Operacja została anulowana ze względu na ograniczenia nałożo

Oprogramowanie komputerowe Problemy z oprogramowaniem
#1

Mam problem z odpaleniem gry . Czytalem troche o tym i zrobilem loga . Prosze o pomoc

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 20:21:13, on 2010-08-20

Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe

C:\WINDOWS\system32\FsUsbExService.Exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\wbem\wmiapsrv.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe

C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe

C:\Documents and Settings\Dom\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Nowe Gadu-Gadu\gg.exe

C:\Program Files\Common Files\Java\Java Update\jucheck.exe

C:\Program Files\Nowe Gadu-Gadu\spellchecker_gg.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\WINDOWS\system32\msiexec.exe

C:\Program Files\Mozilla Firefox\plugin-container.exe

D:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.localstrike.com.ar/

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.videoxdvd.com/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

O2 - BHO: IEPluginBHO - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\Dom\Dane aplikacji\Nowe Gadu-Gadu_userdata\ggbho.1.dll

O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll

O4 - HKLM…\Run: [CTHelper] CTHELPER.EXE

O4 - HKLM…\Run: [updReg] C:\WINDOWS\UpdReg.EXE

O4 - HKLM…\Run: [Jet Detection] “C:\Program Files\Creative\SBLive\PROGRAM\ADGJDet.exe”

O4 - HKLM…\Run: [WheelMouse] C:\Program Files\A4Tech\Mouse\Amoumain.exe

O4 - HKLM…\Run: [sunJavaUpdateSched] “C:\Program Files\Common Files\Java\Java Update\jusched.exe”

O4 - HKLM…\Run: [Adobe Reader Speed Launcher] “C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe”

O4 - HKLM…\Run: [Adobe ARM] “C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe”

O4 - HKLM…\Run: [egui] “C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe” /hide /waitservice

O4 - HKCU…\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU…\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe

O4 - HKCU…\Run: [DAEMON Tools Lite] “D:\Program Files\DAEMON Tools Lite\DTLite.exe” -autorun

O4 - HKCU…\Run: [RocketDock] “C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe”

O4 - HKCU…\Run: [Google Update] “C:\Documents and Settings\Dom\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe” /c

O4 - HKUS\S-1-5-18…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘SYSTEM’)

O4 - HKUS.DEFAULT…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘Default user’)

O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe

O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: Pobierz z &BitSpirit - C:\Program Files\BitSpirit\bsurl.htm

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra ‘Tools’ menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll

O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll

O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe

O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe

O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe

O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

End of file - 6722 bytes

#2

HiJackThis to przestarzałe narzędzie pokazujące mało szczegółowe logi!

Jeśli masz już podawać logi to z OTL.

Podaj więcej informacji o problemie. Jakieś komunikaty, nazwa gry itp.?

#3

Tą gra jest Metin2 . Kiedys normalnie mi chodzil i gdy wczoraj probowalem odpalic , wyskoczyl taki komunikat “operacja została anulowana ze względu na ograniczenia nałożone na ten komputer”

Skan z OTL podam jutro

#4

Taki błąd wyskakuje gdy administrator komputera nałoży pewne uprawnienia dla użytkownika.

Informacja o błędzie: Link

Czy twoje konto w systemie to konto administracyjne?

#5

OTL logfile created on: 2010-08-20 23:43:35 - Run 1

OTL by OldTimer - Version 3.2.10.0 Folder = C:\Documents and Settings\Dom\Pulpit

Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 8.0.6001.18702)

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

1,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 54,00% Memory free

3,00 Gb Paging File | 3,00 Gb Available in Paging File | 86,00% Paging File free

Paging file location(s): C:\pagefile.sys 1920 3840 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 24,90 Gb Total Space | 10,25 Gb Free Space | 41,17% Space Free | Partition Type: NTFS

Drive D: | 49,62 Gb Total Space | 13,87 Gb Free Space | 27,96% Space Free | Partition Type: NTFS

E: Drive not present or media not loaded

F: Drive not present or media not loaded

G: Drive not present or media not loaded

H: Drive not present or media not loaded

I: Drive not present or media not loaded

Computer Name: ANITA

Current User Name: Dom

Logged in as Administrator.

Current Boot Mode: Normal

Scan Mode: Current user

Company Name Whitelist: On

Skip Microsoft Files: On

File Age = 90 Days

Output = Standard

Quick Scan

========== Processes (SafeList) ==========

PRC - [2010-08-20 23:40:13 | 000,575,488 | ---- | M] (OldTimer Tools) – C:\Documents and Settings\Dom\Pulpit\OTL.exe

PRC - [2010-07-25 09:26:06 | 000,910,296 | ---- | M] (Mozilla Corporation) – C:\Program Files\Mozilla Firefox\firefox.exe

PRC - [2010-04-01 11:16:20 | 000,357,696 | ---- | M] (DT Soft Ltd) – D:\Program Files\DAEMON Tools Lite\DTLite.exe

PRC - [2010-03-29 18:55:19 | 010,719,848 | ---- | M] (GG Network S.A.) – C:\Program Files\Nowe Gadu-Gadu\gg.exe

PRC - [2010-02-18 11:43:20 | 000,490,728 | ---- | M] (Sun Microsystems, Inc.) – C:\Program Files\Common Files\Java\Java Update\jucheck.exe

PRC - [2009-10-07 10:16:50 | 000,472,280 | ---- | M] (ESET) – C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe

PRC - [2009-10-07 10:15:42 | 001,461,080 | ---- | M] (ESET) – C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe

PRC - [2009-07-27 16:39:44 | 000,077,824 | ---- | M] () – C:\Program Files\Nowe Gadu-Gadu\spellchecker_gg.exe

PRC - [2009-04-02 19:05:22 | 000,102,400 | ---- | M] (Samsung Electronics Co., Ltd.) – C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe

PRC - [2009-03-31 10:39:36 | 000,233,472 | ---- | M] (Teruten) – C:\WINDOWS\system32\FsUsbExService.Exe

PRC - [2007-03-19 00:05:02 | 000,630,784 | ---- | M] () – C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe

PRC - [2007-02-11 00:07:32 | 000,241,664 | ---- | M] (A4Tech Co.,Ltd.) – C:\Program Files\A4Tech\Mouse\Amoumain.exe

PRC - [2004-08-04 02:44:20 | 000,975,872 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\explorer.exe

PRC - [2003-08-28 10:45:38 | 000,024,576 | ---- | M] (Creative Technology Ltd) – C:\WINDOWS\system32\CTHELPER.EXE

========== Modules (SafeList) ==========

MOD - [2010-08-20 23:40:13 | 000,575,488 | ---- | M] (OldTimer Tools) – C:\Documents and Settings\Dom\Pulpit\OTL.exe

MOD - [2007-03-19 00:04:22 | 000,069,632 | ---- | M] () – C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.dll

MOD - [2007-02-10 23:51:40 | 000,036,864 | ---- | M] (A4Tech Co.,Ltd.) – C:\WINDOWS\system32\Amhooker.dll

MOD - [2004-08-04 01:42:34 | 001,050,624 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

MOD - [2004-08-04 01:01:18 | 000,102,400 | ---- | M] (Microsoft Corporation) – C:\WINDOWS\system32\msscript.ocx

MOD - [2003-08-28 10:45:56 | 000,057,344 | ---- | M] (Creative Technology Ltd) – C:\WINDOWS\system32\CTAGENT.DLL

========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] – C:\WINDOWS\System32\hidserv.dll – (HidServ)

SRV - [2010-02-11 17:36:06 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] – C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe – (FLEXnet Licensing Service)

SRV - [2009-10-07 10:21:14 | 000,020,680 | ---- | M] (ESET) [On_Demand | Stopped] – C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe – (EhttpSrv)

SRV - [2009-10-07 10:16:50 | 000,472,280 | ---- | M] (ESET) [Auto | Running] – C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe – (ekrn)

SRV - [2009-03-31 10:39:36 | 000,233,472 | ---- | M] (Teruten) [Auto | Running] – C:\WINDOWS\system32\FsUsbExService.Exe – (FsUsbExService)

SRV - [2008-04-07 10:17:30 | 000,430,592 | ---- | M] (Nokia.) [On_Demand | Stopped] – C:\Program Files\PC Connectivity Solution\ServiceLayer.exe – (ServiceLayer)

SRV - [2005-11-14 02:06:04 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] – C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe – (IDriverT)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] – F:\NTGLM7X.sys – (SetupNTGLM7X)

DRV - File not found [Kernel | On_Demand | Stopped] – F:\NTACCESS.sys – (NTACCESS)

DRV - File not found [Kernel | On_Demand | Stopped] – C:\WINDOWS\System32\DRIVERS\mcdbus.sys – (mcdbus)

DRV - File not found [Kernel | On_Demand | Stopped] – F:\INSTALL\GMSIPCI.SYS – (GMSIPCI)

DRV - File not found [Kernel | On_Demand | Stopped] – C:\WINDOWS\System32\drivers\EagleNT.sys – (EagleNT)

DRV - File not found [Kernel | On_Demand | Stopped] – C:\WINDOWS\System32\drivers\ctdvda2k.sys – (ctdvda2k)

DRV - [2010-08-20 22:11:38 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] – C:\WINDOWS\System32\Drivers\sptd.sys – (sptd)

DRV - [2010-01-22 18:50:07 | 000,033,824 | ---- | M] () [Kernel | System | Running] – C:\WINDOWS\system32\drivers\oreans32.sys – (oreans32)

DRV - [2009-10-07 14:23:36 | 000,271,360 | ---- | M] () [Kernel | Auto | Running] – C:\WINDOWS\system32\drivers\atksgt.sys – (atksgt)

DRV - [2009-10-07 14:23:36 | 000,018,048 | ---- | M] () [Kernel | Auto | Running] – C:\WINDOWS\system32\drivers\lirsgt.sys – (lirsgt)

DRV - [2009-10-07 10:18:36 | 000,035,168 | ---- | M] () [Kernel | System | Running] – C:\WINDOWS\system32\drivers\epfwtdir.sys – (epfwtdir)

DRV - [2009-10-07 10:12:22 | 000,054,184 | ---- | M] (ESET) [Kernel | System | Running] – C:\WINDOWS\system32\drivers\easdrv.sys – (easdrv)

DRV - [2009-10-07 10:11:10 | 000,040,824 | ---- | M] (ESET) [Kernel | Auto | Running] – C:\WINDOWS\system32\drivers\eamon.sys – (eamon)

DRV - [2009-03-31 10:39:36 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Running] – C:\WINDOWS\system32\FsUsbExDisk.Sys – (FsUsbExDisk)

DRV - [2009-03-20 11:01:26 | 000,121,856 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\ss_bmdm.sys – (ss_bmdm)

DRV - [2009-03-20 11:01:26 | 000,090,112 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\ss_bbus.sys – (ss_bbus) SAMSUNG USB Mobile Device (WDM)

DRV - [2009-03-20 11:01:26 | 000,014,976 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\ss_bmdfl.sys – (ss_bmdfl) SAMSUNG USB Mobile Modem (Filter)

DRV - [2007-09-17 16:53:26 | 000,021,632 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\pccsmcfd.sys – (pccsmcfd)

DRV - [2007-07-11 15:51:48 | 000,019,840 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\lgusbdiag.sys – (UsbDiag)

DRV - [2007-07-11 10:45:00 | 000,021,632 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\lgusbmodem.sys – (USBModem)

DRV - [2007-07-11 10:40:18 | 000,012,416 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\lgusbbus.sys – (usbbus)

DRV - [2007-02-10 04:04:52 | 000,014,336 | ---- | M] (A4Tech Co.,Ltd.) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\Amps2prt.sys – (Amps2prt)

DRV - [2004-08-04 02:35:04 | 000,701,440 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\ati2mtag.sys – (ati2mtag)

DRV - [2004-08-04 00:08:22 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\gameenum.sys – (gameenum)

DRV - [2003-09-19 03:47:22 | 000,496,800 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\ctaud2k.sys – (ctaud2k) Creative Audio Driver (WDM)

DRV - [2003-08-28 10:24:36 | 000,145,504 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\EMUPIA2K.SYS – (emupia)

DRV - [2003-08-28 10:24:24 | 000,136,448 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\CTSFM2K.SYS – (ctsfm2k)

DRV - [2003-08-28 10:24:08 | 000,006,144 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\CTPRXY2K.SYS – (ctprxy2k)

DRV - [2003-08-28 10:24:04 | 000,113,840 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\ctoss2k.sys – (ossrv)

DRV - [2003-08-28 10:22:32 | 000,186,068 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\CTAC32K.SYS – (ctac32k)

DRV - [2003-08-28 10:22:20 | 000,135,696 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\HAP16V2K.SYS – (hap16v2k)

DRV - [2003-08-28 10:22:04 | 000,823,456 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\ha10kx2k.sys – (ha10kx2k)

DRV - [2003-03-05 13:19:28 | 000,015,840 | ---- | M] (Creative Technology Ltd.) [Kernel | Auto | Running] – C:\WINDOWS\system32\drivers\PFMODNT.SYS – (PfModNT)

DRV - [2002-10-04 04:04:10 | 000,046,976 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\R8139n51.sys – (rtl8139)

DRV - [2001-08-17 22:19:20 | 000,003,712 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\ctljystk.sys – (ctljystk)

Dodane 21.08.2010 (So) 9:24

[2010-08-20 23:41:01 | 007,077,888 | -H-- | M] () – C:\Documents and Settings\Dom\NTUSER.DAT

[2010-08-20 23:40:13 | 000,575,488 | ---- | M] (OldTimer Tools) – C:\Documents and Settings\Dom\Pulpit\OTL.exe

[2010-08-20 23:30:00 | 000,001,124 | ---- | M] () – C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1993962763-1979792683-839522115-1003UA.job

[2010-08-20 23:16:31 | 000,000,006 | -H-- | M] () – C:\WINDOWS\tasks\SA.DAT

[2010-08-20 23:16:27 | 000,002,048 | --S- | M] () – C:\WINDOWS\bootstat.dat

[2010-08-20 23:16:26 | 1341,706,240 | -HS- | M] () – C:\hiberfil.sys

[2010-08-20 23:15:33 | 000,029,004 | ---- | M] () – C:\WINDOWS\System32\BMXCtrlState-{00000002-00000000-00000002-00001102-00000002-80661102}.rfx

[2010-08-20 23:15:33 | 000,029,004 | ---- | M] () – C:\WINDOWS\System32\BMXBkpCtrlState-{00000002-00000000-00000002-00001102-00000002-80661102}.rfx

[2010-08-20 23:15:33 | 000,017,456 | ---- | M] () – C:\WINDOWS\System32\BMXStateBkp-{00000002-00000000-00000002-00001102-00000002-80661102}.rfx

[2010-08-20 23:15:33 | 000,017,456 | ---- | M] () – C:\WINDOWS\System32\BMXState-{00000002-00000000-00000002-00001102-00000002-80661102}.rfx

[2010-08-20 23:15:33 | 000,002,064 | ---- | M] () – C:\WINDOWS\System32\settingsbkup.sfm

[2010-08-20 23:15:33 | 000,002,064 | ---- | M] () – C:\WINDOWS\System32\settings.sfm

[2010-08-20 23:15:33 | 000,000,288 | ---- | M] () – C:\WINDOWS\System32\DVCStateBkp-{00000002-00000000-00000002-00001102-00000002-80661102}.dat

[2010-08-20 23:15:33 | 000,000,288 | ---- | M] () – C:\WINDOWS\System32\DVCState-{00000002-00000000-00000002-00001102-00000002-80661102}.dat

[2010-08-20 23:15:27 | 000,000,188 | -HS- | M] () – C:\Documents and Settings\Dom\ntuser.ini

[2010-08-20 23:15:19 | 003,376,727 | ---- | M] () – C:\WINDOWS{00000002-00000000-00000002-00001102-00000002-80661102}.CDF

[2010-08-20 23:15:19 | 003,376,727 | ---- | M] () – C:\WINDOWS{00000002-00000000-00000002-00001102-00000002-80661102}.BAK

[2010-08-20 22:11:38 | 000,691,696 | ---- | M] () – C:\WINDOWS\System32\drivers\sptd.sys

[2010-08-20 22:00:50 | 000,002,317 | ---- | M] () – C:\Documents and Settings\Dom\Pulpit\HiJackThis.lnk

[2010-08-20 15:46:51 | 000,451,696 | ---- | M] () – C:\WINDOWS\System32\perfh015.dat

[2010-08-20 15:46:51 | 000,395,336 | ---- | M] () – C:\WINDOWS\System32\perfh009.dat

[2010-08-20 15:46:51 | 000,075,706 | ---- | M] () – C:\WINDOWS\System32\perfc015.dat

[2010-08-20 15:46:51 | 000,059,576 | ---- | M] () – C:\WINDOWS\System32\perfc009.dat

[2010-08-20 15:46:50 | 000,993,526 | ---- | M] () – C:\WINDOWS\System32\PerfStringBackup.INI

[2010-08-19 21:57:05 | 000,163,171 | ---- | M] () – C:\Documents and Settings\Dom\Pulpit\podanie.pdf

[2010-08-18 22:38:32 | 000,000,737 | ---- | M] () – C:\Documents and Settings\Dom\Pulpit\Prawo Jazdy 2010.lnk

[2010-08-18 21:16:47 | 000,033,280 | ---- | M] () – C:\Documents and Settings\Dom\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2010-08-18 20:30:06 | 000,001,072 | ---- | M] () – C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1993962763-1979792683-839522115-1003Core.job

[2010-08-18 01:07:02 | 004,284,440 | -H-- | M] () – C:\Documents and Settings\Dom\Ustawienia lokalne\Dane aplikacji\IconCache.db

[2010-08-10 14:57:50 | 000,002,206 | ---- | M] () – C:\WINDOWS\System32\wpa.dbl

[2010-08-06 12:12:27 | 003,278,921 | ---- | M] () – C:\Documents and Settings\Dom\Pulpit\Volver - Volveremos.mp3

[2010-08-06 12:07:49 | 003,130,964 | ---- | M] () – C:\Documents and Settings\Dom\Pulpit\alan basski- zycie jest piękne.mp3

[2010-08-06 12:02:58 | 003,659,264 | ---- | M] () – C:\Documents and Settings\Dom\Pulpit\sumptuastic-mali wielcy.mp3

[2010-08-06 11:56:17 | 003,156,459 | ---- | M] () – C:\Documents and Settings\Dom\Pulpit\cerekwicka-nie ma nic.mp3

[2010-08-06 11:52:19 | 004,332,564 | ---- | M] () – C:\Documents and Settings\Dom\Pulpit\De Mono Kamień i Aksamit.mp3

[2010-08-03 16:50:50 | 000,001,735 | ---- | M] () – C:\Documents and Settings\All Users\Pulpit\Adobe Reader 9.lnk

[2010-07-31 10:00:45 | 000,011,059 | ---- | M] () – C:\Documents and Settings\Dom\Pulpit\Drodzy Państwo Młodzi.docx

[2010-07-29 08:19:38 | 000,010,744 | ---- | M] () – C:\Documents and Settings\Dom\Pulpit\WUJO.docx

[4 C:\WINDOWS*.tmp files -> C:\WINDOWS*.tmp ->]

[1 C:\WINDOWS\System32*.tmp files -> C:\WINDOWS\System32*.tmp ->]

[1 C:*.tmp files -> C:*.tmp ->]

========== Files Created - No Company Name ==========

[2010-08-20 20:11:28 | 000,002,317 | ---- | C] () – C:\Documents and Settings\Dom\Pulpit\HiJackThis.lnk

[2010-08-20 19:50:54 | 000,077,312 | ---- | C] () – C:\WINDOWS\MBR.exe

[2010-08-20 19:50:53 | 000,256,512 | ---- | C] () – C:\WINDOWS\PEV.exe

[2010-08-20 19:50:53 | 000,098,816 | ---- | C] () – C:\WINDOWS\sed.exe

[2010-08-20 19:50:53 | 000,080,412 | ---- | C] () – C:\WINDOWS\grep.exe

[2010-08-20 19:50:53 | 000,068,096 | ---- | C] () – C:\WINDOWS\zip.exe

[2010-08-20 19:04:25 | 000,053,248 | ---- | C] () – C:\WINDOWS\loginTool.exe

[2010-08-19 21:57:05 | 000,163,171 | ---- | C] () – C:\Documents and Settings\Dom\Pulpit\podanie.pdf

[2010-08-18 22:38:32 | 000,000,737 | ---- | C] () – C:\Documents and Settings\Dom\Pulpit\Prawo Jazdy 2010.lnk

[2010-08-06 12:09:41 | 003,278,921 | ---- | C] () – C:\Documents and Settings\Dom\Pulpit\Volver - Volveremos.mp3

[2010-08-06 12:05:11 | 003,130,964 | ---- | C] () – C:\Documents and Settings\Dom\Pulpit\alan basski- zycie jest piękne.mp3

[2010-08-06 11:59:53 | 003,659,264 | ---- | C] () – C:\Documents and Settings\Dom\Pulpit\sumptuastic-mali wielcy.mp3

[2010-08-06 11:53:28 | 003,156,459 | ---- | C] () – C:\Documents and Settings\Dom\Pulpit\cerekwicka-nie ma nic.mp3

[2010-08-06 11:48:41 | 004,332,564 | ---- | C] () – C:\Documents and Settings\Dom\Pulpit\De Mono Kamień i Aksamit.mp3

[2010-07-31 10:00:44 | 000,011,059 | ---- | C] () – C:\Documents and Settings\Dom\Pulpit\Drodzy Państwo Młodzi.docx

[2010-07-29 08:19:37 | 000,010,744 | ---- | C] () – C:\Documents and Settings\Dom\Pulpit\WUJO.docx

[2010-07-07 12:35:32 | 000,000,000 | ---- | C] () – C:\WINDOWS\Viewer.INI

[2010-05-30 20:09:29 | 000,043,520 | ---- | C] () – C:\WINDOWS\System32\CmdLineExt03.dll

[2010-05-01 18:28:33 | 000,000,023 | ---- | C] () – C:\WINDOWS\BlendSettings.ini

[2010-04-22 17:15:33 | 000,000,087 | ---- | C] () – C:\WINDOWS\System32\tcfg.ini

[2010-02-11 17:46:26 | 002,463,976 | ---- | C] () – C:\WINDOWS\System32\NPSWF32.dll

[2010-01-22 18:50:07 | 000,033,824 | ---- | C] () – C:\WINDOWS\System32\drivers\oreans32.sys

[2009-12-14 20:15:48 | 000,110,592 | ---- | C] () – C:\WINDOWS\System32\FsUsbExDevice.Dll

[2009-12-14 20:15:48 | 000,036,608 | ---- | C] () – C:\WINDOWS\System32\FsUsbExDisk.Sys

[2009-12-14 20:15:35 | 000,002,528 | ---- | C] () – C:\Documents and Settings\Dom\Dane aplikacji$_hpcst$.hpc

[2009-11-17 17:08:09 | 000,000,069 | ---- | C] () – C:\WINDOWS\NeroDigital.ini

[2009-10-07 14:23:36 | 000,271,360 | ---- | C] () – C:\WINDOWS\System32\drivers\atksgt.sys

[2009-10-07 14:23:36 | 000,018,048 | ---- | C] () – C:\WINDOWS\System32\drivers\lirsgt.sys

[2009-09-16 17:45:09 | 000,000,000 | ---- | C] () – C:\WINDOWS\PrestoPM.INI

[2009-09-16 17:31:54 | 000,049,152 | R— | C] () – C:\WINDOWS\AutoSet.dll

[2009-09-16 17:25:08 | 000,000,613 | ---- | C] () – C:\WINDOWS\if40le.ini

[2009-09-16 17:25:07 | 000,000,114 | ---- | C] () – C:\WINDOWS\SCNDRVU.INI

[2009-09-16 17:24:48 | 000,001,256 | ---- | C] () – C:\WINDOWS\If42le.ini

[2009-09-16 17:24:47 | 000,000,241 | ---- | C] () – C:\WINDOWS\PEXPLORE.INI

[2009-09-16 17:24:44 | 000,011,776 | ---- | C] () – C:\WINDOWS\System32\pmsbfn32.dll

[2009-09-16 17:24:36 | 000,000,403 | ---- | C] () – C:\WINDOWS\umxaddin.ini

[2009-09-05 12:53:52 | 000,691,696 | ---- | C] () – C:\WINDOWS\System32\drivers\sptd.sys

[2009-09-02 19:06:12 | 000,000,161 | ---- | C] () – C:\WINDOWS\l33td.ini

[2009-08-24 12:23:28 | 000,000,023 | ---- | C] () – C:\WINDOWS\clofghls.dll

[2009-08-22 14:46:17 | 000,000,020 | ---- | C] () – C:\WINDOWS\mafosav.INI

[2009-05-28 17:14:34 | 000,007,680 | ---- | C] () – C:\WINDOWS\System32\CNMVS61.DLL

[2009-05-18 17:50:28 | 000,033,280 | ---- | C] () – C:\Documents and Settings\Dom\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2009-01-17 23:02:00 | 000,000,231 | ---- | C] () – C:\WINDOWS\AC3API.INI

[2009-01-17 23:00:39 | 000,035,766 | ---- | C] () – C:\WINDOWS\System32\Emu10kx.ini

[2009-01-17 23:00:39 | 000,000,029 | ---- | C] () – C:\WINDOWS\System32\ctzapxx.ini

[2009-01-17 23:00:31 | 000,005,515 | ---- | C] () – C:\WINDOWS\System32\ENSDEF.INI

[2009-01-17 23:00:31 | 000,000,192 | ---- | C] () – C:\WINDOWS\System32\KILL.INI

[2009-01-17 23:00:09 | 000,000,187 | ---- | C] () – C:\WINDOWS\SBWIN.INI

[2007-12-21 09:21:56 | 000,035,168 | ---- | C] () – C:\WINDOWS\System32\drivers\epfwtdir.sys

[2007-10-25 18:26:10 | 000,005,632 | ---- | C] () – C:\WINDOWS\System32\drivers\StarOpen.sys

[2004-07-17 13:36:38 | 000,027,440 | ---- | C] () – C:\WINDOWS\System32\drivers\secdrv.sys

========== Alternate Data Streams ==========

@Alternate Data Stream - 134 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:671329E4

< End of report >

SRV - File not found [Disabled | Stopped] – C:\WINDOWS\System32\hidserv.dll – (HidServ)

SRV - [2010-02-11 17:36:06 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] – C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe – (FLEXnet Licensing Service)

SRV - [2009-10-07 10:21:14 | 000,020,680 | ---- | M] (ESET) [On_Demand | Stopped] – C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe – (EhttpSrv)

SRV - [2009-10-07 10:16:50 | 000,472,280 | ---- | M] (ESET) [Auto | Running] – C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe – (ekrn)

SRV - [2009-03-31 10:39:36 | 000,233,472 | ---- | M] (Teruten) [Auto | Running] – C:\WINDOWS\system32\FsUsbExService.Exe – (FsUsbExService)

SRV - [2008-04-07 10:17:30 | 000,430,592 | ---- | M] (Nokia.) [On_Demand | Stopped] – C:\Program Files\PC Connectivity Solution\ServiceLayer.exe – (ServiceLayer)

SRV - [2005-11-14 02:06:04 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] – C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe – (IDriverT)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] – F:\NTGLM7X.sys – (SetupNTGLM7X)

DRV - File not found [Kernel | On_Demand | Stopped] – F:\NTACCESS.sys – (NTACCESS)

DRV - File not found [Kernel | On_Demand | Stopped] – C:\WINDOWS\System32\DRIVERS\mcdbus.sys – (mcdbus)

DRV - File not found [Kernel | On_Demand | Stopped] – F:\INSTALL\GMSIPCI.SYS – (GMSIPCI)

DRV - File not found [Kernel | On_Demand | Stopped] – C:\WINDOWS\System32\drivers\EagleNT.sys – (EagleNT)

DRV - File not found [Kernel | On_Demand | Stopped] – C:\WINDOWS\System32\drivers\ctdvda2k.sys – (ctdvda2k)

DRV - [2010-08-20 22:11:38 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] – C:\WINDOWS\System32\Drivers\sptd.sys – (sptd)

DRV - [2010-01-22 18:50:07 | 000,033,824 | ---- | M] () [Kernel | System | Running] – C:\WINDOWS\system32\drivers\oreans32.sys – (oreans32)

DRV - [2009-10-07 14:23:36 | 000,271,360 | ---- | M] () [Kernel | Auto | Running] – C:\WINDOWS\system32\drivers\atksgt.sys – (atksgt)

DRV - [2009-10-07 14:23:36 | 000,018,048 | ---- | M] () [Kernel | Auto | Running] – C:\WINDOWS\system32\drivers\lirsgt.sys – (lirsgt)

DRV - [2009-10-07 10:18:36 | 000,035,168 | ---- | M] () [Kernel | System | Running] – C:\WINDOWS\system32\drivers\epfwtdir.sys – (epfwtdir)

DRV - [2009-10-07 10:12:22 | 000,054,184 | ---- | M] (ESET) [Kernel | System | Running] – C:\WINDOWS\system32\drivers\easdrv.sys – (easdrv)

DRV - [2009-10-07 10:11:10 | 000,040,824 | ---- | M] (ESET) [Kernel | Auto | Running] – C:\WINDOWS\system32\drivers\eamon.sys – (eamon)

DRV - [2009-03-31 10:39:36 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Running] – C:\WINDOWS\system32\FsUsbExDisk.Sys – (FsUsbExDisk)

DRV - [2009-03-20 11:01:26 | 000,121,856 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\ss_bmdm.sys – (ss_bmdm)

DRV - [2009-03-20 11:01:26 | 000,090,112 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\ss_bbus.sys – (ss_bbus) SAMSUNG USB Mobile Device (WDM)

DRV - [2009-03-20 11:01:26 | 000,014,976 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\ss_bmdfl.sys – (ss_bmdfl) SAMSUNG USB Mobile Modem (Filter)

DRV - [2007-09-17 16:53:26 | 000,021,632 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\pccsmcfd.sys – (pccsmcfd)

DRV - [2007-07-11 15:51:48 | 000,019,840 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\lgusbdiag.sys – (UsbDiag)

DRV - [2007-07-11 10:45:00 | 000,021,632 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\lgusbmodem.sys – (USBModem)

DRV - [2007-07-11 10:40:18 | 000,012,416 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\lgusbbus.sys – (usbbus)

DRV - [2007-02-10 04:04:52 | 000,014,336 | ---- | M] (A4Tech Co.,Ltd.) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\Amps2prt.sys – (Amps2prt)

DRV - [2004-08-04 02:35:04 | 000,701,440 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\ati2mtag.sys – (ati2mtag)

DRV - [2004-08-04 00:08:22 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\gameenum.sys – (gameenum)

DRV - [2003-09-19 03:47:22 | 000,496,800 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\ctaud2k.sys – (ctaud2k) Creative Audio Driver (WDM)

DRV - [2003-08-28 10:24:36 | 000,145,504 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\EMUPIA2K.SYS – (emupia)

DRV - [2003-08-28 10:24:24 | 000,136,448 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\CTSFM2K.SYS – (ctsfm2k)

DRV - [2003-08-28 10:24:08 | 000,006,144 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\CTPRXY2K.SYS – (ctprxy2k)

DRV - [2003-08-28 10:24:04 | 000,113,840 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\ctoss2k.sys – (ossrv)

DRV - [2003-08-28 10:22:32 | 000,186,068 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\CTAC32K.SYS – (ctac32k)

DRV - [2003-08-28 10:22:20 | 000,135,696 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\HAP16V2K.SYS – (hap16v2k)

DRV - [2003-08-28 10:22:04 | 000,823,456 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\ha10kx2k.sys – (ha10kx2k)

DRV - [2003-03-05 13:19:28 | 000,015,840 | ---- | M] (Creative Technology Ltd.) [Kernel | Auto | Running] – C:\WINDOWS\system32\drivers\PFMODNT.SYS – (PfModNT)

DRV - [2002-10-04 04:04:10 | 000,046,976 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\R8139n51.sys – (rtl8139)

DRV - [2001-08-17 22:19:20 | 000,003,712 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\ctljystk.sys – (ctljystk)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.localstrike.com.ar/

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.videoxdvd.com/

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: “ProxyEnable” = 0

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: “ProxyOverride” = *.local

========== FireFox ==========

FF - prefs.js…browser.search.defaultenginename: “LocalStrike”

FF - prefs.js…browser.search.defaultthis.engineName: “LocalStrike”

FF - prefs.js…browser.search.defaulturl: “http://search.localstrike.com.ar/?q={searchTerms}

FF - prefs.js…browser.search.order.1: “LocalStrike”

FF - prefs.js…browser.search.selectedEngine: “Google”

FF - prefs.js…browser.startup.homepage: “www.google.pl”

FF - prefs.js…extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.2

FF - prefs.js…extensions.enabledItems: DTToolbar@toolbarnet.com:1.1.2.0185

FF - prefs.js…extensions.enabledItems: firebug@software.joehewitt.com:1.5.4

FF - prefs.js…extensions.enabledItems: jqs@sun.com:1.0

FF - prefs.js…extensions.enabledItems: {46551EC9-40F0-4e47-8E18-8E5CF550CFB8}:1.0.11

FF - prefs.js…extensions.enabledItems: illimitux@illimitux.net:4.0

FF - prefs.js…extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20

FF - prefs.js…extensions.enabledItems: zrzuta.eu@gmail.com:1.2

FF - prefs.js…keyword.URL: “http://search.localstrike.com.ar/?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&q=

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\Components: C:\Program Files\Mozilla Firefox\components [2010-07-30 13:09:11 | 000,000,000 | —D | M]

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-08-03 16:50:50 | 000,000,000 | —D | M]

[2009-01-17 22:48:58 | 000,000,000 | —D | M] – C:\Documents and Settings\Dom\Dane aplikacji\Mozilla\Extensions

[2010-08-20 20:13:49 | 000,000,000 | —D | M] – C:\Documents and Settings\Dom\Dane aplikacji\Mozilla\Firefox\Profiles\v603563i.default\extensions

[2010-08-10 15:39:59 | 000,000,000 | —D | M] (Stylish) – C:\Documents and Settings\Dom\Dane aplikacji\Mozilla\Firefox\Profiles\v603563i.default\extensions{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}

[2010-08-18 18:48:56 | 000,000,000 | —D | M] (No name found) – C:\Documents and Settings\Dom\Dane aplikacji\Mozilla\Firefox\Profiles\v603563i.default\extensions{5c8bfb7c-9a54-11dc-8314-0800200c9a66}

[2010-08-18 18:49:11 | 000,000,000 | —D | M] (Adblock Plus) – C:\Documents and Settings\Dom\Dane aplikacji\Mozilla\Firefox\Profiles\v603563i.default\extensions{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}

[2010-05-23 21:31:41 | 000,000,000 | —D | M] – C:\Documents and Settings\Dom\Dane aplikacji\Mozilla\Firefox\Profiles\v603563i.default\extensions\DTToolbar@toolbarnet.com

[2010-08-18 18:48:26 | 000,000,000 | —D | M] – C:\Documents and Settings\Dom\Dane aplikacji\Mozilla\Firefox\Profiles\v603563i.default\extensions\extension@virtusdesigns.com

[2010-05-23 21:32:05 | 000,000,000 | —D | M] – C:\Documents and Settings\Dom\Dane aplikacji\Mozilla\Firefox\Profiles\v603563i.default\extensions\firebug@software.joehewitt.com

[2010-04-09 12:39:21 | 000,000,000 | —D | M] – C:\Documents and Settings\Dom\Dane aplikacji\Mozilla\Firefox\Profiles\v603563i.default\extensions\illimitux@illimitux.net

[2010-08-18 18:49:11 | 000,000,000 | —D | M] – C:\Documents and Settings\Dom\Dane aplikacji\Mozilla\Firefox\Profiles\v603563i.default\extensions\staged-xpis

[2010-07-30 13:09:21 | 000,000,000 | —D | M] – C:\Documents and Settings\Dom\Dane aplikacji\Mozilla\Firefox\Profiles\v603563i.default\extensions\zrzuta.eu@gmail.com

[2010-08-18 18:48:26 | 000,000,000 | —D | M] – C:\Documents and Settings\Dom\Dane aplikacji\Mozilla\Firefox\Profiles\v603563i.default\extensions\staged-xpis\extension@virtusdesigns.com

[2010-01-24 22:40:17 | 000,002,055 | ---- | M] () – C:\Documents and Settings\Dom\Dane aplikacji\Mozilla\Firefox\Profiles\v603563i.default\searchplugins\daemon-search.xml

[2010-08-20 20:13:49 | 000,000,000 | —D | M] – C:\Program Files\Mozilla Firefox\extensions

[2010-05-01 17:23:31 | 000,000,000 | —D | M] (Java Console) – C:\Program Files\Mozilla Firefox\extensions{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}

[2010-04-12 17:29:19 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) – C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll

[2010-03-16 13:57:46 | 000,120,296 | ---- | M] ( ) – C:\Program Files\Mozilla Firefox\plugins\npganymedenet.dll

[2010-06-25 15:23:16 | 000,002,767 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml

[2010-06-25 15:23:16 | 000,001,406 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml

[2009-10-05 01:48:30 | 000,023,158 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\localstrike.xml

[2010-06-25 15:23:16 | 000,000,917 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml

[2010-06-25 15:23:16 | 000,000,858 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml

[2010-06-25 15:23:16 | 000,001,183 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml

[2010-06-25 15:23:16 | 000,001,683 | ---- | M] () – C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2001-10-26 19:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts

O1 - Hosts: 127.0.0.1 localhost

O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\Dom\Dane aplikacji\Nowe Gadu-Gadu_userdata\ggbho.1.dll (GG Network S.A.)

O3 - HKLM…\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()

O3 - HKCU…\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()

O4 - HKLM…\Run: [CTHelper] C:\WINDOWS\System32\CTHELPER.EXE (Creative Technology Ltd)

O4 - HKLM…\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)

O4 - HKLM…\Run: [Jet Detection] C:\Program Files\Creative\SBLive\PROGRAM\ADGJDet.exe ()

O4 - HKLM…\Run: [NPSStartup] File not found

O4 - HKLM…\Run: [updReg] C:\WINDOWS\Updreg.EXE (Creative Technology Ltd.)

O4 - HKLM…\Run: [WheelMouse] C:\Program Files\A4Tech\Mouse\Amoumain.exe (A4Tech Co.,Ltd.)

O4 - HKCU…\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe (Samsung Electronics Co., Ltd.)

O4 - HKCU…\Run: [DAEMON Tools Lite] D:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)

O4 - HKCU…\Run: [RocketDock] C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe ()

O4 - Startup: C:\Documents and Settings\Dom\Menu Start\Programy\Autostart\Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)

O4 - Startup: C:\Documents and Settings\Dom\Menu Start\Programy\Autostart\RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe ()

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyDocs = 1

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuMyMusic = 1

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisallowRun = 1

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\DisallowRun: 1 = metin2.exe

O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)

O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)

O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta … s-i586.cab (Java Plug-in 1.6.0_20)

O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta … s-i586.cab (Java Plug-in 1.6.0_20)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta … s-i586.cab (Java Plug-in 1.6.0_20)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)

O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)

O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)

O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)

O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home

O24 - Desktop WallPaper: C:\Documents and Settings\Dom\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp

O24 - Desktop BackupWallPaper: C:\Documents and Settings\Dom\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2009-01-17 22:15:54 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT – [NTFS]

O33 - MountPoints2{42420646-f946-11de-ba71-000c76542400}\Shell\AutoRun\command - “” = G:\setupSNK.exe – File not found

O34 - HKLM BootExecute: (autocheck autochk *) - File not found

O35 - HKLM…comfile [open] – “%1” %*

O35 - HKLM…exefile [open] – “%1” %*

O37 - HKLM…com [@ = comfile] – “%1” %*

O37 - HKLM…exe [@ = exefile] – “%1” %*

Dodane 21.08.2010 (So) 9:24

========== Files/Folders - Created Within 90 Days ==========

[2010-08-20 23:39:40 | 000,575,488 | ---- | C] (OldTimer Tools) – C:\Documents and Settings\Dom\Pulpit\OTL.exe

[2010-08-20 19:53:13 | 000,000,000 | --SD | C] – C:\ComboFix

[2010-08-20 19:50:53 | 000,212,480 | ---- | C] (SteelWerX) – C:\WINDOWS\SWXCACLS.exe

[2010-08-20 19:50:53 | 000,161,792 | ---- | C] (SteelWerX) – C:\WINDOWS\SWREG.exe

[2010-08-20 19:50:53 | 000,136,704 | ---- | C] (SteelWerX) – C:\WINDOWS\SWSC.exe

[2010-08-20 19:50:53 | 000,031,232 | ---- | C] (NirSoft) – C:\WINDOWS\NIRCMD.exe

[2010-08-20 19:50:39 | 000,000,000 | —D | C] – C:\WINDOWS\ERDNT

[2010-08-20 19:48:58 | 000,000,000 | —D | C] – C:\Qoobox

[2010-08-19 00:01:37 | 000,527,192 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\XAudio2_7.dll

[2010-08-19 00:01:37 | 000,074,072 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\XAPOFX1_5.dll

[2010-08-19 00:01:36 | 000,239,960 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\xactengine3_7.dll

[2010-08-19 00:01:35 | 002,106,216 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\D3DCompiler_43.dll

[2010-08-19 00:01:34 | 001,868,128 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\d3dcsx_43.dll

[2010-08-19 00:01:34 | 000,248,672 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\d3dx11_43.dll

[2010-08-19 00:01:33 | 000,470,880 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\d3dx10_43.dll

[2010-08-19 00:01:32 | 001,998,168 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\D3DX9_43.dll

[2010-08-19 00:01:31 | 000,528,216 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\XAudio2_6.dll

[2010-08-19 00:01:31 | 000,238,936 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\xactengine3_6.dll

[2010-08-19 00:01:31 | 000,074,072 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\XAPOFX1_4.dll

[2010-08-19 00:01:30 | 000,022,360 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\X3DAudio1_7.dll

[2010-08-19 00:01:29 | 000,515,416 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\XAudio2_5.dll

[2010-08-19 00:01:28 | 001,974,616 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\D3DCompiler_42.dll

[2010-08-19 00:01:28 | 000,238,936 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\xactengine3_5.dll

[2010-08-19 00:01:27 | 005,501,792 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\d3dcsx_42.dll

[2010-08-19 00:01:26 | 000,235,344 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\d3dx11_42.dll

[2010-08-19 00:01:25 | 000,453,456 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\d3dx10_42.dll

[2010-08-19 00:01:24 | 001,892,184 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\D3DX9_42.dll

[2010-08-19 00:01:24 | 001,846,632 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\D3DCompiler_41.dll

[2010-08-19 00:01:24 | 000,453,456 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\d3dx10_41.dll

[2010-08-19 00:01:23 | 004,178,264 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\D3DX9_41.dll

[2010-08-19 00:01:22 | 000,517,448 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\XAudio2_4.dll

[2010-08-19 00:01:22 | 000,069,464 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\XAPOFX1_3.dll

[2010-08-19 00:01:21 | 000,235,352 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\xactengine3_4.dll

[2010-08-19 00:01:20 | 002,036,576 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\D3DCompiler_40.dll

[2010-08-19 00:01:20 | 000,452,440 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\d3dx10_40.dll

[2010-08-19 00:01:20 | 000,022,360 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\X3DAudio1_6.dll

[2010-08-19 00:01:19 | 004,379,984 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\D3DX9_40.dll

[2010-08-19 00:01:18 | 000,514,384 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\XAudio2_3.dll

[2010-08-19 00:01:18 | 000,070,992 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\XAPOFX1_2.dll

[2010-08-19 00:01:17 | 000,235,856 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\xactengine3_3.dll

[2010-08-19 00:01:16 | 000,509,448 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\XAudio2_2.dll

[2010-08-19 00:01:16 | 000,068,616 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\XAPOFX1_1.dll

[2010-08-19 00:01:16 | 000,023,376 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\X3DAudio1_5.dll

[2010-08-19 00:01:15 | 000,238,088 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\xactengine3_2.dll

[2010-08-19 00:01:14 | 001,493,528 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\D3DCompiler_39.dll

[2010-08-19 00:01:14 | 000,467,984 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\d3dx10_39.dll

[2010-08-19 00:01:13 | 003,851,784 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\D3DX9_39.dll

[2010-08-19 00:01:12 | 000,507,400 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\XAudio2_1.dll

[2010-08-19 00:01:12 | 000,065,032 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\XAPOFX1_0.dll

[2010-08-19 00:01:11 | 000,238,088 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\xactengine3_1.dll

[2010-08-19 00:01:10 | 001,491,992 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\D3DCompiler_38.dll

[2010-08-19 00:01:10 | 000,467,984 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\d3dx10_38.dll

[2010-08-19 00:01:10 | 000,025,608 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\X3DAudio1_4.dll

[2010-08-19 00:01:09 | 003,850,760 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\D3DX9_38.dll

[2010-08-19 00:01:08 | 000,479,752 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\XAudio2_0.dll

[2010-08-19 00:01:07 | 000,238,088 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\xactengine3_0.dll

[2010-08-19 00:01:06 | 001,420,824 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\D3DCompiler_37.dll

[2010-08-19 00:01:06 | 000,462,864 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\d3dx10_37.dll

[2010-08-19 00:01:06 | 000,025,608 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\X3DAudio1_3.dll

[2010-08-19 00:01:05 | 003,786,760 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\D3DX9_37.dll

[2010-08-19 00:01:04 | 000,267,272 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\xactengine2_10.dll

[2010-08-19 00:01:03 | 001,374,232 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\D3DCompiler_36.dll

[2010-08-19 00:01:03 | 000,444,776 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\d3dx10_36.dll

[2010-08-19 00:01:02 | 003,734,536 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\d3dx9_36.dll

[2010-08-19 00:01:01 | 000,267,112 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\xactengine2_9.dll

[2010-08-19 00:01:00 | 001,358,192 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\D3DCompiler_35.dll

[2010-08-19 00:01:00 | 000,444,776 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\d3dx10_35.dll

[2010-08-19 00:00:59 | 003,727,720 | ---- | C] (Microsoft Corporation) – C:\WINDOWS\System32\d3dx9_35.dll

[2010-08-13 14:26:46 | 000,000,000 | —D | C] – C:\Documents and Settings\Dom\Pulpit\soldat15

[2010-08-06 08:20:20 | 000,000,000 | --SD | C] – C:\Documents and Settings\Dom\Pulpit\

[2010-08-02 23:07:07 | 000,000,000 | —D | C] – C:\Documents and Settings\Dom\Moje dokumenty\My NPS Files

[2010-08-02 23:03:54 | 000,000,000 | —D | C] – C:\Documents and Settings\Dom\Moje dokumenty\My Art

[2010-07-22 12:20:27 | 000,000,000 | —D | C] – C:\Program Files\GameSpy Arcade

[2009-01-17 23:00:25 | 000,065,536 | ---- | C] ( ) – C:\WINDOWS\System32\a3d.dll

[4 C:\WINDOWS*.tmp files -> C:\WINDOWS*.tmp ->]

[1 C:\WINDOWS\System32*.tmp files -> C:\WINDOWS\System32*.tmp ->]

[1 C:*.tmp files -> C:*.tmp ->]

========== Files - Modified Within 90 Days ==========

[2010-08-20 23:41:01 | 007,077,888 | -H-- | M] () – C:\Documents and Settings\Dom\NTUSER.DAT

[2010-08-20 23:40:13 | 000,575,488 | ---- | M] (OldTimer Tools) – C:\Documents and Settings\Dom\Pulpit\OTL.exe

[2010-08-20 23:30:00 | 000,001,124 | ---- | M] () – C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1993962763-1979792683-839522115-1003UA.job

[2010-08-20 23:16:31 | 000,000,006 | -H-- | M] () – C:\WINDOWS\tasks\SA.DAT

[2010-08-20 23:16:27 | 000,002,048 | --S- | M] () – C:\WINDOWS\bootstat.dat

[2010-08-20 23:16:26 | 1341,706,240 | -HS- | M] () – C:\hiberfil.sys

[2010-08-20 23:15:33 | 000,029,004 | ---- | M] () – C:\WINDOWS\System32\BMXCtrlState-{00000002-00000000-00000002-00001102-00000002-80661102}.rfx

[2010-08-20 23:15:33 | 000,029,004 | ---- | M] () – C:\WINDOWS\System32\BMXBkpCtrlState-{00000002-00000000-00000002-00001102-00000002-80661102}.rfx

[2010-08-20 23:15:33 | 000,017,456 | ---- | M] () – C:\WINDOWS\System32\BMXStateBkp-{00000002-00000000-00000002-00001102-00000002-80661102}.rfx

[2010-08-20 23:15:33 | 000,017,456 | ---- | M] () – C:\WINDOWS\System32\BMXState-{00000002-00000000-00000002-00001102-00000002-80661102}.rfx

[2010-08-20 23:15:33 | 000,002,064 | ---- | M] () – C:\WINDOWS\System32\settingsbkup.sfm

[2010-08-20 23:15:33 | 000,002,064 | ---- | M] () – C:\WINDOWS\System32\settings.sfm

[2010-08-20 23:15:33 | 000,000,288 | ---- | M] () – C:\WINDOWS\System32\DVCStateBkp-{00000002-00000000-00000002-00001102-00000002-80661102}.dat

[2010-08-20 23:15:33 | 000,000,288 | ---- | M] () – C:\WINDOWS\System32\DVCState-{00000002-00000000-00000002-00001102-00000002-80661102}.dat

[2010-08-20 23:15:27 | 000,000,188 | -HS- | M] () – C:\Documents and Settings\Dom\ntuser.ini

[2010-08-20 23:15:19 | 003,376,727 | ---- | M] () – C:\WINDOWS{00000002-00000000-00000002-00001102-00000002-80661102}.CDF

[2010-08-20 23:15:19 | 003,376,727 | ---- | M] () – C:\WINDOWS{00000002-00000000-00000002-00001102-00000002-80661102}.BAK

[2010-08-20 22:11:38 | 000,691,696 | ---- | M] () – C:\WINDOWS\System32\drivers\sptd.sys

[2010-08-20 22:00:50 | 000,002,317 | ---- | M] () – C:\Documents and Settings\Dom\Pulpit\HiJackThis.lnk

[2010-08-20 15:46:51 | 000,451,696 | ---- | M] () – C:\WINDOWS\System32\perfh015.dat

[2010-08-20 15:46:51 | 000,395,336 | ---- | M] () – C:\WINDOWS\System32\perfh009.dat

[2010-08-20 15:46:51 | 000,075,706 | ---- | M] () – C:\WINDOWS\System32\perfc015.dat

[2010-08-20 15:46:51 | 000,059,576 | ---- | M] () – C:\WINDOWS\System32\perfc009.dat

[2010-08-20 15:46:50 | 000,993,526 | ---- | M] () – C:\WINDOWS\System32\PerfStringBackup.INI

[2010-08-19 21:57:05 | 000,163,171 | ---- | M] () – C:\Documents and Settings\Dom\Pulpit\podanie.pdf

[2010-08-18 22:38:32 | 000,000,737 | ---- | M] () – C:\Documents and Settings\Dom\Pulpit\Prawo Jazdy 2010.lnk

[2010-08-18 21:16:47 | 000,033,280 | ---- | M] () – C:\Documents and Settings\Dom\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2010-08-18 20:30:06 | 000,001,072 | ---- | M] () – C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1993962763-1979792683-839522115-1003Core.job

[2010-08-18 01:07:02 | 004,284,440 | -H-- | M] () – C:\Documents and Settings\Dom\Ustawienia lokalne\Dane aplikacji\IconCache.db

[2010-08-10 14:57:50 | 000,002,206 | ---- | M] () – C:\WINDOWS\System32\wpa.dbl

[2010-08-06 12:12:27 | 003,278,921 | ---- | M] () – C:\Documents and Settings\Dom\Pulpit\Volver - Volveremos.mp3

[2010-08-06 12:07:49 | 003,130,964 | ---- | M] () – C:\Documents and Settings\Dom\Pulpit\alan basski- zycie jest piękne.mp3

[2010-08-06 12:02:58 | 003,659,264 | ---- | M] () – C:\Documents and Settings\Dom\Pulpit\sumptuastic-mali wielcy.mp3

[2010-08-06 11:56:17 | 003,156,459 | ---- | M] () – C:\Documents and Settings\Dom\Pulpit\cerekwicka-nie ma nic.mp3

[2010-08-06 11:52:19 | 004,332,564 | ---- | M] () – C:\Documents and Settings\Dom\Pulpit\De Mono Kamień i Aksamit.mp3

[2010-08-03 16:50:50 | 000,001,735 | ---- | M] () – C:\Documents and Settings\All Users\Pulpit\Adobe Reader 9.lnk

[2010-07-31 10:00:45 | 000,011,059 | ---- | M] () – C:\Documents and Settings\Dom\Pulpit\Drodzy Państwo Młodzi.docx

[2010-07-29 08:19:38 | 000,010,744 | ---- | M] () – C:\Documents and Settings\Dom\Pulpit\WUJO.docx

[4 C:\WINDOWS*.tmp files -> C:\WINDOWS*.tmp ->]

[1 C:\WINDOWS\System32*.tmp files -> C:\WINDOWS\System32*.tmp ->]

[1 C:*.tmp files -> C:*.tmp ->]

========== Files Created - No Company Name ==========

[2010-08-20 20:11:28 | 000,002,317 | ---- | C] () – C:\Documents and Settings\Dom\Pulpit\HiJackThis.lnk

[2010-08-20 19:50:54 | 000,077,312 | ---- | C] () – C:\WINDOWS\MBR.exe

[2010-08-20 19:50:53 | 000,256,512 | ---- | C] () – C:\WINDOWS\PEV.exe

[2010-08-20 19:50:53 | 000,098,816 | ---- | C] () – C:\WINDOWS\sed.exe

[2010-08-20 19:50:53 | 000,080,412 | ---- | C] () – C:\WINDOWS\grep.exe

[2010-08-20 19:50:53 | 000,068,096 | ---- | C] () – C:\WINDOWS\zip.exe

[2010-08-20 19:04:25 | 000,053,248 | ---- | C] () – C:\WINDOWS\loginTool.exe

[2010-08-19 21:57:05 | 000,163,171 | ---- | C] () – C:\Documents and Settings\Dom\Pulpit\podanie.pdf

[2010-08-18 22:38:32 | 000,000,737 | ---- | C] () – C:\Documents and Settings\Dom\Pulpit\Prawo Jazdy 2010.lnk

[2010-08-06 12:09:41 | 003,278,921 | ---- | C] () – C:\Documents and Settings\Dom\Pulpit\Volver - Volveremos.mp3

[2010-08-06 12:05:11 | 003,130,964 | ---- | C] () – C:\Documents and Settings\Dom\Pulpit\alan basski- zycie jest piękne.mp3

[2010-08-06 11:59:53 | 003,659,264 | ---- | C] () – C:\Documents and Settings\Dom\Pulpit\sumptuastic-mali wielcy.mp3

[2010-08-06 11:53:28 | 003,156,459 | ---- | C] () – C:\Documents and Settings\Dom\Pulpit\cerekwicka-nie ma nic.mp3

[2010-08-06 11:48:41 | 004,332,564 | ---- | C] () – C:\Documents and Settings\Dom\Pulpit\De Mono Kamień i Aksamit.mp3

[2010-07-31 10:00:44 | 000,011,059 | ---- | C] () – C:\Documents and Settings\Dom\Pulpit\Drodzy Państwo Młodzi.docx

[2010-07-29 08:19:37 | 000,010,744 | ---- | C] () – C:\Documents and Settings\Dom\Pulpit\WUJO.docx

[2010-07-07 12:35:32 | 000,000,000 | ---- | C] () – C:\WINDOWS\Viewer.INI

[2010-05-30 20:09:29 | 000,043,520 | ---- | C] () – C:\WINDOWS\System32\CmdLineExt03.dll

[2010-05-01 18:28:33 | 000,000,023 | ---- | C] () – C:\WINDOWS\BlendSettings.ini

[2010-04-22 17:15:33 | 000,000,087 | ---- | C] () – C:\WINDOWS\System32\tcfg.ini

[2010-02-11 17:46:26 | 002,463,976 | ---- | C] () – C:\WINDOWS\System32\NPSWF32.dll

[2010-01-22 18:50:07 | 000,033,824 | ---- | C] () – C:\WINDOWS\System32\drivers\oreans32.sys

[2009-12-14 20:15:48 | 000,110,592 | ---- | C] () – C:\WINDOWS\System32\FsUsbExDevice.Dll

[2009-12-14 20:15:48 | 000,036,608 | ---- | C] () – C:\WINDOWS\System32\FsUsbExDisk.Sys

[2009-12-14 20:15:35 | 000,002,528 | ---- | C] () – C:\Documents and Settings\Dom\Dane aplikacji$_hpcst$.hpc

[2009-11-17 17:08:09 | 000,000,069 | ---- | C] () – C:\WINDOWS\NeroDigital.ini

[2009-10-07 14:23:36 | 000,271,360 | ---- | C] () – C:\WINDOWS\System32\drivers\atksgt.sys

[2009-10-07 14:23:36 | 000,018,048 | ---- | C] () – C:\WINDOWS\System32\drivers\lirsgt.sys

[2009-09-16 17:45:09 | 000,000,000 | ---- | C] () – C:\WINDOWS\PrestoPM.INI

[2009-09-16 17:31:54 | 000,049,152 | R— | C] () – C:\WINDOWS\AutoSet.dll

[2009-09-16 17:25:08 | 000,000,613 | ---- | C] () – C:\WINDOWS\if40le.ini

[2009-09-16 17:25:07 | 000,000,114 | ---- | C] () – C:\WINDOWS\SCNDRVU.INI

[2009-09-16 17:24:48 | 000,001,256 | ---- | C] () – C:\WINDOWS\If42le.ini

[2009-09-16 17:24:47 | 000,000,241 | ---- | C] () – C:\WINDOWS\PEXPLORE.INI

[2009-09-16 17:24:44 | 000,011,776 | ---- | C] () – C:\WINDOWS\System32\pmsbfn32.dll

[2009-09-16 17:24:36 | 000,000,403 | ---- | C] () – C:\WINDOWS\umxaddin.ini

[2009-09-05 12:53:52 | 000,691,696 | ---- | C] () – C:\WINDOWS\System32\drivers\sptd.sys

[2009-09-02 19:06:12 | 000,000,161 | ---- | C] () – C:\WINDOWS\l33td.ini

[2009-08-24 12:23:28 | 000,000,023 | ---- | C] () – C:\WINDOWS\clofghls.dll

[2009-08-22 14:46:17 | 000,000,020 | ---- | C] () – C:\WINDOWS\mafosav.INI

[2009-05-28 17:14:34 | 000,007,680 | ---- | C] () – C:\WINDOWS\System32\CNMVS61.DLL

[2009-05-18 17:50:28 | 000,033,280 | ---- | C] () – C:\Documents and Settings\Dom\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2009-01-17 23:02:00 | 000,000,231 | ---- | C] () – C:\WINDOWS\AC3API.INI

[2009-01-17 23:00:39 | 000,035,766 | ---- | C] () – C:\WINDOWS\System32\Emu10kx.ini

[2009-01-17 23:00:39 | 000,000,029 | ---- | C] () – C:\WINDOWS\System32\ctzapxx.ini

[2009-01-17 23:00:31 | 000,005,515 | ---- | C] () – C:\WINDOWS\System32\ENSDEF.INI

[2009-01-17 23:00:31 | 000,000,192 | ---- | C] () – C:\WINDOWS\System32\KILL.INI

[2009-01-17 23:00:09 | 000,000,187 | ---- | C] () – C:\WINDOWS\SBWIN.INI

[2007-12-21 09:21:56 | 000,035,168 | ---- | C] () – C:\WINDOWS\System32\drivers\epfwtdir.sys

[2007-10-25 18:26:10 | 000,005,632 | ---- | C] () – C:\WINDOWS\System32\drivers\StarOpen.sys

[2004-07-17 13:36:38 | 000,027,440 | ---- | C] () – C:\WINDOWS\System32\drivers\secdrv.sys

========== Alternate Data Streams ==========

@Alternate Data Stream - 134 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:671329E4

< End of report >

#6

Pamiętaj, logi zawsze wklejaj na wklej.org