Niezrozumiałe komunikaty

system · 18 Grudzień 2010 19:50

Witam

Po krótce napiszę tylko że wyskakują mi różne niezrozumiałe komunikaty, np przy otwieraniu systemu komunikat błąd pliku wcescomm.exe- przez to mam problemy z połączeniem się z programem activesync. Komunikat wyskakuje także po otwarciu przeglądarki IE 8, wciąż mi przypomina że wykryto jakiś błąd w domyślnego dostawcy wyszukiwania IE i potem okno z zarządzeniami dodatkami. Przestał mi także skanować program Auslogic pokazując komunikat XML itd. Porobiłem kilka logów m.in. z OTL, SDFixa itp. Niby nic nie znaleziono a komunikaty wciąż się pojawiają. Zrobiłem teraz log z Hi Jack Thisa. Prosiłbym o sprawdzenie i dalsze postępowanie w razie czegoś podejrzanego. Dziękuję.

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 20:36:45, on 2010-12-18

Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Boot mode: Normal


Running processes:

C:\WINDOWS\System32\smss.exe

C:\PROGRA~1\AVG\AVG10\avgchsvx.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\AVG\AVG10\avgtray.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\WINDOWS\system32\rundll32.exe

C:\WINDOWS\ATKKBService.exe

C:\Program Files\AVG\AVG10\avgwdsvc.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\Program Files\Common Files\LightScribe\LSSrvc.exe

C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe

C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe

C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE

C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\AVG\AVG10\avgnsx.exe

C:\Program Files\AVG\AVG10\avgemcx.exe

C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe

C:\PROGRA~1\AVG\AVG10\avgrsx.exe

C:\Program Files\AVG\AVG10\avgcsrvx.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Program Files\Mozilla Firefox\plugin-container.exe

C:\WINDOWS\system32\msiexec.exe

C:\Program Files\Trend Micro\HijackThis\HiJackThis.exe


R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.tvn24.pl/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll

O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll

O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

O2 - BHO: IEPluginBHO - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\CHRISS\Dane aplikacji\Nowe Gadu-Gadu\_userdata\ggbho.1.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe

O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [nwiz] nwiz.exe /install

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [H/PC Connection Agent] C:\PROGRA~1\MI3AA1~1\wcescomm.exe

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O9 - Extra button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll

O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll

O9 - Extra 'Tools' menuitem: Utwórz Ulubione dla urządzenia przenośnego... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O15 - Trusted Zone: http://www.mks.com.pl

O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab

O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} (MksSkanerOnline Class) - http://www.mks.com.pl/skaner/SkanerOnline.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL

O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll

O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll

O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe

O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe

O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\avgwdsvc.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe

O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe

O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe

O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe


--

End of file - 8323 bytes

anon57460748 · 18 Grudzień 2010 19:52

HiJack to dzisiaj bezużyteczny eksponat.Podaj logi z OTL-TUTAJ masz instrukcje,co i jak.

Pozdrawiam

system · 18 Grudzień 2010 20:20

no widzisz a tak zachwalany na wielu forach. Zrobię jeszcze raz z OTL i wrzucę. Ale jeśli ktoś chce spojrzeć na ten z HiJacka to będę wdzięczny.

– Dodane 18.12.2010 (So) 21:34 –

OTL logfile created on: 2010-12-18 21:26:35 - Run 1

OTL by OldTimer - Version 3.2.17.3 Folder = C:\Documents and Settings\CHRISS\Moje dokumenty\Pobieranie

Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 8.0.6001.18702)

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd


2,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 67,00% Memory free

4,00 Gb Paging File | 4,00 Gb Available in Paging File | 85,00% Paging File free

Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]


%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 37,26 Gb Total Space | 4,19 Gb Free Space | 11,26% Space Free | Partition Type: NTFS

Drive D: | 74,54 Gb Total Space | 0,30 Gb Free Space | 0,40% Space Free | Partition Type: FAT32


Computer Name: CHRISS-C5A0786D | User Name: CHRISS | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: All users

Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days


[color=#E56717]========== Processes (SafeList) ==========[/color]


PRC - [2010-12-18 21:24:18 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\CHRISS\Moje dokumenty\Pobieranie\OTL_3.2.17.3(dobreprogramy.pl).exe

PRC - [2010-12-03 20:58:04 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe

PRC - [2010-12-03 20:58:04 | 000,016,856 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe

PRC - [2010-11-10 19:08:04 | 000,724,048 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe

PRC - [2010-11-10 19:08:02 | 006,127,184 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe

PRC - [2010-10-27 05:15:24 | 001,073,504 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgnsx.exe

PRC - [2010-10-27 05:14:50 | 001,047,904 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgemcx.exe

PRC - [2010-10-22 04:58:18 | 000,265,400 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgwdsvc.exe

PRC - [2010-10-22 04:57:54 | 002,745,696 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgtray.exe

PRC - [2010-10-22 04:57:38 | 000,652,640 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgrsx.exe

PRC - [2010-10-22 04:56:58 | 000,845,664 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgcsrvx.exe

PRC - [2010-10-22 04:56:56 | 000,647,008 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgchsvx.exe

PRC - [2008-04-14 18:21:16 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe

PRC - [2008-02-05 17:20:42 | 000,150,040 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe

PRC - [2008-02-05 17:18:48 | 000,186,904 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe

PRC - [2006-11-15 10:40:10 | 000,258,560 | ---- | M] (ASUSTeK COMPUTER INC.) -- C:\WINDOWS\ATKKBService.exe



[color=#E56717]========== Modules (SafeList) ==========[/color]


MOD - [2010-12-18 21:24:18 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\CHRISS\Moje dokumenty\Pobieranie\OTL_3.2.17.3(dobreprogramy.pl).exe

MOD - [2010-08-23 17:12:53 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll

MOD - [2008-02-05 17:20:30 | 000,109,080 | ---- | M] (Logitech Inc.) -- C:\WINDOWS\temp\logishrd\LVPrcInj01.dll

MOD - [2007-04-19 06:26:00 | 001,474,560 | ---- | M] () -- C:\WINDOWS\system32\nview.dll

MOD - [2007-04-19 06:26:00 | 000,294,912 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvwrspl.dll

MOD - [2007-04-19 06:26:00 | 000,081,920 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvwddi.dll



[color=#E56717]========== Win32 Services (SafeList) ==========[/color]


SRV - File not found [Disabled | Stopped] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ)

SRV - [2010-11-10 19:08:02 | 006,127,184 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe -- (AVGIDSAgent)

SRV - [2010-10-22 04:58:18 | 000,265,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgwdsvc.exe -- (avgwd)

SRV - [2010-06-14 14:07:14 | 000,615,936 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)

SRV - [2008-02-05 17:22:36 | 000,141,848 | ---- | M] (Logitech Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe -- (LVSrvLauncher)

SRV - [2008-02-05 17:20:42 | 000,150,040 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)

SRV - [2008-02-05 17:18:48 | 000,186,904 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe -- (LVCOMSer)

SRV - [2006-11-15 10:40:10 | 000,258,560 | ---- | M] (ASUSTeK COMPUTER INC.) [Auto | Running] -- C:\WINDOWS\ATKKBService.exe -- (ATKKeyboardService)



[color=#E56717]========== Driver Services (SafeList) ==========[/color]


DRV - File not found [Kernel | Disabled | Stopped] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)

DRV - [2010-12-10 21:56:50 | 000,015,264 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files\Lavasoft\Ad-Aware\kernexplorer.sys -- (Lavasoft Kernexplorer)

DRV - [2010-11-09 22:20:58 | 000,299,984 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (Avgtdix)

DRV - [2010-09-13 15:27:24 | 000,025,680 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys -- (AVGIDSEH)

DRV - [2010-09-07 03:48:56 | 000,034,384 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (Avgmfx86)

DRV - [2010-09-07 03:48:54 | 000,249,424 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (Avgldx86)

DRV - [2010-09-07 03:48:50 | 000,026,064 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\avgrkx86.sys -- (Avgrkx86)

DRV - [2010-08-19 20:42:38 | 000,030,288 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSFilter.sys -- (AVGIDSFilter)

DRV - [2010-08-19 20:42:36 | 000,123,472 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSDriver.sys -- (AVGIDSDriver)

DRV - [2010-08-19 20:42:34 | 000,026,192 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSShim.sys -- (AVGIDSShim)

DRV - [2010-02-26 13:32:58 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)

DRV - [2010-02-26 13:32:46 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)

DRV - [2010-02-26 13:32:44 | 000,022,528 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)

DRV - [2010-02-26 13:32:44 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)

DRV - [2010-02-26 13:21:22 | 000,137,344 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdnsu.sys -- (nmwcdnsu)

DRV - [2010-02-26 13:21:22 | 000,008,320 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdnsuc.sys -- (nmwcdnsuc)

DRV - [2009-12-17 23:25:12 | 000,026,024 | ---- | M] (Elaborate Bytes AG) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ElbyCDIO.sys -- (ElbyCDIO)

DRV - [2008-08-26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)

DRV - [2008-04-13 19:45:29 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)

DRV - [2008-04-13 18:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio) Sterownik audio USB (WDM)

DRV - [2008-04-13 17:36:05 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)

DRV - [2008-02-06 03:21:25 | 000,041,752 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVUSBSta.sys -- (LVUSBSta)

DRV - [2008-02-06 03:17:37 | 002,570,520 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LV302V32.SYS -- (PID_PEPI) Logitech QuickCam IM(PID_PEPI)

DRV - [2008-02-06 03:17:26 | 000,013,848 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lv302af.sys -- (pepifilter)

DRV - [2008-02-05 17:20:08 | 000,025,624 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVPr2Mon.sys -- (LVPr2Mon)

DRV - [2008-02-05 17:18:12 | 000,689,176 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Lvckap.sys -- (LVcKap)

DRV - [2007-04-19 06:26:00 | 003,988,384 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)

DRV - [2007-02-14 15:09:08 | 000,011,136 | ---- | M] (ASUSTeK COMPUTER INC.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\atkkbnt.sys -- (asuskbnt)

DRV - [2006-09-29 10:06:26 | 000,010,752 | ---- | M] (ASUSTeK COMPUTER INC.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Video3D32.sys -- (Video3D)

DRV - [2006-06-14 13:44:30 | 000,012,288 | ---- | M] (ASUSTeK Computer Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\EIO.sys -- (EIO)

DRV - [2006-02-17 03:28:32 | 000,013,056 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)

DRV - [2006-02-17 03:28:30 | 000,034,176 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)

DRV - [2005-10-20 16:25:58 | 000,012,416 | ---- | M] (ASUSTeK Computer Inc.) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\asusgsb32.sys -- (asusgsb)

DRV - [2005-10-05 10:21:10 | 000,141,312 | R--- | M] (Analog Devices, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ADIHdAud.sys -- (ADIHdAudAddService)

DRV - [2005-08-11 06:49:28 | 000,393,088 | R--- | M] (Sensaura) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\senfilt.sys -- (SenFiltService)

DRV - [2004-10-27 15:21:30 | 000,145,920 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Hdaudio.sys -- (HdAudAddService)

DRV - [2004-08-13 03:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)

DRV - [2003-03-09 17:42:18 | 000,008,672 | ---- | M] ( ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\uscbs108.sys -- (uscbs108)

DRV - [2003-03-09 17:41:38 | 000,102,336 | ---- | M] ( ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\uscsc108.sys -- (uscsc108)

DRV - [2001-08-17 23:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401)



[color=#E56717]========== Standard Registry (SafeList) ==========[/color]



[color=#E56717]========== Internet Explorer ==========[/color]




IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0




IE - HKU\S-1-5-21-1757981266-838170752-1801674531-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.tvn24.pl/

IE - HKU\S-1-5-21-1757981266-838170752-1801674531-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


[color=#E56717]========== FireFox ==========[/color]


FF - prefs.js..browser.startup.homepage: "http://www.tvn24.pl/"

FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:10.0.0.1167

FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0

FF - prefs.js..extensions.enabledItems: {e001c731-5e37-4538-a5cb-8168736a2360}:0.9.9.63

FF - prefs.js..network.proxy.type: 0


FF - HKLM\software\mozilla\Firefox\extensions\\bkmrksync@nokia.com: C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ [2010-02-07 16:56:01 | 000,000,000 | ---D | M]

FF - HKLM\software\mozilla\Firefox\extensions\\{A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}: C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension\ [2010-06-25 20:45:36 | 000,000,000 | ---D | M]

FF - HKLM\software\mozilla\Firefox\extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG10\Firefox\ [2010-11-29 01:33:42 | 000,000,000 | ---D | M]

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-12-13 20:07:09 | 000,000,000 | ---D | M]

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-12-13 20:06:50 | 000,000,000 | ---D | M]

FF - HKLM\software\mozilla\Thunderbird\Extensions\\{CCB7D94B-CA92-4E3F-B79D-ADE0F07ADC74}: C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Thunderbird Connector\ThunderbirdExtension\ [2010-06-25 20:45:37 | 000,000,000 | ---D | M]


[2010-12-13 20:07:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\Mozilla\Extensions

[2010-12-18 17:53:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\Mozilla\Firefox\Profiles\7l1n39th.default\extensions

[2010-12-18 17:53:24 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\CHRISS\Dane aplikacji\Mozilla\Firefox\Profiles\7l1n39th.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}

[2010-12-13 20:06:50 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions

[2010-12-03 18:54:54 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml

[2010-12-03 18:54:54 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml

[2010-12-03 18:54:54 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml

[2010-12-03 18:54:54 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml

[2010-12-03 18:54:54 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml

[2010-12-03 18:54:54 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml


O1 HOSTS File: ([2010-11-29 01:20:17 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts

O1 - Hosts: 127.0.0.1 localhost

O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)

O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll (AVG Technologies CZ, s.r.o.)

O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)

O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll (Google Inc.)

O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll (Google Inc.)

O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\CHRISS\Dane aplikacji\Nowe Gadu-Gadu\_userdata\ggbho.1.dll (GG Network S.A.)

O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)

O3 - HKU\S-1-5-21-1757981266-838170752-1801674531-1003\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)

O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe (AVG Technologies CZ, s.r.o.)

O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)

O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()

O4 - HKU\S-1-5-21-1757981266-838170752-1801674531-1003..\Run: [H/PC Connection Agent] C:\Program Files\Microsoft ActiveSync\wcescomm.exe (Microsoft Corporation)

O4 - HKLM..\RunOnce\Setup: [Registering ActiveScan 2.0 Components] C:\Program Files\Panda Security\ActiveScan 2.0\as2guiie.dll (Panda Security, S.L.)

O4 - HKLM..\RunOnce\Setup: [Registering ActiveScan 2.0 Components.] C:\Program Files\Panda Security\ActiveScan 2.0\npwrapper.dll (Panda Security, S.L.)

O4 - HKLM..\RunOnce\Setup: [Registering ActiveScan 2.0 Components..] C:\Program Files\Panda Security\ActiveScan 2.0\libcomm.dll (Panda Security, S.L.)

O4 - HKLM..\RunOnce\Setup: [Registering ActiveScan 2.0 Components...] C:\Program Files\Panda Security\ActiveScan 2.0\as2inst.dll (Panda Security, S.L.)

O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0

O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present

O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323

O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863

O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present

O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323

O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863

O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present

O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present

O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKU\S-1-5-21-1757981266-838170752-1801674531-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present

O7 - HKU\S-1-5-21-1757981266-838170752-1801674531-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255

O7 - HKU\S-1-5-21-1757981266-838170752-1801674531-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863

O7 - HKU\S-1-5-21-1757981266-838170752-1801674531-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0

O9 - Extra Button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)

O9 - Extra 'Tools' menuitem : Utwórz Ulubione dla urządzenia przenośnego... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation)

O15 - HKU\S-1-5-21-1757981266-838170752-1801674531-1003\..Trusted Domains: mks.com.pl ([www] http in Zaufane witryny)

O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab (QuickTime Object)

O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)

O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab (Reg Error: Key error.)

O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} http://www.mks.com.pl/skaner/SkanerOnline.cab (MksSkanerOnline Class)

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)

O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (Logitech Inc.)

O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll (AVG Technologies CZ, s.r.o.)

O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)

O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)

O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home

O24 - Desktop WallPaper: C:\Documents and Settings\CHRISS\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp

O24 - Desktop BackupWallPaper: C:\Documents and Settings\CHRISS\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2009-03-23 21:16:45 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [NTFS]

O32 - AutoRun File - [2009-01-04 23:56:52 | 000,000,000 | R--D | M] - D:\autorun.inf -- [FAT32]

O32 - AutoRun File - [2006-09-11 18:36:32 | 000,000,194 | ---- | M] () - D:\AUTOEXEC.BAT -- [FAT32]

O34 - HKLM BootExecute: (autocheck autochk *) - File not found

O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgchsvx.exe /sync) - C:\Program Files\AVG\AVG10\avgchsvx.exe (AVG Technologies CZ, s.r.o.)

O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgrsx.exe /sync /restart) - C:\Program Files\AVG\AVG10\avgrsx.exe (AVG Technologies CZ, s.r.o.)

O35 - HKLM\..comfile [open] -- "%1" %*

O35 - HKLM\..exefile [open] -- "%1" %*

O37 - HKLM\...com [@ = comfile] -- "%1" %*

O37 - HKLM\...exe [@ = exefile] -- "%1" %*


NetSvcs: 6to4 - File not found

NetSvcs: HidServ - C:\WINDOWS\System32\hidserv.dll File not found

NetSvcs: Ias - File not found

NetSvcs: Iprip - File not found

NetSvcs: Irmon - File not found

NetSvcs: NWCWorkstation - File not found

NetSvcs: Nwsapagent - File not found

NetSvcs: WmdmPmSp - File not found


MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Logitech Desktop Messenger.lnk - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe - (Logitech Inc.)

MsConfig - StartUpFolder: C:^Documents and Settings^CHRISS^Menu Start^Programy^Autostart^ProgSense.lnk - C:\Program Files\ProgSense\ProgSense.exe - (ProgSense)

MsConfig - StartUpReg: [b]Ad-Watch[/b] - hkey= - key= - C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe (Lavasoft)

MsConfig - StartUpReg: [b]Adobe Reader Speed Launcher[/b] - hkey= - key= - C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)

MsConfig - StartUpReg: [b]Auslogics BoostSpeed[/b] - hkey= - key= - C:\Program Files\Auslogics\AusLogics BoostSpeed\BoostSpeed.exe (Auslogics)

MsConfig - StartUpReg: [b]Auslogics BoostSpeed 4[/b] - hkey= - key= - C:\Program Files\Auslogics\AusLogics BoostSpeed\BoostSpeed.exe (Auslogics)

MsConfig - StartUpReg: [b]ccleaner[/b] - hkey= - key= - C:\Program Files\CCleaner\CCleaner.exe (Piriform Ltd)

MsConfig - StartUpReg: [b]GamerOSD[/b] - hkey= - key= - C:\Program Files\ASUS\GamerOSD\GamerOSD.exe (ASUSTeK Computer Inc.)

MsConfig - StartUpReg: [b]Google Update[/b] - hkey= - key= - C:\Documents and Settings\CHRISS\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe (Google Inc.)

MsConfig - StartUpReg: [b]GrooveMonitor[/b] - hkey= - key= - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)

MsConfig - StartUpReg: [b]KernelFaultCheck[/b] - hkey= - key= - File not found

MsConfig - StartUpReg: [b]Load[/b] - hkey= - key= - File not found

MsConfig - StartUpReg: [b]LogitechQuickCamRibbon[/b] - hkey= - key= - C:\Program Files\Logitech\QuickCam\Quickcam.exe ()

MsConfig - StartUpReg: [b]NeroFilterCheck[/b] - hkey= - key= - C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)

MsConfig - StartUpReg: [b]NokiaMServer[/b] - hkey= - key= - C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe (Nokia)

MsConfig - StartUpReg: [b]NokiaOviSuite2[/b] - hkey= - key= - C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe (Nokia)

MsConfig - StartUpReg: [b]Odkurzacz-MCD[/b] - hkey= - key= - C:\Program Files\Odkurzacz\odk_mcd.exe (Franmo Software)

MsConfig - StartUpReg: [b]PC Suite Tray[/b] - hkey= - key= - C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe (Nokia)

MsConfig - StartUpReg: [b]QuickTime Task[/b] - hkey= - key= - C:\Program Files\QuickTime\qttask.exe (Apple Inc.)

MsConfig - StartUpReg: [b]Run[/b] - hkey= - key= - File not found

MsConfig - StartUpReg: [b]SoundMAXPnP[/b] - hkey= - key= - C:\Program Files\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)

MsConfig - StartUpReg: [b]swg[/b] - hkey= - key= - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)

MsConfig - StartUpReg: [b]TrojanScanner[/b] - hkey= - key= - C:\Program Files\Trojan Remover\Trjscan.exe (Simply Super Software)

MsConfig - StartUpReg: [b]Uniblue Registry Booster[/b] - hkey= - key= - C:\Program Files\Uniblue\Registry Booster\RegistryBooster.exe (Uniblue Registry Booster)

MsConfig - State: "system.ini" - 0

MsConfig - State: "win.ini" - 0

MsConfig - State: "bootini" - 0

MsConfig - State: "services" - 0

MsConfig - State: "startup" - 2


SafeBootMin: Base - Driver Group

SafeBootMin: Boot Bus Extender - Driver Group

SafeBootMin: Boot file system - Driver Group

SafeBootMin: File system - Driver Group

SafeBootMin: Filter - Driver Group

SafeBootMin: PCI Configuration - Driver Group

SafeBootMin: PEVSystemStart - Service

SafeBootMin: PNP Filter - Driver Group

SafeBootMin: Primary disk - Driver Group

SafeBootMin: procexp90.Sys - Driver

SafeBootMin: SCSI Class - Driver Group

SafeBootMin: sermouse.sys - Driver

SafeBootMin: System Bus Extender - Driver Group

SafeBootMin: vds - Service

SafeBootMin: vga.sys - Driver

SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers

SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive

SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive

SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller

SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc

SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard

SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse

SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters

SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter

SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System

SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive

SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy

SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume

SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices


SafeBootNet: Base - Driver Group

SafeBootNet: Boot Bus Extender - Driver Group

SafeBootNet: Boot file system - Driver Group

SafeBootNet: File system - Driver Group

SafeBootNet: Filter - Driver Group

SafeBootNet: NDIS Wrapper - Driver Group

SafeBootNet: NetBIOSGroup - Driver Group

SafeBootNet: NetDDEGroup - Driver Group

SafeBootNet: Network - Driver Group

SafeBootNet: NetworkProvider - Driver Group

SafeBootNet: PCI Configuration - Driver Group

SafeBootNet: PEVSystemStart - Service

SafeBootNet: PNP Filter - Driver Group

SafeBootNet: PNP_TDI - Driver Group

SafeBootNet: Primary disk - Driver Group

SafeBootNet: procexp90.Sys - Driver

SafeBootNet: SCSI Class - Driver Group

SafeBootNet: sermouse.sys - Driver

SafeBootNet: Streams Drivers - Driver Group

SafeBootNet: System Bus Extender - Driver Group

SafeBootNet: TDI - Driver Group

SafeBootNet: vga.sys - Driver

SafeBootNet: {1a3e09be-1e45-494b-9174-d7385b45bbf5} - Reg Error: Value error.

SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers

SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive

SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive

SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller

SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc

SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard

SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse

SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net

SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient

SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService

SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans

SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters

SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter

SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System

SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive

SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume

SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices


[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]


[2010-12-18 17:53:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\CHRISS\Dane aplikacji\QuickScan

[2010-12-18 17:29:20 | 000,000,000 | ---D | C] -- C:\Program Files\ESET

[2010-12-18 17:13:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood

[2010-12-18 17:12:51 | 000,000,000 | ---D | C] -- C:\Program Files\Panda Security

[2010-12-17 22:11:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit\Unnamed Server

[2010-12-16 21:14:57 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndproxy.sys

[2010-12-14 23:24:02 | 000,000,000 | ---D | C] -- C:\SAV32CLI

[2010-12-14 20:12:10 | 000,000,000 | ---D | C] -- C:\Program Files\HakerzyNET AntiVirus

[2010-12-14 00:24:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\ASTULogTemp

[2010-12-13 20:12:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\CHRISS\Moje dokumenty\Pobieranie

[2010-12-13 20:07:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\CHRISS\Ustawienia lokalne\Dane aplikacji\Mozilla

[2010-12-13 20:07:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\CHRISS\Dane aplikacji\Mozilla

[2010-12-13 20:06:50 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox

[2010-12-13 19:06:00 | 000,000,000 | ---D | C] -- C:\Radio Gdansk 48 kbs

[2010-12-13 18:22:37 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe

[2010-12-13 18:22:37 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe

[2010-12-13 18:22:37 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe

[2010-12-10 19:08:24 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8

[2010-12-10 18:14:25 | 000,000,000 | ---D | C] -- C:\Program Files\RegClean Pro

[2010-12-10 17:39:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8(2)

[2010-12-05 01:34:09 | 000,000,000 | ---D | C] -- C:\Harry Potter - Wszystkie Części

[2010-12-05 01:05:20 | 000,000,000 | ---D | C] -- C:\Harry Potter i Książę Półkrwi.2009.DVDRip.RMVB.Dubbing PL

[2010-12-04 21:47:07 | 000,000,000 | ---D | C] -- C:\TRANSATLANTIC

[2010-12-04 20:33:42 | 000,000,000 | ---D | C] -- C:\Transatlantic - An Evening With Transatlantic Whirld Tour 2010 (2-DVD and 3-CD Deluxe Edition) 2010 (Flac lossless)

[2010-11-30 20:24:23 | 000,000,000 | -HSD | C] -- C:\RECYCLER

[2010-11-30 20:08:24 | 000,000,000 | -H-D | C] -- C:\WINDOWS\PIF

[2010-11-29 01:37:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\CHRISS\Dane aplikacji\AVG10

[2010-11-29 01:35:36 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files

[2010-11-29 01:33:24 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG10

[2010-11-29 01:33:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\AVG

[2010-11-29 01:29:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\MFAData

[2010-11-28 16:40:23 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\CHRISS\Recent

[2010-11-27 01:43:30 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys

[2010-11-27 01:43:29 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys

[2010-11-27 01:43:29 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware

[2010-11-27 01:34:14 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner

[2010-11-27 01:33:31 | 002,963,664 | ---- | C] (Piriform Ltd) -- C:\ccsetup301.exe

[2010-11-27 01:05:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Martau

[2010-11-27 01:05:20 | 000,000,000 | ---D | C] -- C:\Program Files\Total Uninstall 5

[2010-11-25 22:47:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\CHRISS\Dane aplikacji\RDRM

[2009-06-12 19:23:22 | 000,047,360 | R--- | C] (VSO Software) -- C:\Documents and Settings\CHRISS\Dane aplikacji\pcouffin.sys

[2003-03-09 17:42:44 | 000,047,104 | ---- | C] ( ) -- C:\WINDOWS\uscscsi.dll

[2003-03-09 17:42:18 | 000,008,672 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\uscbs108.sys

[2003-03-09 17:41:38 | 000,102,336 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\uscsc108.sys


[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]


[2010-12-18 21:26:25 | 000,000,464 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{F1331D13-E658-4A09-8FDF-7E5DC5259D75}.job

[2010-12-18 20:58:00 | 000,001,136 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1757981266-838170752-1801674531-1003UA.job

[2010-12-18 20:30:07 | 000,001,982 | ---- | M] () -- C:\Documents and Settings\CHRISS\Pulpit\HiJackThis.lnk

[2010-12-18 15:27:12 | 102,072,602 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm

[2010-12-18 15:19:10 | 000,088,723 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml

[2010-12-18 15:19:00 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat

[2010-12-17 23:02:59 | 000,277,352 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT

[2010-12-17 10:54:14 | 000,196,608 | ---- | M] () -- C:\WINDOWS\System32\drivers\nStandard.bin

[2010-12-17 10:37:40 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat

[2010-12-16 21:34:44 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK

[2010-12-15 00:00:10 | 000,000,281 | RHS- | M] () -- C:\boot.ini

[2010-12-14 00:24:54 | 000,001,747 | ---- | M] () -- C:\WINDOWS\System32\ASTULog.cab

[2010-12-14 00:24:54 | 000,001,033 | ---- | M] () -- C:\WINDOWS\System32\setup.inf

[2010-12-14 00:24:54 | 000,000,283 | ---- | M] () -- C:\WINDOWS\System32\setup.rpt

[2010-12-13 23:08:55 | 001,184,188 | ---- | M] () -- C:\WINDOWS\unins000.dat

[2010-12-13 23:05:02 | 000,709,641 | ---- | M] () -- C:\WINDOWS\unins000.exe

[2010-12-13 20:06:54 | 000,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk

[2010-12-13 18:02:30 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl

[2010-12-10 18:43:51 | 000,451,220 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat

[2010-12-10 18:43:51 | 000,395,200 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat

[2010-12-10 18:43:51 | 000,075,486 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat

[2010-12-10 18:43:51 | 000,059,440 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat

[2010-12-10 12:15:44 | 000,385,261 | ---- | M] () -- C:\Documents and Settings\CHRISS\Pulpit\Kituś 2.jpg

[2010-12-10 12:14:24 | 000,020,802 | ---- | M] () -- C:\Documents and Settings\CHRISS\Pulpit\Picia na stole.jpg

[2010-12-04 18:13:50 | 000,000,042 | ---- | M] () -- C:\Documents and Settings\CHRISS\default.pls

[2010-12-04 13:58:00 | 000,001,084 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1757981266-838170752-1801674531-1003Core.job

[2010-12-01 23:57:43 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini

[2010-12-01 23:32:00 | 000,000,710 | R--- | M] () -- C:\Documents and Settings\CHRISS\Pulpit\KMPlayer.lnk

[2010-11-30 19:37:33 | 000,000,842 | R--- | M] () -- C:\Documents and Settings\CHRISS\Pulpit\AVG PC Tuneup 2011.lnk

[2010-11-29 17:42:18 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys

[2010-11-29 17:42:06 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys

[2010-11-29 01:35:15 | 000,000,720 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\AVG 2011.lnk

[2010-11-29 01:20:17 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts

[2010-11-27 01:43:32 | 000,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk

[2010-11-27 01:34:14 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\CCleaner.lnk

[2010-11-27 01:33:51 | 002,963,664 | ---- | M] (Piriform Ltd) -- C:\ccsetup301.exe

[2010-11-27 01:05:21 | 000,000,639 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Total Uninstall 5.lnk

[2010-11-25 22:46:38 | 000,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job

[2010-11-25 22:43:48 | 000,098,392 | ---- | M] (Sunbelt Software) -- C:\WINDOWS\System32\drivers\SBREDrv.sys

[2010-11-25 14:24:06 | 000,120,832 | R--- | M] () -- C:\Documents and Settings\CHRISS\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2010-11-25 12:04:18 | 000,000,104 | R--- | M] () -- C:\Documents and Settings\CHRISS\Pulpit\Skrót do Mój komputer.lnk


[color=#E56717]========== Files Created - No Company Name ==========[/color]


[2010-12-18 20:30:07 | 000,001,982 | ---- | C] () -- C:\Documents and Settings\CHRISS\Pulpit\HiJackThis.lnk

[2010-12-18 15:27:12 | 102,072,602 | ---- | C] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm

[2010-12-14 00:24:42 | 000,001,747 | ---- | C] () -- C:\WINDOWS\System32\ASTULog.cab

[2010-12-14 00:24:41 | 000,001,033 | ---- | C] () -- C:\WINDOWS\System32\setup.inf

[2010-12-14 00:24:41 | 000,000,283 | ---- | C] () -- C:\WINDOWS\System32\setup.rpt

[2010-12-13 20:06:54 | 000,001,602 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk

[2010-12-11 02:59:27 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat

[2010-12-10 14:41:44 | 000,001,393 | ---- | C] () -- C:\WINDOWS\imsins.BAK

[2010-12-10 12:15:43 | 000,385,261 | ---- | C] () -- C:\Documents and Settings\CHRISS\Pulpit\Kituś 2.jpg

[2010-12-10 12:14:25 | 000,020,802 | ---- | C] () -- C:\Documents and Settings\CHRISS\Pulpit\Picia na stole.jpg

[2010-12-04 18:13:49 | 000,000,042 | ---- | C] () -- C:\Documents and Settings\CHRISS\default.pls

[2010-12-01 23:32:00 | 000,000,710 | R--- | C] () -- C:\Documents and Settings\CHRISS\Pulpit\KMPlayer.lnk

[2010-11-30 19:37:33 | 000,000,842 | R--- | C] () -- C:\Documents and Settings\CHRISS\Pulpit\AVG PC Tuneup 2011.lnk

[2010-11-29 01:35:15 | 000,000,720 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\AVG 2011.lnk

[2010-11-27 01:43:32 | 000,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes' Anti-Malware.lnk

[2010-11-27 01:34:14 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\CCleaner.lnk

[2010-11-27 01:05:21 | 000,000,639 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Total Uninstall 5.lnk

[2010-11-25 12:04:18 | 000,000,104 | R--- | C] () -- C:\Documents and Settings\CHRISS\Pulpit\Skrót do Mój komputer.lnk

[2010-11-13 01:42:06 | 000,162,304 | ---- | C] () -- C:\WINDOWS\System32\ztvunrar36.dll

[2010-11-13 01:42:06 | 000,077,312 | ---- | C] () -- C:\WINDOWS\System32\ztvunace26.dll

[2010-11-13 01:42:06 | 000,075,264 | ---- | C] () -- C:\WINDOWS\System32\unacev2.dll

[2010-11-13 01:42:05 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\UNRAR3.dll

[2010-09-02 22:24:21 | 000,130,095 | ---- | C] () -- C:\Program Files\pncrt.zip

[2010-06-20 14:56:37 | 000,000,107 | ---- | C] () -- C:\WINDOWS\VobEdit.INI

[2010-05-09 14:10:44 | 000,000,014 | ---- | C] () -- C:\WINDOWS\System32\systeminfo3.dll

[2010-01-12 20:25:56 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll

[2010-01-12 20:25:54 | 000,067,584 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll

[2009-09-18 11:49:13 | 000,081,920 | R--- | C] () -- C:\Documents and Settings\CHRISS\Dane aplikacji\ezpinst.exe

[2009-06-12 19:23:22 | 000,007,176 | R--- | C] () -- C:\Documents and Settings\CHRISS\Dane aplikacji\pcouffin.cat

[2009-06-12 19:23:22 | 000,001,144 | R--- | C] () -- C:\Documents and Settings\CHRISS\Dane aplikacji\pcouffin.inf

[2009-06-07 15:24:04 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll

[2009-06-07 15:16:12 | 000,819,200 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll

[2009-06-04 19:01:26 | 000,002,528 | R--- | C] () -- C:\Documents and Settings\CHRISS\Dane aplikacji\$_hpcst$.hpc

[2009-05-22 21:01:31 | 000,000,606 | R--- | C] () -- C:\Documents and Settings\CHRISS\Dane aplikacji\AutoGK.ini

[2009-05-19 19:34:19 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI

[2009-05-05 22:51:33 | 000,000,126 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\.zreglib

[2009-05-05 18:14:15 | 000,246,784 | ---- | C] () -- C:\WINDOWS\System32\dxr.dll

[2009-05-05 18:14:15 | 000,108,032 | ---- | C] () -- C:\WINDOWS\System32\avi.dll

[2009-05-05 18:14:14 | 000,148,480 | ---- | C] () -- C:\WINDOWS\System32\mkx.dll

[2009-05-05 18:14:14 | 000,141,312 | ---- | C] () -- C:\WINDOWS\System32\mp4.dll

[2009-05-05 18:14:13 | 000,159,744 | ---- | C] () -- C:\WINDOWS\System32\mmfinfo.dll

[2009-05-05 18:14:13 | 000,120,832 | ---- | C] () -- C:\WINDOWS\System32\ogm.dll

[2009-05-05 18:14:12 | 000,163,840 | ---- | C] () -- C:\WINDOWS\System32\ts.dll

[2009-05-05 18:14:11 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\mkunicode.dll

[2009-05-05 18:14:06 | 001,416,015 | ---- | C] () -- C:\WINDOWS\System32\ffmpegmt.dll

[2009-05-05 18:14:04 | 000,557,469 | ---- | C] () -- C:\WINDOWS\System32\libmplayer.dll

[2009-05-05 18:14:03 | 000,146,098 | ---- | C] () -- C:\WINDOWS\System32\libmpeg2_ff.dll

[2009-05-05 18:14:02 | 004,471,092 | ---- | C] () -- C:\WINDOWS\System32\libavcodec.dll

[2009-05-05 18:13:56 | 000,113,152 | ---- | C] () -- C:\WINDOWS\System32\ff_unrar.dll

[2009-05-05 18:13:56 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\ff_wmv9.dll

[2009-05-05 18:13:55 | 000,183,296 | ---- | C] () -- C:\WINDOWS\System32\ff_samplerate.dll

[2009-05-05 18:13:55 | 000,178,688 | ---- | C] () -- C:\WINDOWS\System32\ff_libmad.dll

[2009-05-05 18:13:54 | 000,486,400 | ---- | C] () -- C:\WINDOWS\System32\ff_libfaad2.dll

[2009-05-05 18:13:53 | 000,257,024 | ---- | C] () -- C:\WINDOWS\System32\ff_libdts.dll

[2009-05-05 18:13:53 | 000,142,848 | ---- | C] () -- C:\WINDOWS\System32\ff_liba52.dll

[2009-05-05 18:13:52 | 002,246,163 | ---- | C] () -- C:\WINDOWS\System32\x264vfw.dll

[2009-05-05 18:13:48 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\vorbisenc.dll

[2009-05-05 18:13:48 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll

[2009-05-05 18:13:46 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll

[2009-05-05 18:13:46 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll

[2009-05-05 18:13:41 | 000,009,216 | ---- | C] () -- C:\WINDOWS\System32\cpuinf32.dll

[2009-05-05 16:07:02 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini

[2009-04-18 22:29:03 | 000,120,832 | R--- | C] () -- C:\Documents and Settings\CHRISS\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2009-03-30 23:10:16 | 000,081,813 | R--- | C] () -- C:\Documents and Settings\CHRISS\Ustawienia lokalne\Dane aplikacji\FASTWiz.log

[2009-03-30 22:47:12 | 000,066,482 | R--- | C] () -- C:\WINDOWS\System32\lvcoinst.ini

[2009-03-23 23:37:22 | 000,019,796 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini

[2009-03-23 23:36:50 | 000,019,758 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini

[2009-03-23 23:25:52 | 000,000,489 | ---- | C] () -- C:\WINDOWS\demo.INI

[2009-03-23 23:18:54 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys

[2009-03-23 23:18:38 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS

[2009-03-23 22:07:08 | 000,643,142 | ---- | C] () -- C:\WINDOWS\aticlocklib.dll

[2009-03-23 22:07:08 | 000,110,592 | ---- | C] () -- C:\WINDOWS\R5ClkLib.dll

[2009-03-23 22:07:07 | 000,046,592 | ---- | C] () -- C:\WINDOWS\System32\asfrench.dll

[2009-03-23 22:07:07 | 000,046,080 | ---- | C] () -- C:\WINDOWS\System32\asrussian.dll

[2009-03-23 22:07:07 | 000,046,080 | ---- | C] () -- C:\WINDOWS\System32\asgerman.dll

[2009-03-23 22:07:07 | 000,046,080 | ---- | C] () -- C:\WINDOWS\System32\aseng.dll

[2009-03-23 22:07:07 | 000,045,568 | ---- | C] () -- C:\WINDOWS\System32\askorean.dll

[2009-03-23 22:07:07 | 000,045,568 | ---- | C] () -- C:\WINDOWS\System32\asjapan.dll

[2009-03-23 22:07:07 | 000,045,568 | ---- | C] () -- C:\WINDOWS\System32\aschs.dll

[2009-03-23 22:07:07 | 000,000,018 | ---- | C] () -- C:\WINDOWS\System32\atkid.ini

[2009-03-23 22:07:06 | 000,045,568 | ---- | C] () -- C:\WINDOWS\System32\ASCHT.dll

[2009-03-23 22:03:30 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI

[2009-01-28 19:50:44 | 000,153,088 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll

[2008-02-05 17:20:08 | 000,025,624 | ---- | C] () -- C:\WINDOWS\System32\drivers\LVPr2Mon.sys

[2007-04-19 06:26:00 | 001,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll

[2007-04-19 06:26:00 | 001,474,560 | ---- | C] () -- C:\WINDOWS\System32\nview.dll

[2007-04-19 06:26:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll

[2007-04-19 06:26:00 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll

[2007-04-19 06:26:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll

[2007-04-19 06:26:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll

[2007-04-19 06:26:00 | 000,212,992 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll


[color=#E56717]========== LOP Check ==========[/color]


[2010-11-29 01:36:14 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG10

[2010-11-29 01:35:36 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files

[2009-06-13 11:51:15 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite

[2009-09-18 11:49:16 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DVDXStudio

[2010-05-09 16:44:22 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Elaborate Bytes

[2010-06-21 17:04:32 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations

[2010-11-25 22:47:05 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla

[2010-11-27 01:05:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Martau

[2010-11-29 01:32:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\MFAData

[2009-07-27 09:56:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Nokia

[2010-06-25 20:42:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\NokiaInstallerCache

[2010-06-15 10:17:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite

[2010-11-13 01:51:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\r2 Studios

[2010-11-13 01:42:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Simply Super Software

[2009-06-12 18:25:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\SlySoft

[2010-12-17 01:06:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP

[2009-04-15 23:57:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\tlen.pl

[2010-01-27 19:37:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\AnvSoft

[2010-05-21 23:12:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\Auslogics

[2010-05-09 22:48:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\AutoUpdate

[2010-11-29 01:37:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\AVG10

[2010-04-13 22:25:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\AVI ReComp

[2009-08-11 15:51:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\BESTplayer

[2009-08-22 01:01:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\BSplayer Pro

[2010-07-12 23:38:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\Camfrog

[2009-06-13 11:54:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\DAEMON Tools Lite

[2009-11-14 21:16:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\DC++

[2009-06-11 16:25:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\Gadu-Gadu

[2010-07-13 21:46:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\ImgBurn

[2010-11-29 00:40:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\ipla

[2010-07-22 11:42:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\Kamerzysta

[2009-03-30 22:49:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\Leadertech

[2010-06-25 20:51:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\Nokia

[2010-06-28 18:14:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\Nowe Gadu-Gadu

[2010-06-29 20:48:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\PC Suite

[2010-05-08 23:41:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\ProgSense

[2010-12-18 17:53:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\QuickScan

[2010-11-13 01:51:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\r2 Studios

[2010-09-26 18:57:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\RayV

[2010-11-25 22:47:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\RDRM

[2010-11-29 00:06:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\Registry Booster

[2010-11-13 01:42:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\Simply Super Software

[2009-04-03 22:34:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\streamripper

[2009-09-20 01:47:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\Tlen.pl

[2009-06-12 18:57:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\Uniblue

[2010-12-10 19:07:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\uTorrent

[2010-09-11 16:22:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\vShare

[2010-05-09 15:52:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\CHRISS\Dane aplikacji\Vso

[2010-11-25 22:46:38 | 000,000,472 | ---- | M] () -- C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job

[2010-12-18 21:26:25 | 000,000,464 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{F1331D13-E658-4A09-8FDF-7E5DC5259D75}.job


[color=#E56717]========== Purity Check ==========[/color]




[color=#E56717]========== Custom Scans ==========[/color]



[color=#A23BEC]< %systemdrive%\*.* >[/color]

[2010-12-10 19:11:26 | 000,011,644 | ---- | M] () -- C:\aaw7boot.log

[2010-12-14 00:25:07 | 000,000,944 | ---- | M] () -- C:\ASLog.txt

[2009-03-23 21:16:45 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT

[2010-12-15 00:00:10 | 000,000,281 | RHS- | M] () -- C:\boot.ini

[2001-07-22 00:13:54 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin

[2010-11-27 01:33:51 | 002,963,664 | ---- | M] (Piriform Ltd) -- C:\ccsetup301.exe

[2009-03-23 21:16:45 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS

[2010-01-06 23:37:32 | 350,156,009 | ---- | M] () -- C:\Dom_Zly.2009.DVDRip.RMVB.PL.rmvb

[2009-10-16 08:25:24 | 308,341,206 | ---- | M] () -- C:\Hard.Mission.Dvdrip.rmvb

[2009-03-23 21:16:45 | 000,000,000 | RHS- | M] () -- C:\IO.SYS

[2010-12-18 20:19:48 | 000,007,570 | ---- | M] () -- C:\mksbasel.cpp.log

[2009-03-23 21:16:45 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS

[2004-08-03 23:38:34 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM

[2009-03-24 00:59:33 | 000,251,152 | RHS- | M] () -- C:\ntldr

[2010-12-18 15:18:42 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys



[color=#A23BEC]< MD5 for: AGP440.SYS >[/color]

[2004-08-04 01:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:agp440.sys

[2009-03-24 00:56:56 | 023,908,281 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys

[2009-03-24 00:56:56 | 023,908,281 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:agp440.sys

[2008-04-13 19:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ERDNT\cache\agp440.sys

[2008-04-13 19:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys

[2008-04-13 19:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys


[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]

[2004-08-04 01:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys

[2009-03-24 00:56:56 | 023,908,281 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys

[2009-03-24 00:56:56 | 023,908,281 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys

[2008-04-13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ERDNT\cache\atapi.sys

[2008-04-13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys

[2008-04-13 19:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys

[2004-08-03 23:59:44 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys


[color=#A23BEC]< MD5 for: BEEP.SYS >[/color]

[2001-08-17 23:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\ERDNT\cache\beep.sys

[2001-08-17 23:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys

[2001-08-17 23:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys


[color=#A23BEC]< MD5 for: CDROM.SYS >[/color]

[2004-08-04 01:54:52 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys

[2009-03-24 00:56:56 | 023,908,281 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys

[2009-03-24 00:56:56 | 023,908,281 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys

[2008-04-13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys

[2008-04-13 19:40:46 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys

[2004-08-03 23:59:54 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys


[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]

[2008-04-13 20:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ERDNT\cache\ndis.sys

[2008-04-13 20:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys

[2008-04-13 20:20:37 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys

[2004-08-04 00:14:30 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys


[color=#A23BEC]< MD5 for: USERINIT.EXE >[/color]

[2008-04-14 18:21:45 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=2A5B37D520508BE6570A3EA79695F5B5 -- C:\WINDOWS\ERDNT\cache\userinit.exe

[2008-04-14 18:21:45 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=2A5B37D520508BE6570A3EA79695F5B5 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe

[2008-04-14 18:21:45 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=2A5B37D520508BE6570A3EA79695F5B5 -- C:\WINDOWS\system32\userinit.exe

[2004-08-04 01:44:30 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=BD768099B4C44AA631728CB74EB54396 -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe


[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]

[2004-08-04 01:44:30 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe

[2008-04-14 18:21:48 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\ERDNT\cache\winlogon.exe

[2008-04-14 18:21:48 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe

[2008-04-14 18:21:48 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\winlogon.exe


[color=#E56717]========== Alternate Data Streams ==========[/color]


@Alternate Data Stream - 149 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:679ABA25


< End of report >

– Dodane 18.12.2010 (So) 21:45 –

http://wklej.org/id/440553/

– Dodane 19.12.2010 (N) 22:32 –

sprawdzi ktoś ?