Problem z internetem podejrzenie wirusa[log]

Witam na wigilie dostałem nowy komputer wszytko byłoby ok(i5,radek 6770 2gbd\ ram 1tb karta sieciowa) gdyby nie to że internet się rozłącza.zainstaluje sterowniki do płyty i przeinstaluje windowsa(dysk ze starego) oto problem: po jakimś czasie(mogą to być 2 godziny albo minuta) komputer nie pobiera stron po prostu pisze że mam internet gadu gadu jest online ale pobieranie staje a po minucie pokazuję ze usługa została odłączona(netia na łaczu neo) na kompie ma takie antyviry: pc tools firewall,superAtispyware i avast na starym kompie sie nie gryzły na tym chyba też nie próbowałem połączenia manualnego i przez programy ale zawsze to sie stawało avast nie znalazł nic(superantispyware też) ale notuje teraz duża ilośc wysyłania(np: wysłano 20 kb odebrano 3 a komputer nadal notuje wysyłanie i odbieranie!)) aby nie było dam log z HijackThis

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 15:45:12, on 2009-12-27

Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Boot mode: Normal


Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

C:\Program Files\Alwil Software\Avast4\ashServ.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe

C:\WINDOWS\System32\FTRTSVC.exe

C:\Program Files\PC Tools Firewall Plus\FWService.exe

C:\WINDOWS\system32\PnkBstrA.exe

C:\WINDOWS\system32\PnkBstrB.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

C:\WINDOWS\Explorer.EXE

C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

C:\WINDOWS\system32\rundll32.exe

C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe

C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe

C:\WINDOWS\RTHDCPL.EXE

C:\WINDOWS\system32\ctfmon.exe

C:\PROGRA~1\NEOSTR~1\TaskBarIcon.exe

C:\Program Files\Nowe Gadu-Gadu\gg.exe

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

C:\Program Files\Nowe Gadu-Gadu\spellchecker_gg.exe

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe

C:\Program Files\Alwil Software\Avast4\ashSimpl.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe


R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.neostrada.pl

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = neostrada tp

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza

R3 - URLSearchHook: SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll

R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\NEOSTR~1\SEARCH~1.DLL

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll

O4 - HKLM\..\Run: [AtiPTA] C:\WINDOWS\SYSTEM32\ATIPTAXX.EXE

O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

O4 - HKLM\..\Run: [AdslTaskBar] rundll32.exe stmctrl.dll,TaskBar

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup

O4 - HKLM\..\Run: [00PCTFW] "C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe" -s

O4 - HKLM\..\Run: [BCU] "C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe"

O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE

O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\WINDOWS\RaidTool\xInsIDE.exe

O4 - HKLM\..\Run: [36X Raid Configurer] C:\WINDOWS\system32\xRaidSetup.exe boot

O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\NEOSTR~1\Watch.exe

O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\NEOSTR~1\GestMaj.exe TaskBarIcon.exe

O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [Nowe Gadu-Gadu] "C:\Program Files\Nowe Gadu-Gadu\gg.exe"

O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

O4 - HKCU\..\Run: [Steam] "g:\c\program files\steam\steam.exe" -silent

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA LOKALNA')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA SIECIOWA')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE

O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

O17 - HKLM\System\CCS\Services\Tcpip\..\{A40D2873-4655-4D78-BA0D-279C0EE2D9FE}: NameServer = 194.204.159.1 194.204.152.34

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL

O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe

O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe

O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe

O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

O23 - Service: Browser Configuration Utility Service (BCUService) - DeviceVM, Inc. - C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe

O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe

O23 - Service: Menedżer Google Desktop 5.9.909.30391 (GoogleDesktopManager-093009-130223) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe

O23 - Service: PC Tools Firewall Plus (PCToolsFirewallPlus) - PC Tools - C:\Program Files\PC Tools Firewall Plus\FWService.exe

O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe

O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe


--

End of file - 7192 bytes

a tu OTL

OTL logfile created on: 2009-12-27 16:04:50 - Run 1

OTL by OldTimer - Version 3.1.20.1 Folder = C:\Documents and Settings\Łukasz\Moje dokumenty\Pobieranie

Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 8.0.6001.18702)

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd


2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 61,00% Memory free

4,00 Gb Paging File | 3,00 Gb Available in Paging File | 83,00% Paging File free

Paging file location(s): C:\pagefile.sys 2302 3500 [binary data]


%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 488,28 Gb Total Space | 415,25 Gb Free Space | 85,04% Space Free | Partition Type: NTFS

D: Drive not present or media not loaded

E: Drive not present or media not loaded

F: Drive not present or media not loaded

Drive G: | 443,23 Gb Total Space | 297,58 Gb Free Space | 67,14% Space Free | Partition Type: NTFS

H: Drive not present or media not loaded

I: Drive not present or media not loaded


Computer Name: MACHURA-5F36B22

Current User Name: Łukasz

Logged in as Administrator.


Current Boot Mode: Normal

Scan Mode: Current user

Company Name Whitelist: On

Skip Microsoft Files: Off

File Age = 30 Days

Output = Standard


[color=#E56717]========== Processes (SafeList) ==========[/color]


PRC - [2009-12-27 16:04:05 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Łukasz\Moje dokumenty\Pobieranie\OTL.exe

PRC - [2009-12-26 00:12:49 | 00,191,304 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrB.exe

PRC - [2009-12-16 19:15:03 | 00,908,248 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe

PRC - [2009-11-28 17:00:19 | 00,075,064 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrA.exe

PRC - [2009-11-27 17:50:08 | 02,971,608 | ---- | M] (PC Tools) -- C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe

PRC - [2009-11-25 00:51:40 | 00,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe

PRC - [2009-11-25 00:51:35 | 00,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe

PRC - [2009-11-25 00:51:21 | 00,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

PRC - [2009-11-25 00:48:48 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

PRC - [2009-11-25 00:47:39 | 00,159,280 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashSimpl.exe

PRC - [2009-11-25 00:43:56 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

PRC - [2009-11-09 11:20:14 | 00,818,432 | ---- | M] (PC Tools) -- C:\Program Files\PC Tools Firewall Plus\FWService.exe

PRC - [2009-09-19 03:08:42 | 00,602,112 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe

PRC - [2009-08-24 09:01:10 | 18,702,336 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.EXE

PRC - [2009-08-04 17:29:54 | 00,219,360 | ---- | M] (DeviceVM, Inc.) -- C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe

PRC - [2009-08-04 17:29:52 | 00,346,320 | ---- | M] (DeviceVM, Inc.) -- C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe

PRC - [2009-04-22 17:38:50 | 00,065,536 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

PRC - [2009-04-22 17:37:16 | 00,065,536 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

PRC - [2008-04-14 18:21:16 | 01,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe

PRC - [2005-12-06 13:53:30 | 00,819,200 | ---- | M] (France Télécom R&D) -- C:\Program Files\neostrada tp\neostradatp.exe

PRC - [2005-11-22 11:54:18 | 00,249,856 | ---- | M] (France Télécom R&D) -- C:\Program Files\neostrada tp\ComComp.exe

PRC - [2004-11-02 14:31:20 | 00,069,632 | ---- | M] (France Telecom R&D) -- C:\Program Files\neostrada tp\Toaster.exe

PRC - [2004-10-27 10:30:44 | 00,032,768 | ---- | M] () -- C:\Program Files\neostrada tp\Inactivity.exe

PRC - [2004-10-27 10:07:06 | 00,069,632 | ---- | M] () -- C:\Program Files\neostrada tp\PollingModule.exe

PRC - [2004-10-21 07:50:52 | 00,045,056 | ---- | M] () -- C:\WINDOWS\system32\AlertModule\AlertModule.exe

PRC - [2004-10-05 16:00:12 | 00,061,440 | ---- | M] (France Télécom R&D) -- C:\Program Files\neostrada tp\TaskBarIcon.exe

PRC - [2004-08-23 13:49:56 | 00,040,960 | ---- | M] (France Telecom) -- C:\WINDOWS\system32\FTRTSVC.exe

PRC - [2004-08-23 13:49:56 | 00,020,480 | ---- | M] (France Télécom R&D) -- C:\Program Files\neostrada tp\Watch.exe



[color=#E56717]========== Modules (SafeList) ==========[/color]


MOD - [2009-12-27 16:04:05 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Łukasz\Moje dokumenty\Pobieranie\OTL.exe

MOD - [2008-04-14 18:20:35 | 00,586,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mlang.dll

MOD - [2004-10-26 08:49:34 | 00,028,672 | ---- | M] () -- C:\Program Files\neostrada tp\Inactivity.dll



[color=#E56717]========== Win32 Services (SafeList) ==========[/color]


SRV - [2009-12-26 00:12:49 | 00,191,304 | ---- | M] () [Auto | Running] -- C:\WINDOWS\system32\PnkBstrB.exe -- (PnkBstrB)

SRV - [2009-11-28 17:00:19 | 00,075,064 | ---- | M] () [Auto | Running] -- C:\WINDOWS\system32\PnkBstrA.exe -- (PnkBstrA)

SRV - [2009-11-25 00:51:35 | 00,138,680 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus)

SRV - [2009-11-25 00:51:21 | 00,254,040 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner)

SRV - [2009-11-25 00:48:48 | 00,352,920 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner)

SRV - [2009-11-25 00:43:56 | 00,018,752 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv)

SRV - [2009-11-09 11:20:14 | 00,818,432 | ---- | M] (PC Tools) [Auto | Running] -- C:\Program Files\PC Tools Firewall Plus\FWService.exe -- (PCToolsFirewallPlus)

SRV - [2009-10-17 11:43:12 | 00,030,192 | ---- | M] (Google) [On_Demand | Stopped] -- C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe -- (GoogleDesktopManager-093009-130223)

SRV - [2009-09-19 03:08:42 | 00,602,112 | ---- | M] (ATI Technologies Inc.) [Auto | Running] -- C:\WINDOWS\system32\ati2evxx.exe -- (Ati HotKey Poller)

SRV - [2009-08-04 17:29:54 | 00,219,360 | ---- | M] (DeviceVM, Inc.) [Auto | Running] -- C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe -- (BCUService)

SRV - [2007-09-28 21:05:00 | 00,593,920 | ---- | M] () [Auto | Stopped] -- C:\WINDOWS\system32\ati2sgag.exe -- (ATI Smart)

SRV - [2004-08-23 13:49:56 | 00,040,960 | ---- | M] (France Telecom) [Auto | Running] -- C:\WINDOWS\system32\FTRTSVC.exe -- (FTRTSVC)



[color=#E56717]========== Driver Services (SafeList) ==========[/color]


DRV - [2009-11-25 00:49:07 | 00,048,560 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)

DRV - [2009-11-25 00:48:57 | 00,023,120 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr)

DRV - [2009-11-25 00:47:54 | 00,027,408 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aavmker4.sys -- (Aavmker4)

DRV - [2009-11-24 08:54:56 | 00,056,512 | ---- | M] (PC Tools) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pctNdis.sys -- (pctNDIS)

DRV - [2009-11-23 13:54:20 | 00,088,040 | ---- | M] (PC Tools) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\PCTAppEvent.sys -- (PCTAppEvent)

DRV - [2009-11-21 12:27:36 | 00,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)

DRV - [2009-11-10 17:11:36 | 00,070,408 | ---- | M] (PC Tools) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pctNdis-PacketFilter.sys -- (PCTFW-PacketFilter)

DRV - [2009-10-30 11:11:00 | 00,233,136 | ---- | M] (PC Tools) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\pctgntdi.sys -- (pctgntdi)

DRV - [2009-10-16 16:55:00 | 00,115,216 | ---- | M] (PC Tools) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pctplfw.sys -- (pctplfw)

DRV - [2009-10-12 21:24:56 | 00,007,408 | R--- | M] ( SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | On_Demand | Running] -- C:\Program Files\SUPERAntiSpyware\SASENUM.SYS -- (SASENUM)

DRV - [2009-10-12 21:24:54 | 00,009,968 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)

DRV - [2009-10-12 21:24:52 | 00,074,480 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)

DRV - [2009-09-19 05:29:36 | 04,477,952 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)

DRV - [2009-09-15 12:56:14 | 00,094,160 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswmon2.sys -- (aswMon2)

DRV - [2009-09-15 12:55:30 | 00,114,768 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP)

DRV - [2009-09-15 12:55:19 | 00,020,560 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk)

DRV - [2009-08-25 12:23:26 | 05,888,512 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)

DRV - [2009-08-19 13:05:56 | 00,100,368 | ---- | M] (ATI Research Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtiHdmi.sys -- (AtiHdmiService)

DRV - [2009-08-14 13:44:18 | 00,032,552 | ---- | M] (PC Tools) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pctNdis-DNS.sys -- (PCTFW-DNS)

DRV - [2009-08-13 09:10:36 | 00,096,368 | R--- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\jraid.sys -- (JRAID)

DRV - [2009-06-29 12:59:14 | 00,142,592 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)

DRV - [2009-04-28 21:20:06 | 00,044,944 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20)

DRV - [2009-03-27 01:16:28 | 00,012,672 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\cpuz132_x32.sys -- (cpuz132)

DRV - [2008-08-05 13:10:12 | 01,684,736 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)

DRV - [2008-04-13 17:39:16 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv)

DRV - [2008-04-13 17:36:05 | 00,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)

DRV - [2007-11-05 08:55:04 | 00,017,952 | ---- | M] () [Kernel | System | Running] -- C:\Program Files\Radeon Omega Drivers\v4.8.442\ATI Tray Tools\atitray.sys -- (atitray)

DRV - [2007-08-20 10:05:02 | 00,027,672 | R--- | M] (EnTech Taiwan) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Entech.sys -- (ENTECH)

DRV - [2007-01-25 16:37:16 | 04,027,456 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\alcxwdm.sys -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)

DRV - [2006-09-24 14:28:46 | 00,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan)

DRV - [2006-05-25 16:28:44 | 00,684,265 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\torususb.sys -- (TaurusUsb)

DRV - [2006-03-02 13:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink)

DRV - [2006-01-04 08:41:48 | 01,389,056 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)

DRV - [2004-10-11 18:22:02 | 00,211,712 | R--- | M] (Labtec Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LV561AV.SYS -- (PID_0928) Labtec WebCam(PID_0928)

DRV - [2004-10-11 18:18:58 | 00,022,016 | R--- | M] (Labtec Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LVUSBSta.sys -- (LVUSBSta)

DRV - [2003-08-12 15:51:00 | 00,060,255 | R--- | M] (STMicroelectronics ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\stmatm.sys -- (Stmatm)

DRV - [2003-08-04 13:22:44 | 00,016,128 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\PCANDIS5.SYS -- (PCANDIS5)

DRV - [2001-08-17 21:13:08 | 00,027,165 | ---- | M] (VIA Technologies, Inc. ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\fetnd5.sys -- (FETNDIS)

DRV - [1996-04-03 20:33:26 | 00,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio)



[color=#E56717]========== Standard Registry (SafeList) ==========[/color]



[color=#E56717]========== Internet Explorer ==========[/color]



IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.neostrada.pl

IE - HKCU\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\neostrada tp\SearchPageURL.dll ()

IE - HKCU\..\URLSearchHook: {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll (DeviceVM, Inc.)

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


[color=#E56717]========== FireFox ==========[/color]


FF - prefs.js..browser.search.defaultenginename: "Winamp Search"

FF - prefs.js..browser.search.defaulturl: "http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampie7&query="

FF - prefs.js..browser.search.useDBForOrder: true

FF - prefs.js..browser.startup.homepage: "http://pl.start3.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:pl:official"

FF - prefs.js..extensions.enabledItems: {E2883E8F-472F-4fb0-9522-AC9BF37916A7}:1

FF - prefs.js..extensions.enabledItems: 6

FF - prefs.js..extensions.enabledItems: 2

FF - prefs.js..extensions.enabledItems: 44

FF - prefs.js..extensions.enabledItems: anycolor.pavlos256@gmail.com:0.3.1

FF - prefs.js..extensions.enabledItems: battlefieldheroespatcher@ea.com:4.0.27.0

FF - prefs.js..extensions.enabledItems: en-GB@dictionaries.addons.mozilla.org:1.19

FF - prefs.js..extensions.enabledItems: pl@dictionaries.addons.mozilla.org:1.0.20090810

FF - prefs.js..extensions.enabledItems: {07b2a769-ed19-4483-87ce-c643914c81bb}:3.0.0.75

FF - prefs.js..keyword.URL: "http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampab&query="


FF - HKLM\software\mozilla\Mozilla Firefox 3.5.6\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009-12-17 18:25:52 | 00,000,000 | ---D | M]

FF - HKLM\software\mozilla\Mozilla Firefox 3.5.6\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009-12-16 19:15:07 | 00,000,000 | ---D | M]


[2009-11-11 21:07:37 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Łukasz\Dane aplikacji\Mozilla\Extensions

[2009-12-27 15:12:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Łukasz\Dane aplikacji\Mozilla\Firefox\Profiles\hk2yjama.default\extensions

[2009-11-16 16:16:08 | 00,000,000 | ---D | M] (Vista-aero) -- C:\Documents and Settings\Łukasz\Dane aplikacji\Mozilla\Firefox\Profiles\hk2yjama.default\extensions\{07b2a769-ed19-4483-87ce-c643914c81bb}

[2009-11-11 21:08:03 | 00,000,000 | ---D | M] (Winamp Toolbar) -- C:\Documents and Settings\Łukasz\Dane aplikacji\Mozilla\Firefox\Profiles\hk2yjama.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}

[2009-11-11 21:08:04 | 00,000,000 | ---D | M] (BF2fox) -- C:\Documents and Settings\Łukasz\Dane aplikacji\Mozilla\Firefox\Profiles\hk2yjama.default\extensions\{2e8cb798-9ca4-11dc-8314-0800200c9a66}

[2009-11-11 21:08:08 | 00,000,000 | ---D | M] (Blue Ice 2) -- C:\Documents and Settings\Łukasz\Dane aplikacji\Mozilla\Firefox\Profiles\hk2yjama.default\extensions\{a8dd47cf-239f-48c4-8379-e6b4cbafdcfa}

[2009-11-11 21:08:09 | 00,000,000 | ---D | M] (Password Exporter) -- C:\Documents and Settings\Łukasz\Dane aplikacji\Mozilla\Firefox\Profiles\hk2yjama.default\extensions\{B17C1C5A-04B1-11DB-9804-B622A1EF5492}(2)

[2009-11-11 21:08:09 | 00,000,000 | ---D | M] (Fast Video Download) -- C:\Documents and Settings\Łukasz\Dane aplikacji\Mozilla\Firefox\Profiles\hk2yjama.default\extensions\{c50ca3c4-5656-43c2-a061-13e717f73fc8}(2)

[2009-11-11 21:08:10 | 00,000,000 | ---D | M] (Adobe DLM (powered by getPlus(R))) -- C:\Documents and Settings\Łukasz\Dane aplikacji\Mozilla\Firefox\Profiles\hk2yjama.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}

[2009-11-16 16:16:42 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Łukasz\Dane aplikacji\Mozilla\Firefox\Profiles\hk2yjama.default\extensions\anycolor.pavlos256@gmail.com

[2009-10-17 08:03:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Łukasz\Dane aplikacji\Mozilla\Firefox\Profiles\hk2yjama.default\extensions\battlefieldheroespatcher@ea.com

[2009-11-21 12:27:43 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Łukasz\Dane aplikacji\Mozilla\Firefox\Profiles\hk2yjama.default\extensions\DTToolbar@toolbarnet.com

[2009-11-11 21:07:46 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Łukasz\Dane aplikacji\Mozilla\Firefox\Profiles\hk2yjama.default\extensions\en-GB@dictionaries.addons.mozilla.org

[2009-11-11 21:07:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Łukasz\Dane aplikacji\Mozilla\Firefox\Profiles\hk2yjama.default\extensions\firebug@software.joehewitt(2).com

[2009-11-11 21:07:59 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Łukasz\Dane aplikacji\Mozilla\Firefox\Profiles\hk2yjama.default\extensions\pl@dictionaries.addons.mozilla.org

[2009-11-16 16:16:37 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Łukasz\Dane aplikacji\Mozilla\Firefox\Profiles\hk2yjama.default\extensions\qtl.co.il@gmail.com

[2009-11-21 12:27:39 | 00,002,059 | ---- | M] () -- C:\Documents and Settings\Łukasz\Dane aplikacji\Mozilla\Firefox\Profiles\hk2yjama.default\searchplugins\daemon-search.xml

[2009-09-15 12:36:06 | 00,002,108 | ---- | M] () -- C:\Documents and Settings\Łukasz\Dane aplikacji\Mozilla\Firefox\Profiles\hk2yjama.default\searchplugins\qtl.xml

[2009-12-27 15:01:54 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions

[2009-11-15 22:50:40 | 00,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml

[2009-11-15 22:50:40 | 00,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml

[2009-11-15 22:50:40 | 00,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml

[2009-11-15 22:50:40 | 00,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml

[2009-11-15 22:50:40 | 00,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml

[2009-11-15 22:50:40 | 00,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml


O1 HOSTS File: (742 bytes) - C:\WINDOWS\system32\drivers\etc\hosts

O1 - Hosts: 127.0.0.1 localhost

O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)

O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()

O3 - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()

O4 - HKLM..\Run: [00PCTFW] C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe (PC Tools)

O4 - HKLM..\Run: [36X Raid Configurer] C:\WINDOWS\System32\xRaidSetup.exe (Gigabyte Technology Corp.)

O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)

O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)

O4 - HKLM..\Run: [AdslTaskBar] C:\WINDOWS\System32\stmctrl.dll (STMicroelectronics )

O4 - HKLM..\Run: [AtiPTA] C:\WINDOWS\system32\atiptaxx.exe (ATI Technologies, Inc.)

O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)

O4 - HKLM..\Run: [BCU] C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe (DeviceVM, Inc.)

O4 - HKLM..\Run: [Google Desktop Search] C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Google)

O4 - HKLM..\Run: [JMB36X IDE Setup] C:\WINDOWS\RaidTool\xInsIDE.exe ()

O4 - HKLM..\Run: [RTHDCPL] C:\WINDOWS\RTHDCPL.EXE (Realtek Semiconductor Corp.)

O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)

O4 - HKLM..\Run: [WOOTASKBARICON] C:\PROGRA~1\NEOSTR~1\GestMaj.exe TaskBarIcon.exe File not found

O4 - HKLM..\Run: [WOOWATCH] C:\Program Files\neostrada tp\Watch.exe (France Télécom R&D)

O4 - HKCU..\Run: [Nowe Gadu-Gadu] C:\Program Files\Nowe Gadu-Gadu\gg.exe (GG Network S.A.)

O4 - HKCU..\Run: [Steam] g:\c\program files\steam\steam.exe (Valve Corporation)

O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE (SUPERAntiSpyware.com)

O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation)

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 95 00 00 00 [binary data]

O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.

O15 - HKCU\..Trusted Domains: localhost ([]http in Lokalny intranet)

O15 - HKCU\..Trusted Ranges: GD ([http] in Lokalny intranet)

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/products/plugin/autodl/jinstall-1_4_0_03-win.cab (Java Plug-in 1.4.0_03)

O16 - DPF: {CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA} http://java.sun.com/products/plugin/autodl/jinstall-1_4_0_03-win.cab (Java Plug-in 1.4.0_03)

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)

O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)

O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL) - C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google)

O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)

O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll (SUPERAntiSpyware.com)

O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)

O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home

O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2009-11-10 16:43:54 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [NTFS]

O34 - HKLM BootExecute: (autocheck autochk *) - File not found

O35 - comfile [open] -- "%1" %*

O35 - exefile [open] -- "%1" %*


[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]


[2009-12-27 15:44:45 | 00,000,000 | ---D | C] -- C:\Program Files\Trend Micro

[2009-12-26 22:14:04 | 00,000,000 | ---D | C] -- C:\Program Files\RegCleaner

[2009-12-26 09:55:53 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\AlertModule

[2009-12-26 09:55:49 | 00,040,960 | ---- | C] (France Telecom) -- C:\WINDOWS\System32\FTRTSVC.exe

[2009-12-26 09:55:49 | 00,036,864 | ---- | C] (France Télécom R&D) -- C:\WINDOWS\System32\IfHelper.dll

[2009-12-25 05:28:06 | 00,012,672 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- C:\WINDOWS\System32\drivers\cpuz132_x32.sys

[2009-12-25 05:28:05 | 00,000,000 | ---D | C] -- C:\Program Files\CPUID

[2009-12-25 05:10:22 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Łukasz\Ustawienia lokalne\Dane aplikacji\ATI

[2009-12-25 05:10:22 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Łukasz\Dane aplikacji\ATI

[2009-12-25 02:26:12 | 00,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\SecuROM

[2009-12-25 01:37:08 | 00,000,000 | ---D | C] -- C:\Program Files\DIFX

[2009-12-25 01:37:04 | 00,000,000 | ---D | C] -- C:\WINDOWS\D56B0E274A3E46C9B5C1D93D580C099C.TMP

[2009-12-24 23:36:29 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Łukasz\Pulpit\GRY

[2009-12-21 20:06:36 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Futuremark

[2009-12-21 20:04:21 | 00,000,000 | ---D | C] -- C:\Program Files\Futuremark

[2009-12-21 19:47:47 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ATI

[2009-12-21 19:42:43 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\ATI Technologies

[2009-12-21 19:42:33 | 00,100,368 | ---- | C] (ATI Research Inc.) -- C:\WINDOWS\System32\drivers\AtiHdmi.sys

[2009-12-21 19:39:56 | 00,000,000 | ---D | C] -- C:\Program Files\ATI Technologies

[2009-12-21 19:39:53 | 00,000,000 | ---D | C] -- C:\Program Files\ATI

[2009-12-21 19:36:13 | 01,970,176 | R--- | C] (Gigabyte Technology Corp.) -- C:\WINDOWS\System32\xRaidSetup.exe

[2009-12-21 19:36:13 | 00,000,000 | ---D | C] -- C:\RaidTool

[2009-12-21 19:36:09 | 00,000,000 | ---D | C] -- C:\WINDOWS\RaidTool

[2009-12-21 19:35:39 | 00,142,592 | R--- | C] (Realtek Semiconductor Corporation ) -- C:\WINDOWS\System32\drivers\Rtenicxp.sys

[2009-12-21 19:34:59 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang

[2009-12-21 19:32:55 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM

[2009-12-21 19:32:43 | 00,348,160 | ---- | C] (Realtek Semiconductor Crop.) -- C:\WINDOWS\vncutil.exe

[2009-12-21 19:32:42 | 00,122,880 | ---- | C] (Realtek Semiconductor) -- C:\WINDOWS\RtkAudioService.exe

[2009-12-21 19:32:31 | 02,808,832 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE

[2009-12-21 19:32:30 | 01,684,736 | ---- | C] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys

[2009-12-21 19:32:30 | 00,000,000 | ---D | C] -- C:\Program Files\Realtek

[2009-12-21 19:29:12 | 00,053,248 | R--- | C] (Windows XP Bundled build C-Centric Single User) -- C:\WINDOWS\System32\CSVer.dll

[2009-12-21 19:29:12 | 00,000,000 | ---D | C] -- C:\Program Files\Intel

[2009-12-21 19:29:12 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE

[2009-12-21 19:29:06 | 00,000,000 | ---D | C] -- C:\Intel

[2009-12-21 19:28:46 | 00,000,000 | -H-D | C] -- C:\Program Files\DeviceVM

[2009-12-21 19:22:49 | 00,006,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\enum1394.sys

[2009-12-21 19:22:49 | 00,006,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\enum1394.sys

[2009-12-21 19:22:48 | 00,061,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ohci1394.sys

[2009-12-21 19:22:48 | 00,053,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\1394bus.sys

[2009-12-21 19:22:48 | 00,053,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\1394bus.sys

[2009-12-20 20:09:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Łukasz\Pulpit\pendrive babcia

[2009-12-15 16:13:11 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Łukasz\Ustawienia lokalne\Dane aplikacji\Gas Powered Games

[2009-12-12 13:38:12 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Łukasz\Ustawienia lokalne\Dane aplikacji\WMTools Downloaded Files

[2009-12-12 13:07:40 | 00,000,000 | ---D | C] -- C:\Fraps

[2009-12-08 14:43:09 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Łukasz\Dane aplikacji\PCToolsFirewallPlus

[2009-12-08 14:40:47 | 00,207,792 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\PCTCore.sys

[2009-12-08 14:40:47 | 00,088,040 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\PCTAppEvent.sys

[2009-12-08 14:40:44 | 00,233,136 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\pctgntdi.sys

[2009-12-08 14:40:26 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP

[2009-12-08 14:40:23 | 00,070,408 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\pctNdis-PacketFilter.sys

[2009-12-08 14:40:23 | 00,056,512 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\pctNdis.sys

[2009-12-08 14:40:23 | 00,032,552 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\pctNdis-DNS.sys

[2009-12-08 14:40:23 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\PC Tools

[2009-12-08 14:40:20 | 00,115,216 | ---- | C] (PC Tools) -- C:\WINDOWS\System32\drivers\pctplfw.sys

[2009-12-08 14:40:14 | 00,000,000 | ---D | C] -- C:\Program Files\PC Tools Firewall Plus

[2009-12-07 17:00:36 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\SEGA Rally

[2009-12-07 16:59:21 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Łukasz\Moje dokumenty\SEGA Rally

[2009-12-06 20:39:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Łukasz\Dane aplikacji\Microsoft Games

[2009-12-06 20:32:56 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Łukasz\Moje dokumenty\Games for Windows - LIVE Demos

[2009-12-06 20:32:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\microsoft

[2009-12-06 20:24:14 | 00,603,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\crypt32.dll

[2009-12-06 20:24:13 | 00,177,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wintrust.dll

[2009-12-06 20:20:38 | 00,453,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_42.dll

[2009-12-06 20:20:37 | 01,892,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_42.dll

[2009-12-06 20:20:26 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\xlive

[2009-12-06 20:20:25 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Games for Windows - LIVE

[2009-12-04 19:55:22 | 01,846,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_41.dll

[2009-12-04 19:55:21 | 04,178,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_41.dll

[2009-12-04 19:55:21 | 00,453,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_41.dll

[2009-12-04 19:55:20 | 00,517,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_4.dll

[2009-12-04 19:55:20 | 00,235,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_4.dll

[2009-12-04 19:55:20 | 00,069,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_3.dll

[2009-12-04 19:55:19 | 02,036,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_40.dll

[2009-12-04 19:55:19 | 00,452,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_40.dll

[2009-12-04 19:55:19 | 00,022,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_6.dll

[2009-12-04 19:55:18 | 04,379,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_40.dll

[2009-12-04 19:55:17 | 00,514,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_3.dll

[2009-12-04 19:55:17 | 00,235,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_3.dll

[2009-12-04 19:55:17 | 00,070,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_2.dll

[2009-12-04 19:55:16 | 00,023,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_5.dll

[2009-12-04 19:16:56 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Games

[2009-12-03 19:25:00 | 00,000,000 | ---D | C] -- C:\Program Files\Jufsoft

[2009-11-28 17:00:18 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\id Software

[2009-11-10 18:22:43 | 00,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft

[2009-11-10 16:47:25 | 00,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft

[2009-11-10 16:47:25 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft

[2009-10-29 18:01:47 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft

[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp ->]

[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp ->]

[1 C:\Documents and Settings\Łukasz\Moje dokumenty\*.tmp files -> C:\Documents and Settings\Łukasz\Moje dokumenty\*.tmp ->]


[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]


[2009-12-27 15:44:46 | 00,001,734 | ---- | M] () -- C:\Documents and Settings\Łukasz\Pulpit\HijackThis.lnk

[2009-12-27 14:28:28 | 00,012,598 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl

[2009-12-27 14:27:49 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT

[2009-12-27 14:27:45 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat

[2009-12-27 14:26:46 | 03,932,160 | -H-- | M] () -- C:\Documents and Settings\Łukasz\NTUSER.DAT

[2009-12-27 14:26:37 | 00,000,188 | -HS- | M] () -- C:\Documents and Settings\Łukasz\ntuser.ini

[2009-12-27 12:48:42 | 00,000,552 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\NeostradaTP.lnk

[2009-12-26 22:53:25 | 00,000,448 | RHS- | M] () -- C:\Documents and Settings\All Users\ntuser.pol

[2009-12-26 21:57:52 | 01,843,141 | ---- | M] () -- C:\Documents and Settings\Łukasz\Pulpit\clip0001.gif

[2009-12-26 16:46:58 | 02,115,800 | -H-- | M] () -- C:\Documents and Settings\Łukasz\Ustawienia lokalne\Dane aplikacji\IconCache.db

[2009-12-26 11:42:33 | 00,000,884 | ---- | M] () -- C:\Documents and Settings\Łukasz\Pulpit\Stalker.lnk

[2009-12-26 10:40:32 | 00,012,182 | ---- | M] () -- C:\WINDOWS\stsetup.htm

[2009-12-26 10:40:28 | 00,001,414 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\ZTE ZXDSL 852.lnk

[2009-12-26 09:55:57 | 00,001,547 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\neostrada tp.lnk

[2009-12-26 00:12:49 | 00,191,304 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.xtr

[2009-12-26 00:12:49 | 00,191,304 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.exe

[2009-12-26 00:00:11 | 00,001,608 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Whirlwind of Vietnam.lnk

[2009-12-25 05:28:06 | 00,000,717 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\CPUID CPU-Z.lnk

[2009-12-25 04:07:25 | 00,002,645 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT

[2009-12-25 02:24:08 | 00,001,878 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Borderlands.lnk

[2009-12-25 02:06:48 | 00,000,223 | RHS- | M] () -- C:\boot.ini

[2009-12-24 23:43:50 | 00,866,953 | ---- | M] () -- C:\Documents and Settings\Łukasz\Moje dokumenty\Windows_7_Has_Matrix_in_It__by_Rahul964.jpg

[2009-12-24 23:43:41 | 00,147,526 | ---- | M] () -- C:\Documents and Settings\Łukasz\Moje dokumenty\windows-7-wallpaper-1280x1024.jpg

[2009-12-24 23:42:50 | 00,486,048 | ---- | M] () -- C:\Documents and Settings\Łukasz\Moje dokumenty\win7%207232_nologo_wall_1280x1024.jpg

[2009-12-24 23:14:31 | 00,014,336 | ---- | M] () -- C:\Documents and Settings\Łukasz\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2009-12-22 20:39:23 | 00,012,540 | ---- | M] () -- C:\WINDOWS\System32\wpa.bak

[2009-12-21 20:07:00 | 00,086,016 | ---- | M] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\WINDOWS\System32\OpenAL32.dll

[2009-12-21 19:42:28 | 00,000,000 | ---- | M] () -- C:\WINDOWS\ativpsrm.bin

[2009-12-21 19:35:00 | 00,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav

[2009-12-21 19:35:00 | 00,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav

[2009-12-21 19:34:58 | 00,000,010 | ---- | M] () -- C:\WINDOWS\GSetup.ini

[2009-12-21 19:33:04 | 01,087,636 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI

[2009-12-21 19:33:04 | 00,490,628 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat

[2009-12-21 19:33:04 | 00,432,492 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat

[2009-12-21 19:33:04 | 00,083,880 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat

[2009-12-21 19:33:04 | 00,067,448 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat

[2009-12-20 18:21:14 | 00,000,756 | ---- | M] () -- C:\Documents and Settings\Łukasz\Pulpit\Half-Life 2 Episode One.lnk

[2009-12-20 17:06:03 | 00,000,754 | ---- | M] () -- C:\Documents and Settings\Łukasz\Pulpit\Half-Life 2 Deathmatch.lnk

[2009-12-19 11:52:51 | 00,000,790 | ---- | M] () -- C:\Documents and Settings\Łukasz\Pulpit\Half-Life 2.lnk

[2009-12-17 18:19:07 | 00,000,792 | ---- | M] () -- C:\Documents and Settings\Łukasz\Pulpit\Mare Nostrum.lnk

[2009-12-16 21:28:28 | 00,000,790 | ---- | M] () -- C:\Documents and Settings\Łukasz\Pulpit\Condition Zero Deleted Scenes.lnk

[2009-12-16 21:25:28 | 00,000,788 | ---- | M] () -- C:\Documents and Settings\Łukasz\Pulpit\Ricochet.lnk

[2009-12-16 21:13:19 | 00,000,788 | ---- | M] () -- C:\Documents and Settings\Łukasz\Pulpit\Deathmatch Classic.lnk

[2009-12-16 20:30:57 | 00,000,788 | ---- | M] () -- C:\Documents and Settings\Łukasz\Pulpit\Day of Defeat.lnk

[2009-12-16 18:04:04 | 00,000,788 | ---- | M] () -- C:\Documents and Settings\Łukasz\Pulpit\Condition Zero.lnk

[2009-12-16 16:47:39 | 16,426,309 | ---- | M] () -- C:\Documents and Settings\Łukasz\Pulpit\fallout_2__poradnik_gry_online_www.przeklej.pl.pdf

[2009-12-15 17:39:28 | 10,981,577 | ---- | M] () -- C:\Documents and Settings\Łukasz\Pulpit\Fallout_-_Poradnik_Gry-OnLine.pdf

[2009-12-15 16:58:35 | 01,943,814 | ---- | M] () -- C:\Documents and Settings\Łukasz\Pulpit\fallout 2 poradnik.pdf

[2009-12-15 16:39:49 | 00,000,665 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Fallout 2.lnk

[2009-12-14 17:42:50 | 00,166,472 | ---- | M] () -- C:\Documents and Settings\Łukasz\Moje dokumenty\wallpaper_2_800.jpg

[2009-12-14 17:42:40 | 00,348,548 | ---- | M] () -- C:\Documents and Settings\Łukasz\Moje dokumenty\wallpaper_2_1280.jpg

[2009-12-14 17:37:24 | 00,003,101 | ---- | M] () -- C:\Documents and Settings\Łukasz\Moje dokumenty\5522[143].jpg

[2009-12-14 17:34:56 | 00,023,662 | ---- | M] () -- C:\Documents and Settings\Łukasz\Moje dokumenty\52qv.jpg

[2009-12-13 15:23:24 | 00,005,449 | ---- | M] () -- C:\Documents and Settings\Łukasz\Moje dokumenty\Lucas Kane - alone in nowhere (avatar) 1[275].jpg

[2009-12-13 15:21:05 | 00,030,572 | ---- | M] () -- C:\Documents and Settings\Łukasz\Moje dokumenty\Kane[35].jpg

[2009-12-12 20:19:16 | 00,138,504 | ---- | M] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys

[2009-12-12 13:07:40 | 00,000,482 | ---- | M] () -- C:\Documents and Settings\Łukasz\Pulpit\Fraps.lnk

[2009-12-12 12:21:09 | 00,040,485 | ---- | M] () -- C:\Documents and Settings\Łukasz\Pulpit\All.m3u

[2009-12-11 23:02:30 | 00,032,343 | ---- | M] () -- C:\Documents and Settings\Łukasz\Moje dokumenty\avatar_1160.gif

[2009-12-11 20:27:31 | 00,055,048 | ---- | M] () -- C:\Documents and Settings\Łukasz\Moje dokumenty\index.php.gif

[2009-12-11 20:24:21 | 00,385,565 | ---- | M] () -- C:\Documents and Settings\Łukasz\Moje dokumenty\1869c255745d.gif

[2009-12-09 11:51:50 | 00,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK

[2009-12-07 21:01:36 | 00,023,150 | -H-- | M] () -- C:\WINDOWS\System32\ATMplkxx.GID

[2009-12-07 16:58:29 | 00,000,726 | ---- | M] () -- C:\Documents and Settings\Łukasz\Pulpit\SEGA Rally.lnk

[2009-12-07 14:41:19 | 00,000,964 | ---- | M] () -- C:\Documents and Settings\Łukasz\Pulpit\Games for Windows - LIVE.lnk

[2009-12-06 21:53:43 | 00,023,328 | ---- | M] () -- C:\Documents and Settings\Łukasz\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT

[2009-12-06 20:36:07 | 00,023,552 | ---- | M] () -- C:\Documents and Settings\Łukasz\Moje dokumenty\6oa4ti8b hasło na o2.doc

[2009-12-06 20:20:36 | 00,001,910 | ---- | M] () -- C:\Documents and Settings\Łukasz\Pulpit\Gears of War.lnk

[2009-11-28 21:42:44 | 00,131,688 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT

[2009-11-28 17:06:08 | 00,000,678 | ---- | M] () -- C:\Documents and Settings\Łukasz\Pulpit\samp.lnk

[2009-11-28 17:00:19 | 02,373,712 | ---- | M] () -- C:\WINDOWS\System32\pbsvc.exe

[2009-11-28 17:00:19 | 00,075,064 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrA.exe

[2009-11-27 17:59:32 | 00,002,267 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk

[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp ->]

[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp ->]

[1 C:\Documents and Settings\Łukasz\Moje dokumenty\*.tmp files -> C:\Documents and Settings\Łukasz\Moje dokumenty\*.tmp ->]


[color=#E56717]========== Files Created - No Company Name ==========[/color]


[2009-12-27 15:44:46 | 00,001,734 | ---- | C] () -- C:\Documents and Settings\Łukasz\Pulpit\HijackThis.lnk

[2009-12-27 12:48:42 | 00,000,552 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\NeostradaTP.lnk

[2009-12-26 21:57:51 | 01,843,141 | ---- | C] () -- C:\Documents and Settings\Łukasz\Pulpit\clip0001.gif

[2009-12-26 11:42:33 | 00,000,884 | ---- | C] () -- C:\Documents and Settings\Łukasz\Pulpit\Stalker.lnk

[2009-12-26 10:33:13 | 00,036,864 | ---- | C] () -- C:\WINDOWS\StmClean.exe

[2009-12-26 10:29:22 | 00,001,414 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\ZTE ZXDSL 852.lnk

[2009-12-26 09:55:57 | 00,001,547 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\neostrada tp.lnk

[2009-12-26 00:00:11 | 00,001,608 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Whirlwind of Vietnam.lnk

[2009-12-25 05:28:06 | 00,000,717 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\CPUID CPU-Z.lnk

[2009-12-25 02:24:08 | 00,001,878 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Borderlands.lnk

[2009-12-24 23:43:49 | 00,866,953 | ---- | C] () -- C:\Documents and Settings\Łukasz\Moje dokumenty\Windows_7_Has_Matrix_in_It__by_Rahul964.jpg

[2009-12-24 23:43:41 | 00,147,526 | ---- | C] () -- C:\Documents and Settings\Łukasz\Moje dokumenty\windows-7-wallpaper-1280x1024.jpg

[2009-12-24 23:42:49 | 00,486,048 | ---- | C] () -- C:\Documents and Settings\Łukasz\Moje dokumenty\win7%207232_nologo_wall_1280x1024.jpg

[2009-12-21 20:06:36 | 00,006,173 | ---- | C] () -- C:\WINDOWS\System32\drivers\Entech.vxd

[2009-12-21 20:06:36 | 00,003,972 | ---- | C] () -- C:\WINDOWS\System32\drivers\PciBus.sys

[2009-12-21 19:42:28 | 00,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin

[2009-12-21 19:40:46 | 00,310,864 | ---- | C] () -- C:\WINDOWS\System32\ativvaxx.cap

[2009-12-21 19:40:45 | 00,045,056 | ---- | C] () -- C:\WINDOWS\System32\ATIODCLI.exe

[2009-12-21 19:40:42 | 00,294,912 | ---- | C] () -- C:\WINDOWS\System32\ATIODE.exe

[2009-12-21 19:35:39 | 00,073,728 | R--- | C] () -- C:\WINDOWS\System32\RtNicProp32.dll

[2009-12-21 19:35:00 | 00,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav

[2009-12-21 19:35:00 | 00,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav

[2009-12-21 19:28:17 | 00,207,400 | R--- | C] () -- C:\WINDOWS\GSetup.exe

[2009-12-21 19:28:17 | 00,000,010 | ---- | C] () -- C:\WINDOWS\GSetup.ini

[2009-12-20 18:21:14 | 00,000,756 | ---- | C] () -- C:\Documents and Settings\Łukasz\Pulpit\Half-Life 2 Episode One.lnk

[2009-12-20 17:06:03 | 00,000,754 | ---- | C] () -- C:\Documents and Settings\Łukasz\Pulpit\Half-Life 2 Deathmatch.lnk

[2009-12-19 11:52:51 | 00,000,790 | ---- | C] () -- C:\Documents and Settings\Łukasz\Pulpit\Half-Life 2.lnk

[2009-12-17 18:19:07 | 00,000,792 | ---- | C] () -- C:\Documents and Settings\Łukasz\Pulpit\Mare Nostrum.lnk

[2009-12-16 21:28:28 | 00,000,790 | ---- | C] () -- C:\Documents and Settings\Łukasz\Pulpit\Condition Zero Deleted Scenes.lnk

[2009-12-16 21:25:28 | 00,000,788 | ---- | C] () -- C:\Documents and Settings\Łukasz\Pulpit\Ricochet.lnk

[2009-12-16 21:13:19 | 00,000,788 | ---- | C] () -- C:\Documents and Settings\Łukasz\Pulpit\Deathmatch Classic.lnk

[2009-12-16 20:30:57 | 00,000,788 | ---- | C] () -- C:\Documents and Settings\Łukasz\Pulpit\Day of Defeat.lnk

[2009-12-16 18:04:04 | 00,000,788 | ---- | C] () -- C:\Documents and Settings\Łukasz\Pulpit\Condition Zero.lnk

[2009-12-16 16:45:34 | 16,426,309 | ---- | C] () -- C:\Documents and Settings\Łukasz\Pulpit\fallout_2__poradnik_gry_online_www.przeklej.pl.pdf

[2009-12-15 17:35:35 | 10,981,577 | ---- | C] () -- C:\Documents and Settings\Łukasz\Pulpit\Fallout_-_Poradnik_Gry-OnLine.pdf

[2009-12-15 16:58:35 | 01,943,814 | ---- | C] () -- C:\Documents and Settings\Łukasz\Pulpit\fallout 2 poradnik.pdf

[2009-12-15 16:39:49 | 00,000,665 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Fallout 2.lnk

[2009-12-14 17:42:49 | 00,166,472 | ---- | C] () -- C:\Documents and Settings\Łukasz\Moje dokumenty\wallpaper_2_800.jpg

[2009-12-14 17:42:39 | 00,348,548 | ---- | C] () -- C:\Documents and Settings\Łukasz\Moje dokumenty\wallpaper_2_1280.jpg

[2009-12-14 17:37:24 | 00,003,101 | ---- | C] () -- C:\Documents and Settings\Łukasz\Moje dokumenty\5522[143].jpg

[2009-12-14 17:34:54 | 00,023,662 | ---- | C] () -- C:\Documents and Settings\Łukasz\Moje dokumenty\52qv.jpg

[2009-12-13 15:23:23 | 00,005,449 | ---- | C] () -- C:\Documents and Settings\Łukasz\Moje dokumenty\Lucas Kane - alone in nowhere (avatar) 1[275].jpg

[2009-12-13 15:21:04 | 00,030,572 | ---- | C] () -- C:\Documents and Settings\Łukasz\Moje dokumenty\Kane[35].jpg

[2009-12-12 13:07:40 | 00,000,482 | ---- | C] () -- C:\Documents and Settings\Łukasz\Pulpit\Fraps.lnk

[2009-12-12 12:21:09 | 00,040,485 | ---- | C] () -- C:\Documents and Settings\Łukasz\Pulpit\All.m3u

[2009-12-11 23:02:29 | 00,032,343 | ---- | C] () -- C:\Documents and Settings\Łukasz\Moje dokumenty\avatar_1160.gif

[2009-12-11 20:27:31 | 00,055,048 | ---- | C] () -- C:\Documents and Settings\Łukasz\Moje dokumenty\index.php.gif

[2009-12-11 20:24:21 | 00,385,565 | ---- | C] () -- C:\Documents and Settings\Łukasz\Moje dokumenty\1869c255745d.gif

[2009-12-08 14:40:47 | 00,007,412 | ---- | C] () -- C:\WINDOWS\System32\drivers\PCTAppEvent.cat

[2009-12-08 14:40:47 | 00,007,383 | ---- | C] () -- C:\WINDOWS\System32\drivers\pctcore.cat

[2009-12-08 14:40:44 | 00,007,387 | ---- | C] () -- C:\WINDOWS\System32\drivers\pctgntdi.cat

[2009-12-08 14:40:23 | 00,007,435 | ---- | C] () -- C:\WINDOWS\System32\drivers\pctNdis-PacketFilter.cat

[2009-12-08 14:40:23 | 00,007,399 | ---- | C] () -- C:\WINDOWS\System32\drivers\pctNdis-DNS.cat

[2009-12-08 14:40:20 | 00,007,383 | ---- | C] () -- C:\WINDOWS\System32\drivers\pctplfw.cat

[2009-12-07 16:58:29 | 00,000,726 | ---- | C] () -- C:\Documents and Settings\Łukasz\Pulpit\SEGA Rally.lnk

[2009-12-07 14:41:15 | 00,000,964 | ---- | C] () -- C:\Documents and Settings\Łukasz\Pulpit\Games for Windows - LIVE.lnk

[2009-12-07 00:28:22 | 00,082,424 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat

[2009-12-06 20:20:35 | 00,001,910 | ---- | C] () -- C:\Documents and Settings\Łukasz\Pulpit\Gears of War.lnk

[2009-11-28 17:06:08 | 00,000,678 | ---- | C] () -- C:\Documents and Settings\Łukasz\Pulpit\samp.lnk

[2009-11-21 12:22:14 | 00,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys

[2009-11-21 09:54:05 | 00,765,952 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll

[2009-11-21 09:54:05 | 00,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll

[2009-11-15 12:56:09 | 00,000,902 | R--- | C] () -- C:\WINDOWS\System32\setup.ini

[2009-11-15 12:56:09 | 00,000,161 | R--- | C] () -- C:\WINDOWS\DSLSetup.ini

[2009-11-15 12:56:08 | 00,684,265 | R--- | C] () -- C:\WINDOWS\System32\drivers\torususb.sys

[2009-11-15 12:55:37 | 00,041,068 | ---- | C] () -- C:\WINDOWS\System32\ActPanel.dll

[2009-11-12 11:53:37 | 00,000,427 | ---- | C] () -- C:\WINDOWS\ODBC.INI

[2009-11-12 11:53:37 | 00,000,063 | ---- | C] () -- C:\WINDOWS\mdm.ini

[2009-11-12 11:43:55 | 00,000,000 | ---- | C] () -- C:\WINDOWS\NSREX.INI

[2009-11-11 22:32:34 | 00,000,011 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.ini

[2009-11-11 20:45:03 | 00,000,716 | ---- | C] () -- C:\WINDOWS\WINCMD.INI

[2009-11-10 18:27:26 | 00,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini

[2009-11-06 10:58:04 | 00,178,975 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat

[2009-11-02 19:58:42 | 00,006,812 | R--- | C] () -- C:\WINDOWS\System32\lvcoinst.ini

[2009-10-24 11:33:14 | 00,014,336 | ---- | C] () -- C:\Documents and Settings\Łukasz\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2009-10-21 12:46:22 | 00,138,504 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys

[2009-10-19 15:40:19 | 00,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI

[2009-10-16 15:23:04 | 00,000,280 | ---- | C] () -- C:\WINDOWS\game.ini

[2008-10-07 09:13:30 | 00,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll

[2008-10-07 09:13:22 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll

[2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll

[2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll

[2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll

[2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll

[2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll

[2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll

[2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll

[2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll

[1999-01-22 17:46:58 | 00,065,536 | ---- | C] () -- C:\WINDOWS\System32\MSRTEDIT.DLL

[1996-04-03 20:33:26 | 00,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys


[color=#E56717]========== Alternate Data Streams ==========[/color]


@Alternate Data Stream - 101 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:C31F31E6

< End of report >

liki na wklej.org

1.http://www.wklej.org/id/248127/

2.http://www.wklej.org/id/248138/

ps: aby znów połączyć internet muszę zresetowac modem(programem ) model modemu to ZTE 852 łaczenie manualne czy przez program nie daje efektów jak już nic się nie a to zrobię formata bo na G ma “bezpieczne” foldery… i tak muszę przeinstalowac widnwosa i sterowniki poinstalować