Gry się wyłaczają

**Posty:** 190 · przez **servitor** 05 Cze 2009, 00:26

Witam. Mam problem w grach. Mianowicie kazda wylacza sie po jakims czasie grania. Wystepuje problem z aplikacja i po zabawie. Dodam, ze wczoraj proces svchost.exe zabieral mi 50% procka, wylaczylem go i wowczas na starcie kazda gra wylaczala sie od razu, wiec mysle, ze to moze byc od tego.

Kod: Zaznacz wszystko: Logfile of random's system information tool 1.06 (written by random/random) Run by rudy at 2009-06-05 00:22:18 Microsoft Windows XP Home Edition Dodatek Service Pack 3 System drive D: has 6 GB (31%) free of 20 GB Total RAM: 3327 MB (79% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 00:22:21, on 2009-06-05 Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18372) Boot mode: Normal Running processes: D:\WINDOWS\System32\smss.exe D:\WINDOWS\system32\winlogon.exe D:\WINDOWS\system32\services.exe D:\WINDOWS\system32\lsass.exe D:\WINDOWS\system32\Ati2evxx.exe D:\WINDOWS\system32\svchost.exe D:\WINDOWS\System32\svchost.exe D:\WINDOWS\system32\Ati2evxx.exe D:\WINDOWS\system32\spoolsv.exe D:\WINDOWS\Explorer.EXE D:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe D:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe D:\Program Files\Razer\Diamondback 3G\razerhid.exe D:\Program Files\PowerISO\PWRISOVM.EXE D:\Program Files\Java\jre6\bin\jusched.exe D:\WINDOWS\system32\ctfmon.exe D:\Program Files\DAEMON Tools Pro\DTProAgent.exe D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe D:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe D:\WINDOWS\system32\CTsvcCDA.exe D:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe D:\Program Files\Java\jre6\bin\jqs.exe D:\WINDOWS\system32\PnkBstrA.exe D:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe D:\WINDOWS\system32\svchost.exe D:\Program Files\Razer\Diamondback 3G\razertra.exe D:\Program Files\Razer\Diamondback 3G\razerofa.exe D:\Program Files\Konnekt\konnekt.exe D:\Program Files\SpeedFan\speedfan.exe D:\Program Files\Last.fm\LastFM.exe D:\Program Files\uTorrent\uTorrent.exe D:\WINDOWS\system32\taskmgr.exe D:\Program Files\Mozilla Firefox\firefox.exe D:\Program Files\foobar2000\foobar2000.exe C:\po formacie\RSIT.exe D:\Program Files\Trend Micro\HijackThis\rudy.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - D:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O4 - HKLM\..\Run: [CTSysVol] D:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe /r O4 - HKLM\..\Run: [egui] "D:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice O4 - HKLM\..\Run: [Diamondback] D:\Program Files\Razer\Diamondback 3G\razerhid.exe O4 - HKLM\..\Run: [PWRISOVM.EXE] D:\Program Files\PowerISO\PWRISOVM.EXE O4 - HKLM\..\Run: [SunJavaUpdateSched] "D:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKLM\..\Run: [StartCCC] "D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "D:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKCU\..\Run: [ctfmon.exe] D:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "D:\Program Files\DAEMON Tools Pro\DTProAgent.exe" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA LOKALNA') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA SIECIOWA') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O9 - Extra button: Utwórz Ulubione dla urządzenia przenośnego - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - D:\Program Files\Microsoft ActiveSync\inetrepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - D:\Program Files\Microsoft ActiveSync\inetrepl.dll O9 - Extra 'Tools' menuitem: Utwórz Ulubione dla urządzenia przenośnego... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - D:\Program Files\Microsoft ActiveSync\inetrepl.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} (MksSkanerOnline Class) - http://www.mks.com.pl/skaner/SkanerOnline.cab O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwareupdate/su2/ocx/15108/CTPID.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - D:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: AODService - Unknown owner - D:\Program Files\AMD\OverDrive\AODAssist.exe O23 - Service: Apple Mobile Device - Apple Inc. - D:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - D:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - D:\WINDOWS\system32\ati2sgag.exe O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - D:\WINDOWS\system32\CTsvcCDA.exe O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - D:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe O23 - Service: Eset Service (ekrn) - ESET - D:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - D:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - D:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: lxcg_device - - D:\WINDOWS\system32\lxcgcoms.exe O23 - Service: PnkBstrA - Unknown owner - D:\WINDOWS\system32\PnkBstrA.exe -- End of file - 6336 bytes ======Scheduled tasks folder====== D:\WINDOWS\tasks\AppleSoftwareUpdate.job D:\WINDOWS\tasks\User_Feed_Synchronization-{E21E181D-19D3-4C03-9BBB-70825C13D688}.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}] Adobe PDF Reader Link Helper - D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - D:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-03-09 35840] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - D:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-03-09 73728] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "CTSysVol"=D:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe [2005-10-31 57344] "egui"=D:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2008-02-20 1443072] "Diamondback"=D:\Program Files\Razer\Diamondback 3G\razerhid.exe [2007-08-01 147456] "PWRISOVM.EXE"=D:\Program Files\PowerISO\PWRISOVM.EXE [2008-11-02 167936] "SunJavaUpdateSched"=D:\Program Files\Java\jre6\bin\jusched.exe [2009-03-09 148888] "StartCCC"=D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-03-17 61440] "Adobe Reader Speed Launcher"=D:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"=D:\WINDOWS\system32\ctfmon.exe [2008-04-15 15360] "DAEMON Tools Pro Agent"=D:\Program Files\DAEMON Tools Pro\DTProAgent.exe [2007-09-06 136136] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] D:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EA Core] D:\Program Files\Electronic Arts\EADM\Core.exe [2009-02-06 3325952] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EzPrint] D:\Program Files\Lexmark 2300 Series\ezprint.exe [2005-08-01 94208] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GDR driver] gdrhost.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\H/PC Connection Agent] D:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE [2005-01-19 405583] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IPLA!] D:\Program Files\ipla\ipla.exe [2009-05-12 3955096] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Konnekt] D:\Program Files\Konnekt\konnekt.exe [2005-05-24 503808] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lxcgmon.exe] D:\Program Files\Lexmark 2300 Series\lxcgmon.exe [2005-07-21 200704] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS] D:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Octoshape Streaming Services] D:\Documents and Settings\rudy\Dane aplikacji\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe [2009-01-08 70936] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\P17Helper] Rundll32 P17.dll,P17Helper [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RGSC] C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe [2008-12-15 306088] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite] D:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2005-10-26 159744] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UUSEE] D:\Program Files\Common Files\uusee\UUSeeMediaCenter.exe [2009-02-12 836936] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\D:^Documents and Settings^All Users^Menu Start^Programy^Autostart^DSLMON.lnk] D:\PROGRA~1\SAGEM\SAGEMF~1\dslmon.exe [2004-07-28 962661] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\D:^Documents and Settings^rudy^Menu Start^Programy^Autostart^OpenOffice.org 3.0.lnk] D:\PROGRA~1\OPENOF~1.ORG\program\QUICKS~1.EXE [2008-09-12 384000] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "iPod Service"=3 "Bonjour Service"=2 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent] D:\WINDOWS\system32\Ati2evxx.dll [2009-03-16 155648] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - D:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "D:\Program Files\Konnekt\konnekt.exe"="D:\Program Files\Konnekt\konnekt.exe:*:Enabled:Konnekt - Core" "D:\Program Files\uTorrent\uTorrent.exe"="D:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent" "C:\Program Files\Electronic Arts\Burnout(TM) Paradise The Ultimate Box\BurnoutLauncher.exe"="C:\Program Files\Electronic Arts\Burnout(TM) Paradise The Ultimate Box\BurnoutLauncher.exe:*:Enabled:Burnout(TM) Paradise The Ultimate Box" "C:\Program Files\Electronic Arts\Burnout(TM) Paradise The Ultimate Box\BurnoutConfigTool.exe"="C:\Program Files\Electronic Arts\Burnout(TM) Paradise The Ultimate Box\BurnoutConfigTool.exe:*:Enabled:Burnout(TM) Paradise The Ultimate Box" "C:\Program Files\Electronic Arts\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe"="C:\Program Files\Electronic Arts\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe:*:Enabled:Burnout(TM) Paradise The Ultimate Box" "D:\Program Files\Electronic Arts\EADM\Core.exe"="D:\Program Files\Electronic Arts\EADM\Core.exe:*:Enabled:EA Download Manager" "D:\Program Files\Bonjour\mDNSResponder.exe"="D:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour" "D:\Program Files\iTunes\iTunes.exe"="D:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes" "E:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe"="E:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM) " "D:\Program Files\SopCast\adv\SopAdver.exe"="D:\Program Files\SopCast\adv\SopAdver.exe:*:Enabled:SopCast Adver" "D:\Program Files\SopCast\SopCast.exe"="D:\Program Files\SopCast\SopCast.exe:*:Enabled:SopCast Main Application" "C:\The.Club.Sega.PC-Game.Multi-4.Full-Rip.Skullptura\The.Club.Sega.PC-Game.Multi-4.Full-Rip.Skullptura\The Club\TheClub.exe"="C:\The.Club.Sega.PC-Game.Multi-4.Full-Rip.Skullptura\The.Club.Sega.PC-Game.Multi-4.Full-Rip.Skullptura\The Club\TheClub.exe:*:Enabled:The Club" "E:\movies\Left.4.Dead.Full-Rip.Skullptura\Left.4.Dead.Full-Rip.Skullptura\Left 4 Dead\left4dead.exe"="E:\movies\Left.4.Dead.Full-Rip.Skullptura\Left.4.Dead.Full-Rip.Skullptura\Left 4 Dead\left4dead.exe:*:Enabled:left4dead" "D:\Program Files\Microsoft ActiveSync\wcescomm.exe"="D:\Program Files\Microsoft ActiveSync\wcescomm.exe:*:Enabled:ActiveSync Connection Manager" "D:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="D:\Program Files\Microsoft ActiveSync\WCESMgr.exe:*:Enabled:ActiveSync Application" "C:\Program Files\Electronic Arts\Crytek\Crysis\Bin32\Crysis.exe"="C:\Program Files\Electronic Arts\Crytek\Crysis\Bin32\Crysis.exe:*:Enabled:Crysis_32" "C:\Program Files\Electronic Arts\Crytek\Crysis\Bin32\CrysisDedicatedServer.exe"="C:\Program Files\Electronic Arts\Crytek\Crysis\Bin32\CrysisDedicatedServer.exe:*:Enabled:CrysisDedicatedServer_32" "D:\WINDOWS\system32\PnkBstrA.exe"="D:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA" "D:\WINDOWS\system32\PnkBstrB.exe"="D:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB" "C:\Program Files\Eidos\Kane and Lynch Dead Men\kaneandlynch.exe"="C:\Program Files\Eidos\Kane and Lynch Dead Men\kaneandlynch.exe:*:Enabled:Kane & Lynch: Dead Men" "C:\Program Files\Ubisoft Entertainment\Wheelman\Binaries\WheelmanGame-Final.exe"="C:\Program Files\Ubisoft Entertainment\Wheelman\Binaries\WheelmanGame-Final.exe:*:Enabled:Wheelman" "C:\Program Files\Eidos\Conflict Denied Ops\ConflictDeniedOps.exe"="C:\Program Files\Eidos\Conflict Denied Ops\ConflictDeniedOps.exe:*:Enabled:Conflict: Denied Ops" "C:\Program Files\Atari\Test Drive Unlimited\TestDriveUnlimited.exe"="C:\Program Files\Atari\Test Drive Unlimited\TestDriveUnlimited.exe:*:Enabled:Test Drive Unlimited" "C:\Program Files\Ubisoft\Tom Clancy's H.A.W.X\HAWX.exe"="C:\Program Files\Ubisoft\Tom Clancy's H.A.W.X\HAWX.exe:*:Enabled:Tom Clancy's H.A.W.X" "C:\Program Files\Ubisoft\Tom Clancy's H.A.W.X\HAWX_dx10.exe"="C:\Program Files\Ubisoft\Tom Clancy's H.A.W.X\HAWX_dx10.exe:*:Enabled:Tom Clancy's H.A.W.X" "D:\Program Files\uusee\UUSeePlayer.exe"="D:\Program Files\uusee\UUSeePlayer.exe:*:Enabled:UUPlayer" "D:\Program Files\Common Files\uusee\UUSeeMediaCenter.exe"="D:\Program Files\Common Files\uusee\UUSeeMediaCenter.exe:*:Disabled:MediaCenter" "D:\Program Files\Skype\Phone\Skype.exe"="D:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype" "C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe"="C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:*:Enabled:Rockstar Games Social Club" "C:\Program Files\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe"="C:\Program Files\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe:*:Enabled:Grand Theft Auto IV" "C:\Program Files\Rockstar Games\Grand Theft Auto IV\GTAIV.exe"="C:\Program Files\Rockstar Games\Grand Theft Auto IV\GTAIV.exe:*:Enabled:Grand Theft Auto IV" "D:\Program Files\TVAnts\Tvants.exe"="D:\Program Files\TVAnts\Tvants.exe:*:Enabled:TVAnts" "C:\Program Files\THQ\Frontlines-Fuel of War\Binaries\FFOW.exe"="C:\Program Files\THQ\Frontlines-Fuel of War\Binaries\FFOW.exe:*:Enabled:Frontlines Game" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{9c0d5729-189a-11de-b7b2-002215d44e39}] shell\AutoRun\command - I:\setupSNK.exe ======File associations====== .js - edit - .js - open - "D:\Program Files\Ager Web Edytor\AgerWebEdytor.exe" "%1" ======List of files/folders created in the last 1 months====== 2009-12-05 15:19:03 ----D---- D:\Program Files\AMD 2009-06-05 00:22:18 ----D---- D:\rsit 2009-06-04 21:38:21 ----D---- D:\WINDOWS\LastGood 2009-06-04 01:10:42 ----D---- D:\Program Files\Trend Micro 2009-06-01 23:41:19 ----D---- D:\Documents and Settings\rudy\Dane aplikacji\Creative 2009-06-01 15:23:08 ----N---- D:\WINDOWS\system32\CTSVCCTL.EXE 2009-06-01 15:23:08 ----N---- D:\WINDOWS\system32\CTSVCCDA.EXE 2009-06-01 15:22:55 ----D---- D:\Program Files\Common Files\Creative 2009-06-01 15:22:54 ----HD---- D:\Program Files\Creative Installation Information 2009-05-29 14:03:51 ----A---- D:\WINDOWS\unvise32.exe 2009-05-29 14:01:53 ----D---- D:\Program Files\Binboy 2009-05-27 00:22:38 ----D---- D:\WINDOWS\95FC26FB19FD4A96BBB1B1062E8648F5.TMP 2009-05-26 19:38:37 ----D---- D:\Documents and Settings\rudy\Dane aplikacji\ProtectDisc 2009-05-26 19:38:07 ----D---- D:\Documents and Settings\All Users\Dane aplikacji\Synetic 2009-05-26 19:08:01 ----D---- D:\Program Files\ProtectDisc Driver Installer 2009-05-24 17:27:51 ----D---- D:\Program Files\TVAnts 2009-05-19 22:26:07 ----D---- D:\Program Files\Selteco 2009-05-18 19:31:18 ----D---- D:\Documents and Settings\rudy\Dane aplikacji\Download Manager 2009-05-17 19:06:52 ----A---- D:\WINDOWS\system32\rspndr.exe 2009-05-16 13:31:14 ----A---- D:\WINDOWS\struct~.ini 2009-05-16 13:31:09 ----D---- D:\Program Files\Common Files\uusee 2009-05-16 13:31:08 ----D---- D:\Program Files\uusee 2009-05-16 13:28:37 ----D---- D:\Documents and Settings\rudy\Dane aplikacji\Octoshape 2009-05-16 13:26:22 ----A---- D:\WINDOWS\system32\kbdkor.dll 2009-05-16 13:26:22 ----A---- D:\WINDOWS\system32\kbdjpn.dll 2009-05-16 13:26:22 ----A---- D:\WINDOWS\system32\kbd103.dll 2009-05-16 13:26:22 ----A---- D:\WINDOWS\system32\kbd101c.dll 2009-05-16 13:26:20 ----A---- D:\WINDOWS\system32\kbd106.dll 2009-05-16 13:26:20 ----A---- D:\WINDOWS\system32\kbd101b.dll 2009-05-14 18:17:34 ----D---- D:\Program Files\SkanerOnline 2009-05-14 18:09:52 ----D---- D:\WINDOWS\system32\Adobe 2009-05-14 18:03:01 ----D---- D:\Documents and Settings\All Users\Dane aplikacji\Blizzard 2009-05-14 17:59:48 ----D---- D:\Program Files\World of Warcraft Trial 2009-05-14 17:50:30 ----D---- D:\Documents and Settings\All Users\Dane aplikacji\ATI 2009-05-14 16:54:40 ----D---- D:\Program Files\ATI 2009-05-14 14:10:59 ----D---- D:\Program Files\OCCT 2009-05-14 13:16:41 ----D---- D:\Program Files\Prime95 2009-05-12 19:26:20 ----D---- D:\Program Files\Western Digital Corporation 2009-05-12 10:40:18 ----D---- D:\Program Files\Neostrada TP 2009-05-12 10:38:40 ----A---- D:\WINDOWS\Fast800.ini 2009-05-12 10:38:40 ----A---- D:\WINDOWS\adidsl.ini 2009-05-12 10:38:33 ----A---- D:\WINDOWS\system32\adadix32.dll 2009-05-12 10:38:33 ----A---- D:\WINDOWS\adiras.ini 2009-05-12 10:38:33 ----A---- D:\WINDOWS\adiras.exe 2009-05-12 10:38:32 ----A---- D:\WINDOWS\system32\ipdetect.exe 2009-05-12 10:38:31 ----A---- D:\WINDOWS\system32\coclassfast.dll 2009-05-12 10:38:30 ----A---- D:\WINDOWS\system32\unaddrv.exe 2009-05-12 10:38:30 ----A---- D:\WINDOWS\system32\adadix2k.dll 2009-05-12 10:38:30 ----A---- D:\WINDOWS\system32\adadix16.dll 2009-05-12 10:38:29 ----A---- D:\WINDOWS\autoclk.exe 2009-05-12 10:38:25 ----D---- D:\Program Files\SAGEM 2009-05-11 23:37:53 ----D---- D:\Documents and Settings\rudy\Dane aplikacji\Help 2009-05-07 18:41:04 ----HDC---- D:\WINDOWS\$NtUninstallKB942288-v3$ 2009-05-06 19:25:42 ----HD---- D:\WINDOWS\PIF ======List of files/folders modified in the last 1 months====== 2009-06-05 00:22:16 ----D---- D:\WINDOWS\Temp 2009-06-05 00:21:57 ----D---- D:\Documents and Settings\rudy\Dane aplikacji\uTorrent 2009-06-05 00:16:47 ----D---- D:\Program Files\Mozilla Firefox 2009-06-04 23:36:10 ----D---- D:\Documents and Settings\rudy\Dane aplikacji\foobar2000 2009-06-04 23:21:13 ----D---- D:\WINDOWS\Prefetch 2009-06-04 23:21:07 ----D---- D:\Documents and Settings\rudy\Dane aplikacji\ipla 2009-06-04 21:38:22 ----SD---- D:\WINDOWS\Downloaded Program Files 2009-06-04 21:38:22 ----HD---- D:\WINDOWS\inf 2009-06-04 21:38:22 ----D---- D:\WINDOWS\system32 2009-06-04 21:38:21 ----D---- D:\WINDOWS\system32\CatRoot2 2009-06-04 21:38:21 ----D---- D:\WINDOWS 2009-06-04 21:36:29 ----D---- D:\Program Files\SubEdit-Player 2009-06-04 21:02:03 ----D---- D:\Program Files\SpeedFan 2009-06-04 20:50:04 ----A---- D:\WINDOWS\system32\PnkBstrB.exe 2009-06-04 12:36:36 ----A---- D:\WINDOWS\SchedLgU.Txt 2009-06-04 01:10:42 ----RD---- D:\Program Files 2009-06-02 23:21:30 ----A---- D:\WINDOWS\Burnout(TM) Paradise The Ultimate Box Patch Log.txt 2009-06-02 22:35:29 ----A---- D:\WINDOWS\system32\PerfStringBackup.INI 2009-06-02 22:31:14 ----A---- D:\WINDOWS\win.ini 2009-06-02 22:31:14 ----A---- D:\WINDOWS\system.ini 2009-06-02 21:18:10 ----A---- D:\WINDOWS\DUMP4035.tmp 2009-06-01 23:42:19 ----D---- D:\WINDOWS\pss 2009-06-01 15:24:23 ----HD---- D:\Program Files\InstallShield Installation Information 2009-06-01 15:23:02 ----D---- D:\Program Files\Creative 2009-06-01 15:22:55 ----D---- D:\Program Files\Common Files 2009-05-27 00:22:46 ----D---- D:\WINDOWS\system32\DirectX 2009-05-27 00:22:36 ----SHD---- D:\WINDOWS\Installer 2009-05-27 00:22:34 ----D---- D:\Program Files\Common Files\Wise Installation Wizard 2009-05-26 19:08:21 ----RSD---- D:\WINDOWS\assembly 2009-05-26 19:08:01 ----D---- D:\WINDOWS\system32\drivers 2009-05-24 17:31:42 ----RSHDC---- D:\WINDOWS\system32\dllcache 2009-05-24 00:48:18 ----SD---- D:\Documents and Settings\rudy\Dane aplikacji\Microsoft 2009-05-24 00:18:33 ----D---- D:\WINDOWS\system32\CatRoot 2009-05-17 14:38:54 ----D---- D:\WINDOWS\Minidump 2009-05-17 14:23:14 ----D---- D:\Documents and Settings\All Users\Dane aplikacji\ipla 2009-05-16 19:09:24 ----D---- D:\Documents and Settings\rudy\Dane aplikacji\Skype 2009-05-16 19:09:13 ----D---- D:\Documents and Settings\rudy\Dane aplikacji\skypePM 2009-05-16 13:53:45 ----D---- D:\Program Files\SopCast 2009-05-16 13:28:40 ----D---- D:\Documents and Settings\rudy\Dane aplikacji\Mozilla 2009-05-14 18:10:01 ----D---- D:\Documents and Settings\rudy\Dane aplikacji\Adobe 2009-05-14 16:54:24 ----D---- D:\WINDOWS\WinSxS 2009-05-14 16:54:17 ----D---- D:\Program Files\ATI Technologies 2009-05-14 16:29:47 ----D---- D:\WINDOWS\system32\config 2009-05-11 23:37:53 ----D---- D:\Program Files\WinRAR 2009-05-11 17:33:37 ----D---- D:\Program Files\TuneUp Utilities 2009 2009-05-11 17:33:13 ----SD---- D:\WINDOWS\Tasks 2009-05-11 13:06:38 ----A---- D:\WINDOWS\system32\OpenAL32.dll ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 easdrv;easdrv; D:\WINDOWS\system32\DRIVERS\easdrv.sys [2008-02-20 29704] R1 epfwtdir;epfwtdir; D:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2008-02-20 33800] R1 SCDEmu;SCDEmu; D:\WINDOWS\system32\drivers\SCDEmu.sys [2008-11-02 56572] R2 acedrv11;acedrv11; \??\D:\WINDOWS\system32\drivers\acedrv11.sys [] R2 atksgt;atksgt; D:\WINDOWS\system32\DRIVERS\atksgt.sys [2009-03-29 278728] R2 eamon;EAMON; D:\WINDOWS\system32\DRIVERS\eamon.sys [2008-02-20 39944] R2 lirsgt;lirsgt; D:\WINDOWS\system32\DRIVERS\lirsgt.sys [2009-03-29 25416] R2 rspndr;Responder odnajdywania topologii warstwy łącza; D:\WINDOWS\system32\DRIVERS\rspndr.sys [2006-11-08 62336] R3 ati2mtag;ati2mtag; D:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2009-03-16 3597312] R3 ctsfm2k;Creative SoundFont Management Device Driver; D:\WINDOWS\system32\DRIVERS\ctsfm2k.sys [2005-01-10 138752] R3 GEARAspiWDM;GEAR ASPI Filter Driver; D:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2008-04-17 15464] R3 HDAudBus;Sterownik magistrali Microsoft UAA dla High Definition Audio; D:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-15 144384] R3 hidusb;Sterownik Microsoft klasy HID; D:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368] R3 mouhid;Sterownik myszy HID; D:\WINDOWS\system32\DRIVERS\mouhid.sys [2008-04-15 12160] R3 MTsensor;ATK0110 ACPI UTILITY; D:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-15 5810] R3 ossrv;Creative OS Services Driver; D:\WINDOWS\system32\DRIVERS\ctoss2k.sys [2005-01-10 106496] R3 P17;Sound Blaster Audigy; D:\WINDOWS\system32\drivers\P17.sys [2005-07-07 1389056] R3 Razerlow;Diamondback 3G USB Filter Driver; D:\WINDOWS\System32\Drivers\DB3G.sys [2005-04-24 13225] R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; D:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2008-01-03 105856] R3 usbehci;Sterownik Miniport rozszerzonego kontrolera hosta USB 2.0 Microsoft; D:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-15 30208] R3 usbhub;Koncentrator z obsługą USB2; D:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-15 59520] R3 usbohci;Sterownik Miniport otwartego kontrolera hosta USB Microsoft; D:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-15 17152] S1 WmiAcpi;Interfejs zarządzania Microsoft Windows dla ACPI; D:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832] S2 ADILOADER;General Purpose USB Driver (adildr.sys); D:\WINDOWS\System32\Drivers\adildr.sys [2004-03-02 50007] S3 a86qbzxd;a86qbzxd; D:\WINDOWS\system32\drivers\a86qbzxd.sys [] S3 adiusbaw;USB ADSL WAN Adapter; D:\WINDOWS\system32\DRIVERS\adiusbaw.sys [2004-03-02 127065] S3 cpuz130;cpuz130; \??\D:\DOCUME~1\rudy\USTAWI~1\Temp\cpuz130\cpuz_x32.sys [] S3 cpuz131;cpuz131; \??\D:\DOCUME~1\rudy\USTAWI~1\Temp\cpuz131\cpuz_x32.sys [] S3 ENTECH;ENTECH; \??\D:\WINDOWS\system32\DRIVERS\ENTECH.sys [] S3 NPF;Netgroup Packet Filter; D:\WINDOWS\system32\drivers\npf.sys [2009-01-25 42512] S3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; D:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-15 32128] S3 usbprint;Klasa PRINTER USB Microsoft; D:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856] S3 usbscan;Sterownik skanera USB; D:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104] S3 USBSTOR;Sterownik magazynu masowego USB; D:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368] S3 wceusbsh;Windows CE USB Serial Host Driver; D:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2004-12-06 104064] S3 WpdUsb;WpdUsb; D:\WINDOWS\System32\Drivers\wpdusb.sys [2006-10-18 38528] S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; D:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; D:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944] S4 IntelIde;IntelIde; D:\WINDOWS\system32\drivers\IntelIde.sys [] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 Apple Mobile Device;Apple Mobile Device; D:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-11-07 132424] R2 Ati HotKey Poller;Ati HotKey Poller; D:\WINDOWS\system32\Ati2evxx.exe [2009-03-16 602112] R2 Creative Service for CDROM Access;Creative Service for CDROM Access; D:\WINDOWS\system32\CTsvcCDA.exe [1999-12-13 44032] R2 ekrn;Eset Service; D:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2008-02-20 472320] R2 JavaQuickStarterService;Java Quick Starter; D:\Program Files\Java\jre6\bin\jqs.exe [2009-03-09 152984] R2 PnkBstrA;PnkBstrA; D:\WINDOWS\system32\PnkBstrA.exe [2009-04-01 75064] R2 SQLWriter;SQL Server VSS Writer; D:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2007-02-10 89968] S2 AODService;AODService; D:\Program Files\AMD\OverDrive\AODAssist.exe [2009-05-05 124256] S2 ATI Smart;ATI Smart; D:\WINDOWS\system32\ati2sgag.exe [2009-03-17 593920] S3 aspnet_state;„Usługa stanu ASP.NET; D:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; D:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] S3 EhttpSrv;Eset HTTP Server; D:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2008-02-20 19200] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; D:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104] S3 IDriverT;InstallDriver Table Manager; D:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632] S3 idsvc;Windows CardSpace; D:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664] S3 lxcg_device;lxcg_device; D:\WINDOWS\system32\lxcgcoms.exe [2005-07-25 491520] S3 MSSQL$SONY_MEDIAMGR2;SQL Server (SONY_MEDIAMGR2); D:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2007-02-10 29178224] S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; D:\WINDOWS\system32\svchost.exe [2008-04-15 14336] S4 Bonjour Service;Bonjour Service; D:\Program Files\Bonjour\mDNSResponder.exe [2008-08-29 238888] S4 iPod Service;iPod Service; D:\Program Files\iPod\bin\iPodService.exe [2009-01-06 536872] S4 MSSQLServerADHelper;SQL Server Active Directory Helper; D:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2005-10-14 45272] S4 NetTcpPortSharing;Usługa udostępniania portów Net.Tcp; D:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096] S4 SQLBrowser;SQL Server Browser; D:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2007-02-10 242544] -----------------EOF-----------------

**Posty:** 18165 · przez **wojtas** 05 Cze 2009, 09:56

Wykonaj to co jest podane w tym temacie

Zastosuj SDFix . Po pobraniu uruchom go a rozpakuje się do C:\SDFix. Uruchom komputer w trybie awaryjnym (F8 przy stracie systemu). Będąc w awaryjnym uruchom plik RunThis.bat z folderu SDFixa. Zatwierdź czyszczenie przez Y. Poczekaj aż ukończy i komputer zresetuje

Potem wejdz do folderu C:\SDFix wrzuc zawartość pliku Report.txt + log z OTListIt2

**Posty:** 190 · przez **servitor** 05 Cze 2009, 15:25

SDFix

Kod: Zaznacz wszystko: [b]SDFix: Version 1.240 [/b] Run by rudy on 2009-06-05 at 15:13 Microsoft Windows XP [Wersja 5.1.2600] Running From: D:\SDFix [b]Checking Services [/b]: Restoring Default Security Values Restoring Default Hosts File Rebooting [b]Checking Files [/b]: Trojan Files Found: D:\Documents and Settings\rudy\Ustawienia lokalne\Temp\ipl423.tmp.exe - Deleted D:\Documents and Settings\rudy\Ustawienia lokalne\Temp\ipl9B4.tmp.exe - Deleted Removing Temp Files [b]ADS Check [/b]: [b]Final Check [/b]: catchme 0.3.1361.2 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2009-06-05 15:17:26 Windows 5.1.2600 Dodatek Service Pack 3 NTFS scanning hidden processes ... scanning hidden services & system hive ... [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg] "s1"=dword:2df9c43f "s2"=dword:110480d0 "h0"=dword:00000001 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC] "p0"="D:\Program Files\DAEMON Tools Pro\" "h0"=dword:00000000 "hdf12"=hex:51,85,b6,6d,a7,3c,2b,2a,fc,81,ac,06,37,72,33,1f,dd,23,09,2a,51,.. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001] "a0"=hex:20,01,00,00,27,2c,92,c7,c6,c9,32,72,3b,5d,b2,82,79,e7,42,fe,39,.. "hdf12"=hex:03,91,2c,ef,c5,b4,08,21,c5,12,38,c4,c5,e4,cd,e8,76,de,c2,74,a5,.. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0] "hdf12"=hex:73,4a,2f,c0,a2,c3,7b,97,63,ab,60,82,ba,a2,f8,de,68,3b,3b,64,c7,.. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000002] "a0"=hex:20,01,00,00,29,1b,90,c7,66,07,f7,1a,c9,37,7d,6f,96,eb,43,8a,1c,.. "hdf12"=hex:e9,ec,f6,45,7a,4c,79,a3,8b,ab,c7,32,ac,56,c5,1f,d7,c6,81,11,af,.. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000002\gdq0] "hdf12"=hex:b0,ce,f6,36,c5,8a,97,e2,b1,13,3d,b6,74,fe,5d,0f,5a,84,f7,1e,77,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC] "p0"="D:\Program Files\DAEMON Tools Pro\" "h0"=dword:00000000 "hdf12"=hex:51,85,b6,6d,a7,3c,2b,2a,fc,81,ac,06,37,72,33,1f,dd,23,09,2a,51,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001] "a0"=hex:20,01,00,00,27,2c,92,c7,c6,c9,32,72,3b,5d,b2,82,79,e7,42,fe,39,.. "hdf12"=hex:03,91,2c,ef,c5,b4,08,21,c5,12,38,c4,c5,e4,cd,e8,76,de,c2,74,a5,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0] "hdf12"=hex:73,4a,2f,c0,a2,c3,7b,97,63,ab,60,82,ba,a2,f8,de,68,3b,3b,64,c7,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000002] "a0"=hex:20,01,00,00,29,1b,90,c7,66,07,f7,1a,c9,37,7d,6f,96,eb,43,8a,1c,.. "hdf12"=hex:e9,ec,f6,45,7a,4c,79,a3,8b,ab,c7,32,ac,56,c5,1f,d7,c6,81,11,af,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000002\gdq0] "hdf12"=hex:b0,ce,f6,36,c5,8a,97,e2,b1,13,3d,b6,74,fe,5d,0f,5a,84,f7,1e,77,.. scanning hidden registry entries ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden services: 0 hidden files: 0 [b]Remaining Services [/b]: Authorized Application Key Export: [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "D:\\Program Files\\Konnekt\\konnekt.exe"="D:\\Program Files\\Konnekt\\konnekt.exe:*:Enabled:Konnekt - Core" "D:\\Program Files\\uTorrent\\uTorrent.exe"="D:\\Program Files\\uTorrent\\uTorrent.exe:*:Enabled:uTorrent" "C:\\Program Files\\Electronic Arts\\Burnout(TM) Paradise The Ultimate Box\\BurnoutLauncher.exe"="C:\\Program Files\\Electronic Arts\\Burnout(TM) Paradise The Ultimate Box\\BurnoutLauncher.exe:*:Enabled:Burnout(TM) Paradise The Ultimate Box" "C:\\Program Files\\Electronic Arts\\Burnout(TM) Paradise The Ultimate Box\\BurnoutConfigTool.exe"="C:\\Program Files\\Electronic Arts\\Burnout(TM) Paradise The Ultimate Box\\BurnoutConfigTool.exe:*:Enabled:Burnout(TM) Paradise The Ultimate Box" "C:\\Program Files\\Electronic Arts\\Burnout(TM) Paradise The Ultimate Box\\BurnoutParadise.exe"="C:\\Program Files\\Electronic Arts\\Burnout(TM) Paradise The Ultimate Box\\BurnoutParadise.exe:*:Enabled:Burnout(TM) Paradise The Ultimate Box" "D:\\Program Files\\Electronic Arts\\EADM\\Core.exe"="D:\\Program Files\\Electronic Arts\\EADM\\Core.exe:*:Enabled:EA Download Manager" "D:\\Program Files\\Bonjour\\mDNSResponder.exe"="D:\\Program Files\\Bonjour\\mDNSResponder.exe:*:Enabled:Bonjour" "D:\\Program Files\\iTunes\\iTunes.exe"="D:\\Program Files\\iTunes\\iTunes.exe:*:Enabled:iTunes" "E:\\Program Files\\Activision\\Call of Duty 4 - Modern Warfare\\iw3mp.exe"="E:\\Program Files\\Activision\\Call of Duty 4 - Modern Warfare\\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM) " "D:\\Program Files\\SopCast\\adv\\SopAdver.exe"="D:\\Program Files\\SopCast\\adv\\SopAdver.exe:*:Enabled:SopCast Adver" "D:\\Program Files\\SopCast\\SopCast.exe"="D:\\Program Files\\SopCast\\SopCast.exe:*:Enabled:SopCast Main Application" "C:\\The.Club.Sega.PC-Game.Multi-4.Full-Rip.Skullptura\\The.Club.Sega.PC-Game.Multi-4.Full-Rip.Skullptura\\The Club\\TheClub.exe"="C:\\The.Club.Sega.PC-Game.Multi-4.Full-Rip.Skullptura\\The.Club.Sega.PC-Game.Multi-4.Full-Rip.Skullptura\\The Club\\TheClub.exe:*:Enabled:The Club" "E:\\movies\\Left.4.Dead.Full-Rip.Skullptura\\Left.4.Dead.Full-Rip.Skullptura\\Left 4 Dead\\left4dead.exe"="E:\\movies\\Left.4.Dead.Full-Rip.Skullptura\\Left.4.Dead.Full-Rip.Skullptura\\Left 4 Dead\\left4dead.exe:*:Enabled:left4dead" "D:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe"="D:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe:*:Enabled:ActiveSync Connection Manager" "D:\\Program Files\\Microsoft ActiveSync\\WCESMgr.exe"="D:\\Program Files\\Microsoft ActiveSync\\WCESMgr.exe:*:Enabled:ActiveSync Application" "D:\\WINDOWS\\system32\\PnkBstrA.exe"="D:\\WINDOWS\\system32\\PnkBstrA.exe:*:Enabled:PnkBstrA" "D:\\WINDOWS\\system32\\PnkBstrB.exe"="D:\\WINDOWS\\system32\\PnkBstrB.exe:*:Enabled:PnkBstrB" "C:\\Program Files\\Ubisoft Entertainment\\Wheelman\\Binaries\\WheelmanGame-Final.exe"="C:\\Program Files\\Ubisoft Entertainment\\Wheelman\\Binaries\\WheelmanGame-Final.exe:*:Enabled:Wheelman" "C:\\Program Files\\Eidos\\Conflict Denied Ops\\ConflictDeniedOps.exe"="C:\\Program Files\\Eidos\\Conflict Denied Ops\\ConflictDeniedOps.exe:*:Enabled:Conflict: Denied Ops" "C:\\Program Files\\Atari\\Test Drive Unlimited\\TestDriveUnlimited.exe"="C:\\Program Files\\Atari\\Test Drive Unlimited\\TestDriveUnlimited.exe:*:Enabled:Test Drive Unlimited" "D:\\Program Files\\uusee\\UUSeePlayer.exe"="D:\\Program Files\\uusee\\UUSeePlayer.exe:*:Enabled:UUPlayer" "D:\\Program Files\\Common Files\\uusee\\UUSeeMediaCenter.exe"="D:\\Program Files\\Common Files\\uusee\\UUSeeMediaCenter.exe:*:Disabled:MediaCenter" "D:\\Program Files\\Skype\\Phone\\Skype.exe"="D:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype" "C:\\Program Files\\Rockstar Games\\Rockstar Games Social Club\\RGSCLauncher.exe"="C:\\Program Files\\Rockstar Games\\Rockstar Games Social Club\\RGSCLauncher.exe:*:Enabled:Rockstar Games Social Club" "C:\\Program Files\\Rockstar Games\\Grand Theft Auto IV\\LaunchGTAIV.exe"="C:\\Program Files\\Rockstar Games\\Grand Theft Auto IV\\LaunchGTAIV.exe:*:Enabled:Grand Theft Auto IV" "C:\\Program Files\\Rockstar Games\\Grand Theft Auto IV\\GTAIV.exe"="C:\\Program Files\\Rockstar Games\\Grand Theft Auto IV\\GTAIV.exe:*:Enabled:Grand Theft Auto IV" "D:\\Program Files\\TVAnts\\Tvants.exe"="D:\\Program Files\\TVAnts\\Tvants.exe:*:Enabled:TVAnts" "C:\\Program Files\\THQ\\Frontlines-Fuel of War\\Binaries\\FFOW.exe"="C:\\Program Files\\THQ\\Frontlines-Fuel of War\\Binaries\\FFOW.exe:*:Enabled:Frontlines Game" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" [b]Remaining Files [/b]: File Backups: - D:\SDFix\backups\backups.zip [b]Files with Hidden Attributes [/b]: Sun 25 Jan 2009 212,992 A.SH. --- "D:\DCIM\100NIKON\SIV130C.tmp" Tue 19 May 2009 52,224 ..SHR --- "D:\Program Files\Selteco\Photo Lab PL\Setup.exe" Fri 17 Apr 2009 0 A.SH. --- "D:\Documents and Settings\All Users\DRM\Cache\Indiv01.tmp" Thu 17 Jul 2008 3,231,744 A..H. --- "D:\Documents and Settings\rudy\Dane aplikacji\Kingston\SecureTravelerB.exe" Wed 11 Jun 2008 1,839,104 A..H. --- "D:\Documents and Settings\rudy\Dane aplikacji\Kingston\SecureTravelerA.exe" Thu 17 Jul 2008 3,231,744 A..H. --- "D:\Documents and Settings\rudy\Dane aplikacji\Kingston\tmp\SecureTravelerB.exe" Wed 11 Jun 2008 1,839,104 A..H. --- "D:\Documents and Settings\rudy\Dane aplikacji\Kingston\tmp\SecureTravelerA.exe" Sun 24 May 2009 2,602 ...HR --- "D:\Documents and Settings\rudy\Dane aplikacji\SecuROM\UserData\securom_v7_01.bak" [b]Finished![/b]

OTListlt2

Kod: Zaznacz wszystko: lOTListIt logfile created on: 2009-06-05 15:21:22 - Run 1 OTListIt2 by OldTimer - Version 2.0.15.8 Folder = C:\po formacie Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18372) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 100,00% Memory free 4,00 Gb Paging File | 4,00 Gb Available in Paging File | 100,00% Paging File free Paging file location(s): D:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = D: | %SystemRoot% = D:\WINDOWS | %ProgramFiles% = D:\Program Files Drive C: | 465,76 Gb Total Space | 151,84 Gb Free Space | 32,60% Space Free | Partition Type: NTFS Drive D: | 20,00 Gb Total Space | 6,67 Gb Free Space | 33,34% Space Free | Partition Type: NTFS Drive E: | 576,16 Gb Total Space | 431,24 Gb Free Space | 74,85% Space Free | Partition Type: NTFS F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: FENIX-5F8F4B719 Current User Name: rudy Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Output = Standard File Age = 30 Days Company Name Whitelist: On [color=orange]========== Processes (SafeList) ==========[/color] PRC - [2009-03-16 22:15:12 | 00,602,112 | ---- | M] (ATI Technologies Inc.) -- D:\WINDOWS\system32\Ati2evxx.exe PRC - [2009-03-16 22:15:12 | 00,602,112 | ---- | M] (ATI Technologies Inc.) -- D:\WINDOWS\system32\Ati2evxx.exe PRC - [2008-04-15 14:00:00 | 01,035,264 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\Explorer.EXE PRC - [2008-11-07 15:28:16 | 00,132,424 | ---- | M] (Apple Inc.) -- D:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe PRC - [1999-12-13 01:01:00 | 00,044,032 | ---- | M] (Creative Technology Ltd) -- D:\WINDOWS\system32\CTsvcCDA.exe PRC - [2008-02-20 12:08:46 | 00,472,320 | ---- | M] (ESET) -- D:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe PRC - [2009-03-09 05:19:15 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) -- D:\Program Files\Java\jre6\bin\jqs.exe PRC - [2009-04-01 16:30:48 | 00,075,064 | ---- | M] () -- D:\WINDOWS\system32\PnkBstrA.exe PRC - [2007-02-10 06:29:56 | 00,089,968 | ---- | M] (Microsoft Corporation) -- D:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe PRC - [2008-04-15 14:00:00 | 00,218,112 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\wbem\wmiprvse.exe PRC - [2008-04-15 14:00:00 | 00,013,824 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\wscntfy.exe PRC - [2005-10-31 11:51:52 | 00,057,344 | ---- | M] (Creative Technology Ltd) -- D:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe PRC - [2008-02-20 12:06:58 | 01,443,072 | ---- | M] (ESET) -- D:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe PRC - [2007-08-01 15:07:06 | 00,147,456 | ---- | M] () -- D:\Program Files\Razer\Diamondback 3G\razerhid.exe PRC - [2008-11-02 10:38:58 | 00,167,936 | ---- | M] (PowerISO Computing, Inc.) -- D:\Program Files\PowerISO\PWRISOVM.EXE PRC - [2009-03-09 05:19:17 | 00,148,888 | ---- | M] (Sun Microsystems, Inc.) -- D:\Program Files\Java\jre6\bin\jusched.exe PRC - [2008-10-15 02:04:34 | 00,039,792 | ---- | M] (Adobe Systems Incorporated) -- D:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe PRC - [2008-12-18 14:32:52 | 00,049,152 | ---- | M] (Advanced Micro Devices Inc.) -- D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe PRC - [2007-09-06 15:08:02 | 00,136,136 | ---- | M] (DT Soft Ltd.) -- D:\Program Files\DAEMON Tools Pro\DTProAgent.exe PRC - [2008-12-18 13:19:44 | 00,049,152 | ---- | M] (ATI Technologies Inc.) -- D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe PRC - [2009-01-18 03:53:08 | 07,678,568 | ---- | M] (Mozilla Corporation) -- D:\Program Files\Mozilla Firefox\firefox.exe PRC - [2007-08-01 14:42:30 | 00,131,072 | ---- | M] () -- D:\Program Files\Razer\Diamondback 3G\razertra.exe PRC - [2007-02-14 12:11:18 | 00,163,840 | ---- | M] (Razer Inc.) -- D:\Program Files\Razer\Diamondback 3G\razerofa.exe PRC - [2005-05-24 23:41:10 | 00,503,808 | ---- | M] (Stamina) -- D:\Program Files\Konnekt\konnekt.exe PRC - [2009-06-05 15:21:03 | 00,501,248 | ---- | M] (OldTimer Tools) -- C:\po formacie\OTListIt2.exe [color=orange]========== Win32 Services (SafeList) ==========[/color] SRV - [2009-05-05 06:45:50 | 00,124,256 | ---- | M] () -- D:\Program Files\AMD\OverDrive\AODAssist.exe -- (AODService [Auto | Stopped]) SRV - [2008-11-07 15:28:16 | 00,132,424 | ---- | M] (Apple Inc.) -- D:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device [Auto | Running]) SRV - [2008-07-25 11:16:40 | 00,034,312 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe -- (aspnet_state [On_Demand | Stopped]) SRV - [2009-03-16 22:15:12 | 00,602,112 | ---- | M] (ATI Technologies Inc.) -- D:\WINDOWS\system32\Ati2evxx.exe -- (Ati HotKey Poller [Auto | Running]) SRV - [2009-03-17 21:05:00 | 00,593,920 | ---- | M] () -- D:\WINDOWS\system32\ati2sgag.exe -- (ATI Smart [Auto | Stopped]) SRV - [2008-08-29 11:18:44 | 00,238,888 | ---- | M] (Apple Inc.) -- D:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service [Disabled | Stopped]) SRV - [2008-07-25 11:17:02 | 00,069,632 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped]) SRV - [1999-12-13 01:01:00 | 00,044,032 | ---- | M] (Creative Technology Ltd) -- D:\WINDOWS\system32\CTsvcCDA.exe -- (Creative Service for CDROM Access [Auto | Running]) SRV - [2008-02-20 12:14:52 | 00,019,200 | ---- | M] (ESET) -- D:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv [On_Demand | Stopped]) SRV - [2008-02-20 12:08:46 | 00,472,320 | ---- | M] (ESET) -- D:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn [Auto | Running]) SRV - [2008-07-29 21:10:04 | 00,046,104 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped]) SRV - [2008-04-15 14:00:00 | 00,038,400 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -- (helpsvc [Auto | Running]) SRV - [2005-04-04 01:41:10 | 00,069,632 | ---- | M] (Macrovision Corporation) -- D:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT [On_Demand | Stopped]) SRV - [2008-07-29 19:24:50 | 00,881,664 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc [Unknown | Stopped]) SRV - [2009-01-06 14:06:24 | 00,536,872 | ---- | M] (Apple Inc.) -- D:\Program Files\iPod\bin\iPodService.exe -- (iPod Service [Disabled | Stopped]) SRV - [2009-03-09 05:19:15 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) -- D:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService [Auto | Running]) SRV - [2005-07-25 16:25:18 | 00,491,520 | ---- | M] ( ) -- D:\WINDOWS\system32\lxcgcoms.exe -- (lxcg_device [On_Demand | Stopped]) SRV - [2007-02-10 06:29:54 | 29,178,224 | ---- | M] (Microsoft Corporation) -- D:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe -- (MSSQL$SONY_MEDIAMGR2 [On_Demand | Stopped]) SRV - [2005-10-14 03:50:20 | 00,045,272 | ---- | M] (Microsoft Corporation) -- D:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe -- (MSSQLServerADHelper [Disabled | Stopped]) SRV - [2008-07-29 19:16:38 | 00,132,096 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped]) SRV - [2009-04-01 16:30:48 | 00,075,064 | ---- | M] () -- D:\WINDOWS\system32\PnkBstrA.exe -- (PnkBstrA [Auto | Running]) SRV - [2007-02-10 06:29:48 | 00,242,544 | ---- | M] (Microsoft Corporation) -- D:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe -- (SQLBrowser [Disabled | Stopped]) SRV - [2007-02-10 06:29:56 | 00,089,968 | ---- | M] (Microsoft Corporation) -- D:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe -- (SQLWriter [Auto | Running]) [color=orange]========== Driver Services (SafeList) ==========[/color] DRV - [2008-07-30 07:51:30 | 00,277,736 | ---- | M] (Protect Software GmbH) -- D:\WINDOWS\system32\drivers\acedrv11.sys -- (acedrv11 [Auto | Running]) DRV - [2004-03-02 09:26:58 | 00,050,007 | ---- | M] (Analog Deivces) -- D:\WINDOWS\System32\Drivers\adildr.sys -- (ADILOADER [Auto | Stopped]) DRV - [2004-03-02 09:24:16 | 00,127,065 | ---- | M] (Analog Devices Inc.) -- D:\WINDOWS\system32\DRIVERS\adiusbaw.sys -- (adiusbaw [On_Demand | Stopped]) DRV - [2009-03-16 23:33:02 | 03,597,312 | ---- | M] (ATI Technologies Inc.) -- D:\WINDOWS\system32\DRIVERS\ati2mtag.sys -- (ati2mtag [On_Demand | Running]) DRV - [2009-03-29 02:57:53 | 00,278,728 | ---- | M] () -- D:\WINDOWS\system32\DRIVERS\atksgt.sys -- (atksgt [Auto | Running]) DRV - File not found -- -- (catchme [On_Demand | Running]) DRV - [2005-01-10 12:15:24 | 00,138,752 | R--- | M] (Creative Technology Ltd) -- D:\WINDOWS\system32\DRIVERS\ctsfm2k.sys -- (ctsfm2k [On_Demand | Running]) DRV - [2008-02-20 12:01:30 | 00,039,944 | ---- | M] (ESET) -- D:\WINDOWS\system32\DRIVERS\eamon.sys -- (eamon [Auto | Running]) DRV - [2008-02-20 12:02:22 | 00,029,704 | ---- | M] (ESET) -- D:\WINDOWS\system32\DRIVERS\easdrv.sys -- (easdrv [System | Running]) DRV - [2008-09-17 16:14:00 | 00,027,672 | R--- | M] (EnTech Taiwan) -- D:\WINDOWS\system32\DRIVERS\ENTECH.sys -- (ENTECH [On_Demand | Stopped]) DRV - [2008-02-20 12:11:16 | 00,033,800 | ---- | M] () -- D:\WINDOWS\system32\DRIVERS\epfwtdir.sys -- (epfwtdir [System | Running]) DRV - [2008-04-17 14:12:54 | 00,015,464 | ---- | M] (GEAR Software Inc.) -- D:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys -- (GEARAspiWDM [On_Demand | Running]) DRV - [1996-04-03 21:33:26 | 00,005,248 | ---- | M] () -- D:\WINDOWS\system32\giveio.sys -- (giveio [Boot | Running]) DRV - [2008-04-15 14:00:00 | 00,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) -- D:\WINDOWS\system32\DRIVERS\HDAudBus.sys -- (HDAudBus [On_Demand | Running]) DRV - [2009-03-29 02:57:53 | 00,025,416 | ---- | M] () -- D:\WINDOWS\system32\DRIVERS\lirsgt.sys -- (lirsgt [Auto | Running]) DRV - [2004-08-15 02:00:00 | 00,005,810 | R--- | M] () -- D:\WINDOWS\system32\DRIVERS\ASACPI.sys -- (MTsensor [On_Demand | Running]) DRV - [2009-01-25 17:33:13 | 00,042,512 | ---- | M] (CACE Technologies) -- D:\WINDOWS\system32\drivers\npf.sys -- (NPF [On_Demand | Stopped]) DRV - [2005-01-10 12:15:30 | 00,106,496 | R--- | M] (Creative Technology Ltd.) -- D:\WINDOWS\system32\DRIVERS\ctoss2k.sys -- (ossrv [On_Demand | Running]) DRV - [2005-07-07 10:14:30 | 01,389,056 | R--- | M] (Creative Technology Ltd.) -- D:\WINDOWS\system32\drivers\P17.sys -- (P17 [On_Demand | Running]) DRV - [2008-04-15 14:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- D:\WINDOWS\system32\DRIVERS\ptilink.sys -- (Ptilink [On_Demand | Running]) DRV - [2005-04-24 23:43:58 | 00,013,225 | ---- | M] (Razer (Asia-Pacific) Pte Ltd) -- D:\WINDOWS\System32\Drivers\DB3G.sys -- (Razerlow [On_Demand | Running]) DRV - [2008-01-03 16:10:16 | 00,105,856 | R--- | M] (Realtek Semiconductor Corporation ) -- D:\WINDOWS\system32\DRIVERS\Rtenicxp.sys -- (RTLE8023xp [On_Demand | Running]) DRV - [2008-11-02 10:44:10 | 00,056,572 | ---- | M] (PowerISO Computing, Inc.) -- D:\WINDOWS\System32\drivers\scdemu.sys -- (SCDEmu [System | Running]) DRV - [2008-04-15 14:00:00 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- D:\WINDOWS\system32\DRIVERS\secdrv.sys -- (Secdrv [On_Demand | Stopped]) DRV - [2006-09-24 15:28:46 | 00,005,248 | ---- | M] (Windows (R) 2000 DDK provider) -- D:\WINDOWS\system32\speedfan.sys -- (speedfan [Boot | Running]) DRV - [2009-03-29 02:41:47 | 00,685,816 | ---- | M] () -- D:\WINDOWS\System32\Drivers\sptd.sys -- (sptd [Boot | Running]) DRV - [2004-12-06 15:07:32 | 00,104,064 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\DRIVERS\wceusbsh.sys -- (wceusbsh [On_Demand | Stopped]) [color=orange]========== Standard Registry (SafeList) ==========[/color] [color=orange]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = D:\WINDOWS\system32\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = D:\WINDOWS\system32\blank.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local [color=orange]========== FireFox ==========[/color] FF - HKLM\software\mozilla\Firefox\extensions\\{20a82645-c095-46ed-80e3-08825760534b}: D:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION\ [2009-04-02 11:11:45 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\extensions\\jqs@sun.com: D:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF [2009-01-25 21:38:47 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 2.0.0.20\extensions\\Components: D:\PROGRAM FILES\MOZILLA FIREFOX\COMPONENTS [2009-03-12 22:20:59 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 2.0.0.20\extensions\\Plugins: D:\PROGRAM FILES\MOZILLA FIREFOX\PLUGINS [2009-05-25 22:56:45 | 00,000,000 | ---D | M] [2009-06-05 00:26:47 | 00,000,000 | ---D | M] -- D:\Documents and Settings\rudy\Dane aplikacji\mozilla\Firefox\Profiles\5ub6o882.default\extensions [2009-03-25 00:06:28 | 00,000,000 | ---D | M] -- D:\Documents and Settings\rudy\Dane aplikacji\mozilla\Firefox\Profiles\5ub6o882.default\extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f} [2009-01-16 18:37:16 | 00,000,000 | ---D | M] -- D:\Documents and Settings\rudy\Dane aplikacji\mozilla\Firefox\Profiles\5ub6o882.default\extensions\{c36177c0-224a-11da-8cd6-0800200c9a66} [2009-03-03 16:41:29 | 00,000,000 | ---D | M] -- D:\Documents and Settings\rudy\Dane aplikacji\mozilla\Firefox\Profiles\5ub6o882.default\extensions\{c45c406e-ab73-11d8-be73-000a95be3b12} [2009-05-12 21:17:30 | 00,000,000 | ---D | M] -- D:\Documents and Settings\rudy\Dane aplikacji\mozilla\Firefox\Profiles\5ub6o882.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [2009-01-16 20:04:00 | 00,000,000 | ---D | M] -- D:\Documents and Settings\rudy\Dane aplikacji\mozilla\Firefox\Profiles\5ub6o882.default\extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389} [2009-05-18 19:30:43 | 00,000,000 | ---D | M] -- D:\Documents and Settings\rudy\Dane aplikacji\mozilla\Firefox\Profiles\5ub6o882.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8} [2009-06-05 15:20:12 | 00,000,000 | ---D | M] -- D:\Program Files\mozilla firefox\extensions [2009-01-18 03:53:11 | 00,000,000 | ---D | M] -- D:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2009-01-16 21:28:29 | 00,000,000 | ---D | M] -- D:\Program Files\mozilla firefox\extensions\{B13721C7-F507-4982-B2E5-502A71474FED} [2009-01-25 21:38:55 | 00,000,000 | ---D | M] -- D:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} [2009-04-14 21:29:27 | 00,000,000 | ---D | M] -- D:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} [2009-01-18 03:53:11 | 00,000,000 | ---D | M] -- D:\Program Files\mozilla firefox\extensions\talkback@mozilla.org [2009-01-18 03:53:03 | 00,067,688 | ---- | M] (Mozilla Foundation) -- D:\Program Files\mozilla firefox\components\jar50.dll [2009-01-18 03:53:03 | 00,054,368 | ---- | M] (Mozilla Foundation) -- D:\Program Files\mozilla firefox\components\jsd3250.dll [2009-01-18 03:53:03 | 00,034,944 | ---- | M] (Mozilla Foundation) -- D:\Program Files\mozilla firefox\components\myspell.dll [2009-01-18 03:53:05 | 00,046,712 | ---- | M] (Mozilla Foundation) -- D:\Program Files\mozilla firefox\components\spellchk.dll [2009-01-18 03:53:05 | 00,172,136 | ---- | M] (Mozilla Foundation) -- D:\Program Files\mozilla firefox\components\xpinstal.dll [2009-01-18 03:53:10 | 00,000,904 | ---- | M] () -- D:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml [2009-01-18 03:53:10 | 00,001,419 | ---- | M] () -- D:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml [2009-01-18 03:53:10 | 00,002,368 | ---- | M] () -- D:\Program Files\mozilla firefox\searchplugins\google.xml [2009-01-18 03:53:10 | 00,000,926 | ---- | M] () -- D:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml [2009-01-18 03:53:10 | 00,000,866 | ---- | M] () -- D:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml [2009-01-18 03:53:10 | 00,001,198 | ---- | M] () -- D:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml [2009-01-18 03:53:10 | 00,001,693 | ---- | M] () -- D:\Program Files\mozilla firefox\searchplugins\wp-pl.xml O1 HOSTS File: (686 bytes) - D:\WINDOWS\System32\drivers\etc\Hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - D:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.) O4 - HKLM..\Run: [Adobe Reader Speed Launcher] "D:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" (Adobe Systems Incorporated) O4 - HKLM..\Run: [CTSysVol] D:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe /r (Creative Technology Ltd) O4 - HKLM..\Run: [Diamondback] D:\Program Files\Razer\Diamondback 3G\razerhid.exe () O4 - HKLM..\Run: [egui] "D:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice (ESET) O4 - HKLM..\Run: [PWRISOVM.EXE] D:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.) O4 - HKLM..\Run: [StartCCC] "D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun (Advanced Micro Devices, Inc.) O4 - HKLM..\Run: [SunJavaUpdateSched] "D:\Program Files\Java\jre6\bin\jusched.exe" (Sun Microsystems, Inc.) O4 - HKCU..\Run: [DAEMON Tools Pro Agent] "D:\Program Files\DAEMON Tools Pro\DTProAgent.exe" (DT Soft Ltd.) O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1 O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O9 - Extra Button: Utwórz Ulubione dla urządzenia przenośnego - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - D:\Program Files\Microsoft ActiveSync\inetrepl.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Utwórz Ulubione dla urządzenia przenośnego... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - D:\Program Files\Microsoft ActiveSync\inetrepl.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe (Microsoft Corporation) O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [mdnsNSP] - D:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.) O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone. O16 - DPF: {00000161-0000-0010-8000-00AA00389B71} http://codecs.microsoft.com/codecs/i386/msaudio.cab (Reg Error: Key error.) O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} http://www.mks.com.pl/skaner/SkanerOnline.cab (MksSkanerOnline Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13) O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13) O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwareupdate/su2/ocx/15108/CTPID.cab (Creative Software AutoUpdate Support Package) O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - D:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - D:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - D:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - D:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - D:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\mctp {d7b95390-b1c5-11d0-b111-0080c712fe82} - D:\Program Files\Microsoft ActiveSync\aatp.dll (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - D:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - D:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - D:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O20 - HKLM Winlogon: Shell - (Explorer.exe) - D:\WINDOWS\Explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - D:\WINDOWS\system32\Ati2evxx.dll (ATI Technologies Inc.) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O31 - SafeBoot: AlternateShell - cmd.exe O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009-01-16 17:43:14 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O33 - MountPoints2\{9c0d5729-189a-11de-b7b2-002215d44e39}\Shell\AutoRun\command - "" = I:\setupSNK.exe -- File not found O34 - HKLM BootExecute: (autocheck) - File not found O34 - HKLM BootExecute: (autochk) - D:\WINDOWS\System32\autochk.exe (Microsoft Corporation) O34 - HKLM BootExecute: (*) - * [2009-05-14 13:56:15 | 00,000,000 | ---D | M] [color=orange]========== Files/Folders - Created Within 30 Days ==========[/color] [5 D:\WINDOWS\System32\*.tmp files] [5 D:\WINDOWS\*.tmp files] [2009-12-05 15:19:03 | 00,000,000 | ---D | C] -- D:\Program Files\AMD [2009-06-05 15:17:09 | 00,000,000 | ---D | C] -- D:\Documents and Settings\rudy\Dane aplikacji\WinRAR [2009-06-05 14:58:37 | 08,067,072 | ---- | C] () -- D:\Documents and Settings\rudy\Pulpit\Keitha-Afternoon.mp3 [2009-06-05 12:09:01 | 00,000,000 | ---D | C] -- D:\WINDOWS\ERUNT [2009-06-05 12:01:13 | 00,016,431 | ---- | C] () -- D:\Documents and Settings\rudy\Moje dokumenty\komisja.odt [2009-06-05 00:40:49 | 00,000,000 | ---D | C] -- D:\SDFix [2009-06-05 00:22:18 | 00,000,000 | ---D | C] -- D:\rsit [2009-06-04 01:10:43 | 00,001,734 | ---- | C] () -- D:\Documents and Settings\rudy\Pulpit\HijackThis.lnk [2009-06-04 01:10:42 | 00,000,000 | ---D | C] -- D:\Program Files\Trend Micro [2009-06-01 23:41:19 | 00,000,000 | ---D | C] -- D:\Documents and Settings\rudy\Dane aplikacji\Creative [2009-06-01 15:22:55 | 00,000,000 | ---D | C] -- D:\Program Files\Common Files\Creative [2009-06-01 15:22:54 | 00,000,000 | -H-D | C] -- D:\Program Files\Creative Installation Information [2009-05-29 14:03:51 | 00,086,016 | ---- | C] (MindVision Software) -- D:\WINDOWS\unvise32.exe [2009-05-29 14:01:53 | 00,000,000 | ---D | C] -- D:\Program Files\Binboy [2009-05-27 00:22:38 | 00,000,000 | ---D | C] -- D:\WINDOWS\95FC26FB19FD4A96BBB1B1062E8648F5.TMP [2009-05-26 19:38:37 | 00,004,096 | ---- | C] () -- D:\Documents and Settings\All Users\Dokumenty\00000D34.LCS [2009-05-26 19:38:37 | 00,000,000 | ---D | C] -- D:\Documents and Settings\rudy\Dane aplikacji\ProtectDisc [2009-05-26 19:38:07 | 00,000,615 | ---- | C] () -- D:\Documents and Settings\All Users\Pulpit\Play Crash Time 2.lnk [2009-05-26 19:38:07 | 00,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Dane aplikacji\Synetic [2009-05-26 19:08:01 | 00,000,000 | ---D | C] -- D:\Program Files\ProtectDisc Driver Installer [2009-05-24 00:45:28 | 00,000,000 | ---D | C] -- D:\Documents and Settings\rudy\Moje dokumenty\Rockstar Games [2009-05-19 22:26:29 | 00,016,896 | -HS- | C] () -- D:\Documents and Settings\rudy\Pulpit\Thumbs.db [2009-05-19 22:26:29 | 00,014,848 | -HS- | C] () -- D:\Documents and Settings\rudy\Moje dokumenty\Thumbs.db [2009-05-19 22:26:07 | 00,000,000 | ---D | C] -- D:\Program Files\Selteco [2009-05-18 19:31:18 | 00,000,000 | ---D | C] -- D:\Documents and Settings\rudy\Dane aplikacji\Download Manager [2009-05-17 19:06:52 | 00,010,752 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\rspndr.exe [2009-05-17 19:06:37 | 00,062,336 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\drivers\rspndr.sys [2009-05-16 13:31:14 | 00,000,204 | ---- | C] () -- D:\WINDOWS\struct~.ini [2009-05-16 13:31:08 | 00,000,000 | ---D | C] -- D:\Program Files\uusee [2009-05-16 13:30:59 | 00,000,000 | ---D | C] -- D:\Documents and Settings\rudy\Moje dokumenty\UUSee [2009-05-16 13:30:54 | 04,259,813 | ---- | C] () -- D:\Documents and Settings\rudy\Moje dokumenty\UUSee.zip [2009-05-16 13:28:37 | 00,000,000 | ---D | C] -- D:\Documents and Settings\rudy\Dane aplikacji\Octoshape [2009-05-16 13:26:22 | 00,008,704 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\kbdjpn.dll [2009-05-16 13:26:22 | 00,008,704 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\kbdjpn.dll [2009-05-16 13:26:22 | 00,008,192 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\kbdkor.dll [2009-05-16 13:26:22 | 00,008,192 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\kbdkor.dll [2009-05-16 13:26:22 | 00,006,144 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\kbd101c.dll [2009-05-16 13:26:22 | 00,006,144 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\kbd101c.dll [2009-05-16 13:26:22 | 00,005,632 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\kbd103.dll [2009-05-16 13:26:22 | 00,005,632 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\kbd103.dll [2009-05-16 13:26:20 | 00,006,144 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\kbd106.dll [2009-05-16 13:26:20 | 00,006,144 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\kbd101b.dll [2009-05-16 13:26:20 | 00,006,144 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\kbd106.dll [2009-05-16 13:26:20 | 00,006,144 | ---- | C] (Microsoft Corporation) -- D:\WINDOWS\System32\dllcache\kbd101b.dll [2009-05-14 18:17:34 | 00,000,000 | ---D | C] -- D:\Program Files\SkanerOnline [2009-05-14 18:09:52 | 00,000,000 | ---D | C] -- D:\WINDOWS\System32\Adobe [2009-05-14 18:08:57 | 00,000,681 | ---- | C] () -- D:\WINDOWS\mozver.dat [2009-05-14 18:03:01 | 00,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Dane aplikacji\Blizzard [2009-05-14 17:59:48 | 00,000,000 | ---D | C] -- D:\Program Files\World of Warcraft Trial [2009-05-14 17:50:30 | 00,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Dane aplikacji\ATI [2009-05-14 16:54:40 | 00,000,000 | ---D | C] -- D:\Program Files\ATI [2009-05-14 14:10:59 | 00,000,000 | ---D | C] -- D:\Program Files\OCCT [2009-05-14 13:16:41 | 00,000,000 | ---D | C] -- D:\Program Files\Prime95 [2009-05-12 19:26:20 | 00,000,000 | ---D | C] -- D:\Program Files\Western Digital Corporation [2009-05-12 10:40:18 | 00,000,000 | ---D | C] -- D:\Program Files\Neostrada TP [2009-05-12 10:38:40 | 00,000,154 | ---- | C] () -- D:\WINDOWS\adidsl.ini [2009-05-12 10:38:40 | 00,000,021 | ---- | C] () -- D:\WINDOWS\Fast800.ini [2009-05-12 10:38:33 | 01,531,904 | ---- | C] () -- D:\WINDOWS\adiras.exe [2009-05-12 10:38:33 | 00,155,648 | ---- | C] (Analog Devices Inc.) -- D:\WINDOWS\System32\adadix32.dll [2009-05-12 10:38:33 | 00,127,065 | ---- | C] (Analog Devices Inc.) -- D:\WINDOWS\System32\drivers\adiusbaw.sys [2009-05-12 10:38:33 | 00,012,169 | ---- | C] () -- D:\WINDOWS\System32\drivers\adiusbaw.cat [2009-05-12 10:38:33 | 00,000,998 | ---- | C] () -- D:\WINDOWS\adiras.ini [2009-05-12 10:38:32 | 00,127,456 | ---- | C] () -- D:\WINDOWS\System32\ipdetect.exe [2009-05-12 10:38:31 | 00,126,976 | ---- | C] () -- D:\WINDOWS\System32\coclassfast.dll [2009-05-12 10:38:30 | 00,114,688 | ---- | C] (Analog Devices.) -- D:\WINDOWS\System32\unaddrv.exe [2009-05-12 10:38:30 | 00,050,007 | ---- | C] (Analog Deivces) -- D:\WINDOWS\System32\drivers\adildr.sys [2009-05-12 10:38:30 | 00,046,892 | ---- | C] () -- D:\WINDOWS\System32\adadix16.dll [2009-05-12 10:38:30 | 00,022,288 | ---- | C] () -- D:\WINDOWS\System32\drivers\RTBLD3p4.BNM [2009-05-12 10:38:30 | 00,008,412 | ---- | C] () -- D:\WINDOWS\System32\drivers\adildr.cat [2009-05-12 10:38:30 | 00,004,981 | ---- | C] (SITECSOFT Co., LTD.) -- D:\WINDOWS\System32\adadix2k.dll [2009-05-12 10:38:30 | 00,000,023 | ---- | C] () -- D:\WINDOWS\System32\drivers\adidsl.cfg [2009-05-12 10:38:29 | 00,261,964 | ---- | C] () -- D:\WINDOWS\System32\drivers\rtbldep3.bnm [2009-05-12 10:38:29 | 00,261,964 | ---- | C] () -- D:\WINDOWS\System32\drivers\rtbld9i1.bnm [2009-05-12 10:38:29 | 00,261,962 | ---- | C] () -- D:\WINDOWS\System32\drivers\rtbld9p3.bnm [2009-05-12 10:38:29 | 00,261,960 | ---- | C] () -- D:\WINDOWS\System32\drivers\rtbldep1.bnm [2009-05-12 10:38:29 | 00,261,960 | ---- | C] () -- D:\WINDOWS\System32\drivers\rtbld9i0.bnm [2009-05-12 10:38:29 | 00,261,954 | ---- | C] () -- D:\WINDOWS\System32\drivers\rtbld3i0.bnm [2009-05-12 10:38:29 | 00,261,952 | ---- | C] () -- D:\WINDOWS\System32\drivers\rtbld9p1.bnm [2009-05-12 10:38:29 | 00,261,952 | ---- | C] () -- D:\WINDOWS\System32\drivers\rtbld3i3.bnm [2009-05-12 10:38:29 | 00,261,952 | ---- | C] () -- D:\WINDOWS\System32\drivers\rtbld3i2.bnm [2009-05-12 10:38:29 | 00,261,952 | ---- | C] () -- D:\WINDOWS\System32\drivers\rtbld3.bnm [2009-05-12 10:38:29 | 00,261,948 | ---- | C] () -- D:\WINDOWS\System32\drivers\rtbldei3.bnm [2009-05-12 10:38:29 | 00,261,946 | ---- | C] () -- D:\WINDOWS\System32\drivers\rtbldei1.bnm [2009-05-12 10:38:29 | 00,261,938 | ---- | C] () -- D:\WINDOWS\System32\drivers\rtbld3i1.bnm [2009-05-12 10:38:29 | 00,261,932 | ---- | C] () -- D:\WINDOWS\System32\drivers\rtbld0.bnm [2009-05-12 10:38:29 | 00,261,930 | ---- | C] () -- D:\WINDOWS\System32\drivers\rtbld9p0.bnm [2009-05-12 10:38:29 | 00,261,926 | ---- | C] () -- D:\WINDOWS\System32\drivers\rtbld9p2.bnm [2009-05-12 10:38:29 | 00,261,926 | ---- | C] () -- D:\WINDOWS\System32\drivers\RTBLD3p0.BNM [2009-05-12 10:38:29 | 00,261,920 | ---- | C] () -- D:\WINDOWS\System32\drivers\rtbldei2.bnm [2009-05-12 10:38:29 | 00,261,920 | ---- | C] () -- D:\WINDOWS\System32\drivers\rtbld2.bnm [2009-05-12 10:38:29 | 00,261,918 | ---- | C] () -- D:\WINDOWS\System32\drivers\rtbld9i2.bnm [2009-05-12 10:38:29 | 00,261,918 | ---- | C] () -- D:\WINDOWS\System32\drivers\RTBLD3p3.BNM [2009-05-12 10:38:29 | 00,261,918 | ---- | C] () -- D:\WINDOWS\System32\drivers\RTBLD3p1.BNM [2009-05-12 10:38:29 | 00,261,916 | ---- | C] () -- D:\WINDOWS\System32\drivers\rtbldep0.bnm [2009-05-12 10:38:29 | 00,261,912 | ---- | C] () -- D:\WINDOWS\System32\drivers\rtbldei0.bnm [2009-05-12 10:38:29 | 00,261,900 | ---- | C] () -- D:\WINDOWS\System32\drivers\RTBLD3p2.BNM [2009-05-12 10:38:29 | 00,261,894 | ---- | C] () -- D:\WINDOWS\System32\drivers\rtbld1.bnm [2009-05-12 10:38:29 | 00,261,892 | ---- | C] () -- D:\WINDOWS\System32\drivers\rtbldep2.bnm [2009-05-12 10:38:29 | 00,143,360 | ---- | C] () -- D:\WINDOWS\autoclk.exe [2009-05-12 10:38:29 | 00,081,088 | ---- | C] () -- D:\WINDOWS\System32\drivers\rtbldep4.bnm [2009-05-12 10:38:29 | 00,072,072 | ---- | C] () -- D:\WINDOWS\System32\drivers\rtbldei4.bnm [2009-05-12 10:38:29 | 00,067,258 | ---- | C] () -- D:\WINDOWS\System32\drivers\rtbld3i4.bnm [2009-05-12 10:38:29 | 00,055,228 | ---- | C] () -- D:\WINDOWS\System32\drivers\rtbld4.bnm [2009-05-12 10:38:29 | 00,053,590 | ---- | C] () -- D:\WINDOWS\System32\drivers\rtbld9i4.bnm [2009-05-12 10:38:29 | 00,041,620 | ---- | C] () -- D:\WINDOWS\System32\drivers\rtbld9p4.bnm [2009-05-12 10:38:29 | 00,022,395 | ---- | C] () -- D:\WINDOWS\System32\drivers\fpga.bin [2009-05-12 10:38:25 | 00,000,000 | ---D | C] -- D:\Program Files\SAGEM [2009-05-11 23:37:53 | 00,000,000 | ---D | C] -- D:\Documents and Settings\rudy\Dane aplikacji\Help [2009-05-11 13:05:27 | 00,006,173 | ---- | C] () -- D:\WINDOWS\System32\drivers\Entech.vxd [2009-05-11 13:05:27 | 00,003,972 | ---- | C] () -- D:\WINDOWS\System32\drivers\PciBus.sys [2009-05-06 19:25:42 | 00,000,000 | -H-D | C] -- D:\WINDOWS\PIF [2009-03-29 02:57:53 | 00,278,728 | ---- | C] () -- D:\WINDOWS\System32\drivers\atksgt.sys [2009-03-29 02:57:53 | 00,025,416 | ---- | C] () -- D:\WINDOWS\System32\drivers\lirsgt.sys [2009-03-29 02:41:47 | 00,685,816 | ---- | C] () -- D:\WINDOWS\System32\drivers\sptd.sys [2009-03-19 23:16:10 | 00,168,448 | ---- | C] () -- D:\WINDOWS\System32\unrar.dll [2009-03-19 23:16:06 | 00,524,288 | ---- | C] () -- D:\WINDOWS\System32\xvidcore.dll [2009-03-19 23:16:06 | 00,139,264 | ---- | C] () -- D:\WINDOWS\System32\xvidvfw.dll [2009-03-19 23:16:05 | 03,596,288 | ---- | C] () -- D:\WINDOWS\System32\qt-dx331.dll [2009-03-19 23:16:00 | 00,067,584 | ---- | C] () -- D:\WINDOWS\System32\ff_vfw.dll [2009-03-19 23:16:00 | 00,000,547 | ---- | C] () -- D:\WINDOWS\System32\ff_vfw.dll.manifest [2009-01-25 12:32:53 | 00,138,920 | ---- | C] () -- D:\WINDOWS\System32\drivers\PnkBstrK.sys [2009-01-18 23:24:17 | 01,134,592 | ---- | C] ( ) -- D:\WINDOWS\System32\lxcgusb1.dll [2009-01-18 23:24:17 | 00,040,960 | ---- | C] () -- D:\WINDOWS\System32\lxcgvs.dll [2009-01-18 23:24:16 | 01,183,744 | ---- | C] ( ) -- D:\WINDOWS\System32\lxcgserv.dll [2009-01-18 23:24:16 | 00,704,512 | ---- | C] ( ) -- D:\WINDOWS\System32\lxcgcomc.dll [2009-01-18 23:24:16 | 00,483,328 | ---- | C] ( ) -- D:\WINDOWS\System32\lxcglmpm.dll [2009-01-18 23:24:16 | 00,413,696 | ---- | C] ( ) -- D:\WINDOWS\System32\lxcgcomm.dll [2009-01-18 23:24:16 | 00,155,648 | ---- | C] ( ) -- D:\WINDOWS\System32\lxcgprox.dll [2009-01-18 23:24:16 | 00,114,688 | ---- | C] ( ) -- D:\WINDOWS\System32\lxcgpplc.dll [2009-01-16 18:02:26 | 00,005,810 | R--- | C] () -- D:\WINDOWS\System32\drivers\ASACPI.sys [2009-01-16 18:02:21 | 00,033,403 | ---- | C] () -- D:\WINDOWS\Ascd_tmp.ini [2009-01-16 18:02:21 | 00,010,296 | ---- | C] () -- D:\WINDOWS\System32\drivers\ASUSHWIO.SYS [2009-01-16 17:58:50 | 00,005,627 | R--- | C] () -- D:\WINDOWS\System32\Ludap17.ini [2009-01-16 17:58:50 | 00,000,039 | R--- | C] () -- D:\WINDOWS\System32\ctzapxx.ini [2008-10-28 18:40:48 | 00,173,552 | ---- | C] () -- D:\WINDOWS\System32\xlive.dll.cat [2008-10-07 10:13:30 | 00,197,912 | ---- | C] () -- D:\WINDOWS\System32\physxcudart_20.dll [2008-10-07 10:13:22 | 00,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelTraditionalChinese.dll [2008-10-07 10:13:20 | 00,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelSwedish.dll [2008-10-07 10:13:20 | 00,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelSpanish.dll [2008-10-07 10:13:20 | 00,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll [2008-10-07 10:13:20 | 00,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelPortugese.dll [2008-10-07 10:13:20 | 00,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelKorean.dll [2008-10-07 10:13:20 | 00,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelJapanese.dll [2008-10-07 10:13:20 | 00,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelGerman.dll [2008-10-07 10:13:20 | 00,058,648 | ---- | C] () -- D:\WINDOWS\System32\AgCPanelFrench.dll [2008-04-15 14:00:00 | 00,000,498 | ---- | C] () -- D:\WINDOWS\win.ini [2008-04-15 14:00:00 | 00,000,227 | ---- | C] () -- D:\WINDOWS\system.ini [2008-02-20 12:11:16 | 00,033,800 | ---- | C] () -- D:\WINDOWS\System32\drivers\epfwtdir.sys [2006-09-13 13:06:10 | 00,045,056 | ---- | C] () -- D:\WINDOWS\System32\gtapi.dll [2005-05-03 13:38:42 | 00,064,512 | R--- | C] () -- D:\WINDOWS\System32\P17.dll [2003-10-02 12:48:18 | 00,053,248 | R--- | C] () -- D:\WINDOWS\System32\P17CPI.dll [2002-04-11 03:41:06 | 00,065,536 | R--- | C] ( ) -- D:\WINDOWS\System32\A3d.dll [1996-04-03 21:33:26 | 00,005,248 | ---- | C] () -- D:\WINDOWS\System32\giveio.sys [color=orange]========== Files - Modified Within 30 Days ==========[/color] [5 D:\WINDOWS\System32\*.tmp files] [5 D:\WINDOWS\*.tmp files] [2009-12-05 15:15:17 | 00,000,460 | -H-- | M] () -- D:\WINDOWS\tasks\User_Feed_Synchronization-{E21E181D-19D3-4C03-9BBB-70825C13D688}.job [2009-06-05 15:20:08 | 00,173,776 | ---- | M] () -- D:\WINDOWS\System32\ativvaxx.cap [2009-06-05 15:16:22 | 00,000,062 | -HS- | M] () -- D:\Documents and Settings\rudy\Ustawienia lokalne\desktop.ini [2009-06-05 15:16:22 | 00,000,006 | -H-- | M] () -- D:\WINDOWS\tasks\SA.DAT [2009-06-05 15:16:21 | 00,002,048 | --S- | M] () -- D:\WINDOWS\bootstat.dat [2009-06-05 15:13:27 | 00,000,686 | ---- | M] () -- D:\WINDOWS\System32\drivers\etc\HOSTS [2009-06-05 14:58:47 | 08,067,072 | ---- | M] () -- D:\Documents and Settings\rudy\Pulpit\Keitha-Afternoon.mp3 [2009-06-05 14:44:48 | 00,013,744 | ---- | M] () -- D:\WINDOWS\System32\wpa.dbl [2009-06-05 12:01:13 | 00,016,431 | ---- | M] () -- D:\Documents and Settings\rudy\Moje dokumenty\komisja.odt [2009-06-04 20:50:13 | 00,138,920 | ---- | M] () -- D:\WINDOWS\System32\drivers\PnkBstrK.sys [2009-06-04 20:50:04 | 00,189,072 | ---- | M] () -- D:\WINDOWS\System32\PnkBstrB.xtr [2009-06-04 20:50:04 | 00,189,072 | ---- | M] () -- D:\WINDOWS\System32\PnkBstrB.exe [2009-06-04 01:10:43 | 00,001,734 | ---- | M] () -- D:\Documents and Settings\rudy\Pulpit\HijackThis.lnk [2009-06-02 22:35:29 | 01,246,748 | ---- | M] () -- D:\WINDOWS\System32\PerfStringBackup.INI [2009-06-02 22:35:29 | 00,546,218 | ---- | M] () -- D:\WINDOWS\System32\perfh015.dat [2009-06-02 22:35:29 | 00,487,392 | ---- | M] () -- D:\WINDOWS\System32\perfh009.dat [2009-06-02 22:35:29 | 00,106,698 | ---- | M] () -- D:\WINDOWS\System32\perfc015.dat [2009-06-02 22:35:29 | 00,088,884 | ---- | M] () -- D:\WINDOWS\System32\perfc009.dat [2009-06-02 22:31:14 | 00,000,498 | ---- | M] () -- D:\WINDOWS\win.ini [2009-06-02 22:31:14 | 00,000,227 | ---- | M] () -- D:\WINDOWS\system.ini [2009-05-29 20:31:03 | 00,000,037 | ---- | M] () -- D:\Documents and Settings\rudy\Dane aplikacji\AVSDVDPlayer.m3u [2009-05-28 01:41:18 | 00,000,664 | ---- | M] () -- D:\WINDOWS\System32\d3d9caps.dat [2009-05-26 19:38:47 | 00,004,096 | ---- | M] () -- D:\Documents and Settings\All Users\Dokumenty\00000D34.LCS [2009-05-26 19:38:07 | 00,000,615 | ---- | M] () -- D:\Documents and Settings\All Users\Pulpit\Play Crash Time 2.lnk [2009-05-19 22:26:31 | 00,016,896 | -HS- | M] () -- D:\Documents and Settings\rudy\Pulpit\Thumbs.db [2009-05-19 22:26:29 | 00,014,848 | -HS- | M] () -- D:\Documents and Settings\rudy\Moje dokumenty\Thumbs.db [2009-05-18 21:13:11 | 00,000,204 | ---- | M] () -- D:\WINDOWS\struct~.ini [2009-05-16 13:30:54 | 04,259,813 | ---- | M] () -- D:\Documents and Settings\rudy\Moje dokumenty\UUSee.zip [2009-05-14 18:09:57 | 00,000,681 | ---- | M] () -- D:\WINDOWS\mozver.dat [2009-05-12 10:39:04 | 00,000,154 | ---- | M] () -- D:\WINDOWS\adidsl.ini [2009-05-12 10:38:41 | 00,000,998 | ---- | M] () -- D:\WINDOWS\adiras.ini [2009-05-12 10:38:40 | 00,000,023 | ---- | M] () -- D:\WINDOWS\System32\drivers\adidsl.cfg [2009-05-12 10:38:40 | 00,000,021 | ---- | M] () -- D:\WINDOWS\Fast800.ini [2009-05-11 13:06:38 | 00,086,016 | ---- | M] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- D:\WINDOWS\System32\OpenAL32.dll < End of report >

**Posty:** 18165 · przez **wojtas** 05 Cze 2009, 20:19

1.Uruchom OTListIt2 z opcji CleanUp
2. wykonaj optymalizację windowsa
3.Wyłącz przywracanie systemu ( właściwości mój komputer-zakładka przywracanie - wyłącz przywracanie na wszystkich dyskach). Po chwili włącz je powrotem
4. Wykonaj skan Dr. Web CureIt
5. Przeskanuj obszar mojego komputera http://www.kaspersky.pl/virusscanner.html (uruchom przez IE) Daj raport z niego na forum.

i tym (skasuj co znajdzie)

Malwarebytes Anti-Malware

Jeśli masz Adobe Reader to zaaktualizuj go do najnowszej wersji