Problem z zacinającym się komputerem i pulpitem

[seba86]

Więc tak nie dawno miałem dać loga z combofixa,lecz po ściągnięciu go komputer zaczął mi się masakrycznie zacinać to znaczy wręcz przy samym starcie, dlatego też włączyłem tryb awaryjny i go usunąłem następnie komputer przez około 2 godziny poprawnie działał, lecz po ty czasie znów mi się zacina przy starcie mogę tylko na trybie awaryjnym pisać w internecie poza tym to nic i jeszcze jedna sprawa, bo gdy dusiłem F8 to wybrałem coś w takich znaczkach<powrót do ostatniego optymalnego ustawienia> i to wybrałem,bo myślałem że rozwiąże moje problemy jednak to zamiast mi pomóc to pogorszyło moją sprawę bo to zmieniło mi że jak włączam komputer to wygląda jak wogóle inny windows nie windows xp tu jest link http://img512.imageshack.us/i/innypulpit.png/ jak wygląda a i jak włączam komputer normalnie to tam nawet nie ma direxa. Proszę pomóżcie bo szkoda mi tracić pieniędzy na jakiegoś informatyka i przepraszam jak napisałem nie w tym dziale. I ostatnie mam pytanie czy ten problem z tym wszystkim mógł powstać od tego że ja wyłączałem komputer w sposób że dusiłem guzik od restartu a następnie ten u góry co się normalnie wyłącza????? Proszę jeszcze raz o pomoc. (a i na trybie awaryjnym nic się nie zacina i pulpit jest normalny).


Log z OTL

Kod: Zaznacz wszystko

OTL logfile created on: 2009-08-31 21:39:52 - Run 4
OTL by OldTimer - Version 3.0.10.7     Folder = C:\Documents and Settings\adm\Pulpit\programy
Windows XP Professional Edition Dodatek Service Pack. 1 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2800.1106)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

511,48 Mb Total Physical Memory | 332,64 Mb Available Physical Memory | 65,04% Memory free
1,22 Gb Paging File | 1,09 Gb Available in Paging File | 89,54% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 43,95 Gb Total Space | 20,74 Gb Free Space | 47,18% Space Free | Partition Type: NTFS
Drive D: | 48,83 Gb Total Space | 21,66 Gb Free Space | 44,37% Space Free | Partition Type: NTFS
Drive E: | 56,27 Gb Total Space | 31,80 Gb Free Space | 56,52% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
Drive G: | 2,53 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: O9IIOY6NFIRW8RO
Current User Name: adm
Logged in as Administrator.

Current Boot Mode: SafeMode with Networking
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2009-03-10 22:18:20 | 00,970,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\WgaTray.exe
PRC - [2002-09-29 00:00:00 | 01,005,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Explorer.EXE
PRC - [2008-12-04 19:37:00 | 00,106,496 | ---- | M] (mozilla.org) -- D:\sss\seamonkey.exe
PRC - [2007-05-10 16:36:56 | 02,111,176 | ---- | M] (Gadu-Gadu S.A.) -- C:\Program Files\Gadu-Gadu\gg.exe
PRC - [2009-08-29 23:35:01 | 00,514,048 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\adm\Pulpit\programy\OTL.exe

[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - [2006-03-25 19:17:26 | 00,278,613 | ---- | M] (Atheros) -- C:\WINDOWS\System32\acs.exe -- (ACS [Auto | Stopped])
SRV - [2005-09-23 07:28:32 | 00,029,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe -- (aspnet_state [On_Demand | Stopped])
SRV - [2007-08-22 03:57:14 | 00,487,424 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\Ati2evxx.exe -- (Ati HotKey Poller [Auto | Stopped])
SRV - [2008-07-31 21:05:00 | 00,593,920 | ---- | M] () -- C:\WINDOWS\System32\ati2sgag.exe -- (ATI Smart [Auto | Stopped])
SRV - File not found --  -- (CaCCProvSP [On_Demand | Stopped])
SRV - [2003-08-28 13:09:00 | 00,255,144 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe -- (ccEvtMgr [Auto | Stopped])
SRV - [2003-08-28 13:09:00 | 00,087,208 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe -- (ccPwdSvc [On_Demand | Stopped])
SRV - [2003-08-28 13:09:00 | 00,234,656 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe -- (ccSetMgr [Auto | Stopped])
SRV - [2005-09-23 07:28:56 | 00,066,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])
SRV - [2008-09-11 00:32:21 | 00,156,656 | ---- | M] (Google) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc [On_Demand | Stopped])
SRV - [2002-09-29 00:00:00 | 00,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -- (helpsvc [Auto | Running])
SRV - [2005-04-04 01:41:10 | 00,069,632 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT [On_Demand | Stopped])
SRV - [2009-05-21 11:34:05 | 00,152,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService [Auto | Stopped])
SRV - [2003-08-28 13:09:00 | 00,158,376 | ---- | M] (Symantec Corporation) -- C:\Program Files\Norton AntiVirus\navapsvc.exe -- (navapsvc [Auto | Stopped])
SRV - [2006-10-09 23:11:08 | 00,724,992 | ---- | M] (Nero AG) -- C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe -- (NBService [On_Demand | Stopped])
SRV - [2003-08-28 13:09:00 | 00,193,792 | ---- | M] (Symantec Corporation) -- C:\Program Files\Norton AntiVirus\SAVScan.exe -- (SAVScan [On_Demand | Stopped])
SRV - [2003-06-24 19:23:10 | 00,066,784 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\Script Blocking\SBServ.exe -- (SBService [Auto | Stopped])
SRV - [2005-01-21 23:32:12 | 00,206,552 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe -- (SNDSrvc [On_Demand | Stopped])
SRV - [2004-08-10 22:05:14 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wdfmgr.exe -- (UMWdf [Auto | Stopped])
SRV - [2006-12-11 11:14:56 | 01,017,352 | ---- | M] (CA) -- C:\Program Files\CA\SharedComponents\HIPSEngine\UmxAgent.exe -- (UmxAgent [Auto | Stopped])
SRV - [2006-12-11 14:37:58 | 00,722,440 | ---- | M] (CA) -- C:\Program Files\CA\SharedComponents\HIPSEngine\UmxCfg.exe -- (UmxCfg [Auto | Stopped])
SRV - [2006-11-21 12:43:32 | 00,140,808 | ---- | M] (CA) -- C:\Program Files\CA\SharedComponents\HIPSEngine\UmxFwHlp.exe -- (UmxFwHlp [Auto | Stopped])
SRV - [2006-11-17 22:29:10 | 00,243,208 | ---- | M] (CA) -- C:\Program Files\CA\SharedComponents\HIPSEngine\UmxPol.exe -- (UmxPol [Auto | Stopped])
SRV - [2002-09-29 00:00:00 | 00,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll -- (uploadmgr [Auto | Running])

[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - [2007-12-10 11:26:57 | 00,021,275 | ---- | M] (Meetinghouse Data Communications) -- C:\WINDOWS\System32\DRIVERS\AegisP.sys -- (AegisP [Auto | Stopped])
DRV - [2008-08-06 15:45:14 | 04,122,112 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\ALCXWDM.SYS -- (ALCXWDM [On_Demand | Stopped])
DRV - [2006-07-17 08:49:54 | 00,494,080 | ---- | M] (Atheros Communications, Inc.) -- C:\WINDOWS\System32\DRIVERS\ar5211.sys -- (AR5211 [On_Demand | Running])
DRV - [2008-08-01 08:38:20 | 03,266,560 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\System32\DRIVERS\ati2mtag.sys -- (ati2mtag [On_Demand | Stopped])
DRV - [2004-08-22 16:31:10 | 00,155,136 | ---- | M] ( ) -- C:\WINDOWS\System32\DRIVERS\d347bus.sys -- (d347bus [Boot | Running])
DRV - [2004-08-22 16:31:48 | 00,005,248 | ---- | M] ( ) -- C:\WINDOWS\System32\Drivers\d347prt.sys -- (d347prt [Boot | Running])
DRV - [2006-11-17 22:30:20 | 00,073,736 | ---- | M] (CA) -- C:\WINDOWS\System32\DRIVERS\kmxagent.sys -- (KmxAgent [System | Stopped])
DRV - [2007-01-15 11:19:02 | 00,119,816 | ---- | M] (CA) -- C:\WINDOWS\System32\DRIVERS\KmxCF.sys -- (KmxCF [Auto | Stopped])
DRV - [2007-01-05 10:19:10 | 00,080,776 | ---- | M] (CA) -- C:\WINDOWS\System32\DRIVERS\kmxcfg.sys -- (KmxCfg [On_Demand | Stopped])
DRV - [2006-11-17 22:30:34 | 00,051,720 | ---- | M] (CA) -- C:\WINDOWS\System32\DRIVERS\KmxFile.sys -- (KmxFile [System | Stopped])
DRV - [2007-01-12 17:06:58 | 00,111,624 | ---- | M] (CA) -- C:\WINDOWS\System32\DRIVERS\kmxfw.sys -- (KmxFw [System | Stopped])
DRV - [2006-11-17 22:30:44 | 00,073,224 | ---- | M] (CA) -- C:\WINDOWS\System32\DRIVERS\KmxSbx.sys -- (KmxSbx [Auto | Stopped])
DRV - [2007-01-08 15:41:48 | 00,102,408 | ---- | M] (CA) -- C:\WINDOWS\System32\DRIVERS\kmxstart.sys -- (KmxStart [Boot | Stopped])
DRV - [2008-02-20 11:00:00 | 00,082,256 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\VirusDefs\20080220.003\NAVENG.SYS -- (NAVENG [On_Demand | Stopped])
DRV - [2008-02-20 11:00:00 | 00,895,376 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\VirusDefs\20080220.003\NAVEX15.SYS -- (NAVEX15 [On_Demand | Stopped])
DRV - [2005-05-17 18:45:08 | 00,092,800 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\DRIVERS\nvata.sys -- (nvata [Boot | Running])
DRV - [2005-04-06 04:22:28 | 00,033,536 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\DRIVERS\NVENETFD.sys -- (NVENETFD [On_Demand | Running])
DRV - [2005-04-06 04:22:30 | 00,012,928 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\DRIVERS\nvnetbus.sys -- (nvnetbus [On_Demand | Running])
DRV - [2002-09-29 00:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\System32\DRIVERS\ptilink.sys -- (Ptilink [On_Demand | Running])
DRV - [2008-08-20 19:58:58 | 00,044,944 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\DRIVERS\PxHelp20.sys -- (PxHelp20 [Boot | Running])
DRV - [2003-08-28 13:09:00 | 00,300,736 | ---- | M] (Symantec Corporation) -- C:\Program Files\Norton AntiVirus\SAVRT.SYS -- (SAVRT [On_Demand | Stopped])
DRV - [2003-08-28 13:09:00 | 00,035,008 | ---- | M] (Symantec Corporation) -- C:\Program Files\Norton AntiVirus\SAVRTPEL.SYS -- (SAVRTPEL [System | Stopped])
DRV - [2007-12-01 18:10:17 | 00,163,644 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\WINDOWS\System32\DRIVERS\secdrv.sys -- (Secdrv [Auto | Stopped])
DRV - [2005-08-10 14:44:04 | 00,050,688 | ---- | M] (Protection Technology) -- C:\WINDOWS\System32\drivers\sfdrv01.sys -- (sfdrv01 [Boot | Running])
DRV - [2005-05-16 15:20:39 | 00,006,656 | ---- | M] (Protection Technology) -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02 [Boot | Running])
DRV - [2003-08-28 13:09:00 | 00,082,136 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\SYMEVENT.SYS -- (SymEvent [On_Demand | Stopped])
DRV - [2005-01-21 23:31:48 | 00,026,424 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\Drivers\SYMREDRV.SYS -- (SYMREDRV [On_Demand | Stopped])
DRV - [2005-01-21 23:31:50 | 00,267,384 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\Drivers\SYMTDI.SYS -- (SYMTDI [System | Stopped])

[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://toolbar.ask.com/toolbarv/askRedirect?o=10615&gct=&gc=1&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://toolbar.ask.com/toolbarv/askRedirect?o=10615&gct=&gc=1&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\System32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.bearshare.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
IE - URLSearchHook: {C94E154B-1459-4A47-966B-4B843BEFC7DB} - C:\Program Files\AskSearch\bin\DefaultSearch.dll ()
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.startup.homepage: "http://google.atcomet.com/b/"

FF - HKLM\software\mozilla\Firefox\extensions\\jqs@sun.com: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2009-01-01 18:48:47 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 2.0.0.20\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009-04-25 20:09:59 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 2.0.0.20\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009-06-23 23:34:22 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\SeaMonkey 1.1.13\Extensions\\Components: c:\sss\Components
FF - HKLM\software\mozilla\SeaMonkey 1.1.13\Extensions\\Plugins: c:\sss\Plugins
FF - HKLM\software\mozilla\SeaMonkey 1.1.14\Extensions\\Components: d:\sss\Components [2009-04-25 20:12:56 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\SeaMonkey 1.1.14\Extensions\\Plugins: d:\sss\Plugins [2009-04-25 20:09:59 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\SeaMonkey 1.1.15\Extensions\\Components: d:\sss\Components [2009-04-25 20:12:56 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\SeaMonkey 1.1.15\Extensions\\Plugins: d:\sss\Plugins [2009-04-25 20:09:59 | 00,000,000 | ---D | M]

[2009-05-06 22:43:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\adm\Dane aplikacji\mozilla\Firefox\Profiles\3cnsydvv.default\extensions
[2009-05-06 22:43:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\adm\Dane aplikacji\mozilla\Firefox\Profiles\3cnsydvv.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}
[2009-02-04 21:14:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\adm\Dane aplikacji\mozilla\Firefox\Profiles\3cnsydvv.default\extensions\{991A772A-BA13-4c1d-A9EF-F897F31DEC7D}
[2009-04-21 16:01:51 | 00,000,000 | ---D | M] -- C:\Documents and Settings\adm\Dane aplikacji\mozilla\Firefox\Profiles\3cnsydvv.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}
[2009-04-21 16:27:54 | 00,000,000 | ---D | M] -- C:\Documents and Settings\adm\Dane aplikacji\mozilla\Firefox\Profiles\3cnsydvv.default\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}
[2009-07-05 12:09:04 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2009-01-14 00:39:42 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2008-07-04 00:52:55 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}
[2008-08-29 10:06:38 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
[2009-01-01 18:49:12 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}
[2009-07-05 12:09:04 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}
[2008-06-02 15:32:39 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A}
[2009-01-14 00:39:42 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\talkback@mozilla.org
[2009-01-14 00:39:22 | 00,067,688 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\jar50.dll
[2009-01-14 00:39:22 | 00,054,368 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\jsd3250.dll
[2009-01-14 00:39:22 | 00,034,944 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\myspell.dll
[2009-01-14 00:39:25 | 00,046,712 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\spellchk.dll
[2009-01-14 00:39:25 | 00,172,136 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\xpinstal.dll
[2008-03-19 19:23:20 | 00,114,688 | ---- | M] (Adobe Systems, Inc.) -- C:\Program Files\mozilla firefox\plugins\np32dsw.dll
[2008-11-11 09:38:54 | 00,663,552 | ---- | M] (BitComet) -- C:\Program Files\mozilla firefox\plugins\npBitCometAgent.dll
[2009-05-21 11:33:58 | 00,410,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeploytk.dll
[2008-07-24 17:02:40 | 00,120,296 | ---- | M] ( ) -- C:\Program Files\mozilla firefox\plugins\npganymedenet.dll
[2009-07-11 19:38:11 | 00,024,576 | ---- | M] (My Global Search) -- C:\Program Files\mozilla firefox\plugins\NPMyGlSh.dll
[2009-01-14 00:39:36 | 00,022,656 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll
[2009-06-21 17:55:44 | 00,239,432 | ---- | M] (Pando Networks) -- C:\Program Files\mozilla firefox\plugins\npPandoWebInst.dll
[2009-01-23 13:09:04 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin.dll
[2009-01-23 13:09:04 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll
[2009-01-23 13:09:04 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll
[2009-01-23 13:09:04 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll
[2009-01-23 13:09:04 | 00,143,360 | ---- | M] (Apple Inc.) -- C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll
[2007-11-20 17:52:00 | 02,884,992 | ---- | M] () -- C:\Program Files\mozilla firefox\plugins\NPSWF32.dll
[2009-01-14 00:39:39 | 00,000,904 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2009-01-14 00:39:39 | 00,001,419 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2009-01-14 00:39:39 | 00,002,368 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2009-01-14 00:39:39 | 00,000,926 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2009-01-14 00:39:39 | 00,000,866 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2009-01-14 00:39:39 | 00,001,198 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2009-01-14 00:39:39 | 00,001,693 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml

O1 HOSTS File: (63980 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1   LocalHost
O1 - Hosts: 0.0.0.0   pk5156.com
O1 - Hosts: 0.0.0.0   www.pk5156.com
O1 - Hosts: 0.0.0.0   www.hookdlq.com
O1 - Hosts: 0.0.0.0   hookdlq.com
O1 - Hosts: 0.0.0.0   28pk.com
O1 - Hosts: 0.0.0.0   www.28pk.com
O1 - Hosts: 0.0.0.0   www1.28pk.com
O1 - Hosts: 0.0.0.0   bbs.28pk.com
O1 - Hosts: 0.0.0.0   www.bfaft.com
O1 - Hosts: 0.0.0.0   www.dw688.com
O1 - Hosts: 0.0.0.0   www.dwdlq.cn
O1 - Hosts: 60.191.205.67   999wan.com
O1 - Hosts: 60.191.205.67   2233uu.40aa.com
O1 - Hosts: 60.191.205.67   51pywg.com
O1 - Hosts: 60.191.205.67   www.51pywg.com
O1 - Hosts: 60.191.205.67   www.908sf.com
O1 - Hosts: 60.191.205.67   www.52laba.com
O1 - Hosts: 60.191.205.67   www.youjiancs.com
O1 - Hosts: 60.191.205.67   www.haomyw.com
O1 - Hosts: 60.191.205.67   www.haozhengtu.com
O1 - Hosts: 60.191.205.67   www.zgwow.com
O1 - Hosts: 60.191.205.67   www.4fqn.cn
O1 - Hosts: 60.191.205.67   www.umaz.cn
O1 - Hosts: 60.191.205.67   www.c44f.cn
O1 - Hosts: 2069 more lines...
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - d:\acrobat\Reader\ActiveX\AcroIEHelper.ocx ()
O2 - BHO: (Winamp Toolbar Loader) - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll (BitComet)
O2 - BHO: (Megaupload Toolbar) - {A057A204-BACC-4D26-C39E-35F1D2A32EC8} - C:\Program Files\MegauploadToolbar\megauploadtoolbar.dll (MEGAUPLOAD                                   )
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll ()
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.509.5470\swg.dll (Google Inc.)
O2 - BHO: (CNavExtBho Class) - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll (Symantec Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\adm\Dane aplikacji\Nowe Gadu-Gadu\_userdata\ggbho.1.dll (GG Network S.A.)
O3 - HKLM\..\Toolbar: (Steganos Internet Anonym) - {00000000-5736-4205-0008-f7ed0776fb27} - c:\program files\steganos internet anonym 2006\sia2006iep.dll File not found
O3 - HKLM\..\Toolbar: (&Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll ()
O3 - HKLM\..\Toolbar: (Norton AntiVirus) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (&Radio) - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Megaupload Toolbar) - {A057A204-BACC-4D26-C39E-35F1D2A32EC8} - C:\Program Files\MegauploadToolbar\megauploadtoolbar.dll (MEGAUPLOAD                                   )
O3 - HKLM\..\Toolbar: (Winamp Toolbar) - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
O3 - HKCU\..\Toolbar\ShellBrowser: (Norton AntiVirus) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll (Symantec Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Steganos Internet Anonym) - {00000000-5736-4205-0008-F7ED0776FB27} - c:\program files\steganos internet anonym 2006\sia2006iep.dll File not found
O3 - HKCU\..\Toolbar\WebBrowser: (&Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (Megaupload Toolbar) - {A057A204-BACC-4D26-C39E-35F1D2A32EC8} - C:\Program Files\MegauploadToolbar\megauploadtoolbar.dll (MEGAUPLOAD                                   )
O3 - HKCU\..\Toolbar\WebBrowser: (Winamp Toolbar) - {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
O4 - HKLM..\Run: [ACU] C:\Program Files\Atheros\ACU.exe (Atheros Communications, Inc.)
O4 - HKLM..\Run: [BearShare] C:\Program Files\BearShare\BearShare.exe File not found
O4 - HKLM..\Run: [cafwc] C:\Program Files\CA\CA Internet Security Suite\CA Personal Firewall\cafw.exe (CA, Inc.)
O4 - HKLM..\Run: [capfaem] C:\Program Files\CA\CA Internet Security Suite\CA Personal Firewall\capfaem.exe (CA, Inc.)
O4 - HKLM..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
O4 - HKLM..\Run: [cctray] C:\Program Files\CA\CA Internet Security Suite\cctray\cctray.exe File not found
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [Symantec NetDriver Monitor] C:\Program Files\SymNetDrv\SNDMon.exe (Symantec Corporation)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp3\winampa.exe ()
O4 - HKCU..\Run: [ALLUpdate] C:\Program Files\ALLPlayer\ALLUpdate.exe ()
O4 - HKCU..\Run: [ares] C:\Program Files\Ares\Ares.exe File not found
O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKCU..\Run: [C:\Program Files\NetMeter\NetMeter.exe] C:\Program Files\NetMeter\NetMeter.exe ()
O4 - HKCU..\Run: [Catcher] C:\Documents and Settings\adm\Pulpit\Catcher.exe File not found
O4 - HKCU..\Run: [Gadu-Gadu] C:\Program Files\Gadu-Gadu\gg.exe (Gadu-Gadu S.A.)
O4 - HKCU..\Run: [MCS Firewall 2008] C:\Program Files\MCS Studios\MCS Firewall 2008\mcsfw.exe File not found
O4 - HKCU..\Run: [Nowe Gadu-Gadu] D:\Nowe Gadu-Gadu\gg.exe File not found
O4 - HKCU..\Run: [Odkurzacz-MCD] C:\Program Files\Odkurzacz\odk_mcd.exe (Franmo Software)
O4 - HKCU..\Run: [SIA2006] C:\Program Files\Steganos Internet Anonym 2006\SIA2006.exe File not found
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe (Adobe Systems Incorporated)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 0
O8 - Extra context menu item: &Search - Reg Error: Value error. File not found
O8 - Extra context menu item: &Winamp Search - C:\Documents and Settings\All Users\Dane aplikacji\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html ()
O8 - Extra context menu item: Pobierz wszystkie VIdeo za pomocą BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: Pobierz wszystko za pomocą BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: Pobierz za pomocą BitComet - C:\Program Files\BitComet\BitComet.exe (www.BitComet.com)
O9 - Extra Button: @shdoclc.dll,-866 - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm ()
O9 - Extra 'Tools' menuitem : @shdoclc.dll,-864 - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm ()
O9 - Extra Button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll (BitComet)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\System32\PrxerNsp.dll ( )
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\System32\PrxerDrv.dll (Initex Software)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\Secure Surfing Engine\sselsp.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files\Secure Surfing Engine\sselsp.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Program Files\Secure Surfing Engine\sselsp.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\Program Files\Secure Surfing Engine\sselsp.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\WINDOWS\System32\PrxerDrv.dll (Initex Software)
O12 - Plugin for: .spop - C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll (Intertrust Technologies, Inc.)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\Java\classes\dajava.cab (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.3.1
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\vnd.ms.radio {3DA2AA3B-3D96-11D2-9BD2-204C4F4F5020} - C:\WINDOWS\System32\msdxm.ocx (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\Explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\Ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\PFW: DllName - UmxWnp.Dll - C:\WINDOWS\System32\UmxWnp.Dll (CA)
O24 - Desktop Components:0 () - http://www.rychur1.w8w.pl/LechPoznan23.jpg_thumb.jpg
O24 - Desktop Components:1 () - http://tbn1.google.com/images?q=tbn:DPXZy1x--4hzyM:http://www.rychur1.w8w.pl/LechPoznan23.jpg_thumb.jpg
O24 - Desktop Components:2 (Moja bieżąca strona główna) - About:Home
O29 - HKLM SecurityProviders - (mcenspc.dll) -  File not found
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 0
O32 - AutoRun File - [2006-12-29 16:18:25 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2005-09-07 03:55:13 | 00,733,184 | R--- | M] () - G:\AutoRun.exe -- [ UDF ]
O32 - AutoRun File - [2005-09-07 03:55:13 | 00,733,184 | R--- | M] () - G:\AutoRun.exe -- [ UDF ]
O32 - AutoRun File - [2005-09-07 04:24:28 | 00,000,136 | R--- | M] () - G:\autorun.inf -- [ UDF ]
O32 - AutoRun File - [2005-08-27 08:16:57 | 00,585,728 | R--- | M] () - G:\AutoRunGUI.dll -- [ UDF ]
O34 - HKLM BootExecute: (autocheck) -  File not found
O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) -  File not found

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2009-08-31 21:06:21 | 00,597,846 | ---- | C] () -- C:\Documents and Settings\adm\Pulpit\inny pulpit.bmp
[2009-08-31 17:49:05 | 00,000,000 | ---D | C] -- C:\Documents and Settings\adm\Pulpit\zzyt2
[2009-08-31 17:40:12 | 06,346,809 | ---- | C] () -- C:\Documents and Settings\adm\Pulpit\zzbd.rar
[2009-08-31 17:37:12 | 00,000,000 | ---D | C] -- C:\Documents and Settings\adm\Pulpit\wt.yt2
[2009-08-31 02:25:45 | 00,000,000 | ---D | C] -- C:\Program Files\newyt2
[2009-08-31 02:22:11 | 02,760,531 | ---- | C] () -- C:\Documents and Settings\adm\Pulpit\wt_login.rar
[2009-08-30 21:10:43 | 00,010,240 | ---- | C] (FReAK2FReaK) -- C:\WINDOWS\System32\forcelibrary.dll
[2009-08-30 19:55:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\adm\Pulpit\Nowy folder
[2009-08-30 13:56:31 | 00,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2009-08-30 13:50:03 | 00,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat
[2009-08-30 13:02:36 | 00,000,000 | -HSD | C] -- C:\WINDOWS\CSC
[2009-08-30 12:08:22 | 00,382,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmd.execf
[2009-08-30 11:52:28 | 00,229,376 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2009-08-30 11:52:28 | 00,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2009-08-30 11:52:28 | 00,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2009-08-30 11:52:28 | 00,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2009-08-30 11:52:28 | 00,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2009-08-30 11:52:27 | 00,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2009-08-30 11:52:27 | 00,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2009-08-30 11:52:27 | 00,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2009-08-30 11:52:19 | 00,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2009-08-30 11:52:18 | 00,382,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CF32733.exe
[2009-08-30 11:52:14 | 00,000,000 | ---D | C] -- C:\Qoobox
[2009-08-30 11:04:00 | 00,000,000 | ---D | C] -- C:\Program Files\60tm2
[2009-08-30 10:14:33 | 00,000,079 | ---- | C] () -- C:\Documents and Settings\adm\Dane aplikacji\Current.prx
[2009-08-30 10:14:23 | 00,000,640 | ---- | C] () -- C:\Documents and Settings\adm\Pulpit\Proxifier.lnk
[2009-08-30 10:11:32 | 00,073,728 | ---- | C] (Initex Software) -- C:\WINDOWS\System32\PrxerDrv.dll
[2009-08-30 10:11:32 | 00,061,440 | ---- | C] ( ) -- C:\WINDOWS\System32\PrxerNsp.dll
[2009-08-30 10:11:32 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\SPORDER.DLL
[2009-08-30 10:11:32 | 00,000,000 | ---D | C] -- C:\Program Files\Proxifier
[2009-08-30 10:10:20 | 00,869,321 | ---- | C] (Initex Software                                             ) -- C:\Documents and Settings\adm\Pulpit\ProxifierSetup.exe
[2009-08-30 03:29:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\adm\Pulpit\znak
[2009-08-30 01:40:47 | 00,000,000 | ---D | C] -- C:\Program Files\yt2
[2009-08-30 00:40:01 | 00,000,000 | ---D | C] -- C:\Program Files\zzyt2
[2009-08-30 00:15:24 | 00,000,000 | ---D | C] -- C:\Documents and Settings\adm\Pulpit\metin2
[2009-08-29 17:13:02 | 00,000,000 | ---D | C] -- C:\Documents and Settings\adm\Pulpit\programy
[2009-08-29 15:48:17 | 00,000,000 | ---D | C] -- C:\Program Files\Odkurzacz
[2009-08-29 15:17:22 | 00,000,000 | ---D | C] -- C:\WINDOWS\pss
[2009-08-29 11:42:50 | 00,000,000 | ---D | C] -- C:\Program Files\newlongju22
[2009-08-28 15:56:31 | 00,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2009-08-27 18:23:42 | 00,000,000 | ---D | C] -- C:\Program Files\Valve
[2009-08-26 23:17:41 | 00,000,000 | ---D | C] -- C:\Program Files\Gra w ciemno
[2009-08-26 23:06:11 | 00,000,000 | ---D | C] -- C:\Program Files\Multi Milionerek
[2009-08-10 16:49:13 | 00,000,000 | -H-D | C] -- C:\WINDOWS\System32\GroupPolicy
[2009-08-10 12:11:23 | 00,761,588 | ---- | C] () -- C:\Documents and Settings\adm\Pulpit\M2 MultiversionHack by banjo1 v3.87.rar
[2009-08-09 13:38:52 | 00,000,000 | ---D | C] -- C:\Documents and Settings\adm\Moje dokumenty\METIN2
[2009-08-08 19:36:11 | 00,000,654 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\newlongju.lnk
[2009-08-08 19:34:12 | 00,000,000 | ---D | C] -- C:\Program Files\newlongju
[2009-08-07 23:30:42 | 14,016,168 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\adm\Pulpit\aruniupd.exe
[2009-08-07 22:42:43 | 00,000,840 | ---- | C] () -- C:\WINDOWS\chpractice.ini
[2009-08-07 22:38:00 | 00,000,000 | ---D | C] -- C:\Program Files\Chinese Practice
[2009-08-05 15:32:12 | 00,000,000 | ---D | C] -- C:\Documents and Settings\adm\Pulpit\mody
[2009-05-29 20:56:44 | 00,000,041 | ---- | C] () -- C:\WINDOWS\winampa.ini
[2009-04-25 16:19:23 | 00,138,184 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2009-03-30 14:47:55 | 00,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2009-02-21 12:59:04 | 00,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll
[2008-04-29 16:31:46 | 00,001,104 | ---- | C] () -- C:\WINDOWS\bestplayer.ini
[2007-12-10 11:26:49 | 00,000,553 | R--- | C] () -- C:\WINDOWS\System32\drivers\AW1012d.ini
[2007-08-13 18:22:20 | 00,000,055 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2007-07-14 19:36:43 | 00,155,136 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\d347bus.sys
[2007-07-14 19:36:43 | 00,005,248 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\d347prt.sys
[2007-04-15 19:08:08 | 00,000,000 | ---- | C] () -- C:\WINDOWS\Editor.INI
[2007-03-16 14:20:32 | 00,053,248 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2007-02-04 14:00:25 | 00,000,169 | ---- | C] () -- C:\WINDOWS\RtlRack.ini
[2007-01-03 22:36:59 | 00,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2006-12-29 16:45:08 | 00,000,177 | ---- | C] () -- C:\WINDOWS\winamp.ini
[2006-12-29 16:34:06 | 00,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2006-12-29 16:29:58 | 00,156,672 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2004-08-28 13:05:14 | 00,112,128 | ---- | C] () -- C:\WINDOWS\System32\libmpeg2_ff.dll
[2004-08-28 13:04:52 | 00,211,968 | ---- | C] () -- C:\WINDOWS\System32\ff_x264.dll
[2004-08-28 13:04:26 | 00,126,976 | ---- | C] () -- C:\WINDOWS\System32\ff_mpeg2enc.dll
[2004-08-28 13:03:58 | 02,012,672 | ---- | C] () -- C:\WINDOWS\System32\libavcodec.dll
[2004-08-28 13:00:30 | 00,395,264 | ---- | C] () -- C:\WINDOWS\System32\libmplayer.dll
[2004-08-28 12:57:38 | 00,262,144 | ---- | C] () -- C:\WINDOWS\System32\TomsMoComp_ff.dll
[2004-08-28 12:40:48 | 00,071,168 | ---- | C] () -- C:\WINDOWS\System32\ff_tremor.dll
[2004-08-28 12:40:40 | 00,167,936 | ---- | C] () -- C:\WINDOWS\System32\ff_libdts.dll
[2004-08-28 12:40:38 | 00,126,976 | ---- | C] () -- C:\WINDOWS\System32\ff_samplerate.dll
[2004-08-28 12:40:34 | 00,483,328 | ---- | C] () -- C:\WINDOWS\System32\ff_libfaad2.dll
[2004-08-28 12:40:18 | 00,044,032 | ---- | C] () -- C:\WINDOWS\System32\ff_liba52.dll
[2004-08-28 12:40:16 | 00,083,968 | ---- | C] () -- C:\WINDOWS\System32\ff_wmv9.dll
[2004-08-28 12:39:48 | 00,167,936 | ---- | C] () -- C:\WINDOWS\System32\ff_theora.dll
[2004-08-28 12:39:38 | 00,159,744 | ---- | C] () -- C:\WINDOWS\System32\ff_libmad.dll
[2004-08-22 17:04:56 | 00,069,120 | ---- | C] () -- C:\WINDOWS\daemon.dll
[2002-09-29 00:00:00 | 00,000,600 | ---- | C] () -- C:\WINDOWS\win.ini
[2002-09-29 00:00:00 | 00,000,227 | ---- | C] () -- C:\WINDOWS\system.ini
[2002-04-21 20:30:14 | 00,151,552 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll
[2002-04-02 00:16:30 | 00,454,656 | ---- | C] () -- C:\WINDOWS\System32\VorbisEnc.dll
[2002-04-02 00:16:14 | 00,118,784 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll
[2002-04-02 00:15:40 | 00,011,264 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2009-08-31 21:18:06 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009-08-31 21:17:24 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009-08-31 21:16:49 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009-08-31 21:13:28 | 00,034,466 | ---- | M] () -- C:\WINDOWS\System32\drivers\kmxcfg.u2k0
[2009-08-31 21:13:28 | 00,000,064 | ---- | M] () -- C:\WINDOWS\System32\drivers\kmxcfg.u2k7
[2009-08-31 21:13:28 | 00,000,064 | ---- | M] () -- C:\WINDOWS\System32\drivers\kmxcfg.u2k6
[2009-08-31 21:13:28 | 00,000,064 | ---- | M] () -- C:\WINDOWS\System32\drivers\kmxcfg.u2k5
[2009-08-31 21:13:28 | 00,000,064 | ---- | M] () -- C:\WINDOWS\System32\drivers\kmxcfg.u2k4
[2009-08-31 21:13:28 | 00,000,064 | ---- | M] () -- C:\WINDOWS\System32\drivers\kmxcfg.u2k3
[2009-08-31 21:13:28 | 00,000,064 | ---- | M] () -- C:\WINDOWS\System32\drivers\kmxcfg.u2k2
[2009-08-31 21:13:28 | 00,000,064 | ---- | M] () -- C:\WINDOWS\System32\drivers\kmxcfg.u2k1
[2009-08-31 21:13:00 | 00,000,408 | ---- | M] () -- C:\WINDOWS\tasks\Symantec NetDetect.job
[2009-08-31 21:06:21 | 00,597,846 | ---- | M] () -- C:\Documents and Settings\adm\Pulpit\inny pulpit.bmp
[2009-08-31 17:48:47 | 06,346,809 | ---- | M] () -- C:\Documents and Settings\adm\Pulpit\zzbd.rar
[2009-08-31 16:03:25 | 00,042,496 | ---- | M] () -- C:\Documents and Settings\adm\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-08-31 15:22:53 | 00,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2009-08-31 10:32:47 | 00,000,600 | ---- | M] () -- C:\WINDOWS\win.ini
[2009-08-31 10:32:47 | 00,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2009-08-31 10:32:47 | 00,000,194 | -HS- | M] () -- C:\boot.ini
[2009-08-31 02:27:51 | 00,000,654 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\newlongju.lnk
[2009-08-31 02:23:41 | 02,760,531 | ---- | M] () -- C:\Documents and Settings\adm\Pulpit\wt_login.rar
[2009-08-31 01:31:03 | 00,000,079 | ---- | M] () -- C:\Documents and Settings\adm\Dane aplikacji\Current.prx
[2009-08-30 20:05:52 | 00,124,520 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009-08-30 16:38:42 | 02,096,656 | -H-- | M] () -- C:\Documents and Settings\adm\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2009-08-30 13:50:03 | 00,000,552 | ---- | M] () -- C:\WINDOWS\System32\d3d8caps.dat
[2009-08-30 12:08:23 | 00,382,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cmd.execf
[2009-08-30 11:52:10 | 00,382,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\CF32733.exe
[2009-08-30 10:14:23 | 00,000,640 | ---- | M] () -- C:\Documents and Settings\adm\Pulpit\Proxifier.lnk
[2009-08-30 10:11:04 | 00,869,321 | ---- | M] (Initex Software                                             ) -- C:\Documents and Settings\adm\Pulpit\ProxifierSetup.exe
[2009-08-28 09:02:08 | 00,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2009-08-23 03:09:13 | 00,229,376 | ---- | M] () -- C:\WINDOWS\PEV.exe
[2009-08-21 20:00:18 | 00,000,556 | ---- | M] () -- C:\WINDOWS\tasks\Norton AntiVirus - Skanuj komputer.job
[2009-08-10 12:13:05 | 00,761,588 | ---- | M] () -- C:\Documents and Settings\adm\Pulpit\M2 MultiversionHack by banjo1 v3.87.rar
[2009-08-07 23:39:08 | 14,016,168 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\adm\Pulpit\aruniupd.exe
[2009-08-07 22:42:43 | 00,000,840 | ---- | M] () -- C:\WINDOWS\chpractice.ini
[2009-08-05 20:14:59 | 00,018,824 | ---- | M] () -- C:\Documents and Settings\adm\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2009-08-03 13:36:28 | 00,038,160 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009-08-03 13:36:04 | 00,018,456 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
< End of report >

[wojtas]

Uruchom OTL i w oknie Custom Scans/Fixes wklej :

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O4 - HKCU..\Run: [Catcher] C:\Documents and Settings\adm\Pulpit\Catcher.exe File not found
O32 - AutoRun File - [2005-09-07 03:55:13 | 00,733,184 | R--- | M] () - G:\AutoRun.exe -- [ UDF ]
O32 - AutoRun File - [2005-09-07 03:55:13 | 00,733,184 | R--- | M] () - G:\AutoRun.exe -- [ UDF ]
O32 - AutoRun File - [2005-09-07 04:24:28 | 00,000,136 | R--- | M] () - G:\autorun.inf -- [ UDF ]
O32 - AutoRun File - [2005-08-27 08:16:57 | 00,585,728 | R--- | M] () - G:\AutoRunGUI.dll -- [ UDF ][2009-06-20 13:07:44 | 00,000,225 | ---- | M] () - F:\autorun.inf -- [ NTFS ]

:Files
C:\WINDOWS\PEV.exe
C:\WINDOWS\SWREG.exe
C:\WINDOWS\grep.exe
C:\WINDOWS\zip.exe
C:\WINDOWS\NIRCMD.exe
C:\WINDOWS\SWXCACLS.exe
C:\WINDOWS\SWSC.exe
C:\WINDOWS\sed.exe
C:\WINDOWS\ERDNT
C:\WINDOWS\System32\CF32733.exe
C:\Qoobox

:Reg
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{db1b3e60-05ac-11de-a5d3-00001cd72a97}]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced]
"SuperHidden"=dword:00000001
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced]
"Hidden"=dword:00000001
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced]
"ShowSuperHidden"=dword:00000001
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL]
"CheckedValue"=dword:00000001
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\SuperHidden\Policy\DontShowSuperHidden]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\SuperHidden\Policy\DontShowSuperHidden]
@=""

:Commands
[emptytemp]
[start explorer]
[Reboot]

Kliknij w Run Fix. I potwierdz reset kompa .

1.Uruchom OTL z opcji CleanUp
2. wykonaj optymalizację windowsa
3.Wyłącz przywracanie systemu ( właściwości mój komputer-zakładka przywracanie - wyłącz przywracanie na wszystkich dyskach). Po chwili włącz je powrotem]
4. zrób skan Malwarebytes Anti-Malware (usuń co znajdzie )



Przeskanuj obszar mojego komputera http://www.kaspersky.pl/virusscanner.html (uruchom przez IE) Daj raport z niego na forum.