"system windows napotkał błąd" - wyślij raport

**Posty:** 2008 · przez **fibi07** 30 Mar 2011, 19:54

Kilka razy juz wyskoczyło mi okno na samym początku dot. wysyłania raportu, a w nazwie (gdzie zwykle jest program) było "System Windows napotkał błąd" i opcja wysyłania raportu.

GMER:

Kod: Zaznacz wszystko: GMER 1.0.15.15570 - http://www.gmer.net Rootkit scan 2011-03-30 19:29:18 Windows 5.1.2600 Dodatek Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 Maxtor_6Y080P0 rev.YAR41BW0 Running: pcdrovpp.exe; Driver: C:\DOCUME~1\Fibi\USTAWI~1\Temp\pxtdypod.sys ---- Kernel code sections - GMER 1.0.15 ---- .text C:\WINDOWS\System32\DRIVERS\nv4_mini.sys section is writeable [0xF91E7360, 0x24526E, 0xE8000020] ---- User code sections - GMER 1.0.15 ---- .text C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe[1268] kernel32.dll!SetUnhandledExceptionFilter 7C8449FD 4 Bytes [C2, 04, 00, 00] .text C:\Program Files\Mozilla Firefox\firefox.exe[2172] ntdll.dll!LdrLoadDll 7C9163A3 5 Bytes JMP 004013F0 C:\Program Files\Mozilla Firefox\firefox.exe (Firefox/Mozilla Corporation) ---- Devices - GMER 1.0.15 ---- AttachedDevice \FileSystem\Ntfs \Ntfs eamon.sys (Amon monitor/ESET) AttachedDevice \Driver\Tcpip \Device\Tcp epfwtdir.sys (ESET Antivirus Network Redirector/ESET) AttachedDevice \FileSystem\Fastfat \Fat eamon.sys (Amon monitor/ESET) ---- Registry - GMER 1.0.15 ---- Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0x00 0x00 0x00 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 1 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0xEB 0x1A 0x63 0xF7 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 0 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0x2A 0x6D 0x7C 0x6C ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0x00 0x00 0x00 0x00 ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 1 Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0xEB 0x1A 0x63 0xF7 ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 0 Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0x2A 0x6D 0x7C 0x6C ... Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet) Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0x00 0x00 0x00 0x00 ... Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 1 Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0xEB 0x1A 0x63 0xF7 ... Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 0 Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0x2A 0x6D 0x7C 0x6C ... Reg HKLM\SOFTWARE\Classes\CLSID\{5C082286-DD56-6B96-110FABAC317C22E3}\{17077DA0-F2D9-EF48-DBC13F521337D931}\{A783887F-564D-BBBA-662193019693FEBC} Reg HKLM\SOFTWARE\Classes\CLSID\{5C082286-DD56-6B96-110FABAC317C22E3}\{17077DA0-F2D9-EF48-DBC13F521337D931}\{A783887F-564D-BBBA-662193019693FEBC}@1D1OWFM6WKF6TLM3S2BGKKUUDG1 0x01 0x00 0x01 0x00 ... Reg HKLM\SOFTWARE\Classes\CLSID\{92E364B2-3C99-8131-FA38C55A9DF469B6}\{ED083C7B-BB22-E038-94448FA9BD51D19E}\{5592BF6F-6CA4-ED79-1454C42B0B348E21} Reg HKLM\SOFTWARE\Classes\CLSID\{92E364B2-3C99-8131-FA38C55A9DF469B6}\{ED083C7B-BB22-E038-94448FA9BD51D19E}\{5592BF6F-6CA4-ED79-1454C42B0B348E21}@1D1OWFM6WKF6TLM3S2BGKKUUDG1 0x01 0x00 0x01 0x00 ... Reg HKLM\SOFTWARE\Classes\CLSID\{99B3C19D-1110-E642-964288AEAF2709C8}\{40C615DA-7F31-9B5B-0DDF6E89F316E212}\{17EBF9A6-E64A-9733-B8ACE6C016E89E7C} Reg HKLM\SOFTWARE\Classes\CLSID\{99B3C19D-1110-E642-964288AEAF2709C8}\{40C615DA-7F31-9B5B-0DDF6E89F316E212}\{17EBF9A6-E64A-9733-B8ACE6C016E89E7C}@{3EE4C831-B7E0-4ed1-B9FC-EDC523C9612F}1 0x01 0x00 0x01 0x00 ... Reg HKLM\SOFTWARE\Classes\CLSID\{DCB42C02-2C7E-50EC-E2B5A792F7765BFB}\{38286259-1A12-EDE0-84E2CD6A1D76E8F7}\{2C2658AF-F73E-73C6-89D45D0D6FCCCFF2} Reg HKLM\SOFTWARE\Classes\CLSID\{DCB42C02-2C7E-50EC-E2B5A792F7765BFB}\{38286259-1A12-EDE0-84E2CD6A1D76E8F7}\{2C2658AF-F73E-73C6-89D45D0D6FCCCFF2}@{3EE4C831-B7E0-4ed1-B9FC-EDC523C9612F}1 0x01 0x00 0x01 0x00 ... Reg HKLM\SOFTWARE\Classes\CLSID\{E20DD46F-0CC4-5960-1B1F69E13D145F9C}\{B130274E-D0E8-282B-E7F07B1EE1210709}\{71D795F0-66AF-00D6-EF71DCAC5CDD95C3} Reg HKLM\SOFTWARE\Classes\CLSID\{E20DD46F-0CC4-5960-1B1F69E13D145F9C}\{B130274E-D0E8-282B-E7F07B1EE1210709}\{71D795F0-66AF-00D6-EF71DCAC5CDD95C3}@1D1OWFM6WKF6TLM3S2BGKKUUDG1 0x01 0x00 0x01 0x00 ... Reg HKLM\SOFTWARE\Classes\CLSID\{EDCF6AC6-CDE0-1F6D-043771A983FAB740}\{0B884C8F-0AAB-F925-A63B97C7F3A43931}\{965D33BD-6599-2D1D-7E8A152D666CAEE5} Reg HKLM\SOFTWARE\Classes\CLSID\{EDCF6AC6-CDE0-1F6D-043771A983FAB740}\{0B884C8F-0AAB-F925-A63B97C7F3A43931}\{965D33BD-6599-2D1D-7E8A152D666CAEE5}@{3EE4C831-B7E0-4ed1-B9FC-EDC523C9612F}1 0x01 0x00 0x01 0x00 ... ---- Disk sectors - GMER 1.0.15 ---- Disk \Device\Harddisk0\DR0 malicious Win32:MBRoot code @ sector 61 Disk \Device\Harddisk0\DR0 PE file @ sector 160071660 ---- Files - GMER 1.0.15 ---- File C:\Documents and Settings\Fibi\Ustawienia lokalne\Dane aplikacji\Mozilla\Firefox\Profiles\c20ymn4q.default\Cache\6FC78EFDd01 33209 bytes File C:\Documents and Settings\Fibi\Ustawienia lokalne\Dane aplikacji\Mozilla\Firefox\Profiles\c20ymn4q.default\Cache\273B7439d01 120448 bytes File C:\Documents and Settings\Fibi\Ustawienia lokalne\Dane aplikacji\Mozilla\Firefox\Profiles\c20ymn4q.default\Cache\10184283d01 20278 bytes File C:\Documents and Settings\Fibi\Ustawienia lokalne\Dane aplikacji\Mozilla\Firefox\Profiles\c20ymn4q.default\Cache\C4278AC2d01 182334 bytes File C:\Documents and Settings\Fibi\Ustawienia lokalne\Dane aplikacji\Mozilla\Firefox\Profiles\c20ymn4q.default\Cache\790F4A4Ed01 24811 bytes File C:\Documents and Settings\Fibi\Ustawienia lokalne\Dane aplikacji\Mozilla\Firefox\Profiles\c20ymn4q.default\Cache\7B1FF3FEd01 18457 bytes File C:\Documents and Settings\Fibi\Ustawienia lokalne\Dane aplikacji\Mozilla\Firefox\Profiles\c20ymn4q.default\Cache\3E29F380d01 34154 bytes File C:\Documents and Settings\Fibi\Ustawienia lokalne\Dane aplikacji\Mozilla\Firefox\Profiles\c20ymn4q.default\Cache\4761A586d01 25756 bytes File C:\Documents and Settings\Fibi\Ustawienia lokalne\Dane aplikacji\Mozilla\Firefox\Profiles\c20ymn4q.default\Cache\18D999AAd01 20591 bytes File C:\Documents and Settings\Fibi\Ustawienia lokalne\Dane aplikacji\Mozilla\Firefox\Profiles\c20ymn4q.default\Cache\1E6D0A45d01 24544 bytes File C:\Documents and Settings\Fibi\Ustawienia lokalne\Dane aplikacji\Mozilla\Firefox\Profiles\c20ymn4q.default\Cache\22DA3377d01 27463 bytes File C:\Documents and Settings\Fibi\Ustawienia lokalne\Dane aplikacji\Mozilla\Firefox\Profiles\c20ymn4q.default\Cache\5E36C919d01 29506 bytes File C:\Documents and Settings\Fibi\Ustawienia lokalne\Dane aplikacji\Mozilla\Firefox\Profiles\c20ymn4q.default\Cache\819619D3d01 21855 bytes File C:\Documents and Settings\Fibi\Ustawienia lokalne\Dane aplikacji\Mozilla\Firefox\Profiles\c20ymn4q.default\Cache\53C79F95d01 5873358 bytes File C:\Documents and Settings\Fibi\Ustawienia lokalne\Dane aplikacji\Mozilla\Firefox\Profiles\c20ymn4q.default\Cache\54D3FD12d01 19525 bytes File C:\Documents and Settings\Fibi\Ustawienia lokalne\Dane aplikacji\Mozilla\Firefox\Profiles\c20ymn4q.default\Cache\59DE6DC2d01 34032 bytes ---- EOF - GMER 1.0.15 ----

OTL.exe

Kod: Zaznacz wszystko: OTL logfile created on: 2011-03-30 19:44:13 - Run 5 OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\Fibi\Pulpit Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.5512) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 255,00 Mb Total Physical Memory | 11,00 Mb Available Physical Memory | 4,00% Memory free 617,00 Mb Paging File | 167,00 Mb Available in Paging File | 27,00% Paging File free Paging file location(s): C:\pagefile.sys 384 768 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 38,16 Gb Total Space | 18,74 Gb Free Space | 49,10% Space Free | Partition Type: NTFS Drive D: | 19,08 Gb Total Space | 2,80 Gb Free Space | 14,67% Space Free | Partition Type: NTFS Drive E: | 19,07 Gb Total Space | 14,74 Gb Free Space | 77,29% Space Free | Partition Type: FAT32 Computer Name: FIBI | User Name: Fibi | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2011-03-30 16:39:20 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Fibi\Pulpit\OTL.exe PRC - [2011-03-27 02:55:49 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2009-11-16 10:04:30 | 000,735,960 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe PRC - [2009-11-16 10:03:32 | 002,054,360 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe PRC - [2009-07-07 15:48:44 | 000,647,216 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe PRC - [2008-04-14 23:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2011-03-30 16:39:20 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Fibi\Pulpit\OTL.exe MOD - [2008-04-14 23:29:10 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2009-11-16 10:12:54 | 000,020,680 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv) SRV - [2009-11-16 10:04:30 | 000,735,960 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn) SRV - [2009-07-07 15:48:44 | 000,647,216 | ---- | M] (Cisco Systems, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe -- (nmservice) SRV - [2006-04-12 11:36:56 | 000,176,640 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe -- (ServiceLayer) SRV - [2001-10-26 19:30:00 | 000,003,584 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\System32\regedt32.exe -- (NOD32FiXTemDono) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2009-11-16 10:06:50 | 000,096,408 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir) DRV - [2009-11-16 10:03:36 | 000,108,792 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv) DRV - [2009-11-16 09:56:12 | 000,116,520 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon) DRV - [2009-07-07 15:48:44 | 000,026,672 | ---- | M] (Cisco Systems, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\purendis.sys -- (purendis) DRV - [2009-07-07 15:48:44 | 000,025,392 | ---- | M] (Cisco Systems, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\pnarp.sys -- (pnarp) DRV - [2008-06-10 21:05:20 | 000,223,128 | ---- | M] (DT Soft Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\Drivers\dtscsi.sys -- (dtscsi) DRV - [2008-05-16 18:30:57 | 000,025,280 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi) DRV - [2008-04-14 01:15:30 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum) DRV - [2007-03-08 14:34:46 | 004,027,840 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcxwdm.sys -- (ALCXWDM) Service for Realtek AC97 Audio (WDM) DRV - [2006-09-24 15:28:46 | 000,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan) DRV - [2006-03-24 08:32:00 | 000,127,488 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcd.sys -- (Nokia USB Phone Parent) DRV - [2006-03-24 08:32:00 | 000,013,312 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdcj.sys -- (Nokia USB Port) DRV - [2006-03-24 08:32:00 | 000,013,312 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdcm.sys -- (Nokia USB Modem) DRV - [2006-03-24 08:32:00 | 000,008,704 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmwcdc.sys -- (Nokia USB Generic) DRV - [2005-08-10 12:43:22 | 000,041,984 | R--- | M] (D-Link ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\dlkfet5b.sys -- (FETNDISB) DRV - [2001-08-17 23:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401) DRV - [1996-04-03 21:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.gazeta.pl/0,0.html?p=107 IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-2025429265-789336058-1060284298-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.gazeta.pl/0,0.html?p=107 IE - HKU\S-1-5-21-2025429265-789336058-1060284298-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-2025429265-789336058-1060284298-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "http://www.gazeta.pl/0,0.html?p=107" FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.3 FF - prefs.js..extensions.enabledItems: {46551EC9-40F0-4e47-8E18-8E5CF550CFB8}:1.1.1 FF - prefs.js..extensions.enabledItems: {c45c406e-ab73-11d8-be73-000a95be3b12}:1.1.9 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24 FF - HKLM\software\mozilla\Mozilla Firefox 3.6.16\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-03-27 02:56:16 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.16\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-03-27 02:56:16 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Thunderbird 3.1.4\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2010-10-02 11:54:53 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Thunderbird 3.1.4\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins [2008-12-20 19:16:28 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2010-01-25 21:01:40 | 000,000,000 | ---D | M] [2010-09-14 16:52:55 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Fibi\Dane aplikacji\Mozilla\Extensions [2010-09-14 16:52:55 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Fibi\Dane aplikacji\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6} [2011-03-29 23:40:37 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Fibi\Dane aplikacji\Mozilla\Firefox\Profiles\c20ymn4q.default\extensions [2011-03-04 16:14:14 | 000,000,000 | ---D | M] (Stylish) -- C:\Documents and Settings\Fibi\Dane aplikacji\Mozilla\Firefox\Profiles\c20ymn4q.default\extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8} [2010-03-24 17:14:44 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Fibi\Dane aplikacji\Mozilla\Firefox\Profiles\c20ymn4q.default\extensions\{7694c49c-9fbd-11dc-8314-0800200c9a66} [2011-01-07 12:49:10 | 000,000,000 | ---D | M] (Web Developer) -- C:\Documents and Settings\Fibi\Dane aplikacji\Mozilla\Firefox\Profiles\c20ymn4q.default\extensions\{c45c406e-ab73-11d8-be73-000a95be3b12} [2010-12-24 16:46:13 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\Fibi\Dane aplikacji\Mozilla\Firefox\Profiles\c20ymn4q.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [2009-01-31 17:23:43 | 000,004,431 | ---- | M] () -- C:\Documents and Settings\Fibi\Dane aplikacji\Mozilla\Firefox\Profiles\c20ymn4q.default\searchplugins\lingpl.xml [2008-05-07 19:11:15 | 000,001,779 | ---- | M] () -- C:\Documents and Settings\Fibi\Dane aplikacji\Mozilla\Firefox\Profiles\c20ymn4q.default\searchplugins\torrentz-search.xml [2010-01-09 22:16:28 | 000,001,979 | ---- | M] () -- C:\Documents and Settings\Fibi\Dane aplikacji\Mozilla\Firefox\Profiles\c20ymn4q.default\searchplugins\wrzuta.xml [2008-05-06 19:27:00 | 000,002,126 | ---- | M] () -- C:\Documents and Settings\Fibi\Dane aplikacji\Mozilla\Firefox\Profiles\c20ymn4q.default\searchplugins\wyszukiwanie-filmw-wideo-w-youtube.xml [2011-03-29 23:40:37 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2010-12-27 21:03:27 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} [2011-03-09 12:30:53 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} [2010-12-27 21:02:58 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF [2011-02-02 22:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll [2011-03-27 02:56:03 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2011-03-27 02:56:04 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2011-03-27 02:56:04 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2011-03-27 02:56:04 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2011-03-27 02:56:04 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2011-03-27 02:56:04 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2008-07-08 22:53:28 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-2025429265-789336058-1060284298-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-21-2025429265-789336058-1060284298-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKU\S-1-5-21-2025429265-789336058-1060284298-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKU\S-1-5-21-2025429265-789336058-1060284298-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.) O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab (Reg Error: Key error.) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24) O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 194.204.152.34 194.204.159.1 O18 - Protocol\Handler\pure-go {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files\Common Files\Pure Networks Shared\Platform\puresp4.dll (Cisco Systems, Inc.) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Fibi\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Fibi\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2008-05-06 00:19:43 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = ComFile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2011-03-30 16:39:02 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Fibi\Pulpit\OTL.exe [2011-03-28 22:19:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fibi\Pulpit\HIMYM Season 6 [2011-03-27 21:37:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fibi\Pulpit\The Deathly Hallows [2011-03-13 21:12:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fibi\Pulpit\Age of Empires II [2011-03-10 15:45:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Guitar Pro 5 [2011-03-10 15:43:35 | 000,000,000 | ---D | C] -- C:\Program Files\Guitar Pro 5 [2011-03-09 12:30:50 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe [2011-03-09 12:30:50 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe [2011-03-09 12:30:50 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe [2011-03-04 18:33:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Fibi\Ustawienia lokalne\Dane aplikacji\PMB Files [2011-03-04 18:33:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\PMB Files [2011-03-04 18:31:48 | 000,000,000 | ---D | C] -- C:\Program Files\Pando Networks [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2011-03-30 16:39:20 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Fibi\Pulpit\OTL.exe [2011-03-30 16:38:53 | 000,301,568 | ---- | M] () -- C:\Documents and Settings\Fibi\Pulpit\pcdrovpp.exe [2011-03-30 16:21:45 | 000,081,191 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2011-03-30 16:15:56 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2011-03-30 16:15:52 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2011-03-30 14:42:43 | 006,291,456 | -H-- | M] () -- C:\Documents and Settings\Fibi\NTUSER.DAT [2011-03-30 14:42:43 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\Fibi\ntuser.ini [2011-03-30 14:41:36 | 003,092,758 | -H-- | M] () -- C:\Documents and Settings\Fibi\Ustawienia lokalne\Dane aplikacji\IconCache.db [2011-03-30 13:37:01 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2011-03-30 00:40:38 | 000,233,984 | ---- | M] () -- C:\Documents and Settings\Fibi\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011-03-29 12:08:03 | 000,000,038 | ---- | M] () -- C:\WINDOWS\avisplitter.INI [2011-03-29 12:07:07 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2011-03-29 12:03:29 | 075,734,027 | ---- | M] () -- C:\Documents and Settings\Fibi\Pulpit\Pablopavo_I_Ludziki-10_Piosenek-PL-2011-EMPiK.rar [2011-03-29 01:36:24 | 001,089,268 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2011-03-29 01:36:24 | 000,490,808 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2011-03-29 01:36:24 | 000,432,856 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2011-03-29 01:36:24 | 000,083,988 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2011-03-29 01:36:24 | 000,067,560 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2011-03-28 22:40:08 | 000,020,727 | ---- | M] () -- C:\Documents and Settings\Fibi\Pulpit\Indian Summer.gp5 [2011-03-26 20:23:01 | 000,041,297 | ---- | M] () -- C:\Documents and Settings\Fibi\Pulpit\The Circle Waves.gp5 [2011-03-12 14:02:14 | 003,805,168 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2011-03-04 20:10:01 | 000,088,496 | ---- | M] () -- C:\Documents and Settings\Fibi\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2011-03-30 16:38:47 | 000,301,568 | ---- | C] () -- C:\Documents and Settings\Fibi\Pulpit\pcdrovpp.exe [2011-03-29 11:56:28 | 075,734,027 | ---- | C] () -- C:\Documents and Settings\Fibi\Pulpit\Pablopavo_I_Ludziki-10_Piosenek-PL-2011-EMPiK.rar [2011-03-28 22:39:59 | 000,020,727 | ---- | C] () -- C:\Documents and Settings\Fibi\Pulpit\Indian Summer.gp5 [2011-03-26 20:22:54 | 000,041,297 | ---- | C] () -- C:\Documents and Settings\Fibi\Pulpit\The Circle Waves.gp5 [2010-09-05 12:37:02 | 000,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfcmnnt.dll [2010-06-01 19:04:23 | 000,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll [2010-06-01 18:51:38 | 000,021,840 | ---- | C] () -- C:\WINDOWS\System32\SIntfNT.dll [2010-06-01 18:51:36 | 000,017,212 | ---- | C] () -- C:\WINDOWS\System32\SIntf32.dll [2010-06-01 18:51:34 | 000,012,067 | ---- | C] () -- C:\WINDOWS\System32\SIntf16.dll [2009-12-10 22:22:48 | 008,892,928 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\atscie.msi [2009-11-29 13:09:23 | 000,139,264 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2009-11-29 13:09:22 | 000,742,220 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2009-09-06 16:40:49 | 000,169,670 | ---- | C] () -- C:\WINDOWS\hpoins27.dat [2009-09-06 16:40:48 | 000,000,932 | ---- | C] () -- C:\WINDOWS\hpomdl27.dat [2009-08-12 20:44:04 | 000,168,893 | ---- | C] () -- C:\WINDOWS\hphins26.dat [2009-08-12 20:44:03 | 000,000,787 | ---- | C] () -- C:\WINDOWS\hphmdl26.dat [2009-04-10 22:22:33 | 000,177,784 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat [2008-11-09 20:21:13 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.INI [2008-10-14 18:06:37 | 003,092,758 | -H-- | C] () -- C:\Documents and Settings\Fibi\Ustawienia lokalne\Dane aplikacji\IconCache.db [2008-07-11 21:37:03 | 001,867,776 | ---- | C] () -- C:\WINDOWS\System32\python24.dll [2008-06-25 10:17:52 | 000,000,031 | ---- | C] () -- C:\WINDOWS\GunzLauncher.INI [2008-06-08 13:22:59 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat [2008-05-21 20:06:51 | 000,111,104 | ---- | C] () -- C:\WINDOWS\System32\Uharc.exe [2008-05-21 20:06:51 | 000,008,636 | ---- | C] () -- C:\WINDOWS\System32\modifype.exe [2008-05-07 23:18:02 | 000,233,984 | ---- | C] () -- C:\Documents and Settings\Fibi\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2008-05-07 23:18:01 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2008-05-06 12:41:31 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe [2008-05-06 12:36:24 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll [2008-05-06 12:13:02 | 000,000,784 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2008-05-06 09:24:30 | 000,000,000 | ---- | C] () -- C:\WINDOWS\lgfwup.ini [2008-05-06 09:19:23 | 000,000,046 | ---- | C] () -- C:\WINDOWS\adiras.ini [2008-05-06 01:08:03 | 001,089,268 | ---- | C] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2008-05-06 01:08:02 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2008-05-06 01:06:48 | 003,805,168 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2008-05-06 01:04:33 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2008-05-06 00:58:56 | 000,164,352 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2008-05-06 00:58:37 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll [2008-05-06 00:58:24 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2008-05-06 00:58:24 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest [2008-05-06 00:49:23 | 000,088,496 | ---- | C] () -- C:\Documents and Settings\Fibi\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2008-05-06 00:26:58 | 000,733,696 | ---- | C] () -- C:\WINDOWS\System32\qedwipes.dll [2008-05-06 00:26:58 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll [2008-05-06 00:26:57 | 000,070,656 | ---- | C] () -- C:\WINDOWS\System32\amstream.dll [2008-05-06 00:26:57 | 000,014,336 | ---- | C] () -- C:\WINDOWS\System32\msdmo.dll [2008-05-06 00:23:23 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2008-05-06 00:19:43 | 000,000,000 | ---- | C] () -- C:\WINDOWS\control.ini [2008-05-06 00:18:21 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest [2008-05-06 00:18:14 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2008-05-06 00:15:39 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2008-05-06 00:15:27 | 000,000,059 | ---- | C] () -- C:\WINDOWS\vbaddin.ini [2008-05-06 00:15:27 | 000,000,036 | ---- | C] () -- C:\WINDOWS\vb.ini [2008-05-06 00:14:37 | 000,026,717 | ---- | C] () -- C:\WINDOWS\System32\tslabels.ini [2008-05-06 00:14:34 | 000,003,813 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.ini [2006-08-11 15:45:20 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll [2006-08-11 15:43:10 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll [2006-08-11 15:43:00 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll [2006-08-11 15:43:00 | 001,519,616 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe [2006-08-11 15:43:00 | 001,470,464 | ---- | C] () -- C:\WINDOWS\System32\nview.dll [2006-08-11 15:43:00 | 001,339,392 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe [2006-08-11 15:43:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll [2006-08-11 15:43:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll [2006-08-11 15:43:00 | 000,442,368 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe [2006-08-11 15:43:00 | 000,425,984 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe [2006-08-11 15:43:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll [2005-12-07 12:31:00 | 000,202,752 | R--- | C] () -- C:\WINDOWS\System32\CddbCdda.dll [2004-08-02 14:20:40 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat [2002-09-20 19:19:46 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin [2002-09-20 19:04:42 | 000,270,848 | ---- | C] () -- C:\WINDOWS\System32\sbe.dll [2002-09-20 19:04:28 | 000,355,112 | ---- | C] () -- C:\WINDOWS\System32\msjetoledb40.dll [2002-09-20 19:03:48 | 000,186,880 | ---- | C] () -- C:\WINDOWS\System32\encdec.dll [2002-09-20 19:03:38 | 000,253,440 | ---- | C] () -- C:\WINDOWS\System32\compatui.dll [2002-08-28 22:24:20 | 000,003,346 | ---- | C] () -- C:\WINDOWS\System32\redir.exe [2002-08-28 22:23:06 | 000,042,537 | ---- | C] () -- C:\WINDOWS\System32\keyboard.sys [2002-08-28 22:22:36 | 000,033,936 | ---- | C] () -- C:\WINDOWS\System32\ntio.sys [2001-10-26 19:29:54 | 000,057,856 | ---- | C] () -- C:\WINDOWS\System32\dvdplay.exe [2001-10-26 19:29:42 | 000,157,696 | ---- | C] () -- C:\WINDOWS\System32\paqsp.dll [2001-10-26 19:29:40 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\scriptpw.dll [2001-10-26 19:29:32 | 000,199,168 | ---- | C] () -- C:\WINDOWS\System32\ir32_32.dll [2001-10-26 19:28:34 | 000,094,282 | ---- | C] () -- C:\WINDOWS\System32\msencode.dll [2001-10-26 19:27:02 | 000,015,360 | ---- | C] () -- C:\WINDOWS\System32\tsd32.dll [2001-10-26 18:15:16 | 000,490,808 | ---- | C] () -- C:\WINDOWS\System32\perfh015.dat [2001-10-26 18:15:16 | 000,313,828 | ---- | C] () -- C:\WINDOWS\System32\perfi015.dat [2001-10-26 18:15:16 | 000,083,988 | ---- | C] () -- C:\WINDOWS\System32\perfc015.dat [2001-10-26 18:15:16 | 000,034,990 | ---- | C] () -- C:\WINDOWS\System32\perfd015.dat [2001-10-26 18:15:10 | 000,001,148 | ---- | C] () -- C:\WINDOWS\System32\vwipxspx.exe [2001-10-26 18:15:08 | 000,011,859 | ---- | C] () -- C:\WINDOWS\System32\setver.exe [2001-10-26 18:15:08 | 000,003,260 | ---- | C] () -- C:\WINDOWS\System32\nw16.exe [2001-10-26 18:15:04 | 000,027,898 | ---- | C] () -- C:\WINDOWS\System32\ntdos.sys [2001-10-26 18:14:58 | 000,007,116 | ---- | C] () -- C:\WINDOWS\System32\nlsfunc.exe [2001-10-26 18:14:56 | 000,039,434 | ---- | C] () -- C:\WINDOWS\System32\mem.exe [2001-10-26 18:14:54 | 000,014,913 | ---- | C] () -- C:\WINDOWS\System32\kb16.com [2001-10-26 18:14:54 | 000,001,168 | ---- | C] () -- C:\WINDOWS\System32\loadfix.com [2001-10-26 18:14:52 | 000,004,976 | ---- | C] () -- C:\WINDOWS\System32\himem.sys [2001-10-26 18:14:50 | 000,019,806 | ---- | C] () -- C:\WINDOWS\System32\graphics.com [2001-10-26 18:14:48 | 000,008,520 | ---- | C] () -- C:\WINDOWS\System32\exe2bin.exe [2001-10-26 18:14:46 | 000,012,866 | ---- | C] () -- C:\WINDOWS\System32\edlin.exe [2001-10-26 18:14:44 | 000,053,920 | ---- | C] () -- C:\WINDOWS\System32\dosx.exe [2001-10-26 18:14:42 | 000,020,986 | ---- | C] () -- C:\WINDOWS\System32\debug.exe [2001-10-26 18:14:38 | 000,051,823 | ---- | C] () -- C:\WINDOWS\System32\command.com [2001-10-26 18:14:34 | 000,012,594 | ---- | C] () -- C:\WINDOWS\System32\append.exe [2001-10-26 18:14:32 | 000,009,043 | ---- | C] () -- C:\WINDOWS\System32\ansi.sys [2001-10-26 18:12:52 | 000,000,359 | ---- | C] () -- C:\WINDOWS\System32\prodspec.ini [2001-10-26 17:45:26 | 000,016,024 | ---- | C] () -- C:\WINDOWS\System32\rsvp.ini [2001-10-26 17:45:26 | 000,006,074 | ---- | C] () -- C:\WINDOWS\System32\rasctrs.ini [2001-10-26 17:45:24 | 000,013,819 | ---- | C] () -- C:\WINDOWS\System32\pschdprf.ini [2001-10-26 17:45:10 | 000,070,622 | ---- | C] () -- C:\WINDOWS\System32\edit.com [2001-10-26 17:42:08 | 000,020,629 | ---- | C] () -- C:\WINDOWS\System32\mqperf.ini [2001-10-26 17:42:08 | 000,002,992 | ---- | C] () -- C:\WINDOWS\System32\perfci.ini [2001-10-26 17:42:08 | 000,002,890 | ---- | C] () -- C:\WINDOWS\System32\perfwci.ini [2001-10-26 17:42:08 | 000,001,295 | ---- | C] () -- C:\WINDOWS\System32\perffilt.ini [2001-08-23 15:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin [2001-08-23 15:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat [2001-08-17 23:35:10 | 000,000,817 | ---- | C] () -- C:\WINDOWS\System32\mscdexnt.exe [2001-08-17 23:32:34 | 000,000,882 | ---- | C] () -- C:\WINDOWS\System32\share.exe [2001-08-17 23:32:34 | 000,000,882 | ---- | C] () -- C:\WINDOWS\System32\fastopen.exe [2001-08-17 23:31:56 | 000,042,809 | ---- | C] () -- C:\WINDOWS\System32\key01.sys [2001-08-17 23:31:56 | 000,027,097 | ---- | C] () -- C:\WINDOWS\System32\country.sys [2001-08-17 23:31:50 | 000,029,274 | ---- | C] () -- C:\WINDOWS\System32\ntdos412.sys [2001-08-17 23:31:46 | 000,029,370 | ---- | C] () -- C:\WINDOWS\System32\ntdos411.sys [2001-08-17 23:31:46 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos404.sys [2001-08-17 23:31:44 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos804.sys [2001-08-17 23:31:38 | 000,035,648 | ---- | C] () -- C:\WINDOWS\System32\ntio411.sys [2001-08-17 23:31:38 | 000,035,424 | ---- | C] () -- C:\WINDOWS\System32\ntio412.sys [2001-08-17 23:31:36 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio804.sys [2001-08-17 23:31:36 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio404.sys [2001-08-17 23:30:24 | 000,432,856 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat [2001-08-17 23:30:24 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat [2001-08-17 23:30:24 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat [2001-08-17 23:30:22 | 000,067,560 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat [2001-08-17 23:15:38 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin [2001-08-17 23:13:24 | 000,002,656 | ---- | C] () -- C:\WINDOWS\System32\netware.drv [2001-08-17 21:55:06 | 001,015,477 | ---- | C] () -- C:\WINDOWS\System32\esentprf.ini [2001-07-22 05:43:48 | 000,053,478 | ---- | C] () -- C:\WINDOWS\System32\tcpmon.ini [2001-07-22 04:25:18 | 000,001,405 | ---- | C] () -- C:\WINDOWS\msdfmap.ini [2001-07-22 00:36:48 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat [2001-07-22 00:36:04 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat [2001-07-22 00:24:16 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat [2001-07-22 00:16:20 | 000,000,658 | ---- | C] () -- C:\WINDOWS\win.ini [2001-07-22 00:15:52 | 000,000,227 | ---- | C] () -- C:\WINDOWS\system.ini [2001-07-22 00:15:50 | 000,013,312 | ---- | C] () -- C:\WINDOWS\System32\win87em.dll [1999-01-22 19:46:58 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\MSRTEDIT.DLL [1996-04-03 21:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys [1913-08-01 16:18:54 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\iyvu9_32.dll [color=#E56717]========== LOP Check ==========[/color] [2010-01-05 23:09:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ala\Dane aplikacji\foobar2000 [2009-12-22 10:17:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Ala\Dane aplikacji\Thunderbird [2010-09-26 01:04:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite [2008-07-03 13:00:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Downloaded Installations [2008-05-06 00:53:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET [2010-03-08 22:19:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\GoldWave [2008-07-03 13:07:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Installations [2008-05-21 00:27:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Last.fm [2008-07-03 13:01:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite [2011-03-04 18:34:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PMB Files [2011-02-09 21:08:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\regid.1986-12.com.adobe [2009-01-25 12:34:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Syncrosoft [2008-07-08 17:31:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2008-09-15 18:47:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ulead Systems [2010-06-28 22:52:37 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\Fibi\Dane aplikacji\.# [2011-03-01 21:00:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fibi\Dane aplikacji\BESTplayer [2010-09-26 10:32:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fibi\Dane aplikacji\DAEMON Tools Lite [2008-07-03 13:13:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fibi\Dane aplikacji\Datalayer [2010-06-14 11:28:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fibi\Dane aplikacji\Facebook [2009-10-25 11:39:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fibi\Dane aplikacji\FMZilla [2011-03-30 14:42:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fibi\Dane aplikacji\foobar2000 [2008-08-12 23:40:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fibi\Dane aplikacji\GanymedeNet [2011-02-06 22:50:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fibi\Dane aplikacji\GHISLER [2010-10-11 14:33:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fibi\Dane aplikacji\gtk-2.0 [2008-06-25 18:46:00 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\Fibi\Dane aplikacji\ijjigame [2008-07-03 13:12:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fibi\Dane aplikacji\Nokia [2008-07-05 13:18:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fibi\Dane aplikacji\Nokia Multimedia Player [2010-01-30 12:37:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fibi\Dane aplikacji\Notepad++ [2009-09-25 21:38:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fibi\Dane aplikacji\OpenCandy [2009-09-06 17:39:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fibi\Dane aplikacji\OpenOffice.org [2010-02-05 21:03:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fibi\Dane aplikacji\Opera [2008-07-03 13:02:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fibi\Dane aplikacji\PC Suite [2011-01-14 13:42:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fibi\Dane aplikacji\REAPER [2010-08-27 14:09:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fibi\Dane aplikacji\SanDisk [2010-01-30 12:38:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fibi\Dane aplikacji\Spider Player [2009-04-09 15:44:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fibi\Dane aplikacji\STOIK [2009-12-19 17:44:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fibi\Dane aplikacji\streamripper [2008-05-21 20:12:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fibi\Dane aplikacji\Styler [2010-09-14 16:52:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fibi\Dane aplikacji\Thunderbird [2008-09-15 18:42:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fibi\Dane aplikacji\Ulead Systems [2011-03-29 23:30:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fibi\Dane aplikacji\uTorrent [2010-04-26 15:30:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rysiek\Dane aplikacji\foobar2000 [2009-11-02 19:10:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rysiek\Dane aplikacji\OpenOffice.org [2009-11-12 22:14:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rysiek\Dane aplikacji\PC Suite [color=#E56717]========== Purity Check ==========[/color] < End of report >

dziwne, nie utworzył mi się plik extras :?

**Posty:** 18165 · przez **wojtas** 30 Mar 2011, 20:39

fibi07 napisał(a):dziwne, nie utworzył mi się plik extras

nie zaznaczyłeś rejestr dodatkowy - użyj filtrowania...

daj screena z błedu

"system windows napotkał błąd" - wyślij raport

"system windows napotkał błąd" - wyślij raport

"system windows napotkał błąd" - wyślij raport

Kto jest na forum