• Ogłoszenie:

Komp wolno chodzi

Bezpieczeństwo systemów, usuwanie wirusów, dobieranie programów antywirusowych. Obowiązkowe logi w tym dziale: trzy z FRST + Gmer.

Komp wolno chodzi

Postprzez breidak 07 Maj 2011, 18:05

reklama
Witam,
komp jak w temacie, szczególnie przy włączonym internecie. Przycina filmy i strony w przeglądarce.
Dużo aktywnych procesów ponad 55. Czy można któreś wyłączyć?

gmer i otl poniżej.

gmer:
Kod: Zaznacz wszystko
GMER 1.0.15.15627 - http://www.gmer.net
Rootkit scan 2011-05-07 17:37:12
Windows 5.1.2600 Dodatek Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdePort0 TOSHIBA_MK8025GAS rev.KA024A
Running: qy4ttqly.exe; Driver: C:\DOCUME~1\Toshiba\USTAWI~1\Temp\ufriykow.sys


---- System - GMER 1.0.15 ----

SSDT            81CCBC90                                                                                            ZwAssignProcessToJobObject
SSDT            sptd.sys                                                                                            ZwCreateKey [0xF843CFA0]
SSDT            81CCC200                                                                                            ZwDebugActiveProcess
SSDT            81CCC2F0                                                                                            ZwDuplicateObject
SSDT            sptd.sys                                                                                            ZwEnumerateKey [0xF8471018]
SSDT            sptd.sys                                                                                            ZwEnumerateValueKey [0xF84713A6]
SSDT            sptd.sys                                                                                            ZwOpenKey [0xF843CF80]
SSDT            81CCB590                                                                                            ZwOpenProcess
SSDT            81CCB800                                                                                            ZwOpenThread
SSDT            81CCBFD0                                                                                            ZwProtectVirtualMemory
SSDT            sptd.sys                                                                                            ZwQueryKey [0xF847147E]
SSDT            sptd.sys                                                                                            ZwQueryValueKey [0xF84712FE]
SSDT            81CCC0E0                                                                                            ZwQueueApcThread
SSDT            81CCBEC0                                                                                            ZwSetContextThread
SSDT            81CCBD90                                                                                            ZwSetInformationThread
SSDT            81CC8DA0                                                                                            ZwSetSecurityObject
SSDT            sptd.sys                                                                                            ZwSetValueKey [0xF8471510]
SSDT            81CCBB90                                                                                            ZwSuspendProcess
SSDT            81CCBA80                                                                                            ZwSuspendThread
SSDT            81CCB6E0                                                                                            ZwTerminateProcess
SSDT            81CCBA50                                                                                            ZwTerminateThread
SSDT            81CCC6D0                                                                                            ZwWriteVirtualMemory

INT 0x3B        ?                                                                                                   81FE0CB8
INT 0x3B        ?                                                                                                   81FE0CB8
INT 0x3B        ?                                                                                                   81FE0CB8
INT 0x3E        ?                                                                                                   823D2CB8
INT 0x3F        ?                                                                                                   823D2CB8

---- Kernel code sections - GMER 1.0.15 ----

?               sptd.sys                                                                                            Nie można odnaleźć określonego pliku. !
.text           C:\WINDOWS\system32\DRIVERS\nv4_mini.sys                                                            section is writeable [0xF787D340, 0x105BBF, 0xF8000020]
.text           USBPORT.SYS!DllUnload                                                                               F780C8AC 5 Bytes  JMP 81FE01C8
.text           C:\WINDOWS\System32\nv4_disp.dll                                                                    section is writeable [0xBF012300, 0x231B70, 0xF8000020]

---- User code sections - GMER 1.0.15 ----

.text           C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe[2024] kernel32.dll!SetUnhandledExceptionFilter  7C84495D 4 Bytes  [C2, 04, 00, 00]

---- Kernel IAT/EAT - GMER 1.0.15 ----

IAT             \WINDOWS\system32\DRIVERS\PCIIDEX.SYS[HAL.dll!WRITE_PORT_ULONG]                                     [F840220E] sptd.sys
IAT             \WINDOWS\system32\DRIVERS\PCIIDEX.SYS[HAL.dll!READ_PORT_UCHAR]                                      [F840170C] sptd.sys
IAT             \WINDOWS\system32\DRIVERS\PCIIDEX.SYS[HAL.dll!WRITE_PORT_UCHAR]                                     [F8401EEE] sptd.sys
IAT             atapi.sys[HAL.dll!READ_PORT_UCHAR]                                                                  [F840170C] sptd.sys
IAT             atapi.sys[HAL.dll!READ_PORT_BUFFER_USHORT]                                                          [F84018F0] sptd.sys
IAT             atapi.sys[HAL.dll!READ_PORT_USHORT]                                                                 [F8401832] sptd.sys
IAT             atapi.sys[HAL.dll!WRITE_PORT_BUFFER_USHORT]                                                         [F84020CC] sptd.sys
IAT             atapi.sys[HAL.dll!WRITE_PORT_UCHAR]                                                                 [F8401EEE] sptd.sys
IAT             \SystemRoot\system32\DRIVERS\USBPORT.SYS[ntoskrnl.exe!DbgBreakPoint]                                81FE02F8
IAT             \SystemRoot\system32\DRIVERS\i8042prt.sys[HAL.dll!READ_PORT_UCHAR]                                  [F8415F56] sptd.sys

---- Devices - GMER 1.0.15 ----

Device          \FileSystem\Ntfs \Ntfs                                                                              823D11E8

AttachedDevice  \FileSystem\Ntfs \Ntfs                                                                              eamon.sys (Amon monitor/ESET)
AttachedDevice  \Driver\Kbdclass \Device\KeyboardClass0                                                             SynTP.sys (Synaptics Touchpad Driver/Synaptics, Inc.)
AttachedDevice  \Driver\Kbdclass \Device\KeyboardClass1                                                             SynTP.sys (Synaptics Touchpad Driver/Synaptics, Inc.)

Device          \Driver\usbuhci \Device\USBPDO-0                                                                    821CB1E8
Device          \Driver\usbuhci \Device\USBPDO-1                                                                    821CB1E8
Device          \Driver\usbehci \Device\USBPDO-2                                                                    821BF1E8

AttachedDevice  \Driver\Tcpip \Device\Tcp                                                                           epfwtdir.sys (ESET Antivirus Network Redirector/ESET)

Device          \Driver\Cdrom \Device\CdRom0                                                                        821AB1E8
Device          \Driver\atapi \Device\Ide\IdePort0                                                                  [F834DB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX}
Device          \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3                                                         [F834DB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX}
Device          \Driver\atapi \Device\Ide\IdePort1                                                                  [F834DB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX}
Device          \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-e                                                         [F834DB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX}
Device          \Driver\NetBT \Device\NetBt_Wins_Export                                                             81D471E8
Device          \Driver\NetBT \Device\NetbiosSmb                                                                    81D471E8
Device          \Driver\NetBT \Device\NetBT_Tcpip_{37449B2F-BBEF-439A-B8E0-78B90E56A67E}                            81D471E8
Device          \Driver\usbuhci \Device\USBFDO-0                                                                    821CB1E8
Device          \Driver\usbuhci \Device\USBFDO-1                                                                    821CB1E8
Device          \Driver\usbehci \Device\USBFDO-2                                                                    821BF1E8
Device          \FileSystem\MRxSmb \Device\LanmanDatagramReceiver                                                   81C3E1E8
Device          \FileSystem\MRxSmb \Device\LanmanRedirector                                                         81C3E1E8
Device          \FileSystem\Cdfs \Cdfs                                                                              820C01E8

---- Registry - GMER 1.0.15 ----

Reg             HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s1                                                  771343423
Reg             HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s2                                                  285507792

---- Disk sectors - GMER 1.0.15 ----

Disk            \Device\Harddisk0\DR0                                                                               MBR read error
Disk            \Device\Harddisk0\DR0                                                                               MBR BIOS signature not found 0

---- EOF - GMER 1.0.15 ----


OTL.txt:
Kod: Zaznacz wszystko
OTL logfile created on: 2011-05-07 17:40:33 - Run 1
OTL by OldTimer - Version 3.2.22.3     Folder = C:\Documents and Settings\Toshiba\Pulpit
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

511,00 Mb Total Physical Memory | 113,00 Mb Available Physical Memory | 22,00% Memory free
1,00 Gb Paging File | 1,00 Gb Available in Paging File | 54,00% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 34,18 Gb Total Space | 15,62 Gb Free Space | 45,69% Space Free | Partition Type: NTFS
Drive D: | 40,34 Gb Total Space | 40,08 Gb Free Space | 99,37% Space Free | Partition Type: NTFS

Computer Name: LABTOHSIBA | User Name: Toshiba | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2011-05-07 17:39:12 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Toshiba\Pulpit\OTL.exe
PRC - [2011-04-14 18:59:13 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010-11-23 18:49:24 | 001,540,096 | ---- | M] (Nokia) -- C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe
PRC - [2009-11-16 10:04:30 | 000,735,960 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2009-11-16 10:03:32 | 002,054,360 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
PRC - [2008-08-21 22:51:44 | 000,012,696 | ---- | M] (National Instruments Corporation) -- C:\WINDOWS\system32\nipalsm.exe
PRC - [2008-06-20 16:53:56 | 000,129,144 | ---- | M] (National Instruments Corporation) -- C:\VXIPNP\WinNT\NIvisa\niLxiDiscovery.exe
PRC - [2008-06-20 15:46:24 | 000,607,848 | ---- | M] (National Instruments Corporation) -- C:\Program Files\National Instruments\Shared\Tagger\tagsrv.exe
PRC - [2008-06-18 16:57:40 | 000,192,112 | ---- | M] (National Instruments Corporation) -- C:\Program Files\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe
PRC - [2008-06-17 17:38:28 | 000,213,552 | ---- | M] (National Instruments Corporation) -- C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe
PRC - [2008-06-17 17:38:16 | 000,050,736 | ---- | M] (National Instruments Corporation) -- C:\WINDOWS\system32\lktsrv.exe
PRC - [2008-06-17 17:38:08 | 000,040,488 | ---- | M] (National Instruments Corporation) -- C:\WINDOWS\system32\lkads.exe
PRC - [2008-06-17 16:21:50 | 000,695,136 | ---- | M] (National Instruments, Inc.) -- C:\WINDOWS\system32\lkcitdl.exe
PRC - [2008-04-14 19:21:16 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008-04-02 16:29:48 | 000,012,696 | ---- | M] (National Instruments Corporation) -- C:\Program Files\National Instruments\MAX\nimxs.exe
PRC - [2007-11-06 15:07:32 | 000,008,656 | ---- | M] (National Instruments Corporation) -- C:\WINDOWS\system32\nisvcloc.exe
PRC - [2004-09-14 16:16:32 | 000,098,304 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
PRC - [2004-02-25 23:53:00 | 000,077,824 | ---- | M] (National Instruments) -- C:\WINDOWS\system32\RTProxy.exe
PRC - [2003-12-02 18:05:54 | 000,028,672 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
PRC - [2003-10-06 14:45:12 | 000,040,960 | ---- | M] (TOSHIBA Corporation) -- C:\WINDOWS\system32\TPSBattM.exe
PRC - [2003-09-18 11:43:54 | 000,102,400 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\TOSHIBA Controls\TFncKy.exe
PRC - [2003-08-03 17:01:14 | 000,086,073 | ---- | M] (SigmaTel Inc.) -- C:\Program Files\SigmaTel\SigmaTel AC97 Audio Drivers\stacmon.exe
PRC - [2003-07-18 18:41:26 | 000,073,728 | R--- | M] (TOSHIBA Corp.) -- C:\WINDOWS\system32\TFNF5.exe
PRC - [2003-05-23 15:33:38 | 000,253,952 | ---- | M] (TOSHIBA Corp.) -- C:\WINDOWS\system32\00THotkey.exe
PRC - [2003-01-02 17:16:38 | 000,172,032 | ---- | M] (Agere Systems) -- C:\Program Files\ltmoh\ltmoh.exe


[color=#E56717]========== Modules (SafeList) ==========[/color]

MOD - [2011-05-07 17:39:12 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Toshiba\Pulpit\OTL.exe
MOD - [2010-08-23 18:12:53 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2004-09-14 16:16:32 | 000,065,536 | ---- | M] (Synaptics, Inc.) -- C:\WINDOWS\system32\SynTPFcs.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - File not found [Auto | Stopped] --  -- (MySQL51)
SRV - [2010-12-31 08:39:54 | 008,133,120 | ---- | M] () [On_Demand | Stopped] -- c:\wamp\bin\mysql\mysql5.5.8\bin\mysqld.exe -- (wampmysqld)
SRV - [2010-12-31 08:39:42 | 000,020,549 | ---- | M] (Apache Software Foundation) [On_Demand | Stopped] -- c:\wamp\bin\apache\apache2.2.17\bin\httpd.exe -- (wampapache)
SRV - [2010-12-08 15:31:06 | 000,628,736 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2009-11-16 10:12:54 | 000,020,680 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV - [2009-11-16 10:04:30 | 000,735,960 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2008-11-18 14:27:56 | 001,007,616 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\National Instruments\Shared\License Manager\Bin\lmgrd.exe -- (NILM License manager)
SRV - [2008-08-21 22:51:44 | 000,012,696 | ---- | M] (National Instruments Corporation) [Auto | Running] -- C:\WINDOWS\system32\nipalsm.exe -- (nipxirmu)
SRV - [2008-08-21 22:51:44 | 000,012,696 | ---- | M] (National Instruments Corporation) [Auto | Running] -- C:\WINDOWS\system32\nipalsm.exe -- (nidevldu)
SRV - [2008-06-20 16:53:56 | 000,129,144 | ---- | M] (National Instruments Corporation) [Auto | Running] -- C:\VXIPNP\WinNT\NIvisa\niLxiDiscovery.exe -- (niLXIDiscovery)
SRV - [2008-06-20 15:46:24 | 000,607,848 | ---- | M] (National Instruments Corporation) [Auto | Running] -- C:\Program Files\National Instruments\Shared\Tagger\tagsrv.exe -- (NITaggerService)
SRV - [2008-06-18 16:57:40 | 000,192,112 | ---- | M] (National Instruments Corporation) [Auto | Running] -- C:\Program Files\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe -- (nimDNSResponder)
SRV - [2008-06-17 17:38:28 | 000,213,552 | ---- | M] (National Instruments Corporation) [Auto | Running] -- C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe -- (NIDomainService)
SRV - [2008-06-17 17:38:16 | 000,050,736 | ---- | M] (National Instruments Corporation) [Auto | Running] -- C:\WINDOWS\system32\lktsrv.exe -- (LkTimeSync)
SRV - [2008-06-17 17:38:08 | 000,040,488 | ---- | M] (National Instruments Corporation) [Auto | Running] -- C:\WINDOWS\system32\lkads.exe -- (LkClassAds)
SRV - [2008-06-17 16:21:50 | 000,695,136 | ---- | M] (National Instruments, Inc.) [Auto | Running] -- C:\WINDOWS\system32\lkcitdl.exe -- (LkCitadelServer)
SRV - [2008-04-02 16:29:48 | 000,012,696 | ---- | M] (National Instruments Corporation) [Auto | Running] -- C:\Program Files\National Instruments\MAX\nimxs.exe -- (mxssvr)
SRV - [2007-11-06 15:07:32 | 000,008,656 | ---- | M] (National Instruments Corporation) [Auto | Running] -- C:\WINDOWS\System32\nisvcloc.exe -- (niSvcLoc)
SRV - [2004-02-25 23:53:00 | 000,077,824 | ---- | M] (National Instruments) [Auto | Running] -- C:\WINDOWS\System32\RTProxy.exe -- (niRTProxy)
SRV - [2003-12-02 18:05:54 | 000,028,672 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe -- (CFSvcs)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - File not found [Kernel | Disabled | Running] --  -- (sptd)
DRV - [2010-07-30 15:16:46 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2010-07-30 15:16:44 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2010-07-30 15:16:42 | 000,023,040 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2010-07-30 15:16:38 | 000,018,048 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2009-11-16 10:06:50 | 000,096,408 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir)
DRV - [2009-11-16 10:03:36 | 000,108,792 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2009-11-16 09:56:12 | 000,116,520 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2009-02-10 18:19:24 | 000,011,352 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nisdigkl.sys -- (nisdigk)
DRV - [2009-02-06 17:28:24 | 000,011,368 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\niufurkl.sys -- (niufurk)
DRV - [2009-02-06 17:28:24 | 000,011,336 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nixsrkl.sys -- (nixsrk)
DRV - [2009-02-06 17:28:24 | 000,011,336 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\niwfrkl.sys -- (niwfrk)
DRV - [2009-02-06 17:28:22 | 000,011,336 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nissrkl.sys -- (nissrk)
DRV - [2009-02-06 17:28:22 | 000,011,336 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\niesrkl.sys -- (niesrk)
DRV - [2009-02-06 17:28:22 | 000,011,336 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\niemrkw.sys -- (niemrkw)
DRV - [2009-02-06 17:28:22 | 000,011,336 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\niemrkl.sys -- (niemrk)
DRV - [2009-02-06 17:28:20 | 000,011,336 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nicsrkl.sys -- (nicsrk)
DRV - [2009-01-06 16:51:10 | 000,011,352 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nifslkl.sys -- (nifslk)
DRV - [2009-01-05 09:30:36 | 000,011,344 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nidsarkl.sys -- (nidsark)
DRV - [2009-01-05 09:28:24 | 000,011,376 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nispdkl.sys -- (nispdk)
DRV - [2009-01-05 09:28:22 | 000,011,376 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\niscdkl.sys -- (niscdk)
DRV - [2009-01-02 17:54:08 | 000,011,360 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nitiorkl.sys -- (nitiork)
DRV - [2009-01-02 17:40:54 | 000,011,360 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nistcrkl.sys -- (nistcrk)
DRV - [2009-01-02 17:37:02 | 000,011,312 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nistc2kl.sys -- (nistc2k)
DRV - [2009-01-02 17:02:06 | 000,011,352 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nicdrkl.sys -- (nicdrk)
DRV - [2008-12-29 17:24:52 | 000,011,392 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nimsdrkl.sys -- (nimsdrk)
DRV - [2008-12-29 17:21:38 | 000,011,336 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nidmxfkl.sys -- (nidmxfk)
DRV - [2008-12-29 17:18:36 | 000,011,368 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nimxpkl.sys -- (nimxpk)
DRV - [2008-12-29 17:17:34 | 000,011,360 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nimstskl.sys -- (nimstsk)
DRV - [2008-12-18 16:56:34 | 000,011,344 | ---- | M] (National Instruments Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nipxirmkl.sys -- (nipxirmk)
DRV - [2008-12-16 01:58:44 | 000,592,472 | ---- | M] (National Instruments Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\nipalk.sys -- (NIPALK)
DRV - [2008-12-16 01:57:00 | 000,011,904 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nipalfwedl.sys -- (nipalfwedl)
DRV - [2008-12-16 01:55:34 | 000,011,896 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nipalusbedl.sys -- (nipalusbedl)
DRV - [2008-12-05 15:21:24 | 000,020,104 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\lvalarmk.sys -- (lvalarmk)
DRV - [2008-11-24 01:42:02 | 000,011,360 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nimru2kl.sys -- (nimru2k)
DRV - [2008-11-11 13:53:32 | 000,022,608 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ni1065k.sys -- (ni1065k)
DRV - [2008-11-11 13:52:50 | 000,011,344 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ni1045kl.sys -- (ni1045k)
DRV - [2008-11-11 13:50:36 | 000,026,192 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ni1006k.sys -- (ni1006k)
DRV - [2008-11-10 23:36:38 | 000,151,683 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nimsrlk.dll -- (nimsrlk)
DRV - [2008-11-10 23:36:38 | 000,014,464 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nimslk.dll -- (nimslk)
DRV - [2008-08-26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008-08-21 20:04:58 | 000,015,448 | ---- | M] (National Instruments Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\nipbcfk.sys -- (nipbcfk)
DRV - [2008-07-30 09:59:00 | 000,011,344 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nisftkl.sys -- (nisftk)
DRV - [2008-07-30 09:58:42 | 000,011,360 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ninshsdkl.sys -- (ninshsdk)
DRV - [2008-07-28 15:08:36 | 000,011,336 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\niswdkl.sys -- (niswdk)
DRV - [2008-06-25 11:02:24 | 000,020,568 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nipxigpk.sys -- (nipxigpk)
DRV - [2008-06-20 21:28:50 | 000,011,384 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\NiViFWKl.sys -- (NiViFWK)
DRV - [2008-06-20 21:27:58 | 000,011,360 | ---- | M] (National Instruments Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\NiViPxiKl.sys -- (NiViPxiK)
DRV - [2008-06-20 21:27:56 | 000,011,360 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\NiViPciKl.sys -- (NiViPciK)
DRV - [2008-06-13 14:51:06 | 000,011,360 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nidimkl.sys -- (nidimk)
DRV - [2008-06-13 14:50:38 | 000,011,344 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nimxdfkl.sys -- (nimxdfk)
DRV - [2008-06-13 14:49:04 | 000,011,360 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nimdbgkl.sys -- (nimdbgk)
DRV - [2008-06-13 14:48:32 | 000,011,344 | ---- | M] (National Instruments Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\niorbkl.sys -- (niorbk)
DRV - [2008-04-07 10:00:00 | 000,004,096 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\cvintdrv.sys -- (cvintdrv)
DRV - [2004-04-08 14:24:08 | 000,050,688 | ---- | M] (National Instruments Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nidmmk.dll -- (nidmmk)
DRV - [2004-04-08 14:21:38 | 000,674,304 | ---- | M] (National Instruments Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\nidaq32k.sys -- (Nidaq32k)
DRV - [2004-04-08 13:04:44 | 000,111,616 | ---- | M] (National Instruments Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\niSTCk.dll -- (nistck)
DRV - [2004-04-08 13:04:20 | 000,030,208 | ---- | M] (National Instruments Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nimdsk.dll -- (nimdsk)
DRV - [2004-04-08 13:03:10 | 000,021,504 | ---- | M] (National Instruments Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nibffrk.dll -- (nibffrk)
DRV - [2004-04-08 13:03:08 | 000,037,376 | ---- | M] (National Instruments Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\niarbk.dll -- (niarbk)
DRV - [2004-04-05 18:26:58 | 000,070,656 | ---- | M] (National Instruments Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\NICANpk.dll -- (nicanpk)
DRV - [2004-04-01 15:46:42 | 000,018,037 | ---- | M] (National Instruments Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nilvaik.dll -- (nilvaik)
DRV - [2004-03-18 17:04:34 | 000,018,944 | ---- | M] (National Instruments) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\niwdk.sys -- (niwdk)
DRV - [2004-03-09 17:09:04 | 000,619,118 | ---- | M] (National Instruments Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nisrcdk.dll -- (nisrcdk)
DRV - [2004-03-08 18:14:40 | 000,757,364 | ---- | M] (National Instruments Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nidwgk.dll -- (nidwgk)
DRV - [2004-03-08 16:56:02 | 000,087,655 | ---- | M] (National Instruments Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nigplk.dll -- (nigplk)
DRV - [2004-03-08 14:25:18 | 000,109,639 | ---- | M] (National Instruments) [Kernel | Auto | Stopped] -- C:\WINDOWS\System32\drivers\NatMotion.sys -- (NatMotion)
DRV - [2004-01-14 16:09:26 | 000,339,072 | ---- | M] (National Instruments Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nihsdrk.dll -- (nihsdrk)
DRV - [2004-01-02 03:52:34 | 001,646,720 | R--- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w22n51.sys -- (w22n51) Sterownik karty Intel(R)
DRV - [2003-12-01 15:03:04 | 000,305,767 | ---- | M] (National Instruments Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\niSLDk.dll -- (nisldk)
DRV - [2003-08-07 16:52:00 | 000,009,216 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\TVALZ.SYS -- (TVALZ)
DRV - [2003-07-17 19:19:32 | 000,230,416 | R--- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\stac97.sys -- (STAC97) Audio Driver (WDM)
DRV - [2003-05-14 18:38:32 | 000,025,888 | R--- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tsdhd.sys -- (tsdhd)
DRV - [2003-05-02 23:36:02 | 000,030,720 | ---- | M] (National Instruments) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\niembrtk.sys -- (niembrtk)
DRV - [2003-01-29 15:35:00 | 000,012,032 | ---- | M] (TOSHIBA Corporation.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\Netdevio.sys -- (Netdevio)
DRV - [2002-12-20 14:07:34 | 001,164,576 | R--- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2002-09-17 17:12:38 | 000,809,872 | R--- | M] (LT) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LTSM.sys -- (TOSHIBASoftModem)
DRV - [2002-07-17 15:08:12 | 000,056,904 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\Drivers\gpibclsb.sys -- (gpibclsb)
DRV - [2002-07-17 15:08:12 | 000,034,664 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\Drivers\gpibclsd.sys -- (gpibclsd)
DRV - [2001-09-11 12:54:32 | 000,038,425 | R--- | M] (SMC) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\smcirda.sys -- (SMCIRDA)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]



IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1757981266-507921405-854245398-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/
IE - HKU\S-1-5-21-1757981266-507921405-854245398-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.startup.homepage: "http://www.google.pl/"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}:7.3.4.51

FF - HKLM\software\mozilla\Firefox\extensions\\{A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}: C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension\ [2011-02-11 12:03:18 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-05-01 10:39:27 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-05-01 10:39:01 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2010-11-22 15:42:11 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\{CCB7D94B-CA92-4E3F-B79D-ADE0F07ADC74}: C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Thunderbird Connector\ThunderbirdExtension\ [2011-02-11 12:03:19 | 000,000,000 | ---D | M]

[2010-11-23 14:29:38 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Toshiba\Dane aplikacji\Mozilla\Extensions
[2011-04-30 23:50:43 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Toshiba\Dane aplikacji\Mozilla\Firefox\Profiles\gto0verl.default\extensions
[2011-04-10 12:28:25 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Toshiba\Dane aplikacji\Mozilla\Firefox\Profiles\gto0verl.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011-05-01 10:39:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010-12-05 16:44:49 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
File not found (No name found) --
[2010-12-05 16:44:21 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011-04-14 18:59:14 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll
[2010-12-05 16:44:18 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2006-01-23 10:32:04 | 000,020,992 | ---- | M] (National Instruments) -- C:\Program Files\Mozilla Firefox\plugins\NPLV80Win32.dll
[2007-02-08 10:48:16 | 000,028,448 | ---- | M] (National Instruments) -- C:\Program Files\Mozilla Firefox\plugins\NPLV82Win32.dll
[2007-07-24 19:03:42 | 000,023,040 | ---- | M] (National Instruments) -- C:\Program Files\Mozilla Firefox\plugins\nplv85win32.dll
[2008-06-25 22:51:02 | 000,023,040 | ---- | M] (National Instruments) -- C:\Program Files\Mozilla Firefox\plugins\nplv86win32.dll
[2010-01-01 10:00:00 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010-01-01 10:00:00 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2010-01-01 10:00:00 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2010-01-01 10:00:00 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010-01-01 10:00:00 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2010-01-01 10:00:00 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2011-04-30 00:08:16 | 000,000,823 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O4 - HKLM..\Run: [000StTHK] C:\WINDOWS\System32\000StTHK.exe ()
O4 - HKLM..\Run: [00THotkey] C:\WINDOWS\system32\00THotkey.exe (TOSHIBA Corp.)
O4 - HKLM..\Run: [BigDog303]  File not found
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [IMAQBoot] C:\Program Files\National Instruments\NI-IMAQ\bin\ImaqBoot.exe (National Instruments Corporation)
O4 - HKLM..\Run: [LtMoh] C:\Program Files\ltmoh\ltmoh.exe (Agere Systems)
O4 - HKLM..\Run: [niDevMon] C:\Program Files\National Instruments\NI-DAQ\HWConfig\nidevmon.exe (National Instruments Corporation)
O4 - HKLM..\Run: [NokiaMServer] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe (Nokia)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [SigmaTel StacMon] C:\Program Files\SigmaTel\SigmaTel AC97 Audio Drivers\stacmon.exe (SigmaTel Inc.)
O4 - HKLM..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [TFncKy]  File not found
O4 - HKLM..\Run: [TFNF5] C:\WINDOWS\System32\TFNF5.exe (TOSHIBA Corp.)
O4 - HKLM..\Run: [TPSMain] C:\WINDOWS\System32\TPSMain.exe (TOSHIBA Corporation)
O4 - HKU\S-1-5-21-1757981266-507921405-854245398-1003..\Run: []  File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1757981266-507921405-854245398-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll (National Instruments Corporation)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1290517147357 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010-11-22 14:31:28 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{2cb08624-6b1b-11e0-ad67-000e7ba8651f}\Shell - "" = AutoRun
O33 - MountPoints2\{2cb08624-6b1b-11e0-ad67-000e7ba8651f}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2011-05-07 17:38:50 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Toshiba\Pulpit\OTL.exe
[2011-05-07 17:18:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2011-05-07 16:35:34 | 000,607,288 | ---- | C] (Duplex Secure Ltd.) -- C:\Documents and Settings\Toshiba\Pulpit\SPTDinst-v178-x86.exe
[2011-04-30 00:09:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\WampServer
[2011-04-30 00:07:17 | 000,000,000 | ---D | C] -- C:\wamp
[2011-04-30 00:05:33 | 000,000,000 | ---D | C] -- C:\serwer
[2011-04-30 00:04:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Toshiba\Dane aplikacji\GetRightToGo
[2011-04-29 23:24:50 | 000,383,696 | ---- | C] (Soft32.com) -- C:\Documents and Settings\Toshiba\Pulpit\Soft32Downloader-for-WAMP5.exe
[2011-04-28 21:43:12 | 000,000,000 | ---D | C] -- C:\Program Files\MySQL
[2011-04-28 21:43:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\MySQL
[2011-04-28 21:24:01 | 000,000,000 | ---D | C] -- C:\JAMP PL Free
[2011-04-28 19:04:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Toshiba\Pulpit\joomla
[2011-04-20 12:14:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Toshiba\Dane aplikacji\U3
[2011-04-11 23:09:54 | 005,902,848 | ---- | C] (The PHP Group) -- C:\WINDOWS\System32\php5ts.dll
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2011-05-07 17:56:02 | 000,001,038 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011-05-07 17:39:12 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Toshiba\Pulpit\OTL.exe
[2011-05-07 17:18:54 | 003,932,160 | -H-- | M] () -- C:\Documents and Settings\Toshiba\NTUSER.DAT
[2011-05-07 17:15:41 | 000,302,080 | ---- | M] () -- C:\Documents and Settings\Toshiba\Pulpit\qy4ttqly.exe
[2011-05-07 17:11:36 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011-05-07 17:11:35 | 000,001,034 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011-05-07 17:11:07 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2011-05-07 17:11:04 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011-05-07 17:09:27 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\Toshiba\ntuser.ini
[2011-05-07 16:35:39 | 000,607,288 | ---- | M] (Duplex Secure Ltd.) -- C:\Documents and Settings\Toshiba\Pulpit\SPTDinst-v178-x86.exe
[2011-05-06 23:12:43 | 000,139,452 | ---- | M] () -- C:\Documents and Settings\Toshiba\Pulpit\autom.jpg
[2011-05-06 23:07:16 | 000,507,202 | ---- | M] () -- C:\Documents and Settings\Toshiba\Pulpit\plc.jpg
[2011-05-06 23:05:33 | 000,201,510 | ---- | M] () -- C:\Documents and Settings\Toshiba\Pulpit\cnc.jpg
[2011-05-06 22:49:59 | 000,952,056 | ---- | M] () -- C:\Documents and Settings\Toshiba\Pulpit\mes.jpg
[2011-05-06 22:43:02 | 000,172,593 | ---- | M] () -- C:\Documents and Settings\Toshiba\Pulpit\3d 2.jpg
[2011-05-06 22:40:38 | 000,038,907 | ---- | M] () -- C:\Documents and Settings\Toshiba\Pulpit\3d.jpg
[2011-05-06 22:02:02 | 000,022,461 | ---- | M] () -- C:\Documents and Settings\Toshiba\Pulpit\projekt.jpg
[2011-05-01 10:39:51 | 000,000,733 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk
[2011-04-29 23:24:50 | 000,383,696 | ---- | M] (Soft32.com) -- C:\Documents and Settings\Toshiba\Pulpit\Soft32Downloader-for-WAMP5.exe
[2011-04-29 13:01:30 | 066,836,622 | ---- | M] () -- C:\Documents and Settings\Toshiba\Pulpit\xampp-win32-1.7.5-beta1-installer.exe
[2011-04-15 13:18:09 | 000,171,488 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011-04-15 10:43:06 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011-04-15 10:40:37 | 001,072,092 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2011-04-15 10:40:37 | 000,500,540 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2011-04-15 10:40:37 | 000,441,458 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011-04-15 10:40:37 | 000,089,036 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2011-04-15 10:40:37 | 000,071,394 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011-04-10 14:56:52 | 000,033,920 | ---- | M] () -- C:\Documents and Settings\Toshiba\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2011-05-07 17:15:39 | 000,302,080 | ---- | C] () -- C:\Documents and Settings\Toshiba\Pulpit\qy4ttqly.exe
[2011-05-06 23:12:42 | 000,139,452 | ---- | C] () -- C:\Documents and Settings\Toshiba\Pulpit\autom.jpg
[2011-05-06 23:07:15 | 000,507,202 | ---- | C] () -- C:\Documents and Settings\Toshiba\Pulpit\plc.jpg
[2011-05-06 23:05:33 | 000,201,510 | ---- | C] () -- C:\Documents and Settings\Toshiba\Pulpit\cnc.jpg
[2011-05-06 22:49:54 | 000,952,056 | ---- | C] () -- C:\Documents and Settings\Toshiba\Pulpit\mes.jpg
[2011-05-06 22:43:01 | 000,172,593 | ---- | C] () -- C:\Documents and Settings\Toshiba\Pulpit\3d 2.jpg
[2011-05-06 22:40:35 | 000,038,907 | ---- | C] () -- C:\Documents and Settings\Toshiba\Pulpit\3d.jpg
[2011-05-06 22:01:58 | 000,022,461 | ---- | C] () -- C:\Documents and Settings\Toshiba\Pulpit\projekt.jpg
[2011-05-01 10:39:50 | 000,000,739 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox.lnk
[2011-04-29 13:00:59 | 066,836,622 | ---- | C] () -- C:\Documents and Settings\Toshiba\Pulpit\xampp-win32-1.7.5-beta1-installer.exe
[2011-03-31 13:16:50 | 000,000,090 | ---- | C] () -- C:\WINDOWS\pxiesys.ini
[2011-03-31 13:16:50 | 000,000,069 | ---- | C] () -- C:\WINDOWS\pxisys.ini
[2011-02-09 23:11:56 | 000,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfcmnnt.dll
[2011-01-10 21:52:30 | 000,000,156 | ---- | C] () -- C:\WINDOWS\matlab.ini
[2011-01-07 22:21:15 | 000,000,143 | ---- | C] () -- C:\WINDOWS\festo.ini
[2011-01-07 21:34:05 | 000,004,478 | ---- | C] () -- C:\WINDOWS\gmwin.ini
[2010-12-21 10:57:45 | 000,593,920 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010-12-21 10:57:45 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010-12-21 10:57:44 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2010-12-21 10:57:43 | 000,010,752 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010-12-21 10:57:43 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2010-12-14 17:04:01 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010-12-08 21:12:29 | 000,012,800 | ---- | C] () -- C:\Documents and Settings\Toshiba\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-11-30 11:45:09 | 000,033,920 | ---- | C] () -- C:\Documents and Settings\Toshiba\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2010-11-26 15:21:54 | 000,000,132 | ---- | C] () -- C:\Documents and Settings\Toshiba\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2010-11-23 14:50:09 | 000,000,784 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2010-11-23 14:45:06 | 000,000,600 | ---- | C] () -- C:\Documents and Settings\Toshiba\Ustawienia lokalne\Dane aplikacji\PUTTY.RND
[2010-11-23 14:29:34 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2010-11-23 14:22:24 | 000,000,000 | ---- | C] () -- C:\WINDOWS\NDSTray.INI
[2010-11-23 14:19:40 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\tcleanup.exe
[2010-11-23 14:08:38 | 000,000,638 | ---- | C] () -- C:\WINDOWS\System32\00THotkey.exe.manifest
[2010-11-23 14:08:37 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\000StTHK.exe
[2010-11-22 15:40:04 | 006,414,032 | -H-- | C] () -- C:\Documents and Settings\Toshiba\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2010-11-22 15:27:34 | 000,128,113 | ---- | C] () -- C:\WINDOWS\System32\csellang.ini
[2010-11-22 15:27:34 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\csellang.dll
[2010-11-22 15:27:34 | 000,010,165 | ---- | C] () -- C:\WINDOWS\System32\tosmreg.ini
[2010-11-22 15:27:34 | 000,007,671 | ---- | C] () -- C:\WINDOWS\System32\cseltbl.ini
[2010-11-22 15:21:47 | 001,072,092 | ---- | C] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-11-22 15:21:46 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010-11-22 15:20:54 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\SynTPCoI.dll
[2010-11-22 15:20:15 | 000,171,488 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-11-22 15:16:06 | 000,016,384 | ---- | C] () -- C:\WINDOWS\System32\e100bmsg.dll
[2010-11-22 14:38:22 | 000,033,920 | ---- | C] () -- C:\Documents and Settings\Toshiba\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2010-11-22 14:35:14 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2010-11-22 14:31:28 | 000,000,000 | ---- | C] () -- C:\WINDOWS\control.ini
[2010-11-22 14:29:54 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2010-11-22 14:29:47 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2010-11-22 14:27:28 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010-11-22 14:27:11 | 000,000,063 | ---- | C] () -- C:\WINDOWS\vbaddin.ini
[2010-11-22 14:27:11 | 000,000,036 | ---- | C] () -- C:\WINDOWS\vb.ini
[2010-11-22 14:26:22 | 000,026,717 | ---- | C] () -- C:\WINDOWS\System32\tslabels.ini
[2010-11-22 14:26:21 | 000,003,813 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.ini
[2009-01-09 17:48:00 | 000,022,897 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIUSB72F30200.bin
[2009-01-09 17:48:00 | 000,022,897 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIUSB72F3.bin
[2009-01-09 17:48:00 | 000,022,897 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIUSB72CC0200.bin
[2009-01-09 17:48:00 | 000,022,897 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIUSB72CC.bin
[2009-01-09 17:48:00 | 000,009,669 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIUSB71DF0200.bin
[2009-01-09 17:48:00 | 000,009,669 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIUSB71DF.bin
[2009-01-09 17:47:58 | 000,012,307 | R--- | C] () -- C:\WINDOWS\System32\drivers\NIUSB71D7.bin
[2009-01-09 17:47:58 | 000,012,307 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIUSB71D80200.bin
[2009-01-09 17:47:58 | 000,012,307 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIUSB71D70200.bin
[2009-01-09 17:47:58 | 000,012,307 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIUSB71D60200.bin
[2009-01-09 17:47:58 | 000,012,307 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIUSB717B0200.bin
[2009-01-09 17:47:58 | 000,012,307 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIUSB717A0200.bin
[2009-01-09 17:47:58 | 000,009,381 | R--- | C] () -- C:\WINDOWS\System32\drivers\NIUSB717B.bin
[2009-01-09 17:47:58 | 000,009,381 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIUSB717B0100.bin
[2009-01-09 17:47:58 | 000,009,295 | R--- | C] () -- C:\WINDOWS\System32\drivers\NIUSB71D8.bin
[2009-01-09 17:47:58 | 000,009,295 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIUSB71D80100.bin
[2009-01-09 17:47:58 | 000,009,158 | R--- | C] () -- C:\WINDOWS\System32\drivers\NIUSB71D6.bin
[2009-01-09 17:47:58 | 000,009,158 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIUSB71D60100.bin
[2009-01-09 17:47:58 | 000,008,091 | R--- | C] () -- C:\WINDOWS\System32\drivers\NIUSB718A.bin
[2009-01-09 17:47:58 | 000,008,091 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIUSB718A0100.bin
[2009-01-09 17:47:58 | 000,007,697 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIUSB718A0200.bin
[2009-01-09 17:47:56 | 000,009,146 | R--- | C] () -- C:\WINDOWS\System32\drivers\NIUSB717A.bin
[2009-01-09 17:47:56 | 000,009,146 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIUSB717A0100.bin
[2009-01-07 18:20:24 | 000,050,208 | ---- | C] () -- C:\WINDOWS\System32\nispdu.dll
[2009-01-05 09:28:24 | 000,070,176 | ---- | C] () -- C:\WINDOWS\System32\drivers\nispdk.dll
[2009-01-05 09:28:12 | 000,032,256 | ---- | C] () -- C:\WINDOWS\System32\niscdrau.dll
[2008-12-29 17:23:20 | 000,000,555 | ---- | C] () -- C:\WINDOWS\System32\nidmfpan.exe.manifest
[2008-12-16 01:57:20 | 000,003,520 | ---- | C] () -- C:\WINDOWS\System32\nipalpg.dll
[2008-06-13 15:47:30 | 000,000,244 | ---- | C] () -- C:\WINDOWS\System32\nirpc.ini
[2008-04-07 10:00:00 | 000,004,096 | ---- | C] () -- C:\WINDOWS\System32\drivers\cvintdrv.sys
[2006-03-02 14:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2006-03-02 14:00:00 | 001,015,477 | ---- | C] () -- C:\WINDOWS\System32\esentprf.ini
[2006-03-02 14:00:00 | 000,733,696 | ---- | C] () -- C:\WINDOWS\System32\qedwipes.dll
[2006-03-02 14:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2006-03-02 14:00:00 | 000,500,540 | ---- | C] () -- C:\WINDOWS\System32\perfh015.dat
[2006-03-02 14:00:00 | 000,441,458 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2006-03-02 14:00:00 | 000,355,112 | ---- | C] () -- C:\WINDOWS\System32\msjetoledb40.dll
[2006-03-02 14:00:00 | 000,313,828 | ---- | C] () -- C:\WINDOWS\System32\perfi015.dat
[2006-03-02 14:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2006-03-02 14:00:00 | 000,270,848 | ---- | C] () -- C:\WINDOWS\System32\sbe.dll
[2006-03-02 14:00:00 | 000,253,440 | ---- | C] () -- C:\WINDOWS\System32\compatui.dll
[2006-03-02 14:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2006-03-02 14:00:00 | 000,199,168 | ---- | C] () -- C:\WINDOWS\System32\ir32_32.dll
[2006-03-02 14:00:00 | 000,186,880 | ---- | C] () -- C:\WINDOWS\System32\encdec.dll
[2006-03-02 14:00:00 | 000,094,282 | ---- | C] () -- C:\WINDOWS\System32\msencode.dll
[2006-03-02 14:00:00 | 000,089,036 | ---- | C] () -- C:\WINDOWS\System32\perfc015.dat
[2006-03-02 14:00:00 | 000,071,394 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2006-03-02 14:00:00 | 000,070,656 | ---- | C] () -- C:\WINDOWS\System32\amstream.dll
[2006-03-02 14:00:00 | 000,070,622 | ---- | C] () -- C:\WINDOWS\System32\edit.com
[2006-03-02 14:00:00 | 000,053,920 | ---- | C] () -- C:\WINDOWS\System32\dosx.exe
[2006-03-02 14:00:00 | 000,053,478 | ---- | C] () -- C:\WINDOWS\System32\tcpmon.ini
[2006-03-02 14:00:00 | 000,051,823 | ---- | C] () -- C:\WINDOWS\System32\command.com
[2006-03-02 14:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2006-03-02 14:00:00 | 000,042,809 | ---- | C] () -- C:\WINDOWS\System32\key01.sys
[2006-03-02 14:00:00 | 000,042,537 | ---- | C] () -- C:\WINDOWS\System32\keyboard.sys
[2006-03-02 14:00:00 | 000,039,434 | ---- | C] () -- C:\WINDOWS\System32\mem.exe
[2006-03-02 14:00:00 | 000,035,648 | ---- | C] () -- C:\WINDOWS\System32\ntio411.sys
[2006-03-02 14:00:00 | 000,035,424 | ---- | C] () -- C:\WINDOWS\System32\ntio412.sys
[2006-03-02 14:00:00 | 000,034,990 | ---- | C] () -- C:\WINDOWS\System32\perfd015.dat
[2006-03-02 14:00:00 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio804.sys
[2006-03-02 14:00:00 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio404.sys
[2006-03-02 14:00:00 | 000,033,936 | ---- | C] () -- C:\WINDOWS\System32\ntio.sys
[2006-03-02 14:00:00 | 000,029,370 | ---- | C] () -- C:\WINDOWS\System32\ntdos411.sys
[2006-03-02 14:00:00 | 000,029,274 | ---- | C] () -- C:\WINDOWS\System32\ntdos412.sys
[2006-03-02 14:00:00 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos804.sys
[2006-03-02 14:00:00 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos404.sys
[2006-03-02 14:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2006-03-02 14:00:00 | 000,027,898 | ---- | C] () -- C:\WINDOWS\System32\ntdos.sys
[2006-03-02 14:00:00 | 000,027,097 | ---- | C] () -- C:\WINDOWS\System32\country.sys
[2006-03-02 14:00:00 | 000,020,986 | ---- | C] () -- C:\WINDOWS\System32\debug.exe
[2006-03-02 14:00:00 | 000,020,629 | ---- | C] () -- C:\WINDOWS\System32\mqperf.ini
[2006-03-02 14:00:00 | 000,019,806 | ---- | C] () -- C:\WINDOWS\System32\graphics.com
[2006-03-02 14:00:00 | 000,016,024 | ---- | C] () -- C:\WINDOWS\System32\rsvp.ini
[2006-03-02 14:00:00 | 000,015,360 | ---- | C] () -- C:\WINDOWS\System32\tsd32.dll
[2006-03-02 14:00:00 | 000,014,913 | ---- | C] () -- C:\WINDOWS\System32\kb16.com
[2006-03-02 14:00:00 | 000,014,336 | ---- | C] () -- C:\WINDOWS\System32\msdmo.dll
[2006-03-02 14:00:00 | 000,013,819 | ---- | C] () -- C:\WINDOWS\System32\pschdprf.ini
[2006-03-02 14:00:00 | 000,013,312 | ---- | C] () -- C:\WINDOWS\System32\win87em.dll
[2006-03-02 14:00:00 | 000,012,866 | ---- | C] () -- C:\WINDOWS\System32\edlin.exe
[2006-03-02 14:00:00 | 000,012,594 | ---- | C] () -- C:\WINDOWS\System32\append.exe
[2006-03-02 14:00:00 | 000,011,859 | ---- | C] () -- C:\WINDOWS\System32\setver.exe
[2006-03-02 14:00:00 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\scriptpw.dll
[2006-03-02 14:00:00 | 000,009,043 | ---- | C] () -- C:\WINDOWS\System32\ansi.sys
[2006-03-02 14:00:00 | 000,008,520 | ---- | C] () -- C:\WINDOWS\System32\exe2bin.exe
[2006-03-02 14:00:00 | 000,007,116 | ---- | C] () -- C:\WINDOWS\System32\nlsfunc.exe
[2006-03-02 14:00:00 | 000,006,074 | ---- | C] () -- C:\WINDOWS\System32\rasctrs.ini
[2006-03-02 14:00:00 | 000,004,976 | ---- | C] () -- C:\WINDOWS\System32\himem.sys
[2006-03-02 14:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2006-03-02 14:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2006-03-02 14:00:00 | 000,003,346 | ---- | C] () -- C:\WINDOWS\System32\redir.exe
[2006-03-02 14:00:00 | 000,003,260 | ---- | C] () -- C:\WINDOWS\System32\nw16.exe
[2006-03-02 14:00:00 | 000,002,992 | ---- | C] () -- C:\WINDOWS\System32\perfci.ini
[2006-03-02 14:00:00 | 000,002,890 | ---- | C] () -- C:\WINDOWS\System32\perfwci.ini
[2006-03-02 14:00:00 | 000,002,656 | ---- | C] () -- C:\WINDOWS\System32\netware.drv
[2006-03-02 14:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2006-03-02 14:00:00 | 000,001,405 | ---- | C] () -- C:\WINDOWS\msdfmap.ini
[2006-03-02 14:00:00 | 000,001,295 | ---- | C] () -- C:\WINDOWS\System32\perffilt.ini
[2006-03-02 14:00:00 | 000,001,168 | ---- | C] () -- C:\WINDOWS\System32\loadfix.com
[2006-03-02 14:00:00 | 000,001,148 | ---- | C] () -- C:\WINDOWS\System32\vwipxspx.exe
[2006-03-02 14:00:00 | 000,000,882 | ---- | C] () -- C:\WINDOWS\System32\share.exe
[2006-03-02 14:00:00 | 000,000,882 | ---- | C] () -- C:\WINDOWS\System32\fastopen.exe
[2006-03-02 14:00:00 | 000,000,854 | ---- | C] () -- C:\WINDOWS\win.ini
[2006-03-02 14:00:00 | 000,000,817 | ---- | C] () -- C:\WINDOWS\System32\mscdexnt.exe
[2006-03-02 14:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2006-03-02 14:00:00 | 000,000,359 | ---- | C] () -- C:\WINDOWS\System32\prodspec.ini
[2006-03-02 14:00:00 | 000,000,231 | ---- | C] () -- C:\WINDOWS\system.ini
[2004-04-08 14:41:24 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\nipxiini.dll
[2004-04-08 14:12:48 | 000,008,704 | ---- | C] () -- C:\WINDOWS\System32\niidaqlv.dll
[2004-04-08 13:07:42 | 000,005,081 | ---- | C] () -- C:\WINDOWS\System32\ni7030.dat
[2004-04-08 13:02:14 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\NIAutoConfig.exe
[2004-04-08 13:02:14 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\NIAutoCfgRda.exe
[2004-04-05 18:34:26 | 000,000,069 | ---- | C] () -- C:\WINDOWS\nicancfg.ini
[2004-04-05 18:26:58 | 000,003,116 | ---- | C] () -- C:\WINDOWS\nicanopt.ini
[2004-04-05 18:26:56 | 000,048,736 | ---- | C] () -- C:\WINDOWS\System32\Ncprop.dll
[2004-03-30 11:49:46 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\cfswitch.dll
[2004-03-08 14:24:56 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\NIMotionRepairOnReboot.exe
[2004-03-05 13:03:06 | 000,073,808 | ---- | C] () -- C:\WINDOWS\System32\clsernat.dll
[2003-12-01 15:04:36 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\4070lvanlys.dll
[2003-07-08 17:06:10 | 000,917,504 | ---- | C] () -- C:\WINDOWS\System32\hdf5dll.dll
[2003-07-08 17:06:10 | 000,053,760 | ---- | C] () -- C:\WINDOWS\System32\zlib.dll
[2002-07-17 15:08:14 | 000,012,653 | ---- | C] () -- C:\WINDOWS\System32\Gpib.dll
[2002-07-17 15:08:12 | 000,056,904 | ---- | C] () -- C:\WINDOWS\System32\drivers\gpibclsb.sys
[2002-07-17 15:08:12 | 000,034,664 | ---- | C] () -- C:\WINDOWS\System32\drivers\gpibclsd.sys
[2002-07-17 15:08:12 | 000,023,312 | ---- | C] () -- C:\WINDOWS\System32\gpib-vdd.dll
[2002-07-17 15:07:58 | 000,081,218 | ---- | C] () -- C:\WINDOWS\System32\drivers\gpibpci.sys
[2002-07-17 15:07:58 | 000,070,528 | ---- | C] () -- C:\WINDOWS\System32\drivers\gpibatnt.sys
[2002-07-17 15:07:58 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\GpibN32.dll
[2002-07-17 15:07:58 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\GPIBI32.dll
[2002-07-17 15:07:58 | 000,008,796 | ---- | C] () -- C:\WINDOWS\System32\drivers\GpibStub.sys
[2002-07-17 14:08:14 | 000,114,688 | ---- | C] () -- C:\WINDOWS\System32\GpibAz32.dll
[2001-10-26 19:29:54 | 000,057,856 | ---- | C] () -- C:\WINDOWS\System32\dvdplay.exe
[2001-10-26 19:29:42 | 000,157,696 | ---- | C] () -- C:\WINDOWS\System32\paqsp.dll
[1999-11-15 13:58:52 | 000,028,672 | ---- | C] () -- C:\WINDOWS\NIRegApp.exe
[1999-11-04 12:00:38 | 000,001,840 | ---- | C] () -- C:\WINDOWS\System32\niidaqs.dll
[1998-10-02 12:02:46 | 000,060,416 | ---- | C] () -- C:\WINDOWS\System32\Opcenum.exe

[color=#E56717]========== LOP Check ==========[/color]

[2010-11-22 15:42:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET
[2010-12-05 11:15:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2011-03-31 12:43:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\IVI Foundation
[2011-04-28 22:07:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\MySQL
[2011-03-31 13:21:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\National Instruments
[2011-02-11 12:34:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Nokia
[2011-02-11 11:59:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\NokiaInstallerCache
[2011-04-02 00:05:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM
[2011-02-11 12:17:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Suite
[2010-12-05 11:19:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Toshiba\Dane aplikacji\Gadu-Gadu 10
[2011-04-30 00:13:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Toshiba\Dane aplikacji\GetRightToGo
[2010-11-22 15:07:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Toshiba\Dane aplikacji\GHISLER
[2011-03-08 00:44:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Toshiba\Dane aplikacji\Notepad++
[2011-04-02 00:04:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Toshiba\Dane aplikacji\OpenFM
[2011-02-11 12:22:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Toshiba\Dane aplikacji\PC Suite
[2010-11-26 15:25:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Toshiba\Dane aplikacji\Unigraphics Solutions
[2010-11-22 15:15:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Toshiba\Dane aplikacji\WinBatch

[color=#E56717]========== Purity Check ==========[/color]



< End of report >


Kod: Zaznacz wszystko
OTL Extras logfile created on: 2011-05-07 17:40:33 - Run 1
OTL by OldTimer - Version 3.2.22.3     Folder = C:\Documents and Settings\Toshiba\Pulpit
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

511,00 Mb Total Physical Memory | 113,00 Mb Available Physical Memory | 22,00% Memory free
1,00 Gb Paging File | 1,00 Gb Available in Paging File | 54,00% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 34,18 Gb Total Space | 15,62 Gb Free Space | 45,69% Space Free | Partition Type: NTFS
Drive D: | 40,34 Gb Total Space | 40,08 Gb Free Space | 99,37% Space Free | Partition Type: NTFS

Computer Name: LABTOHSIBA | User Name: Toshiba | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

[HKEY_USERS\S-1-5-21-1757981266-507921405-854245398-1003\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

[color=#E56717]========== Shell Spawning ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[color=#E56717]========== Security Center Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 1
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[color=#E56717]========== System Restore Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

[color=#E56717]========== Authorized Applications List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Gadu-Gadu 10\gg.exe" = C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10
"C:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe" = C:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe:*:Enabled:Nokia Service Layer Host Process  -- (Nokia Corporation)
"C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe" = C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe:*:Enabled:Nokia Ovi Suite -- (Nokia)
"C:\Program Files\National Instruments\LabVIEW 7.1\LabVIEW.exe" = C:\Program Files\National Instruments\LabVIEW 7.1\LabVIEW.exe:*:Enabled:LabVIEW 7.1 Development System -- ()
"C:\Program Files\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe" = C:\Program Files\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe:*:Enabled:Bonjour -- (National Instruments Corporation)
"C:\Apache\bin\httpd.exe" = C:\Apache\bin\httpd.exe:*:Enabled:Apache HTTP Server
"C:\Documents and Settings\Toshiba\Pulpit\JAMP PL Free\mnt\usr\local\apache2\bin\apache.exe" = C:\Documents and Settings\Toshiba\Pulpit\JAMP PL Free\mnt\usr\local\apache2\bin\apache.exe:*:Enabled:Apache HTTP Server
"C:\JAMP PL Free\mnt\usr\local\apache2\bin\apache.exe" = C:\JAMP PL Free\mnt\usr\local\apache2\bin\apache.exe:*:Enabled:Apache HTTP Server
"C:\wamp\bin\apache\Apache2.2.17\bin\httpd.exe" = C:\wamp\bin\apache\Apache2.2.17\bin\httpd.exe:*:Enabled:Apache HTTP Server -- (Apache Software Foundation)


[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{022376C1-ADF1-4781-9374-1045F09C0DE4}" = NI Measurement Studio 8.1 Enterprise RunTime for VS2005
"{03178905-E40F-4FF3-AD16-D9310A89D8A6}" = NI Distribution Information - PDS English
"{04EF0266-1A3B-4A3C-82DD-1624105C935B}" = NI SCXI 1.10.0
"{08600005-5228-4BF6-845E-E9A957AFDCB4}" = OviMPlatform
"{0A709F04-9411-4AD6-BB0D-A2E4A6DF8359}" = NI IVI Engine
"{0E1A5A05-EFAC-4424-AC33-710646AD345C}" = NI DAQ Assistant 1.10.0
"{0E4AD61E-94EA-455A-8038-B2C565F39EAD}" = NI Calibration Provider for MAX
"{0FB31DF8-38DF-4C9D-B313-AFAFC3FBA02B}" = NI LVBrokerAux 8.2.1
"{10C82FAF-AADC-45AA-84C4-4B18AA70DC51}" = NI Uninstaller
"{111A3329-1D8C-4B15-B53A-480A1A3B894C}" = NI LabVIEW SignalExpress 3.0
"{11A8F66F-7B73-422C-88B6-7187BEF92AE7}" = NI LabVIEW 7.1 Core Essentials
"{13680A54-BC26-41BE-9C13-1385DD09B9B5}" = NI LabVIEW SignalExpress 3.0 LabVIEW Support
"{1538B06D-3F62-4622-B9D2-27B894C3496C}" = NI LVBrokerAux 8.5.0
"{16AF46BD-5ED9-4E2B-84D4-DC40354BAD19}" = NI Trace Engine
"{1871FE54-36AA-478F-B374-A46BA54474CC}" = ESET NOD32 Antivirus
"{18C9DFB7-55B0-47A0-840C-2AE3C776C8C8}" = NI-FieldPoint for LabVIEW Real-Time 4.1
"{199DA648-61E8-45F1-B535-E69DF1113060}" = NI Remote Provider for MAX
"{1A55480E-26E3-40A8-B51A-4397B4FAFB6D}" = NI-VXI Support for LabVIEW 1.2.1f0
"{1A710265-096B-46CB-8849-53A209D9A8CF}" = NI Certificates Deployment Support
"{1C16DA31-24E9-448C-BBE2-B84F249B84C3}" = NI-DAQ Document Set
"{1D4C2F2A-236A-42F4-97A0-EC944E78EBDC}" = NI LabVIEW Run-Time Engine 7.0
"{1E359417-A7A1-45E2-8A60-1E1A0FAED597}" = NI Assistant Framework
"{1EF6FDF1-2D2A-4E0A-B6F3-BD1044888BB2}" = NI-MRU 2.10.1f0
"{221861B8-D133-4377-803D-F005EB2B733C}" = NI LVBrokerAux1071
"{231482E8-06DD-426D-979E-289E97C85445}" = NI-ORB 1.1.0f1 for Phar Lap ETS
"{241133BE-17B1-4F3D-975C-A05D1FAA8471}" = NI LabVIEW SignalExpress 3.0 Core LabVIEW71 Support
"{24B7F9A4-4FA8-437A-8289-2E473E7B4B53}" = NI Logos 5.0
"{251F8A77-7ACB-47BB-98CE-9F671B69D90F}" = NI Example Finder 2.0
"{25E7DBD7-81D6-450E-B5ED-D16A1ED544BA}" = Traditional NI-DAQ Documentation 1.0.3
"{261A065C-48BA-495E-809E-D0D4B8DC27C6}" = NI mDNS Responder 1.0.0
"{26A24AE4-039D-4CA4-87B4-2F83216022FF}" = Java(TM) 6 Update 22
"{28191B83-1D60-44B6-9B08-E854EF6632D5}" = Ovi Desktop Sync Engine
"{2878CD7B-FD12-4ADE-9B90-11DF678EF18C}" = NI Instrument IO Assistant for LabVIEW 7.1
"{297FA251-FF30-4F16-978C-4A65EA804EFF}" = NI LabVIEW Real-Time Error Dialog
"{2A4B2916-5236-45B8-8DE2-002782AEB4F6}" = NI FieldPoint MAX Provider
"{2CA542BC-E002-4064-84DB-49B3E558A26D}" = NI LabVIEW Run-Time Engine 8.6
"{2D1DAD2D-AE70-4749-BDD5-B815DBEA0531}" = NI-Motion 6.1.2
"{2D7ED304-40EE-422B-B524-43E4203D2602}" = NI Timing Installer 1.13.0
"{2E82576D-5184-418B-802A-44295DD0C89C}" = NI-IRDA 1.0.1f0 for PharLap
"{2F5CBA53-F164-4279-9E22-C75BE8D89077}" = NI-TClk 1.0.1
"{2F5E9056-3F63-4933-92BA-A568AF24004C}" = NI-Watchdog 2.1.0f0
"{33141B9A-0541-4296-BF56-771E0665267B}" = NI-PAL 1.8.0f0 for Phar Lap ETS
"{34EE2F0F-D6EA-4C36-8315-41107048D48D}" = NI-DAQmx - LabVIEW shared documentation
"{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3553E875-F00E-4031-BDEC-75FB1DFEB093}" = Nokia Ovi Suite Software Updater
"{35F7B2DD-1874-4FAC-A4BE-76E16446B468}" = NI License Manager
"{36DC540B-3062-4538-B1D1-E367BC9F47FC}" = NI LVBrokerAux71
"{3B77F9F1-56FA-4DF9-9B5A-BEF0071126A7}" = NI-VISA 3.1
"{3BE480ED-E17A-431A-981C-5C2EDDBCD3BF}" = Macromedia Flash MX
"{3CA1BED8-F427-4369-9A5C-A2EBA60D9C69}" = NI-RPC 3.1.1f0 for PharLap
"{3CF0858D-1AC5-4308-9DE7-AD15288A8BDC}" = TOSHIBA Console
"{3DD0AF62-E5BB-4193-845C-3E65D8F767D1}" = NI Script Editor 1.0
"{3F99A228-0BBD-40B6-8AEB-A6F689688969}" = NI LabWindows/CVI Code Generator
"{3FC42713-B6E7-49AA-A553-A224FE9828A8}" = Nokia Ovi Suite
"{4124F21F-41E3-4A13-9AAC-13AFEB23E88E}" = NI STC 1.2.0
"{4159DD60-49C1-4323-A1A5-FB060CBA35C5}" = NI Measurement Studio Recipe Processor
"{4216D328-0FE8-48B8-85B8-BD300E6F080F}" = Nokia Connectivity Cable Driver
"{42ABBC19-183C-42A2-B335-5D0A09A995E8}" = NI-FGEN 2.1.1
"{435A3DFD-CFE5-4D27-8C46-5FC5EAC8F694}" = NI-DAQmx support for LabVIEW
"{44D333DF-010C-4DBC-A9CD-7B048B6CF32B}" = NI IVI Class Drivers
"{45FA54F6-8574-49D2-9E2D-0BDDE6237822}" = NI LabVIEW Run-Time Engine 8.2.1
"{465B1EAF-33EE-4EA3-A6C7-684A7D513C71}" = NI-DAQmx Expert Framework 1.2.0
"{47FFFF8E-A6E7-4C9A-AB7B-1BE0FE29A95A}" = NI LabVIEW Run-Time Engine 8.5
"{48462FED-72AF-4B39-952D-A7BAC5191312}" = NI-SWITCH 2.2
"{48CF9A66-5F03-4025-ABD0-B3A3FA095A59}" = TOSHIBA SD Memory Card Format
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4B9C22FD-5613-41F0-9692-B412854FE0B2}" = NI-Serial for LabVIEW RT
"{4C5D4A49-893D-4FE8-B314-65B2E8A5EEC1}" = NI IVI Online Help
"{4D0918D4-1046-47B9-9A8E-53778E84C511}" = NI MXS
"{4D93F309-66EE-4B88-ABFE-7F876DC823CE}" = NI Measurement Studio Common .NET Language Assemblies for the .NET Framework 2.0
"{4DF43A0E-0EFD-4E06-8C5F-DA05DB177D27}" = NI Assistant Framework LabVIEW Code Generator 61
"{4F1CEB1A-1220-48D7-B766-ECE5D6A0848A}" = NI-DIM 1.1.0f0 for PharLap
"{4F42CCF8-B3A7-41B9-9875-1083CB62BAFA}" = NI Variable Engine
"{50CB7969-029D-48BE-AE2D-AB8408591564}" = NI HSD Core 111f1
"{50F88190-99D8-4BE3-9D96-B80C6A60A5D1}" = NI Portable Configuration
"{51A90D57-2BB1-407B-BE4D-922243F9E79F}" = NI LabVIEW EWB DeviceHandler 300
"{53736430-DBEC-4582-B072-2F1F0A2C4EA6}" = NI LabVIEW Run-Time Engine 7.1.1
"{53B5ECB6-64DB-4E79-91FA-10CBC512660D}" = NI-ORB 1.9.0f0
"{53EE3827-D418-4A76-A77B-0D8850B9709F}" = NI Assistant Framework LabVIEW Code Generator 7.1
"{569D9152-D145-4B6A-BA7B-53707053AF37}" = NI LabVIEW SignalExpress 3.0 Datatypes LabVIEW 7.1 Support
"{57FECA44-EB32-4448-8527-15C59B34FC50}" = NI-IMAQ 2.6.3
"{596AA1A8-7EF0-4489-97CC-08695F7EF935}" = NI LabVIEW SignalExpress 3.0 Tools
"{5A0B88C6-C125-4F1D-B0D3-10F185E974B2}" = NI DHV DCMP Installer 101f0
"{5D23734B-6D69-44DF-9014-C4F70FB82B1E}" = NI Measurement & Automation Explorer 4.5
"{607C8C4E-5FEC-4656-9DA1-3D6D6B7DE0ED}" = NI LabVIEW Advanced Analysis 7.1
"{616698E7-FFC3-47B0-9759-4F6E0C0C27B0}" = NI-SCOPE 2.6.1
"{624EDE2D-7C91-41F3-896C-C7E5BFE17FFA}" = NI Session Manager 3.0
"{65A3C496-E879-4480-AE4F-03F12BDD4EE8}" = NI-CAN Provider for MAX
"{65F1EE0F-F9D2-45E1-8E14-2EBFF34E90A0}" = NI LVBrokerAux8.0
"{664FF011-D057-4758-B2C1-78B0B78DD823}" = Solid Edge V16
"{671A5B67-1A00-424A-A902-49BC020FB3D1}" = NI VC2005MSMs x86
"{674AF63E-13CA-4C78-ADD1-FE4008868A80}" = Grapher 7
"{69110B5E-E074-4ED6-80EF-8E92015260D3}" = NI EULA Depot
"{6991DAF8-91DB-4EA4-8D80-04789C646B66}" = NI Logos XT Support
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6BEBCDC2-DA88-450B-B450-C08BD1DA4676}" = NI AFW Custom UI
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{6D5A49E3-981E-4CCB-AC23-E9C9DE259259}" = NI-653x Installer 1.9.0
"{6E14AD54-2574-4DE6-81F0-2D4185B9371F}" = NI-VISA Runtime 4.4.1
"{6E605604-E2CE-4331-AA19-5FEF273F3CFD}" = NI LabVIEW Real-Time FIFO for Runtime
"{6F7D11DC-DE87-45C8-A37E-A35B724FC771}" = NI Help Assistant
"{6FADAF5C-C9AC-49E5-8B14-7021F91EF0B5}" = NI LabVIEW Run-Time Engine 8.0.1
"{701849E9-EF15-472D-80C3-039CA1D58F9B}" = NI FSL Installer 1.8.0
"{729B4471-C8EF-4C7B-A93A-1B994FD1DAE1}" = NI-DAQ INF Files
"{73234AD9-FDD0-4B3C-82C1-AA317F41E327}" = NI-APAL Error Files 1.4.0f1
"{7579CE41-6F5E-4C24-B235-5DEB1CBD1833}" = NI Assistant Framework LabVIEW Code Generator 70
"{761C7705-C07C-47C1-9DEF-1C7B7E85C026}" = NI-Embedded RT Provider 1.1 for MAX
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7959721D-8268-4565-9E0E-C41A9F4848A9}" = SigmaTel AC97 Audio Drivers
"{7B505C4F-900B-494C-9B58-DA001DB1204C}" = NI-PAL 2.4.0f0
"{7B7AFA74-1A64-42B4-9D4A-A55472D868A7}" = NI-VISA Server 3.1
"{7C350473-5C25-44D8-A862-FA22998333C2}" = NI-VISA Provider 3.1 for MAX for LabVIEW RT
"{7E3668CB-1228-416E-B721-C2FA3247B985}" = NI LabVIEW Real-Time FIFO for Runtime
"{7EB0D766-982D-4187-88A7-6E0780BAA69F}" = NI LabVIEW Professional Tools 7.1
"{7F2A3A51-7A4C-4E40-9059-FF99437E30C6}" = NI LabVIEW SignalExpress 3.0 Core LabVIEW Support
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{846156C4-B207-4B0C-BB41-4AAD23AC5AD9}" = NI IVI Compliance Package 3.3
"{84D0BDE5-5871-4EC8-8D31-63354170BF55}" = NI LabVIEW Picture Control and CIN Tools 7.1
"{86B1FEFE-2441-4546-A01C-CF4CC682AFAB}" = NI DHV GPL 102f0
"{88D80694-C429-11D6-9B3E-006008CECC9A}" = NI-488.2 1.74
"{8937FCB2-2FC6-4FC3-9FB5-DE2C92DB9C38}" = Microsoft .NET Framework 2.0 Language Pack - DEU
"{8B4AB829-DFD3-436D-B808-D9733D76C590}" = Macromedia Dreamweaver MX
"{8D5BB34F-54A7-40D7-8712-F78ADC5336CB}" = NI LVBrokerAux 8.6.0
"{8DF4E6BE-9DEE-4A64-8A3C-96E7C67D6B86}" = NI AFW Channel Configuration Tool
"{90110415-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90510409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Visio Professional 2003
"{9157D4DA-0B1F-4D88-85FF-B9E8B231ABA4}" = NI LabVIEW SignalExpress 3.0 Steps
"{928BF1DA-CBF0-4BF7-A351-8E0F9EC77337}" = NI Spy 2.1.0f0
"{930B2432-43D4-11D5-9871-00C04F8EEB39}" = Macromedia Fireworks MX
"{9438BE1F-6593-4B1B-B7F3-5C3A820E5861}" = NI LabVIEW SignalExpress 3.0 LabVIEW 7.1 Support
"{94435A21-A597-41AC-85BA-680E8348EB50}" = NI LabVIEW Application Builder 7.1
"{97F1CE79-9619-420C-9FFA-56197E059D33}" = NI LabVIEW Broker
"{985EF2B3-913B-4260-86E7-6C710D99B8F6}" = NI-DAQ Provider for MAX
"{9A56636B-9110-4A52-90C7-2F3E9CDB3F41}" = NI IVI Provider for MAX
"{9B0CFC5C-99C3-4859-87EF-C7E56A531D78}" = NI Remote PXI Provider for MAX
"{9C7F62C5-03E8-409F-A7E4-F51E2AE15AD4}" = NI LabVIEW Web Server for Run-Time Engine
"{9CED85C4-6316-45CD-8B92-3775C27D9466}" = NI MXS 4.5.0f0 for LabVIEW Real-Time
"{a0fe116e-9a8a-466f-aee0-625cb7c207e3}" = Microsoft Visual C++ 2005 Redistributable - KB2467175
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A3CC88BF-D760-401E-8FED-64A26ECC4B89}" = NI-MXEF 2.2.0
"{A43BF6A5-D5F0-4AAA-BF41-65995063EC44}" = MSXML 6.0 Parser
"{A52BFE95-969C-4FEF-B455-BE0F6E9CF126}" = NI Service Locator
"{A6690C0E-B96E-4F0F-A8EB-D5B332454AC6}" = TOSHIBA Controls
"{A760668E-EA7B-421D-B770-4D071F87F82E}" = NI OPC Support
"{A8B6F571-EA7C-4128-811A-E1CD38334387}" = Microsoft .NET Framework 2.0 Language Pack - JPN
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1045-7B44-A94000000001}" = Adobe Reader 9.4.0 - Polish
"{AC76BA86-7AD7-5760-0000-900000000003}" = Japanese Fonts Support For Adobe Reader 9
"{AD3218CC-FA25-46cb-8C25-A6F30DBF0C12}" = NI-TNF 1.2
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{AFEDF70D-8DC3-40CB-93A0-F276E64BDF9C}" = NI VC2008MSMs x86
"{B2A28DB4-3423-4BF6-A800-D9B1442A5C93}" = NI LabVIEW Web Services Runtime
"{B7F61F72-D91E-4D62-B602-BBB45FFCF2C3}" = NI MIO Device Drivers 2.0.1
"{B9C78D5B-665C-4DCB-BE82-3F71DD263968}" = NI Instrument IO Assistant
"{BB36E39E-ED11-43A3-A7FA-B4E550FFA35E}" = NI LVBrokerAux70
"{BBE025EB-14E1-4EB0-BF09-FCA8CE5F67B1}" = NI-Motion Firmware 6.1.2
"{BBF841BC-E270-4F98-BDBF-0A2637B94FB9}" = NI-HSDIO 1.1.1
"{BDD83DC9-BEE9-4654-A5DA-CC46C250088D}" = TOSHIBA ConfigFree
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C241EE40-6A3C-40FE-8B0C-82C39651CBB4}" = NI IVI Class Driver LabVIEW 7.1 Support
"{C5E59B58-F2AF-4E66-8F9E-7D73FE45FFD2}" = NI PXI Platform Services 2.4.2 Configuration Support
"{C645FD09-5CD5-443F-AD8B-A97BA66905F3}" = NI-Motion MAX Provider 6.1.2
"{C6F1B189-1469-49C9-846D-B61485FACC96}" = NI-Motion Driver 6.1.2
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CBB49EB6-8E41-4429-A1F4-8F6D3C76C68E}" = NI-VISA for LabVIEW Real-Time 3.1
"{CBD6710D-B5C3-4C18-B94D-FA5D9D5362C8}" = NI LabVIEW SignalExpress 3.0 Core
"{CCFB6A98-BD10-46BC-A410-CA683C0AAEE8}" = NI-MDBG 1.9.0f0
"{CDDB6C91-992D-42B8-A4BE-15988A725FF6}" = NI PXI Services 1.3.0f0 for LabVIEW RT
"{CDEE2B55-471D-4de3-AC14-D528C7300678}" = NI-IMAQ CFG 1.0
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE5BE6B0-5F10-4910-93E0-95880A177AFE}" = NI-MXDF 1.10.0f0
"{CFB0F311-C051-4760-A64A-12CA2609E91A}" = NI TDMS
"{D16533C5-4A6B-48FF-BA0A-6E98BE54EEB7}" = NI GPIB Provider for MAX
"{D190BA95-EE40-47B6-9C91-2318F7074149}" = NI-VISA Provider 3.1 for MAX
"{D21ED09B-C194-4937-A219-6F1901EC3C2E}" = NI-DAQ C and VB6 API
"{D2533218-3B3D-46C6-ABAA-898EB2908589}" = IVI VISA COM Standard Components
"{D25386BE-883E-4FB5-83FC-F28194283DB0}" = NI LabVIEW Real-Time Proxy 7.1.0
"{D32F724F-1415-478E-B039-794C51C810C6}" = NI PXI Platform Services 2.4.2 Expert
"{D36285AF-32A6-40AA-836B-243950E1EDFD}" = NI Xerces Delay Load 2.7
"{D3BA79B7-823E-437A-A7E0-BDB2CB62C7BE}" = NI LabVIEW 7.1
"{D451041F-08BF-4633-BA90-E6D8AF6C755B}" = IVI Shared Component
"{D4AEC53C-1720-41D9-B6D7-6A60DE62D444}" = PC Connectivity Solution
"{D919B56D-59C6-41A1-A412-DE80127EEFDA}" = NI Hierarchical Waveform Storage 1.1.1
"{D9529709-28B0-4DA1-8749-8924C11AAFF2}" = NI Registration Wizard
"{DB2C5648-700D-4AEF-83E1-70C72F0C34FA}" = NI Math Kernel Libraries
"{DB72CAC1-018E-4C75-B438-9EB46F302F92}" = NI-DAQmx Documentation
"{DC25A68A-D49A-474F-B86D-86EB228553ED}" = NI-Embedded RT 1.0.0f5
"{DE2D4A5E-DEC1-486C-9D15-4D3F24E44774}" = NI LabVIEW Real-Time NBFifo
"{DEC25D81-2317-47F6-8B26-D54A939DA1EE}" = NI LabVIEW C Interface
"{DEF2B558-072B-4DA6-88DE-70AAAB6F2471}" = NI-IMAQ Provider for MAX
"{E21BFA94-CCEB-40E7-9BAC-621B42C46BFB}" = NI MDF Support
"{E35269EE-4191-454F-BFAA-C3564A69654D}" = NI-DIM 1.9.0f0
"{E3745493-5CCA-4419-AD95-CC0FBBFFFEB7}" = NI-FieldPoint 4.1
"{E4380F50-473D-4C68-8E33-B9513FF693C9}" = NI-DAQmx Switch Core 1.15.0
"{E4637ACC-37D1-47F5-911B-01C38D3E6399}" = NI-RPC 4.0.0f0 for Phar Lap ETS
"{E5E41719-FB9C-4093-A715-673CF1101386}" = NI-DAQmx 8.9.0
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.0
"{E7462ECA-075B-4370-B0DA-F2EE132640A2}" = NI-MXLC 1.2.1f1
"{EA3C9BD0-E520-4DA1-8BC0-DD607D667B22}" = NI LabVIEW SignalExpress 3.0 Licenses
"{EA8BC169-7420-465D-8B05-21277DB27709}" = NI-FGEN Driver Part 111f1
"{EEEAEFBA-D40F-4990-8A2C-85C09E6184BA}" = NI-CAN 2.1.3
"{EF774CDC-3D99-4CB6-BD32-62D40AAC247A}" = NI-DMM 2.2.1
"{F1563171-2C0D-4CD7-904D-477387CD0B9F}" = NI Common Digital 1.9.0
"{F196AC50-7C95-42E1-9947-BDAB18BF3C8C}" = Microsoft .NET Framework 2.0 Language Pack - FRA
"{F1E11179-CE85-49F6-9478-6D6146FD7FDC}" = NI-DAQ 7.2, Traditional
"{F28D6E4E-EA52-49F5-B5E8-EDA4F380F83A}" = NI DN 2.0 installer
"{F30A86E1-6A82-4D9C-870F-7A81D999C405}" = NI Software Provider for MAX
"{F7570A98-64A7-4F33-9714-AB93A05889BF}" = NI PXI Platform Services 2.4.2
"{F7BCD5CA-0E96-4F60-9613-E23E87131833}" = NI DPPH
"{F851BCDD-6873-4C10-A190-D85BF4382905}" = NI-DAQmx MAX Support 1.12.0
"{F8DF662E-324D-415F-9F8F-8591B58D3595}" = NI DIO Core 111f1
"{F8ECD2D6-659C-49EB-8454-5F8F7B526FCF}" = NI DN 2.0 Language Pack installer
"{FABE826A-E83A-4BF9-9CA9-72C1F85F937B}" = NI IVI Class Simulation Drivers
"{FCC9BA43-E00A-4269-B0CA-6708ED300914}" = NI LabVIEW Full 7.1
"{FD5D4137-EEC7-4CD9-8A1C-DE62D33469BE}" = NI LabVIEW SignalExpress 3.0 Datatypes
"{FE159BC0-1D40-449B-A0AE-CB4F642CF3DC}" = NI-RPC 4.0.0f0
"{FE34ECB1-BEDB-4E1C-A08D-DD2CB9AD2B7E}" = NI Dynamic Signal Acquisition Installer 1.13.0
"{FE7CCD97-B1BC-492C-BFC0-8117A3CF8C1A}" = NI PXI Platform Framework 1.1.0
"504244733D18C8F63FF584AEB290E3904E791693" = Pakiet sterowników systemu Windows - Nokia pccsmcfd  (08/22/2008 7.0.0.0)
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"ie8" = Windows Internet Explorer 8
"IviSharedComponent" = IVI Shared Components
"IviVisaComStandardComponents" = IVI VISA COM Standard Components
"KLiteCodecPack_is1" = K-Lite Codec Pack 3.2.0 Full
"MatlabR2006b" = MATLAB R2006b
"Microsoft .NET Framework 1.1  (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 2.0 Language Pack - DEU" = Microsoft .NET Framework 2.0 Language Pack - DEU
"Microsoft .NET Framework 2.0 Language Pack - FRA" = Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA
"Microsoft .NET Framework 2.0 Language Pack - JPN" = Microsoft .NET Framework 2.0 日本語 Language Pack
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox 4.0.1 (x86 pl)" = Mozilla Firefox 4.0.1 (x86 pl)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NI Uninstaller" = National Instruments Software
"Nokia Ovi Suite" = Nokia Ovi Suite
"Notepad++" = Notepad++
"NVIDIA" = NVIDIA Windows 2000/XP Display Drivers
"Power Saver" = Program firmy TOSHIBA do oszczędzania energii
"PROSet" = Intel(R) PRO Network Adapters and Drivers
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"TDspBtn" = Narzędzie TOSHIBA do zmiany wyświetlacza
"TFNF5" = Narzędzie obsługi klawiszy skrótu do zmiany wyświetlacza
"TOSHIBA Software Modem" = TOSHIBA Software Modem
"TOSHIBA Utilities" = TOSHIBA Utilities
"Totalcmd" = Total Commander (Remove or Repair)
"WampServer 2_is1" = WampServer 2.1
"Wdf01009" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01009" = Microsoft User-Mode Driver Framework Feature Pack 1.9

[color=#E56717]========== Last 10 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2011-04-29 14:24:35 | Computer Name = LABTOHSIBA | Source = MySQL | ID = 100
Description = Do you already have another mysqld server running on port: 3306 ?    For
more information, see Help and Support Center at http://www.mysql.com.   

Error - 2011-04-29 14:24:35 | Computer Name = LABTOHSIBA | Source = MySQL | ID = 100
Description = Aborting     For more information, see Help and Support Center at http://www.mysql.com.



Error - 2011-04-29 14:47:15 | Computer Name = LABTOHSIBA | Source = MySQL | ID = 100
Description = Do you already have another mysqld server running on port: 3306 ?    For
more information, see Help and Support Center at http://www.mysql.com.   

Error - 2011-04-29 14:47:15 | Computer Name = LABTOHSIBA | Source = MySQL | ID = 100
Description = Aborting     For more information, see Help and Support Center at http://www.mysql.com.



Error - 2011-05-01 13:54:06 | Computer Name = LABTOHSIBA | Source = Google Update | ID = 20
Description =

Error - 2011-05-01 14:52:28 | Computer Name = LABTOHSIBA | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca iexplore.exe, wersja 8.0.6001.18702, moduł
zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2011-05-01 14:52:28 | Computer Name = LABTOHSIBA | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca iexplore.exe, wersja 8.0.6001.18702, moduł
zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.

Error - 2011-05-04 02:54:06 | Computer Name = LABTOHSIBA | Source = Google Update | ID = 20
Description =

Error - 2011-05-04 03:54:07 | Computer Name = LABTOHSIBA | Source = Google Update | ID = 20
Description =

Error - 2011-05-05 07:54:05 | Computer Name = LABTOHSIBA | Source = Google Update | ID = 20
Description =

[ System Events ]
Error - 2011-05-07 09:51:23 | Computer Name = LABTOHSIBA | Source = Service Control Manager | ID = 7034
Description = Usługa National Instruments PSP Server Locator niespodziewanie zakończyła
pracę. Wystąpiło to razy: 1.

Error - 2011-05-07 09:51:40 | Computer Name = LABTOHSIBA | Source = Service Control Manager | ID = 7034
Description = Usługa NI Configuration Manager niespodziewanie zakończyła pracę.
Wystąpiło to razy: 1.

Error - 2011-05-07 11:00:37 | Computer Name = LABTOHSIBA | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi MySQL51 z powodu następującego błędu:   %%3

Error - 2011-05-07 11:00:41 | Computer Name = LABTOHSIBA | Source = Service Control Manager | ID = 7026
Description = Nie można załadować następujących sterowników startu rozruchowego
lub systemowego:   IntelIde

Error - 2011-05-07 11:11:21 | Computer Name = LABTOHSIBA | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi MySQL51 z powodu następującego błędu:   %%3

Error - 2011-05-07 11:11:23 | Computer Name = LABTOHSIBA | Source = Service Control Manager | ID = 7026
Description = Nie można załadować następujących sterowników startu rozruchowego
lub systemowego:   IntelIde

Error - 2011-05-07 11:27:34 | Computer Name = LABTOHSIBA | Source = atapi | ID = 262153
Description = Urządzenie \Device\Ide\IdePort0 nie odpowiedziało w ramach ustalonego
limitu czasu.

Error - 2011-05-07 11:34:03 | Computer Name = LABTOHSIBA | Source = atapi | ID = 262153
Description = Urządzenie \Device\Ide\IdePort0 nie odpowiedziało w ramach ustalonego
limitu czasu.

Error - 2011-05-07 11:34:06 | Computer Name = LABTOHSIBA | Source = atapi | ID = 262153
Description = Urządzenie \Device\Ide\IdePort0 nie odpowiedziało w ramach ustalonego
limitu czasu.

Error - 2011-05-07 11:34:08 | Computer Name = LABTOHSIBA | Source = atapi | ID = 262153
Description = Urządzenie \Device\Ide\IdePort0 nie odpowiedziało w ramach ustalonego
limitu czasu.


< End of report >
Ostatnio edytowany przez breidak, 23 Maj 2011, 19:45, edytowano w sumie 1 raz
breidak
~user
 
Posty: 50
Dołączenie: 05 Sie 2005, 15:57



Komp wolno chodzi

Postprzez wojtas 07 Maj 2011, 22:14

daj raport z MBRCheck i log ze Kaspersky TDSSKiller, jeśli coś znajdzie dajesz Skip
Image
Awatar użytkownika
wojtas
*mod
 
Posty: 18165
Dołączenie: 13 Sty 2006, 16:00
Miejscowość: Krzeszyce
Pochwały: 1656



Komp wolno chodzi

Postprzez breidak 07 Maj 2011, 23:20

MBRcheck

Kod: Zaznacz wszystko
MBRCheck, version 1.2.3
(c) 2010, AD

Command-line:         
Windows Version:      Windows XP Professional
Windows Information:      Dodatek Service Pack 3 (build 2600)
Logical Drives Mask:      0x0000003c

Kernel Drivers (total 166):
  0x804D7000 \WINDOWS\system32\ntoskrnl.exe
  0x806EF000 \WINDOWS\system32\hal.dll
  0xF8A36000 \WINDOWS\system32\KDCOM.DLL
  0xF8946000 \WINDOWS\system32\BOOTVID.dll
  0xF87B6000 nipbcfk.sys
  0xF83FF000 sptd.sys
  0xF83D0000 ACPI.sys
  0xF8A38000 \WINDOWS\system32\DRIVERS\WMILIB.SYS
  0xF8536000 isapnp.sys
  0xF8546000 ohci1394.sys
  0xF8556000 \WINDOWS\system32\DRIVERS\1394BUS.SYS
  0xF83BF000 pci.sys
  0xF894A000 compbatt.sys
  0xF894E000 \WINDOWS\system32\DRIVERS\BATTC.SYS
  0xF8AFE000 pciide.sys
  0xF87BE000 \WINDOWS\system32\DRIVERS\PCIIDEX.SYS
  0xF83A1000 pcmcia.sys
  0xF8566000 MountMgr.sys
  0xF8382000 ftdisk.sys
  0xF8A3C000 dmload.sys
  0xF835C000 dmio.sys
  0xF87C6000 PartMgr.sys
  0xF8576000 VolSnap.sys
  0xF8344000 atapi.sys
  0xF8586000 disk.sys
  0xF8596000 \WINDOWS\system32\DRIVERS\CLASSPNP.SYS
  0xF8324000 fltmgr.sys
  0xF8312000 sr.sys
  0xF82FB000 KSecDD.sys
  0xF826E000 Ntfs.sys
  0xF8241000 NDIS.sys
  0xF8952000 TVALZ.SYS
  0xF81A3000 nipalk.sys
  0xF87CE000 \WINDOWS\System32\drivers\TDI.SYS
  0xF8189000 Mup.sys
  0xF85A6000 agp440.sys
  0xF787D000 \SystemRoot\system32\DRIVERS\nv4_mini.sys
  0xF7869000 \SystemRoot\system32\DRIVERS\VIDEOPRT.SYS
  0xF88A6000 \SystemRoot\system32\DRIVERS\usbuhci.sys
  0xF77F4000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
  0xF88AE000 \SystemRoot\system32\DRIVERS\usbehci.sys
  0xF7A2C000 \SystemRoot\system32\DRIVERS\nic1394.sys
  0xF7790000 \SystemRoot\system32\DRIVERS\e100b325.sys
  0xF88B6000 \SystemRoot\system32\DRIVERS\tsdhd.sys
  0xF7A1C000 \SystemRoot\system32\DRIVERS\i8042prt.sys
  0xF88BE000 \SystemRoot\system32\DRIVERS\kbdclass.sys
  0xF773A000 \SystemRoot\system32\DRIVERS\SynTP.sys
  0xF8A66000 \SystemRoot\system32\DRIVERS\USBD.SYS
  0xF88C6000 \SystemRoot\system32\DRIVERS\mouclass.sys
  0xF7A0C000 \SystemRoot\system32\DRIVERS\smcirda.sys
  0xF8161000 \SystemRoot\system32\DRIVERS\irenum.sys
  0xF7726000 \SystemRoot\system32\DRIVERS\parport.sys
  0xF79FC000 \SystemRoot\system32\DRIVERS\imapi.sys
  0xF79EC000 \SystemRoot\system32\DRIVERS\cdrom.sys
  0xF79DC000 \SystemRoot\system32\DRIVERS\redbook.sys
  0xF7703000 \SystemRoot\system32\DRIVERS\ks.sys
  0xF76CA000 \SystemRoot\system32\drivers\stac97.sys
  0xF76A6000 \SystemRoot\system32\drivers\portcls.sys
  0xF79CC000 \SystemRoot\system32\drivers\drmk.sys
  0xF7589000 \SystemRoot\system32\DRIVERS\AGRSM.sys
  0xF88CE000 \SystemRoot\System32\Drivers\Modem.SYS
  0xF814D000 \SystemRoot\system32\DRIVERS\CmBatt.sys
  0xF79BC000 \SystemRoot\system32\DRIVERS\intelppm.sys
  0xF8BF6000 \SystemRoot\system32\DRIVERS\audstub.sys
  0xF88D6000 \SystemRoot\system32\DRIVERS\rasirda.sys
  0xF85F6000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
  0xF8149000 \SystemRoot\system32\DRIVERS\ndistapi.sys
  0xF7572000 \SystemRoot\system32\DRIVERS\ndiswan.sys
  0xF8606000 \SystemRoot\system32\DRIVERS\raspppoe.sys
  0xF8616000 \SystemRoot\system32\DRIVERS\raspptp.sys
  0xF7561000 \SystemRoot\system32\DRIVERS\psched.sys
  0xF8626000 \SystemRoot\system32\DRIVERS\msgpc.sys
  0xF88DE000 \SystemRoot\system32\DRIVERS\ptilink.sys
  0xF88E6000 \SystemRoot\system32\DRIVERS\raspti.sys
  0xF7509000 \SystemRoot\system32\DRIVERS\rdpdr.sys
  0xF8646000 \SystemRoot\system32\DRIVERS\termdd.sys
  0xF8A6E000 \SystemRoot\system32\DRIVERS\swenum.sys
  0xF74AB000 \SystemRoot\system32\DRIVERS\update.sys
  0xF812D000 \SystemRoot\system32\DRIVERS\mssmbios.sys
  0xF8656000 \SystemRoot\System32\Drivers\NDProxy.SYS
  0xF8666000 \SystemRoot\system32\DRIVERS\usbhub.sys
  0xF8A7C000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
  0xF8BB7000 \SystemRoot\System32\Drivers\Null.SYS
  0xF8A7E000 \SystemRoot\System32\Drivers\Beep.SYS
  0xF6410000 \SystemRoot\system32\DRIVERS\ehdrv.sys
  0xF8906000 \SystemRoot\System32\drivers\vga.sys
  0xF8A80000 \SystemRoot\System32\Drivers\mnmdd.SYS
  0xF8A82000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
  0xF890E000 \SystemRoot\System32\Drivers\Msfs.SYS
  0xF8916000 \SystemRoot\System32\Drivers\Npfs.SYS
  0xF8A12000 \SystemRoot\system32\DRIVERS\rasacd.sys
  0xF63DD000 \SystemRoot\system32\DRIVERS\ipsec.sys
  0xF6384000 \SystemRoot\system32\DRIVERS\tcpip.sys
  0xF635C000 \SystemRoot\system32\DRIVERS\netbt.sys
  0xF6343000 \SystemRoot\system32\DRIVERS\epfwtdir.sys
  0xF6321000 \SystemRoot\System32\drivers\afd.sys
  0xF8696000 \SystemRoot\system32\DRIVERS\netbios.sys
  0xF6256000 \SystemRoot\system32\DRIVERS\rdbss.sys
  0xF61E6000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
  0xF86A6000 \SystemRoot\System32\Drivers\Fips.SYS
  0xF61C0000 \SystemRoot\system32\DRIVERS\ipnat.sys
  0xF86B6000 \SystemRoot\system32\DRIVERS\wanarp.sys
  0xF86C6000 \SystemRoot\system32\DRIVERS\arp1394.sys
  0xF8706000 \SystemRoot\System32\Drivers\Cdfs.SYS
  0xF6180000 \SystemRoot\System32\Drivers\dump_atapi.sys
  0xF8A8C000 \SystemRoot\System32\Drivers\dump_WMILIB.SYS
  0xBF800000 \SystemRoot\System32\win32k.sys
  0xF7545000 \SystemRoot\System32\drivers\Dxapi.sys
  0xF891E000 \SystemRoot\System32\watchdog.sys
  0xBF000000 \SystemRoot\System32\drivers\dxg.sys
  0xF8B8D000 \SystemRoot\System32\drivers\dxgthk.sys
  0xBF012000 \SystemRoot\System32\nv4_disp.dll
  0xBF3C7000 \SystemRoot\System32\ATMFD.DLL
  0xF1875000 \SystemRoot\system32\DRIVERS\eamon.sys
  0xF185E000 \SystemRoot\system32\DRIVERS\WudfPf.sys
  0xF16E0000 \SystemRoot\system32\DRIVERS\irda.sys
  0xF1826000 \SystemRoot\system32\DRIVERS\ndisuio.sys
  0xF1822000 \SystemRoot\system32\DRIVERS\netdevio.sys
  0xF158B000 \SystemRoot\system32\drivers\wdmaud.sys
  0xF19E1000 \SystemRoot\system32\drivers\sysaudio.sys
  0xF1378000 \SystemRoot\system32\DRIVERS\mrxdav.sys
  0xF8BBB000 \SystemRoot\System32\Drivers\cvintdrv.SYS
  0xF8A3A000 \SystemRoot\System32\Drivers\ParVdm.SYS
  0xF12D0000 \SystemRoot\system32\DRIVERS\srv.sys
  0xF1776000 \SystemRoot\system32\drivers\nibffrk.dll
  0xF117B000 \SystemRoot\system32\DRIVERS\nicanpk.dll
  0xF881E000 \??\C:\WINDOWS\system32\drivers\nicdrkl.sys
  0xF1137000 \??\C:\WINDOWS\system32\drivers\nicdrk.dll
  0xF12A0000 \??\C:\WINDOWS\system32\drivers\niorbk.dll
  0xF1067000 \??\C:\WINDOWS\system32\drivers\nimdbgk.dll
  0xF1050000 \??\C:\WINDOWS\system32\drivers\nimstsk.dll
  0xF1013000 \??\C:\WINDOWS\system32\drivers\nimxdfk.dll
  0xF0FDA000 \??\C:\WINDOWS\system32\drivers\nidmxfk.dll
  0xF1290000 \??\C:\WINDOWS\system32\drivers\nimxpk.dll
  0xF8826000 \??\C:\WINDOWS\system32\drivers\nidimkl.sys
  0xF0F0E000 \??\C:\WINDOWS\system32\drivers\nidimk.dll
  0xF8836000 \??\C:\WINDOWS\system32\drivers\nimdbgkl.sys
  0xF883E000 \??\C:\WINDOWS\system32\drivers\nidmxfkl.sys
  0xF8846000 \??\C:\WINDOWS\system32\drivers\nimstskl.sys
  0xF884E000 \??\C:\WINDOWS\system32\drivers\nimxdfkl.sys
  0xF14DD000 \SystemRoot\System32\Drivers\niembrtk.SYS
  0xF14CD000 \SystemRoot\system32\drivers\nimdsk.dll
  0xF885E000 \??\C:\WINDOWS\system32\drivers\nimru2kl.sys
  0xF0EA4000 \??\C:\WINDOWS\system32\drivers\nimru2k.dll
  0xF14BD000 \??\C:\WINDOWS\system32\drivers\nimslk.dll
  0xF0E7A000 \??\C:\WINDOWS\system32\drivers\nimsrlk.dll
  0xF886E000 \??\C:\WINDOWS\system32\drivers\niorbkl.sys
  0xF8876000 \??\C:\WINDOWS\system32\drivers\nipxirmkl.sys
  0xF0E65000 \??\C:\WINDOWS\system32\drivers\nipxirmk.dll
  0xF0E15000 \SystemRoot\system32\drivers\nisldk.dll
  0xF0DF5000 \SystemRoot\system32\drivers\nistck.dll
  0xF8816000 \SystemRoot\System32\drivers\NiViPxiKl.sys
  0xF882E000 \SystemRoot\System32\drivers\NiViPxiK.sys
  0xF1270000 \SystemRoot\system32\drivers\niarbk.dll
  0xF0AC9000 \SystemRoot\System32\Drivers\Nidaq32k.SYS
  0xF0AB8000 \SystemRoot\system32\drivers\nidmmk.dll
  0xF0A9E000 \SystemRoot\system32\drivers\nigplk.dll
  0xF0A47000 \SystemRoot\system32\drivers\nihsdrk.dll
  0xF1250000 \SystemRoot\system32\drivers\nilvaik.dll
  0xF09AC000 \SystemRoot\system32\drivers\nisrcdk.dll
  0xF08EE000 \SystemRoot\system32\drivers\nidwgk.dll
  0xF0089000 \SystemRoot\System32\Drivers\HTTP.sys
  0xEFF2A000 \??\C:\DOCUME~1\Toshiba\USTAWI~1\Temp\ufriykow.sys
  0xF0D1D000 \SystemRoot\system32\DRIVERS\USBSTOR.SYS
  0xBA730000 \SystemRoot\System32\Drivers\Fastfat.SYS
  0x7C900000 \WINDOWS\system32\ntdll.dll

Processes (total 53):
       0 System Idle Process
       4 System
     648 C:\WINDOWS\system32\smss.exe
     716 csrss.exe
     744 C:\WINDOWS\system32\winlogon.exe
     788 C:\WINDOWS\system32\services.exe
     800 C:\WINDOWS\system32\lsass.exe
     960 C:\WINDOWS\system32\svchost.exe
    1036 svchost.exe
    1132 C:\WINDOWS\system32\svchost.exe
    1168 C:\WINDOWS\system32\svchost.exe
    1396 svchost.exe
    1568 svchost.exe
    1740 C:\WINDOWS\system32\spoolsv.exe
    1960 svchost.exe
    1992 C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
    2024 C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
     240 C:\Program Files\Java\jre6\bin\jqs.exe
     288 C:\WINDOWS\system32\lkcitdl.exe
     328 C:\WINDOWS\system32\lkads.exe
     412 C:\WINDOWS\system32\lktsrv.exe
     976 C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
    1012 C:\Program Files\National Instruments\MAX\nimxs.exe
    1432 C:\WINDOWS\system32\nipalsm.exe
    1452 C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe
    1804 C:\WINDOWS\system32\RTProxy.exe
    1820 C:\WINDOWS\system32\nisvcloc.exe
    1528 C:\Program Files\National Instruments\Shared\Tagger\tagsrv.exe
    1884 C:\WINDOWS\system32\nvsvc32.exe
    1224 C:\WINDOWS\system32\svchost.exe
    2196 C:\Program Files\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe
    2220 C:\WINDOWS\system32\nipalsm.exe
    2584 C:\VXIPNP\WinNT\NIvisa\niLxiDiscovery.exe
    2864 alg.exe
    3512 C:\WINDOWS\system32\wbem\wmiapsrv.exe
    3964 C:\WINDOWS\explorer.exe
     524 C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
     540 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
     560 C:\Program Files\SigmaTel\SigmaTel AC97 Audio Drivers\stacmon.exe
     568 C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
    1112 C:\WINDOWS\system32\00THotkey.exe
    1556 C:\WINDOWS\system32\TFNF5.exe
    1564 C:\Program Files\ltmoh\ltmoh.exe
    1668 C:\WINDOWS\agrsmmsg.exe
    1856 C:\Program Files\TOSHIBA\TOSHIBA Controls\TFncKy.exe
    1924 C:\Program Files\Common Files\Java\Java Update\jusched.exe
    2104 C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe
    2120 C:\WINDOWS\system32\ctfmon.exe
    2472 C:\WINDOWS\system32\TPSBattM.exe
    3272 C:\Program Files\Mozilla Firefox\firefox.exe
    1616 C:\Program Files\Mozilla Firefox\plugin-container.exe
     152 C:\Program Files\totalcmd\TOTALCMD.EXE
    3308 C:\Documents and Settings\Toshiba\Pulpit\MBRCheck.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`00007e00  (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x00000008`8b905a00  (NTFS)

PhysicalDrive0 Model Number: TOSHIBAMK8025GAS, Rev: KA024A 

      Size  Device Name          MBR Status
  --------------------------------------------
     74 GB  \\.\PhysicalDrive0   Windows XP MBR code detected
            SHA1: 858845D53EA37CAD905BAB010542C912FBC33C8C


Done!


Dodano 07.05.2011 22:34:58:
i kaspersky

Kod: Zaznacz wszystko
2011/05/07 23:31:22.0121 3380   TDSS rootkit removing tool 2.5.0.0 May  1 2011 14:20:16
2011/05/07 23:31:22.0902 3380   ================================================================================
2011/05/07 23:31:22.0902 3380   SystemInfo:
2011/05/07 23:31:22.0902 3380   
2011/05/07 23:31:22.0902 3380   OS Version: 5.1.2600 ServicePack: 3.0
2011/05/07 23:31:22.0902 3380   Product type: Workstation
2011/05/07 23:31:22.0902 3380   ComputerName: LABTOHSIBA
2011/05/07 23:31:22.0902 3380   UserName: Toshiba
2011/05/07 23:31:22.0902 3380   Windows directory: C:\WINDOWS
2011/05/07 23:31:22.0902 3380   System windows directory: C:\WINDOWS
2011/05/07 23:31:22.0902 3380   Processor architecture: Intel x86
2011/05/07 23:31:22.0902 3380   Number of processors: 1
2011/05/07 23:31:22.0902 3380   Page size: 0x1000
2011/05/07 23:31:22.0902 3380   Boot type: Normal boot
2011/05/07 23:31:22.0902 3380   ================================================================================
2011/05/07 23:31:25.0196 3380   Initialize success
2011/05/07 23:31:35.0210 3836   ================================================================================
2011/05/07 23:31:35.0210 3836   Scan started
2011/05/07 23:31:35.0210 3836   Mode: Manual;
2011/05/07 23:31:35.0210 3836   ================================================================================
2011/05/07 23:32:03.0000 3836   ACPI            (05118282f5d039595a2b92b4a4afe197) C:\WINDOWS\system32\DRIVERS\ACPI.sys
2011/05/07 23:32:03.0311 3836   ACPIEC          (66a42b7db194e24b973bbcce840a0f3f) C:\WINDOWS\system32\drivers\ACPIEC.sys
2011/05/07 23:32:03.0531 3836   aec             (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
2011/05/07 23:32:03.0951 3836   AFD             (7618d5218f2a614672ec61a80d854a37) C:\WINDOWS\System32\drivers\afd.sys
2011/05/07 23:32:04.0733 3836   AgereSoftModem  (e66ae825c42b668a90e67e7e41eeeee7) C:\WINDOWS\system32\DRIVERS\AGRSM.sys
2011/05/07 23:32:05.0654 3836   agp440          (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
2011/05/07 23:32:07.0116 3836   Arp1394         (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
2011/05/07 23:32:09.0940 3836   AsyncMac        (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
2011/05/07 23:32:10.0130 3836   atapi           (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
2011/05/07 23:32:10.0531 3836   Atmarpc         (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
2011/05/07 23:32:10.0841 3836   audstub         (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
2011/05/07 23:32:11.0062 3836   Beep            (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
2011/05/07 23:32:11.0212 3836   cbidf2k         (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
2011/05/07 23:32:11.0322 3836   CCDECODE        (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
2011/05/07 23:32:11.0592 3836   Cdaudio         (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
2011/05/07 23:32:11.0823 3836   Cdfs            (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
2011/05/07 23:32:11.0973 3836   Cdrom           (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
2011/05/07 23:32:12.0374 3836   CmBatt          (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
2011/05/07 23:32:12.0644 3836   Compbatt        (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
2011/05/07 23:32:13.0025 3836   cvintdrv        (dbd89bc0dbe00dcd245be8f61dbee291) C:\WINDOWS\system32\drivers\cvintdrv.sys
2011/05/07 23:32:13.0405 3836   Disk            (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
2011/05/07 23:32:13.0545 3836   dmboot          (bc9219abc5696942e6f9ac8a9b28670f) C:\WINDOWS\system32\drivers\dmboot.sys
2011/05/07 23:32:13.0776 3836   dmio            (5fa232e3ba6e1346f9f5a7e519320cb0) C:\WINDOWS\system32\drivers\dmio.sys
2011/05/07 23:32:13.0866 3836   dmload          (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
2011/05/07 23:32:14.0066 3836   DMusic          (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
2011/05/07 23:32:14.0417 3836   drmkaud         (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
2011/05/07 23:32:14.0677 3836   E100B           (fae8b6b311f898df3d19bc638e980ca5) C:\WINDOWS\system32\DRIVERS\e100b325.sys
2011/05/07 23:32:14.0867 3836   eamon           (af82dc664e3d8e2cba3b95e68f6448a7) C:\WINDOWS\system32\DRIVERS\eamon.sys
2011/05/07 23:32:15.0027 3836   ehdrv           (686a799c1bf1b18941994daf9f45db06) C:\WINDOWS\system32\DRIVERS\ehdrv.sys
2011/05/07 23:32:15.0168 3836   epfwtdir        (3a7fba5c06dbcffc7d062fe705397a96) C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
2011/05/07 23:32:15.0428 3836   Fastfat         (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
2011/05/07 23:32:15.0588 3836   Fdc             (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
2011/05/07 23:32:15.0829 3836   Fips            (09e2a4d33f81a06a8aab2ba0a0b5d235) C:\WINDOWS\system32\drivers\Fips.sys
2011/05/07 23:32:15.0979 3836   Flpydisk        (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
2011/05/07 23:32:16.0129 3836   FltMgr          (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
2011/05/07 23:32:16.0369 3836   Fs_Rec          (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
2011/05/07 23:32:16.0610 3836   Ftdisk          (ed6d921d8ab423138fb35beee6d6a6cb) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
2011/05/07 23:32:16.0900 3836   Gpc             (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
2011/05/07 23:32:17.0120 3836   gpibclsb        (2a954128fcfed41e7ad289e70bdb7004) C:\WINDOWS\System32\Drivers\gpibclsb.sys
2011/05/07 23:32:17.0421 3836   gpibclsd        (31b923554cbe9c451518f32acb8da049) C:\WINDOWS\System32\Drivers\gpibclsd.sys
2011/05/07 23:32:17.0581 3836   HidUsb          (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
2011/05/07 23:32:17.0912 3836   HTTP            (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
2011/05/07 23:32:18.0693 3836   i8042prt        (177b372af55c4460d0968b5f1d02aa1c) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
2011/05/07 23:32:18.0843 3836   Imapi           (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
2011/05/07 23:32:19.0133 3836   IntelIde        (0d3140db49f05b2b69467bd5daf1c94b) C:\WINDOWS\system32\DRIVERS\intelide.sys
2011/05/07 23:32:19.0213 3836   intelppm        (da153edc09de8c4f846c085caa39d1cc) C:\WINDOWS\system32\DRIVERS\intelppm.sys
2011/05/07 23:32:19.0344 3836   Ip6Fw           (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
2011/05/07 23:32:19.0584 3836   IpFilterDriver  (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
2011/05/07 23:32:19.0894 3836   IpInIp          (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
2011/05/07 23:32:20.0095 3836   IpNat           (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
2011/05/07 23:32:20.0195 3836   IPSec           (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
2011/05/07 23:32:20.0325 3836   irda            (aca5e7b54409f9cb5eed97ed0c81120e) C:\WINDOWS\system32\DRIVERS\irda.sys
2011/05/07 23:32:20.0545 3836   IRENUM          (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
2011/05/07 23:32:20.0826 3836   isapnp          (c8eef2e93835b81bd335de2123121283) C:\WINDOWS\system32\DRIVERS\isapnp.sys
2011/05/07 23:32:21.0096 3836   Kbdclass        (2aeca45d4aeaacbdcb77ad11184e4601) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
2011/05/07 23:32:21.0437 3836   kmixer          (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
2011/05/07 23:32:21.0667 3836   KSecDD          (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
2011/05/07 23:32:22.0138 3836   lvalarmk        (bad54f937b43f0e75db242c1f40c2dcf) C:\WINDOWS\system32\drivers\lvalarmk.sys
2011/05/07 23:32:22.0438 3836   mnmdd           (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
2011/05/07 23:32:22.0598 3836   Modem           (4a068db7dc37d5afedb6512d2931d7b3) C:\WINDOWS\system32\drivers\Modem.sys
2011/05/07 23:32:22.0698 3836   Mouclass        (fbed3df6b884f8cf00447b73507f2c48) C:\WINDOWS\system32\DRIVERS\mouclass.sys
2011/05/07 23:32:22.0839 3836   mouhid          (ecec1e6cd558ab80f944f31326e9d3b5) C:\WINDOWS\system32\DRIVERS\mouhid.sys
2011/05/07 23:32:23.0009 3836   MountMgr        (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
2011/05/07 23:32:23.0189 3836   MRxDAV          (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
2011/05/07 23:32:23.0620 3836   MRxSmb          (0ea4d8ed179b75f8afa7998ba22285ca) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
2011/05/07 23:32:23.0820 3836   Msfs            (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
2011/05/07 23:32:24.0020 3836   MSKSSRV         (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
2011/05/07 23:32:24.0151 3836   MSPCLOCK        (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
2011/05/07 23:32:24.0341 3836   MSPQM           (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
2011/05/07 23:32:24.0501 3836   mssmbios        (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
2011/05/07 23:32:24.0651 3836   MSTEE           (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
2011/05/07 23:32:24.0962 3836   Mup             (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
2011/05/07 23:32:25.0182 3836   NABTSFEC        (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
2011/05/07 23:32:25.0412 3836   NatMotion       (5f72f50f0bba649b3f0ac97a27339356) C:\WINDOWS\system32\drivers\NatMotion.sys
2011/05/07 23:32:25.0643 3836   NDIS            (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
2011/05/07 23:32:25.0913 3836   NdisIP          (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
2011/05/07 23:32:26.0103 3836   NdisTapi        (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
2011/05/07 23:32:26.0344 3836   Ndisuio         (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
2011/05/07 23:32:26.0504 3836   NdisWan         (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
2011/05/07 23:32:26.0674 3836   NDProxy         (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
2011/05/07 23:32:26.0864 3836   NetBIOS         (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
2011/05/07 23:32:27.0005 3836   NetBT           (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
2011/05/07 23:32:27.0275 3836   Netdevio        (1265eb253ed4ebe4acb3bd5f548ff796) C:\WINDOWS\system32\DRIVERS\netdevio.sys
2011/05/07 23:32:27.0435 3836   ni1006k         (a8df93069d9c34c2af1b5f061b9bab1b) C:\WINDOWS\system32\drivers\ni1006k.sys
2011/05/07 23:32:27.0555 3836   ni1045k         (b492ad30c94d869dcc964f571ed0d964) C:\WINDOWS\system32\drivers\ni1045kl.sys
2011/05/07 23:32:27.0756 3836   ni1065k         (603bf4f6ea5885269c2b9634299b07ae) C:\WINDOWS\system32\drivers\ni1065k.sys
2011/05/07 23:32:28.0246 3836   niarbk          (5d249c5365f819f70882570a1746c9d2) C:\WINDOWS\system32\drivers\niarbk.dll
2011/05/07 23:32:28.0417 3836   nibffrk         (ec11f3561e9ef42b515839c5feed393b) C:\WINDOWS\system32\drivers\nibffrk.dll
2011/05/07 23:32:28.0627 3836   NIC1394         (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
2011/05/07 23:32:28.0847 3836   nicanpk         (67085ea6d33db62c3173dabba34a9a35) C:\WINDOWS\system32\DRIVERS\nicanpk.dll
2011/05/07 23:32:29.0018 3836   nicdrk          (6039f84cac8253bdf29192f6f97d9e9f) C:\WINDOWS\system32\drivers\nicdrkl.sys
2011/05/07 23:32:29.0188 3836   nicsrk          (711f838ab0bf015567b7bf47e15dbea9) C:\WINDOWS\system32\drivers\nicsrkl.sys
2011/05/07 23:32:29.0478 3836   Nidaq32k        (d52892932ab7bafbea7191525d436818) C:\WINDOWS\system32\drivers\Nidaq32k.sys
2011/05/07 23:32:29.0618 3836   nidimk          (ce49187b110490df57605ced0912608c) C:\WINDOWS\system32\drivers\nidimkl.sys
2011/05/07 23:32:29.0819 3836   nidmmk          (8a91c04708b47abb8cc6606dd6aa5767) C:\WINDOWS\system32\drivers\nidmmk.dll
2011/05/07 23:32:29.0959 3836   nidmxfk         (d12ffc501f29195e8731a536efa232ac) C:\WINDOWS\system32\drivers\nidmxfkl.sys
2011/05/07 23:32:30.0119 3836   nidsark         (09e429826d82070c1224b86007d7fd72) C:\WINDOWS\system32\drivers\nidsarkl.sys
2011/05/07 23:32:30.0399 3836   nidwgk          (9330a903b91e8f19687bd9e9ff072fce) C:\WINDOWS\system32\drivers\nidwgk.dll
2011/05/07 23:32:30.0600 3836   niembrtk        (f993bc99cf9fe2e6a75ecebe4ebf34a3) C:\WINDOWS\system32\drivers\niembrtk.sys
2011/05/07 23:32:30.0770 3836   niemrk          (f661be358f58bf06730a4b28b5a9d773) C:\WINDOWS\system32\drivers\niemrkl.sys
2011/05/07 23:32:30.0920 3836   niemrkw         (dee16dbe2a98610a090035c7232bd23e) C:\WINDOWS\system32\DRIVERS\niemrkw.sys
2011/05/07 23:32:31.0131 3836   niesrk          (1c297ce5529006e528bff59ccf05f169) C:\WINDOWS\system32\drivers\niesrkl.sys
2011/05/07 23:32:31.0401 3836   nifslk          (af8207d298e06c2d3d3242dd8dad196d) C:\WINDOWS\system32\drivers\nifslkl.sys
2011/05/07 23:32:31.0581 3836   nigplk          (ed44f0baecac8cc212fbbc1f13a38ba1) C:\WINDOWS\system32\drivers\nigplk.dll
2011/05/07 23:32:31.0842 3836   nihsdrk         (5779cec838f0e9cb97cd535561275002) C:\WINDOWS\system32\drivers\nihsdrk.dll
2011/05/07 23:32:31.0962 3836   nilvaik         (f7d8b5d6f42637a00edb48849def285b) C:\WINDOWS\system32\drivers\nilvaik.dll
2011/05/07 23:32:32.0282 3836   nimdbgk         (fc83df410bb8c09608a9e86c28a70825) C:\WINDOWS\system32\drivers\nimdbgkl.sys
2011/05/07 23:32:32.0412 3836   nimdsk          (dd4b89019ab1eca5c04757e2f7d8a9e4) C:\WINDOWS\system32\drivers\nimdsk.dll
2011/05/07 23:32:32.0573 3836   nimru2k         (bb6378f6f0582b4cb0d898e6af0d3849) C:\WINDOWS\system32\drivers\nimru2kl.sys
2011/05/07 23:32:32.0773 3836   nimsdrk         (d7af65cc84bfc2ad9f6502706563588c) C:\WINDOWS\system32\drivers\nimsdrkl.sys
2011/05/07 23:32:32.0983 3836   nimslk          (99521722c0858ab23e06855e1069c725) C:\WINDOWS\system32\drivers\nimslk.dll
2011/05/07 23:32:33.0143 3836   nimsrlk         (acfd05455df010e85e0c8a56e9c255c3) C:\WINDOWS\system32\drivers\nimsrlk.dll
2011/05/07 23:32:33.0264 3836   nimstsk         (049af1ff82db027a6dadf6c8587d6bd5) C:\WINDOWS\system32\drivers\nimstskl.sys
2011/05/07 23:32:33.0504 3836   nimxdfk         (2567d0feb6cb457b8625484c15fd2c46) C:\WINDOWS\system32\drivers\nimxdfkl.sys
2011/05/07 23:32:33.0624 3836   nimxpk          (f0762b86065bc7d953f20d1716063ce6) C:\WINDOWS\system32\drivers\nimxpkl.sys
2011/05/07 23:32:33.0814 3836   ninshsdk        (0de79f7eb245bbf2c087457c4edb7538) C:\WINDOWS\system32\drivers\ninshsdkl.sys
2011/05/07 23:32:33.0995 3836   niorbk          (8e35e0161eb253cd699b320244bcfdd7) C:\WINDOWS\system32\drivers\niorbkl.sys
2011/05/07 23:32:34.0185 3836   nipalfwedl      (059691303c5fc703d6270773fae7786e) C:\WINDOWS\system32\drivers\nipalfwedl.sys
2011/05/07 23:32:34.0415 3836   NIPALK          (f3f27ad52eb6dac685eb22780d7a3c03) C:\WINDOWS\system32\drivers\nipalk.sys
2011/05/07 23:32:34.0586 3836   nipalusbedl     (4a0dd2db3f5a94a5bc471f99de0682a5) C:\WINDOWS\system32\drivers\nipalusbedl.sys
2011/05/07 23:32:34.0836 3836   nipbcfk         (2ddb15147e226bf2b6272fd3d5384008) C:\WINDOWS\system32\drivers\nipbcfk.sys
2011/05/07 23:32:35.0006 3836   nipxigpk        (1912641a3f404fbedf597e27c675b2dd) C:\WINDOWS\system32\drivers\nipxigpk.sys
2011/05/07 23:32:35.0166 3836   nipxirmk        (e191d28f9b5be9bd508fe7b4978ebc8e) C:\WINDOWS\system32\drivers\nipxirmkl.sys
2011/05/07 23:32:35.0317 3836   niscdk          (e4389a95e110ad9cfebf85fc9ba8388e) C:\WINDOWS\system32\drivers\niscdkl.sys
2011/05/07 23:32:35.0477 3836   nisdigk         (3b89552892fb2daa5ddd126adbbd117b) C:\WINDOWS\system32\drivers\nisdigkl.sys
2011/05/07 23:32:35.0777 3836   nisftk          (0ccd6e717df1838b53e2e2daca235fd3) C:\WINDOWS\system32\drivers\nisftkl.sys
2011/05/07 23:32:35.0978 3836   nisldk          (25dc66d33e9560d3fc41344063533d6c) C:\WINDOWS\system32\drivers\nisldk.dll
2011/05/07 23:32:36.0208 3836   nispdk          (3cad0833c60bedf03d17fd6e740bb178) C:\WINDOWS\system32\drivers\nispdkl.sys
2011/05/07 23:32:36.0448 3836   nisrcdk         (fe4e75160e199b118c24089cf03c09e0) C:\WINDOWS\system32\drivers\nisrcdk.dll
2011/05/07 23:32:36.0648 3836   nissrk          (8a6aa3da9daca748273e007db1a19118) C:\WINDOWS\system32\drivers\nissrkl.sys
2011/05/07 23:32:36.0899 3836   nistc2k         (f3e81b7b92dd962e674018c810a3025e) C:\WINDOWS\system32\drivers\nistc2kl.sys
2011/05/07 23:32:37.0089 3836   nistck          (c517992eb204652f4d5c0fc67e3d49c1) C:\WINDOWS\system32\drivers\nistck.dll
2011/05/07 23:32:37.0269 3836   nistcrk         (0a24b2f6179db04d7373df141bfa1e03) C:\WINDOWS\system32\drivers\nistcrkl.sys
2011/05/07 23:32:37.0470 3836   niswdk          (ddb620d7d781e2dfb75d082ddef795f8) C:\WINDOWS\system32\drivers\niswdkl.sys
2011/05/07 23:32:37.0720 3836   nitiork         (5c78b83500319b05722d29b46030d8ad) C:\WINDOWS\system32\drivers\nitiorkl.sys
2011/05/07 23:32:37.0990 3836   niufurk         (44965bbd3beb108513eebf466a7e6268) C:\WINDOWS\system32\drivers\niufurkl.sys
2011/05/07 23:32:38.0181 3836   NiViFWK         (2bacac11fc2fba226e0a8c5baf9b82a3) C:\WINDOWS\system32\drivers\NiViFWKl.sys
2011/05/07 23:32:38.0301 3836   NiViPciK        (78f4a463ce917c92da2eacc88e7182cf) C:\WINDOWS\system32\drivers\NiViPciKl.sys
2011/05/07 23:32:38.0511 3836   NiViPxiK        (25819de5202f8b9953b1b2ac0d22df8f) C:\WINDOWS\system32\drivers\NiViPxiKl.sys
2011/05/07 23:32:38.0882 3836   niwdk           (5810f4f61f330cbb36c0ae6800c1df1c) C:\WINDOWS\system32\drivers\niwdk.sys
2011/05/07 23:32:39.0152 3836   niwfrk          (549a5959a5fa757c5a7cfbf56fd48915) C:\WINDOWS\system32\drivers\niwfrkl.sys
2011/05/07 23:32:39.0262 3836   nixsrk          (c7c390f13f63613f333658bd4b41fa48) C:\WINDOWS\system32\drivers\nixsrkl.sys
2011/05/07 23:32:39.0392 3836   nmwcd           (48fb907b069524f2dc7ba62a0762850c) C:\WINDOWS\system32\drivers\ccdcmb.sys
2011/05/07 23:32:39.0593 3836   nmwcdc          (2914ceb789964141ac6e22c6bc980c42) C:\WINDOWS\system32\drivers\ccdcmbo.sys
2011/05/07 23:32:39.0923 3836   Npfs            (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
2011/05/07 23:32:40.0083 3836   Ntfs            (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
2011/05/07 23:32:40.0324 3836   Null            (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
2011/05/07 23:32:40.0674 3836   nv              (f94ff18dc1e047bfa88140c474595f08) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
2011/05/07 23:32:41.0025 3836   NwlnkFlt        (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
2011/05/07 23:32:41.0185 3836   NwlnkFwd        (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
2011/05/07 23:32:41.0485 3836   ohci1394        (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
2011/05/07 23:32:41.0676 3836   Parport         (2d4cdaebced17743aa9e25d3016dc229) C:\WINDOWS\system32\DRIVERS\parport.sys
2011/05/07 23:32:41.0916 3836   PartMgr         (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
2011/05/07 23:32:42.0026 3836   ParVdm          (453ec2c2a20a1382f564541918520eeb) C:\WINDOWS\system32\drivers\ParVdm.sys
2011/05/07 23:32:42.0166 3836   pccsmcfd        (fd2041e9ba03db7764b2248f02475079) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
2011/05/07 23:32:42.0387 3836   PCI             (6862c69168d787b85a7d95ccd33c694e) C:\WINDOWS\system32\DRIVERS\pci.sys
2011/05/07 23:32:42.0627 3836   PCIIde          (548cf2d6369eae441a4c6baa75bc4f0a) C:\WINDOWS\system32\DRIVERS\pciide.sys
2011/05/07 23:32:42.0807 3836   Pcmcia          (8db27f1ae9593c94095485305a583862) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
2011/05/07 23:32:43.0729 3836   PptpMiniport    (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
2011/05/07 23:32:43.0839 3836   PSched          (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
2011/05/07 23:32:43.0979 3836   Ptilink         (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
2011/05/07 23:32:44.0660 3836   RasAcd          (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
2011/05/07 23:32:44.0940 3836   Rasirda         (0207d26ddf796a193ccd9f83047bb5fc) C:\WINDOWS\system32\DRIVERS\rasirda.sys
2011/05/07 23:32:45.0231 3836   Rasl2tp         (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
2011/05/07 23:32:45.0351 3836   RasPppoe        (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
2011/05/07 23:32:45.0471 3836   Raspti          (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
2011/05/07 23:32:45.0641 3836   Rdbss           (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
2011/05/07 23:32:45.0732 3836   RDPCDD          (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
2011/05/07 23:32:46.0212 3836   rdpdr           (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
2011/05/07 23:32:46.0392 3836   RDPWD           (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
2011/05/07 23:32:46.0583 3836   redbook         (e0c7bbd18040b58651bac700c804861d) C:\WINDOWS\system32\DRIVERS\redbook.sys
2011/05/07 23:32:46.0853 3836   sdbus           (8d04819a3ce51b9eb47e5689b44d43c4) C:\WINDOWS\system32\DRIVERS\sdbus.sys
2011/05/07 23:32:47.0033 3836   Secdrv          (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
2011/05/07 23:32:47.0174 3836   Serial          (d07b02f88165e69b9f17162cf592c8a6) C:\WINDOWS\system32\drivers\Serial.sys
2011/05/07 23:32:47.0374 3836   Sfloppy         (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
2011/05/07 23:32:47.0584 3836   SLIP            (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
2011/05/07 23:32:47.0855 3836   SMCIRDA         (9951b523fe6820f29ef010680cb692d2) C:\WINDOWS\system32\DRIVERS\smcirda.sys
2011/05/07 23:32:48.0075 3836   splitter        (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
2011/05/07 23:32:48.0375 3836   sr              (eb032822be406ef220d546ddffcf0002) C:\WINDOWS\system32\DRIVERS\sr.sys
2011/05/07 23:32:48.0596 3836   Srv             (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
2011/05/07 23:32:48.0856 3836   STAC97          (a48dc73c8a26dc53d9480a108c3342b5) C:\WINDOWS\system32\drivers\stac97.sys
2011/05/07 23:32:49.0016 3836   streamip        (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
2011/05/07 23:32:49.0166 3836   swenum          (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
2011/05/07 23:32:49.0307 3836   swmidi          (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
2011/05/07 23:32:49.0898 3836   SynTP           (d5803ceafc64fcf475fe6b6756b41bb8) C:\WINDOWS\system32\DRIVERS\SynTP.sys
2011/05/07 23:32:50.0088 3836   sysaudio        (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
2011/05/07 23:32:50.0268 3836   Tcpip           (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
2011/05/07 23:32:50.0388 3836   TDPIPE          (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
2011/05/07 23:32:50.0579 3836   TDTCP           (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
2011/05/07 23:32:50.0699 3836   TermDD          (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
2011/05/07 23:32:50.0949 3836   TOSHIBASoftModem (bdf9ed967f81145ed058601b1c4d8fb7) C:\WINDOWS\system32\DRIVERS\LTSM.sys
2011/05/07 23:32:51.0320 3836   tsdhd           (f85667bb084499da23397892974c1bdc) C:\WINDOWS\system32\DRIVERS\tsdhd.sys
2011/05/07 23:32:51.0460 3836   TVALZ           (9d8fcc6099d641d7c2bdc7f41193bec5) C:\WINDOWS\system32\DRIVERS\TVALZ.SYS
2011/05/07 23:32:51.0620 3836   Udfs            (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
2011/05/07 23:32:51.0890 3836   Update          (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
2011/05/07 23:32:52.0051 3836   upperdev        (e526a166e6acafd0a9b3841d3941669e) C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys
2011/05/07 23:32:52.0311 3836   usbccgp         (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
2011/05/07 23:32:52.0481 3836   usbehci         (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
2011/05/07 23:32:52.0611 3836   usbhub          (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
2011/05/07 23:32:52.0762 3836   usbser          (1c888b000c2f9492f4b15b5b6b84873e) C:\WINDOWS\system32\drivers\usbser.sys
2011/05/07 23:32:52.0912 3836   UsbserFilt      (6f3e3c6811b930d2414552a2e4a40f36) C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys
2011/05/07 23:32:53.0082 3836   USBSTOR         (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
2011/05/07 23:32:53.0202 3836   usbuhci         (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
2011/05/07 23:32:53.0373 3836   VgaSave         (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
2011/05/07 23:32:53.0593 3836   VolSnap         (56b191ac5fc0df219949c95a6c87afe7) C:\WINDOWS\system32\drivers\VolSnap.sys
2011/05/07 23:32:54.0003 3836   w22n51          (4c009d4352849d79bf347846b6e03bfd) C:\WINDOWS\system32\DRIVERS\w22n51.sys
2011/05/07 23:32:54.0274 3836   Wanarp          (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
2011/05/07 23:32:54.0454 3836   Wdf01000        (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys
2011/05/07 23:32:54.0744 3836   wdmaud          (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
2011/05/07 23:32:55.0045 3836   WSTCODEC        (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
2011/05/07 23:32:55.0205 3836   WudfPf          (eaa6324f51214d2f6718977ec9ce0def) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
2011/05/07 23:32:55.0315 3836   WudfRd          (f91ff1e51fca30b3c3981db7d5924252) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
2011/05/07 23:32:55.0706 3836   ================================================================================
2011/05/07 23:32:55.0706 3836   Scan finished
2011/05/07 23:32:55.0706 3836   ================================================================================
breidak
~user
 
Posty: 50
Dołączenie: 05 Sie 2005, 15:57



Komp wolno chodzi

Postprzez wojtas 09 Maj 2011, 21:26

Uruchom OTL i w sekcji własne opcje skanowania / skrypt wklej:

:OTL
O4 - HKLM..\Run: [BigDog303] File not found
O4 - HKLM..\Run: [TFncKy] File not found
O4 - HKU\S-1-5-21-1757981266-507921405-854245398-1003..\Run: [] File not found
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)

:Commands
[emptytemp]
[emptyflash]


Kliknij wykonaj skrypt. I potwierdź reset komputera .

Wykonaj czynności końcowe :
*Uruchom OTL z opcji sprzątanie.
* wykonaj optymalizację Windowsa ( instrukcja dla Windowsa XP, lecz w innych systemach jest podobnie )
* zrób pełny skan Malwarebytes Anti-Malware (zaktualizuj, usuń co znajdzie )
* Skasuj stan przywracania systemu


Zaktualizuj zabezpieczenia:
>>> Adobe Reader (bez Free McAfee® Security Scan Plus)

>>> Java™ 6

napisz jak sytuacja
Image
Awatar użytkownika
wojtas
*mod
 
Posty: 18165
Dołączenie: 13 Sty 2006, 16:00
Miejscowość: Krzeszyce
Pochwały: 1656



Komp wolno chodzi

Postprzez breidak 12 Maj 2011, 23:41

Wykonałem wszystkie Twoje sugestie.

Komp chodzi znacznie lepiej pod warunkiem, że nie jest to początek uruchomienia systemu po stronie logowania. W tym momencie zaczyna pracować NOD, pobiera długo aktualizacje i skanuje system.
Na jego ustawienia nie mam wpływu. Komp jest służbowy, a ustawienia zdefiniował administrator. Jutro o tym z nim porozmawiam. Chociaż bezpieczeństwo ponad wszystko.

Jeżeli sugerujesz coś z w/w ustawieniami zrobić to będę wdzięczny. Po Twojej odpowiedzi i administratora dam ostateczną odpowiedz i zamkniemy temat.

Dzięki za dotychczasową pomoc.
breidak
~user
 
Posty: 50
Dołączenie: 05 Sie 2005, 15:57



Komp wolno chodzi

Postprzez wojtas 13 Maj 2011, 16:22

ciężko mi powiedzieć cokolwiek jeśli masz Noda32 :) jeśli jest za ciężki dla systemu , możesz zmienić na innego AV, choć uważam że Nod32 jest najlepszym AV, sam go posiadam.

w ustawieniach Noda nie ma co się bawić, chyba że chcesz wyłączyć skanowanie komputera ( czego nie zalecam )
Image
Awatar użytkownika
wojtas
*mod
 
Posty: 18165
Dołączenie: 13 Sty 2006, 16:00
Miejscowość: Krzeszyce
Pochwały: 1656




Powróć do Bezpieczeństwo

Kto jest na forum

Użytkownicy przeglądający to forum: Brak zarejestrowanych użytkowników oraz 9 gości