Skocz do zawartości

r   e   k   l   a   m   a

Komputer wolno chodzi


  • Zaloguj się, aby dodać odpowiedź
5 odpowiedzi w tym temacie

#1 (gość)

(gość)
  • Goście

Napisano 04.09.2009 - 22:09

Witam ,otóż ostatnio komputer zaczął coś wolniej chodzić.Włączania komputera trwa wieki.Włączenie czegokolwiek np "mój komputer"trwa ok 5 sec.Mam jeszcze problem z pokazaniem ukrytych plików.Gdy biorę pokaż ukryte pliki i ok to niby się coś robi ,ale tylko niby bo gdy kolejny raz biorę narzędzia->opcje folderów to nadal jest nie pokazuj ukrytych plików.

Log z otl

OTL logfile created on: 2009-09-04 17:53:48 - Run 1
OTL by OldTimer - Version 3.0.10.7     Folder = C:\Documents and Settings\1\Pulpit
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
2,00 Gb Total Physical Memory | 1,24 Gb Available Physical Memory | 61,97% Memory free
3,85 Gb Paging File | 3,12 Gb Available in Paging File | 81,02% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 93,75 Gb Total Space | 15,64 Gb Free Space | 16,68% Space Free | Partition Type: NTFS
Drive D: | 185,55 Gb Total Space | 27,92 Gb Free Space | 15,05% Space Free | Partition Type: NTFS
Drive E: | 186,45 Gb Total Space | 7,80 Gb Free Space | 4,18% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
 
Computer Name: ABC-6088FF48374
Current User Name: 1
Logged in as Administrator.
 
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2009-07-15 04:08:26 | 00,602,112 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\Ati2evxx.exe
PRC - [2008-06-02 13:26:46 | 00,611,664 | ---- | M] (Lavasoft) -- D:\programy\lavasoft\aawservice.exe
PRC - [2009-07-15 04:08:26 | 00,602,112 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\Ati2evxx.exe
PRC - [2008-04-14 22:51:18 | 01,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Explorer.EXE
PRC - [2008-08-26 07:51:18 | 16,851,456 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.EXE
PRC - [2009-02-06 14:23:12 | 02,021,400 | ---- | M] (ESET) -- D:\programy\NOD 32\egui.exe
PRC - [2008-06-10 12:56:32 | 01,406,024 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft IntelliPoint\ipoint.exe
PRC - [2009-05-12 18:36:34 | 00,912,384 | ---- | M] (Altrixsoft) -- C:\Program Files\Hard Drive Inspector\HDInspector.exe
PRC - [2009-07-25 05:23:12 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe
PRC - [2009-04-22 17:38:50 | 00,065,536 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
PRC - [2009-04-23 15:51:38 | 00,691,656 | ---- | M] (DT Soft Ltd) -- D:\programy\DAEMON Tools\DAEMON Tools Lite\daemon.exe
PRC - [2009-01-08 15:44:06 | 00,070,936 | ---- | M] (Octoshape ApS) -- C:\Documents and Settings\1\Dane aplikacji\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe
PRC - [2008-07-02 16:16:58 | 00,393,216 | ---- | M] (Sony Ericsson Mobile Communications AB) -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe
PRC - [2009-07-30 17:15:28 | 09,156,912 | ---- | M] (FreeCall) -- C:\Program Files\FreeCall.com\FreeCall\FreeCall.exe
PRC - [2008-05-06 11:15:58 | 01,556,480 | ---- | M] (Ralink Technology, Corp.) -- C:\Program Files\RALINK\Common\RaUI.exe
PRC - [2009-04-22 17:37:16 | 00,065,536 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
PRC - [2006-02-28 12:42:38 | 00,229,376 | ---- | M] (Apple Computer, Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2009-02-06 14:23:36 | 00,727,720 | ---- | M] (ESET) -- D:\programy\NOD 32\ekrn.exe
PRC - [2009-07-25 05:23:10 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2009-06-13 01:43:07 | 00,075,064 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrA.exe
PRC - [2009-06-26 14:25:42 | 00,189,288 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.exe
PRC - [2009-08-20 14:42:12 | 00,181,312 | ---- | M] () -- C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe
PRC - [2009-05-04 10:35:10 | 00,417,472 | ---- | M] (AltrixSoft (http://www.altrixsoft.com/)) -- C:\WINDOWS\System32\HDDSvc.exe
PRC - [2009-02-06 12:10:02 | 00,227,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wbem\wmiprvse.exe
PRC - [2009-06-11 13:28:46 | 01,217,784 | ---- | M] (Valve Corporation) -- D:\gry\Counter Strike 1.6\Steam.exe
PRC - [2009-08-12 23:22:09 | 10,719,848 | ---- | M] (GG Network S.A.) -- D:\programy\Nowe Gadu-Gadu\gg.exe
PRC - [2009-07-27 16:39:44 | 00,077,824 | ---- | M] () -- D:\programy\Nowe Gadu-Gadu\spellchecker_gg.exe
PRC - [2009-03-26 22:28:26 | 00,191,488 | ---- | M] () -- C:\Documents and Settings\1\Pulpit\Counter Strike\GammaAdjuster.exe
PRC - [2009-09-04 17:15:05 | 00,908,280 | ---- | M] (Mozilla Corporation) -- D:\programy\Firefox\firefox.exe
PRC - [2009-09-03 14:20:00 | 00,514,048 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\1\Pulpit\OTL.exe
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - [2008-06-02 13:26:46 | 00,611,664 | ---- | M] (Lavasoft) -- D:\programy\lavasoft\aawservice.exe -- (aawservice [Auto | Running])
SRV - [2008-07-25 11:16:40 | 00,034,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe -- (aspnet_state [On_Demand | Stopped])
SRV - [2009-07-15 04:08:26 | 00,602,112 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\Ati2evxx.exe -- (Ati HotKey Poller [Auto | Running])
SRV - [2009-07-14 21:05:00 | 00,593,920 | ---- | M] () -- C:\WINDOWS\System32\ati2sgag.exe -- (ATI Smart [Auto | Stopped])
SRV - [2006-02-28 12:42:38 | 00,229,376 | ---- | M] (Apple Computer, Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service [Auto | Running])
SRV - [2008-07-25 11:17:02 | 00,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])
SRV - [2009-02-06 14:27:06 | 00,020,680 | ---- | M] (ESET) -- D:\programy\NOD 32\EHttpSrv.exe -- (EhttpSrv [On_Demand | Stopped])
SRV - [2009-02-06 14:23:36 | 00,727,720 | ---- | M] (ESET) -- D:\programy\NOD 32\ekrn.exe -- (ekrn [Auto | Running])
SRV - [2009-07-24 10:24:01 | 00,654,848 | ---- | M] (Macrovision Europe Ltd.) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service [On_Demand | Stopped])
SRV - [2008-07-29 21:10:04 | 00,046,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped])
SRV - [2008-11-20 21:18:52 | 00,136,120 | ---- | M] (Google) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc [On_Demand | Stopped])
SRV - [2009-05-04 10:35:10 | 00,417,472 | ---- | M] (AltrixSoft (http://www.altrixsoft.com/)) -- C:\WINDOWS\System32\HDDSvc.exe -- (HDDSvc [On_Demand | Running])
SRV - [2008-04-14 22:50:46 | 00,038,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -- (helpsvc [Auto | Running])
SRV - [2005-04-04 00:41:10 | 00,069,632 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT [On_Demand | Stopped])
SRV - [2008-07-29 19:24:50 | 00,881,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc [Unknown | Stopped])
SRV - [2009-07-25 05:23:10 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService [Auto | Running])
SRV - [2008-10-25 11:44:08 | 00,065,888 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service [On_Demand | Stopped])
SRV - [2008-07-29 19:16:38 | 00,132,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped])
SRV - [2008-11-04 01:06:28 | 00,441,712 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv [On_Demand | Stopped])
SRV - [2006-10-26 13:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose [On_Demand | Stopped])
SRV - [2009-06-13 01:43:07 | 00,075,064 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrA.exe -- (PnkBstrA [Auto | Running])
SRV - [2009-06-26 14:25:42 | 00,189,288 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.exe -- (PnkBstrB [Auto | Running])
SRV - [2009-08-20 14:42:12 | 00,181,312 | ---- | M] () -- C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe -- (ScsiAccess [Auto | Running])
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - [2009-03-22 00:14:29 | 00,021,361 | ---- | M] (Cisco Systems, Inc.) -- C:\WINDOWS\System32\DRIVERS\AegisP.sys -- (AegisP [Auto | Running])
DRV - [2007-04-16 17:46:34 | 00,033,792 | ---- | M] (Advanced Micro Devices) -- C:\WINDOWS\System32\DRIVERS\AmdPPM.sys -- (AmdPPM [System | Running])
DRV - [2009-07-15 06:20:10 | 04,407,808 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\DRIVERS\ati2mtag.sys -- (ati2mtag [On_Demand | Running])
DRV - [2008-05-21 01:53:36 | 00,093,696 | R--- | M] (ATI Research Inc.) -- C:\WINDOWS\System32\drivers\AtiHdmi.sys -- (AtiHdmiService [On_Demand | Running])
DRV - [2009-07-23 13:36:19 | 00,281,760 | ---- | M] () -- C:\WINDOWS\System32\DRIVERS\atksgt.sys -- (atksgt [Auto | Running])
DRV - [2009-02-06 14:19:52 | 00,113,448 | ---- | M] (ESET) -- C:\WINDOWS\System32\DRIVERS\eamon.sys -- (eamon [Auto | Running])
DRV - [2009-02-06 14:23:18 | 00,106,208 | ---- | M] (ESET) -- C:\WINDOWS\System32\DRIVERS\ehdrv.sys -- (ehdrv [System | Running])
DRV - [2008-09-17 15:14:00 | 00,027,672 | R--- | M] (EnTech Taiwan) -- C:\WINDOWS\System32\DRIVERS\ENTECH.sys -- (ENTECH [On_Demand | Stopped])
DRV - [2009-02-06 14:24:18 | 00,130,952 | ---- | M] (ESET) -- C:\WINDOWS\System32\DRIVERS\epfw.sys -- (epfw [Auto | Running])
DRV - [2009-02-06 14:24:22 | 00,033,096 | ---- | M] (ESET) -- C:\WINDOWS\System32\DRIVERS\Epfwndis.sys -- (Epfwndis [On_Demand | Running])
DRV - [2009-02-06 14:24:22 | 00,056,280 | ---- | M] (ESET) -- C:\WINDOWS\System32\DRIVERS\epfwtdi.sys -- (epfwtdi [System | Running])
DRV - [2009-03-22 10:37:31 | 00,016,608 | ---- | M] (Windows (R) 2000 DDK provider) -- C:\WINDOWS\gdrv.sys -- (gdrv [On_Demand | Stopped])
DRV - [2008-04-13 22:06:06 | 00,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) -- C:\WINDOWS\System32\DRIVERS\HDAudBus.sys -- (HDAudBus [On_Demand | Running])
DRV - [2008-08-27 11:22:24 | 04,754,432 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys -- (IntcAzAudAddService [On_Demand | Running])
DRV - [2009-07-23 13:36:19 | 00,025,888 | ---- | M] () -- C:\WINDOWS\System32\DRIVERS\lirsgt.sys -- (lirsgt [Auto | Running])
DRV - [2007-06-18 16:18:26 | 00,023,680 | ---- | M] (Motorola) -- C:\WINDOWS\System32\DRIVERS\motmodem.sys -- (motmodem [On_Demand | Stopped])
DRV - [2009-06-26 14:25:57 | 00,137,888 | ---- | M] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys -- (PnkBstrK [On_Demand | Stopped])
DRV - [2008-12-04 11:34:32 | 00,027,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\DRIVERS\point32.sys -- (Point32 [On_Demand | Running])
DRV - [2001-08-17 20:49:56 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\System32\DRIVERS\ptilink.sys -- (Ptilink [On_Demand | Running])
DRV - [2008-08-20 19:58:58 | 00,044,944 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20 [Boot | Running])
DRV - [2005-07-01 13:22:00 | 00,339,072 | ---- | M] (Ralink Technology Inc.) -- C:\WINDOWS\System32\DRIVERS\RT61.sys -- (RT61 [On_Demand | Running])
DRV - [2008-08-07 13:14:56 | 00,111,360 | R--- | M] (Realtek Semiconductor Corporation                           ) -- C:\WINDOWS\System32\DRIVERS\Rtenicxp.sys -- (RTLE8023xp [On_Demand | Running])
DRV - [2008-11-04 03:45:44 | 00,086,696 | R--- | M] (MCCI Corporation) -- C:\WINDOWS\System32\DRIVERS\s1018bus.sys -- (s1018bus [On_Demand | Stopped])
DRV - [2008-11-04 03:45:44 | 00,015,016 | R--- | M] (MCCI Corporation) -- C:\WINDOWS\System32\DRIVERS\s1018mdfl.sys -- (s1018mdfl [On_Demand | Stopped])
DRV - [2008-11-04 03:45:44 | 00,114,472 | R--- | M] (MCCI Corporation) -- C:\WINDOWS\System32\DRIVERS\s1018mdm.sys -- (s1018mdm [On_Demand | Stopped])
DRV - [2008-11-04 03:45:46 | 00,108,200 | R--- | M] (MCCI Corporation) -- C:\WINDOWS\System32\DRIVERS\s1018mgmt.sys -- (s1018mgmt [On_Demand | Stopped])
DRV - [2007-12-10 15:22:14 | 00,083,880 | ---- | M] (MCCI Corporation) -- C:\WINDOWS\System32\DRIVERS\s3017bus.sys -- (s3017bus [On_Demand | Stopped])
DRV - [2007-12-10 15:22:18 | 00,015,016 | ---- | M] (MCCI Corporation) -- C:\WINDOWS\System32\DRIVERS\s3017mdfl.sys -- (s3017mdfl [On_Demand | Stopped])
DRV - [2007-12-10 15:22:18 | 00,110,632 | ---- | M] (MCCI Corporation) -- C:\WINDOWS\System32\DRIVERS\s3017mdm.sys -- (s3017mdm [On_Demand | Stopped])
DRV - [2007-12-10 15:22:20 | 00,104,616 | ---- | M] (MCCI Corporation) -- C:\WINDOWS\System32\DRIVERS\s3017mgmt.sys -- (s3017mgmt [On_Demand | Stopped])
DRV - [2007-12-10 15:22:20 | 00,025,512 | ---- | M] (MCCI Corporation) -- C:\WINDOWS\System32\DRIVERS\s3017nd5.sys -- (s3017nd5 [On_Demand | Stopped])
DRV - [2007-12-10 15:22:22 | 00,100,648 | ---- | M] (MCCI Corporation) -- C:\WINDOWS\System32\DRIVERS\s3017obex.sys -- (s3017obex [On_Demand | Stopped])
DRV - [2007-12-10 15:22:22 | 00,110,120 | ---- | M] (MCCI Corporation) -- C:\WINDOWS\System32\DRIVERS\s3017unic.sys -- (s3017unic [On_Demand | Stopped])
DRV - [2008-04-13 22:09:18 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\WINDOWS\System32\DRIVERS\secdrv.sys -- (Secdrv [On_Demand | Stopped])
DRV - [2009-05-25 20:11:55 | 00,721,904 | ---- | M] () -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd [Boot | Running])
DRV - [2008-01-24 15:08:54 | 00,019,336 | ---- | M] (Logitech Inc.) -- C:\WINDOWS\System32\drivers\WmBEnum.sys -- (WmBEnum [On_Demand | Running])
DRV - [2008-01-24 15:09:04 | 00,028,168 | ---- | M] (Logitech Inc.) -- C:\WINDOWS\System32\drivers\WmFilter.sys -- (WmFilter [On_Demand | Stopped])
DRV - [2008-01-24 15:09:24 | 00,014,728 | ---- | M] (Logitech Inc.) -- C:\WINDOWS\System32\drivers\WmVirHid.sys -- (WmVirHid [On_Demand | Stopped])
DRV - [2008-01-24 15:09:34 | 00,048,904 | ---- | M] (Logitech Inc.) -- C:\WINDOWS\System32\drivers\WmXlCore.sys -- (WmXlCore [On_Demand | Running])
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - URLSearchHook: {0063BF63-BFFF-4B8F-9D26-4267DF7F17DD} - C:\WINDOWS\System32\dvmurl.dll (DeviceVM Inc.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..extensions.enabledItems: battlefieldheroespatcher@ea.com:4.0.17.0
FF - prefs.js..extensions.enabledItems: {DDC359D1-844A-42a7-9AA1-88A850A938A8}:1.1.4
FF - prefs.js..extensions.enabledItems: {c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}:1.6
FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.8.20090123.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: NPDyyno@dyyno.com:1.0.0.24
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.2
 
FF - HKLM\software\mozilla\Firefox\extensions\\{20a82645-c095-46ed-80e3-08825760534b}: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009-05-28 16:47:03 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\jqs@sun.com: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2009-05-12 18:27:02 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.2\extensions\\Components: D:\programy\Firefox\components [2009-09-04 17:15:22 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.2\extensions\\Plugins: D:\programy\Firefox\plugins [2009-09-04 17:15:22 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: D:\programy\NOD 32\Mozilla Thunderbird
 
[2009-03-26 18:09:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\1\Dane aplikacji\mozilla\Extensions
[2009-03-26 18:09:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\1\Dane aplikacji\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009-09-04 17:02:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\1\Dane aplikacji\mozilla\Firefox\Profiles\vhowqilx.default\extensions
[2009-06-26 19:06:45 | 00,000,000 | ---D | M] -- C:\Documents and Settings\1\Dane aplikacji\mozilla\Firefox\Profiles\vhowqilx.default\extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}
[2009-07-25 22:32:55 | 00,000,000 | ---D | M] -- C:\Documents and Settings\1\Dane aplikacji\mozilla\Firefox\Profiles\vhowqilx.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}
[2009-05-05 19:36:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\1\Dane aplikacji\mozilla\Firefox\Profiles\vhowqilx.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
[2009-06-12 20:55:13 | 00,000,000 | ---D | M] -- C:\Documents and Settings\1\Dane aplikacji\mozilla\Firefox\Profiles\vhowqilx.default\extensions\battlefieldheroespatcher@ea.com
[2009-06-12 20:55:13 | 00,000,000 | ---D | M] -- C:\Documents and Settings\1\Dane aplikacji\mozilla\Firefox\Profiles\vhowqilx.default\extensions\NPDyyno@dyyno.com
 
O1 HOSTS File: (843 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: 127.255.255.255 serial.alcohol-soft.com
O1 - Hosts: 67.159.50.155 extremew.org
O1 - Hosts: 67.159.50.155 www.extremew.org
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\1\Dane aplikacji\Nowe Gadu-Gadu\_userdata\ggbho.1.dll (GG Network S.A.)
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [egui] D:\programy\NOD 32\egui.exe (ESET)
O4 - HKLM..\Run: [HDInspector.exe] C:\Program Files\Hard Drive Inspector\HDInspector.exe (Altrixsoft)
O4 - HKLM..\Run: [IntelliPoint] C:\Program Files\Microsoft IntelliPoint\ipoint.exe (Microsoft Corporation)
O4 - HKLM..\Run: [KernelFaultCheck]  File not found
O4 - HKLM..\Run: [RTHDCPL] C:\WINDOWS\RTHDCPL.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKCU..\Run: [ares] C:\Program Files\Ares\Ares.exe File not found
O4 - HKCU..\Run: [DAEMON Tools Lite] D:\programy\DAEMON Tools\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
O4 - HKCU..\Run: [FreeCall] C:\Program Files\FreeCall.com\FreeCall\FreeCall.exe (FreeCall)
O4 - HKCU..\Run: [iGoD] C:\Documents and Settings\1\Pulpit\iGoDr0882.exe File not found
O4 - HKCU..\Run: [InternetCalls] D:\programy\InternetCalls\InternetCalls.exe File not found
O4 - HKCU..\Run: [Octoshape Streaming Services] C:\Documents and Settings\1\Dane aplikacji\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe (Octoshape ApS)
O4 - HKCU..\Run: [Sony Ericsson PC Suite] C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe (Sony Ericsson Mobile Communications AB)
O4 - HKCU..\Run: [VoipBuster] D:\VoipBuster\VoipBuster.exe File not found
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Ralink Wireless Utility.lnk = C:\Program Files\RALINK\Common\RaUI.exe (Ralink Technology, Corp.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption = 
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext = 
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (Microsoft Corporation)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} http://www.systemrequirementslab.com/srl_bin/sysreqlab_srl.cab (System Requirements Lab Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 88.199.168.4 88.199.168.2
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Filter:  - text/xml - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\Ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-03-21 13:04:02 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{6fae851f-1627-11de-97db-001fd09f014b}\Shell - "" = AutoRun
O33 - MountPoints2\{6fae851f-1627-11de-97db-001fd09f014b}\Shell\AutoRun\command - "" = G:\autorun.exe -- File not found
O34 - HKLM BootExecute: (autocheck) -  File not found
O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) -  File not found
O34 - HKLM BootExecute: (lsdelete) - C:\WINDOWS\System32\lsdelete.exe ()
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2009-09-03 14:19:35 | 00,514,048 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\1\Pulpit\OTL.exe
[2009-09-03 14:18:31 | 00,000,000 | ---D | C] -- C:\Program Files\trend micro
[2009-09-03 14:18:30 | 00,000,000 | ---D | C] -- C:\rsit
[2009-09-03 14:17:10 | 00,781,909 | ---- | C] () -- C:\Documents and Settings\1\Pulpit\RSIT.exe
[2009-09-03 07:01:35 | 00,000,000 | ---D | C] -- C:\Documents and Settings\1\Pulpit\nowe
[2009-09-02 21:33:13 | 03,911,294 | ---- | C] () -- C:\Documents and Settings\1\Pulpit\pitbull - i know you want me.mp3
[2009-09-02 21:29:23 | 00,022,936 | ---- | C] () -- C:\Documents and Settings\1\Pulpit\Black Eyed Peas- I Gotta Feeling.html
[2009-09-02 18:40:26 | 04,329,002 | ---- | C] () -- C:\Documents and Settings\1\Pulpit\pic.rar
[2009-09-02 18:39:51 | 00,000,000 | ---D | C] -- C:\Documents and Settings\1\Pulpit\pic
[2009-08-31 19:16:10 | 25,754,769 | ---- | C] () -- C:\Documents and Settings\1\Pulpit\Wolfenstein_-_Poradnik_Gry-OnLine.pdf
[2009-08-31 12:06:36 | 00,091,502 | ---- | C] () -- C:\Documents and Settings\1\Pulpit\awp2.JPG
[2009-08-31 12:06:28 | 00,096,777 | ---- | C] () -- C:\Documents and Settings\1\Pulpit\awp1.JPG
[2009-08-31 11:25:20 | 00,000,000 | ---D | C] -- C:\gb_cfg
[2009-08-31 11:25:06 | 00,009,008 | ---- | C] () -- C:\Documents and Settings\1\Pulpit\gbcfg.zip
[2009-08-30 22:22:53 | 05,761,786 | ---- | C] () -- C:\Documents and Settings\1\Pulpit\raport_(2009-08-30_21_55).rep
[2009-08-30 14:45:04 | 73,391,5136 | ---- | C] () -- C:\Documents and Settings\1\Pulpit\Eagle.Eye.2008.CD2.PL.DVDRiP.AC3.XviD-NoName.(osloskop.net).avi
[2009-08-30 14:44:15 | 73,401,7536 | ---- | C] () -- C:\Documents and Settings\1\Pulpit\Eagle.Eye.2008.CD1.PL.DVDRiP.AC3.XviD-NoName.(osloskop.net).avi
[2009-08-30 12:06:17 | 00,000,000 | ---D | C] -- C:\Documents and Settings\1\Moje dokumenty\Sony Ericsson
[2009-08-30 12:04:38 | 00,108,200 | R--- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\s1018mgmt.sys
[2009-08-30 12:00:51 | 00,114,472 | R--- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\s1018mdm.sys
[2009-08-30 12:00:51 | 00,015,016 | R--- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\s1018mdfl.sys
[2009-08-30 12:00:51 | 00,012,200 | R--- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\s1018cmnt.sys
[2009-08-30 12:00:51 | 00,012,200 | R--- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\s1018cm.sys
[2009-08-30 12:00:08 | 00,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2009-08-30 12:00:08 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2009-08-30 12:00:08 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2009-08-30 11:58:30 | 00,086,696 | R--- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\s1018bus.sys
[2009-08-30 11:58:30 | 00,012,200 | R--- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\s1018whnt.sys
[2009-08-30 11:58:30 | 00,012,200 | R--- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\s1018wh.sys
[2009-08-30 11:15:36 | 00,280,672 | ---- | C] () -- C:\Documents and Settings\1\Pulpit\dekoder_4.54.rar
[2009-08-29 20:07:21 | 00,000,000 | ---D | C] -- C:\Documents and Settings\1\Ustawienia lokalne\Dane aplikacji\GHISLER
[2009-08-29 14:11:03 | 00,000,745 | ---- | C] () -- C:\Documents and Settings\1\Pulpit\FreeCall.lnk
[2009-08-29 14:11:01 | 00,000,000 | ---D | C] -- C:\Program Files\FreeCall.com
[2009-08-29 14:10:16 | 00,000,000 | ---D | C] -- C:\Documents and Settings\1\Pulpit\Wędkarskie
[2009-08-28 20:46:42 | 00,028,307 | ---- | C] () -- C:\Documents and Settings\1\Pulpit\daaa2.JPG
[2009-08-28 20:46:19 | 00,024,227 | ---- | C] () -- C:\Documents and Settings\1\Pulpit\daa.JPG
[2009-08-28 15:14:06 | 04,172,840 | ---- | C] (Finarea S.A. Switzerland                                    ) -- C:\Documents and Settings\1\Pulpit\setupfreecall.exe
[2009-08-28 13:02:56 | 00,000,000 | ---D | C] -- C:\Documents and Settings\1\Dane aplikacji\InternetCalls
[2009-08-28 12:57:15 | 00,000,000 | ---D | C] -- C:\Documents and Settings\1\Dane aplikacji\VoipBuster
[2009-08-28 10:59:53 | 00,009,621 | ---- | C] () -- C:\Documents and Settings\1\Pulpit\server.cfg
[2009-08-28 10:00:03 | 00,000,000 | ---D | C] -- C:\Documents and Settings\1\Pulpit\aeq
[2009-08-28 09:55:10 | 00,000,000 | ---D | C] -- C:\Documents and Settings\1\Pulpit\borland
[2009-08-27 14:25:27 | 00,000,000 | ---D | C] -- C:\Documents and Settings\1\Moje dokumenty\id Software
[2009-08-23 02:19:33 | 00,000,000 | ---D | C] -- C:\Documents and Settings\1\Ustawienia lokalne\Dane aplikacji\id Software
[2009-08-21 17:51:06 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ATI
[2009-08-21 17:47:18 | 00,593,920 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe
[2009-08-21 17:46:10 | 00,000,000 | ---D | C] -- C:\ATI
[2009-08-21 13:39:17 | 00,000,000 | ---D | C] -- C:\Documents and Settings\1\Pulpit\azereus_4.54_gameback
[2009-08-20 14:42:15 | 00,000,000 | ---D | C] -- C:\Program Files\Photodex Presenter
[2009-08-20 14:42:15 | 00,000,000 | ---D | C] -- C:\Documents and Settings\1\Dane aplikacji\Netscape
[2009-08-20 14:42:06 | 00,000,000 | ---D | C] -- C:\Program Files\Photodex
[2009-08-20 14:41:39 | 00,000,000 | ---D | C] -- C:\Documents and Settings\1\Dane aplikacji\Photodex
[2009-08-12 13:51:32 | 14,006,901 | ---- | C] () -- C:\matc.wmv
[2009-08-12 13:29:42 | 01,189,839 | ---- | C] () -- C:\Bez tytułu.wmv
[2009-08-10 12:13:58 | 00,000,000 | ---D | C] -- C:\Documents and Settings\1\Pulpit\zdjęcia góry
[2009-06-02 21:03:02 | 00,000,081 | ---- | C] () -- C:\WINDOWS\bpw.ini
[2009-06-01 18:14:29 | 00,000,271 | ---- | C] () -- C:\WINDOWS\game.ini
[2009-05-17 14:03:12 | 00,258,048 | ---- | C] () -- C:\WINDOWS\System32\libFLAC.dll
[2009-05-17 14:00:24 | 01,416,015 | ---- | C] () -- C:\WINDOWS\System32\ffmpegmt.dll
[2009-05-17 14:00:05 | 00,557,469 | ---- | C] () -- C:\WINDOWS\System32\libmplayer.dll
[2009-05-17 13:59:58 | 00,146,098 | ---- | C] () -- C:\WINDOWS\System32\libmpeg2_ff.dll
[2009-05-17 13:59:56 | 04,471,092 | ---- | C] () -- C:\WINDOWS\System32\libavcodec.dll
[2009-05-17 13:58:57 | 00,098,304 | ---- | C] () -- C:\WINDOWS\System32\ff_wmv9.dll
[2009-05-17 13:58:56 | 00,113,152 | ---- | C] () -- C:\WINDOWS\System32\ff_unrar.dll
[2009-05-17 13:58:54 | 00,183,296 | ---- | C] () -- C:\WINDOWS\System32\ff_samplerate.dll
[2009-05-17 13:58:52 | 00,178,688 | ---- | C] () -- C:\WINDOWS\System32\ff_libmad.dll
[2009-05-17 13:58:49 | 00,486,400 | ---- | C] () -- C:\WINDOWS\System32\ff_libfaad2.dll
[2009-05-17 13:58:43 | 00,257,024 | ---- | C] () -- C:\WINDOWS\System32\ff_libdts.dll
[2009-05-17 13:58:39 | 00,142,848 | ---- | C] () -- C:\WINDOWS\System32\ff_liba52.dll
[2009-05-17 13:58:33 | 02,041,363 | ---- | C] () -- C:\WINDOWS\System32\x264vfw.dll
[2009-05-17 13:58:01 | 00,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll
[2009-05-17 13:57:57 | 00,921,600 | ---- | C] () -- C:\WINDOWS\System32\vorbisenc.dll
[2009-05-17 13:57:45 | 00,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2009-05-17 13:55:29 | 00,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll
[2009-05-09 11:45:08 | 00,281,760 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2009-05-09 11:45:08 | 00,025,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2009-05-04 14:15:22 | 00,003,972 | ---- | C] () -- C:\WINDOWS\System32\drivers\PciBus.sys
[2009-04-22 00:19:06 | 00,172,173 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2009-04-01 18:38:31 | 00,795,648 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2009-04-01 18:38:31 | 00,130,048 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2009-04-01 18:38:30 | 03,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2009-04-01 18:38:25 | 00,067,584 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2009-04-01 18:38:25 | 00,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2009-03-28 12:16:34 | 00,137,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2009-03-27 15:46:56 | 00,000,587 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
[2009-03-27 15:44:56 | 00,002,948 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2009-03-22 01:30:20 | 00,000,795 | ---- | C] () -- C:\WINDOWS\VPlayer.INI
[2009-03-22 00:00:17 | 00,081,920 | ---- | C] () -- C:\WINDOWS\System32\Install6x.dll
[2009-03-21 16:46:06 | 00,721,904 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2007-07-23 09:03:32 | 00,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2007-07-23 09:03:32 | 00,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2007-07-23 09:03:32 | 00,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2007-07-23 09:03:30 | 00,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2007-07-23 09:03:30 | 00,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2007-07-23 09:03:30 | 00,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2007-07-23 09:03:30 | 00,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2007-07-23 09:03:30 | 00,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2007-07-23 09:03:30 | 00,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2004-01-22 20:06:32 | 00,157,696 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2001-09-17 14:20:02 | 00,009,216 | ---- | C] () -- C:\WINDOWS\System32\cpuinf32.dll
[2001-07-21 21:16:20 | 00,000,573 | ---- | C] () -- C:\WINDOWS\win.ini
[2001-07-21 21:15:52 | 00,000,227 | ---- | C] () -- C:\WINDOWS\system.ini
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[1 C:\WINDOWS\System32\*.tmp files]
[4 C:\WINDOWS\*.tmp files]
[2009-09-04 14:27:28 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009-09-04 14:27:05 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009-09-04 07:29:39 | 00,224,256 | ---- | M] () -- C:\Documents and Settings\1\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-09-03 22:39:22 | 03,172,596 | -H-- | M] () -- C:\Documents and Settings\1\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2009-09-03 14:20:00 | 00,514,048 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\1\Pulpit\OTL.exe
[2009-09-03 14:17:34 | 00,781,909 | ---- | M] () -- C:\Documents and Settings\1\Pulpit\RSIT.exe
[2009-09-02 21:35:56 | 03,911,294 | ---- | M] () -- C:\Documents and Settings\1\Pulpit\pitbull - i know you want me.mp3
[2009-09-02 21:29:27 | 00,022,936 | ---- | M] () -- C:\Documents and Settings\1\Pulpit\Black Eyed Peas- I Gotta Feeling.html
[2009-09-02 18:40:27 | 04,329,002 | ---- | M] () -- C:\Documents and Settings\1\Pulpit\pic.rar
[2009-08-31 12:06:36 | 00,091,502 | ---- | M] () -- C:\Documents and Settings\1\Pulpit\awp2.JPG
[2009-08-31 12:06:28 | 00,096,777 | ---- | M] () -- C:\Documents and Settings\1\Pulpit\awp1.JPG
[2009-08-31 11:28:00 | 00,002,948 | ---- | M] () -- C:\WINDOWS\wincmd.ini
[2009-08-31 11:25:45 | 00,000,587 | ---- | M] () -- C:\WINDOWS\wcx_ftp.ini
[2009-08-31 11:25:06 | 00,009,008 | ---- | M] () -- C:\Documents and Settings\1\Pulpit\gbcfg.zip
[2009-08-30 22:56:46 | 05,761,786 | ---- | M] () -- C:\Documents and Settings\1\Pulpit\raport_(2009-08-30_21_55).rep
[2009-08-30 11:59:45 | 01,096,320 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2009-08-30 11:59:45 | 00,493,962 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2009-08-30 11:59:45 | 00,435,396 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2009-08-30 11:59:45 | 00,085,120 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2009-08-30 11:59:45 | 00,068,292 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2009-08-30 11:15:39 | 00,280,672 | ---- | M] () -- C:\Documents and Settings\1\Pulpit\dekoder_4.54.rar
[2009-08-29 20:07:21 | 00,127,686 | -H-- | M] () -- C:\treeinfo.wc
[2009-08-29 14:11:03 | 00,000,745 | ---- | M] () -- C:\Documents and Settings\1\Pulpit\FreeCall.lnk
[2009-08-28 20:46:42 | 00,028,307 | ---- | M] () -- C:\Documents and Settings\1\Pulpit\daaa2.JPG
[2009-08-28 20:46:19 | 00,024,227 | ---- | M] () -- C:\Documents and Settings\1\Pulpit\daa.JPG
[2009-08-28 18:53:02 | 25,754,769 | ---- | M] () -- C:\Documents and Settings\1\Pulpit\Wolfenstein_-_Poradnik_Gry-OnLine.pdf
[2009-08-28 15:15:01 | 04,172,840 | ---- | M] (Finarea S.A. Switzerland                                    ) -- C:\Documents and Settings\1\Pulpit\setupfreecall.exe
[2009-08-28 11:01:10 | 00,009,621 | ---- | M] () -- C:\Documents and Settings\1\Pulpit\server.cfg
[2009-08-26 15:06:55 | 00,004,096 | ---- | M] () -- C:\WINDOWS\System32\crash
[2009-08-19 22:13:08 | 73,391,5136 | ---- | M] () -- C:\Documents and Settings\1\Pulpit\Eagle.Eye.2008.CD2.PL.DVDRiP.AC3.XviD-NoName.(osloskop.net).avi
[2009-08-17 17:59:14 | 73,401,7536 | ---- | M] () -- C:\Documents and Settings\1\Pulpit\Eagle.Eye.2008.CD1.PL.DVDRiP.AC3.XviD-NoName.(osloskop.net).avi
[2009-08-12 13:52:19 | 14,006,901 | ---- | M] () -- C:\matc.wmv
[2009-08-12 13:29:49 | 01,189,839 | ---- | M] () -- C:\Bez tytułu.wmv
[2009-08-10 11:29:26 | 00,002,228 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
< End of report >


#2 deFco247

deFco247
  • Użytkownicy
  • 11595 postów

Napisano 04.09.2009 - 22:15

Logi wklejasz na wklej.org lub wklej.to, a w poście dajesz link.

W Custom Scans/Fixes w OTL wklej:

:Processes
Explorer.EXE

:OTL
O4 - HKCU..\Run: [ares] C:\Program Files\Ares\Ares.exe File not found
O4 - HKCU..\Run: [iGoD] C:\Documents and Settings\1\Pulpit\iGoDr0882.exe File not found
O4 - HKCU..\Run: [InternetCalls] D:\programy\InternetCalls\InternetCalls.exe File not found
O4 - HKCU..\Run: [VoipBuster] D:\VoipBuster\VoipBuster.exe File not found

:Reg
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced]
"SuperHidden"=dword:00000001
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced]
"Hidden"=dword:00000001
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced]
"ShowSuperHidden"=dword:00000001
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL]
"CheckedValue"=dword:00000001
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\SuperHidden\Policy\DontShowSuperHidden]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\SuperHidden\Policy\DontShowSuperHidden]
@=""

:Commands
[emptytemp]
[start explorer]

Run Fix. Restart, jeśli będzie potrzebny.
Potem log z usuwania.

Wykonaj pełny skan Malwarebytes' Anti-Malware - znalezione obiekty usuń.
Gdy będą wirusy pokaż raport.

˙ɯɐʃod ǝıu ǝıqos oʇ nʞɹɐʞ ǝʃɐ ˙˙˙ɾƎ

#3 (gość)

(gość)
  • Goście

Napisano 04.09.2009 - 23:14

Teraz jest już ok.Wreszcie widzę ukryte pliki :D

http://wklej.org/id/145156/

#4 deFco247

deFco247
  • Użytkownicy
  • 11595 postów

Napisano 05.09.2009 - 08:31

Wreszcie widzę ukryte pliki :D

No bo ja to przełączyłem edycją rejestru. :P

Poza usuniętymi obiektami nic więcej nie ma.

W OTL kliknij CleanUp.
Wyczyść rejestr i dysk CCleaner.
Usuń zbędniki z autostartu.

˙ɯɐʃod ǝıu ǝıqos oʇ nʞɹɐʞ ǝʃɐ ˙˙˙ɾƎ

#5 (gość)

(gość)
  • Goście

Napisano 05.09.2009 - 10:00

Nie ważne jak ważne ,że działa :)

Zrobiłem to co napisałem ,a tak swoją drogą to od czego mogło być ,że nie widziałem ukrytych plików?

#6 deFco247

deFco247
  • Użytkownicy
  • 11595 postów

Napisano 05.09.2009 - 10:05

od czego mogło być ,że nie widziałem ukrytych plików?

Tak robią niektóre syfy.
Niektóre blokują edycję rejestru i uruchamianie Menedżera Zadań.

˙ɯɐʃod ǝıu ǝıqos oʇ nʞɹɐʞ ǝʃɐ ˙˙˙ɾƎ