsław Peruner\Pulpit\IMG_9084-006.JPG[2010-01-27 19:02:51 | 000,000,421 | ---- | M] () -- C:\Documents and Settings\Wojsław Peruner\Pulpit\Dokumehhnt.rtf[2010-01-26 00:07:32 | 000,045,056 | ---- | M] () -- C:\Documents and Settings\Wojsław Peruner\Pulpit\dawidek CV9.doc[2010-01-25 23:39:12 | 000,013,824 | ---- | M] () -- C:\Documents and Settings\Wojsław Peruner\Pulpit\list motywacyjny dejwidrr.doc[2010-01-24 19:16:10 | 000,000,812 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Paint.NET.lnk[2010-01-24 19:12:31 | 000,017,280 | ---- | M] () -- C:\Documents and Settings\Wojsław Peruner\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ][1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] ========== Files Created - No Company Name ========== [2010-02-19 14:45:20 | 000,000,528 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Europa Universalis 2.lnk[2010-02-18 20:29:25 | 000,001,215 | ---- | C] () -- C:\Documents and Settings\Wojsław Peruner\Pulpit\aaaaaaaaaaaDokument.rtf[2010-02-11 01:34:24 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\BitComet.lnk[2010-02-08 22:25:58 | 000,000,594 | ---- | C] () -- C:\Documents and Settings\Wojsław Peruner\Pulpit\Dokumentnoc.rtf[2010-02-08 21:15:49 | 000,001,439 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\FIFA 10.lnk[2010-02-07 15:32:34 | 000,005,789 | ---- | C] () -- C:\Documents and Settings\Wojsław Peruner\Pulpit\_Lot.rar[2010-02-06 19:58:25 | 000,278,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys[2010-02-06 19:58:25 | 000,025,416 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys[2010-02-06 01:49:13 | 000,001,647 | ---- | C] () -- C:\Documents and Settings\Wojsław Peruner\Pulpit\ZynAddSubFX.lnk[2010-02-01 19:15:30 | 000,000,623 | ---- | C] () -- C:\Documents and Settings\Wojsław Peruner\Pulpit\Dokumenmordercyt.rtf[2010-01-31 14:43:44 | 000,148,999 | ---- | C] () -- C:\Documents and Settings\Wojsław Peruner\Pulpit\IMG_9084-006.JPG[2010-01-27 19:02:51 | 000,000,421 | ---- | C] () -- C:\Documents and Settings\Wojsław Peruner\Pulpit\Dokumehhnt.rtf[2010-01-24 19:13:09 | 000,000,812 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Paint.NET.lnk[2010-01-23 21:32:33 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini[2010-01-23 21:32:25 | 000,000,414 | ---- | C] () -- C:\WINDOWS\System32\lame_acm.xml[2010-01-23 21:32:23 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll[2010-01-23 21:32:23 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll[2010-01-23 21:32:15 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll[2010-01-23 21:32:15 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest[2010-01-02 16:43:19 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll[2010-01-02 16:43:18 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\vorbisenc.dll[2010-01-02 16:43:16 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll[2010-01-02 16:43:15 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll[2010-01-02 16:43:06 | 000,009,216 | ---- | C] () -- C:\WINDOWS\System32\cpuinf32.dll[2010-01-02 00:57:42 | 000,021,840 | ---- | C] () -- C:\WINDOWS\System32\SIntfNT.dll[2010-01-02 00:57:42 | 000,017,212 | ---- | C] () -- C:\WINDOWS\System32\SIntf32.dll[2010-01-02 00:57:42 | 000,012,067 | ---- | C] () -- C:\WINDOWS\System32\SIntf16.dll[2010-01-01 19:09:31 | 000,000,281 | ---- | C] () -- C:\WINDOWS\game.ini[2009-12-30 21:00:27 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini[2009-12-27 22:01:38 | 000,015,424 | ---- | C] () -- C:\WINDOWS\System32\drivers\nod32drv.sys[2009-12-27 20:36:14 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll[2009-12-27 15:09:30 | 000,088,064 | ---- | C] () -- C:\Documents and Settings\Wojsław Peruner\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini[2009-12-27 14:57:24 | 000,178,176 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll[2009-12-26 21:39:44 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys[2009-12-26 11:26:43 | 000,024,576 | R--- | C] () -- C:\WINDOWS\System32\AsIO.dll[2009-12-26 11:26:43 | 000,005,685 | R--- | C] () -- C:\WINDOWS\System32\drivers\AsIO.sys[2009-12-26 11:26:41 | 000,005,120 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp64.sys[2009-12-26 11:26:41 | 000,003,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\AsInsHelp32.sys[2009-12-26 11:23:55 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\vuins32.dll[2009-12-26 11:18:18 | 000,019,806 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini[2009-12-26 11:18:06 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS[2009-12-26 11:10:35 | 000,010,496 | ---- | C] () -- C:\WINDOWS\System32\ATKOSDMini.DLL[2009-12-26 11:10:35 | 000,000,018 | ---- | C] () -- C:\WINDOWS\System32\atkid.ini[2009-12-26 11:10:34 | 000,046,592 | ---- | C] () -- C:\WINDOWS\System32\asfrench.dll[2009-12-26 11:10:34 | 000,046,080 | ---- | C] () -- C:\WINDOWS\System32\asrussian.dll[2009-12-26 11:10:34 | 000,046,080 | ---- | C] () -- C:\WINDOWS\System32\asgerman.dll[2009-12-26 11:10:34 | 000,046,080 | ---- | C] () -- C:\WINDOWS\System32\aseng.dll[2009-12-26 11:10:34 | 000,045,568 | ---- | C] () -- C:\WINDOWS\System32\askorean.dll[2009-12-26 11:10:34 | 000,045,568 | ---- | C] () -- C:\WINDOWS\System32\asjapan.dll[2009-12-26 11:10:34 | 000,045,568 | ---- | C] () -- C:\WINDOWS\System32\ASCHT.dll[2009-12-26 11:10:34 | 000,045,568 | ---- | C] () -- C:\WINDOWS\System32\aschs.dll[2009-12-26 10:54:33 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini[2009-08-07 19:51:34 | 000,178,430 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat[2008-10-07 09:13:30 | 000,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll[2008-10-07 09:13:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll[2008-10-07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll[2008-10-07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll[2008-10-07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll[2008-10-07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll[2008-10-07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll[2008-10-07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll[2008-10-07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll[2008-10-07 09:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll[2006-06-01 10:22:00 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll[2006-06-01 10:22:00 | 001,470,464 | ---- | C] () -- C:\WINDOWS\System32\nview.dll[2006-06-01 10:22:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll[2006-06-01 10:22:00 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll[2006-06-01 10:22:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll[2006-06-01 10:22:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll[2006-06-01 10:22:00 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll[2006-03-02 13:00:00 | 000,005,810 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys< End of report > Cytuj Udostępnij tę odpowiedź Odnośnik do odpowiedzi Udostępnij na innych stronach Więcej opcji udostępniania...
Kolobos Opublikowano 19 Lutego 2010 Zgłoś Opublikowano 19 Lutego 2010 (edytowane) Przeciez masz wolne 80% pamieci, po co Ci wiecej? Edytowane 19 Lutego 2010 przez Kolobos Cytuj Udostępnij tę odpowiedź Odnośnik do odpowiedzi Udostępnij na innych stronach Więcej opcji udostępniania...