Prosze o sprawdzenie loga, komputer sie wiesza

**Posty:** 695 · przez **bladi1492** 16 Kwi 2011, 18:02

Witam proszę o sprawdzenie loga, system chodzi bez problemu lecz gdy gram i potem wychodzę z gry to karta nie wysyła sygnału, albo komputer się wiesza.

Log z OTL

Kod: Zaznacz wszystko: le OTL logfile created on: 2011-04-16 17:44:09 - Run 1 OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\VINC\Downloads Windows Vista Ultimate Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation Internet Explorer (Version = 7.0.6001.18000) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 66,00% Memory free 4,00 Gb Paging File | 3,00 Gb Available in Paging File | 81,00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 29,29 Gb Total Space | 11,13 Gb Free Space | 38,00% Space Free | Partition Type: NTFS Drive D: | 39,06 Gb Total Space | 11,61 Gb Free Space | 29,73% Space Free | Partition Type: NTFS Drive E: | 9,77 Gb Total Space | 7,09 Gb Free Space | 72,57% Space Free | Partition Type: NTFS Drive F: | 9,77 Gb Total Space | 7,39 Gb Free Space | 75,69% Space Free | Partition Type: NTFS Drive G: | 19,53 Gb Total Space | 2,50 Gb Free Space | 12,80% Space Free | Partition Type: NTFS Drive H: | 41,62 Gb Total Space | 10,15 Gb Free Space | 24,38% Space Free | Partition Type: NTFS Drive N: | 6,96 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS Drive P: | 2,46 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS Computer Name: VINC-PC | User Name: VINC | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2011-04-16 17:42:42 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\VINC\Downloads\OTL.exe PRC - [2011-04-01 10:31:39 | 002,271,608 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe PRC - [2010-10-08 02:03:40 | 000,792,168 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe PRC - [2010-10-08 01:03:46 | 000,369,256 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe PRC - [2010-09-15 01:08:56 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2010-09-02 10:57:52 | 002,181,744 | ---- | M] (Gainward Co.) -- C:\Program Files\EXPERTool\TBPANEL.exe PRC - [2010-05-04 14:09:46 | 001,674,352 | R--- | M] (VIA) -- C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe PRC - [2009-10-15 14:06:46 | 000,223,464 | ---- | M] (DeviceVM, Inc.) -- C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe PRC - [2009-10-15 14:06:42 | 000,375,000 | ---- | M] (DeviceVM, Inc.) -- C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe PRC - [2009-07-21 14:34:33 | 000,185,089 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe PRC - [2009-05-13 16:48:22 | 000,108,289 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe PRC - [2009-03-02 13:08:47 | 000,209,153 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe PRC - [2008-10-20 22:30:43 | 002,927,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe PRC - [2008-10-20 22:27:53 | 001,008,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2011-04-16 17:42:42 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\VINC\Downloads\OTL.exe MOD - [2008-10-20 22:28:42 | 001,684,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2011-04-01 10:31:39 | 002,271,608 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe -- (TeamViewer6) SRV - [2010-10-08 01:03:46 | 000,369,256 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service) SRV - [2009-10-15 14:06:46 | 000,223,464 | ---- | M] (DeviceVM, Inc.) [Auto | Running] -- C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe -- (BCUService) SRV - [2009-07-21 14:34:33 | 000,185,089 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2009-05-13 16:48:22 | 000,108,289 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2008-10-20 22:27:53 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2010-10-20 08:09:03 | 010,055,304 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm) DRV - [2010-10-20 08:09:03 | 000,123,496 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvhda32v.sys -- (NVHDA) DRV - [2010-06-25 04:33:48 | 000,067,184 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\L1C60x86.sys -- (L1C) DRV - [2010-04-24 10:41:22 | 001,145,456 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\viahduaa.sys -- (VIAHdAudAddService) DRV - [2009-07-28 16:33:56 | 000,055,656 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\System32\drivers\avgntflt.sys -- (avgntflt) DRV - [2009-05-11 10:12:24 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\ssmdrv.sys -- (ssmdrv) DRV - [2009-03-30 10:33:07 | 000,096,104 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\avipbb.sys -- (avipbb) DRV - [2009-02-13 12:35:05 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio) DRV - [2007-03-16 10:11:38 | 000,012,256 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TBPanel.sys -- (TBPanel) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKU\S-1-5-21-1552928926-758020016-1062045038-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1 IE - HKU\S-1-5-21-1552928926-758020016-1062045038-1000\..\URLSearchHook: {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll (DeviceVM, Inc.) IE - HKU\S-1-5-21-1552928926-758020016-1062045038-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.10\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-04-15 22:39:04 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.10\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-04-15 22:38:59 | 000,000,000 | ---D | M] [2011-04-15 22:39:22 | 000,000,000 | ---D | M] (No name found) -- C:\Users\VINC\AppData\Roaming\mozilla\Extensions [2011-04-15 22:39:22 | 000,000,000 | ---D | M] (No name found) -- C:\Users\VINC\AppData\Roaming\mozilla\Firefox\Profiles\178qj5zs.default\extensions [2011-04-15 22:39:00 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2010-09-14 23:29:36 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-09-14 23:29:36 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-09-14 23:29:36 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-09-14 23:29:36 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-09-14 23:29:36 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-09-14 23:29:36 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2006-09-18 23:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) O4 - HKLM..\Run: [BCU] C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe (DeviceVM, Inc.) O4 - HKLM..\Run: [HDAudDeck] C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe (VIA) O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation) O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation) O4 - HKU\S-1-5-21-1552928926-758020016-1062045038-1000..\Run: [GAINWARD] C:\Program Files\EXPERTool\TBPanel.exe (Gainward Co.) O13 - gopher Prefix: missing O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img22.jpg O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img22.jpg O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2006-09-18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O32 - Unable to obtain root file information for disk H:\ O32 - AutoRun File - [2011-01-16 22:45:10 | 000,323,424 | R--- | M] (People Can Fly) - N:\Autorun.exe -- [ CDFS ] O32 - AutoRun File - [2010-11-22 23:36:30 | 000,000,055 | R--- | M] () - N:\Autorun.inf -- [ CDFS ] O32 - AutoRun File - [2011-01-31 03:57:37 | 000,367,686 | R--- | M] () - N:\autorun.ico -- [ CDFS ] O32 - AutoRun File - [2010-02-22 13:30:07 | 000,000,000 | ---D | M] - P:\autorun -- [ CDFS ] O32 - AutoRun File - [2010-02-16 16:01:37 | 000,223,744 | R--- | M] () - P:\autorun.exe -- [ CDFS ] O32 - AutoRun File - [2007-03-22 09:45:18 | 000,000,049 | R--- | M] () - P:\Autorun.inf -- [ CDFS ] O33 - MountPoints2\{0a091adc-679a-11e0-b978-806e6f6e6963}\Shell - "" = AutoRun O33 - MountPoints2\{0a091adc-679a-11e0-b978-806e6f6e6963}\Shell\AutoRun\command - "" = I:\cda_menu.exe O33 - MountPoints2\{98748061-679e-11e0-bd90-1c6f65816465}\Shell - "" = AutoRun O33 - MountPoints2\{98748061-679e-11e0-bd90-1c6f65816465}\Shell\AutoRun\command - "" = C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL N:\Autorun.exe O33 - MountPoints2\{98748175-679e-11e0-bd90-1c6f65816465}\Shell - "" = AutoRun O33 - MountPoints2\{98748175-679e-11e0-bd90-1c6f65816465}\Shell\AutoRun\command - "" = P:\autorun.exe -- [2010-02-16 16:01:37 | 000,223,744 | R--- | M] () O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2011-04-16 16:37:25 | 000,000,000 | ---D | C] -- C:\Users\VINC\Documents\Ubisoft [2011-04-16 16:26:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubisoft [2011-04-16 16:10:37 | 000,000,000 | ---D | C] -- C:\Users\VINC\Documents\Games for Windows - LIVE Demos [2011-04-16 16:08:43 | 000,000,000 | ---D | C] -- C:\Users\VINC\AppData\Local\kaneandlynch [2011-04-16 12:32:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation [2011-04-16 12:30:49 | 000,813,672 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvgenco32.dll [2011-04-16 12:30:49 | 000,123,496 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvhda32v.sys [2011-04-16 12:30:49 | 000,026,216 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvhdap32.dll [2011-04-16 12:28:54 | 000,888,424 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvdispco322050.dll [2011-04-16 12:28:53 | 000,813,672 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvgenco322030.dll [2011-04-16 12:28:33 | 000,057,960 | ---- | C] (Khronos Group) -- C:\Windows\System32\OpenCL.dll [2011-04-16 12:28:32 | 005,399,656 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvwgf2um.dll [2011-04-16 12:28:30 | 014,899,816 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvoglv32.dll [2011-04-16 12:28:28 | 010,055,304 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys [2011-04-16 12:28:26 | 010,021,992 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvd3dum.dll [2011-04-16 12:28:25 | 002,911,848 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvid.dll [2011-04-16 12:28:25 | 002,666,088 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvenc.dll [2011-04-16 12:28:24 | 004,836,456 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuda.dll [2011-04-16 12:28:08 | 013,019,752 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcompiler.dll [2011-04-16 12:28:08 | 001,718,376 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvapi.dll [2011-04-16 12:28:08 | 000,010,920 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvBridge.kmd [2011-04-16 12:16:29 | 000,000,000 | ---D | C] -- C:\Windows\System32\appmgmt [2011-04-16 01:52:46 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation [2011-04-16 01:51:29 | 000,795,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpinst.exe [2011-04-16 01:51:08 | 000,000,000 | ---D | C] -- C:\NVIDIA [2011-04-16 00:57:08 | 000,000,000 | ---D | C] -- C:\Program Files\TeamViewer [2011-04-16 00:04:46 | 000,000,000 | ---D | C] -- C:\Users\VINC\Documents\Eidos [2011-04-15 23:39:17 | 000,000,000 | ---D | C] -- C:\Users\VINC\AppData\Roaming\Real [2011-04-15 23:26:11 | 000,000,000 | ---D | C] -- C:\Windows\Minidump [2011-04-15 23:19:00 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\microsoft [2011-04-15 23:18:28 | 000,000,000 | ---D | C] -- C:\Users\VINC\AppData\Roaming\NVIDIA [2011-04-15 23:18:22 | 000,000,000 | ---D | C] -- C:\Users\VINC\Documents\My Games [2011-04-15 23:12:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA [2011-04-15 22:52:55 | 000,000,000 | ---D | C] -- C:\Windows\Panther [2011-04-15 22:52:38 | 000,000,000 | -HSD | C] -- C:\Boot [2011-04-15 22:52:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\OEM [2011-04-15 22:47:22 | 000,105,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll [2011-04-15 22:47:22 | 000,097,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardapi.dll [2011-04-15 22:47:19 | 000,622,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardagt.exe [2011-04-15 22:47:19 | 000,043,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll [2011-04-15 22:47:19 | 000,037,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardcpl.cpl [2011-04-15 22:47:19 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardres.dll [2011-04-15 22:47:15 | 000,781,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationNative_v0300.dll [2011-04-15 22:47:12 | 000,326,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe [2011-04-15 22:41:29 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll [2011-04-15 22:41:24 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscorier.dll [2011-04-15 22:41:20 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscories.dll [2011-04-15 22:39:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows - LIVE [2011-04-15 22:39:11 | 000,000,000 | ---D | C] -- C:\Users\VINC\AppData\Roaming\Mozilla [2011-04-15 22:39:11 | 000,000,000 | ---D | C] -- C:\Users\VINC\AppData\Local\Mozilla [2011-04-15 22:39:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox [2011-04-15 22:38:57 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2011-04-15 22:38:40 | 000,000,000 | ---D | C] -- C:\Windows\System32\xlive [2011-04-15 22:38:39 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Games for Windows - LIVE [2011-04-15 22:34:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira [2011-04-15 22:34:04 | 000,096,104 | ---- | C] (Avira GmbH) -- C:\Windows\System32\drivers\avipbb.sys [2011-04-15 22:34:04 | 000,055,656 | ---- | C] (Avira GmbH) -- C:\Windows\System32\drivers\avgntflt.sys [2011-04-15 22:34:04 | 000,028,520 | ---- | C] (Avira GmbH) -- C:\Windows\System32\drivers\ssmdrv.sys [2011-04-15 22:34:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Avira [2011-04-15 22:34:03 | 000,000,000 | ---D | C] -- C:\Program Files\Avira [2011-04-15 22:32:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes [2011-04-15 22:32:13 | 000,000,000 | ---D | C] -- C:\Program Files\Elaborate Bytes [2011-04-15 22:31:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Combined Community Codec Pack [2011-04-15 22:31:40 | 000,000,000 | ---D | C] -- C:\Program Files\Combined Community Codec Pack [2011-04-15 22:30:27 | 000,000,000 | ---D | C] -- C:\Users\VINC\AppData\Roaming\Macromedia [2011-04-15 22:30:27 | 000,000,000 | ---D | C] -- C:\Users\VINC\AppData\Local\cache [2011-04-15 22:30:27 | 000,000,000 | ---D | C] -- C:\Users\VINC\AppData\Roaming\Adobe [2011-04-15 22:29:32 | 000,000,000 | ---D | C] -- C:\Users\VINC\AppData\Roaming\Nowe Gadu-Gadu [2011-04-15 22:29:31 | 000,000,000 | ---D | C] -- C:\Program Files\Nowe Gadu-Gadu [2011-04-15 22:29:28 | 000,000,000 | ---D | C] -- C:\Windows\System32\Macromed [2011-04-15 22:24:26 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA [2011-04-15 22:23:15 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation [2011-04-15 22:21:32 | 000,000,000 | ---D | C] -- C:\Program Files\LoiLoScope FREE trial [2011-04-15 22:21:26 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_43.dll [2011-04-15 22:21:26 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dcsx_43.dll [2011-04-15 22:21:26 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_7.dll [2011-04-15 22:21:26 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_7.dll [2011-04-15 22:21:26 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_5.dll [2011-04-15 22:21:25 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_43.dll [2011-04-15 22:21:25 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_6.dll [2011-04-15 22:21:25 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_5.dll [2011-04-15 22:21:25 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_43.dll [2011-04-15 22:21:25 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx11_43.dll [2011-04-15 22:21:25 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_6.dll [2011-04-15 22:21:25 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_5.dll [2011-04-15 22:21:25 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_4.dll [2011-04-15 22:21:25 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_7.dll [2011-04-15 22:21:24 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dcsx_42.dll [2011-04-15 22:21:24 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_42.dll [2011-04-15 22:21:24 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_42.dll [2011-04-15 22:21:24 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_41.dll [2011-04-15 22:21:24 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_42.dll [2011-04-15 22:21:24 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_41.dll [2011-04-15 22:21:24 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx11_42.dll [2011-04-15 22:21:23 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_41.dll [2011-04-15 22:21:23 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_4.dll [2011-04-15 22:21:23 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_3.dll [2011-04-15 22:21:22 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_4.dll [2011-04-15 22:21:21 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_40.dll [2011-04-15 22:21:21 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_40.dll [2011-04-15 22:21:21 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_3.dll [2011-04-15 22:21:21 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_2.dll [2011-04-15 22:21:21 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_40.dll [2011-04-15 22:21:21 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_3.dll [2011-04-15 22:21:21 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_2.dll [2011-04-15 22:21:21 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_1.dll [2011-04-15 22:21:21 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_5.dll [2011-04-15 22:21:21 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_6.dll [2011-04-15 22:21:20 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_39.dll [2011-04-15 22:21:20 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_39.dll [2011-04-15 22:21:20 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_38.dll [2011-04-15 22:21:20 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_1.dll [2011-04-15 22:21:20 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_39.dll [2011-04-15 22:21:20 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_38.dll [2011-04-15 22:21:20 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_2.dll [2011-04-15 22:21:20 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_1.dll [2011-04-15 22:21:20 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_0.dll [2011-04-15 22:21:20 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_4.dll [2011-04-15 22:21:19 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_38.dll [2011-04-15 22:21:19 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_37.dll [2011-04-15 22:21:19 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_37.dll [2011-04-15 22:21:19 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_0.dll [2011-04-15 22:21:19 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_37.dll [2011-04-15 22:21:19 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_0.dll [2011-04-15 22:21:19 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_3.dll [2011-04-15 22:21:18 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_36.dll [2011-04-15 22:21:18 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_36.dll [2011-04-15 22:21:18 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_35.dll [2011-04-15 22:21:18 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_36.dll [2011-04-15 22:21:18 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_35.dll [2011-04-15 22:21:18 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_10.dll [2011-04-15 22:21:18 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_9.dll [2011-04-15 22:21:17 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_35.dll [2011-04-15 22:21:17 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_34.dll [2011-04-15 22:21:17 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_34.dll [2011-04-15 22:21:17 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_33.dll [2011-04-15 22:21:17 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_34.dll [2011-04-15 22:21:17 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_33.dll [2011-04-15 22:21:17 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_8.dll [2011-04-15 22:21:17 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_7.dll [2011-04-15 22:21:17 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_3.dll [2011-04-15 22:21:17 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_2.dll [2011-04-15 22:21:16 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_33.dll [2011-04-15 22:21:16 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_32.dll [2011-04-15 22:21:16 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10.dll [2011-04-15 22:21:16 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_6.dll [2011-04-15 22:21:16 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_5.dll [2011-04-15 22:21:16 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_4.dll [2011-04-15 22:21:16 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\x3daudio1_1.dll [2011-04-15 22:21:15 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_31.dll [2011-04-15 22:21:15 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_3.dll [2011-04-15 22:21:15 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_2.dll [2011-04-15 22:21:15 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_1.dll [2011-04-15 22:21:15 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_2.dll [2011-04-15 22:21:15 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_1.dll [2011-04-15 22:21:09 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_30.dll [2011-04-15 22:21:08 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_25.dll [2011-04-15 22:21:08 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_29.dll [2011-04-15 22:21:08 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_28.dll [2011-04-15 22:21:08 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_27.dll [2011-04-15 22:21:08 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_26.dll [2011-04-15 22:21:08 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_0.dll [2011-04-15 22:21:08 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\x3daudio1_0.dll [2011-04-15 22:21:07 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_24.dll [2011-04-15 22:20:18 | 000,012,256 | ---- | C] (Windows (R) 2000 DDK provider) -- C:\Windows\System32\drivers\TBPanel.sys [2011-04-15 22:20:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EXPERTool [2011-04-15 22:20:18 | 000,000,000 | ---D | C] -- C:\Program Files\EXPERTool [2011-04-15 22:16:36 | 000,067,184 | ---- | C] (Atheros Communications, Inc.) -- C:\Windows\System32\drivers\L1C60x86.sys [2011-04-15 22:16:29 | 000,000,000 | ---D | C] -- C:\Windows\System32\Atheros_L1e [2011-04-15 22:13:37 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2011-04-15 22:12:47 | 001,145,456 | ---- | C] (VIA Technologies, Inc.) -- C:\Windows\System32\drivers\viahduaa.sys [2011-04-15 22:12:47 | 000,888,944 | ---- | C] (VIA Technologies, Inc.) -- C:\Windows\System32\VIAPropPageExt.dll [2011-04-15 22:12:47 | 000,515,696 | ---- | C] (VIA Technologies, Inc.) -- C:\Windows\System32\VIASysFx.dll [2011-04-15 22:12:47 | 000,218,224 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\System32\Dts2APO.dll [2011-04-15 22:12:47 | 000,187,504 | ---- | C] (VIA Technologies, Inc.) -- C:\Windows\System32\ViaMicArrayAPO.dll [2011-04-15 22:12:47 | 000,082,544 | ---- | C] (VIA Technologies, Inc.) -- C:\Windows\System32\Dts2PropPageExt.dll [2011-04-15 22:12:47 | 000,076,288 | ---- | C] (QSound Labs, Inc.) -- C:\Windows\System32\nQPropPageExt.dll [2011-04-15 22:12:47 | 000,075,376 | ---- | C] (VIA Technologies,Inc.) -- C:\Windows\System32\ViaMicArrayPropPageExt.dll [2011-04-15 22:12:47 | 000,071,680 | ---- | C] (QSound Labs, Inc.) -- C:\Windows\System32\nQAPO.dll [2011-04-15 22:12:31 | 000,331,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\difxapi.dll [2011-04-15 22:12:30 | 000,000,000 | ---D | C] -- C:\Program Files\VIA [2011-04-15 22:12:12 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2011-04-15 22:10:26 | 000,053,248 | R--- | C] (Windows XP Bundled build C-Centric Single User) -- C:\Windows\System32\CSVer.dll [2011-04-15 22:10:26 | 000,000,000 | ---D | C] -- C:\Program Files\Intel [2011-04-15 22:10:12 | 000,000,000 | ---D | C] -- C:\Intel [2011-04-15 22:09:53 | 000,000,000 | -H-D | C] -- C:\Program Files\DeviceVM [2011-04-15 22:09:33 | 000,000,000 | -HSD | C] -- C:\Windows\Installer [2011-04-15 22:05:33 | 000,000,000 | R--D | C] -- C:\Users\VINC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup [2011-04-15 22:05:33 | 000,000,000 | R--D | C] -- C:\Users\VINC\Searches [2011-04-15 22:05:33 | 000,000,000 | R--D | C] -- C:\Users\VINC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools [2011-04-15 22:05:25 | 000,000,000 | ---D | C] -- C:\Users\VINC\AppData\Roaming\Identities [2011-04-15 22:05:23 | 000,000,000 | R--D | C] -- C:\Users\VINC\Contacts [2011-04-15 22:05:22 | 000,000,000 | ---D | C] -- C:\Users\VINC\AppData\Local\VirtualStore [2011-04-15 22:05:17 | 000,000,000 | --SD | C] -- C:\Users\VINC\AppData\Roaming\Microsoft [2011-04-15 22:05:17 | 000,000,000 | R--D | C] -- C:\Users\VINC\Videos [2011-04-15 22:05:17 | 000,000,000 | R--D | C] -- C:\Users\VINC\Saved Games [2011-04-15 22:05:17 | 000,000,000 | R--D | C] -- C:\Users\VINC\Pictures [2011-04-15 22:05:17 | 000,000,000 | R--D | C] -- C:\Users\VINC\Music [2011-04-15 22:05:17 | 000,000,000 | R--D | C] -- C:\Users\VINC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance [2011-04-15 22:05:17 | 000,000,000 | R--D | C] -- C:\Users\VINC\Links [2011-04-15 22:05:17 | 000,000,000 | R--D | C] -- C:\Users\VINC\Favorites [2011-04-15 22:05:17 | 000,000,000 | R--D | C] -- C:\Users\VINC\Downloads [2011-04-15 22:05:17 | 000,000,000 | R--D | C] -- C:\Users\VINC\Documents [2011-04-15 22:05:17 | 000,000,000 | R--D | C] -- C:\Users\VINC\Desktop [2011-04-15 22:05:17 | 000,000,000 | R--D | C] -- C:\Users\VINC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories [2011-04-15 22:05:17 | 000,000,000 | -HSD | C] -- C:\Users\VINC\Ustawienia lokalne [2011-04-15 22:05:17 | 000,000,000 | -HSD | C] -- C:\Users\VINC\AppData\Local\Temporary Internet Files [2011-04-15 22:05:17 | 000,000,000 | -HSD | C] -- C:\Users\VINC\Szablony [2011-04-15 22:05:17 | 000,000,000 | -HSD | C] -- C:\Users\VINC\SendTo [2011-04-15 22:05:17 | 000,000,000 | -HSD | C] -- C:\Users\VINC\Recent [2011-04-15 22:05:17 | 000,000,000 | -HSD | C] -- C:\Users\VINC\PrintHood [2011-04-15 22:05:17 | 000,000,000 | -HSD | C] -- C:\Users\VINC\NetHood [2011-04-15 22:05:17 | 000,000,000 | -HSD | C] -- C:\Users\VINC\Documents\Moje wideo [2011-04-15 22:05:17 | 000,000,000 | -HSD | C] -- C:\Users\VINC\Documents\Moje obrazy [2011-04-15 22:05:17 | 000,000,000 | -HSD | C] -- C:\Users\VINC\Moje dokumenty [2011-04-15 22:05:17 | 000,000,000 | -HSD | C] -- C:\Users\VINC\Documents\Moja muzyka [2011-04-15 22:05:17 | 000,000,000 | -HSD | C] -- C:\Users\VINC\Menu Start [2011-04-15 22:05:17 | 000,000,000 | -HSD | C] -- C:\Users\VINC\AppData\Local\Historia [2011-04-15 22:05:17 | 000,000,000 | -HSD | C] -- C:\Users\VINC\Dane aplikacji [2011-04-15 22:05:17 | 000,000,000 | -HSD | C] -- C:\Users\VINC\AppData\Local\Dane aplikacji [2011-04-15 22:05:17 | 000,000,000 | -HSD | C] -- C:\Users\VINC\Cookies [2011-04-15 22:05:17 | 000,000,000 | -H-D | C] -- C:\Users\VINC\AppData [2011-04-15 22:05:17 | 000,000,000 | ---D | C] -- C:\Users\VINC\AppData\Local\Temp [2011-04-15 22:05:17 | 000,000,000 | ---D | C] -- C:\Users\VINC\AppData\Local\Microsoft [2011-04-15 22:05:17 | 000,000,000 | ---D | C] -- C:\Users\VINC\AppData\Roaming\Media Center Programs [2011-04-15 22:03:17 | 000,000,000 | -HSD | C] -- C:\ProgramData\Ulubione [2011-04-15 22:03:17 | 000,000,000 | -HSD | C] -- C:\ProgramData\Szablony [2011-04-15 22:03:17 | 000,000,000 | -HSD | C] -- C:\ProgramData\Pulpit [2011-04-15 22:03:17 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moje wideo [2011-04-15 22:03:17 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moje obrazy [2011-04-15 22:03:17 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moja muzyka [2011-04-15 22:03:17 | 000,000,000 | -HSD | C] -- C:\ProgramData\Menu Start [2011-04-15 22:03:17 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumenty [2011-04-15 22:03:17 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dane aplikacji [2011-04-15 22:02:52 | 000,000,000 | ---D | C] -- C:\Windows\Debug [2011-04-15 21:57:54 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution [2011-04-15 21:56:12 | 000,000,000 | ---D | C] -- C:\Windows\System32\catroot2 [2011-04-15 21:55:57 | 000,000,000 | ---D | C] -- C:\Windows\CSC [2011-04-15 21:53:41 | 000,000,000 | -HSD | C] -- C:\System Volume Information [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2011-04-16 17:43:53 | 000,786,432 | -HS- | M] () -- C:\Users\VINC\NTUSER.DAT [2011-04-16 17:41:25 | 001,469,036 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI [2011-04-16 17:41:25 | 000,661,874 | ---- | M] () -- C:\Windows\System32\perfh015.dat [2011-04-16 17:41:25 | 000,586,980 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2011-04-16 17:41:25 | 000,126,702 | ---- | M] () -- C:\Windows\System32\perfc015.dat [2011-04-16 17:41:25 | 000,101,052 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2011-04-16 17:37:01 | 000,002,592 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2011-04-16 17:37:01 | 000,002,592 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2011-04-16 17:37:00 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT [2011-04-16 17:36:53 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2011-04-16 17:36:49 | 2145,902,592 | -HS- | M] () -- C:\hiberfil.sys [2011-04-16 16:36:55 | 000,000,933 | ---- | M] () -- C:\Users\Public\Desktop\Tom Clancy's Rainbow Six Vegas.lnk [2011-04-16 16:25:38 | 000,003,584 | ---- | M] () -- C:\Users\VINC\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011-04-16 14:54:31 | 000,524,288 | -HS- | M] () -- C:\Users\VINC\NTUSER.DAT{0f69446d-6a70-11db-8eb3-985e31beb686}.TMContainer00000000000000000001.regtrans-ms [2011-04-16 14:54:31 | 000,065,536 | -HS- | M] () -- C:\Users\VINC\NTUSER.DAT{0f69446d-6a70-11db-8eb3-985e31beb686}.TM.blf [2011-04-16 14:54:27 | 001,847,335 | -H-- | M] () -- C:\Users\VINC\AppData\Local\IconCache.db [2011-04-16 14:48:18 | 167,764,131 | ---- | M] () -- C:\Windows\MEMORY.DMP [2011-04-16 12:20:37 | 000,000,680 | ---- | M] () -- C:\Users\VINC\AppData\Local\d3d9caps.dat [2011-04-16 00:57:14 | 000,000,955 | ---- | M] () -- C:\Users\Public\Desktop\TeamViewer 6.lnk [2011-04-15 22:52:40 | 000,008,192 | R-S- | M] () -- C:\BOOTSECT.BAK [2011-04-15 22:39:06 | 000,001,724 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2011-04-15 22:32:40 | 000,001,043 | ---- | M] () -- C:\Users\Public\Desktop\Virtual CloneDrive.lnk [2011-04-15 22:29:56 | 000,000,839 | ---- | M] () -- C:\Users\Public\Desktop\OpenFM.lnk [2011-04-15 22:29:56 | 000,000,810 | ---- | M] () -- C:\Users\Public\Desktop\Nowe Gadu-Gadu.lnk [2011-04-15 22:15:31 | 000,000,010 | ---- | M] () -- C:\Windows\GSetup.ini [2011-04-15 22:13:01 | 000,000,991 | ---- | M] () -- C:\Users\Public\Desktop\HD VDeck.lnk [2011-04-15 22:10:01 | 000,001,458 | ---- | M] () -- C:\Users\VINC\Desktop\Games.lnk [2011-04-15 22:07:00 | 000,048,600 | ---- | M] () -- C:\Users\VINC\AppData\Local\GDIPFONTCACHEV1.DAT [2011-04-15 22:05:39 | 000,524,288 | -HS- | M] () -- C:\Users\VINC\NTUSER.DAT{0f69446d-6a70-11db-8eb3-985e31beb686}.TMContainer00000000000000000002.regtrans-ms [2011-04-15 22:05:17 | 000,000,020 | -HS- | M] () -- C:\Users\VINC\ntuser.ini [2011-04-15 22:00:57 | 000,065,580 | ---- | M] () -- C:\Windows\System32\license.rtf [2011-04-15 22:00:28 | 000,000,749 | RH-- | M] () -- C:\Windows\WindowsShell.Manifest [2011-04-15 21:58:32 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_00_00.Wdf [2011-04-15 21:55:39 | 000,229,024 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [color=#E56717]========== Files Created - No Company Name ==========[/color] [2011-04-16 16:36:55 | 000,000,933 | ---- | C] () -- C:\Users\Public\Desktop\Tom Clancy's Rainbow Six Vegas.lnk [2011-04-16 16:25:38 | 000,003,584 | ---- | C] () -- C:\Users\VINC\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011-04-16 12:34:01 | 2145,902,592 | -HS- | C] () -- C:\hiberfil.sys [2011-04-16 01:51:29 | 000,004,577 | ---- | C] () -- C:\Windows\System32\nvinfo.pb [2011-04-16 00:57:14 | 000,000,967 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 6.lnk [2011-04-16 00:57:14 | 000,000,955 | ---- | C] () -- C:\Users\Public\Desktop\TeamViewer 6.lnk [2011-04-15 23:25:57 | 167,764,131 | ---- | C] () -- C:\Windows\MEMORY.DMP [2011-04-15 22:52:40 | 000,008,192 | R-S- | C] () -- C:\BOOTSECT.BAK [2011-04-15 22:52:39 | 000,333,203 | RHS- | C] () -- C:\bootmgr [2011-04-15 22:52:08 | 000,171,136 | RHS- | C] () -- C:\grldr [2011-04-15 22:52:08 | 000,000,059 | R--- | C] () -- C:\Windows\DELL_VERSION [2011-04-15 22:39:06 | 000,001,724 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2011-04-15 22:32:40 | 000,001,043 | ---- | C] () -- C:\Users\Public\Desktop\Virtual CloneDrive.lnk [2011-04-15 22:29:56 | 000,000,839 | ---- | C] () -- C:\Users\Public\Desktop\OpenFM.lnk [2011-04-15 22:29:56 | 000,000,810 | ---- | C] () -- C:\Users\Public\Desktop\Nowe Gadu-Gadu.lnk [2011-04-15 22:29:32 | 000,000,822 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nowe Gadu-Gadu.lnk [2011-04-15 22:21:32 | 000,131,072 | ---- | C] () -- C:\Users\VINC\Desktop\LoiLoScope FREE trial.exe [2011-04-15 22:13:38 | 001,847,335 | -H-- | C] () -- C:\Users\VINC\AppData\Local\IconCache.db [2011-04-15 22:13:01 | 000,001,003 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD VDeck.lnk [2011-04-15 22:13:01 | 000,000,991 | ---- | C] () -- C:\Users\Public\Desktop\HD VDeck.lnk [2011-04-15 22:10:01 | 000,001,458 | ---- | C] () -- C:\Users\VINC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Social Games.lnk [2011-04-15 22:10:01 | 000,001,458 | ---- | C] () -- C:\Users\VINC\Desktop\Games.lnk [2011-04-15 22:08:20 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini [2011-04-15 22:07:00 | 000,048,600 | ---- | C] () -- C:\Users\VINC\AppData\Local\GDIPFONTCACHEV1.DAT [2011-04-15 22:05:34 | 000,000,949 | ---- | C] () -- C:\Users\VINC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk [2011-04-15 22:05:33 | 000,000,944 | ---- | C] () -- C:\Users\VINC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk [2011-04-15 22:05:23 | 000,000,915 | ---- | C] () -- C:\Users\VINC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk [2011-04-15 22:05:18 | 000,000,680 | ---- | C] () -- C:\Users\VINC\AppData\Local\d3d9caps.dat [2011-04-15 22:05:17 | 000,524,288 | -HS- | C] () -- C:\Users\VINC\NTUSER.DAT{0f69446d-6a70-11db-8eb3-985e31beb686}.TMContainer00000000000000000002.regtrans-ms [2011-04-15 22:05:17 | 000,524,288 | -HS- | C] () -- C:\Users\VINC\NTUSER.DAT{0f69446d-6a70-11db-8eb3-985e31beb686}.TMContainer00000000000000000001.regtrans-ms [2011-04-15 22:05:17 | 000,065,536 | -HS- | C] () -- C:\Users\VINC\NTUSER.DAT{0f69446d-6a70-11db-8eb3-985e31beb686}.TM.blf [2011-04-15 22:05:17 | 000,000,020 | -HS- | C] () -- C:\Users\VINC\ntuser.ini [2011-04-15 22:05:16 | 000,786,432 | -HS- | C] () -- C:\Users\VINC\NTUSER.DAT [2011-04-15 22:00:23 | 000,000,604 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live.lnk [2011-04-15 21:58:32 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_00_00.Wdf [2010-10-20 08:09:03 | 000,007,282 | ---- | C] () -- C:\Windows\cadx2.ini [2010-04-02 17:17:34 | 000,179,091 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat [2009-08-27 09:04:14 | 000,207,400 | R--- | C] () -- C:\Windows\GSetup.exe [2008-10-20 22:47:50 | 001,469,036 | ---- | C] () -- C:\Windows\System32\PerfStringBackup.INI [2008-10-20 22:34:18 | 000,081,158 | ---- | C] () -- C:\Windows\System32\manage-bde.ini.en [2008-10-20 22:34:14 | 000,062,976 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe [2008-10-20 22:31:24 | 000,060,124 | ---- | C] () -- C:\Windows\System32\tcpmon.ini [2008-10-20 22:31:04 | 000,368,640 | ---- | C] () -- C:\Windows\System32\msjetoledb40.dll [2008-10-20 22:30:09 | 000,100,043 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin [2006-12-05 07:27:19 | 000,661,874 | ---- | C] () -- C:\Windows\System32\perfh015.dat [2006-12-05 07:27:19 | 000,332,832 | ---- | C] () -- C:\Windows\System32\perfi015.dat [2006-12-05 07:27:19 | 000,126,702 | ---- | C] () -- C:\Windows\System32\perfc015.dat [2006-12-05 07:27:19 | 000,037,468 | ---- | C] () -- C:\Windows\System32\perfd015.dat [2006-11-02 14:55:52 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat [2006-11-02 14:46:27 | 000,229,024 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT [2006-11-02 14:34:20 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll [2006-11-02 12:33:01 | 000,586,980 | ---- | C] () -- C:\Windows\System32\perfh009.dat [2006-11-02 12:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat [2006-11-02 12:33:01 | 000,101,052 | ---- | C] () -- C:\Windows\System32\perfc009.dat [2006-11-02 12:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat [2006-11-02 12:24:31 | 000,001,405 | ---- | C] () -- C:\Windows\msdfmap.ini [2006-11-02 12:23:31 | 000,000,219 | ---- | C] () -- C:\Windows\system.ini [2006-11-02 12:23:31 | 000,000,144 | ---- | C] () -- C:\Windows\win.ini [2006-11-02 12:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat [2006-11-02 10:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin [2006-11-02 10:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT [2006-11-02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini [2006-11-02 09:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat [2006-11-02 09:22:43 | 000,018,271 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin [2006-11-02 09:10:37 | 000,053,536 | ---- | C] () -- C:\Windows\System32\dosx.exe [2006-11-02 09:10:02 | 000,000,718 | ---- | C] () -- C:\Windows\System32\mscdexnt.exe [2006-11-02 09:10:00 | 000,002,842 | ---- | C] () -- C:\Windows\System32\redir.exe [2006-11-02 09:09:59 | 000,069,886 | ---- | C] () -- C:\Windows\System32\edit.com [2006-11-02 09:09:59 | 000,019,694 | ---- | C] () -- C:\Windows\System32\GRAPHICS.COM [2006-11-02 09:09:59 | 000,000,882 | ---- | C] () -- C:\Windows\System32\share.exe [2006-11-02 09:09:59 | 000,000,882 | ---- | C] () -- C:\Windows\System32\fastopen.exe [2006-11-02 09:09:57 | 000,014,710 | ---- | C] () -- C:\Windows\System32\KB16.COM [2006-11-02 09:09:56 | 000,007,052 | ---- | C] () -- C:\Windows\System32\nlsfunc.exe [2006-11-02 09:09:55 | 000,039,274 | ---- | C] () -- C:\Windows\System32\mem.exe [2006-11-02 09:09:55 | 000,001,131 | ---- | C] () -- C:\Windows\System32\LOADFIX.COM [2006-11-02 09:09:53 | 000,011,753 | ---- | C] () -- C:\Windows\System32\setver.exe [2006-11-02 09:09:52 | 000,020,634 | ---- | C] () -- C:\Windows\System32\debug.exe [2006-11-02 09:09:51 | 000,008,424 | ---- | C] () -- C:\Windows\System32\exe2bin.exe [2006-11-02 09:09:50 | 000,012,642 | ---- | C] () -- C:\Windows\System32\edlin.exe [2006-11-02 09:09:49 | 000,050,648 | ---- | C] () -- C:\Windows\System32\COMMAND.COM [2006-11-02 09:09:49 | 000,012,498 | ---- | C] () -- C:\Windows\System32\append.exe [2006-11-02 09:09:45 | 000,027,097 | ---- | C] () -- C:\Windows\System32\country.sys [2006-11-02 09:09:44 | 000,042,809 | ---- | C] () -- C:\Windows\System32\KEY01.SYS [2006-11-02 09:09:44 | 000,042,537 | ---- | C] () -- C:\Windows\System32\KEYBOARD.SYS [2006-11-02 09:09:42 | 000,009,029 | ---- | C] () -- C:\Windows\System32\ANSI.SYS [2006-11-02 09:09:41 | 000,004,768 | ---- | C] () -- C:\Windows\System32\HIMEM.SYS [2006-11-02 09:09:40 | 000,029,274 | ---- | C] () -- C:\Windows\System32\NTDOS412.SYS [2006-11-02 09:09:38 | 000,029,370 | ---- | C] () -- C:\Windows\System32\NTDOS411.SYS [2006-11-02 09:09:35 | 000,029,146 | ---- | C] () -- C:\Windows\System32\NTDOS404.SYS [2006-11-02 09:09:31 | 000,029,146 | ---- | C] () -- C:\Windows\System32\NTDOS804.SYS [2006-11-02 09:09:29 | 000,027,866 | ---- | C] () -- C:\Windows\System32\NTDOS.SYS [2006-11-02 09:09:26 | 000,035,536 | ---- | C] () -- C:\Windows\System32\NTIO412.SYS [2006-11-02 09:09:24 | 000,035,776 | ---- | C] () -- C:\Windows\System32\NTIO411.SYS [2006-11-02 09:09:23 | 000,034,672 | ---- | C] () -- C:\Windows\System32\NTIO404.SYS [2006-11-02 09:09:22 | 000,034,672 | ---- | C] () -- C:\Windows\System32\NTIO804.SYS [2006-11-02 09:09:20 | 000,033,952 | ---- | C] () -- C:\Windows\System32\NTIO.SYS [2006-11-02 08:25:08 | 000,013,312 | ---- | C] () -- C:\Windows\System32\win87em.dll [color=#E56717]========== LOP Check ==========[/color] [2011-04-15 22:38:08 | 000,000,000 | ---D | M] -- C:\Users\VINC\AppData\Roaming\Nowe Gadu-Gadu [2011-04-16 14:54:32 | 000,009,364 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT [color=#E56717]========== Purity Check ==========[/color] < End of report >

Log z OTL pliku Extras

Kod: Zaznacz wszystko: OTL Extras logfile created on: 2011-04-16 17:44:09 - Run 1 OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\VINC\Downloads Windows Vista Ultimate Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation Internet Explorer (Version = 7.0.6001.18000) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 66,00% Memory free 4,00 Gb Paging File | 3,00 Gb Available in Paging File | 81,00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 29,29 Gb Total Space | 11,13 Gb Free Space | 38,00% Space Free | Partition Type: NTFS Drive D: | 39,06 Gb Total Space | 11,61 Gb Free Space | 29,73% Space Free | Partition Type: NTFS Drive E: | 9,77 Gb Total Space | 7,09 Gb Free Space | 72,57% Space Free | Partition Type: NTFS Drive F: | 9,77 Gb Total Space | 7,39 Gb Free Space | 75,69% Space Free | Partition Type: NTFS Drive G: | 19,53 Gb Total Space | 2,50 Gb Free Space | 12,80% Space Free | Partition Type: NTFS Drive H: | 41,62 Gb Total Space | 10,15 Gb Free Space | 24,38% Space Free | Partition Type: NTFS Drive N: | 6,96 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS Drive P: | 2,46 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS Computer Name: VINC-PC | User Name: VINC | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation) .hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation) .url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l [HKEY_USERS\S-1-5-21-1552928926-758020016-1062045038-1000\SOFTWARE\Classes\<extension>] .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation) htmlfile [edit] -- Reg Error: Key error. htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 "VistaSp1" = Reg Error: Unknown registry data type -- File not found [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\S-1-5-21-1552928926-758020016-1062045038-1000] "EnableNotifications" = 0 "EnableNotificationsRef" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [color=#E56717]========== Authorized Applications List ==========[/color] [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] [color=#E56717]========== Vista Active Application Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{4733C37A-6B63-4E6D-9D18-BF6F5A52BEB0}" = protocol=17 | dir=in | app=d:\bulletstorme\binaries\win32\shippingpc-stormgame.exe | "{50C01F2C-E544-4922-8E50-DBDEF5A5DF86}" = protocol=6 | dir=in | app=d:\bulletstorme\binaries\win32\shippingpc-stormgame.exe | "{6053E3AF-C214-4224-B5F5-E4FB5AC1F208}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version6\teamviewer.exe | "{82CC8824-3E5F-4F37-90FB-11986032753A}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version6\teamviewer_service.exe | "{85A0627F-957E-46CF-8BA1-7E3DF0740403}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version6\teamviewer_service.exe | "{8B2F25BD-6CAC-46A9-9972-CEA3FEE53956}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version6\teamviewer.exe | "TCP Query User{0CD32DAA-4218-4752-96FB-4D7A08D845B0}D:\program files\eidos\kane and lynch dead men\kaneandlynch.exe" = protocol=6 | dir=in | app=d:\program files\eidos\kane and lynch dead men\kaneandlynch.exe | "TCP Query User{3A3EE32E-2D1D-4566-9CD7-2D8C509EECCA}C:\program files\nowe gadu-gadu\gg.exe" = protocol=6 | dir=in | app=c:\program files\nowe gadu-gadu\gg.exe | "TCP Query User{B2798A64-74C9-4B13-8351-BCC8A64CBCFC}D:\program files\ubisoft\tom clancy's rainbow six vegas\binaries\r6vegas_game.exe" = protocol=6 | dir=in | app=d:\program files\ubisoft\tom clancy's rainbow six vegas\binaries\r6vegas_game.exe | "UDP Query User{7D569DFA-3F07-47C0-AFF4-9B56AECFB5B0}C:\program files\nowe gadu-gadu\gg.exe" = protocol=17 | dir=in | app=c:\program files\nowe gadu-gadu\gg.exe | "UDP Query User{8B548C5E-62F0-4EBC-A6BA-0958B076FB4F}D:\program files\ubisoft\tom clancy's rainbow six vegas\binaries\r6vegas_game.exe" = protocol=17 | dir=in | app=d:\program files\ubisoft\tom clancy's rainbow six vegas\binaries\r6vegas_game.exe | "UDP Query User{A3E4A18E-3DF2-40BF-8352-BACD23B6DD63}D:\program files\eidos\kane and lynch dead men\kaneandlynch.exe" = protocol=17 | dir=in | app=d:\program files\eidos\kane and lynch dead men\kaneandlynch.exe | [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform "{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver "{45410935-3E72-472B-8C35-AB1000008200}" = Bulletstorm "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{8FB1B528-E260-451E-9B55-E9152F94B80B}" = Microsoft Games for Windows - LIVE Redistributable "{947EC1A7-B056-4D60-9D31-BD29BBBFC2B8}" = Kane and Lynch Dead Men "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{A2F991E7-DDCD-42B7-AFEC-47789A099FDC}" = Browser Configuration Utility "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Sterownik 3D Vision 260.89 "{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panel sterowania NVIDIA 260.89 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Sterownik graficzny 260.89 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Oprogramowanie systemu PhysX 9.10.0514 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Sterownik dźwięku HD 1.1.9.0 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application "{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{E837648B-7C08-487A-8122-C754C6B9BC3A}" = Tom Clancy's Rainbow Six Vegas "{F97E3841-CA9D-4964-9D64-26066241D26F}" = Microsoft Games for Windows - LIVE "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus "Combined Community Codec Pack_is1" = Combined Community Codec Pack 2009-09-09 "GFWL_{45410935-3E72-472B-8C35-AB1000008200}" = Bulletstorm "InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platforma Menedżera urządzeń "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Mozilla Firefox (3.6.10)" = Mozilla Firefox (3.6.10) "MySSID_is1" = EXPERTool 7.13 "Nowe Gadu-Gadu" = Nowe Gadu-Gadu "NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver "TeamViewer 6" = TeamViewer 6 "VirtualCloneDrive" = VirtualCloneDrive [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ Application Events ] Error - 2011-04-15 16:33:28 | Computer Name = VINC-PC | Source = VSS | ID = 8194 Description = Error - 2011-04-15 16:38:46 | Computer Name = VINC-PC | Source = VSS | ID = 8194 Description = Error - 2011-04-15 16:39:27 | Computer Name = VINC-PC | Source = System Restore | ID = 8193 Description = Error - 2011-04-15 16:51:02 | Computer Name = VINC-PC | Source = MsiInstaller | ID = 1013 Description = Error - 2011-04-15 16:51:08 | Computer Name = VINC-PC | Source = VSS | ID = 8194 Description = Error - 2011-04-15 16:52:34 | Computer Name = VINC-PC | Source = System Restore | ID = 8193 Description = Error - 2011-04-16 06:26:33 | Computer Name = VINC-PC | Source = VSS | ID = 8194 Description = Error - 2011-04-16 06:27:45 | Computer Name = VINC-PC | Source = System Restore | ID = 8193 Description = Error - 2011-04-16 08:48:33 | Computer Name = VINC-PC | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd nvvsvc.exe, wersja 8.17.12.6089, sygnatura czasowa 0x4caebedc, moduł powodujący błąd nvvsvc.exe, wersja 8.17.12.6089, sygnatura czasowa 0x4caebedc, kod wyjątku 0x40000015, przesunięcie błędu 0x000405fe, identyfikator procesu 0x3e4, godzina rozpoczęcia aplikacji 0x01cbfc34939de804. Error - 2011-04-16 10:20:23 | Computer Name = VINC-PC | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd kaneandlynch.exe, wersja 1.0.0.129, sygnatura czasowa 0x47235e49, moduł powodujący błąd xlive.dll, wersja 3.2.3.0, sygnatura czasowa 0x4bb688d9, kod wyjątku 0xc0000005, przesunięcie błędu 0x004dbf6e, identyfikator procesu 0xe54, godzina rozpoczęcia aplikacji 0x01cbfc4112f3a1f2. [ System Events ] Error - 2011-04-16 08:50:04 | Computer Name = VINC-PC | Source = DCOM | ID = 10010 Description = Error - 2011-04-16 08:50:04 | Computer Name = VINC-PC | Source = Service Control Manager | ID = 7034 Description = Error - 2011-04-16 09:50:54 | Computer Name = VINC-PC | Source = HTTP | ID = 15016 Description = Error - 2011-04-16 10:13:37 | Computer Name = VINC-PC | Source = EventLog | ID = 6008 Description = Poprzednie zamknięcie systemu przy 16:12:38 na 2011-04-16 było nieoczekiwane. Error - 2011-04-16 10:13:43 | Computer Name = VINC-PC | Source = HTTP | ID = 15016 Description = Error - 2011-04-16 10:20:38 | Computer Name = VINC-PC | Source = nvlddmkm | ID = 11141134 Description = Error - 2011-04-16 10:22:04 | Computer Name = VINC-PC | Source = EventLog | ID = 6008 Description = Poprzednie zamknięcie systemu przy 16:20:27 na 2011-04-16 było nieoczekiwane. Error - 2011-04-16 10:22:10 | Computer Name = VINC-PC | Source = HTTP | ID = 15016 Description = Error - 2011-04-16 11:15:06 | Computer Name = VINC-PC | Source = EventLog | ID = 6008 Description = Poprzednie zamknięcie systemu przy 17:13:25 na 2011-04-16 było nieoczekiwane. Error - 2011-04-16 11:15:12 | Computer Name = VINC-PC | Source = HTTP | ID = 15016 Description = < End of report >

Log z DDS:

Kod: Zaznacz wszystko: . DDS (Ver_11-03-05.01) - NTFSx86 Run by VINC at 18:01:47,01 on 2011-04-16 Internet Explorer: 7.0.6001.18000 Microsoft® Windows Vista™ Ultimate 6.0.6001.1.1250.48.1045.18.2046.1397 [GMT 2:00] . AV: AntiVir Desktop *Enabled/Outdated* {090F9C29-64CE-6C6F-379C-5901B49A85B7} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} SP: AntiVir Desktop *Enabled/Outdated* {B26E7DCD-42F4-63E1-0D2C-6273CF1DCF0A} . ============== Running Processes =============== . C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\nvvsvc.exe C:\Windows\system32\svchost.exe -k rpcss C:\Windows\System32\svchost.exe -k secsvcs C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\SLsvc.exe C:\Windows\system32\svchost.exe -k LocalService C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe C:\Windows\Explorer.EXE C:\Windows\system32\nvvsvc.exe C:\Windows\system32\Dwm.exe C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Windows\system32\taskeng.exe C:\Windows\system32\taskeng.exe C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe C:\Windows\System32\svchost.exe -k WerSvcGroup C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\WUDFHost.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\EXPERTool\TBPANEL.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Mozilla Firefox\plugin-container.exe C:\Windows\system32\wuauclt.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe C:\Users\VINC\Downloads\dds.scr C:\Windows\system32\conime.exe . ============== Pseudo HJT Report =============== . uURLSearchHooks: SearchHook Class: {bc86e1ab-eda5-4059-938f-ce307b0c6f0a} - c:\program files\devicevm\browser configuration utility\AddressBarSearch.dll uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun uRun: [GAINWARD] c:\program files\expertool\TBPanel.exe /A mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide mRun: [BCU] "c:\program files\devicevm\browser configuration utility\BCU.exe" mRun: [HDAudDeck] c:\program files\via\viaudioi\vdeck\VDeck.exe -r mRun: [VirtualCloneDrive] "c:\program files\elaborate bytes\virtualclonedrive\VCDDaemon.exe" /s mRun: [avgnt] "c:\program files\avira\antivir desktop\avgnt.exe" /min mPolicies-system: EnableUIADesktopToggle = 0 (0x0) . ================= FIREFOX =================== . FF - ProfilePath - c:\users\vinc\appdata\roaming\mozilla\firefox\profiles\178qj5zs.default\ FF - plugin: c:\program files\nvidia corporation\3d vision\npnv3dv.dll FF - plugin: c:\program files\nvidia corporation\3d vision\npnv3dvstreaming.dll FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} . ============= SERVICES / DRIVERS =============== . R1 avgio;avgio;c:\program files\avira\antivir desktop\avgio.sys [2011-4-15 11608] R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\avira\antivir desktop\sched.exe [2011-4-15 108289] R2 AntiVirService;Avira AntiVir Guard;c:\program files\avira\antivir desktop\avguard.exe [2011-4-15 185089] R2 avgntflt;avgntflt;c:\windows\system32\drivers\avgntflt.sys [2011-4-15 55656] R2 BCUService;Browser Configuration Utility Service;c:\program files\devicevm\browser configuration utility\BCUService.exe [2009-10-15 223464] R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\nvidia corporation\3d vision\nvSCPAPISvr.exe [2010-10-8 369256] R2 TeamViewer6;TeamViewer 6;c:\program files\teamviewer\version6\TeamViewer_Service.exe [2011-4-16 2271608] R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\drivers\L1C60x86.sys [2011-4-15 67184] R3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda32v.sys [2011-4-16 123496] R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [2011-4-15 1145456] . =============== Created Last 30 ================ . 2011-04-16 14:08:43 -------- d-----w- c:\users\vinc\appdata\local\kaneandlynch 2011-04-16 10:30:49 813672 ----a-w- c:\windows\system32\nvgenco32.dll 2011-04-16 10:30:49 26216 ----a-w- c:\windows\system32\nvhdap32.dll 2011-04-16 10:30:49 123496 ----a-w- c:\windows\system32\drivers\nvhda32v.sys 2011-04-16 10:28:54 888424 ----a-w- c:\windows\system32\nvdispco322050.dll 2011-04-16 10:28:53 813672 ----a-w- c:\windows\system32\nvgenco322030.dll 2011-04-16 10:28:33 57960 ----a-w- c:\windows\system32\OpenCL.dll 2011-04-16 10:28:32 5399656 ----a-w- c:\windows\system32\nvwgf2um.dll 2011-04-16 10:28:30 14899816 ----a-w- c:\windows\system32\nvoglv32.dll 2011-04-16 10:28:28 10055304 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys 2011-04-16 10:28:26 10021992 ----a-w- c:\windows\system32\nvd3dum.dll 2011-04-16 10:28:25 2911848 ----a-w- c:\windows\system32\nvcuvid.dll 2011-04-16 10:28:25 2666088 ----a-w- c:\windows\system32\nvcuvenc.dll 2011-04-16 10:28:24 4836456 ----a-w- c:\windows\system32\nvcuda.dll 2011-04-16 10:28:08 1718376 ----a-w- c:\windows\system32\nvapi.dll 2011-04-16 10:28:08 13019752 ----a-w- c:\windows\system32\nvcompiler.dll 2011-04-16 10:16:29 -------- d-----w- c:\windows\system32\appmgmt 2011-04-15 23:52:46 -------- d-----w- c:\program files\NVIDIA Corporation 2011-04-15 23:51:29 795104 ----a-w- c:\windows\system32\dpinst.exe 2011-04-15 23:51:08 -------- d-----w- C:\NVIDIA 2011-04-15 22:57:08 -------- d-----w- c:\program files\TeamViewer 2011-04-15 21:19:53 14744 ----a-w- c:\users\vinc\appdata\roaming\microsoft\identitycrl\production\ppcrlconfig.dll 2011-04-15 21:18:28 -------- d-----w- c:\users\vinc\appdata\roaming\NVIDIA 2011-04-15 20:52:55 -------- d-----w- c:\windows\Panther 2011-04-15 20:52:38 -------- d-sh--w- C:\Boot 2011-04-15 20:52:08 -------- d-----w- c:\windows\system32\OEM 2011-04-15 20:47:22 97800 ----a-w- c:\windows\system32\infocardapi.dll 2011-04-15 20:47:22 105016 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll 2011-04-15 20:47:19 622080 ----a-w- c:\windows\system32\icardagt.exe 2011-04-15 20:47:19 43544 ----a-w- c:\windows\system32\PresentationHostProxy.dll 2011-04-15 20:47:19 37384 ----a-w- c:\windows\system32\infocardcpl.cpl 2011-04-15 20:47:19 11264 ----a-w- c:\windows\system32\icardres.dll 2011-04-15 20:47:15 781344 ----a-w- c:\windows\system32\PresentationNative_v0300.dll 2011-04-15 20:47:12 326160 ----a-w- c:\windows\system32\PresentationHost.exe 2011-04-15 20:41:32 96760 ----a-w- c:\windows\system32\dfshim.dll 2011-04-15 20:41:30 282112 ----a-w- c:\windows\system32\mscoree.dll 2011-04-15 20:41:29 41984 ----a-w- c:\windows\system32\netfxperf.dll 2011-04-15 20:41:24 158720 ----a-w- c:\windows\system32\mscorier.dll 2011-04-15 20:41:20 83968 ----a-w- c:\windows\system32\mscories.dll 2011-04-15 20:39:11 -------- d-----w- c:\users\vinc\appdata\local\Mozilla 2011-04-15 20:39:04 553544 ----a-w- c:\program files\mozilla firefox\uninstall\helper.exe 2011-04-15 20:39:01 23512 ----a-w- c:\program files\mozilla firefox\components\browserdirprovider.dll 2011-04-15 20:39:01 138712 ----a-w- c:\program files\mozilla firefox\components\brwsrcmp.dll 2011-04-15 20:34:04 55656 ----a-w- c:\windows\system32\drivers\avgntflt.sys 2011-04-15 20:34:03 -------- d-----w- c:\program files\Avira 2011-04-15 20:34:03 -------- d-----w- c:\progra~2\Avira 2011-04-15 20:32:13 -------- d-----w- c:\program files\Elaborate Bytes 2011-04-15 20:31:40 -------- d-----w- c:\program files\Combined Community Codec Pack 2011-04-15 20:30:27 -------- d-----w- c:\users\vinc\appdata\local\cache 2011-04-15 20:29:32 -------- d-----w- c:\users\vinc\appdata\roaming\Nowe Gadu-Gadu 2011-04-15 20:29:31 -------- d-----w- c:\program files\Nowe Gadu-Gadu 2011-04-15 20:23:15 -------- d-----w- c:\progra~2\NVIDIA Corporation 2011-04-15 20:20:18 12256 ----a-w- c:\windows\system32\drivers\TBPanel.sys 2011-04-15 20:20:18 -------- d-----w- c:\program files\EXPERTool 2011-04-15 20:16:36 67184 ----a-w- c:\windows\system32\drivers\L1C60x86.sys 2011-04-15 20:16:29 -------- d-----w- c:\windows\system32\Atheros_L1e 2011-04-15 20:12:47 888944 ----a-w- c:\windows\system32\VIAPropPageExt.dll 2011-04-15 20:12:47 82544 ----a-w- c:\windows\system32\Dts2PropPageExt.dll 2011-04-15 20:12:47 76288 ----a-w- c:\windows\system32\nQPropPageExt.dll 2011-04-15 20:12:47 75376 ----a-w- c:\windows\system32\ViaMicArrayPropPageExt.dll 2011-04-15 20:12:47 71680 ----a-w- c:\windows\system32\nQAPO.dll 2011-04-15 20:12:47 515696 ----a-w- c:\windows\system32\VIASysFx.dll 2011-04-15 20:12:47 218224 ----a-w- c:\windows\system32\Dts2APO.dll 2011-04-15 20:12:47 187504 ----a-w- c:\windows\system32\ViaMicArrayAPO.dll 2011-04-15 20:12:47 1145456 ----a-w- c:\windows\system32\drivers\viahduaa.sys 2011-04-15 20:12:31 331184 ------w- c:\windows\system32\difxapi.dll 2011-04-15 20:12:30 -------- d-----w- c:\program files\VIA 2011-04-15 20:10:26 53248 ----a-r- c:\windows\system32\CSVer.dll 2011-04-15 20:10:12 -------- d-----w- C:\Intel 2011-04-15 20:09:53 -------- d--h--w- c:\program files\DeviceVM 2011-04-15 20:09:33 -------- d-sh--w- c:\windows\Installer 2011-04-15 20:03:17 -------- d-sh--we c:\progra~2\Ulubione 2011-04-15 20:03:17 -------- d-sh--we c:\progra~2\Szablony 2011-04-15 20:03:17 -------- d-sh--we c:\progra~2\Pulpit 2011-04-15 20:03:17 -------- d-sh--we c:\progra~2\Menu Start 2011-04-15 20:03:17 -------- d-sh--we c:\progra~2\Dokumenty 2011-04-15 20:03:17 -------- d-sh--we c:\progra~2\Dane aplikacji 2011-04-15 19:56:12 -------- d-----w- c:\windows\system32\catroot2 . ==================== Find3M ==================== . 2011-03-07 02:08:13 93552 ----a-w- c:\windows\system32\ElbyCDIO.dll 2011-03-07 00:52:09 134512 ----a-w- c:\windows\system32\ElbyVCD.dll . ============= FINISH: 18:02:16,88 ===============

Kod: Zaznacz wszystko: . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_11-03-05.01) . Microsoft® Windows Vista™ Ultimate Boot Device: \Device\HarddiskVolume1 Install Date: 2011-04-15 22:00:59 System Uptime: 2011-04-16 17:36:34 (1 hours ago) . Motherboard: Gigabyte Technology Co., Ltd. | | G41M-Combo Processor: Intel(R) Pentium(R) D CPU 2.80GHz | Socket 775 | 2800/200mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 29 GiB total, 11,129 GiB free. D: is FIXED (NTFS) - 39 GiB total, 11,614 GiB free. E: is FIXED (NTFS) - 10 GiB total, 7,088 GiB free. F: is FIXED (NTFS) - 10 GiB total, 7,393 GiB free. G: is FIXED (NTFS) - 20 GiB total, 2,5 GiB free. H: is FIXED (NTFS) - 42 GiB total, 10,148 GiB free. I: is CDROM () J: is Removable K: is Removable L: is Removable M: is Removable N: is CDROM (CDFS) O: is CDROM () P: is CDROM (CDFS) Q: is CDROM () . ==== Disabled Device Manager Items ============= . Class GUID: Description: USB camera Device ID: USB\VID_0C45&PID_612A\5&1D0D768E&0&1 Manufacturer: Name: USB camera PNP Device ID: USB\VID_0C45&PID_612A\5&1D0D768E&0&1 Service: . ==== System Restore Points =================== . RP15: 2011-04-15 22:24:51 - Instalacja pakietu sterownika urządzenia: NVIDIA Corporation Kontrolery dźwięku, wideo i gier RP16: 2011-04-15 22:32:24 - Instalacja pakietu sterownika urządzenia: Elaborate Bytes AG Kontrolery magazynu RP18: 2011-04-15 22:33:29 - Avira AntiVir Personal - 2011-04-15 22:33 RP20: 2011-04-15 22:38:50 - Zainstalowany program DirectX RP21: 2011-04-15 22:40:57 - Windows Update RP22: 2011-04-15 22:47:00 - Windows Update RP24: 2011-04-15 22:51:09 - Zainstalowany program DirectX RP25: 2011-04-16 01:52:13 - Instalacja pakietu sterownika urządzenia: NVIDIA Karty graficzne RP26: 2011-04-16 01:54:41 - Instalacja pakietu sterownika urządzenia: NVIDIA Corporation Kontrolery dźwięku, wideo i gier RP27: 2011-04-16 12:16:03 - Removed NVIDIA PhysX RP29: 2011-04-16 12:26:34 - Zainstalowany program DirectX RP30: 2011-04-16 12:28:56 - Instalacja pakietu sterownika urządzenia: NVIDIA Karty graficzne RP31: 2011-04-16 12:30:49 - Instalacja pakietu sterownika urządzenia: NVIDIA Corporation Kontrolery dźwięku, wideo i gier RP32: 2011-04-16 15:57:34 - Zainstalowane Kane and Lynch Dead Men RP33: 2011-04-16 16:26:06 - Zainstalowane Tom Clancy's Rainbow Six Vegas . ==== Installed Programs ====================== . Adobe Flash Player 10 Plugin Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver Avira AntiVir Personal - Free Antivirus Browser Configuration Utility Bulletstorm Combined Community Codec Pack 2009-09-09 EXPERTool 7.13 Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) Kane and Lynch Dead Men Microsoft .NET Framework 3.5 SP1 Microsoft Games for Windows - LIVE Microsoft Games for Windows - LIVE Redistributable Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Mozilla Firefox (3.6.10) Nowe Gadu-Gadu NVIDIA Install Application NVIDIA Oprogramowanie systemu PhysX 9.10.0514 NVIDIA PhysX NVIDIA Stereoscopic 3D Driver NVIDIA Sterownik 3D Vision 260.89 NVIDIA Sterownik dźwięku HD 1.1.9.0 NVIDIA Sterownik graficzny 260.89 Panel sterowania NVIDIA 260.89 Platform TeamViewer 6 Tom Clancy's Rainbow Six Vegas VIA Platforma Menedżera urządzeń VirtualCloneDrive . ==== End Of File ===========================

Log z ComboFIx:

Kod: Zaznacz wszystko: ComboFix 11-04-15.06 - VINC 2011-04-16 18:05:25.1.2 - x86 Microsoft® Windows Vista™ Ultimate 6.0.6001.1.1250.48.1045.18.2046.1347 [GMT 2:00] Uruchomiony z: c:\users\VINC\Downloads\ComboFix.exe AV: AntiVir Desktop *Disabled/Outdated* {090F9C29-64CE-6C6F-379C-5901B49A85B7} SP: AntiVir Desktop *Disabled/Outdated* {B26E7DCD-42F4-63E1-0D2C-6273CF1DCF0A} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . ((((((((((((((((((((((((( Pliki utworzone od 2011-03-16 do 2011-04-16 ))))))))))))))))))))))))))))))) . . 2011-04-16 16:10 . 2011-04-16 16:10 -------- d-----w- c:\users\Default\AppData\Local\temp 2011-04-16 10:30 . 2010-10-20 06:09 813672 ----a-w- c:\windows\system32\nvgenco32.dll 2011-04-16 10:30 . 2010-10-20 06:09 26216 ----a-w- c:\windows\system32\nvhdap32.dll 2011-04-16 10:30 . 2010-10-20 06:09 123496 ----a-w- c:\windows\system32\drivers\nvhda32v.sys 2011-04-16 10:28 . 2010-10-20 06:09 888424 ----a-w- c:\windows\system32\nvdispco322050.dll 2011-04-16 10:28 . 2010-10-20 06:09 813672 ----a-w- c:\windows\system32\nvgenco322030.dll 2011-04-16 10:28 . 2010-10-20 06:09 57960 ----a-w- c:\windows\system32\OpenCL.dll 2011-04-16 10:28 . 2010-10-20 06:09 5399656 ----a-w- c:\windows\system32\nvwgf2um.dll 2011-04-16 10:28 . 2010-10-20 06:09 14899816 ----a-w- c:\windows\system32\nvoglv32.dll 2011-04-16 10:28 . 2010-10-20 06:09 10055304 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys 2011-04-16 10:28 . 2010-10-20 06:09 10021992 ----a-w- c:\windows\system32\nvd3dum.dll 2011-04-16 10:28 . 2010-10-20 06:09 2911848 ----a-w- c:\windows\system32\nvcuvid.dll 2011-04-16 10:28 . 2010-10-20 06:09 2666088 ----a-w- c:\windows\system32\nvcuvenc.dll 2011-04-16 10:28 . 2010-10-20 06:09 4836456 ----a-w- c:\windows\system32\nvcuda.dll 2011-04-16 10:28 . 2010-10-20 06:09 1718376 ----a-w- c:\windows\system32\nvapi.dll 2011-04-16 10:28 . 2010-10-20 06:09 13019752 ----a-w- c:\windows\system32\nvcompiler.dll 2011-04-15 23:52 . 2011-04-16 10:31 -------- d-----w- c:\program files\NVIDIA Corporation 2011-04-15 23:51 . 2010-07-09 22:37 795104 ----a-w- c:\windows\system32\dpinst.exe 2011-04-15 23:51 . 2011-04-15 23:54 -------- d-----w- C:\NVIDIA 2011-04-15 22:57 . 2011-04-15 22:57 -------- d-----w- c:\program files\TeamViewer 2011-04-15 20:52 . 2011-04-15 20:02 -------- d-----w- c:\windows\Panther 2011-04-15 20:52 . 2011-04-15 20:52 -------- d-----w- C:\Boot 2011-04-15 20:52 . 2011-04-15 20:52 -------- d-----w- c:\windows\system32\OEM 2011-04-15 20:47 . 2008-06-20 01:14 105016 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll 2011-04-15 20:47 . 2008-06-20 01:14 97800 ----a-w- c:\windows\system32\infocardapi.dll 2011-04-15 20:47 . 2008-06-20 01:14 43544 ----a-w- c:\windows\system32\PresentationHostProxy.dll 2011-04-15 20:47 . 2008-06-20 01:14 37384 ----a-w- c:\windows\system32\infocardcpl.cpl 2011-04-15 20:47 . 2008-06-20 01:14 11264 ----a-w- c:\windows\system32\icardres.dll 2011-04-15 20:47 . 2008-06-20 01:14 622080 ----a-w- c:\windows\system32\icardagt.exe 2011-04-15 20:47 . 2008-06-20 01:14 781344 ----a-w- c:\windows\system32\PresentationNative_v0300.dll 2011-04-15 20:47 . 2008-06-20 01:14 326160 ----a-w- c:\windows\system32\PresentationHost.exe 2011-04-15 20:41 . 2008-07-27 18:03 96760 ----a-w- c:\windows\system32\dfshim.dll 2011-04-15 20:41 . 2008-07-27 18:03 282112 ----a-w- c:\windows\system32\mscoree.dll 2011-04-15 20:41 . 2008-07-27 18:03 41984 ----a-w- c:\windows\system32\netfxperf.dll 2011-04-15 20:41 . 2008-07-27 18:03 158720 ----a-w- c:\windows\system32\mscorier.dll 2011-04-15 20:41 . 2008-07-27 18:03 83968 ----a-w- c:\windows\system32\mscories.dll 2011-04-15 20:38 . 2011-04-15 20:38 -------- d-----w- c:\windows\system32\xlive 2011-04-15 20:38 . 2011-04-15 20:39 -------- d-----w- c:\program files\Microsoft Games for Windows - LIVE 2011-04-15 20:34 . 2009-07-28 14:33 55656 ----a-w- c:\windows\system32\drivers\avgntflt.sys 2011-04-15 20:34 . 2009-03-30 08:33 96104 ----a-w- c:\windows\system32\drivers\avipbb.sys 2011-04-15 20:34 . 2011-04-15 20:34 -------- d-----w- c:\programdata\Avira 2011-04-15 20:34 . 2011-04-15 20:34 -------- d-----w- c:\program files\Avira 2011-04-15 20:32 . 2011-04-15 20:32 -------- d-----w- c:\program files\Elaborate Bytes 2011-04-15 20:31 . 2011-04-15 20:31 -------- d-----w- c:\program files\Combined Community Codec Pack 2011-04-15 20:29 . 2011-04-15 20:29 -------- d-----w- c:\program files\Nowe Gadu-Gadu 2011-04-15 20:29 . 2011-04-15 20:29 -------- d-----w- c:\windows\system32\Macromed 2011-04-15 20:24 . 2011-04-16 15:37 -------- d-----w- c:\programdata\NVIDIA 2011-04-15 20:23 . 2011-04-15 23:52 -------- d-----w- c:\programdata\NVIDIA Corporation 2011-04-15 20:20 . 2011-04-16 10:33 -------- d-----w- c:\program files\EXPERTool 2011-04-15 20:20 . 2007-03-16 08:11 12256 ----a-w- c:\windows\system32\drivers\TBPanel.sys 2011-04-15 20:16 . 2010-06-25 02:33 67184 ----a-w- c:\windows\system32\drivers\L1C60x86.sys 2011-04-15 20:16 . 2011-04-15 20:16 -------- d-----w- c:\windows\system32\Atheros_L1e 2011-04-15 20:13 . 2011-04-16 14:26 -------- d--h--w- c:\program files\InstallShield Installation Information 2011-04-15 20:12 . 2010-04-24 08:41 515696 ----a-w- c:\windows\system32\VIASysFx.dll 2011-04-15 20:12 . 2010-04-24 08:41 888944 ----a-w- c:\windows\system32\VIAPropPageExt.dll 2011-04-15 20:12 . 2010-04-24 08:41 75376 ----a-w- c:\windows\system32\ViaMicArrayPropPageExt.dll 2011-04-15 20:12 . 2010-04-24 08:41 187504 ----a-w- c:\windows\system32\ViaMicArrayAPO.dll 2011-04-15 20:12 . 2010-04-24 08:41 1145456 ----a-w- c:\windows\system32\drivers\viahduaa.sys 2011-04-15 20:12 . 2010-04-24 08:41 82544 ----a-w- c:\windows\system32\Dts2PropPageExt.dll 2011-04-15 20:12 . 2010-04-24 08:40 218224 ----a-w- c:\windows\system32\Dts2APO.dll 2011-04-15 20:12 . 2007-12-04 03:28 76288 ----a-w- c:\windows\system32\nQPropPageExt.dll 2011-04-15 20:12 . 2007-12-04 03:28 71680 ----a-w- c:\windows\system32\nQAPO.dll 2011-04-15 20:12 . 2007-04-11 07:35 331184 ------w- c:\windows\system32\difxapi.dll 2011-04-15 20:12 . 2011-04-15 20:12 -------- d-----w- c:\program files\VIA 2011-04-15 20:12 . 2011-04-15 20:12 -------- d-----w- c:\program files\Common Files\InstallShield 2011-04-15 20:10 . 2011-04-15 20:10 -------- d-----w- c:\program files\Intel 2011-04-15 20:10 . 2009-11-18 08:03 53248 ----a-r- c:\windows\system32\CSVer.dll 2011-04-15 20:10 . 2011-04-15 20:10 -------- d-----w- C:\Intel 2011-04-15 20:09 . 2011-04-15 20:09 -------- d--h--w- c:\program files\DeviceVM 2011-04-15 20:09 . 2011-04-16 10:31 -------- d-sh--w- c:\windows\Installer 2011-04-15 20:05 . 2011-04-16 10:31 -------- d-----w- c:\users\VINC 2011-04-15 20:02 . 2011-04-15 20:06 -------- d-----w- c:\windows\Debug 2011-04-15 19:56 . 2011-04-16 10:34 -------- d-----w- c:\windows\system32\catroot2 . . . (((((((((((((((((((((((((((((((((((((((( Sekcja Find3M )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-03-07 02:08 . 2011-03-07 02:08 93552 ----a-w- c:\windows\system32\ElbyCDIO.dll 2011-03-07 00:52 . 2011-03-07 00:52 134512 ----a-w- c:\windows\system32\ElbyVCD.dll . . ((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-10-20 1233920] "GAINWARD"="c:\program files\EXPERTool\TBPanel.exe" [2010-09-02 2181744] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "BCU"="c:\program files\DeviceVM\Browser Configuration Utility\BCU.exe" [2009-10-15 375000] "HDAudDeck"="c:\program files\VIA\VIAudioi\VDeck\VDeck.exe" [2010-05-04 1674352] "VirtualCloneDrive"="c:\program files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" [2011-03-07 89456] "avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 209153] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-1552928926-758020016-1062045038-1000] "EnableNotificationsRef"=dword:00000001 . S2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [2009-05-13 108289] S2 BCUService;Browser Configuration Utility Service;c:\program files\DeviceVM\Browser Configuration Utility\BCUService.exe [2009-10-15 223464] S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2010-10-07 369256] S2 TeamViewer6;TeamViewer 6;c:\program files\TeamViewer\Version6\TeamViewer_Service.exe [2011-04-01 2271608] S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C60x86.sys [2010-06-25 67184] S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda32v.sys [2010-10-20 123496] S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [2010-04-24 1145456] . . . ------- Skan uzupełniający ------- . FF - ProfilePath - c:\users\VINC\AppData\Roaming\Mozilla\Firefox\Profiles\178qj5zs.default\ FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2011-04-16 18:10 Windows 6.0.6001 Service Pack 1 NTFS . skanowanie ukrytych procesów ... . skanowanie ukrytych wpisów autostartu ... . HKLM\Software\Microsoft\Windows\CurrentVersion\Run HDAudDeck = c:\program files\VIA\VIAudioi\VDeck\VDeck.exe -r??????????????????????????????????????????????? . skanowanie ukrytych plików ... . skanowanie pomyślnie ukończone ukryte pliki: 0 . ************************************************************************** . Czas ukończenia: 2011-04-16 18:12:47 ComboFix-quarantined-files.txt 2011-04-16 16:12 . Przed: 11 969 224 704 bajtów wolnych Po: 12 032 540 672 bajtów wolnych . - - End Of File - - 0CD4C5A43632161D781694F387126BD0

**Posty:** 18165 · przez **wojtas** 17 Kwi 2011, 13:17

Combofixa nie używamy od tak sobie

na forum wymagane logi to 2 z OTL i w przypadku systemów 32 bit dochodzi jeszcze Gmer

Uruchom OTL i w sekcji własne opcje skanowania / skrypt wklej:

:OTL
O32 - AutoRun File - [2010-11-22 23:36:30 | 000,000,055 | R--- | M] () - N:\Autorun.inf -- [ CDFS ]
O32 - AutoRun File - [2011-01-31 03:57:37 | 000,367,686 | R--- | M] () - N:\autorun.ico -- [ CDFS ]
O32 - AutoRun File - [2010-02-22 13:30:07 | 000,000,000 | ---D | M] - P:\autorun -- [ CDFS ]
O32 - AutoRun File - [2010-02-16 16:01:37 | 000,223,744 | R--- | M] () - P:\autorun.exe -- [ CDFS ]
O32 - AutoRun File - [2007-03-22 09:45:18 | 000,000,049 | R--- | M] () - P:\Autorun.inf -- [ CDFS ]
O33 - MountPoints2\{0a091adc-679a-11e0-b978-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{0a091adc-679a-11e0-b978-806e6f6e6963}\Shell\AutoRun\command - "" = I:\cda_menu.exe
O33 - MountPoints2\{98748061-679e-11e0-bd90-1c6f65816465}\Shell - "" = AutoRun
O33 - MountPoints2\{98748061-679e-11e0-bd90-1c6f65816465}\Shell\AutoRun\command - "" = C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL N:\Autorun.exe
O33 - MountPoints2\{98748175-679e-11e0-bd90-1c6f65816465}\Shell - "" = AutoRun
O33 - MountPoints2\{98748175-679e-11e0-bd90-1c6f65816465}\Shell\AutoRun\command - "" = P:\autorun.exe -- [2010-02-16 16:01:37 | 000,223,744 | R--- | M] ()

:Commands
[emptytemp]
[emptyflash]

Kliknij wykonaj skrypt. I potwierdź reset komputera .

Wykonaj czynności końcowe :
*Uruchom OTL z opcji sprzątanie.
* wykonaj optymalizację Windowsa ( instrukcja dla Windowsa XP, lecz w innych systemach jest podobnie )
* zrób pełny skan Malwarebytes Anti-Malware (zaktualizuj, usuń co znajdzie )
* Skasuj stan przywracania systemu

Zaktualizuj zabezpieczenia:
>>> Internet Explorer 8
>>> Java™ 6
>>> Mozilla Firefox 4,0
>>> Adobe Flash Player
>>> Avast 6 (odinstaluj starszą wersję i zainstaluj nową)