log kolegi -->problem z netem

**Posty:** 1357 · przez **d3v** 28 Gru 2006, 21:07

otóż kolega miał bardzo duże problemy z kompem.cos tam zreinstalowal winde ale teraz strasznie mu neta muli dlatego moze cos w logach zostalo.

Kod: Zaznacz wszystko: Logfile of HijackThis v1.99.1 Scan saved at 17:51:57, on 2006-12-28 Platform: Windows XP (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 (6.00.2600.0000) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\SOUNDMAN.EXE C:\WINDOWS\System32\RUNDLL32.EXE C:\WINDOWS\System32\ctfmon.exe C:\Program Files\Messenger\msmsgs.exe C:\WINDOWS\System32\nvsvc32.exe C:\Program Files\Winamp\winamp.exe C:\Program Files\Gadu-Gadu\gg.exe C:\Program Files\Winamp\winamp.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Documents and Settings\mac10\Pulpit\hijackthis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\RunOnce: [a_usdll] cmd /C "del C:\WINDOWS\System32\Macromed\Download\Download.dll" O4 - HKLM\..\RunOnce: [b_usexe] cmd /C "del C:\WINDOWS\System32\Macromed\Download\Download.exe" O4 - HKLM\..\RunOnce: [c_usdir] cmd /C "rmdir /Q C:\WINDOWS\System32\Macromed\Download" O4 - HKLM\..\RunOnce: [CheckDiskOnce] chkdisk.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [Gadu-Gadu] "C:\Program Files\Gadu-Gadu\gg.exe" /tray O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe

**Posty:** 1134 · przez **MISTEJK** 28 Gru 2006, 21:19

Wyłącz przywracanie systemu i wejdź w tryb awaryjny.
Najpierw usuwasz wpisy w Hijackthis, następnie pogrubione pliki ręcznie z dysku:

O4 - HKLM\..\RunOnce: [a_usdll] cmd /C "del C:\WINDOWS\System32\Macromed\Download\Download.dll"
O4 - HKLM\..\RunOnce: [b_usexe] cmd /C "del C:\WINDOWS\System32\Macromed\Download\Download.exe"
O4 - HKLM\..\RunOnce: [c_usdir] cmd /C "rmdir /Q C:\WINDOWS\System32\Macromed\Download"
O4 - HKLM\..\RunOnce: [CheckDiskOnce] chkdisk.exe

Po zabiegach wklej nowe logi z Hijackthis + Silent Runners

**Posty:** 1357 · przez **d3v** 29 Gru 2006, 18:00

Nowe Log:

Kod: Zaznacz wszystko: Logfile of HijackThis v1.99.1 Scan saved at 16:53:39, on 2006-12-29 Platform: Windows XP (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 (6.00.2600.0000) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Gadu-Gadu\gg.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Documents and Settings\mac10\Pulpit\hijackthis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [BearShare] "C:\Program Files\BearShare\BearShare.exe" /pause O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [Gadu-Gadu] "C:\Program Files\Gadu-Gadu\gg.exe" /tray O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe

**Posty:** 1134 · przez **MISTEJK** 29 Gru 2006, 18:40

log czysty. czekam na silent runners

**Posty:** 1357 · przez **d3v** 29 Gru 2006, 19:54

Kod: Zaznacz wszystko: "Silent Runners.vbs", revision 49, http://www.silentrunners.org/ Operating System: Windows XP Output limited to non-default values, except where indicated by "{++}" Startup items buried in registry: --------------------------------- HKCU\Software\Microsoft\Windows\CurrentVersion\Run\ {++} "CTFMON.EXE" = "C:\WINDOWS\System32\ctfmon.exe" [MS] "MSMSGS" = ""C:\Program Files\Messenger\msmsgs.exe" /background" [MS] "Gadu-Gadu" = ""C:\Program Files\Gadu-Gadu\gg.exe" /tray" ["Gadu-Gadu S.A."] HKLM\Software\Microsoft\Windows\CurrentVersion\Run\ {++} "KernelFaultCheck" = "C:\WINDOWS\system32\dumprep 0 -k" "NvCplDaemon" = "RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup" [MS] "nwiz" = "nwiz.exe /install" ["NVIDIA Corporation"] "avast!" = "C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [null data] "NvMediaCenter" = "RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit" [MS] "SoundMan" = "SOUNDMAN.EXE" ["Realtek Semiconductor Corp."] "BearShare" = ""C:\Program Files\BearShare\BearShare.exe" /pause" ["Free Peers, Inc."] HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ {02478D38-C3F9-4EFB-9B51-7695ECA05670}\(Default) = (no title provided) -> {HKLM...CLSID} = "Yahoo! Toolbar Helper" \InProcServer32\(Default) = "C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll" ["Yahoo! Inc."] HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\ "{42071714-76d4-11d1-8b24-00a0c9068ff3}" = "Rozszerzenie CPL kadrowania wyświetlania" -> {HKLM...CLSID} = "Rozszerzenie CPL kadrowania wyświetlania" \InProcServer32\(Default) = "deskpan.dll" [file not found] "{88895560-9AA2-1069-930E-00AA0030EBC8}" = "Rozszerzenie ikony HyperTerminalu" -> {HKLM...CLSID} = "HyperTerminal Icon Ext" \InProcServer32\(Default) = "C:\WINDOWS\System32\hticons.dll" ["Hilgraeve, Inc."] "{A70C977A-BF00-412C-90B7-034C51DA2439}" = "NvCpl DesktopContext Class" -> {HKLM...CLSID} = "DesktopContext Class" \InProcServer32\(Default) = "C:\WINDOWS\System32\nvcpl.dll" ["NVIDIA Corporation"] "{1CDB2949-8F65-4355-8456-263E7C208A5D}" = "Desktop Explorer" -> {HKLM...CLSID} = "Desktop Explorer" \InProcServer32\(Default) = "C:\WINDOWS\System32\nvshell.dll" ["NVIDIA Corporation"] "{1E9B04FB-F9E5-4718-997B-B8DA88302A47}" = "Desktop Explorer Menu" -> {HKLM...CLSID} = (no title provided) \InProcServer32\(Default) = "C:\WINDOWS\System32\nvshell.dll" ["NVIDIA Corporation"] "{1E9B04FB-F9E5-4718-997B-B8DA88302A48}" = "nView Desktop Context Menu" -> {HKLM...CLSID} = "nView Desktop Context Menu" \InProcServer32\(Default) = "C:\WINDOWS\System32\nvshell.dll" ["NVIDIA Corporation"] "{472083B0-C522-11CF-8763-00608CC02F24}" = "avast" -> {HKLM...CLSID} = "avast" \InProcServer32\(Default) = "C:\Program Files\Alwil Software\Avast4\ashShell.dll" ["ALWIL Software"] "{FFB699E0-306A-11d3-8BD1-00104B6F7516}" = "Play on my TV helper" -> {HKLM...CLSID} = "NVIDIA CPL Extension" \InProcServer32\(Default) = "C:\WINDOWS\System32\nvcpl.dll" ["NVIDIA Corporation"] HKLM\Software\Classes\*\shellex\ContextMenuHandlers\ avast\(Default) = "{472083B0-C522-11CF-8763-00608CC02F24}" -> {HKLM...CLSID} = "avast" \InProcServer32\(Default) = "C:\Program Files\Alwil Software\Avast4\ashShell.dll" ["ALWIL Software"] HKLM\Software\Classes\Folder\shellex\ContextMenuHandlers\ avast\(Default) = "{472083B0-C522-11CF-8763-00608CC02F24}" -> {HKLM...CLSID} = "avast" \InProcServer32\(Default) = "C:\Program Files\Alwil Software\Avast4\ashShell.dll" ["ALWIL Software"] Group Policies {GPedit.msc branch and setting}: ----------------------------------------------- Note: detected settings may not have any effect. HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System\ "shutdownwithoutlogon" = (REG_DWORD) hex:0x00000001 {Computer Configuration|Windows Settings|Security Settings|Local Policies|Security Options| Shutdown: Allow system to be shut down without having to log on} "undockwithoutlogon" = (REG_DWORD) hex:0x00000001 {Computer Configuration|Windows Settings|Security Settings|Local Policies|Security Options| Devices: Allow undock without having to log on} Active Desktop and Wallpaper: ----------------------------- Active Desktop may be disabled at this entry: HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellState Displayed if Active Desktop enabled and wallpaper not set by Group Policy: HKCU\Software\Microsoft\Internet Explorer\Desktop\General\ "Wallpaper" = "C:\WINDOWS\web\wallpaper\Idylla.bmp" Displayed if Active Desktop disabled and wallpaper not set by Group Policy: HKCU\Control Panel\Desktop\ "Wallpaper" = "C:\WINDOWS\web\wallpaper\Idylla.bmp" Enabled Screen Saver: --------------------- HKCU\Control Panel\Desktop\ "SCRNSAVE.EXE" = "C:\WINDOWS\System32\logon.scr" [MS] Winsock2 Service Provider DLLs: ------------------------------- Namespace Service Providers HKLM\System\CurrentControlSet\Services\Winsock2\Parameters\NameSpace_Catalog5\Catalog_Entries\ {++} 000000000001\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS] 000000000002\LibraryPath = "%SystemRoot%\System32\winrnr.dll" [MS] 000000000003\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS] Transport Service Providers HKLM\System\CurrentControlSet\Services\Winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\ {++} 0000000000##\PackedCatalogItem (contains) DLL [Company Name], (at) ## range: %SystemRoot%\system32\mswsock.dll [MS], 01 - 03, 06 - 13 %SystemRoot%\system32\rsvpsp.dll [MS], 04 - 05 Toolbars, Explorer Bars, Extensions: ------------------------------------ Toolbars HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\ "{EF99BD32-C1FB-11D2-892F-0090271D4F88}" -> {HKLM...CLSID} = "Yahoo! Toolbar" \InProcServer32\(Default) = "C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll" ["Yahoo! Inc."] HKLM\Software\Microsoft\Internet Explorer\Toolbar\ "{EF99BD32-C1FB-11D2-892F-0090271D4F88}" = (no title provided) -> {HKLM...CLSID} = "Yahoo! Toolbar" \InProcServer32\(Default) = "C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll" ["Yahoo! Inc."] Running Services (Display Name, Service Name, Path {Service DLL}): ------------------------------------------------------------------ avast! Antivirus, avast! Antivirus, ""C:\Program Files\Alwil Software\Avast4\ashServ.exe"" [null data] avast! iAVS4 Control Service, aswUpdSv, ""C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe"" [null data] avast! Mail Scanner, avast! Mail Scanner, ""C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service" ["ALWIL Software"] avast! Web Scanner, avast! Web Scanner, ""C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service" ["ALWIL Software"] NVIDIA Display Driver Service, NVSvc, "C:\WINDOWS\System32\nvsvc32.exe" ["NVIDIA Corporation"] ---------- + This report excludes default entries except where indicated. + To see *everywhere* the script checks and *everything* it finds, launch it from a command prompt or a shortcut with the -all parameter. + The search for DESKTOP.INI DLL launch points on all local fixed drives took 284 seconds. ---------- (total run time: 389 seconds)

ale neta mu ciagle muli ma 512kb/s a wystarczy looknac ile mu sie log generowal

**Posty:** 18165 · przez **wojtas** 29 Gru 2006, 19:56

jest ok problem nie lezy po stronie wirusow jesli problem z netem nie ustapi niech zadzwoni do swojego prowidera neta

**Posty:** 934 · przez **AragornXT** 29 Gru 2006, 20:31

Niech usunie tempy i cookie.

**Posty:** 3 · przez **mac10** 29 Gru 2006, 23:52

probowalem skasowac cookies wliczjac plik index w trybie awaryjnym i sie nie udalo. nawet teraz nie moge wlaczyc trybu awaryjnego, a i gdzie sie znajduje temporary files?????

KOMP NADAL SIE MULI JAK CHOLERA

**Posty:** 1134 · przez **MISTEJK** 30 Gru 2006, 00:02

Przeskanuj system tym programem i usuń wszystko co znajdzie: www.ewido.net

Następnie:
Wklej nowe logi z Hijackthis + Silent Runners

i dodatkowo: log z http://download.bleepingcomputer.com/sUBs/combofix.exe (log się tu będzie znajdował C:\ComboFix.txt)

**Posty:** 934 · przez **AragornXT** 30 Gru 2006, 01:04

A próbowałeś jakimś programem typu Ccleaner ?

**Posty:** 3 · przez **mac10** 30 Gru 2006, 02:29

nie probowalem a mozesz podac jakis link

[ Dodano: Dzisiaj o 1:38 ]
Logfile of HijackThis v1.99.1
Scan saved at 01:17:15, on 2006-12-30
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\logonui.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\System32\RUNDLL32.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\D-Tools\daemon.exe
C:\WINDOWS\System32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Gadu-Gadu\gg.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Winamp\winamp.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\mac10\Pulpit\hijackthis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [BearShare] "C:\Program Files\BearShare\BearShare.exe" /pause
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Gadu-Gadu] "C:\Program Files\Gadu-Gadu\gg.exe" /tray
O16 - DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} (ewidoOnlineScan Control) - http://downloads.ewido.net/ewidoOnlineScan.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe

[ Dodano: Dzisiaj o 1:42 ]
silent runner i combofix

"Silent Runners.vbs", revision 49, http://www.silentrunners.org/
Operating System: Windows XP
Output limited to non-default values, except where indicated by "{++}"

Startup items buried in registry:
---------------------------------

HKCU\Software\Microsoft\Windows\CurrentVersion\Run\ {++}
"CTFMON.EXE" = "C:\WINDOWS\System32\ctfmon.exe" [MS]
"MSMSGS" = ""C:\Program Files\Messenger\msmsgs.exe" /background" [MS]
"Gadu-Gadu" = ""C:\Program Files\Gadu-Gadu\gg.exe" /tray" ["Gadu-Gadu S.A."]

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\ {++}
"KernelFaultCheck" = "C:\WINDOWS\system32\dumprep 0 -k"
"NvCplDaemon" = "RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup" [MS]
"nwiz" = "nwiz.exe /install" ["NVIDIA Corporation"]
"avast!" = "C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [null data]
"NvMediaCenter" = "RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit" [MS]
"SoundMan" = "SOUNDMAN.EXE" ["Realtek Semiconductor Corp."]
"BearShare" = ""C:\Program Files\BearShare\BearShare.exe" /pause" ["Free Peers, Inc."]
"DAEMON Tools-1033" = ""C:\Program Files\D-Tools\daemon.exe" -lang 1033" ["DAEMON'S HOME"]

HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
{02478D38-C3F9-4EFB-9B51-7695ECA05670}\(Default) = (no title provided)
-> {HKLM...CLSID} = "Yahoo! Toolbar Helper"
\InProcServer32\(Default) = "C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll" ["Yahoo! Inc."]

HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
"{42071714-76d4-11d1-8b24-00a0c9068ff3}" = "Rozszerzenie CPL kadrowania wyświetlania"
-> {HKLM...CLSID} = "Rozszerzenie CPL kadrowania wyświetlania"
\InProcServer32\(Default) = "deskpan.dll" [file not found]
"{88895560-9AA2-1069-930E-00AA0030EBC8}" = "Rozszerzenie ikony HyperTerminalu"
-> {HKLM...CLSID} = "HyperTerminal Icon Ext"
\InProcServer32\(Default) = "C:\WINDOWS\System32\hticons.dll" ["Hilgraeve, Inc."]
"{A70C977A-BF00-412C-90B7-034C51DA2439}" = "NvCpl DesktopContext Class"
-> {HKLM...CLSID} = "DesktopContext Class"
\InProcServer32\(Default) = "C:\WINDOWS\System32\nvcpl.dll" ["NVIDIA Corporation"]
"{1CDB2949-8F65-4355-8456-263E7C208A5D}" = "Desktop Explorer"
-> {HKLM...CLSID} = "Desktop Explorer"
\InProcServer32\(Default) = "C:\WINDOWS\System32\nvshell.dll" ["NVIDIA Corporation"]
"{1E9B04FB-F9E5-4718-997B-B8DA88302A47}" = "Desktop Explorer Menu"
-> {HKLM...CLSID} = (no title provided)
\InProcServer32\(Default) = "C:\WINDOWS\System32\nvshell.dll" ["NVIDIA Corporation"]
"{1E9B04FB-F9E5-4718-997B-B8DA88302A48}" = "nView Desktop Context Menu"
-> {HKLM...CLSID} = "nView Desktop Context Menu"
\InProcServer32\(Default) = "C:\WINDOWS\System32\nvshell.dll" ["NVIDIA Corporation"]
"{472083B0-C522-11CF-8763-00608CC02F24}" = "avast"
-> {HKLM...CLSID} = "avast"
\InProcServer32\(Default) = "C:\Program Files\Alwil Software\Avast4\ashShell.dll" ["ALWIL Software"]
"{FFB699E0-306A-11d3-8BD1-00104B6F7516}" = "Play on my TV helper"
-> {HKLM...CLSID} = "NVIDIA CPL Extension"
\InProcServer32\(Default) = "C:\WINDOWS\System32\nvcpl.dll" ["NVIDIA Corporation"]

HKLM\Software\Classes\*\shellex\ContextMenuHandlers\
avast\(Default) = "{472083B0-C522-11CF-8763-00608CC02F24}"
-> {HKLM...CLSID} = "avast"
\InProcServer32\(Default) = "C:\Program Files\Alwil Software\Avast4\ashShell.dll" ["ALWIL Software"]

HKLM\Software\Classes\Folder\shellex\ContextMenuHandlers\
avast\(Default) = "{472083B0-C522-11CF-8763-00608CC02F24}"
-> {HKLM...CLSID} = "avast"
\InProcServer32\(Default) = "C:\Program Files\Alwil Software\Avast4\ashShell.dll" ["ALWIL Software"]

Group Policies {GPedit.msc branch and setting}:
-----------------------------------------------

Note: detected settings may not have any effect.

HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System\

"shutdownwithoutlogon" = (REG_DWORD) hex:0x00000001
{Computer Configuration|Windows Settings|Security Settings|Local Policies|Security Options|
Shutdown: Allow system to be shut down without having to log on}

"undockwithoutlogon" = (REG_DWORD) hex:0x00000001
{Computer Configuration|Windows Settings|Security Settings|Local Policies|Security Options|
Devices: Allow undock without having to log on}

Active Desktop and Wallpaper:
-----------------------------

Active Desktop may be disabled at this entry:
HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellState

Displayed if Active Desktop enabled and wallpaper not set by Group Policy:
HKCU\Software\Microsoft\Internet Explorer\Desktop\General\
"Wallpaper" = "C:\WINDOWS\web\wallpaper\Idylla.bmp"

Displayed if Active Desktop disabled and wallpaper not set by Group Policy:
HKCU\Control Panel\Desktop\
"Wallpaper" = "C:\WINDOWS\web\wallpaper\Idylla.bmp"

Enabled Screen Saver:
---------------------

HKCU\Control Panel\Desktop\
"SCRNSAVE.EXE" = "C:\WINDOWS\System32\logon.scr" [MS]

Winsock2 Service Provider DLLs:
-------------------------------

Namespace Service Providers

HKLM\System\CurrentControlSet\Services\Winsock2\Parameters\NameSpace_Catalog5\Catalog_Entries\ {++}
000000000001\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS]
000000000002\LibraryPath = "%SystemRoot%\System32\winrnr.dll" [MS]
000000000003\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS]

Transport Service Providers

HKLM\System\CurrentControlSet\Services\Winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\ {++}
0000000000##\PackedCatalogItem (contains) DLL [Company Name], (at) ## range:
%SystemRoot%\system32\mswsock.dll [MS], 01 - 03, 06 - 15
%SystemRoot%\system32\rsvpsp.dll [MS], 04 - 05

Toolbars, Explorer Bars, Extensions:
------------------------------------

Toolbars

HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\
"{EF99BD32-C1FB-11D2-892F-0090271D4F88}"
-> {HKLM...CLSID} = "Yahoo! Toolbar"
\InProcServer32\(Default) = "C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll" ["Yahoo! Inc."]

HKLM\Software\Microsoft\Internet Explorer\Toolbar\
"{EF99BD32-C1FB-11D2-892F-0090271D4F88}" = (no title provided)
-> {HKLM...CLSID} = "Yahoo! Toolbar"
\InProcServer32\(Default) = "C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll" ["Yahoo! Inc."]

Running Services (Display Name, Service Name, Path {Service DLL}):
------------------------------------------------------------------

avast! Antivirus, avast! Antivirus, ""C:\Program Files\Alwil Software\Avast4\ashServ.exe"" [null data]
avast! iAVS4 Control Service, aswUpdSv, ""C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe"" [null data]
avast! Mail Scanner, avast! Mail Scanner, ""C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service" ["ALWIL Software"]
avast! Web Scanner, avast! Web Scanner, ""C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service" ["ALWIL Software"]
NVIDIA Display Driver Service, NVSvc, "C:\WINDOWS\System32\nvsvc32.exe" ["NVIDIA Corporation"]

----------
+ This report excludes default entries except where indicated.
+ To see *everywhere* the script checks and *everything* it finds,
launch it from a command prompt or a shortcut with the -all parameter.
+ The search for DESKTOP.INI DLL launch points on all local fixed drives
took 214 seconds.
---------- (total run time: 294 seconds)

Path MotUsbDriverInst is running from is D:\Windows XP detectedMotorola USB Driver Removal Utility
Program Launched: Thursday, December 28, 2006 at 02:08:21
Operating System is Microsoft Windows XP
Removal Process Started at: Thursday, December 28, 2006 at 02:08:35
...Removing Driver .sys file
......Removing: C:\WINDOWS\system32\drivers\rndismpk.sys
......rndismpk.sys File Not Found
......Removing: C:\WINDOWS\system32\drivers\usb8023k.sys
......usb8023k.sys File Not Found
......Removing: C:\WINDOWS\Inf\Drvidx.bin
......Drvidx.bin File Not Found
......Removing: C:\WINDOWS\Inf\sb4220.inf
......sb4220.inf File Not Found
......Removing: C:\WINDOWS\Inf\sb4220.pnf
......sb4220.pnf File Not Found
......Removing: C:\WINDOWS\Inf\catalog\sb4220.cat
......sb4220.cat File Not Found
......Removing: C:\WINDOWS\system32\drivers\NetMotCM.sys
......NetMotCM.sys Successfully Removed
......Removing: C:\WINDOWS\system32\drivers\Net4100.sys
......Net4100.sys File Not Found
......Removing: C:\WINDOWS\system32\drivers\NetMotCG.sys
......NetMotCG.sys File Not Found
......Windows 2000 Registry Search Started: Thursday, December 28, 2006 at 02:08:35
.........Get the Registrey key value from:
......... HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E972-E325-11CE-BFC1-08002BE10318}\
.........There are 15 Keys to check.
.........Key 00 is 0000
.........Key 01 is 0001
......... Checking entry 01.05 KeyName is ComponentId Value pci\ven_10ec&dev_8139.
......... Checking entry 01.08 KeyName is InfPath Value netrtsnt.inf.
.........Key 02 is 0002
......... Checking entry 02.01 KeyName is ComponentId Value sw\{eeab7790-c514-11d1-b42b-00805fc1270e}.
......... Checking entry 02.02 KeyName is InfPath Value netrasa.inf.
.........Key 03 is 0003
......... Checking entry 03.01 KeyName is ComponentId Value ms_pschedmp.
......... Checking entry 03.02 KeyName is InfPath Value netpsa.inf.
.........Key 04 is 0004
......... Checking entry 04.05 KeyName is ComponentId Value ms_l2tpminiport.
......... Checking entry 04.06 KeyName is InfPath Value netrasa.inf.
.........Key 05 is 0005
......... Checking entry 05.12 KeyName is ComponentId Value ms_pptpminiport.
......... Checking entry 05.13 KeyName is InfPath Value netrasa.inf.
.........Key 06 is 0006
......... Checking entry 06.05 KeyName is ComponentId Value ms_pppoeminiport.
......... Checking entry 06.06 KeyName is InfPath Value netrasa.inf.
.........Key 07 is 0007
......... Checking entry 07.04 KeyName is ComponentId Value ms_ptiminiport.
......... Checking entry 07.05 KeyName is InfPath Value netrasa.inf.
.........Key 08 is 0008
......... Checking entry 08.01 KeyName is ComponentId Value ms_ndiswanip.
......... Checking entry 08.02 KeyName is InfPath Value netrasa.inf.
.........Key 09 is 0009
......... Checking entry 09.01 KeyName is ComponentId Value ms_pschedmp.
......... Checking entry 09.02 KeyName is InfPath Value netpsa.inf.
.........Key 10 is 0010
......... Checking entry 10.03 KeyName is ComponentId Value sw\{48926476-2cae-4ded-a86e-73ddebed6779}.
......... Checking entry 10.04 KeyName is InfPath Value ndisip.inf.
.........Key 11 is 0011
......... Checking entry 11.06 KeyName is ComponentId Value ms_irdaminiport.
......... Checking entry 11.07 KeyName is InfPath Value netrasa.inf.
.........Key 12 is 0012
......... Checking entry 12.02 KeyName is ComponentId Value usb\vid_07b2&pid_4200.
Found matching Vendor ID and Product ID at 12.2 KeyName is ComponentId Value usb\vid_07b2&pid_4200.
......... Checking entry 12.04 KeyName is InfPath Value oem14.inf.

Key Found at 12.4:
SYSTEM\CurrentControlSet\Control\Class\{4D36E972-E325-11CE-BFC1-08002BE10318}\0012
......Removing: C:\WINDOWS\inf\oem14.inf
......oem14.inf Successfully Removed
......Removing: C:\WINDOWS\inf\oem14.PNF
......oem14.PNF Successfully Removed
...Removing Registry Entry: SYSTEM\CurrentControlSet\Control\Class\{4D36E972-E325-11CE-BFC1-08002BE10318}\0012
......Registry Entries Removed
......Windows 2000 Registry Search Started: Thursday, December 28, 2006 at 02:08:35
.........Get the Registrey key value from:
......... HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E972-E325-11CE-BFC1-08002BE10318}\
.........There are 14 Keys to check.
.........Key 00 is 0000
.........Key 01 is 0001
......... Checking entry 01.05 KeyName is ComponentId Value pci\ven_10ec&dev_8139.
......... Checking entry 01.08 KeyName is InfPath Value netrtsnt.inf.
.........Key 02 is 0002
......... Checking entry 02.01 KeyName is ComponentId Value sw\{eeab7790-c514-11d1-b42b-00805fc1270e}.
......... Checking entry 02.02 KeyName is InfPath Value netrasa.inf.
.........Key 03 is 0003
......... Checking entry 03.01 KeyName is ComponentId Value ms_pschedmp.
......... Checking entry 03.02 KeyName is InfPath Value netpsa.inf.
.........Key 04 is 0004
......... Checking entry 04.05 KeyName is ComponentId Value ms_l2tpminiport.
......... Checking entry 04.06 KeyName is InfPath Value netrasa.inf.
.........Key 05 is 0005
......... Checking entry 05.12 KeyName is ComponentId Value ms_pptpminiport.
......... Checking entry 05.13 KeyName is InfPath Value netrasa.inf.
.........Key 06 is 0006
......... Checking entry 06.05 KeyName is ComponentId Value ms_pppoeminiport.
......... Checking entry 06.06 KeyName is InfPath Value netrasa.inf.
.........Key 07 is 0007
......... Checking entry 07.04 KeyName is ComponentId Value ms_ptiminiport.
......... Checking entry 07.05 KeyName is InfPath Value netrasa.inf.
.........Key 08 is 0008
......... Checking entry 08.01 KeyName is ComponentId Value ms_ndiswanip.
......... Checking entry 08.02 KeyName is InfPath Value netrasa.inf.
.........Key 09 is 0009
......... Checking entry 09.01 KeyName is ComponentId Value ms_pschedmp.
......... Checking entry 09.02 KeyName is InfPath Value netpsa.inf.
.........Key 10 is 0010
......... Checking entry 10.03 KeyName is ComponentId Value sw\{48926476-2cae-4ded-a86e-73ddebed6779}.
......... Checking entry 10.04 KeyName is InfPath Value ndisip.inf.
.........Key 11 is 0011
......... Checking entry 11.06 KeyName is ComponentId Value ms_irdaminiport.
......... Checking entry 11.07 KeyName is InfPath Value netrasa.inf.
.........Key 12 is 0013
......... Checking entry 12.01 KeyName is ComponentId Value ms_pschedmp.
......... Checking entry 12.02 KeyName is InfPath Value netpsa.inf.
.........Key 13 is 0014
......... Checking entry 13.03 KeyName is ComponentId Value hamachi.
......... Checking entry 13.04 KeyName is InfPath Value oem18.inf.
......Removing residual .inf/.pnf files
.........inf and pnf files for SB4220 Not Found
.........inf and pnf files for SB4100/SB4101 Not Found
.........inf and pnf files for SB4200 Not Found
.........inf and pnf files for CG4500 Not Found
.........inf and pnf files for CG4500b Not Found
.........inf and pnf files for CG4500e Not Found
.........inf and pnf files for CG5500 Not Found
Motorola USB driver removal completed.
Program Terminated at: Thursday, December 28, 2006 at 02:08:38

**Posty:** 934 · przez **AragornXT** 30 Gru 2006, 09:32

Najpierw logi obejmij w tagi:

[code ] tu log [/code]

mac10 napisał(a):nie probowalem a mozesz podac jakis link

http://programosy.pl/program,ccleaner.html

**Posty:** 3 · przez **mac10** 30 Gru 2006, 20:24

Kod: Zaznacz wszystko: ComboFix 06.11.27 - Running from: "C:\Documents and Settings\mac10\Pulpit" ((((((((((((((((((((((((((((((( Files Created from 2006-11-30 to 2006-12-30 )))))))))))))))))))))))))))))))))) 2006-12-29 21:41 <DIR> d-------- C:\Documents and Settings\mac10\Dane aplikacji\COWON 2006-12-29 21:37 8,192 --a------ C:\WINDOWS\system32\tsbyuv.dll 2006-12-29 21:37 50,688 --a------ C:\WINDOWS\system32\vfwwdm32.dll 2006-12-29 21:37 45,568 --a------ C:\WINDOWS\system32\iyuv_32.dll 2006-12-29 21:32 69,472 -ra------ C:\WINDOWS\system32\drivers\usbhub20.sys 2006-12-29 21:32 28,928 -ra------ C:\WINDOWS\system32\drivers\usbehci.sys 2006-12-29 21:18 182,880 --a------ C:\WINDOWS\system32\iuengine.dll 2006-12-29 20:12 5,248 --a------ C:\WINDOWS\system32\drivers\d347prt.sys 2006-12-29 20:12 155,136 --a------ C:\WINDOWS\system32\drivers\d347bus.sys 2006-12-29 20:12 <DIR> d-------- C:\WINDOWS\Downloaded Installations 2006-12-29 20:12 <DIR> d-------- C:\Program Files\D-Tools 2006-12-29 16:27 <DIR> d--hs---- C:\WINDOWS\CSC 2006-12-29 00:42 <DIR> d-------- C:\Documents and Settings\mac10\Dane aplikacji\Skype 2006-12-28 23:37 90,112 -ra------ C:\WINDOWS\soundman.exe 2006-12-28 23:37 57,344 --a------ C:\WINDOWS\system32\drivers\drmk.sys 2006-12-28 23:37 3,804,416 -r------- C:\WINDOWS\system32\drivers\alcxwdm.sys 2006-12-28 23:37 217,088 -ra------ C:\WINDOWS\Alcrmv.exe 2006-12-28 23:37 157,184 -r------- C:\WINDOWS\system32\RtlCPAPI.dll 2006-12-28 23:37 135,040 --a------ C:\WINDOWS\system32\drivers\portcls.sys 2006-12-28 23:37 10,475,008 -r------- C:\WINDOWS\system32\RTLCPL.exe 2006-12-28 23:36 <DIR> d-------- C:\Program Files\Realtek AC97 2006-12-28 23:34 36,224 --a------ C:\WINDOWS\system32\drivers\isapnp.sys 2006-12-28 23:15 <DIR> d---s---- C:\Documents and Settings\mac10\UserData 2006-12-28 23:15 <DIR> d-------- C:\Documents and Settings\mac10\Shared 2006-12-28 23:15 <DIR> d-------- C:\Documents and Settings\mac10\Incomplete 2006-12-28 22:21 9,600 --a------ C:\WINDOWS\system32\drivers\hidusb.sys 2006-12-28 21:22 <DIR> d-------- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\NVIDIA 2006-12-28 18:58 90,112 --a------ C:\WINDOWS\system32\AVASTSS.scr 2006-12-28 18:58 87,424 --a------ C:\WINDOWS\system32\drivers\aswmon2.sys 2006-12-28 18:58 85,952 --a------ C:\WINDOWS\system32\drivers\aswmon.sys 2006-12-28 18:58 666,240 --a------ C:\WINDOWS\system32\aswBoot.exe 2006-12-28 18:58 499,712 --a------ C:\WINDOWS\system32\MSVCP71.dll 2006-12-28 18:58 36,176 --a------ C:\WINDOWS\system32\drivers\aswTdi.sys 2006-12-28 18:58 348,160 --a------ C:\WINDOWS\system32\MSVCR71.dll 2006-12-28 18:58 24,560 --a------ C:\WINDOWS\system32\drivers\aavmker4.sys 2006-12-28 18:58 16,352 --a------ C:\WINDOWS\system32\drivers\aswRdr.sys 2006-12-28 18:58 1,060,864 --a------ C:\WINDOWS\system32\MFC71.dll 2006-12-28 15:35 <DIR> d-------- C:\WINDOWS\system32\appmgmt 2006-12-28 15:33 <DIR> d-------- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\Yahoo! Companion 2006-12-28 15:31 <DIR> d-------- C:\Documents and Settings\mac10\Dane aplikacji\Macromedia 2006-12-28 14:29 14,864 --------- C:\WINDOWS\system32\drivers\NVXBAR.SYS 2006-12-28 14:28 208,896 --a------ C:\WINDOWS\system32\nvudisp.exe 2006-12-28 14:28 139,118 --------- C:\WINDOWS\system32\drivers\NVCAP.SYS 2006-12-28 14:28 <DIR> d-------- C:\WINDOWS\nview 2006-12-28 14:27 208,896 --a------ C:\WINDOWS\system32\NVUNINST.EXE 2006-12-28 14:22 <DIR> d-------- C:\WINDOWS\RegisteredPackages 2006-12-28 14:21 98,816 --a------ C:\WINDOWS\system32\dmstyle.dll 2006-12-28 14:21 974,848 --a------ C:\WINDOWS\system32\dxdiag.exe 2006-12-28 14:21 83,968 --a------ C:\WINDOWS\system32\drivers\nabtsfec.sys 2006-12-28 14:21 80,896 --a------ C:\WINDOWS\system32\dpvsetup.exe 2006-12-28 14:21 8,192 --a------ C:\WINDOWS\system32\d3d8thk.dll 2006-12-28 14:21 797,184 --a------ C:\WINDOWS\system32\d3dim700.dll 2006-12-28 14:21 79,360 --a------ C:\WINDOWS\system32\dpwsockx.dll 2006-12-28 14:21 77,824 --a------ C:\WINDOWS\system32\dpmodemx.dll 2006-12-28 14:21 76,800 --a------ C:\WINDOWS\system32\dmscript.dll 2006-12-28 14:21 733,184 --a------ C:\WINDOWS\system32\qedwipes.dll 2006-12-28 14:21 723,968 --a------ C:\WINDOWS\system32\dpnet.dll 2006-12-28 14:21 7,424 --a------ C:\WINDOWS\system32\drivers\mskssrv.sys 2006-12-28 14:21 68,096 --a------ C:\WINDOWS\system32\dpnhupnp.dll 2006-12-28 14:21 667,648 --a------ C:\WINDOWS\system32\dinput8.dll 2006-12-28 14:21 648,704 --a------ C:\WINDOWS\system32\dinput.dll 2006-12-28 14:21 64,512 --a------ C:\WINDOWS\system32\amstream.dll 2006-12-28 14:21 602,624 --a------ C:\WINDOWS\system32\dx7vb.dll 2006-12-28 14:21 58,368 --a------ C:\WINDOWS\system32\dmcompos.dll 2006-12-28 14:21 52,096 --a------ C:\WINDOWS\system32\drivers\msdv.sys 2006-12-28 14:21 5,504 --a------ C:\WINDOWS\system32\drivers\mstee.sys 2006-12-28 14:21 5,248 --a------ C:\WINDOWS\system32\drivers\mspclock.sys 2006-12-28 14:21 491,520 --a------ C:\WINDOWS\system32\dsdmoprp.dll 2006-12-28 14:21 48,512 --a------ C:\WINDOWS\system32\drivers\stream.sys 2006-12-28 14:21 470,528 --a------ C:\WINDOWS\system32\qdvd.dll 2006-12-28 14:21 47,104 --a------ C:\WINDOWS\system32\wstdecod.dll 2006-12-28 14:21 46,592 --a------ C:\WINDOWS\system32\dxdllreg.exe 2006-12-28 14:21 4,608 --a------ C:\WINDOWS\system32\drivers\mspqm.sys 2006-12-28 14:21 4,096 --a------ C:\WINDOWS\system32\ksuser.dll 2006-12-28 14:21 4,096 --a------ C:\WINDOWS\system32\drivers\swenum.sys 2006-12-28 14:21 381,952 --a------ C:\WINDOWS\system32\dsound.dll 2006-12-28 14:21 381,952 --a------ C:\WINDOWS\system32\dpvoice.dll 2006-12-28 14:21 354,816 --a------ C:\WINDOWS\system32\psisdecd.dll 2006-12-28 14:21 34,304 --a------ C:\WINDOWS\system32\mciqtz32.dll 2006-12-28 14:21 33,280 --a------ C:\WINDOWS\system32\dmloader.dll 2006-12-28 14:21 324,096 --a------ C:\WINDOWS\system32\mswebdvd.dll 2006-12-28 14:21 32,768 --a------ C:\WINDOWS\system32\dpnhpast.dll 2006-12-28 14:21 316,928 --a------ C:\WINDOWS\system32\qdv.dll 2006-12-28 14:21 31,744 --a------ C:\WINDOWS\system32\pid.dll 2006-12-28 14:21 3,072 --a------ C:\WINDOWS\system32\dpnlobby.dll 2006-12-28 14:21 3,072 --a------ C:\WINDOWS\system32\dpnaddr.dll 2006-12-28 14:21 292,864 --a------ C:\WINDOWS\system32\ddraw.dll 2006-12-28 14:21 28,160 --a------ C:\WINDOWS\system32\dplaysvr.exe 2006-12-28 14:21 27,136 --a------ C:\WINDOWS\system32\dmband.dll 2006-12-28 14:21 257,024 --a------ C:\WINDOWS\system32\qcap.dll 2006-12-28 14:21 24,064 --a------ C:\WINDOWS\system32\ddrawex.dll 2006-12-28 14:21 230,400 --a------ C:\WINDOWS\system32\dplayx.dll 2006-12-28 14:21 19,968 --a------ C:\WINDOWS\system32\dpvacm.dll 2006-12-28 14:21 186,880 --a------ C:\WINDOWS\system32\dsdmo.dll 2006-12-28 14:21 181,248 --a------ C:\WINDOWS\system32\dmime.dll 2006-12-28 14:21 18,944 --a------ C:\WINDOWS\system32\encapi.dll 2006-12-28 14:21 18,688 --a------ C:\WINDOWS\system32\drivers\wstcodec.sys 2006-12-28 14:21 18,432 --a------ C:\WINDOWS\system32\dswave.dll 2006-12-28 14:21 173,056 --a------ C:\WINDOWS\system32\qasf.dll 2006-12-28 14:21 16,896 --a------ C:\WINDOWS\system32\msyuv.dll 2006-12-28 14:21 16,896 --a------ C:\WINDOWS\system32\dpnsvr.exe 2006-12-28 14:21 16,384 --a------ C:\WINDOWS\system32\drivers\ccdecode.sys 2006-12-28 14:21 15,104 --a------ C:\WINDOWS\system32\drivers\mpe.sys 2006-12-28 14:21 14,976 --a------ C:\WINDOWS\system32\drivers\streamip.sys 2006-12-28 14:21 132,608 --a------ C:\WINDOWS\system32\devenum.dll 2006-12-28 14:21 130,304 --a------ C:\WINDOWS\system32\drivers\ks.sys 2006-12-28 14:21 13,312 --a------ C:\WINDOWS\system32\msdmo.dll 2006-12-28 14:21 122,880 --a------ C:\WINDOWS\system32\dmusic.dll 2006-12-28 14:21 112,128 --a------ C:\WINDOWS\system32\dpvvox.dll 2006-12-28 14:21 11,392 --a------ C:\WINDOWS\system32\drivers\bdasup.sys 2006-12-28 14:21 100,864 --a------ C:\WINDOWS\system32\dmsynth.dll 2006-12-28 14:21 10,880 --a------ C:\WINDOWS\system32\drivers\slip.sys 2006-12-28 14:21 10,496 --a------ C:\WINDOWS\system32\drivers\dxapi.sys 2006-12-28 14:21 10,112 --a------ C:\WINDOWS\system32\drivers\ndisip.sys 2006-12-28 14:21 1,962,496 --a------ C:\WINDOWS\system32\quartz.dll 2006-12-28 14:21 1,798,144 --a------ C:\WINDOWS\system32\qedit.dll 2006-12-28 14:21 1,769,472 --a------ C:\WINDOWS\system32\dxdiagn.dll 2006-12-28 14:21 1,703,936 --a------ C:\WINDOWS\system32\d3d9.dll 2006-12-28 14:21 1,294,336 --a------ C:\WINDOWS\system32\dsound3d.dll 2006-12-28 14:21 1,230,336 --a------ C:\WINDOWS\system32\msvidctl.dll 2006-12-28 14:21 1,201,152 --a------ C:\WINDOWS\system32\d3d8.dll 2006-12-28 14:21 1,189,888 --a------ C:\WINDOWS\system32\dx8vb.dll 2006-12-28 14:21 <DIR> d-------- C:\WINDOWS\LastGood 2006-12-28 14:14 79,616 --a------ C:\WINDOWS\system32\drivers\wdmaud.sys 2006-12-28 14:14 57,472 --a------ C:\WINDOWS\system32\drivers\sysaudio.sys 2006-12-28 14:14 54,272 --a------ C:\WINDOWS\system32\drivers\swmidi.sys 2006-12-28 14:14 50,048 --a------ C:\WINDOWS\system32\drivers\DMusic.sys 2006-12-28 14:14 5,632 --a------ C:\WINDOWS\system32\drivers\splitter.sys 2006-12-28 14:14 40,960 -r------- C:\WINDOWS\system32\ChCfg.exe 2006-12-28 14:14 2,816 --a------ C:\WINDOWS\system32\drivers\drmkaud.sys 2006-12-28 14:14 159,232 --a------ C:\WINDOWS\system32\drivers\kmixer.sys 2006-12-28 14:14 122,472 --a------ C:\WINDOWS\system32\drivers\aec.sys 2006-12-28 14:13 307,200 -r------- C:\WINDOWS\alcupd.exe 2006-12-28 14:12 <DIR> d-------- C:\WINDOWS\system32\ReinstallBackups 2006-12-28 14:12 <DIR> d-------- C:\WINDOWS\LastGood.Tmp 2006-12-28 14:06 <DIR> d-------- C:\Documents and Settings\mac10\Gadu-Gadu 2006-12-28 04:47 <DIR> dr-hsc--- C:\WINDOWS\system32\dllcache 2006-12-28 04:47 <DIR> dr--s---- C:\WINDOWS\Fonts 2006-12-28 04:47 <DIR> dr------- C:\WINDOWS\Web 2006-12-28 04:47 <DIR> d-ahs---- C:\WINDOWS\.. 2006-12-28 04:47 <DIR> d--h----- C:\WINDOWS\inf 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\WinSxS 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\twain_32 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\Temp 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\wins 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\wbem 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\usmt 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\spool 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\ShellExt 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\Setup 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\ras 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\oobe 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\npp 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\mui 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\inetsrv 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\IME 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\icsxml 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\ias 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\export 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\drivers\etc 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\drivers\disdn 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\drivers\.. 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\drivers\. 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\drivers 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\dhcp 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\config 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\3com_dmi 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\3076 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\2052 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\1054 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\1045 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\1042 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\1041 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\1037 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\1033 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\1031 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\1028 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\1025 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\.. 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32\. 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system32 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system\.. 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system\. 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\system 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\security 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\Resources 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\repair 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\mui 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\msapps 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\msagent 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\Media 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\java 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\ime 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\Help 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\Driver Cache 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\Debug 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\Cursors 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\Connection Wizard 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\Config 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\AppPatch 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\addins 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS\. 2006-12-28 04:47 <DIR> d-------- C:\WINDOWS 2006-12-28 04:28 <DIR> d-------- C:\WINDOWS\Minidump 2006-12-28 04:18 15,399 --a------ C:\WINDOWS\system32\drivers\netmotcm.sys 2006-12-28 04:12 <DIR> d--hs---- C:\WINDOWS\Installer 2006-12-28 04:12 <DIR> d-------- C:\Documents and Settings\mac10\Dane aplikacji\Identities 2006-12-28 04:11 <DIR> dr-h----- C:\Documents and Settings\mac10\SendTo 2006-12-28 04:11 <DIR> dr-h----- C:\Documents and Settings\mac10\Recent 2006-12-28 04:11 <DIR> dr-h----- C:\Documents and Settings\mac10\Dane aplikacji\. 2006-12-28 04:11 <DIR> dr-h----- C:\Documents and Settings\mac10\Dane aplikacji 2006-12-28 04:11 <DIR> dr------- C:\Documents and Settings\mac10\Ulubione 2006-12-28 04:11 <DIR> dr------- C:\Documents and Settings\mac10\Moje dokumenty 2006-12-28 04:11 <DIR> dr------- C:\Documents and Settings\mac10\Menu Start 2006-12-28 04:11 <DIR> d--h----- C:\Documents and Settings\mac10\Ustawienia lokalne 2006-12-28 04:11 <DIR> d--h----- C:\Documents and Settings\mac10\Szablony 2006-12-28 04:11 <DIR> d--h----- C:\Documents and Settings\mac10\PrintHood 2006-12-28 04:11 <DIR> d--h----- C:\Documents and Settings\mac10\NetHood 2006-12-28 04:11 <DIR> d---s---- C:\Documents and Settings\mac10\Dane aplikacji\Microsoft 2006-12-28 04:11 <DIR> d---s---- C:\Documents and Settings\mac10\Cookies 2006-12-28 04:11 <DIR> d-------- C:\Documents and Settings\mac10\Pulpit 2006-12-28 04:11 <DIR> d-------- C:\Documents and Settings\mac10\Dane aplikacji\.. 2006-12-28 04:11 <DIR> d-------- C:\Documents and Settings\mac10\.. 2006-12-28 04:11 <DIR> d-------- C:\Documents and Settings\mac10\. 2006-12-28 04:10 <DIR> d-------- C:\WINDOWS\Prefetch 2006-12-28 04:06 <DIR> d-------- C:\WINDOWS\system32\xircom 2006-12-28 04:05 112,128 --a------ C:\WINDOWS\system32\mapi32.dll 2006-12-28 04:04 179,200 --a------ C:\WINDOWS\system32\qmgr.dll 2006-12-28 04:04 17,408 --a------ C:\WINDOWS\system32\qmgrprxy.dll 2006-12-28 04:04 <DIR> dr------- C:\WINDOWS\Offline Web Pages 2006-12-28 04:04 <DIR> d--hs---- C:\Documents and Settings\All Users.WINDOWS\DRM 2006-12-28 04:04 <DIR> d---s---- C:\WINDOWS\Downloaded Program Files 2006-12-28 04:04 <DIR> d-------- C:\WINDOWS\system32\Macromed 2006-12-28 04:04 <DIR> d-------- C:\WINDOWS\system32\DirectX 2006-12-28 04:04 <DIR> d-------- C:\WINDOWS\srchasst 2006-12-28 04:03 90,624 --a------ C:\WINDOWS\system32\msoert2.dll 2006-12-28 04:03 9,728 --a------ C:\WINDOWS\system32\mstinit.exe 2006-12-28 04:03 81,920 --a------ C:\WINDOWS\system32\isign32.dll 2006-12-28 04:03 73,728 --a------ C:\WINDOWS\system32\ils.dll 2006-12-28 04:03 70,400 --a------ C:\WINDOWS\system32\drivers\sr.sys 2006-12-28 04:03 69,632 --a------ C:\WINDOWS\system32\icwdial.dll 2006-12-28 04:03 67,584 --a------ C:\WINDOWS\system32\acctres.dll 2006-12-28 04:03 65,536 --a------ C:\WINDOWS\system32\msconf.dll 2006-12-28 04:03 61,952 --a------ C:\WINDOWS\system32\srclient.dll 2006-12-28 04:03 61,440 --a------ C:\WINDOWS\system32\icwphbk.dll 2006-12-28 04:03 593,920 --a------ C:\WINDOWS\system32\inetcomm.dll 2006-12-28 04:03 49,152 --a------ C:\WINDOWS\system32\inetres.dll 2006-12-28 04:03 40,960 --a------ C:\WINDOWS\system32\safrslv.dll 2006-12-28 04:03 39,424 --a------ C:\WINDOWS\system32\safrcdlg.dll 2006-12-28 04:03 33,792 --a------ C:\WINDOWS\system32\racpldlg.dll 2006-12-28 04:03 32,768 --a------ C:\WINDOWS\system32\mnmsrvc.exe 2006-12-28 04:03 32,384 --a------ C:\WINDOWS\system32\mnmdd.dll 2006-12-28 04:03 28,672 --a------ C:\WINDOWS\system32\isrdbg32.dll 2006-12-28 04:03 270,336 --a------ C:\WINDOWS\system32\inetcfg.dll 2006-12-28 04:03 26,624 --a------ C:\WINDOWS\system32\safrdm.dll 2006-12-28 04:03 253,440 --a------ C:\WINDOWS\system32\mstask.dll 2006-12-28 04:03 24,576 --a------ C:\WINDOWS\system32\nmmkcert.dll 2006-12-28 04:03 228,864 --a------ C:\WINDOWS\system32\msoeacct.dll 2006-12-28 04:03 219,136 --a------ C:\WINDOWS\system32\srrstr.dll 2006-12-28 04:03 16,384 --a------ C:\WINDOWS\system32\icfgnt5.dll 2006-12-28 04:03 159,744 --a------ C:\WINDOWS\system32\schedsvc.dll 2006-12-28 04:03 155,648 --a------ C:\WINDOWS\system32\srsvc.dll 2006-12-28 04:03 12,288 --a------ C:\WINDOWS\system32\nmevtmsg.dll 2006-12-28 04:03 11,264 --a------ C:\WINDOWS\system32\atrace.dll 2006-12-28 04:03 <DIR> d---s---- C:\WINDOWS\Tasks 2006-12-28 04:03 <DIR> d-------- C:\WINDOWS\system32\Restore 2006-12-28 04:03 <DIR> d-------- C:\WINDOWS\PCHEALTH 2006-12-28 04:02 99,328 --a------ C:\WINDOWS\system32\clipbrd.exe 2006-12-28 04:02 95,744 --a------ C:\WINDOWS\system32\wuaueng.dll 2006-12-28 04:02 9,728 --a------ C:\WINDOWS\system32\xolehlp.dll 2006-12-28 04:02 9,728 --a------ C:\WINDOWS\system32\reset.exe 2006-12-28 04:02 89,600 --a------ C:\WINDOWS\system32\tscfgwmi.dll 2006-12-28 04:02 869,376 --a------ C:\WINDOWS\system32\msdtctm.dll 2006-12-28 04:02 85,504 --a------ C:\WINDOWS\system32\catsrvps.dll 2006-12-28 04:02 83,968 --a------ C:\WINDOWS\system32\mtxoci.dll 2006-12-28 04:02 82,432 --a------ C:\WINDOWS\system32\comrepl.dll 2006-12-28 04:02 80,896 --a------ C:\WINDOWS\system32\charmap.exe 2006-12-28 04:02 8,704 --a------ C:\WINDOWS\system32\icaapi.dll 2006-12-28 04:02 73,864 --a------ C:\WINDOWS\system32\rdpwsx.dll 2006-12-28 04:02 73,216 --a------ C:\WINDOWS\system32\avwav.dll 2006-12-28 04:02 61,952 --a------ C:\WINDOWS\system32\rdshost.exe 2006-12-28 04:02 605,696 --a------ C:\WINDOWS\system32\getuname.dll 2006-12-28 04:02 6,144 --a------ C:\WINDOWS\system32\msdtc.exe 2006-12-28 04:02 583,168 --a------ C:\WINDOWS\system32\catsrvut.dll 2006-12-28 04:02 57,344 --a------ C:\WINDOWS\system32\sol.exe 2006-12-28 04:02 57,344 --a------ C:\WINDOWS\system32\licwmi.dll 2006-12-28 04:02 56,832 --a------ C:\WINDOWS\system32\remotepg.dll 2006-12-28 04:02 56,832 --a------ C:\WINDOWS\system32\colbact.dll 2006-12-28 04:02 55,808 --a------ C:\WINDOWS\system32\freecell.exe 2006-12-28 04:02 54,784 --a------ C:\WINDOWS\system32\msdtclog.dll 2006-12-28 04:02 54,272 --a------ C:\WINDOWS\system32\stclient.dll 2006-12-28 04:02 534,016 --a------ C:\WINDOWS\system32\spider.exe 2006-12-28 04:02 53,248 --a------ C:\WINDOWS\system32\servdeps.dll 2006-12-28 04:02 503,296 --a------ C:\WINDOWS\system32\mstscax.dll 2006-12-28 04:02 5,632 --a------ C:\WINDOWS\system32\write.exe 2006-12-28 04:02 5,120 --a------ C:\WINDOWS\system32\dcomcnfg.exe 2006-12-28 04:02 495,616 --a------ C:\WINDOWS\system32\comuid.dll 2006-12-28 04:02 494,592 --a------ C:\WINDOWS\system32\hypertrm.dll 2006-12-28 04:02 468,480 --a------ C:\WINDOWS\system32\clbcatq.dll 2006-12-28 04:02 44,544 --a------ C:\WINDOWS\system32\hticons.dll 2006-12-28 04:02 41,984 --a------ C:\WINDOWS\system32\rdpclip.exe 2006-12-28 04:02 40,448 --a------ C:\WINDOWS\system32\tscupgrd.exe 2006-12-28 04:02 4,608 --a------ C:\WINDOWS\system32\rdpcfgex.dll 2006-12-28 04:02 4,096 --a------ C:\WINDOWS\system32\wuauserv.dll 2006-12-28 04:02 4,096 --a------ C:\WINDOWS\system32\mtxex.dll 2006-12-28 04:02 387,072 --a------ C:\WINDOWS\system32\mstsc.exe 2006-12-28 04:02 360,960 --a------ C:\WINDOWS\system32\msdtcprx.dll 2006-12-28 04:02 35,328 --a------ C:\WINDOWS\system32\winchat.exe 2006-12-28 04:02 342,016 --a------ C:\WINDOWS\system32\mspaint.exe 2006-12-28 04:02 33,792 --a------ C:\WINDOWS\system32\regini.exe 2006-12-28 04:02 32,768 --a------ C:\WINDOWS\system32\cfgbkend.dll 2006-12-28 04:02 25,600 --a------ C:\WINDOWS\system32\comaddin.dll 2006-12-28 04:02 25,088 --a------ C:\WINDOWS\system32\mtxlegih.dll 2006-12-28 04:02 231,424 --a------ C:\WINDOWS\system32\avtapi.dll 2006-12-28 04:02 22,528 --a------ C:\WINDOWS\system32\qwinsta.exe 2006-12-28 04:02 22,528 --a------ C:\WINDOWS\system32\msg.exe 2006-12-28 04:02 215,040 --a------ C:\WINDOWS\system32\catsrv.dll 2006-12-28 04:02 20,480 --a------ C:\WINDOWS\system32\mtxdm.dll 2006-12-28 04:02 20,232 --a------ C:\WINDOWS\system32\drivers\tdtcp.sys 2006-12-28 04:02 198,656 --a------ C:\WINDOWS\system32\termsrv.dll 2006-12-28 04:02 19,456 --a------ C:\WINDOWS\system32\qprocess.exe 2006-12-28 04:02 183,296 --a------ C:\WINDOWS\system32\accwiz.exe 2006-12-28 04:02 177,152 --a------ C:\WINDOWS\system32\cmprops.dll 2006-12-28 04:02 17,920 --a------ C:\WINDOWS\system32\tsshutdn.exe 2006-12-28 04:02 17,408 --a------ C:\WINDOWS\system32\qappsrv.exe 2006-12-28 04:02 16,896 --a------ C:\WINDOWS\system32\mmfutil.dll 2006-12-28 04:02 16,384 --a------ C:\WINDOWS\system32\tskill.exe 2006-12-28 04:02 16,384 --a------ C:\WINDOWS\system32\rwinsta.exe 2006-12-28 04:02 16,384 --a------ C:\WINDOWS\system32\avmeter.dll 2006-12-28 04:02 151,040 --a------ C:\WINDOWS\system32\msdtcuiu.dll 2006-12-28 04:02 15,872 --a------ C:\WINDOWS\system32\logoff.exe 2006-12-28 04:02 15,872 --a------ C:\WINDOWS\system32\cdmodem.dll 2006-12-28 04:02 15,360 --a------ C:\WINDOWS\system32\tsdiscon.exe 2006-12-28 04:02 15,360 --a------ C:\WINDOWS\system32\tscon.exe 2006-12-28 04:02 15,360 --a------ C:\WINDOWS\system32\shadow.exe 2006-12-28 04:02 147,456 --a------ C:\WINDOWS\system32\comsnap.dll 2006-12-28 04:02 14,848 --a------ C:\WINDOWS\system32\rdpsnd.dll 2006-12-28 04:02 139,264 --a------ C:\WINDOWS\system32\sndvol32.exe 2006-12-28 04:02 134,656 --a------ C:\WINDOWS\system32\rdchost.dll 2006-12-28 04:02 131,072 --a------ C:\WINDOWS\system32\sessmgr.exe 2006-12-28 04:02 128,000 --a------ C:\WINDOWS\system32\mshearts.exe 2006-12-28 04:02 125,440 --a------ C:\WINDOWS\system32\sndrec32.exe 2006-12-28 04:02 12,288 --a------ C:\WINDOWS\system32\rdsaddin.exe 2006-12-28 04:02 119,808 --a------ C:\WINDOWS\system32\winmine.exe 2006-12-28 04:02 118,272 --a------ C:\WINDOWS\system32\mplay32.exe 2006-12-28 04:02 115,200 --a------ C:\WINDOWS\system32\calc.exe 2006-12-28 04:02 113,664 --a------ C:\WINDOWS\system32\wuauclt.exe 2006-12-28 04:02 11,144 --a------ C:\WINDOWS\system32\drivers\tdpipe.sys 2006-12-28 04:02 107,912 --a------ C:\WINDOWS\system32\drivers\rdpwd.sys 2006-12-28 04:02 100,864 --a------ C:\WINDOWS\system32\clbcatex.dll 2006-12-28 04:02 1,225 --a------ C:\WINDOWS\system32\usrlogon.cmd 2006-12-28 04:02 1,139,200 --a------ C:\WINDOWS\system32\comsvcs.dll 2006-12-28 04:02 <DIR> d-------- C:\WINDOWS\system32\MsDtc 2006-12-28 04:02 <DIR> d-------- C:\WINDOWS\system32\Com 2006-12-28 04:02 <DIR> d-------- C:\WINDOWS\Registration 2006-12-28 04:01 37,896 --a------ C:\WINDOWS\system32\drivers\termdd.sys 2006-12-28 04:01 181,632 --a------ C:\WINDOWS\system32\drivers\rdpdr.sys 2006-12-28 03:57 57,088 --a------ C:\WINDOWS\system32\drivers\redbook.sys 2006-12-28 03:57 3,072 --a------ C:\WINDOWS\system32\drivers\audstub.sys 2006-12-28 03:57 23,070 --a------ C:\WINDOWS\system32\drivers\RTL8139.sys 2006-12-28 03:56 70,144 --a------ C:\WINDOWS\system32\usbui.dll 2006-12-28 03:53 9,936 --a------ C:\WINDOWS\system\LZEXPAND.DLL 2006-12-28 03:53 9,168 --a------ C:\WINDOWS\system\VER.DLL 2006-12-28 03:53 85,532 --a------ C:\WINDOWS\system32\dgsetup.dll 2006-12-28 03:53 83,456 --a------ C:\WINDOWS\system\OLECLI.DLL 2006-12-28 03:53 8,192 -ra------ C:\WINDOWS\system32\kbdhept.dll 2006-12-28 03:53 71,680 --a------ C:\WINDOWS\system32\storprop.dll 2006-12-28 03:53 70,096 --a------ C:\WINDOWS\system\AVICAP.DLL 2006-12-28 03:53 7,168 --a------ C:\WINDOWS\system32\kbdcz.dll 2006-12-28 03:53 69,712 --a------ C:\WINDOWS\system\MMSYSTEM.DLL 2006-12-28 03:53 67,072 --a------ C:\WINDOWS\NOTEPAD.EXE 2006-12-28 03:53 6,656 -ra------ C:\WINDOWS\system32\kbdhela3.dll 2006-12-28 03:53 6,656 --a------ C:\WINDOWS\system32\kbdycl.dll 2006-12-28 03:53 6,656 --a------ C:\WINDOWS\system32\kbdsl1.dll 2006-12-28 03:53 6,656 --a------ C:\WINDOWS\system32\kbdsl.dll 2006-12-28 03:53 6,656 --a------ C:\WINDOWS\system32\kbdhu.dll 2006-12-28 03:53 6,656 --a------ C:\WINDOWS\system32\kbdcz2.dll 2006-12-28 03:53 6,656 --a------ C:\WINDOWS\system32\kbdcz1.dll 2006-12-28 03:53 6,656 --a------ C:\WINDOWS\system32\kbdcr.dll 2006-12-28 03:53 6,656 --a------ C:\WINDOWS\system32\KBDAL.DLL 2006-12-28 03:53 6,656 --a------ C:\WINDOWS\system32\batt.dll 2006-12-28 03:53 6,144 -ra------ C:\WINDOWS\system32\kbdtuq.dll 2006-12-28 03:53 6,144 -ra------ C:\WINDOWS\system32\kbdtuf.dll 2006-12-28 03:53 6,144 -ra------ C:\WINDOWS\system32\kbdlv1.dll 2006-12-28 03:53 6,144 -ra------ C:\WINDOWS\system32\kbdlv.dll 2006-12-28 03:53 6,144 -ra------ C:\WINDOWS\system32\kbdhela2.dll 2006-12-28 03:53 6,144 -ra------ C:\WINDOWS\system32\kbdgkl.dll 2006-12-28 03:53 6,144 -ra------ C:\WINDOWS\system32\kbdest.dll 2006-12-28 03:53 5,632 -ra------ C:\WINDOWS\system32\kbdycc.dll 2006-12-28 03:53 5,632 -ra------ C:\WINDOWS\system32\kbduzb.dll 2006-12-28 03:53 5,632 -ra------ C:\WINDOWS\system32\kbdur.dll 2006-12-28 03:53 5,632 -ra------ C:\WINDOWS\system32\kbdtat.dll 2006-12-28 03:53 5,632 -ra------ C:\WINDOWS\system32\kbdru1.dll 2006-12-28 03:53 5,632 -ra------ C:\WINDOWS\system32\kbdru.dll 2006-12-28 03:53 5,632 -ra------ C:\WINDOWS\system32\kbdmon.dll 2006-12-28 03:53 5,632 -ra------ C:\WINDOWS\system32\kbdlt1.dll 2006-12-28 03:53 5,632 -ra------ C:\WINDOWS\system32\kbdlt.dll 2006-12-28 03:53 5,632 -ra------ C:\WINDOWS\system32\kbdkyr.dll 2006-12-28 03:53 5,632 -ra------ C:\WINDOWS\system32\kbdkaz.dll 2006-12-28 03:53 5,632 -ra------ C:\WINDOWS\system32\kbdhe319.dll 2006-12-28 03:53 5,632 -ra------ C:\WINDOWS\system32\kbdhe220.dll 2006-12-28 03:53 5,632 -ra------ C:\WINDOWS\system32\kbdhe.dll 2006-12-28 03:53 5,632 -ra------ C:\WINDOWS\system32\kbdbu.dll 2006-12-28 03:53 5,632 -ra------ C:\WINDOWS\system32\kbdblr.dll 2006-12-28 03:53 5,632 -ra------ C:\WINDOWS\system32\kbdazel.dll 2006-12-28 03:53 5,632 -ra------ C:\WINDOWS\system32\kbdaze.dll 2006-12-28 03:53 5,632 --a------ C:\WINDOWS\system32\kbdro.dll 2006-12-28 03:53 5,632 --a------ C:\WINDOWS\system32\kbdhu1.dll 2006-12-28 03:53 5,120 --a------ C:\WINDOWS\system\SHELL.DLL 2006-12-28 03:53 33,376 --a------ C:\WINDOWS\system\COMMDLG.DLL 2006-12-28 03:53 24,661 --a------ C:\WINDOWS\system32\spxcoins.dll 2006-12-28 03:53 24,064 --a------ C:\WINDOWS\system\OLESVR.DLL 2006-12-28 03:53 19,200 --a------ C:\WINDOWS\system\TAPI.DLL 2006-12-28 03:53 176,157 --a------ C:\WINDOWS\system32\dgrpsetu.dll 2006-12-28 03:53 15,360 --a------ C:\WINDOWS\TASKMAN.EXE 2006-12-28 03:53 13,312 --a------ C:\WINDOWS\system32\irclass.dll 2006-12-28 03:53 127,008 --a------ C:\WINDOWS\system\MSVIDEO.DLL 2006-12-28 03:53 109,488 --a------ C:\WINDOWS\system\AVIFILE.DLL 2006-12-28 03:53 103,424 --a------ C:\WINDOWS\system32\EqnClass.Dll 2006-12-28 03:53 10,496 --a------ C:\WINDOWS\system32\drivers\irenum.sys 2006-12-28 03:53 <DIR> dr-h----- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\. 2006-12-28 03:53 <DIR> dr-h----- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji 2006-12-28 03:53 <DIR> dr------- C:\Documents and Settings\All Users.WINDOWS\Menu Start 2006-12-28 03:53 <DIR> dr------- C:\Documents and Settings\All Users.WINDOWS\Dokumenty 2006-12-28 03:53 <DIR> d--h----- C:\Documents and Settings\All Users.WINDOWS\Szablony 2006-12-28 03:53 <DIR> d---s---- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\Microsoft 2006-12-28 03:53 <DIR> d-------- C:\WINDOWS\system32\CatRoot2 2006-12-28 03:53 <DIR> d-------- C:\WINDOWS\system32\CatRoot 2006-12-28 03:53 <DIR> d-------- C:\Documents and Settings\All Users.WINDOWS\Ulubione 2006-12-28 03:53 <DIR> d-------- C:\Documents and Settings\All Users.WINDOWS\Pulpit 2006-12-28 03:53 <DIR> d-------- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\.. 2006-12-28 03:52 <DIR> d-------- C:\Documents and Settings\All Users.WINDOWS\.. 2006-12-28 03:52 <DIR> d-------- C:\Documents and Settings\All Users.WINDOWS\. 2006-12-28 01:46 <DIR> d-------- C:\Inetpub 2006-12-27 16:35 <DIR> d-------- C:\Program Files\Grisoft 2006-12-25 20:58 <DIR> d-------- C:\Program Files\Skype 2006-12-25 20:58 <DIR> d-------- C:\Program Files\Common Files\Skype 2006-12-19 22:45 <DIR> d-------- C:\Program Files\IZArc 2006-12-19 03:38 <DIR> d-------- C:\Program Files\Spik 2006-12-17 19:24 <DIR> d-------- C:\WUTemp 2006-12-16 19:56 <DIR> d-------- C:\Fraps 2006-12-15 20:22 <DIR> d-------- C:\Program Files\Alcohol Soft 2006-12-13 19:43 <DIR> d-------- C:\Program Files\Silverback Studios Ltd 2006-12-11 12:34 <DIR> d-------- C:\Program Files\Hamachi 2006-12-10 15:53 <DIR> d-------- C:\Program Files\MTA San Andreas 2006-12-08 17:39 <DIR> d-------- C:\Program Files\MegauploadToolbar 2006-12-02 10:46 <DIR> d-------- C:\MK_Tril 2006-11-30 15:44 <DIR> d-------- C:\Program Files\msn gaming zone 2006-11-30 13:44 <DIR> d-------- C:\Program Files\ComPlus Applications (((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))) 2006-12-30 01:08 -------- d-------- C:\Program Files\Multi Theft Auto 2006-12-29 21:51 -------- d-------- C:\Program Files\JetAudio 2006-12-29 20:32 -------- d-------- C:\Program Files\Techland 2006-12-28 22:56 -------- d-------- C:\Program Files\Gadu-Gadu 2006-12-28 22:24 -------- d-------- C:\Program Files\eMule 2006-12-28 17:30 -------- d-------- C:\Program Files\Windows Media Player 2006-12-28 14:31 -------- d--h----- C:\Program Files\WindowsUpdate 2006-12-28 04:12 -------- d-------- C:\Program Files\Messenger 2006-12-28 04:03 -------- d-------- C:\Program Files\NetMeeting 2006-12-28 03:11 -------- d-------- C:\Program Files\Windows NT 2006-12-28 02:55 -------- d-------- C:\Program Files\Kalendarz XP 2006-12-28 01:17 -------- d-------- C:\Program Files\LimeWire Download Accelerator Pro 2006-12-27 16:30 -------- d-------- C:\Program Files\FlashGet 2006-12-26 21:48 -------- d-------- C:\Program Files\Rockstar Games 2006-12-25 20:58 -------- d-------- C:\Program Files\Common Files 2006-12-12 17:20 -------- d--h----- C:\Program Files\InstallShield Installation Information 2006-12-12 17:20 -------- d-------- C:\Program Files\Activision 2006-12-12 17:16 -------- d-------- C:\Program Files\Ubisoft 2006-12-12 17:13 -------- d-------- C:\Program Files\Monte Cristo 2006-12-07 21:34 -------- d-------- C:\Program Files\Winamp 2006-12-07 21:34 -------- d-------- C:\Program Files\Common Files\Siemens AG Shared 2006-12-07 21:34 -------- d-------- C:\Program Files\BearShare 2006-12-07 17:46 -------- d-------- C:\Program Files\EA SPORTS 2006-12-02 05:26 -------- d-------- C:\Program Files\LimeWire 2006-11-30 16:22 -------- d-------- C:\Program Files\MSN 2006-11-29 21:44 -------- d-------- C:\Program Files\ZModeler 2006-11-27 10:25 -------- d-------- C:\Program Files\LimeWire SpeedUp Pro 2006-11-27 09:09 -------- d-------- C:\Program Files\BearFlix 2006-11-20 11:33 -------- d-------- C:\Program Files\Common Files\NSIS 2006-11-19 22:57 -------- d-------- C:\Program Files\Radical Games 2006-11-17 00:46 -------- d-------- C:\Program Files\TryMedia 2006-11-16 02:09 -------- d-------- C:\Program Files\Alwil Software 2006-11-16 01:15 -------- d-------- C:\Program Files\Codemasters 2006-11-15 23:36 -------- d-------- C:\Program Files\id Software 2006-11-15 00:15 -------- d-------- C:\Program Files\Google 2006-11-15 00:13 -------- d-------- C:\Program Files\Java 2006-11-14 23:59 -------- d-------- C:\Program Files\Common Files\Java 2006-11-14 23:50 -------- d-------- C:\Program Files\Warcraft III 2006-11-14 20:09 -------- d-------- C:\Program Files\Onet 2006-11-14 20:09 -------- d-------- C:\Program Files\Common Files\Onet.pl 2006-11-14 15:22 -------- d-------- C:\Program Files\MySearch 2006-11-14 15:22 -------- d-------- C:\Program Files\AWS 2006-11-14 15:04 -------- d-------- C:\Program Files\Yahoo! 2006-11-13 18:29 -------- d-------- C:\Program Files\Electronic Arts 2006-11-09 08:08 -------- d-------- C:\Program Files\Morrowind 2006-11-03 16:35 -------- d-------- C:\Program Files\directx 2006-11-01 18:24 -------- d-------- C:\Program Files\Avant Browser 2006-11-01 18:23 -------- d-------- C:\Program Files\Lavalys (((((((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))) *Note* empty entries are not shown [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run] "CTFMON.EXE"="C:\\WINDOWS\\System32\\ctfmon.exe" "MSMSGS"="\"C:\\Program Files\\Messenger\\msmsgs.exe\" /background" "Gadu-Gadu"="\"C:\\Program Files\\Gadu-Gadu\\gg.exe\" /tray" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run] "KernelFaultCheck"=hex(2):25,73,79,73,74,65,6d,72,6f,6f,74,25,5c,73,79,73,74,\ 65,6d,33,32,5c,64,75,6d,70,72,65,70,20,30,20,2d,6b,00 "NvCplDaemon"="RUNDLL32.EXE C:\\WINDOWS\\System32\\NvCpl.dll,NvStartup" "nwiz"="nwiz.exe /install" "avast!"="C:\\PROGRA~1\\ALWILS~1\\Avast4\\ashDisp.exe" "NvMediaCenter"="RUNDLL32.EXE C:\\WINDOWS\\System32\\NvMcTray.dll,NvTaskbarInit" "SoundMan"="SOUNDMAN.EXE" "BearShare"="\"C:\\Program Files\\BearShare\\BearShare.exe\" /pause" "DAEMON Tools-1033"="\"C:\\Program Files\\D-Tools\\daemon.exe\" -lang 1033" [HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components] "DeskHtmlVersion"=dword:00000110 "DeskHtmlMinorVersion"=dword:00000005 "Settings"=dword:00000001 "GeneralFlags"=dword:00000001 [HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\0] "Source"="About:Home" "SubscribedURL"="About:Home" "FriendlyName"="Moja bieżąca strona główna" "Flags"=dword:00000002 "Position"=hex:2c,00,00,00,00,01,00,00,00,00,00,00,00,04,00,00,e2,03,00,00,00,\ 00,00,00,01,00,00,00,01,00,00,00,01,00,00,00,00,00,00,00,00,00,00,00 "CurrentState"=hex:04,00,00,40 "OriginalStateInfo"=hex:18,00,00,00,ff,ff,00,00,ff,ff,00,00,ff,ff,ff,ff,ff,ff,\ ff,ff,04,00,00,00 "RestoredStateInfo"=hex:18,00,00,00,6a,02,00,00,23,00,00,00,a4,00,00,00,9a,00,\ 00,00,01,00,00,00 [HKEY_USERS\.default\software\microsoft\windows\currentversion\run] "CTFMON.EXE"="C:\\WINDOWS\\System32\\CTFMON.EXE" [HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\run] "CTFMON.EXE"="C:\\WINDOWS\\System32\\CTFMON.EXE" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\sharedtaskscheduler] "{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Moduł wstępnego ładowania interfejsu Browseui" "{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Demon buforu kategorii składników" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks] "{AEB6717E-7E19-11d0-97EE-00C04FD91972}"="" [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] "NoDriveTypeAutoRun"=dword:000000df [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\Run] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "dontdisplaylastusername"=dword:00000000 "legalnoticecaption"="" "legalnoticetext"="" "shutdownwithoutlogon"=dword:00000001 "undockwithoutlogon"=dword:00000001 [HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer] "NoDriveTypeAutoRun"=dword:00000091 [HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\policies\explorer] "NoDriveTypeAutoRun"=dword:00000091 [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload] "PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}" "CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}" "WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}" "SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll" Completion time: 06-12-30 1:28:46.82 C:\ComboFix.txt ... 06-12-30 01:28

[ Dodano: Dzisiaj o 20:01 ]
sciana

[ Dodano: Dzisiaj o 21:50 ]
TO MOJ SCAN Z COMBOFIX PROSZE NIECH KTOS POMOZE BO SZALU DOSTANE Z TYM INTERNETEM

[ Dodano: Dzisiaj o 23:13 ]
:cry:

log kolegi -->problem z netem

log kolegi -->problem z netem

wolny internet

Kto jest na forum