Logowanie »
Rejestracja
Pomoc
Czy to są wirusy itp:
http://img256.images...beztytuuizu.png
Strona 1 z 1
- Nie możesz napisać tematu
Dodaj odpowiedź
wirusy w autostart?
Cytuj
#3
- Uczestnik
-
- Grupa: Czytelnicy
- Postów 670
- Rejestracja: 07-styczeń 04
Napisano 22 październik 2010, 20:40
Jaki w takim razie polecacie skaner online? Reinstalka na razie odpada.
Laptop:
Intel Core2 Duo: T5750 2.0 GHz, nVidia GeForce 9300M G, 4 x 1024 Mb DDR2 667 MHz, HDD 320 Gb Serial ATA, combo Blu-ray ROM + DVD+/-RW DL, Windows Vista Home Premium
Intel Core2 Duo: T5750 2.0 GHz, nVidia GeForce 9300M G, 4 x 1024 Mb DDR2 667 MHz, HDD 320 Gb Serial ATA, combo Blu-ray ROM + DVD+/-RW DL, Windows Vista Home Premium
#5
- Stały Uczestnik
-
- Grupa: Ekspert
- Postów 1445
- Rejestracja: 30-maj 06
Napisano 23 październik 2010, 07:40
To na samej górze to nie wirus, ale też można odznaczyć. Natomiast te pozostałe to prawdopodobnie wirusy.
Natomiast co do usuwania ich to zrób jak wyżej polecono, a gdyby coś jeszcze zostało to możesz użyć ComboFix'a.
Natomiast co do usuwania ich to zrób jak wyżej polecono, a gdyby coś jeszcze zostało to możesz użyć ComboFix'a.
---------------------------------
1. Dual Core E5200 @3,83GHz + CM Hyper TX3 | MSI P45 Neo2-FR MOA | 2x 2GB A-Data 800MHz | Gigabyte Radeon HD4850 512MB @700/1098MHz | Barracuda 7200.12 500GB + Samsung F2EG 1TB | BTC DVD-RW | Corsair VX550W | SB X-Fi HD USB | WinFast DTV2000 H | Win 7 Pro x64
2. Acer Extensa 5620Z - Pentium Dual Core T2310 @1466MHz | 3GB RAM GoodRAM 666MHz | GMA X3100 | Momentus 5400.3 120GB | Win 7 Pro x86
1. Dual Core E5200 @3,83GHz + CM Hyper TX3 | MSI P45 Neo2-FR MOA | 2x 2GB A-Data 800MHz | Gigabyte Radeon HD4850 512MB @700/1098MHz | Barracuda 7200.12 500GB + Samsung F2EG 1TB | BTC DVD-RW | Corsair VX550W | SB X-Fi HD USB | WinFast DTV2000 H | Win 7 Pro x64
2. Acer Extensa 5620Z - Pentium Dual Core T2310 @1466MHz | 3GB RAM GoodRAM 666MHz | GMA X3100 | Momentus 5400.3 120GB | Win 7 Pro x86
#6
- Początkujący Uczestnik
-
- Grupa: Czytelnicy
- Postów 262
- Rejestracja: 07-czerwiec 09
Napisano 23 październik 2010, 08:34
#7
- Uczestnik
-
- Grupa: Czytelnicy
- Postów 670
- Rejestracja: 07-styczeń 04
Napisano 23 październik 2010, 09:22
C:\ (%systemdrive%) -> Fixed drive # 18 Gb (2 Mb free - 9%) [System] # NTFS
D:\ -> Fixed drive # 60 Gb (26 Mb free - 43%) [Gry] # NTFS
E:\ -> Fixed drive # 20 Gb (10 Mb free - 49%) [Multimedia] # NTFS
F:\ -> Fixed drive # 25 Gb (6 Mb free - 23%) [Militaria] # NTFS
G:\ -> Fixed drive # 15 Gb (11 Mb free - 76%) [Magazyn I] # NTFS
H:\ -> CD-ROM
I:\ -> Removable drive # 4 Gb (2 Mb free - 67%) [] # FAT32
################## | Files # Infected Folders |
Deleted ! C:\windows\system32\vbsdfe0.dll
Deleted ! C:\Autorun.inf
Deleted ! D:\Autorun.inf
Deleted ! E:\Autorun.inf
Deleted ! F:\Autorun.inf
Deleted ! G:\Autorun.inf
Deleted ! C:\Recycler\S-1-5-21-2025429265-413027322-682003330-1003
Deleted ! D:\Recycler\S-1-5-21-2025429265-413027322-682003330-1003
Deleted ! E:\Recycler\S-1-5-21-2025429265-413027322-682003330-1003
Deleted ! F:\Recycler\S-1-5-21-2025429265-413027322-682003330-1003
Deleted ! G:\Recycler\S-1-5-21-2025429265-413027322-682003330-1003
Deleted ! C:\resycled
Deleted ! D:\09lf.exe
Deleted ! D:\1hqup.exe
Deleted ! D:\2ul.exe
Deleted ! D:\31lyx.exe
Deleted ! D:\8xcrbho6.exe
Deleted ! D:\ba.exe
Deleted ! D:\bu8.exe
Deleted ! D:\ca.exe
Deleted ! D:\dqm.exe
Deleted ! D:\eexyv.exe
Deleted ! D:\eyruu.exe
Deleted ! D:\i8ikdjwt.exe
Deleted ! D:\k8jc.exe
Deleted ! D:\mbvd.exe
Deleted ! D:\mh.exe
Deleted ! D:\p6xebrnt.exe
Deleted ! D:\pbyqfn.exe
Deleted ! D:\q0wfr.exe
Deleted ! D:\qkm.exe
Deleted ! D:\resycled
Deleted ! D:\s1.exe
Deleted ! D:\sdfqh.exe
Deleted ! D:\twhvna.exe
Deleted ! D:\ws.exe
Deleted ! D:\yqq8eqil.exe
Deleted ! D:\ysyjq1bs.exe
Deleted ! E:\09lf.exe
Deleted ! E:\1hqup.exe
Deleted ! E:\2ul.exe
Deleted ! E:\31lyx.exe
Deleted ! E:\8xcrbho6.exe
Deleted ! E:\ba.exe
Deleted ! E:\bu8.exe
Deleted ! E:\ca.exe
Deleted ! E:\dqm.exe
Deleted ! E:\eexyv.exe
Deleted ! E:\eyruu.exe
Deleted ! E:\i8ikdjwt.exe
Deleted ! E:\k8jc.exe
Deleted ! E:\mbvd.exe
Deleted ! E:\mh.exe
Deleted ! E:\p6xebrnt.exe
Deleted ! E:\pbyqfn.exe
Deleted ! E:\q0wfr.exe
Deleted ! E:\qkm.exe
Deleted ! E:\resycled
Deleted ! E:\s1.exe
Deleted ! E:\sdfqh.exe
Deleted ! E:\twhvna.exe
Deleted ! E:\ws.exe
Deleted ! E:\yqq8eqil.exe
Deleted ! E:\ysyjq1bs.exe
Deleted ! F:\09lf.exe
Deleted ! F:\1hqup.exe
Deleted ! F:\2ul.exe
Deleted ! F:\31lyx.exe
Deleted ! F:\8xcrbho6.exe
Deleted ! F:\ba.exe
Deleted ! F:\bu8.exe
Deleted ! F:\ca.exe
Deleted ! F:\dqm.exe
Deleted ! F:\eexyv.exe
Deleted ! F:\eyruu.exe
Deleted ! F:\i8ikdjwt.exe
Deleted ! F:\k8jc.exe
Deleted ! F:\mbvd.exe
Deleted ! F:\mh.exe
Deleted ! F:\p6xebrnt.exe
Deleted ! F:\pbyqfn.exe
Deleted ! F:\q0wfr.exe
Deleted ! F:\qkm.exe
Deleted ! F:\resycled
Deleted ! F:\s1.exe
Deleted ! F:\sdfqh.exe
Deleted ! F:\twhvna.exe
Deleted ! F:\ws.exe
Deleted ! F:\yqq8eqil.exe
Deleted ! F:\ysyjq1bs.exe
Deleted ! G:\09lf.exe
Deleted ! G:\1hqup.exe
Deleted ! G:\2ul.exe
Deleted ! G:\31lyx.exe
Deleted ! G:\8xcrbho6.exe
Deleted ! G:\ba.exe
Deleted ! G:\bu8.exe
Deleted ! G:\ca.exe
Deleted ! G:\dqm.exe
Deleted ! G:\eexyv.exe
Deleted ! G:\eyruu.exe
Deleted ! G:\i8ikdjwt.exe
Deleted ! G:\k8jc.exe
Deleted ! G:\mbvd.exe
Deleted ! G:\mh.exe
Deleted ! G:\p6xebrnt.exe
Deleted ! G:\pbyqfn.exe
Deleted ! G:\q0wfr.exe
Deleted ! G:\qkm.exe
Deleted ! G:\resycled
Deleted ! G:\s1.exe
Deleted ! G:\sdfqh.exe
Deleted ! G:\twhvna.exe
Deleted ! G:\ws.exe
Deleted ! G:\yqq8eqil.exe
Deleted ! G:\ysyjq1bs.exe
################## | Registry |
Deleted ! HKLM\Software\Classes\CLSID\MADOWN
Deleted ! HKLM\software\microsoft\shared tools\msconfig\startupreg\amva
Deleted ! HKLM\software\microsoft\shared tools\msconfig\startupreg\cdoosoft
Deleted ! HKLM\software\microsoft\shared tools\msconfig\startupreg\dso32
Deleted ! HKLM\software\microsoft\shared tools\msconfig\startupreg\kamsoft
Deleted ! HKLM\software\microsoft\shared tools\msconfig\startupreg\Microsoft Update Machine
Deleted ! HKLM\software\microsoft\shared tools\msconfig\startupreg\nod32
Deleted ! HKLM\software\microsoft\shared tools\msconfig\startupreg\vamsoft
################## | Mountpoints2 |
Deleted ! HKCU\.\.\.\.\Explorer\MountPoints2\J
Deleted ! HKCU\.\.\.\.\Explorer\MountPoints2\{1132e943-6f23-11de-aca7-4d6564696130}
Deleted ! HKCU\.\.\.\.\Explorer\MountPoints2\{4c2b13c3-917e-11dd-861a-806d6172696f}
Deleted ! HKCU\.\.\.\.\Explorer\MountPoints2\{4c2b13c5-917e-11dd-861a-806d6172696f}
Deleted ! HKCU\.\.\.\.\Explorer\MountPoints2\{4c2b13c7-917e-11dd-861a-806d6172696f}
Deleted ! HKCU\.\.\.\.\Explorer\MountPoints2\{5e2184d8-97c2-11dd-aa30-4d6564696130}
Deleted ! HKCU\.\.\.\.\Explorer\MountPoints2\{897771d4-16d6-11de-abbf-4d6564696130}
Deleted ! HKCU\.\.\.\.\Explorer\MountPoints2\{efe836ec-8686-11de-acf9-4d6564696130}
################## | Listing |
[03/10/2008 - 20:25:07 | D ] C:\ATI
[03/10/2008 - 19:32:31 | N | 0] C:\AUTOEXEC.BAT
[18/10/2008 - 21:09:09 | N | 211] C:\boot.ini
[22/07/2001 - 00:13:54 | N | 4952] C:\Bootfont.bin
[06/12/2008 - 01:01:39 | D ] C:\CanoScan
[16/10/2010 - 23:47:46 | D ] C:\Config.Msi
[03/10/2008 - 19:32:31 | N | 0] C:\CONFIG.SYS
[30/11/2008 - 00:25:46 | D ] C:\Documents and Settings
[17/06/2010 - 13:01:33 | D ] C:\Fraps
[03/10/2008 - 19:32:31 | N | 0] C:\IO.SYS
[22/10/2010 - 21:47:08 | N | 3786] C:\mksbasel.cpp.log
[03/10/2008 - 19:32:31 | N | 0] C:\MSDOS.SYS
[11/10/2008 - 19:41:07 | RHD ] C:\MSOCache
[03/10/2008 - 20:05:45 | N | 47564] C:\NTDETECT.COM
[03/10/2008 - 20:05:45 | N | 250624] C:\ntldr
[23/10/2010 - 09:56:13 | ASH | 2145386496] C:\pagefile.sys
[22/10/2010 - 13:59:32 | D ] C:\Program Files
[23/10/2010 - 10:08:24 | SHD ] C:\RECYCLER
[12/03/2010 - 16:39:38 | D ] C:\spice8
[03/10/2008 - 20:13:33 | SHD ] C:\System Volume Information
[04/10/2008 - 23:51:16 | D ] C:\totalcmd
[04/10/2008 - 23:18:03 | D ] C:\Tunning
[23/10/2010 - 10:08:24 | D ] C:\UsbFix
[23/10/2010 - 10:08:33 | A | 4653] C:\UsbFix.txt
[22/10/2010 - 23:56:29 | D ] C:\WINDOWS
[06/12/2008 - 02:28:12 | D ] D:\Call of Duty 2
[21/12/2008 - 19:31:27 | D ] D:\Driver III
[11/10/2008 - 21:21:28 | D ] D:\GTA San Andreas
[11/08/2009 - 20:42:32 | D ] D:\msdownld.tmp
[30/09/2009 - 00:11:40 | D ] D:\Need For Speed Carbon
[23/10/2010 - 10:08:24 | SHD ] D:\RECYCLER
[06/02/2009 - 17:37:30 | D ] D:\Sim City 4
[03/10/2008 - 23:16:38 | SHD ] D:\System Volume Information
[14/03/2009 - 12:38:43 | D ] D:\T34 vs Tiger
[21/12/2008 - 19:12:45 | D ] D:\Test Drive Unlimited
[11/10/2008 - 22:12:57 | D ] D:\Toca III
[11/10/2008 - 19:41:46 | D ] E:\Filmy
[04/10/2008 - 22:45:05 | D ] E:\Muzyka
[23/10/2010 - 10:08:24 | SHD ] E:\RECYCLER
[04/10/2008 - 15:14:58 | SHD ] E:\System Volume Information
[02/05/2010 - 23:38:51 | D ] E:\Zdjęcia
[08/01/2010 - 22:53:00 | N | 13176] F:\Ankieta PWM.xlsx
[03/09/2007 - 22:42:40 | N | 673902] F:\bez tytułu.bmp
[20/11/2009 - 01:24:39 | N | 22016] F:\bundes35.xls
[08/11/2009 - 03:33:06 | N | 275506] F:\cf3fe4c260[1].gif
[23/09/2009 - 22:37:48 | D ] F:\Color reference
[04/10/2008 - 23:00:58 | D ] F:\Dźwięki
[17/10/2010 - 02:09:32 | D ] F:\eduard
[23/09/2009 - 22:39:45 | D ] F:\Festiwal Kielce
[06/09/2009 - 21:52:10 | N | 41641779] F:\film.asf
[03/01/2009 - 20:16:45 | D ] F:\Filmiki
[29/01/2010 - 15:23:08 | N | 58084] F:\hummer kubisz.txt
[27/08/2007 - 02:28:26 | N | 1194] F:\makieta.txt
[03/01/2009 - 20:34:56 | D ] F:\Małopolski Pinkin Lotniczy
[23/09/2009 - 23:29:04 | D ] F:\Militaria & Modelarstwo
[14/03/2010 - 00:25:41 | D ] F:\MILITARIA KSIĄŻKI
[27/09/2009 - 10:12:46 | N | 133301] F:\MkIV_01.jpg
[27/09/2009 - 10:12:51 | N | 136419] F:\MkIV_02.jpg
[03/01/2009 - 20:34:31 | D ] F:\MSPO
[23/10/2010 - 10:08:24 | SHD ] F:\RECYCLER
[04/10/2008 - 16:21:22 | SHD ] F:\System Volume Information
[25/04/2010 - 11:35:32 | ASH | 19968] F:\Thumbs.db
[31/07/2009 - 22:25:05 | N | 26035915] F:\_Scale_Modelling__-_FAQ_of_the_AFV_Painting_Techniques_by_Mig_Jimenez.pdf
[16/09/2009 - 17:16:15 | N | 133558] G:\AirshowRadom095.jpg
[21/05/2010 - 22:09:56 | N | 454866] G:\bez tytułu.bmp
[05/02/2010 - 21:14:25 | N | 132038] G:\bez tytułu.JPG
[16/09/2009 - 11:19:58 | N | 2359350] G:\bez tytułuh.bmp
[16/05/2010 - 17:45:12 | N | 153] G:\inki.txt
[27/09/2010 - 14:13:39 | D ] G:\INSTALACJA
[22/10/2010 - 23:58:36 | D ] G:\krk
[10/08/2009 - 09:57:32 | N | 112] G:\planeta_kielce.pls
[23/10/2010 - 10:08:24 | SHD ] G:\RECYCLER
[02/05/2010 - 23:31:01 | D ] G:\REINSTAL
[22/10/2010 - 23:58:46 | D ] G:\Solid.Converter.PDF.v5.0.627.0-NoPE
[26/10/2008 - 00:32:35 | SHD ] G:\System Volume Information
[27/09/2010 - 14:13:41 | ASH | 22016] G:\Thumbs.db
[08/02/2010 - 12:14:49 | D ] G:\WIN XP CD
[17/10/2010 - 14:10:46 | D ] I:\Solid.Converter.PDF.v5.0.627.0-NoPE
[18/10/2010 - 14:02:28 | N | 84992] I:\plan zajęć.xls
[21/10/2010 - 11:37:52 | D ] I:\Mikroprocki
[17/10/2010 - 14:05:00 | D ] I:\skn
[17/10/2010 - 14:09:14 | D ] I:\mój skn
################## | Vaccin |
C:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
D:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
E:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
F:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
G:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
I:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)Czyli pendrive już jest na 100% zabezpieczony?
No i czy zawartość folderu Quarantine mogę na 100 % skasować.
Laptop:
Intel Core2 Duo: T5750 2.0 GHz, nVidia GeForce 9300M G, 4 x 1024 Mb DDR2 667 MHz, HDD 320 Gb Serial ATA, combo Blu-ray ROM + DVD+/-RW DL, Windows Vista Home Premium
Intel Core2 Duo: T5750 2.0 GHz, nVidia GeForce 9300M G, 4 x 1024 Mb DDR2 667 MHz, HDD 320 Gb Serial ATA, combo Blu-ray ROM + DVD+/-RW DL, Windows Vista Home Premium
#9
- Uczestnik
-
- Grupa: Czytelnicy
- Postów 670
- Rejestracja: 07-styczeń 04
Napisano 23 październik 2010, 17:56
[color=#E56717]========== Processes (SafeList) ==========[/color]
PRC - [2010-10-23 18:52:05 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\rObO87\Pulpit\OTL.com
PRC - [2010-10-21 19:18:59 | 000,908,760 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2008-10-11 19:56:03 | 000,054,784 | ---- | M] (Macrovision) -- C:\WINDOWS\system32\drivers\CDAC11BA.EXE
PRC - [2008-06-19 16:59:12 | 000,592,232 | ---- | M] () -- C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe
PRC - [2008-05-02 02:44:08 | 000,805,392 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPoint\SetPoint.exe
PRC - [2008-05-02 02:40:56 | 000,076,304 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
PRC - [2007-11-14 14:31:18 | 000,083,248 | ---- | M] (Panda Security International) -- C:\Program Files\Panda Security\Panda Antivirus 2008\WebProxy.exe
PRC - [2007-10-04 16:15:00 | 000,455,984 | ---- | M] (Panda Software International) -- C:\Program Files\Panda Security\Panda Antivirus 2008\ApVxdWin.exe
PRC - [2007-09-28 14:29:00 | 000,148,272 | ---- | M] (Panda Software International) -- C:\Program Files\Panda Security\Panda Antivirus 2008\PAVSRV51.EXE
PRC - [2007-09-28 14:28:58 | 000,096,560 | ---- | M] (Panda Software International) -- C:\Program Files\Panda Security\Panda Antivirus 2008\AVENGINE.EXE
PRC - [2007-07-12 10:08:48 | 000,169,264 | ---- | M] (Panda Software International) -- C:\Program Files\Panda Security\Panda Antivirus 2008\PsCtrlS.exe
PRC - [2007-07-09 12:54:08 | 000,177,416 | R--- | M] (Authentium, Inc.) -- C:\Program Files\Common Files\Authentium\AntiVirus\dvpapi.exe
PRC - [2007-06-14 18:38:02 | 000,063,024 | ---- | M] (Panda Software) -- C:\Program Files\Common Files\Panda Software\PavShld\PavPrSrv.exe
PRC - [2007-05-24 10:31:26 | 000,108,592 | ---- | M] (Panda Software International) -- C:\Program Files\Panda Security\Panda Antivirus 2008\PsImSvc.exe
PRC - [2006-07-09 21:58:00 | 001,777,664 | ---- | M] (Idea2) -- C:\Program Files\Desktop Sidebar\dsidebar.exe
PRC - [2006-03-09 02:00:28 | 000,212,992 | ---- | M] (Popwire AB) -- C:\Program Files\Common Files\Teleca Shared\CapabilityManager.exe
PRC - [2004-08-04 00:44:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2003-10-16 18:07:12 | 000,626,688 | ---- | M] (France Télécom R&D) -- C:\Program Files\Neostrada TP\NeostradaTP.exe
PRC - [2003-10-16 18:07:12 | 000,020,480 | ---- | M] (France Télécom R&D) -- C:\Program Files\Neostrada TP\Watch.exe
PRC - [2003-10-16 18:07:10 | 000,200,704 | ---- | M] (France Télécom R&D) -- C:\Program Files\Neostrada TP\ComComp.exe
PRC - [2003-05-30 09:42:22 | 000,585,728 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMax4.exe
PRC - [2003-05-29 16:28:32 | 000,790,528 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
PRC - [2002-09-20 15:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
[color=#E56717]========== Modules (SafeList) ==========[/color]
MOD - [2010-10-23 18:52:05 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\rObO87\Pulpit\OTL.com
MOD - [2009-07-12 01:12:06 | 000,632,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\
msvcr80.dll
MOD - [2008-06-19 16:56:28 | 000,107,352 | ---- | M] () -- C:\Program Files\iolo\Common\Lib\ioloHL.dll
MOD - [2008-05-02 02:42:50 | 000,045,584 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPoint\lgscroll.dll
MOD - [2004-08-04 00:42:34 | 001,050,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-
ww_a84f1ff9\comctl32.dll
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
SRV - File not found [On_Demand | Stopped] -- C:\Program Files\MATLAB71\webserver\bin\win32\matlabserver.exe -- (matlabserver)
SRV - [2010-10-16 23:46:11 | 000,189,696 | ---- | M] (Solid Documents, LLC) [Auto | Stopped] -- C:\WINDOWS\Installer\MSI344.tmp -- (SCPDFReadSpool)
SRV - [2010-06-14 15:07:14 | 000,615,936 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2008-10-11 19:56:03 | 000,054,784 | ---- | M] (Macrovision) [Auto | Running] -- C:\WINDOWS\system32\drivers\CDAC11BA.EXE -- (C-DillaCdaC11BA)
SRV - [2008-06-19 16:59:12 | 000,592,232 | ---- | M] () [Auto | Running] -- C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe -- (ioloSystemService)
SRV - [2008-06-19 16:59:12 | 000,592,232 | ---- | M] () [Auto | Running] -- C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe -- (ioloFileInfoList)
SRV - [2008-05-02 02:42:06 | 000,121,360 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV - [2007-09-28 14:29:00 | 000,148,272 | ---- | M] (Panda Software International) [Auto | Running] -- C:\Program Files\Panda Security\Panda Antivirus 2008\pavsrv51.exe -- (PAVSRV)
SRV - [2007-07-12 10:08:48 | 000,169,264 | ---- | M] (Panda Software International) [Auto | Running] -- C:\Program Files\Panda Security\Panda Antivirus 2008\PsCtrls.exe -- (Panda Software Controller)
SRV - [2007-07-09 12:54:08 | 000,177,416 | R--- | M] (Authentium, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Authentium\AntiVirus\dvpapi.exe -- (dvpapi)
SRV - [2007-06-14 18:38:02 | 000,063,024 | ---- | M] (Panda Software) [Auto | Running] -- C:\Program Files\Common Files\Panda Software\PavShld\pavprsrv.exe -- (PavPrSrv)
SRV - [2007-05-24 10:31:26 | 000,108,592 | ---- | M] (Panda Software International) [Auto | Running] -- C:\Program Files\Panda Security\Panda Antivirus 2008\PsImSvc.exe -- (PSIMSVC)
SRV - [2002-09-20 15:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) [Auto | Running] -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe -- (SoundMAX Agent Service (default))
SRV - [2002-02-08 13:15:20 | 000,263,168 | ---- | M] (O&O Software GmbH) [Auto | Stopped] -- C:\WINDOWS\system32\oodag.exe -- (OODefrag)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV - [2010-02-26 14:32:58 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2010-02-26 14:32:46 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2010-02-26 14:32:44 | 000,022,528 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2010-02-26 14:32:44 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2009-12-10 21:15:43 | 000,052,224 | ---- | M] (Aladdin Knowledge Systems.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\Haspnt.sys -- (Haspnt)
DRV - [2009-06-30 10:37:16 | 000,028,552 | ---- | M] (Panda Security, S.L.) [File_System | Boot | Running] -- C:\windows\system32\drivers\pavboot.sys -- (pavboot)
DRV - [2009-03-14 03:11:59 | 000,717,296 | ---- | M] () [Kernel | Boot | Running] -- C:\windows\System32\Drivers\sptd.sys -- (sptd)
DRV - [2008-10-11 19:56:02 | 000,012,464 | ---- | M] (Macrovision Europe Ltd) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\CdaC15BA.SYS -- (CdaC15BA)
DRV - [2008-08-26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008-03-29 08:21:53 | 002,873,856 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2008-02-29 03:13:46 | 000,028,944 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LUsbFilt.sys -- (LUsbFilt)
DRV - [2008-02-29 03:13:36 | 000,079,120 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LMouKE.Sys -- (LMouKE)
DRV - [2008-02-29 03:13:24 | 000,036,880 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt)
DRV - [2008-02-29 03:13:16 | 000,035,344 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt)
DRV - [2008-02-29 03:12:56 | 000,063,120 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\L8042mou.Sys -- (L8042mou)
DRV - [2008-02-29 03:12:48 | 000,020,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\L8042Kbd.sys -- (L8042Kbd)
DRV - [2007-09-28 15:24:18 | 000,083,896 | ---- | M] (Panda Software International) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\pavdrv51.sys -- (pavdrv)
DRV - [2007-07-12 15:49:38 | 000,178,872 | ---- | M] (Panda Software International) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\PavProc.sys -- (PavProc)
DRV - [2007-07-09 12:01:04 | 000,834,448 | ---- | M] (Authentium, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\Css-Dvp.sys -- (CSS DVP)
DRV - [2007-05-23 17:40:30 | 000,038,968 | ---- | M] (Panda Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ShlDrv51.sys -- (ShldDrv)
DRV - [2006-11-22 11:01:48 | 000,693,760 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\hardlock.sys -- (Hardlock)
DRV - [2006-11-07 10:42:30 | 000,086,368 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w200obex.sys -- (w200obex)
DRV - [2006-11-07 10:42:28 | 000,088,560 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w200mgmt.sys -- (w200mgmt) Sony Ericsson W200 USB WMC Device Management Drivers (WDM)
DRV - [2006-11-07 10:42:24 | 000,097,056 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w200mdm.sys -- (w200mdm)
DRV - [2006-11-07 10:42:22 | 000,009,328 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w200mdfl.sys -- (w200mdfl)
DRV - [2006-11-07 10:42:16 | 000,061,504 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w200bus.sys -- (w200bus) Sony Ericsson W200 driver (WDM)
DRV - [2004-08-03 22:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\rtl8139.sys -- (rtl8139) Sterownik NT karty Realtek RTL8139(A/B/C)
DRV - [2004-03-02 09:26:58 | 000,050,007 | ---- | M] (Analog Deivces) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\adildr.sys -- (ADILOADER) General Purpose USB Driver (adildr.sys)
DRV - [2004-03-02 09:24:16 | 000,127,065 | ---- | M] (Analog Devices Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\adiusbaw.sys -- (adiusbaw)
DRV - [2003-07-17 04:22:10 | 000,147,328 | R--- | M] (3Com Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\EL2K_XP.sys -- (EL2000)
DRV - [2002-09-20 04:53:34 | 000,235,100 | ---- | M] (Analog Devices Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\MidiSyn.sys -- (MidiSyn)
DRV - [2002-05-23 18:59:00 | 000,010,432 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\itchfltr.sys -- (itchfltr)
DRV - [2001-08-17 22:51:32 | 000,018,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\irsir.sys -- (irsir)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2025429265-413027322-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
IE - HKU\S-1-5-21-2025429265-413027322-682003330-1003\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Neostrada TP\SearchPageURL.dll ()
IE - HKU\S-1-5-21-2025429265-413027322-682003330-1003\Software\Microsoft\Windows\
CurrentVersion\Internet Settings: "ProxyEnable" = 0
[color=#E56717]========== FireFox ==========[/color]
FF - prefs.js..browser.startup.homepage: "http://www.google.pl"
FF - HKLM\software\mozilla\Firefox\Extensions\\bkmrksync@nokia.com: C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ [2010-10-08 22:27:14 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.14\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-10-22 20:14:04 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.14\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-10-21 19:19:02 | 000,000,000 | ---D | M]
[2008-10-03 21:51:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rObO87\Dane aplikacji\Mozilla\Extensions
[2008-10-03 21:51:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rObO87\Dane aplikacji\Mozilla\Firefox\Profiles\0hc1fs4x.default\extensions
[2008-10-03 21:51:29 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2002-11-01 20:15:54 | 000,086,125 | ---- | M] (JavaSoft / Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\NPJava11.dll
[2002-11-01 20:15:54 | 000,086,125 | ---- | M] (JavaSoft / Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\NPJava12.dll
[2002-11-01 20:15:54 | 000,086,125 | ---- | M] (JavaSoft / Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\NPJava13.dll
[2002-11-01 20:15:54 | 000,086,125 | ---- | M] (JavaSoft / Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\NPJava32.dll
[2002-11-01 20:15:54 | 000,086,122 | ---- | M] (JavaSoft / Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\NPJPI140_03.dll
[2002-11-01 20:15:54 | 000,086,126 | ---- | M] (JavaSoft / Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\NPOJI610.dll
[2010-09-30 11:07:18 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010-09-30 11:07:18 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2010-09-30 11:07:18 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2010-09-30 11:07:18 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010-09-30 11:07:18 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2010-09-30 11:07:18 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml
O1 HOSTS File: ([2001-10-26 17:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Idea2 SidebarBrowserMonitor Class) - {45AD732C-2CE2-4666-B366-B2214AD57A49} - C:\Program Files\Desktop Sidebar\sbhelp.dll (Idea2)
O4 - HKLM..\Run: [APVXDWIN] C:\Program Files\Panda Security\Panda Antivirus 2008\APVXDWIN.EXE (Panda Software International)
O4 - HKLM..\Run: [KernelFaultCheck] File not found
O4 - HKLM..\Run: [Sony Ericsson PC Suite] C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe (Sony Ericsson Mobile Communications AB)
O4 - HKLM..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe (Logitech Inc. )
O4 - HKU\S-1-5-21-2025429265-413027322-682003330-1003..\Run: [SIDEBAR] C:\Program Files\Desktop Sidebar\dsidebar.exe (Idea2)
O4 - HKLM..\RunServices: [Microsoft Update Machine] File not found
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech, Inc.)
O4 - Startup: C:\Documents and Settings\rObO87\Menu Start\Programy\Autostart\Desktop Calendar StartUp.lnk = C:\Tunning\Desktop_Calenda\DESKCAL.EXE (Shinonon Free Softrware)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer:
NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer:
NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer:
NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer:
NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2025429265-413027322-682003330-1003\SOFTWARE\Microsoft\Windows\
CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O7 - HKU\S-1-5-21-2025429265-413027322-682003330-1003\SOFTWARE\Microsoft\Windows\
CurrentVersion\policies\Explorer: NoDriveAutoRun = 3
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\Panda Security\Panda Antivirus 2008\pavlsp.dll (Panda Software International)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\Panda Security\Panda Antivirus 2008\pavlsp.dll (Panda Software International)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files\Panda Security\Panda Antivirus 2008\pavlsp.dll (Panda Software International)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\windows\System32\iavlsp.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\windows\System32\iavlsp.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\windows\System32\iavlsp.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000029 - C:\Program Files\Panda Security\Panda Antivirus 2008\pavlsp.dll (Panda Software International)
O16 - DPF: {3D8700FB-86A4-4CB4-B738-6F0FC016AC7D} http://arcaonline.arcabit.com/ArcaOnline.cab (MainControl Class)
O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} http://www.eset.eu/buxus/docs/OnlineScanner.cab (Reg Error: Key error.)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 85.255.116.122,85.255.112.79
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\windows\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\avldr: DllName - avldr.dll - C:\windows\System32\avldr.dll (Panda Software International)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\windows\System32\igfxdev.dll (Intel Corporation)
O20 - Winlogon\Notify\LBTWlgn: DllName - c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll - c:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\rObO87\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\rObO87\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {C5F43BEF-CE2F-46D8-AFE6-A647BACD1F09} - C:\windows\System32\Bitkv0.dll File not found
O32 - HKLM CDRom: AutoRun - 0
O32 - AutoRun File - [2008-10-03 19:32:31 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2010-10-23 18:36:58 | 000,000,000 | RHSD | M] - C:\Autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2010-10-23 18:36:58 | 000,000,000 | RHSD | M] - D:\Autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2010-10-23 18:36:58 | 000,000,000 | RHSD | M] - E:\Autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2010-10-23 18:36:58 | 000,000,000 | RHSD | M] - F:\Autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2010-10-23 18:36:58 | 000,000,000 | RHSD | M] - G:\Autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2010-10-23 18:50:11 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\rObO87\Pulpit\OTL.com
[2010-10-23 18:36:58 | 000,000,000 | RHSD | C] -- C:\Autorun.inf
[2010-10-23 12:34:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rObO87\Pulpit\Nowy folder
[2010-10-23 10:02:47 | 000,000,000 | ---D | C] -- C:\UsbFix
[2010-10-23 10:02:18 | 001,226,995 | ---- | C] (El Desaparecido & C_XX) -- C:\Documents and Settings\rObO87\Pulpit\UsbFix.exe
[2010-10-22 21:57:02 | 000,318,088 | ---- | C] (Symantec Corp.) -- C:\Documents and Settings\rObO87\Pulpit\Setup.exe
[2010-10-22 21:14:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rObO87\Pulpit\ArcaVirMicroScan
[2010-10-22 21:14:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rObO87\Dane aplikacji\ArcaVirMicroScan
[2010-10-22 21:14:39 | 000,258,640 | ---- | C] (ArcaBit) -- C:\Documents and Settings\rObO87\Pulpit\arcavirmicroscan.exe
[2010-10-22 13:59:32 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2010-10-08 22:46:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rObO87\Pulpit\kom
[2010-10-08 22:37:54 | 000,000,000 | R--D | C] -- C:\Documents and Settings\rObO87\Moje dokumenty\Moje wideo
[2010-10-08 22:36:52 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dllcache\usbser.sys
[2010-10-08 22:31:45 | 000,016,928 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\spmsgXP_2k3.dll
[2010-10-08 22:27:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rObO87\Dane aplikacji\PC Suite
[2010-10-08 22:27:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rObO87\Dane aplikacji\Nokia
[2010-10-08 22:27:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite
[2010-10-08 22:27:14 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PCSuite
[2010-10-08 22:27:11 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nokia
[2010-10-08 22:27:03 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2010-10-08 22:27:01 | 000,018,816 | ---- | C] (Nokia) -- C:\windows\System32\drivers\pccsmcfd.sys
[2010-10-08 22:26:55 | 000,000,000 | ---D | C] -- C:\Program Files\PC Connectivity Solution
[2010-10-08 22:26:49 | 000,008,192 | ---- | C] (Nokia) -- C:\windows\System32\drivers\usbser_lowerfltj.sys
[2010-10-08 22:26:48 | 000,008,192 | ---- | C] (Nokia) -- C:\windows\System32\drivers\usbser_lowerflt.sys
[2010-10-08 22:26:47 | 000,022,528 | ---- | C] (Nokia) -- C:\windows\System32\drivers\ccdcmbo.sys
[2010-10-08 22:26:45 | 001,461,992 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\wdfcoinstaller01009.dll
[2010-10-08 22:26:45 | 000,662,016 | ---- | C] (Nokia) -- C:\windows\System32\nmwcdcocls.dll
[2010-10-08 22:26:45 | 000,018,176 | ---- | C] (Nokia) -- C:\windows\System32\drivers\ccdcmb.sys
[2010-10-08 22:26:33 | 000,092,672 | ---- | C] (Nokia) -- C:\windows\System32\nmwcdcls.dll
[2010-10-08 22:26:33 | 000,000,000 | ---D | C] -- C:\Program Files\Nokia
[2010-10-08 22:25:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations
[1 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2010-10-23 18:52:05 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\rObO87\Pulpit\OTL.com
[2010-10-23 18:47:14 | 000,002,048 | --S- | M] () -- C:\windows\bootstat.dat
[2010-10-23 18:37:40 | 005,242,880 | -H-- | M] () -- C:\Documents and Settings\rObO87\NTUSER.DAT
[2010-10-23 18:36:58 | 000,011,596 | ---- | M] () -- C:\UsbFix_Upload_Me_TERMINATOR.zip
[2010-10-23 13:30:17 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\rObO87\ntuser.ini
[2010-10-23 10:24:33 | 000,000,156 | ---- | M] () -- C:\windows\matlab.ini
[2010-10-23 10:02:26 | 001,226,995 | ---- | M] (El Desaparecido & C_XX) -- C:\Documents and Settings\rObO87\Pulpit\UsbFix.exe
[2010-10-22 23:56:30 | 000,000,003 | ---- | M] () -- C:\windows\Twain001.Mtx
[2010-10-22 23:56:29 | 000,000,156 | ---- | M] () -- C:\windows\Twunk001.MTX
[2010-10-22 21:58:53 | 000,178,440 | ---- | M] () -- C:\Documents and Settings\rObO87\Pulpit\activescan2_pl.exe
[2010-10-22 21:57:52 | 000,000,406 | ---- | M] () -- C:\windows\tasks\Install_NSS.job
[2010-10-22 21:57:04 | 000,318,088 | ---- | M] (Symantec Corp.) -- C:\Documents and Settings\rObO87\Pulpit\Setup.exe
[2010-10-22 21:35:54 | 000,000,562 | ---- | M] () -- C:\Documents and Settings\rObO87\Pulpit\ArcaVirMicroScan.lnk
[2010-10-22 21:20:15 | 000,000,435 | ---- | M] () -- C:\windows\system.ini
[2010-10-22 21:20:15 | 000,000,021 | ---- | M] () -- C:\windows\win.ini
[2010-10-22 21:14:39 | 000,258,640 | ---- | M] (ArcaBit) -- C:\Documents and Settings\rObO87\Pulpit\arcavirmicroscan.exe
[2010-10-22 20:08:33 | 006,920,620 | -H-- | M] () -- C:\Documents and Settings\rObO87\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2010-10-22 17:46:17 | 000,198,713 | ---- | M] () -- C:\Documents and Settings\rObO87\Pulpit\fft.pdf
[2010-10-22 17:07:31 | 000,204,596 | ---- | M] () -- C:\Documents and Settings\rObO87\Pulpit\Wyklad_15_16_Matlab.pdf
[2010-10-22 13:59:25 | 002,672,312 | ---- | M] () -- C:\Documents and Settings\rObO87\Pulpit\esetsmartinstaller_plk.exe
[2010-10-22 12:15:06 | 000,000,447 | ---- | M] () -- C:\windows\System\CmiCnfg.ini
[2010-10-21 00:20:25 | 000,002,262 | ---- | M] () -- C:\windows\System32\wpa.dbl
[2010-10-18 14:02:28 | 000,084,992 | ---- | M] () -- C:\Documents and Settings\rObO87\Pulpit\plan zajęć.xls
[2010-10-17 14:18:09 | 000,000,883 | ---- | M] () -- C:\Documents and Settings\rObO87\.plugin140_03.trace
[2010-10-16 23:49:06 | 000,000,000 | ---- | M] () -- C:\windows\Twunk002.MTX
[2010-10-15 12:32:30 | 000,000,600 | ---- | M] () -- C:\Documents and Settings\rObO87\Dane aplikacji\winscp.rnd
[2010-10-14 22:55:05 | 000,000,718 | ---- | M] () -- C:\Documents and Settings\rObO87\Pulpit\semestr IX.lnk
[2010-10-08 22:37:59 | 000,763,990 | ---- | M] () -- C:\windows\System32\PerfStringBackup.INI
[2010-10-08 22:37:59 | 000,355,486 | ---- | M] () -- C:\windows\System32\perfh015.dat
[2010-10-08 22:37:59 | 000,311,604 | ---- | M] () -- C:\windows\System32\perfh009.dat
[2010-10-08 22:37:59 | 000,049,492 | ---- | M] () -- C:\windows\System32\perfc015.dat
[2010-10-08 22:37:59 | 000,039,992 | ---- | M] () -- C:\windows\System32\perfc009.dat
[2010-10-08 22:31:49 | 000,000,000 | -H-- | M] () -- C:\windows\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2010-10-08 22:31:49 | 000,000,000 | -H-- | M] () -- C:\windows\System32\drivers\Msft_Kernel_ccdcmb_01009.Wdf
[2010-09-30 11:47:43 | 000,070,144 | ---- | M] () -- C:\Documents and Settings\rObO87\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[1 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2010-10-23 10:08:35 | 000,011,596 | ---- | C] () -- C:\UsbFix_Upload_Me_TERMINATOR.zip
[2010-10-22 21:58:53 | 000,178,440 | ---- | C] () -- C:\Documents and Settings\rObO87\Pulpit\activescan2_pl.exe
[2010-10-22 21:57:20 | 000,000,406 | ---- | C] () -- C:\windows\tasks\Install_NSS.job
[2010-10-22 21:35:54 | 000,000,562 | ---- | C] () -- C:\Documents and Settings\rObO87\Pulpit\ArcaVirMicroScan.lnk
[2010-10-22 17:46:17 | 000,198,713 | ---- | C] () -- C:\Documents and Settings\rObO87\Pulpit\fft.pdf
[2010-10-22 17:07:31 | 000,204,596 | ---- | C] () -- C:\Documents and Settings\rObO87\Pulpit\Wyklad_15_16_Matlab.pdf
[2010-10-22 13:58:34 | 002,672,312 | ---- | C] () -- C:\Documents and Settings\rObO87\Pulpit\esetsmartinstaller_plk.exe
[2010-10-16 23:49:06 | 000,000,156 | ---- | C] () -- C:\windows\Twunk001.MTX
[2010-10-16 23:49:06 | 000,000,003 | ---- | C] () -- C:\windows\Twain001.Mtx
[2010-10-16 23:49:06 | 000,000,000 | ---- | C] () -- C:\windows\Twunk002.MTX
[2010-10-14 22:55:05 | 000,000,718 | ---- | C] () -- C:\Documents and Settings\rObO87\Pulpit\semestr IX.lnk
[2010-10-14 22:47:44 | 000,084,992 | ---- | C] () -- C:\Documents and Settings\rObO87\Pulpit\plan zajęć.xls
[2010-10-08 22:31:49 | 000,000,000 | -H-- | C] () -- C:\windows\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2010-10-08 22:31:49 | 000,000,000 | -H-- | C] () -- C:\windows\System32\drivers\Msft_Kernel_ccdcmb_01009.Wdf
[2010-01-28 20:33:35 | 000,210,032 | ---- | C] () -- C:\windows\System32\DBCLIENT.DLL
[2010-01-08 18:08:48 | 000,028,672 | R--- | C] () -- C:\windows\System32\cmirmdrv.dll
[2010-01-08 18:08:39 | 000,000,736 | ---- | C] () -- C:\windows\setup.ini
[2010-01-08 18:08:39 | 000,000,092 | ---- | C] () -- C:\windows\CMISETUP.INI
[2010-01-08 18:08:39 | 000,000,026 | ---- | C] () -- C:\windows\CMCDPLAY.INI
[2010-01-08 18:08:33 | 000,000,000 | ---- | C] () -- C:\windows\Wininit.ini
[2010-01-08 18:08:26 | 000,028,672 | ---- | C] () -- C:\windows\CMIRmDriver.dll
[2009-12-10 21:16:52 | 000,009,136 | ---- | C] () -- C:\windows\System32\INETWH16.DLL
[2009-12-10 21:15:43 | 000,000,383 | ---- | C] () -- C:\windows\System32\haspdos.sys
[2009-01-17 15:04:33 | 000,000,118 | ---- | C] () -- C:\windows\ConverterCore.INI
[2009-01-17 15:01:44 | 000,021,240 | ---- | C] () -- C:\windows\System32\solidlocalmon.dll
[2009-01-17 15:01:44 | 000,013,568 | ---- | C] () -- C:\windows\System32\solidlocalui.dll
[2009-01-01 23:36:54 | 000,000,000 | ---- | C] () -- C:\windows\oodcnt.INI
[2008-12-06 21:06:16 | 000,004,994 | ---- | C] () -- C:\windows\MC9DEMO.INI
[2008-12-06 01:29:31 | 000,000,600 | ---- | C] () -- C:\Documents and Settings\rObO87\Dane aplikacji\winscp.rnd
[2008-10-18 21:30:19 | 000,000,432 | ---- | C] () -- C:\windows\System32\iolo.ini
[2008-10-18 21:26:48 | 000,126,976 | ---- | C] () -- C:\windows\System32\iavlsp.dll
[2008-10-18 21:25:39 | 000,074,703 | ---- | C] () -- C:\windows\System32\mfc45.dll
[2008-10-11 22:30:22 | 000,000,267 | ---- | C] () -- C:\windows\game.ini
[2008-10-11 20:44:35 | 000,000,156 | ---- | C] () -- C:\windows\matlab.ini
[2008-10-11 20:22:36 | 000,717,296 | ---- | C] () -- C:\windows\System32\drivers\sptd.sys
[2008-10-11 20:15:49 | 000,007,680 | ---- | C] () -- C:\windows\System32\ff_vfw.dll
[2008-10-11 20:15:49 | 000,000,547 | ---- | C] () -- C:\windows\System32\ff_vfw.dll.manifest
[2008-10-05 11:05:32 | 000,000,069 | ---- | C] () -- C:\windows\NeroDigital.ini
[2008-10-03 23:19:59 | 000,000,154 | ---- | C] () -- C:\windows\adidsl.ini
[2008-10-03 23:19:59 | 000,000,021 | ---- | C] () -- C:\windows\Fast800.ini
[2008-10-03 23:19:57 | 000,000,342 | ---- | C] () -- C:\windows\adiras.ini
[2008-10-03 23:19:56 | 000,126,976 | ---- | C] () -- C:\windows\System32\coclassfast.dll
[2008-10-03 23:19:56 | 000,046,892 | ---- | C] () -- C:\windows\System32\adadix16.dll
[2008-10-03 23:19:31 | 000,041,068 | ---- | C] () -- C:\windows\System32\ActPanel.dll
[2008-10-03 21:27:27 | 000,070,144 | ---- | C] () -- C:\Documents and Settings\rObO87\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008-10-03 20:30:54 | 000,003,494 | ---- | C] () -- C:\windows\Ascd_tmp.ini
[2008-10-03 20:30:51 | 000,005,824 | ---- | C] () -- C:\windows\System32\drivers\ASUSHWIO.SYS
[2008-10-03 20:30:30 | 000,763,990 | ---- | C] () -- C:\windows\System32\PerfStringBackup.INI
[2008-10-03 20:30:29 | 000,004,293 | ---- | C] () -- C:\windows\ODBCINST.INI
[2008-10-03 20:30:09 | 000,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini
[2008-10-03 20:14:17 | 000,045,488 | ---- | C] () -- C:\Documents and Settings\rObO87\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2008-10-03 20:08:54 | 000,186,368 | ---- | C] () -- C:\windows\System32\encdec.dll
[2008-10-03 20:08:54 | 000,081,920 | ---- | C] () -- C:\windows\System32\ieencode.dll
[2008-10-03 20:08:52 | 000,270,848 | ---- | C] () -- C:\windows\System32\sbe.dll
[2008-10-03 19:42:24 | 006,920,620 | -H-- | C] () -- C:\Documents and Settings\rObO87\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2008-10-03 19:36:58 | 000,000,062 | -HS- | C] () -- C:\Documents and Settings\rObO87\Dane aplikacji\desktop.ini
[2008-10-03 19:32:31 | 000,000,000 | ---- | C] () -- C:\windows\control.ini
[2008-10-03 19:30:04 | 000,000,037 | ---- | C] () -- C:\windows\vbaddin.ini
[2008-10-03 19:30:04 | 000,000,036 | ---- | C] () -- C:\windows\vb.ini
[2008-10-03 19:29:28 | 000,026,717 | ---- | C] () -- C:\windows\System32\tslabels.ini
[2008-10-03 19:29:26 | 000,003,813 | ---- | C] () -- C:\windows\System32\msdtcprf.ini
[2007-07-23 10:03:32 | 000,053,248 | ---- | C] () -- C:\windows\System32\AgCPanelTraditionalChinese.dll
[2007-07-23 10:03:32 | 000,053,248 | ---- | C] () -- C:\windows\System32\AgCPanelSwedish.dll
[2007-07-23 10:03:32 | 000,053,248 | ---- | C] () -- C:\windows\System32\AgCPanelSpanish.dll
[2007-07-23 10:03:30 | 000,053,248 | ---- | C] () -- C:\windows\System32\AgCPanelSimplifiedChinese.dll
[2007-07-23 10:03:30 | 000,053,248 | ---- | C] () -- C:\windows\System32\AgCPanelPortugese.dll
[2007-07-23 10:03:30 | 000,053,248 | ---- | C] () -- C:\windows\System32\AgCPanelKorean.dll
[2007-07-23 10:03:30 | 000,053,248 | ---- | C] () -- C:\windows\System32\AgCPanelJapanese.dll
[2007-07-23 10:03:30 | 000,053,248 | ---- | C] () -- C:\windows\System32\AgCPanelGerman.dll
[2007-07-23 10:03:30 | 000,053,248 | ---- | C] () -- C:\windows\System32\AgCPanelFrench.dll
[2001-12-16 19:03:24 | 000,049,152 | ---- | C] () -- C:\windows\System32\oodagrs.dll
[2001-11-24 14:15:28 | 000,016,384 | ---- | C] () -- C:\windows\System32\oodagmg.dll
[2001-10-26 19:29:42 | 000,157,696 | ---- | C] () -- C:\windows\System32\paqsp.dll
[2001-10-26 19:29:40 | 000,010,240 | ---- | C] () -- C:\windows\System32\scriptpw.dll
[2001-10-26 19:29:36 | 000,014,336 | ---- | C] () -- C:\windows\System32\msdmo.dll
[2001-10-26 19:29:32 | 000,199,168 | ---- | C] () -- C:\windows\System32\ir32_32.dll
[2001-10-26 19:29:26 | 000,253,440 | ---- | C] () -- C:\windows\System32\compatui.dll
[2001-10-26 19:29:26 | 000,070,656 | ---- | C] () -- C:\windows\System32\amstream.dll
[2001-10-26 19:28:44 | 000,733,696 | ---- | C] () -- C:\windows\System32\qedwipes.dll
[2001-10-26 19:28:34 | 000,094,282 | ---- | C] () -- C:\windows\System32\msencode.dll
[2001-10-26 19:27:02 | 000,015,360 | ---- | C] () -- C:\windows\System32\tsd32.dll
[2001-10-26 18:21:06 | 000,033,936 | ---- | C] () -- C:\windows\System32\ntio.sys
[2001-10-26 18:15:04 | 000,027,898 | ---- | C] () -- C:\windows\System32\ntdos.sys
[2001-10-26 18:14:52 | 000,004,976 | ---- | C] () -- C:\windows\System32\himem.sys
[2001-10-26 18:14:32 | 000,009,043 | ---- | C] () -- C:\windows\System32\ansi.sys
[2001-10-26 18:12:52 | 000,000,359 | ---- | C] () -- C:\windows\System32\prodspec.ini
[2001-10-26 17:45:26 | 000,016,024 | ---- | C] () -- C:\windows\System32\rsvp.ini
[2001-10-26 17:45:26 | 000,006,074 | ---- | C] () -- C:\windows\System32\rasctrs.ini
[2001-10-26 17:45:24 | 000,013,819 | ---- | C] () -- C:\windows\System32\pschdprf.ini
[2001-10-26 17:42:08 | 000,020,629 | ---- | C] () -- C:\windows\System32\mqperf.ini
[2001-10-26 17:42:08 | 000,002,992 | ---- | C] () -- C:\windows\System32\perfci.ini
[2001-10-26 17:42:08 | 000,002,890 | ---- | C] () -- C:\windows\System32\perfwci.ini
[2001-10-26 17:42:08 | 000,001,295 | ---- | C] () -- C:\windows\System32\perffilt.ini
[2001-08-17 23:31:56 | 000,042,809 | ---- | C] () -- C:\windows\System32\key01.sys
[2001-08-17 23:31:56 | 000,027,097 | ---- | C] () -- C:\windows\System32\country.sys
[2001-08-17 23:31:54 | 000,042,537 | ---- | C] () -- C:\windows\System32\keyboard.sys
[2001-08-17 23:31:50 | 000,029,274 | ---- | C] () -- C:\windows\System32\ntdos412.sys
[2001-08-17 23:31:46 | 000,029,370 | ---- | C] () -- C:\windows\System32\ntdos411.sys
[2001-08-17 23:31:46 | 000,029,146 | ---- | C] () -- C:\windows\System32\ntdos404.sys
[2001-08-17 23:31:44 | 000,029,146 | ---- | C] () -- C:\windows\System32\ntdos804.sys
[2001-08-17 23:31:38 | 000,035,648 | ---- | C] () -- C:\windows\System32\ntio411.sys
[2001-08-17 23:31:38 | 000,035,424 | ---- | C] () -- C:\windows\System32\ntio412.sys
[2001-08-17 23:31:36 | 000,034,560 | ---- | C] () -- C:\windows\System32\ntio804.sys
[2001-08-17 23:31:36 | 000,034,560 | ---- | C] () -- C:\windows\System32\ntio404.sys
[2001-08-17 23:13:24 | 000,002,656 | ---- | C] () -- C:\windows\System32\netware.drv
[2001-08-17 21:55:06 | 001,015,477 | ---- | C] () -- C:\windows\System32\esentprf.ini
[2001-07-22 05:43:48 | 000,053,478 | ---- | C] () -- C:\windows\System32\tcpmon.ini
[2001-07-22 04:25:18 | 000,001,405 | ---- | C] () -- C:\windows\msdfmap.ini
[2001-07-22 00:16:20 | 000,000,021 | ---- | C] () -- C:\windows\win.ini
[2001-07-22 00:15:52 | 000,000,435 | ---- | C] () -- C:\windows\system.ini
[2001-07-22 00:15:50 | 000,013,312 | ---- | C] () -- C:\windows\System32\win87em.dll
[color=#E56717]========== LOP Check ==========[/color]
[2009-12-13 03:08:09 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonBJ
[2010-10-08 22:25:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations
[2008-10-18 21:57:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\iolo
[2010-10-08 22:27:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite
[2008-12-21 17:24:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\sentinel
[2009-01-17 15:01:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\SolidDocuments
[2008-11-29 23:11:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Teleca
[2010-06-17 12:01:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2008-12-26 18:03:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Test Drive Unlimited
[2008-10-18 21:26:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\iolo
[2008-11-29 21:19:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rObO87\Dane aplikacji\ArcaBit
[2009-09-26 22:21:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rObO87\Dane aplikacji\ArcaMicroScan
[2010-10-22 21:36:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rObO87\Dane aplikacji\ArcaVirMicroScan
[2010-10-22 23:26:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rObO87\Dane aplikacji\Canon
[2009-03-08 02:29:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rObO87\Dane aplikacji\Desktop Sidebar
[2008-10-03 23:28:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rObO87\Dane aplikacji\Gadu-Gadu
[2008-10-18 21:31:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rObO87\Dane aplikacji\iolo
[2008-10-11 20:11:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rObO87\Dane aplikacji\IrfanView
[2008-10-11 19:56:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rObO87\Dane aplikacji\Ldoce
[2010-10-08 22:27:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rObO87\Dane aplikacji\Nokia
[2010-10-08 22:36:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rObO87\Dane aplikacji\PC Suite
[2010-10-22 23:31:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rObO87\Dane aplikacji\SolidDocuments
[2008-11-30 00:02:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rObO87\Dane aplikacji\Teleca
[2010-10-22 21:57:52 | 000,000,406 | ---- | M] () -- C:\windows\Tasks\Install_NSS.job
[color=#E56717]========== Purity Check ==========[/color]
[color=#E56717]========== Alternate Data Streams ==========[/color]
@Alternate Data Stream - 99 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:A5F110B3
@Alternate Data Stream - 144 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:05EE1EEF
< End of report >
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
[color=#E56717]========== File Associations ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
[HKEY_USERS\S-1-5-21-2025429265-413027322-682003330-1003\SOFTWARE\Classes\<
extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
[color=#E56717]========== Shell Spawning ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]
\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[color=#E56717]========== Security Center Settings ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
"DisableMonitoring" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
[color=#E56717]========== System Restore Settings ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
[color=#E56717]========== Firewall Settings ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\
FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\
FirewallPolicy\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\
FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[color=#E56717]========== Authorized Applications List ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\
FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\
FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\iolo\System Mechanic Professional\Personal Firewall\ioloFW.exe" = C:\Program Files\iolo\System Mechanic Professional\Personal Firewall\ioloFW.exe:*:Enabled:iolo Firewall® -- File not found
"C:\Program Files\iolo\System Mechanic Professional\AntiVirus\ioloAV.exe" = C:\Program Files\iolo\System Mechanic Professional\AntiVirus\ioloAV.exe:*:Enabled:iolo AntiVirus® -- File not found
"C:\Program Files\iolo\System Mechanic Professional\AntiVirus\iAVEmailScanner.exe" = C:\Program Files\iolo\System Mechanic Professional\AntiVirus\iAVEmailScanner.exe:*:Enabled:iolo AntiVirus® Email Protection -- File not found
"D:\Test Drive Unlimited\pliki gry\TestDriveUnlimited.exe" = D:\Test Drive Unlimited\pliki gry\TestDriveUnlimited.exe:*:Enabled:Test Drive Unlimited -- (Eden Games)
"C:\WINDOWS\system32\idpnwo.exe" = C:\WINDOWS\system32\idpnwo.exe:*:Enabled:idpnwo -- File not found
"C:\Program Files\Gadu-Gadu\gg.exe" = C:\Program Files\Gadu-Gadu\gg.exe:*:Enabled:Gadu-Gadu - program główny -- (Gadu-Gadu S.A.)
"D:\CoD5\Call of Duty - World at War\CoDWaW.exe" = D:\CoD5\Call of Duty - World at War\CoDWaW.exe:*:Enabled:Call of Duty(R): World at War Campaign/Coop -- File not found
"D:\CoD5\Call of Duty - World at War\CoDWaWmp.exe" = D:\CoD5\Call of Duty - World at War\CoDWaWmp.exe:*:Enabled:Call of Duty(R): World at War Multiplayer -- File not found
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01DBF423-E27B-45DA-B7F3-F9D4DB39B1C9}" = DRIV3R
"{0297C87B-CC40-446F-865A-031B4FC0CF22}" = ToCA Race Driver 3
"{036AA4D4-6D32-11D4-9875-00105ACE7734}" = Logitech iTouch Software
"{03F1CC67-5BD8-4C36-8394-76311B2AE69A}" = ArcSoft PhotoStudio 5
"{089DD780-DB3F-4CDB-A0C2-111360247298}" = PC Connectivity Solution
"{0C826C5B-B131-423A-A229-C71B3CACCD6A}" = CDDRV_Installer
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4600_series" = Canon iP4600 series Printer Driver
"{1B9B5B3B-28E7-4E59-A80D-D670AA984514}" = Nokia Connectivity Cable Driver
"{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}" = Nokia PC Suite
"{22FB6750-ADDF-4726-B67F-6901E1991045}" = Nero 7 Premium
"{259C0ABB-A3B2-4D70-008F-BF7EE491B70B}" = Need for Speed™ Carbon
"{3101CB58-3482-4D21-AF1A-7057FC935355}" = KhalInstallWrapper
"{350C97C2-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{4AE3A0CB-87B0-4F51-BECD-3D1F8DFDD62F}" = SAGEM F@st 800-840
"{4F0C7CCF-5666-474B-B02E-AC514A95EC93}" = NVIDIA GAME System Software 2.8.1
"{53480510-9ED5-4726-9BE5-292C82DBAC3F}" = O&O Defrag Professional Edition
"{56BFAA6E-2BCC-4AED-9233-84731E66B205}" = Solid Converter PDF
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{8A708DD8-A5E6-11D4-A706-000629E95E20}" = Intel(R) Extreme Graphics 2 Driver
"{90120000-0010-0415-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Polish) 12
"{90120000-0015-0415-0000-0000000FF1CE}" = Microsoft Office Access MUI (Polish) 2007
"{90120000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2007
"{90120000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2007
"{90120000-0019-0415-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Polish) 2007
"{90120000-001A-0415-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Polish) 2007
"{90120000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2007
"{90120000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0415-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Polish) 2007
"{90120000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2007
"{90120000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2007
"{90120000-00B2-0409-0000-0000000FF1CE}" = Microsoft Save as PDF or XPS Add-in for 2007 Microsoft Office programs
"{90120000-00BA-0415-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Polish) 2007
"{A92D7264-1A13-45BE-B769-88445DD04FD6}" = Desktop Sidebar
"{AC1E4C93-C1E7-11D6-9D10-00010240CE95}" = Java 2 Runtime Environment, SE v1.4.0_03
"{B56B1487-9A26-4AFD-A1FD-949C40F5F2BC}" = Sony Ericsson PC Suite
"{BCE46757-7674-4416-BEDB-68205A60409E}" = Canon CanoScan Toolbox 4.1
"{C37A0BC1-52EE-4F97-8223-5CA9FC0357B0}" = Test Drive Unlimited
"{C67DF120-4DD3-11D4-A3CA-005004AD2A5B}" = Authentium AntiVirus SDK - 2
"{D1DA2BA7-2592-4036-9BB2-DCCABDE8DC1A}" = Panda Antivirus 2008
"{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}" = GTA San Andreas
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}" = Logitech SetPoint
"34EA302E7F4CBD17A19E33BBCB72363234956D7E" = Pakiet sterowników systemu Windows - Nokia Modem (06/09/2010 4.5)
"504244733D18C8F63FF584AEB290E3904E791693" = Pakiet sterowników systemu Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"816rf" = ICAP/4Windows RF Deluxe 8.1.6
"ActiveScan 2.0" = Panda ActiveScan 2.0
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"ATI Display Driver" = ATI Display Driver
"CdaC13Ba" = SafeCast Shared Components
"C-Media Audio" = C-Media 3D Audio
"Crystal Player" = Crystal Player Professional 1.96
"EEEE705096F837B7907659F100C9FE6DA001970F" = Pakiet sterowników systemu Windows - Nokia Modem (06/09/2010 7.01.0.7)
"ENTERPRISE" = Microsoft Office Enterprise 2007
"ESET Online Scanner" = ESET Online Scanner v3
"ffdshow_is1" = ffdshow [rev 2094] [2008-08-30]
"Fraps" = Fraps (remove only)
"Gadu-Gadu" = Gadu-Gadu 7.7
"HASP HL Device Driver" = HASP HL Device Driver
"HijackThis" = HijackThis 2.0.2
"IrfanView" = IrfanView (remove only)
"Java Web Start" = Java Web Start
"LDOCE" = LDOCE
"MatlabR14SP3" = MATLAB 7.1
"Mozilla Firefox (3.5.14)" = Mozilla Firefox (3.5.14)
"NeostradaTP.exe" = Neostrada TP
"Nokia PC Suite" = Nokia PC Suite
"OpenAL" = OpenAL
"RealAlt_is1" = Real Alternative 1.8.4
"SimCity 4 [PL]" = SimCity 4 [PL]
"SkanerOnline" = Skaner on-line mks_vir
"SystemRequirementsLab" = System Requirements Lab
"Usbfix" = UsbFix By El Desaparecido & C_XX
"Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
"Wdf01009" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
"Winamp" = Winamp
"Windows Media Format Runtime" = Windows Media Format Runtime
"Windows XP Service Pack" = Windows XP Service Pack 2
"WinRAR archiver" = Archiwizator WinRAR
"winscp3_is1" = WinSCP 4.1.6
[color=#E56717]========== Last 10 Event Log Errors ==========[/color]
[ Application Events ]
Error - 2010-01-23 16:45:37 | Computer Name = TERMINATOR | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd mplayerc.exe, wersja 6.4.9.1, moduł powodujący
błąd libavcodec.dll, wersja 0.0.0.0, adres błędu 0x000ed04a.
Error - 2010-01-28 11:04:35 | Computer Name = TERMINATOR | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd foxitr~1.exe, wersja 1.3.0.1621, moduł powodujący
błąd foxitr~1.exe, wersja 1.3.0.1621, adres błędu 0x0009c615.
Error - 2010-01-28 16:28:59 | Computer Name = TERMINATOR | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd foxitr~1.exe, wersja 1.3.0.1621, moduł powodujący
błąd foxitr~1.exe, wersja 1.3.0.1621, adres błędu 0x0009c615.
Error - 2010-01-28 16:29:05 | Computer Name = TERMINATOR | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd foxitr~1.exe, wersja 1.3.0.1621, moduł powodujący
błąd foxitr~1.exe, wersja 1.3.0.1621, adres błędu 0x00081a12.
Error - 2010-02-14 12:22:11 | Computer Name = TERMINATOR | Source = crypt32 | ID = 131083
Description = Nie można wyodrębnić głównej listy innych firm z pliku cab automatycznej
aktualizacji z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
,
wystąpił błąd: Wymagany certyfikat jest poza okresem ważności, co wynika z weryfikacji
bieżącego zegara systemowego lub sygnatury czasowej.
Error - 2010-02-14 12:22:11 | Computer Name = TERMINATOR | Source = crypt32 | ID = 131083
Description = Nie można wyodrębnić głównej listy innych firm z pliku cab automatycznej
aktualizacji z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
,
wystąpił błąd: Wymagany certyfikat jest poza okresem ważności, co wynika z weryfikacji
bieżącego zegara systemowego lub sygnatury czasowej.
Error - 2010-02-16 16:51:32 | Computer Name = TERMINATOR | Source = PerfNet | ID = 2004
Description = Nie można otworzyć usługi Server. Dane wydajności usługi Server nie
zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0.
Error - 2010-02-25 14:19:26 | Computer Name = TERMINATOR | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd oodcnt.exe, wersja 4.0.0.70, moduł powodujący
błąd oodpeo.ocx, wersja 4.0.472.1788, adres błędu 0x0004c363.
Error - 2010-03-02 14:53:09 | Computer Name = TERMINATOR | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd comcomp.exe, wersja 5.5.0.391, moduł powodujący
błąd comcomp.exe, wersja 5.5.0.391, adres błędu 0x000153b7.
Error - 2010-03-13 08:20:54 | Computer Name = TERMINATOR | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd am.exe, wersja 0.0.0.0, moduł powodujący
błąd am.exe, wersja 0.0.0.0, adres błędu 0x00075174.
[ OSession Events ]
Error - 2009-10-23 17:06:04 | Computer Name = TERMINATOR | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 31
seconds with 0 seconds of active time. This session ended with a crash.
Error - 2009-12-12 09:04:55 | Computer Name = TERMINATOR | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 4269
seconds with 900 seconds of active time. This session ended with a crash.
[ System Events ]
Error - 2010-10-23 12:35:25 | Computer Name = TERMINATOR | Source = Service Control Manager | ID = 7034
Description = Usługa Ati HotKey Poller niespodziewanie zakończyła pracę. Wystąpiło
to razy: 1.
Error - 2010-10-23 12:35:25 | Computer Name = TERMINATOR | Source = Service Control Manager | ID = 7034
Description = Usługa dvpapi niespodziewanie zakończyła pracę. Wystąpiło to razy:
1.
Error - 2010-10-23 12:35:25 | Computer Name = TERMINATOR | Source = Service Control Manager | ID = 7034
Description = Usługa SolidConverterPDFReadSpool niespodziewanie zakończyła pracę.
Wystąpiło to razy: 1.
Error - 2010-10-23 12:35:25 | Computer Name = TERMINATOR | Source = Service Control Manager | ID = 7034
Description = Usługa SoundMAX Agent Service niespodziewanie zakończyła pracę. Wystąpiło
to razy: 1.
Error - 2010-10-23 12:35:25 | Computer Name = TERMINATOR | Source = Service Control Manager | ID = 7034
Description = Usługa Windows User Mode Driver Framework niespodziewanie zakończyła
pracę. Wystąpiło to razy: 1.
Error - 2010-10-23 12:35:25 | Computer Name = TERMINATOR | Source = Service Control Manager | ID = 7031
Description = Usługa Bufor wydruku niespodziewanie zakończyła pracę. Wystąpiło to
razy: 1. W przeciągu 60000 milisekund zostanie podjęta następująca czynność korekcyjna:
Uruchom usługę ponownie.
Error - 2010-10-23 12:35:25 | Computer Name = TERMINATOR | Source = Service Control Manager | ID = 7034
Description = Usługa C-DillaCdaC11BA niespodziewanie zakończyła pracę. Wystąpiło
to razy: 1.
Error - 2010-10-23 12:35:25 | Computer Name = TERMINATOR | Source = Service Control Manager | ID = 7034
Description = Usługa Usługa bramy warstwy aplikacji niespodziewanie zakończyła pracę.
Wystąpiło to razy: 1.
Error - 2010-10-23 12:48:44 | Computer Name = TERMINATOR | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi General Purpose USB Driver (adildr.sys)
z powodu następującego błędu: %%1058
Error - 2010-10-23 12:48:44 | Computer Name = TERMINATOR | Source = Service Control Manager | ID = 7034
Description = Usługa SolidConverterPDFReadSpool niespodziewanie zakończyła pracę.
Wystąpiło to razy: 1.
< End of report >
Jakiś syf nadal mam - czasami próbuje mi w nowym oknie otworzyć stronę http://www.epoclick.com/?ad=1287851079
Laptop:
Intel Core2 Duo: T5750 2.0 GHz, nVidia GeForce 9300M G, 4 x 1024 Mb DDR2 667 MHz, HDD 320 Gb Serial ATA, combo Blu-ray ROM + DVD+/-RW DL, Windows Vista Home Premium
Intel Core2 Duo: T5750 2.0 GHz, nVidia GeForce 9300M G, 4 x 1024 Mb DDR2 667 MHz, HDD 320 Gb Serial ATA, combo Blu-ray ROM + DVD+/-RW DL, Windows Vista Home Premium
#10
- Początkujący Uczestnik
-
- Grupa: Czytelnicy
- Postów 262
- Rejestracja: 07-czerwiec 09
Napisano 23 październik 2010, 18:51
Uruchom OTL -> w oknie Własne opcje skanowania/skrypt wklej:
Klikasz Wykonaj skrypt. Dajesz log z usuwania + nowe logi z OTL (tylko wklej całe logi, bo poprzednie były obcięte, nie było początku).
Cytat
:OTL
SRV - File not found [On_Demand | Stopped] -- C:\Program Files\MATLAB71\webserver\bin\win32\matlabserver.exe -- (matlabserver)
O4 - HKLM..\RunServices: [Microsoft Update Machine] File not found
O4 - HKLM..\Run: [KernelFaultCheck] File not found
O28 - HKLM ShellExecuteHooks: {C5F43BEF-CE2F-46D8-AFE6-A647BACD1F09} - C:\windows\System32\Bitkv0.dll File not found
[2010-10-16 23:49:06 | 000,000,156 | ---- | C] () -- C:\windows\Twunk001.MTX
[2010-10-16 23:49:06 | 000,000,003 | ---- | C] () -- C:\windows\Twain001.Mtx
[2010-10-16 23:49:06 | 000,000,000 | ---- | C] () -- C:\windows\Twunk002.MTX
:Files
C:\windows\tasks\Install_NSS.job
c:\documents and settings\rObO87\Dane aplikacji\inst.exe
c:\windows\AppPatch\Custom\{deb7008b-681e-4a4a-8aae-cc833e8216ce}.sdb
c:\windows\system32\ispn2.dll
c:\windows\system32\svkp2.dll
c:\windows\system32\Temp
:Commands
[clearallrestorepoints]
[emptytemp]
SRV - File not found [On_Demand | Stopped] -- C:\Program Files\MATLAB71\webserver\bin\win32\matlabserver.exe -- (matlabserver)
O4 - HKLM..\RunServices: [Microsoft Update Machine] File not found
O4 - HKLM..\Run: [KernelFaultCheck] File not found
O28 - HKLM ShellExecuteHooks: {C5F43BEF-CE2F-46D8-AFE6-A647BACD1F09} - C:\windows\System32\Bitkv0.dll File not found
[2010-10-16 23:49:06 | 000,000,156 | ---- | C] () -- C:\windows\Twunk001.MTX
[2010-10-16 23:49:06 | 000,000,003 | ---- | C] () -- C:\windows\Twain001.Mtx
[2010-10-16 23:49:06 | 000,000,000 | ---- | C] () -- C:\windows\Twunk002.MTX
:Files
C:\windows\tasks\Install_NSS.job
c:\documents and settings\rObO87\Dane aplikacji\inst.exe
c:\windows\AppPatch\Custom\{deb7008b-681e-4a4a-8aae-cc833e8216ce}.sdb
c:\windows\system32\ispn2.dll
c:\windows\system32\svkp2.dll
c:\windows\system32\Temp
:Commands
[clearallrestorepoints]
[emptytemp]
Klikasz Wykonaj skrypt. Dajesz log z usuwania + nowe logi z OTL (tylko wklej całe logi, bo poprzednie były obcięte, nie było początku).
Użytkownik mati8898 edytował ten post 23 październik 2010, 18:59
#11
- Uczestnik
-
- Grupa: Czytelnicy
- Postów 670
- Rejestracja: 07-styczeń 04
Napisano 23 październik 2010, 19:40
A co ten Twój skrypt robi? Btw czasami strona z tym tematem strasznie długo się ładuje i czasem FF wywala komunikat czy przerwać działanie jakiegoś skryptu.
Niestety nadal wyświetla się to okienko z likiem eplock i nadal próbuje się włączyc jakiś skrypt, mulący tę stronę.
All processes killed
========== OTL ==========
Service matlabserver stopped successfully!
Service matlabserver deleted successfully!
File C:\Program Files\MATLAB71\webserver\bin\win32\matlabserver.exe not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices\
\Microsoft Update Machine deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\
KernelFaultCheck deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\
\{C5F43BEF-CE2F-46D8-AFE6-A647BACD1F09} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C5F43BEF-CE2F-46D8-AFE6-A647BACD1F09}\
deleted successfully.
C:\WINDOWS\Twunk001.MTX moved successfully.
C:\WINDOWS\Twain001.Mtx moved successfully.
C:\WINDOWS\Twunk002.MTX moved successfully.
========== FILES ==========
C:\windows\tasks\Install_NSS.job moved successfully.
File\Folder c:\documents and settings\rObO87\Dane aplikacji\inst.exe not found.
File\Folder c:\windows\AppPatch\Custom\{deb7008b-681e-4a4a-8aae-cc833e8216ce}.sdb not found.
File\Folder c:\windows\system32\ispn2.dll not found.
File\Folder c:\windows\system32\svkp2.dll not found.
File\Folder c:\windows\system32\Temp not found.
========== COMMANDS ==========
Restore points cleared and new OTL Restore Point set!
[EMPTYTEMP]
User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: All Users
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32902 bytes
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 402 bytes
User: rObO87
->Temp folder emptied: 78526831 bytes
->Temporary Internet Files folder emptied: 24213916 bytes
->FireFox cache emptied: 60087041 bytes
->Flash cache emptied: 103500 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 681984 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 2539065 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 159,00 mb
OTL by OldTimer - Version 3.2.17.0 log created on 10232010_203155
Files\Folders moved on Reboot...
File move failed. C:\windows\temp\hlktmp scheduled to be moved on reboot.
Registry entries deleted on Reboot...
OTL Extras logfile created on: 2010-10-23 20:42:19 - Run 2
OTL by OldTimer - Version 3.2.17.0 Folder = C:\Documents and Settings\rObO87\Pulpit
Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
1 015,00 Mb Total Physical Memory | 565,00 Mb Available Physical Memory | 56,00% Memory free
3,00 Gb Paging File | 3,00 Gb Available in Paging File | 87,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files
Drive C: | 17,99 Gb Total Space | 2,52 Gb Free Space | 14,00% Space Free | Partition Type: NTFS
Drive D: | 60,01 Gb Total Space | 25,84 Gb Free Space | 43,06% Space Free | Partition Type: NTFS
Drive E: | 20,01 Gb Total Space | 9,73 Gb Free Space | 48,62% Space Free | Partition Type: NTFS
Drive F: | 25,01 Gb Total Space | 5,83 Gb Free Space | 23,29% Space Free | Partition Type: NTFS
Drive G: | 15,01 Gb Total Space | 11,48 Gb Free Space | 76,53% Space Free | Partition Type: NTFS
Computer Name: TERMINATOR | User Name: rObO87 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
[color=#E56717]========== File Associations ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
[HKEY_USERS\S-1-5-21-2025429265-413027322-682003330-1003\SOFTWARE\Classes\<
extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
[color=#E56717]========== Shell Spawning ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]
\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[color=#E56717]========== Security Center Settings ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
"DisableMonitoring" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
[color=#E56717]========== System Restore Settings ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
[color=#E56717]========== Firewall Settings ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\
FirewallPolicy\DomainProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\
FirewallPolicy\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\
FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[color=#E56717]========== Authorized Applications List ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\
FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\
FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\iolo\System Mechanic Professional\Personal Firewall\ioloFW.exe" = C:\Program Files\iolo\System Mechanic Professional\Personal Firewall\ioloFW.exe:*:Enabled:iolo Firewall® -- File not found
"C:\Program Files\iolo\System Mechanic Professional\AntiVirus\ioloAV.exe" = C:\Program Files\iolo\System Mechanic Professional\AntiVirus\ioloAV.exe:*:Enabled:iolo AntiVirus® -- File not found
"C:\Program Files\iolo\System Mechanic Professional\AntiVirus\iAVEmailScanner.exe" = C:\Program Files\iolo\System Mechanic Professional\AntiVirus\iAVEmailScanner.exe:*:Enabled:iolo AntiVirus® Email Protection -- File not found
"D:\Test Drive Unlimited\pliki gry\TestDriveUnlimited.exe" = D:\Test Drive Unlimited\pliki gry\TestDriveUnlimited.exe:*:Enabled:Test Drive Unlimited -- (Eden Games)
"C:\WINDOWS\system32\idpnwo.exe" = C:\WINDOWS\system32\idpnwo.exe:*:Enabled:idpnwo -- File not found
"C:\Program Files\Gadu-Gadu\gg.exe" = C:\Program Files\Gadu-Gadu\gg.exe:*:Enabled:Gadu-Gadu - program główny -- (Gadu-Gadu S.A.)
"D:\CoD5\Call of Duty - World at War\CoDWaW.exe" = D:\CoD5\Call of Duty - World at War\CoDWaW.exe:*:Enabled:Call of Duty(R): World at War Campaign/Coop -- File not found
"D:\CoD5\Call of Duty - World at War\CoDWaWmp.exe" = D:\CoD5\Call of Duty - World at War\CoDWaWmp.exe:*:Enabled:Call of Duty(R): World at War Multiplayer -- File not found
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01DBF423-E27B-45DA-B7F3-F9D4DB39B1C9}" = DRIV3R
"{0297C87B-CC40-446F-865A-031B4FC0CF22}" = ToCA Race Driver 3
"{036AA4D4-6D32-11D4-9875-00105ACE7734}" = Logitech iTouch Software
"{03F1CC67-5BD8-4C36-8394-76311B2AE69A}" = ArcSoft PhotoStudio 5
"{089DD780-DB3F-4CDB-A0C2-111360247298}" = PC Connectivity Solution
"{0C826C5B-B131-423A-A229-C71B3CACCD6A}" = CDDRV_Installer
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4600_series" = Canon iP4600 series Printer Driver
"{1B9B5B3B-28E7-4E59-A80D-D670AA984514}" = Nokia Connectivity Cable Driver
"{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}" = Nokia PC Suite
"{22FB6750-ADDF-4726-B67F-6901E1991045}" = Nero 7 Premium
"{259C0ABB-A3B2-4D70-008F-BF7EE491B70B}" = Need for Speed™ Carbon
"{3101CB58-3482-4D21-AF1A-7057FC935355}" = KhalInstallWrapper
"{350C97C2-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{4AE3A0CB-87B0-4F51-BECD-3D1F8DFDD62F}" = SAGEM F@st 800-840
"{4F0C7CCF-5666-474B-B02E-AC514A95EC93}" = NVIDIA GAME System Software 2.8.1
"{53480510-9ED5-4726-9BE5-292C82DBAC3F}" = O&O Defrag Professional Edition
"{56BFAA6E-2BCC-4AED-9233-84731E66B205}" = Solid Converter PDF
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{8A708DD8-A5E6-11D4-A706-000629E95E20}" = Intel(R) Extreme Graphics 2 Driver
"{90120000-0010-0415-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Polish) 12
"{90120000-0015-0415-0000-0000000FF1CE}" = Microsoft Office Access MUI (Polish) 2007
"{90120000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2007
"{90120000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2007
"{90120000-0019-0415-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Polish) 2007
"{90120000-001A-0415-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Polish) 2007
"{90120000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2007
"{90120000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0415-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Polish) 2007
"{90120000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2007
"{90120000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2007
"{90120000-00B2-0409-0000-0000000FF1CE}" = Microsoft Save as PDF or XPS Add-in for 2007 Microsoft Office programs
"{90120000-00BA-0415-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Polish) 2007
"{A92D7264-1A13-45BE-B769-88445DD04FD6}" = Desktop Sidebar
"{AC1E4C93-C1E7-11D6-9D10-00010240CE95}" = Java 2 Runtime Environment, SE v1.4.0_03
"{B56B1487-9A26-4AFD-A1FD-949C40F5F2BC}" = Sony Ericsson PC Suite
"{BCE46757-7674-4416-BEDB-68205A60409E}" = Canon CanoScan Toolbox 4.1
"{C37A0BC1-52EE-4F97-8223-5CA9FC0357B0}" = Test Drive Unlimited
"{C67DF120-4DD3-11D4-A3CA-005004AD2A5B}" = Authentium AntiVirus SDK - 2
"{D1DA2BA7-2592-4036-9BB2-DCCABDE8DC1A}" = Panda Antivirus 2008
"{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}" = GTA San Andreas
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}" = Logitech SetPoint
"34EA302E7F4CBD17A19E33BBCB72363234956D7E" = Pakiet sterowników systemu Windows - Nokia Modem (06/09/2010 4.5)
"504244733D18C8F63FF584AEB290E3904E791693" = Pakiet sterowników systemu Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"816rf" = ICAP/4Windows RF Deluxe 8.1.6
"ActiveScan 2.0" = Panda ActiveScan 2.0
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"ATI Display Driver" = ATI Display Driver
"CdaC13Ba" = SafeCast Shared Components
"C-Media Audio" = C-Media 3D Audio
"Crystal Player" = Crystal Player Professional 1.96
"EEEE705096F837B7907659F100C9FE6DA001970F" = Pakiet sterowników systemu Windows - Nokia Modem (06/09/2010 7.01.0.7)
"ENTERPRISE" = Microsoft Office Enterprise 2007
"ESET Online Scanner" = ESET Online Scanner v3
"ffdshow_is1" = ffdshow [rev 2094] [2008-08-30]
"Fraps" = Fraps (remove only)
"Gadu-Gadu" = Gadu-Gadu 7.7
"HASP HL Device Driver" = HASP HL Device Driver
"HijackThis" = HijackThis 2.0.2
"IrfanView" = IrfanView (remove only)
"Java Web Start" = Java Web Start
"LDOCE" = LDOCE
"MatlabR14SP3" = MATLAB 7.1
"Mozilla Firefox (3.5.14)" = Mozilla Firefox (3.5.14)
"NeostradaTP.exe" = Neostrada TP
"Nokia PC Suite" = Nokia PC Suite
"OpenAL" = OpenAL
"RealAlt_is1" = Real Alternative 1.8.4
"SimCity 4 [PL]" = SimCity 4 [PL]
"SkanerOnline" = Skaner on-line mks_vir
"SystemRequirementsLab" = System Requirements Lab
"Usbfix" = UsbFix By El Desaparecido & C_XX
"Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
"Wdf01009" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
"Winamp" = Winamp
"Windows Media Format Runtime" = Windows Media Format Runtime
"Windows XP Service Pack" = Windows XP Service Pack 2
"WinRAR archiver" = Archiwizator WinRAR
"winscp3_is1" = WinSCP 4.1.6
[color=#E56717]========== Last 10 Event Log Errors ==========[/color]
[ Application Events ]
Error - 2010-01-23 16:45:37 | Computer Name = TERMINATOR | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd mplayerc.exe, wersja 6.4.9.1, moduł powodujący
błąd libavcodec.dll, wersja 0.0.0.0, adres błędu 0x000ed04a.
Error - 2010-01-28 11:04:35 | Computer Name = TERMINATOR | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd foxitr~1.exe, wersja 1.3.0.1621, moduł powodujący
błąd foxitr~1.exe, wersja 1.3.0.1621, adres błędu 0x0009c615.
Error - 2010-01-28 16:28:59 | Computer Name = TERMINATOR | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd foxitr~1.exe, wersja 1.3.0.1621, moduł powodujący
błąd foxitr~1.exe, wersja 1.3.0.1621, adres błędu 0x0009c615.
Error - 2010-01-28 16:29:05 | Computer Name = TERMINATOR | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd foxitr~1.exe, wersja 1.3.0.1621, moduł powodujący
błąd foxitr~1.exe, wersja 1.3.0.1621, adres błędu 0x00081a12.
Error - 2010-02-14 12:22:11 | Computer Name = TERMINATOR | Source = crypt32 | ID = 131083
Description = Nie można wyodrębnić głównej listy innych firm z pliku cab automatycznej
aktualizacji z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
,
wystąpił błąd: Wymagany certyfikat jest poza okresem ważności, co wynika z weryfikacji
bieżącego zegara systemowego lub sygnatury czasowej.
Error - 2010-02-14 12:22:11 | Computer Name = TERMINATOR | Source = crypt32 | ID = 131083
Description = Nie można wyodrębnić głównej listy innych firm z pliku cab automatycznej
aktualizacji z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
,
wystąpił błąd: Wymagany certyfikat jest poza okresem ważności, co wynika z weryfikacji
bieżącego zegara systemowego lub sygnatury czasowej.
Error - 2010-02-16 16:51:32 | Computer Name = TERMINATOR | Source = PerfNet | ID = 2004
Description = Nie można otworzyć usługi Server. Dane wydajności usługi Server nie
zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0.
Error - 2010-02-25 14:19:26 | Computer Name = TERMINATOR | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd oodcnt.exe, wersja 4.0.0.70, moduł powodujący
błąd oodpeo.ocx, wersja 4.0.472.1788, adres błędu 0x0004c363.
Error - 2010-03-02 14:53:09 | Computer Name = TERMINATOR | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd comcomp.exe, wersja 5.5.0.391, moduł powodujący
błąd comcomp.exe, wersja 5.5.0.391, adres błędu 0x000153b7.
Error - 2010-03-13 08:20:54 | Computer Name = TERMINATOR | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd am.exe, wersja 0.0.0.0, moduł powodujący
błąd am.exe, wersja 0.0.0.0, adres błędu 0x00075174.
[ OSession Events ]
Error - 2009-10-23 17:06:04 | Computer Name = TERMINATOR | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 31
seconds with 0 seconds of active time. This session ended with a crash.
Error - 2009-12-12 09:04:55 | Computer Name = TERMINATOR | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 4269
seconds with 900 seconds of active time. This session ended with a crash.
[ System Events ]
Error - 2010-10-23 14:31:57 | Computer Name = TERMINATOR | Source = Service Control Manager | ID = 7034
Description = Usługa C-DillaCdaC11BA niespodziewanie zakończyła pracę. Wystąpiło
to razy: 1.
Error - 2010-10-23 14:31:57 | Computer Name = TERMINATOR | Source = Service Control Manager | ID = 7034
Description = Usługa dvpapi niespodziewanie zakończyła pracę. Wystąpiło to razy:
1.
Error - 2010-10-23 14:31:57 | Computer Name = TERMINATOR | Source = Service Control Manager | ID = 7034
Description = Usługa iolo FileInfoList Service niespodziewanie zakończyła pracę.
Wystąpiło to razy: 1.
Error - 2010-10-23 14:31:57 | Computer Name = TERMINATOR | Source = Service Control Manager | ID = 7034
Description = Usługa iolo System Service niespodziewanie zakończyła pracę. Wystąpiło
to razy: 1.
Error - 2010-10-23 14:31:57 | Computer Name = TERMINATOR | Source = Service Control Manager | ID = 7034
Description = Usługa Panda Software Controller niespodziewanie zakończyła pracę.
Wystąpiło to razy: 1.
Error - 2010-10-23 14:31:57 | Computer Name = TERMINATOR | Source = Service Control Manager | ID = 7034
Description = Usługa Panda Process Protection Service niespodziewanie zakończyła
pracę. Wystąpiło to razy: 1.
Error - 2010-10-23 14:31:58 | Computer Name = TERMINATOR | Source = Service Control Manager | ID = 7034
Description = Usługa Panda IManager Service niespodziewanie zakończyła pracę. Wystąpiło
to razy: 1.
Error - 2010-10-23 14:31:58 | Computer Name = TERMINATOR | Source = Service Control Manager | ID = 7034
Description = Usługa SoundMAX Agent Service niespodziewanie zakończyła pracę. Wystąpiło
to razy: 1.
Error - 2010-10-23 14:36:55 | Computer Name = TERMINATOR | Source = Service Control Manager | ID = 7011
Description = Limit czasu (30000 milisekund) podczas oczekiwania na odpowiedź transakcji
z usługi PAVSRV.
Error - 2010-10-23 14:39:12 | Computer Name = TERMINATOR | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi General Purpose USB Driver (adildr.sys)
z powodu następującego błędu: %%1058
< End of report >
OTL logfile created on: 2010-10-23 20:42:19 - Run 2
OTL by OldTimer - Version 3.2.17.0 Folder = C:\Documents and Settings\rObO87\Pulpit
Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
1 015,00 Mb Total Physical Memory | 565,00 Mb Available Physical Memory | 56,00% Memory free
3,00 Gb Paging File | 3,00 Gb Available in Paging File | 87,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files
Drive C: | 17,99 Gb Total Space | 2,52 Gb Free Space | 14,00% Space Free | Partition Type: NTFS
Drive D: | 60,01 Gb Total Space | 25,84 Gb Free Space | 43,06% Space Free | Partition Type: NTFS
Drive E: | 20,01 Gb Total Space | 9,73 Gb Free Space | 48,62% Space Free | Partition Type: NTFS
Drive F: | 25,01 Gb Total Space | 5,83 Gb Free Space | 23,29% Space Free | Partition Type: NTFS
Drive G: | 15,01 Gb Total Space | 11,48 Gb Free Space | 76,53% Space Free | Partition Type: NTFS
Computer Name: TERMINATOR | User Name: rObO87 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days
[color=#E56717]========== Processes (SafeList) ==========[/color]
PRC - [2010-10-23 18:52:05 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\rObO87\Pulpit\OTL.com
PRC - [2010-10-21 19:18:59 | 000,908,760 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010-10-16 23:46:11 | 000,189,696 | ---- | M] (Solid Documents, LLC) -- C:\WINDOWS\Installer\MSI344.tmp
PRC - [2008-10-11 19:56:03 | 000,054,784 | ---- | M] (Macrovision) -- C:\WINDOWS\system32\drivers\CDAC11BA.EXE
PRC - [2008-06-19 16:59:12 | 000,592,232 | ---- | M] () -- C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe
PRC - [2008-05-02 02:44:08 | 000,805,392 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPoint\SetPoint.exe
PRC - [2008-05-02 02:40:56 | 000,076,304 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
PRC - [2007-11-14 14:31:18 | 000,083,248 | ---- | M] (Panda Security International) -- C:\Program Files\Panda Security\Panda Antivirus 2008\WebProxy.exe
PRC - [2007-10-04 16:15:00 | 000,455,984 | ---- | M] (Panda Software International) -- C:\Program Files\Panda Security\Panda Antivirus 2008\ApVxdWin.exe
PRC - [2007-09-28 14:29:00 | 000,148,272 | ---- | M] (Panda Software International) -- C:\Program Files\Panda Security\Panda Antivirus 2008\PAVSRV51.EXE
PRC - [2007-09-28 14:28:58 | 000,096,560 | ---- | M] (Panda Software International) -- C:\Program Files\Panda Security\Panda Antivirus 2008\AVENGINE.EXE
PRC - [2007-07-12 10:08:48 | 000,169,264 | ---- | M] (Panda Software International) -- C:\Program Files\Panda Security\Panda Antivirus 2008\PsCtrlS.exe
PRC - [2007-07-09 12:54:08 | 000,177,416 | R--- | M] (Authentium, Inc.) -- C:\Program Files\Common Files\Authentium\AntiVirus\dvpapi.exe
PRC - [2007-06-14 18:38:02 | 000,063,024 | ---- | M] (Panda Software) -- C:\Program Files\Common Files\Panda Software\PavShld\PavPrSrv.exe
PRC - [2007-05-24 10:31:26 | 000,108,592 | ---- | M] (Panda Software International) -- C:\Program Files\Panda Security\Panda Antivirus 2008\PsImSvc.exe
PRC - [2006-07-09 21:58:00 | 001,777,664 | ---- | M] (Idea2) -- C:\Program Files\Desktop Sidebar\dsidebar.exe
PRC - [2006-03-09 02:00:28 | 000,212,992 | ---- | M] (Popwire AB) -- C:\Program Files\Common Files\Teleca Shared\CapabilityManager.exe
PRC - [2004-08-04 00:44:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2003-10-16 18:07:12 | 000,626,688 | ---- | M] (France Télécom R&D) -- C:\Program Files\Neostrada TP\NeostradaTP.exe
PRC - [2003-10-16 18:07:12 | 000,020,480 | ---- | M] (France Télécom R&D) -- C:\Program Files\Neostrada TP\Watch.exe
PRC - [2003-10-16 18:07:10 | 000,200,704 | ---- | M] (France Télécom R&D) -- C:\Program Files\Neostrada TP\ComComp.exe
PRC - [2003-05-30 09:42:22 | 000,585,728 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMax4.exe
PRC - [2003-05-29 16:28:32 | 000,790,528 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
PRC - [2002-09-20 15:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
[color=#E56717]========== Modules (SafeList) ==========[/color]
MOD - [2010-10-23 18:52:05 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\rObO87\Pulpit\OTL.com
MOD - [2009-07-12 01:12:06 | 000,632,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\
msvcr80.dll
MOD - [2008-06-19 16:56:28 | 000,107,352 | ---- | M] () -- C:\Program Files\iolo\Common\Lib\ioloHL.dll
MOD - [2008-05-02 02:42:50 | 000,045,584 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPoint\lgscroll.dll
MOD - [2004-08-04 00:42:34 | 001,050,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-
ww_a84f1ff9\comctl32.dll
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
SRV - [2010-10-16 23:46:11 | 000,189,696 | ---- | M] (Solid Documents, LLC) [Auto | Running] -- C:\WINDOWS\Installer\MSI344.tmp -- (SCPDFReadSpool)
SRV - [2010-06-14 15:07:14 | 000,615,936 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2008-10-11 19:56:03 | 000,054,784 | ---- | M] (Macrovision) [Auto | Running] -- C:\WINDOWS\system32\drivers\CDAC11BA.EXE -- (C-DillaCdaC11BA)
SRV - [2008-06-19 16:59:12 | 000,592,232 | ---- | M] () [Auto | Running] -- C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe -- (ioloSystemService)
SRV - [2008-06-19 16:59:12 | 000,592,232 | ---- | M] () [Auto | Running] -- C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe -- (ioloFileInfoList)
SRV - [2008-05-02 02:42:06 | 000,121,360 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV - [2007-09-28 14:29:00 | 000,148,272 | ---- | M] (Panda Software International) [Auto | Running] -- C:\Program Files\Panda Security\Panda Antivirus 2008\pavsrv51.exe -- (PAVSRV)
SRV - [2007-07-12 10:08:48 | 000,169,264 | ---- | M] (Panda Software International) [Auto | Running] -- C:\Program Files\Panda Security\Panda Antivirus 2008\PsCtrls.exe -- (Panda Software Controller)
SRV - [2007-07-09 12:54:08 | 000,177,416 | R--- | M] (Authentium, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Authentium\AntiVirus\dvpapi.exe -- (dvpapi)
SRV - [2007-06-14 18:38:02 | 000,063,024 | ---- | M] (Panda Software) [Auto | Running] -- C:\Program Files\Common Files\Panda Software\PavShld\pavprsrv.exe -- (PavPrSrv)
SRV - [2007-05-24 10:31:26 | 000,108,592 | ---- | M] (Panda Software International) [Auto | Running] -- C:\Program Files\Panda Security\Panda Antivirus 2008\PsImSvc.exe -- (PSIMSVC)
SRV - [2002-09-20 15:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) [Auto | Running] -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe -- (SoundMAX Agent Service (default))
SRV - [2002-02-08 13:15:20 | 000,263,168 | ---- | M] (O&O Software GmbH) [Auto | Stopped] -- C:\WINDOWS\system32\oodag.exe -- (OODefrag)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV - [2010-02-26 14:32:58 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2010-02-26 14:32:46 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2010-02-26 14:32:44 | 000,022,528 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2010-02-26 14:32:44 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2009-12-10 21:15:43 | 000,052,224 | ---- | M] (Aladdin Knowledge Systems.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\Haspnt.sys -- (Haspnt)
DRV - [2009-06-30 10:37:16 | 000,028,552 | ---- | M] (Panda Security, S.L.) [File_System | Boot | Running] -- C:\windows\system32\drivers\pavboot.sys -- (pavboot)
DRV - [2009-03-14 03:11:59 | 000,717,296 | ---- | M] () [Kernel | Boot | Running] -- C:\windows\System32\Drivers\sptd.sys -- (sptd)
DRV - [2008-10-11 19:56:02 | 000,012,464 | ---- | M] (Macrovision Europe Ltd) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\CdaC15BA.SYS -- (CdaC15BA)
DRV - [2008-08-26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008-03-29 08:21:53 | 002,873,856 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2008-02-29 03:13:46 | 000,028,944 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LUsbFilt.sys -- (LUsbFilt)
DRV - [2008-02-29 03:13:36 | 000,079,120 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LMouKE.Sys -- (LMouKE)
DRV - [2008-02-29 03:13:24 | 000,036,880 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt)
DRV - [2008-02-29 03:13:16 | 000,035,344 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt)
DRV - [2008-02-29 03:12:56 | 000,063,120 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\L8042mou.Sys -- (L8042mou)
DRV - [2008-02-29 03:12:48 | 000,020,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\L8042Kbd.sys -- (L8042Kbd)
DRV - [2007-09-28 15:24:18 | 000,083,896 | ---- | M] (Panda Software International) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\pavdrv51.sys -- (pavdrv)
DRV - [2007-07-12 15:49:38 | 000,178,872 | ---- | M] (Panda Software International) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\PavProc.sys -- (PavProc)
DRV - [2007-07-09 12:01:04 | 000,834,448 | ---- | M] (Authentium, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\Css-Dvp.sys -- (CSS DVP)
DRV - [2007-05-23 17:40:30 | 000,038,968 | ---- | M] (Panda Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ShlDrv51.sys -- (ShldDrv)
DRV - [2006-11-22 11:01:48 | 000,693,760 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\hardlock.sys -- (Hardlock)
DRV - [2006-11-07 10:42:30 | 000,086,368 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w200obex.sys -- (w200obex)
DRV - [2006-11-07 10:42:28 | 000,088,560 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w200mgmt.sys -- (w200mgmt) Sony Ericsson W200 USB WMC Device Management Drivers (WDM)
DRV - [2006-11-07 10:42:24 | 000,097,056 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w200mdm.sys -- (w200mdm)
DRV - [2006-11-07 10:42:22 | 000,009,328 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w200mdfl.sys -- (w200mdfl)
DRV - [2006-11-07 10:42:16 | 000,061,504 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w200bus.sys -- (w200bus) Sony Ericsson W200 driver (WDM)
DRV - [2004-08-03 22:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\rtl8139.sys -- (rtl8139) Sterownik NT karty Realtek RTL8139(A/B/C)
DRV - [2004-03-02 09:26:58 | 000,050,007 | ---- | M] (Analog Deivces) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\adildr.sys -- (ADILOADER) General Purpose USB Driver (adildr.sys)
DRV - [2004-03-02 09:24:16 | 000,127,065 | ---- | M] (Analog Devices Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\adiusbaw.sys -- (adiusbaw)
DRV - [2003-07-17 04:22:10 | 000,147,328 | R--- | M] (3Com Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\EL2K_XP.sys -- (EL2000)
DRV - [2002-09-20 04:53:34 | 000,235,100 | ---- | M] (Analog Devices Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\MidiSyn.sys -- (MidiSyn)
DRV - [2002-05-23 18:59:00 | 000,010,432 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\itchfltr.sys -- (itchfltr)
DRV - [2001-08-17 22:51:32 | 000,018,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\irsir.sys -- (irsir)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2025429265-413027322-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.wp.pl/
IE - HKU\S-1-5-21-2025429265-413027322-682003330-1003\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Neostrada TP\SearchPageURL.dll ()
IE - HKU\S-1-5-21-2025429265-413027322-682003330-1003\Software\Microsoft\Windows\
CurrentVersion\Internet Settings: "ProxyEnable" = 0
[color=#E56717]========== FireFox ==========[/color]
FF - prefs.js..browser.startup.homepage: "http://www.google.pl"
FF - HKLM\software\mozilla\Firefox\Extensions\\bkmrksync@nokia.com: C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ [2010-10-08 22:27:14 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.14\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-10-22 20:14:04 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.14\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-10-21 19:19:02 | 000,000,000 | ---D | M]
[2008-10-03 21:51:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rObO87\Dane aplikacji\Mozilla\Extensions
[2008-10-03 21:51:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rObO87\Dane aplikacji\Mozilla\Firefox\Profiles\0hc1fs4x.default\extensions
[2008-10-03 21:51:29 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2002-11-01 20:15:54 | 000,086,125 | ---- | M] (JavaSoft / Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\NPJava11.dll
[2002-11-01 20:15:54 | 000,086,125 | ---- | M] (JavaSoft / Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\NPJava12.dll
[2002-11-01 20:15:54 | 000,086,125 | ---- | M] (JavaSoft / Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\NPJava13.dll
[2002-11-01 20:15:54 | 000,086,125 | ---- | M] (JavaSoft / Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\NPJava32.dll
[2002-11-01 20:15:54 | 000,086,122 | ---- | M] (JavaSoft / Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\NPJPI140_03.dll
[2002-11-01 20:15:54 | 000,086,126 | ---- | M] (JavaSoft / Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\NPOJI610.dll
[2010-09-30 11:07:18 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010-09-30 11:07:18 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2010-09-30 11:07:18 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2010-09-30 11:07:18 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010-09-30 11:07:18 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2010-09-30 11:07:18 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml
O1 HOSTS File: ([2001-10-26 17:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Idea2 SidebarBrowserMonitor Class) - {45AD732C-2CE2-4666-B366-B2214AD57A49} - C:\Program Files\Desktop Sidebar\sbhelp.dll (Idea2)
O4 - HKLM..\Run: [APVXDWIN] C:\Program Files\Panda Security\Panda Antivirus 2008\APVXDWIN.EXE (Panda Software International)
O4 - HKLM..\Run: [Sony Ericsson PC Suite] C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe (Sony Ericsson Mobile Communications AB)
O4 - HKLM..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe (Logitech Inc. )
O4 - HKU\S-1-5-21-2025429265-413027322-682003330-1003..\Run: [SIDEBAR] C:\Program Files\Desktop Sidebar\dsidebar.exe (Idea2)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech, Inc.)
O4 - Startup: C:\Documents and Settings\rObO87\Menu Start\Programy\Autostart\Desktop Calendar StartUp.lnk = C:\Tunning\Desktop_Calenda\DESKCAL.EXE (Shinonon Free Softrware)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer:
NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer:
NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer:
NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer:
NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2025429265-413027322-682003330-1003\SOFTWARE\Microsoft\Windows\
CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O7 - HKU\S-1-5-21-2025429265-413027322-682003330-1003\SOFTWARE\Microsoft\Windows\
CurrentVersion\policies\Explorer: NoDriveAutoRun = 3
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\Panda Security\Panda Antivirus 2008\pavlsp.dll (Panda Software International)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\Panda Security\Panda Antivirus 2008\pavlsp.dll (Panda Software International)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files\Panda Security\Panda Antivirus 2008\pavlsp.dll (Panda Software International)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\windows\System32\iavlsp.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\windows\System32\iavlsp.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\windows\System32\iavlsp.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000029 - C:\Program Files\Panda Security\Panda Antivirus 2008\pavlsp.dll (Panda Software International)
O16 - DPF: {3D8700FB-86A4-4CB4-B738-6F0FC016AC7D} http://arcaonline.arcabit.com/ArcaOnline.cab (MainControl Class)
O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} http://www.eset.eu/buxus/docs/OnlineScanner.cab (Reg Error: Key error.)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 85.255.116.122,85.255.112.79
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\windows\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\avldr: DllName - avldr.dll - C:\windows\System32\avldr.dll (Panda Software International)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\windows\System32\igfxdev.dll (Intel Corporation)
O20 - Winlogon\Notify\LBTWlgn: DllName - c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll - c:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\rObO87\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\rObO87\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 0
O32 - AutoRun File - [2008-10-03 19:32:31 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2010-10-23 18:36:58 | 000,000,000 | RHSD | M] - C:\Autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2010-10-23 18:36:58 | 000,000,000 | RHSD | M] - D:\Autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2010-10-23 18:36:58 | 000,000,000 | RHSD | M] - E:\Autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2010-10-23 18:36:58 | 000,000,000 | RHSD | M] - F:\Autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2010-10-23 18:36:58 | 000,000,000 | RHSD | M] - G:\Autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2010-10-23 20:31:55 | 000,000,000 | ---D | C] -- C:\_OTL
[2010-10-23 18:50:11 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\rObO87\Pulpit\OTL.com
[2010-10-23 18:36:58 | 000,000,000 | RHSD | C] -- C:\Autorun.inf
[2010-10-23 12:34:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rObO87\Pulpit\Nowy folder
[2010-10-23 10:02:47 | 000,000,000 | ---D | C] -- C:\UsbFix
[2010-10-23 10:02:18 | 001,226,995 | ---- | C] (El Desaparecido & C_XX) -- C:\Documents and Settings\rObO87\Pulpit\UsbFix.exe
[2010-10-22 21:57:02 | 000,318,088 | ---- | C] (Symantec Corp.) -- C:\Documents and Settings\rObO87\Pulpit\Setup.exe
[2010-10-22 21:14:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rObO87\Pulpit\ArcaVirMicroScan
[2010-10-22 21:14:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rObO87\Dane aplikacji\ArcaVirMicroScan
[2010-10-22 21:14:39 | 000,258,640 | ---- | C] (ArcaBit) -- C:\Documents and Settings\rObO87\Pulpit\arcavirmicroscan.exe
[2010-10-22 13:59:32 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2010-10-08 22:46:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rObO87\Pulpit\kom
[2010-10-08 22:37:54 | 000,000,000 | R--D | C] -- C:\Documents and Settings\rObO87\Moje dokumenty\Moje wideo
[2010-10-08 22:36:52 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dllcache\usbser.sys
[2010-10-08 22:31:45 | 000,016,928 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\spmsgXP_2k3.dll
[2010-10-08 22:27:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rObO87\Dane aplikacji\PC Suite
[2010-10-08 22:27:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\rObO87\Dane aplikacji\Nokia
[2010-10-08 22:27:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite
[2010-10-08 22:27:14 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PCSuite
[2010-10-08 22:27:11 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nokia
[2010-10-08 22:27:03 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2010-10-08 22:27:01 | 000,018,816 | ---- | C] (Nokia) -- C:\windows\System32\drivers\pccsmcfd.sys
[2010-10-08 22:26:55 | 000,000,000 | ---D | C] -- C:\Program Files\PC Connectivity Solution
[2010-10-08 22:26:49 | 000,008,192 | ---- | C] (Nokia) -- C:\windows\System32\drivers\usbser_lowerfltj.sys
[2010-10-08 22:26:48 | 000,008,192 | ---- | C] (Nokia) -- C:\windows\System32\drivers\usbser_lowerflt.sys
[2010-10-08 22:26:47 | 000,022,528 | ---- | C] (Nokia) -- C:\windows\System32\drivers\ccdcmbo.sys
[2010-10-08 22:26:45 | 001,461,992 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\wdfcoinstaller01009.dll
[2010-10-08 22:26:45 | 000,662,016 | ---- | C] (Nokia) -- C:\windows\System32\nmwcdcocls.dll
[2010-10-08 22:26:45 | 000,018,176 | ---- | C] (Nokia) -- C:\windows\System32\drivers\ccdcmb.sys
[2010-10-08 22:26:33 | 000,092,672 | ---- | C] (Nokia) -- C:\windows\System32\nmwcdcls.dll
[2010-10-08 22:26:33 | 000,000,000 | ---D | C] -- C:\Program Files\Nokia
[2010-10-08 22:25:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2010-10-23 20:37:42 | 000,002,048 | --S- | M] () -- C:\windows\bootstat.dat
[2010-10-23 20:36:25 | 005,242,880 | -H-- | M] () -- C:\Documents and Settings\rObO87\NTUSER.DAT
[2010-10-23 20:36:25 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\rObO87\ntuser.ini
[2010-10-23 18:52:05 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\rObO87\Pulpit\OTL.com
[2010-10-23 18:36:58 | 000,011,596 | ---- | M] () -- C:\UsbFix_Upload_Me_TERMINATOR.zip
[2010-10-23 10:24:33 | 000,000,156 | ---- | M] () -- C:\windows\matlab.ini
[2010-10-23 10:02:26 | 001,226,995 | ---- | M] (El Desaparecido & C_XX) -- C:\Documents and Settings\rObO87\Pulpit\UsbFix.exe
[2010-10-22 21:58:53 | 000,178,440 | ---- | M] () -- C:\Documents and Settings\rObO87\Pulpit\activescan2_pl.exe
[2010-10-22 21:57:04 | 000,318,088 | ---- | M] (Symantec Corp.) -- C:\Documents and Settings\rObO87\Pulpit\Setup.exe
[2010-10-22 21:35:54 | 000,000,562 | ---- | M] () -- C:\Documents and Settings\rObO87\Pulpit\ArcaVirMicroScan.lnk
[2010-10-22 21:20:15 | 000,000,435 | ---- | M] () -- C:\windows\system.ini
[2010-10-22 21:20:15 | 000,000,021 | ---- | M] () -- C:\windows\win.ini
[2010-10-22 21:14:39 | 000,258,640 | ---- | M] (ArcaBit) -- C:\Documents and Settings\rObO87\Pulpit\arcavirmicroscan.exe
[2010-10-22 20:08:33 | 006,920,620 | -H-- | M] () -- C:\Documents and Settings\rObO87\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2010-10-22 17:46:17 | 000,198,713 | ---- | M] () -- C:\Documents and Settings\rObO87\Pulpit\fft.pdf
[2010-10-22 17:07:31 | 000,204,596 | ---- | M] () -- C:\Documents and Settings\rObO87\Pulpit\Wyklad_15_16_Matlab.pdf
[2010-10-22 13:59:25 | 002,672,312 | ---- | M] () -- C:\Documents and Settings\rObO87\Pulpit\esetsmartinstaller_plk.exe
[2010-10-22 12:15:06 | 000,000,447 | ---- | M] () -- C:\windows\System\CmiCnfg.ini
[2010-10-21 00:20:25 | 000,002,262 | ---- | M] () -- C:\windows\System32\wpa.dbl
[2010-10-18 14:02:28 | 000,084,992 | ---- | M] () -- C:\Documents and Settings\rObO87\Pulpit\plan zajęć.xls
[2010-10-17 14:18:09 | 000,000,883 | ---- | M] () -- C:\Documents and Settings\rObO87\.plugin140_03.trace
[2010-10-15 12:32:30 | 000,000,600 | ---- | M] () -- C:\Documents and Settings\rObO87\Dane aplikacji\winscp.rnd
[2010-10-14 22:55:05 | 000,000,718 | ---- | M] () -- C:\Documents and Settings\rObO87\Pulpit\semestr IX.lnk
[2010-10-08 22:37:59 | 000,763,990 | ---- | M] () -- C:\windows\System32\PerfStringBackup.INI
[2010-10-08 22:37:59 | 000,355,486 | ---- | M] () -- C:\windows\System32\perfh015.dat
[2010-10-08 22:37:59 | 000,311,604 | ---- | M] () -- C:\windows\System32\perfh009.dat
[2010-10-08 22:37:59 | 000,049,492 | ---- | M] () -- C:\windows\System32\perfc015.dat
[2010-10-08 22:37:59 | 000,039,992 | ---- | M] () -- C:\windows\System32\perfc009.dat
[2010-10-08 22:31:49 | 000,000,000 | -H-- | M] () -- C:\windows\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2010-10-08 22:31:49 | 000,000,000 | -H-- | M] () -- C:\windows\System32\drivers\Msft_Kernel_ccdcmb_01009.Wdf
[2010-09-30 11:47:43 | 000,070,144 | ---- | M] () -- C:\Documents and Settings\rObO87\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2010-10-23 10:08:35 | 000,011,596 | ---- | C] () -- C:\UsbFix_Upload_Me_TERMINATOR.zip
[2010-10-22 21:58:53 | 000,178,440 | ---- | C] () -- C:\Documents and Settings\rObO87\Pulpit\activescan2_pl.exe
[2010-10-22 21:35:54 | 000,000,562 | ---- | C] () -- C:\Documents and Settings\rObO87\Pulpit\ArcaVirMicroScan.lnk
[2010-10-22 17:46:17 | 000,198,713 | ---- | C] () -- C:\Documents and Settings\rObO87\Pulpit\fft.pdf
[2010-10-22 17:07:31 | 000,204,596 | ---- | C] () -- C:\Documents and Settings\rObO87\Pulpit\Wyklad_15_16_Matlab.pdf
[2010-10-22 13:58:34 | 002,672,312 | ---- | C] () -- C:\Documents and Settings\rObO87\Pulpit\esetsmartinstaller_plk.exe
[2010-10-14 22:55:05 | 000,000,718 | ---- | C] () -- C:\Documents and Settings\rObO87\Pulpit\semestr IX.lnk
[2010-10-14 22:47:44 | 000,084,992 | ---- | C] () -- C:\Documents and Settings\rObO87\Pulpit\plan zajęć.xls
[2010-10-08 22:31:49 | 000,000,000 | -H-- | C] () -- C:\windows\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf
[2010-10-08 22:31:49 | 000,000,000 | -H-- | C] () -- C:\windows\System32\drivers\Msft_Kernel_ccdcmb_01009.Wdf
[2010-01-28 20:33:35 | 000,210,032 | ---- | C] () -- C:\windows\System32\DBCLIENT.DLL
[2010-01-08 18:08:48 | 000,028,672 | R--- | C] () -- C:\windows\System32\cmirmdrv.dll
[2010-01-08 18:08:39 | 000,000,736 | ---- | C] () -- C:\windows\setup.ini
[2010-01-08 18:08:39 | 000,000,092 | ---- | C] () -- C:\windows\CMISETUP.INI
[2010-01-08 18:08:39 | 000,000,026 | ---- | C] () -- C:\windows\CMCDPLAY.INI
[2010-01-08 18:08:33 | 000,000,000 | ---- | C] () -- C:\windows\Wininit.ini
[2010-01-08 18:08:26 | 000,028,672 | ---- | C] () -- C:\windows\CMIRmDriver.dll
[2009-12-10 21:16:52 | 000,009,136 | ---- | C] () -- C:\windows\System32\INETWH16.DLL
[2009-12-10 21:15:43 | 000,000,383 | ---- | C] () -- C:\windows\System32\haspdos.sys
[2009-01-17 15:04:33 | 000,000,118 | ---- | C] () -- C:\windows\ConverterCore.INI
[2009-01-17 15:01:44 | 000,021,240 | ---- | C] () -- C:\windows\System32\solidlocalmon.dll
[2009-01-17 15:01:44 | 000,013,568 | ---- | C] () -- C:\windows\System32\solidlocalui.dll
[2009-01-01 23:36:54 | 000,000,000 | ---- | C] () -- C:\windows\oodcnt.INI
[2008-12-06 21:06:16 | 000,004,994 | ---- | C] () -- C:\windows\MC9DEMO.INI
[2008-12-06 01:29:31 | 000,000,600 | ---- | C] () -- C:\Documents and Settings\rObO87\Dane aplikacji\winscp.rnd
[2008-10-18 21:30:19 | 000,000,432 | ---- | C] () -- C:\windows\System32\iolo.ini
[2008-10-18 21:26:48 | 000,126,976 | ---- | C] () -- C:\windows\System32\iavlsp.dll
[2008-10-18 21:25:39 | 000,074,703 | ---- | C] () -- C:\windows\System32\mfc45.dll
[2008-10-11 22:30:22 | 000,000,267 | ---- | C] () -- C:\windows\game.ini
[2008-10-11 20:44:35 | 000,000,156 | ---- | C] () -- C:\windows\matlab.ini
[2008-10-11 20:22:36 | 000,717,296 | ---- | C] () -- C:\windows\System32\drivers\sptd.sys
[2008-10-11 20:15:49 | 000,007,680 | ---- | C] () -- C:\windows\System32\ff_vfw.dll
[2008-10-11 20:15:49 | 000,000,547 | ---- | C] () -- C:\windows\System32\ff_vfw.dll.manifest
[2008-10-05 11:05:32 | 000,000,069 | ---- | C] () -- C:\windows\NeroDigital.ini
[2008-10-03 23:19:59 | 000,000,154 | ---- | C] () -- C:\windows\adidsl.ini
[2008-10-03 23:19:59 | 000,000,021 | ---- | C] () -- C:\windows\Fast800.ini
[2008-10-03 23:19:57 | 000,000,342 | ---- | C] () -- C:\windows\adiras.ini
[2008-10-03 23:19:56 | 000,126,976 | ---- | C] () -- C:\windows\System32\coclassfast.dll
[2008-10-03 23:19:56 | 000,046,892 | ---- | C] () -- C:\windows\System32\adadix16.dll
[2008-10-03 23:19:31 | 000,041,068 | ---- | C] () -- C:\windows\System32\ActPanel.dll
[2008-10-03 21:27:27 | 000,070,144 | ---- | C] () -- C:\Documents and Settings\rObO87\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008-10-03 20:30:54 | 000,003,494 | ---- | C] () -- C:\windows\Ascd_tmp.ini
[2008-10-03 20:30:51 | 000,005,824 | ---- | C] () -- C:\windows\System32\drivers\ASUSHWIO.SYS
[2008-10-03 20:30:30 | 000,763,990 | ---- | C] () -- C:\windows\System32\PerfStringBackup.INI
[2008-10-03 20:30:29 | 000,004,293 | ---- | C] () -- C:\windows\ODBCINST.INI
[2008-10-03 20:30:09 | 000,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini
[2008-10-03 20:14:17 | 000,045,488 | ---- | C] () -- C:\Documents and Settings\rObO87\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2008-10-03 20:08:54 | 000,186,368 | ---- | C] () -- C:\windows\System32\encdec.dll
[2008-10-03 20:08:54 | 000,081,920 | ---- | C] () -- C:\windows\System32\ieencode.dll
[2008-10-03 20:08:52 | 000,270,848 | ---- | C] () -- C:\windows\System32\sbe.dll
[2008-10-03 19:42:24 | 006,920,620 | -H-- | C] () -- C:\Documents and Settings\rObO87\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2008-10-03 19:36:58 | 000,000,062 | -HS- | C] () -- C:\Documents and Settings\rObO87\Dane aplikacji\desktop.ini
[2008-10-03 19:32:31 | 000,000,000 | ---- | C] () -- C:\windows\control.ini
[2008-10-03 19:30:04 | 000,000,037 | ---- | C] () -- C:\windows\vbaddin.ini
[2008-10-03 19:30:04 | 000,000,036 | ---- | C] () -- C:\windows\vb.ini
[2008-10-03 19:29:28 | 000,026,717 | ---- | C] () -- C:\windows\System32\tslabels.ini
[2008-10-03 19:29:26 | 000,003,813 | ---- | C] () -- C:\windows\System32\msdtcprf.ini
[2007-07-23 10:03:32 | 000,053,248 | ---- | C] () -- C:\windows\System32\AgCPanelTraditionalChinese.dll
[2007-07-23 10:03:32 | 000,053,248 | ---- | C] () -- C:\windows\System32\AgCPanelSwedish.dll
[2007-07-23 10:03:32 | 000,053,248 | ---- | C] () -- C:\windows\System32\AgCPanelSpanish.dll
[2007-07-23 10:03:30 | 000,053,248 | ---- | C] () -- C:\windows\System32\AgCPanelSimplifiedChinese.dll
[2007-07-23 10:03:30 | 000,053,248 | ---- | C] () -- C:\windows\System32\AgCPanelPortugese.dll
[2007-07-23 10:03:30 | 000,053,248 | ---- | C] () -- C:\windows\System32\AgCPanelKorean.dll
[2007-07-23 10:03:30 | 000,053,248 | ---- | C] () -- C:\windows\System32\AgCPanelJapanese.dll
[2007-07-23 10:03:30 | 000,053,248 | ---- | C] () -- C:\windows\System32\AgCPanelGerman.dll
[2007-07-23 10:03:30 | 000,053,248 | ---- | C] () -- C:\windows\System32\AgCPanelFrench.dll
[2001-12-16 19:03:24 | 000,049,152 | ---- | C] () -- C:\windows\System32\oodagrs.dll
[2001-11-24 14:15:28 | 000,016,384 | ---- | C] () -- C:\windows\System32\oodagmg.dll
[2001-10-26 19:29:42 | 000,157,696 | ---- | C] () -- C:\windows\System32\paqsp.dll
[2001-10-26 19:29:40 | 000,010,240 | ---- | C] () -- C:\windows\System32\scriptpw.dll
[2001-10-26 19:29:36 | 000,014,336 | ---- | C] () -- C:\windows\System32\msdmo.dll
[2001-10-26 19:29:32 | 000,199,168 | ---- | C] () -- C:\windows\System32\ir32_32.dll
[2001-10-26 19:29:26 | 000,253,440 | ---- | C] () -- C:\windows\System32\compatui.dll
[2001-10-26 19:29:26 | 000,070,656 | ---- | C] () -- C:\windows\System32\amstream.dll
[2001-10-26 19:28:44 | 000,733,696 | ---- | C] () -- C:\windows\System32\qedwipes.dll
[2001-10-26 19:28:34 | 000,094,282 | ---- | C] () -- C:\windows\System32\msencode.dll
[2001-10-26 19:27:02 | 000,015,360 | ---- | C] () -- C:\windows\System32\tsd32.dll
[2001-10-26 18:21:06 | 000,033,936 | ---- | C] () -- C:\windows\System32\ntio.sys
[2001-10-26 18:15:04 | 000,027,898 | ---- | C] () -- C:\windows\System32\ntdos.sys
[2001-10-26 18:14:52 | 000,004,976 | ---- | C] () -- C:\windows\System32\himem.sys
[2001-10-26 18:14:32 | 000,009,043 | ---- | C] () -- C:\windows\System32\ansi.sys
[2001-10-26 18:12:52 | 000,000,359 | ---- | C] () -- C:\windows\System32\prodspec.ini
[2001-10-26 17:45:26 | 000,016,024 | ---- | C] () -- C:\windows\System32\rsvp.ini
[2001-10-26 17:45:26 | 000,006,074 | ---- | C] () -- C:\windows\System32\rasctrs.ini
[2001-10-26 17:45:24 | 000,013,819 | ---- | C] () -- C:\windows\System32\pschdprf.ini
[2001-10-26 17:42:08 | 000,020,629 | ---- | C] () -- C:\windows\System32\mqperf.ini
[2001-10-26 17:42:08 | 000,002,992 | ---- | C] () -- C:\windows\System32\perfci.ini
[2001-10-26 17:42:08 | 000,002,890 | ---- | C] () -- C:\windows\System32\perfwci.ini
[2001-10-26 17:42:08 | 000,001,295 | ---- | C] () -- C:\windows\System32\perffilt.ini
[2001-08-17 23:31:56 | 000,042,809 | ---- | C] () -- C:\windows\System32\key01.sys
[2001-08-17 23:31:56 | 000,027,097 | ---- | C] () -- C:\windows\System32\country.sys
[2001-08-17 23:31:54 | 000,042,537 | ---- | C] () -- C:\windows\System32\keyboard.sys
[2001-08-17 23:31:50 | 000,029,274 | ---- | C] () -- C:\windows\System32\ntdos412.sys
[2001-08-17 23:31:46 | 000,029,370 | ---- | C] () -- C:\windows\System32\ntdos411.sys
[2001-08-17 23:31:46 | 000,029,146 | ---- | C] () -- C:\windows\System32\ntdos404.sys
[2001-08-17 23:31:44 | 000,029,146 | ---- | C] () -- C:\windows\System32\ntdos804.sys
[2001-08-17 23:31:38 | 000,035,648 | ---- | C] () -- C:\windows\System32\ntio411.sys
[2001-08-17 23:31:38 | 000,035,424 | ---- | C] () -- C:\windows\System32\ntio412.sys
[2001-08-17 23:31:36 | 000,034,560 | ---- | C] () -- C:\windows\System32\ntio804.sys
[2001-08-17 23:31:36 | 000,034,560 | ---- | C] () -- C:\windows\System32\ntio404.sys
[2001-08-17 23:13:24 | 000,002,656 | ---- | C] () -- C:\windows\System32\netware.drv
[2001-08-17 21:55:06 | 001,015,477 | ---- | C] () -- C:\windows\System32\esentprf.ini
[2001-07-22 05:43:48 | 000,053,478 | ---- | C] () -- C:\windows\System32\tcpmon.ini
[2001-07-22 04:25:18 | 000,001,405 | ---- | C] () -- C:\windows\msdfmap.ini
[2001-07-22 00:16:20 | 000,000,021 | ---- | C] () -- C:\windows\win.ini
[2001-07-22 00:15:52 | 000,000,435 | ---- | C] () -- C:\windows\system.ini
[2001-07-22 00:15:50 | 000,013,312 | ---- | C] () -- C:\windows\System32\win87em.dll
[color=#E56717]========== LOP Check ==========[/color]
[2009-12-13 03:08:09 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\CanonBJ
[2010-10-08 22:25:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations
[2008-10-18 21:57:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\iolo
[2010-10-08 22:27:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite
[2008-12-21 17:24:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\sentinel
[2009-01-17 15:01:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\SolidDocuments
[2008-11-29 23:11:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Teleca
[2010-06-17 12:01:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2008-12-26 18:03:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Test Drive Unlimited
[2008-10-18 21:26:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\iolo
[2008-11-29 21:19:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rObO87\Dane aplikacji\ArcaBit
[2009-09-26 22:21:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rObO87\Dane aplikacji\ArcaMicroScan
[2010-10-22 21:36:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rObO87\Dane aplikacji\ArcaVirMicroScan
[2010-10-22 23:26:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rObO87\Dane aplikacji\Canon
[2009-03-08 02:29:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rObO87\Dane aplikacji\Desktop Sidebar
[2008-10-03 23:28:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rObO87\Dane aplikacji\Gadu-Gadu
[2008-10-18 21:31:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rObO87\Dane aplikacji\iolo
[2008-10-11 20:11:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rObO87\Dane aplikacji\IrfanView
[2008-10-11 19:56:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rObO87\Dane aplikacji\Ldoce
[2010-10-08 22:27:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rObO87\Dane aplikacji\Nokia
[2010-10-08 22:36:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rObO87\Dane aplikacji\PC Suite
[2010-10-22 23:31:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rObO87\Dane aplikacji\SolidDocuments
[2008-11-30 00:02:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\rObO87\Dane aplikacji\Teleca
[color=#E56717]========== Purity Check ==========[/color]
[color=#E56717]========== Alternate Data Streams ==========[/color]
@Alternate Data Stream - 99 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:A5F110B3
@Alternate Data Stream - 144 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:05EE1EEF
< End of report >
Niestety nadal wyświetla się to okienko z likiem eplock i nadal próbuje się włączyc jakiś skrypt, mulący tę stronę.
Laptop:
Intel Core2 Duo: T5750 2.0 GHz, nVidia GeForce 9300M G, 4 x 1024 Mb DDR2 667 MHz, HDD 320 Gb Serial ATA, combo Blu-ray ROM + DVD+/-RW DL, Windows Vista Home Premium
Intel Core2 Duo: T5750 2.0 GHz, nVidia GeForce 9300M G, 4 x 1024 Mb DDR2 667 MHz, HDD 320 Gb Serial ATA, combo Blu-ray ROM + DVD+/-RW DL, Windows Vista Home Premium
#12
- Początkujący Uczestnik
-
- Grupa: Czytelnicy
- Postów 262
- Rejestracja: 07-czerwiec 09
Napisano 23 październik 2010, 21:09
Cytat
Btw czasami strona z tym tematem strasznie długo się ładuje i czasem FF wywala komunikat czy przerwać działanie jakiegoś skryptu.
U mnie jest to samo, to chyba jakiś problem leżący po stronie forum.
W OTL wklej:
Cytat
:OTL
:Reg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\
FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\iolo\System Mechanic Professional\Personal Firewall\ioloFW.exe"=-
"C:\Program Files\iolo\System Mechanic Professional\AntiVirus\ioloAV.exe"=-
"C:\Program Files\iolo\System Mechanic Professional\AntiVirus\iAVEmailScanner.exe"=-
"C:\WINDOWS\system32\idpnwo.exe"=-
"D:\CoD5\Call of Duty - World at War\CoDWaW.exe"=-
"D:\CoD5\Call of Duty - World at War\CoDWaWmp.exe"=-
:Reg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\
FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\iolo\System Mechanic Professional\Personal Firewall\ioloFW.exe"=-
"C:\Program Files\iolo\System Mechanic Professional\AntiVirus\ioloAV.exe"=-
"C:\Program Files\iolo\System Mechanic Professional\AntiVirus\iAVEmailScanner.exe"=-
"C:\WINDOWS\system32\idpnwo.exe"=-
"D:\CoD5\Call of Duty - World at War\CoDWaW.exe"=-
"D:\CoD5\Call of Duty - World at War\CoDWaWmp.exe"=-
Klikasz Wykonaj skrypt, później Sprzątanie
Przeczyść dysk oraz rejestr CCleaner
Wykonaj pełne skanowanie Malwarebytes' Anti-Malware - jeśli coś znajdzie usuń i daj raport
Zainstaluj SP3 -> http://www.instalki....ice_Pack_3.html
Zaktualizuj IE do najnowszej wersji (nawet jeśli go nie używasz) -> http://www.instalki....lorer_8_XP.html
Zaktualizuj Firefoksa do najnowszej wersji (Firefox -> Pomoc -> Sprawdź dostępność aktualizacji...)
Odinstaluj starą wersję Javy:
Cytat
Java 2 Runtime Environment, SE v1.4.0_03
i zainstaluj najnowszą -> http://www.instalki....28JRE%29_6.html
Widzę, że posiadasz dwa antywirusy: Authentium AntiVirus oraz Pandę. Pozbądź się jednego z nich.
#13
- Uczestnik
-
- Grupa: Czytelnicy
- Postów 670
- Rejestracja: 07-styczeń 04
Napisano 23 październik 2010, 21:23
Aktualnie jaka diagnoza - poważny syf mam? Jedyna niedogodność, to to okienko z linkiem do eplock coś tam. Za bardzo już czasu na dłubanie nie mam, więc nic nie będzie jak to zostawię na parę dni? W SP3 się nie będę bawił, do końca roku reinstalka będzie na pewno.
Laptop:
Intel Core2 Duo: T5750 2.0 GHz, nVidia GeForce 9300M G, 4 x 1024 Mb DDR2 667 MHz, HDD 320 Gb Serial ATA, combo Blu-ray ROM + DVD+/-RW DL, Windows Vista Home Premium
Intel Core2 Duo: T5750 2.0 GHz, nVidia GeForce 9300M G, 4 x 1024 Mb DDR2 667 MHz, HDD 320 Gb Serial ATA, combo Blu-ray ROM + DVD+/-RW DL, Windows Vista Home Premium
#15
- Uczestnik
-
- Grupa: Czytelnicy
- Postów 670
- Rejestracja: 07-styczeń 04
Napisano 23 październik 2010, 22:12
Nie skanowałem. Więc jak z ta diagnozą? 
Laptop:
Intel Core2 Duo: T5750 2.0 GHz, nVidia GeForce 9300M G, 4 x 1024 Mb DDR2 667 MHz, HDD 320 Gb Serial ATA, combo Blu-ray ROM + DVD+/-RW DL, Windows Vista Home Premium
Intel Core2 Duo: T5750 2.0 GHz, nVidia GeForce 9300M G, 4 x 1024 Mb DDR2 667 MHz, HDD 320 Gb Serial ATA, combo Blu-ray ROM + DVD+/-RW DL, Windows Vista Home Premium
#17
- Uczestnik
-
- Grupa: Czytelnicy
- Postów 670
- Rejestracja: 07-styczeń 04
Napisano 24 październik 2010, 11:15
Malwarebytes' Anti-Malware wykrył jakiś syf i go usunął:
Aczkolwiek są jeszcze procesy, które wydają mi się podejrzane (oznaczone kropeczką) -> http://img541.images...beztytuuqsv.png
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org
Wersja bazy: 4052
Windows 5.1.2600 Dodatek Service Pack 2
Internet Explorer 6.0.2900.2180
2010-10-24 11:36:47
mbam-log-2010-10-24 (11-36-47).txt
Typ skanowania: Szybkie skanowanie
Przeskanowano obiektów: 125188
Upłynęło: 6 minut(y), 11 sekund(y)
Zainfekowanych procesów w pamięci: 0
Zainfekowanych modułów w pamięci: 0
Zainfekowanych kluczy rejestru: 4
Zainfekowanych wartości rejestru: 0
Zainfekowane informacje rejestru systemowego: 2
Zainfekowanych folderów: 0
Zainfekowanych plików: 8
Zainfekowanych procesów w pamięci:
(Nie znaleziono zagrożeń)
Zainfekowanych modułów w pamięci:
(Nie znaleziono zagrożeń)
Zainfekowanych kluczy rejestru:
HKEY_CLASSES_ROOT\CLSID\{c5f43bef-ce2f-afe6-46d8-a647bacd1f09} (Spyware.OnlineGames) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\videosoft (Trojan.DNSChanger) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\{NSINAME} (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\msqpdxserv.sys (Trojan.Agent) -> Quarantined and deleted successfully.
Zainfekowanych wartości rejestru:
(Nie znaleziono zagrożeń)
Zainfekowane informacje rejestru systemowego:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\
Start_ShowMyComputer (Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\NameServer (Trojan.DNSChanger) -> Data: 85.255.116.122,85.255.112.79 -> Quarantined and deleted successfully.
Zainfekowanych folderów:
(Nie znaleziono zagrożeń)
Zainfekowanych plików:
C:\WINDOWS\system32\msqpdxbiwsuhil.dll (Rootkit.TDSS) -> Delete on reboot.
C:\WINDOWS\system32\drivers\msqpdxkmttjlal.sys (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\msqpdxlqgoeypd.sys (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\msqpdxnrevdppk.sys (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\msqpdxroeuhymi.sys (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\msqpdxtpklvvrw.sys (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\msqpdxwrtlwxyp.sys (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\msqpdxxuwbargi.sys (Trojan.Agent) -> Quarantined and deleted successfully.
Aczkolwiek są jeszcze procesy, które wydają mi się podejrzane (oznaczone kropeczką) -> http://img541.images...beztytuuqsv.png
Laptop:
Intel Core2 Duo: T5750 2.0 GHz, nVidia GeForce 9300M G, 4 x 1024 Mb DDR2 667 MHz, HDD 320 Gb Serial ATA, combo Blu-ray ROM + DVD+/-RW DL, Windows Vista Home Premium
Intel Core2 Duo: T5750 2.0 GHz, nVidia GeForce 9300M G, 4 x 1024 Mb DDR2 667 MHz, HDD 320 Gb Serial ATA, combo Blu-ray ROM + DVD+/-RW DL, Windows Vista Home Premium
#19
- Uczestnik
-
- Grupa: Czytelnicy
- Postów 670
- Rejestracja: 07-styczeń 04
Napisano 24 październik 2010, 12:13
Czyli jeszcze jest podejrzenie syfu na dysku? 
To okienko z eplock się już nie otwiera w każdym razie.
To okienko z eplock się już nie otwiera w każdym razie.
Laptop:
Intel Core2 Duo: T5750 2.0 GHz, nVidia GeForce 9300M G, 4 x 1024 Mb DDR2 667 MHz, HDD 320 Gb Serial ATA, combo Blu-ray ROM + DVD+/-RW DL, Windows Vista Home Premium
Intel Core2 Duo: T5750 2.0 GHz, nVidia GeForce 9300M G, 4 x 1024 Mb DDR2 667 MHz, HDD 320 Gb Serial ATA, combo Blu-ray ROM + DVD+/-RW DL, Windows Vista Home Premium
Strona 1 z 1
- Nie możesz napisać tematu
- Dodaj odpowiedź
Szybka odpowiedź
Użytkownicy przeglądający ten temat: 1
0 użytkowników, 1 gości, 0 anonimowych
Zmień widoczność shoutboxa Shoutbox
|
od kiedy go dali, to zaczęło się walić..
no, jak przestałem kupować Eksperta to wzięli i wstrzymali ;| także nie mam tylko numeru pierwszego i ostatniego :p trochę szkoda, parę lat się było...
