TA STRONA UŻYWA COOKIE. Dowiedz się więcej o celu ich używania i zmianie ustawień cookie w przeglądarce. Korzystając ze strony wyrażasz zgodę na używanie cookie, zgodnie z aktualnymi ustawieniami przeglądarki.  [X]
Nick Data Język
platoon 25/09/2011 20:18:52 Plain Text

skan z otl

  1. OTL logfile created on: 2011-09-25 21:05:17 - Run 1
  2. OTL by OldTimer - Version 3.2.29.1    Folder = C:\Documents and Settings\monia\Pulpit
  3. Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
  4. Internet Explorer (Version = 6.0.2900.2180)
  5. Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
  6.  
  7. 1022,42 Mb Total Physical Memory | 558,25 Mb Available Physical Memory | 54,60% Memory free
  8. 2,40 Gb Paging File | 2,08 Gb Available in Paging File | 86,69% Paging File free
  9. Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]
  10.  
  11. %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
  12. Drive C: | 19,53 Gb Total Space | 10,30 Gb Free Space | 52,72% Space Free | Partition Type: NTFS
  13. Drive D: | 68,36 Gb Total Space | 33,79 Gb Free Space | 49,43% Space Free | Partition Type: NTFS
  14. Drive E: | 68,36 Gb Total Space | 14,63 Gb Free Space | 21,41% Space Free | Partition Type: NTFS
  15. Drive F: | 77,50 Gb Total Space | 9,09 Gb Free Space | 11,73% Space Free | Partition Type: NTFS
  16. Drive G: | 4,37 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
  17.  
  18. Computer Name: MONI | User Name: monia | Logged in as Administrator.
  19. Boot Mode: Normal | Scan Mode: Current user
  20. Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
  21.  
  22. [color=#E56717]========== Processes (SafeList) ==========[/color]
  23.  
  24. PRC - [2011-09-21 23:34:38 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\monia\Pulpit\OTL.exe
  25. PRC - [2011-09-06 22:45:28 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
  26. PRC - [2009-08-04 17:29:54 | 000,219,360 | ---- | M] (DeviceVM, Inc.) -- C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
  27. PRC - [2009-08-04 17:29:52 | 000,346,320 | ---- | M] (DeviceVM, Inc.) -- C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe
  28. PRC - [2009-03-02 14:06:16 | 000,068,136 | ---- | M] () -- C:\Program Files\Gigabyte\EasySaver\essvr.exe
  29. PRC - [2007-08-10 20:53:10 | 000,763,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SoftwareDistribution\Download\ed6d6d62d5e16751de83264797e1efd6\update\update.exe
  30. PRC - [2004-08-04 00:44:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
  31.  
  32.  
  33. [color=#E56717]========== Modules (No Company Name) ==========[/color]
  34.  
  35. MOD - [2011-09-25 12:26:40 | 001,576,960 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\11092500\algo.dll
  36. MOD - [2011-09-23 18:41:29 | 000,212,640 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\11092500\aswRep.dll
  37. MOD - [2011-09-05 19:05:04 | 000,300,544 | ---- | M] () -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.POL
  38. MOD - [2009-07-30 18:15:32 | 000,503,202 | ---- | M] () -- C:\Program Files\DeviceVM\Browser Configuration Utility\sqlite3.dll
  39. MOD - [2009-03-13 11:30:44 | 000,109,096 | ---- | M] () -- C:\Program Files\Gigabyte\EasySaver\ycc.dll
  40. MOD - [2009-03-02 14:06:16 | 000,068,136 | ---- | M] () -- C:\Program Files\Gigabyte\EasySaver\essvr.exe
  41. MOD - [2008-03-29 16:42:20 | 000,159,744 | ---- | M] () -- C:\Program Files\SubEdit-Player\codec\MatroskaSplitter\mmfinfo.dll
  42. MOD - [2008-03-29 16:41:52 | 000,023,552 | ---- | M] () -- C:\Program Files\SubEdit-Player\codec\MatroskaSplitter\mkunicode.dll
  43.  
  44.  
  45. [color=#E56717]========== Win32 Services (SafeList) ==========[/color]
  46.  
  47. SRV - File not found [Disabled | Stopped] --  -- (HidServ)
  48. SRV - [2011-09-06 22:45:28 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
  49. SRV - [2009-08-04 17:29:54 | 000,219,360 | ---- | M] (DeviceVM, Inc.) [Auto | Running] -- C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe -- (BCUService)
  50. SRV - [2009-03-02 14:06:16 | 000,068,136 | ---- | M] () [Auto | Running] -- C:\Program Files\Gigabyte\EasySaver\ESSVR.EXE -- (ES lite Service)
  51.  
  52.  
  53. [color=#E56717]========== Driver Services (SafeList) ==========[/color]
  54.  
  55. DRV - [2011-09-25 20:02:31 | 000,017,488 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\gdrv.sys -- (gdrv)
  56. DRV - [2011-09-06 22:38:05 | 000,442,200 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
  57. DRV - [2011-09-06 22:37:53 | 000,320,856 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
  58. DRV - [2011-09-06 22:36:38 | 000,034,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
  59. DRV - [2011-09-06 22:36:36 | 000,052,568 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
  60. DRV - [2011-09-06 22:36:23 | 000,110,552 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
  61. DRV - [2011-09-06 22:36:12 | 000,020,568 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
  62. DRV - [2011-09-06 22:33:11 | 000,030,808 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
  63. DRV - [2009-07-27 09:09:52 | 000,044,032 | R--- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\l1c51x86.sys -- (L1c)
  64. DRV - [2009-06-25 08:07:44 | 005,095,936 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
  65. DRV - [2009-06-25 08:07:40 | 001,684,736 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)
  66. DRV - [2009-06-25 08:07:40 | 001,389,056 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)
  67.  
  68.  
  69. [color=#E56717]========== Standard Registry (SafeList) ==========[/color]
  70.  
  71.  
  72. [color=#E56717]========== Internet Explorer ==========[/color]
  73.  
  74. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
  75.  
  76. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/?babsrc=HP_ss&mntrId=5468572f0000000000006cf04953f629&tlver=1.4.19.19&affID=17160
  77. IE - HKCU\..\URLSearchHook: {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll (DeviceVM, Inc.)
  78. IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  79.  
  80. FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
  81. FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
  82. FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.69: C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
  83. FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.69: C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
  84. FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=:  File not found
  85. FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
  86. FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
  87. FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
  88.  
  89.  
  90. [2011-07-03 12:13:36 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
  91. [2011-06-29 22:05:43 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
  92. [2011-06-30 20:30:14 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll
  93. [2011-06-27 17:46:56 | 000,002,423 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
  94.  
  95. [color=#E56717]========== Chrome  ==========[/color]
  96.  
  97. CHR - default_search_provider: Google (Enabled)
  98. CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
  99. CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
  100. CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\14.0.835.186\gcswf32.dll
  101. CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
  102. CHR - plugin: Java Deployment Toolkit 6.0.260.3 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
  103. CHR - plugin: Java(TM) Platform SE 6 U26 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
  104. CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
  105. CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit)  (Enabled) = C:\Program Files\Google\Chrome\Application\plugins\nppl3260.dll
  106. CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files\Google\Chrome\Application\plugins\nprpjplug.dll
  107. CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
  108. CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
  109. CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\14.0.835.186\ppGoogleNaClPluginChrome.dll
  110. CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\14.0.835.186\pdf.dll
  111. CHR - plugin: Babylon Chrome Plugin (Enabled) = C:\Documents and Settings\monia\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.0_0\BabylonChromePI.dll
  112. CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
  113. CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
  114. CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll
  115. CHR - plugin: Default Plug-in (Enabled) = default_plugin
  116. CHR - Extension: Babylon Chrome OCR = C:\Documents and Settings\monia\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.0_0\
  117. CHR - Extension: avast! WebRep = C:\Documents and Settings\monia\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\6.0.1289_0\
  118.  
  119. O1 HOSTS File: ([2011-09-21 21:09:01 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
  120. O1 - Hosts: 127.0.0.1      localhost
  121. O2 - BHO: (CescrtHlpr Object) - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.19.19\bh\BabylonToolbar.dll (Babylon BHO)
  122. O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll (Google Inc.)
  123. O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarTlbr.dll (Babylon Ltd.)
  124. O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
  125. O4 - HKLM..\Run: [BCU] C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe (DeviceVM, Inc.)
  126. O4 - HKLM..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
  127. O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
  128. O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation)
  129. O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
  130. O4 - HKLM..\Run: [SW20] C:\WINDOWS\system32\sw20.exe ()
  131. O4 - HKLM..\Run: [SW24] C:\WINDOWS\system32\sw24.exe ()
  132. O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
  133. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
  134. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
  135. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
  136. O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
  137. O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
  138. O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
  139. O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
  140. O8 - Extra context menu item: Funkcja Google Sidewiki - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll (Google Inc.)
  141. O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
  142. O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
  143. O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
  144. O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
  145. O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.1.1.1 193.106.246.34
  146. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{293496F5-E0F1-4D21-8EB3-4F2B30C612BF}: DhcpNameServer = 10.1.1.1 193.106.246.34
  147. O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
  148. O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
  149. O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
  150. O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
  151. O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
  152. O32 - HKLM CDRom: AutoRun - 1
  153. O32 - AutoRun File - [2011-06-26 17:33:24 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
  154. O34 - HKLM BootExecute: (autocheck autochk *)
  155. O35 - HKLM\..comfile [open] -- "%1" %*
  156. O35 - HKLM\..exefile [open] -- "%1" %*
  157. O37 - HKLM\...com [@ = ComFile] -- "%1" %*
  158. O37 - HKLM\...exe [@ = exefile] -- "%1" %*
  159.  
  160. [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
  161.  
  162. [2011-09-25 20:59:50 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\monia\Recent
  163. [2011-09-25 20:07:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot_bak
  164. [2011-09-25 19:44:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\KB905474
  165. [2011-09-25 19:39:04 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
  166. [2011-09-25 19:36:38 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
  167. [2011-09-22 22:26:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\monia\Dane aplikacji\Malwarebytes
  168. [2011-09-22 22:26:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes
  169. [2011-09-22 22:24:52 | 009,852,544 | ---- | C] (Malwarebytes Corporation                                    ) -- C:\Documents and Settings\monia\Pulpit\mbam-setup-1.51.2.1300.exe
  170. [2011-09-22 20:53:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Lavalys
  171. [2011-09-22 20:53:44 | 000,000,000 | ---D | C] -- C:\Program Files\Lavalys
  172. [2011-09-22 20:53:17 | 004,179,293 | ---- | C] (Lavalys, Inc.                                              ) -- C:\Documents and Settings\monia\Pulpit\everesthome220[www.instalki.pl].exe
  173. [2011-09-22 06:17:08 | 000,000,000 | -HSD | C] -- C:\RECYCLER
  174. [2011-09-21 23:34:46 | 000,582,656 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\monia\Pulpit\OTL.exe
  175. [2011-09-21 20:57:09 | 000,000,000 | RHSD | C] -- C:\cmdcons
  176. [2011-09-21 20:53:38 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
  177. [2011-09-21 20:53:38 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
  178. [2011-09-21 20:53:38 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
  179. [2011-09-21 20:53:38 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
  180. [2011-09-21 20:51:55 | 000,000,000 | ---D | C] -- C:\ComboFix
  181. [2011-09-21 20:49:50 | 000,000,000 | R--D | C] -- C:\Documents and Settings\monia\Menu Start\Programy\Narzędzia administracyjne
  182. [2011-09-21 20:49:50 | 000,000,000 | R--D | C] -- C:\Documents and Settings\monia\Moje dokumenty\Moje wideo
  183. [2011-09-21 20:48:09 | 004,222,691 | R--- | C] (Swearware) -- C:\Documents and Settings\monia\Pulpit\ComboFix.exe
  184. [2011-09-21 20:47:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
  185. [2011-09-21 20:44:34 | 000,000,000 | ---D | C] -- C:\Qoobox
  186. [2011-09-21 19:49:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\monia\Dane aplikacji\Ahead
  187. [2011-09-21 19:46:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Nero
  188. [2011-09-21 19:45:56 | 000,057,344 | ---- | C] (Ahead Software AG) -- C:\WINDOWS\System32\ImageDrive.cpl
  189. [2011-09-21 19:45:55 | 000,089,184 | ---- | C] (Ahead Software AG and its licensors) -- C:\WINDOWS\System32\drivers\imagedrv.sys
  190. [2011-09-21 19:45:06 | 000,038,912 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\picn20.dll
  191. [2011-09-21 19:45:05 | 000,569,344 | ---- | C] (Pegasus Software,LLC) -- C:\WINDOWS\System32\imagr5.dll
  192. [2011-09-21 19:45:05 | 000,544,768 | ---- | C] (Pegasus Software, LLC) -- C:\WINDOWS\System32\imagx5.dll
  193. [2011-09-21 19:45:05 | 000,283,920 | ---- | C] (Pegasus Software, LLC) -- C:\WINDOWS\System32\ImagXpr5.dll
  194. [2011-09-21 19:45:04 | 000,155,648 | ---- | C] (Ahead Software Gmbh) -- C:\WINDOWS\System32\NeroCheck.exe
  195. [2011-09-21 19:45:04 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Ahead
  196. [2011-09-21 19:41:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt
  197. [2011-09-21 18:24:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\monia\Moje dokumenty\Nero Home
  198. [2011-09-21 18:23:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\monia\Ustawienia lokalne\Dane aplikacji\Nero
  199. [2011-09-21 16:56:08 | 002,182,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe
  200. [2011-09-21 16:56:06 | 002,138,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
  201. [2011-09-21 16:55:37 | 002,059,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe
  202. [2011-09-21 16:55:29 | 002,018,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
  203. [2011-09-21 07:14:14 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_30.dll
  204. [2011-09-21 07:14:04 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_28.dll
  205. [2011-09-20 22:27:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\monia\Dane aplikacji\Nero
  206. [2011-09-20 22:11:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Nero
  207. [2011-09-20 22:11:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nero
  208. [2011-09-19 22:02:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
  209. [2011-09-18 01:13:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Real Alternative
  210. [2011-09-18 01:12:50 | 000,185,920 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\rmoc3260.dll
  211. [2011-09-18 01:12:50 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll
  212. [2011-09-18 01:12:50 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll
  213. [2011-09-18 01:12:43 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
  214. [2011-09-18 01:12:42 | 000,000,000 | ---D | C] -- C:\Program Files\Real Alternative
  215. [2011-09-18 01:12:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\monia\Ustawienia lokalne\Dane aplikacji\Real
  216. [2011-09-18 01:12:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\monia\Dane aplikacji\Real
  217. [2011-09-18 01:12:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Real
  218. [2011-09-18 01:11:42 | 005,147,589 | ---- | C] (                                                            ) -- C:\Program Files\realalt190lite.exe
  219. [2011-09-17 10:05:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\monia\Menu Start\Programy\WinRAR
  220. [2011-09-17 10:05:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\WinRAR
  221. [2011-09-17 10:03:58 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
  222. [2011-09-14 17:17:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump
  223. [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
  224. [3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
  225.  
  226. [color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
  227.  
  228. [2011-09-25 20:29:01 | 000,001,034 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
  229. [2011-09-25 20:03:25 | 000,000,260 | ---- | M] () -- C:\WINDOWS\tasks\WGASetup.job
  230. [2011-09-25 20:02:34 | 000,063,804 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
  231. [2011-09-25 20:02:33 | 000,001,030 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
  232. [2011-09-25 20:02:33 | 000,000,040 | ---- | M] () -- C:\biosinfo
  233. [2011-09-25 20:02:31 | 000,017,488 | ---- | M] (Windows (R) 2000 DDK provider) -- C:\WINDOWS\gdrv.sys
  234. [2011-09-25 20:02:16 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
  235. [2011-09-25 20:02:14 | 000,114,176 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
  236. [2011-09-25 20:01:23 | 000,355,486 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
  237. [2011-09-25 20:01:23 | 000,311,604 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
  238. [2011-09-25 20:01:23 | 000,049,492 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
  239. [2011-09-25 20:01:23 | 000,039,992 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
  240. [2011-09-25 19:30:25 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
  241. [2011-09-22 22:25:21 | 009,852,544 | ---- | M] (Malwarebytes Corporation                                    ) -- C:\Documents and Settings\monia\Pulpit\mbam-setup-1.51.2.1300.exe
  242. [2011-09-22 20:53:51 | 000,000,767 | ---- | M] () -- C:\Documents and Settings\monia\Pulpit\EVEREST Home Edition.lnk
  243. [2011-09-22 20:53:16 | 004,179,293 | ---- | M] (Lavalys, Inc.                                              ) -- C:\Documents and Settings\monia\Pulpit\everesthome220[www.instalki.pl].exe
  244. [2011-09-21 23:34:38 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\monia\Pulpit\OTL.exe
  245. [2011-09-21 21:09:01 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
  246. [2011-09-21 20:57:27 | 000,000,327 | RHS- | M] () -- C:\boot.ini
  247. [2011-09-21 20:48:41 | 004,222,691 | R--- | M] (Swearware) -- C:\Documents and Settings\monia\Pulpit\ComboFix.exe
  248. [2011-09-21 19:49:26 | 000,001,239 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Nero StartSmart.lnk
  249. [2011-09-21 19:37:40 | 000,001,024 | ---- | M] () -- C:\Documents and Settings\monia\.rnd
  250. [2011-09-21 19:18:42 | 021,734,668 | ---- | M] () -- C:\Documents and Settings\monia\Pulpit\nero6009.exe
  251. [2011-09-21 02:33:17 | 000,001,813 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Google Chrome.lnk
  252. [2011-09-19 21:57:05 | 000,000,211 | ---- | M] () -- C:\Boot.bak
  253. [2011-09-18 18:38:03 | 000,002,644 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
  254. [2011-09-18 01:11:54 | 005,147,589 | ---- | M] (                                                            ) -- C:\Program Files\realalt190lite.exe
  255. [2011-09-18 01:11:08 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
  256. [2011-09-17 10:03:18 | 001,525,928 | ---- | M] () -- C:\Program Files\wrar401pl.exe
  257. [2011-09-12 07:17:14 | 000,032,256 | ---- | M] () -- C:\Documents and Settings\monia\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
  258. [2011-09-06 22:45:29 | 000,199,304 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
  259. [2011-09-06 22:45:29 | 000,041,184 | ---- | M] (AVAST Software) -- C:\WINDOWS\avastSS.scr
  260. [2011-09-06 22:38:05 | 000,442,200 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
  261. [2011-09-06 22:37:53 | 000,320,856 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
  262. [2011-09-06 22:36:38 | 000,034,392 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
  263. [2011-09-06 22:36:36 | 000,052,568 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
  264. [2011-09-06 22:36:23 | 000,110,552 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
  265. [2011-09-06 22:36:20 | 000,104,536 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
  266. [2011-09-06 22:36:12 | 000,020,568 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
  267. [2011-09-06 22:33:11 | 000,030,808 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
  268. [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
  269. [3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
  270.  
  271. [color=#E56717]========== Files Created - No Company Name ==========[/color]
  272.  
  273. [2011-09-25 19:44:52 | 000,000,260 | ---- | C] () -- C:\WINDOWS\tasks\WGASetup.job
  274. [2011-09-22 20:53:51 | 000,000,767 | ---- | C] () -- C:\Documents and Settings\monia\Pulpit\EVEREST Home Edition.lnk
  275. [2011-09-21 20:57:27 | 000,000,211 | ---- | C] () -- C:\Boot.bak
  276. [2011-09-21 20:57:25 | 000,262,400 | RHS- | C] () -- C:\cmldr
  277. [2011-09-21 20:53:38 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
  278. [2011-09-21 20:53:38 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
  279. [2011-09-21 20:53:38 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
  280. [2011-09-21 20:53:38 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
  281. [2011-09-21 20:53:38 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
  282. [2011-09-21 19:49:26 | 000,001,239 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Nero StartSmart.lnk
  283. [2011-09-21 19:17:14 | 021,734,668 | ---- | C] () -- C:\Documents and Settings\monia\Pulpit\nero6009.exe
  284. [2011-09-21 07:33:14 | 000,001,024 | ---- | C] () -- C:\Documents and Settings\monia\.rnd
  285. [2011-09-17 10:03:28 | 001,525,928 | ---- | C] () -- C:\Program Files\wrar401pl.exe
  286. [2011-06-27 17:47:00 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\redmonnt.dll
  287. [2011-06-26 23:12:32 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
  288. [2011-06-26 23:12:29 | 000,032,256 | ---- | C] () -- C:\Documents and Settings\monia\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
  289. [2011-06-26 21:55:43 | 000,000,427 | ---- | C] () -- C:\WINDOWS\ODBC.INI
  290. [2011-06-26 21:14:29 | 000,040,960 | ---- | C] () -- C:\Program Files\Uninstall_CDS.exe
  291. [2011-06-26 20:59:56 | 000,127,758 | ---- | C] () -- C:\WINDOWS\hpoins14.dat
  292. [2011-06-26 20:59:56 | 000,001,996 | ---- | C] () -- C:\WINDOWS\hpomdl14.dat
  293. [2011-06-26 20:23:29 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
  294. [2011-06-26 20:13:01 | 000,000,000 | ---- | C] () -- C:\WINDOWS\msicpl.ini
  295. [2011-06-26 19:19:17 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
  296. [2011-06-26 19:18:01 | 000,009,728 | R--- | C] () -- C:\WINDOWS\System32\sysinfoX64.sys
  297. [2011-06-26 19:17:41 | 000,008,192 | R--- | C] () -- C:\WINDOWS\System32\sysinfo.sys
  298. [2011-06-26 19:17:30 | 000,114,176 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
  299. [2011-06-26 19:17:15 | 000,069,632 | R--- | C] () -- C:\WINDOWS\System32\sw24.exe
  300. [2011-06-26 19:16:59 | 000,208,896 | R--- | C] () -- C:\WINDOWS\System32\sw20.exe
  301. [2011-06-26 18:33:23 | 000,002,688 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
  302. [2011-06-26 18:33:13 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
  303. [2011-06-26 18:02:42 | 000,207,400 | R--- | C] () -- C:\WINDOWS\GSetup.exe
  304. [2011-06-26 18:02:42 | 000,000,010 | ---- | C] () -- C:\WINDOWS\GSetup.ini
  305. [2011-06-26 17:40:12 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
  306. [2011-06-26 17:28:15 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
  307. [2006-06-01 11:22:00 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
  308. [2006-06-01 11:22:00 | 001,519,616 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe
  309. [2006-06-01 11:22:00 | 001,466,368 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
  310. [2006-06-01 11:22:00 | 001,339,392 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe
  311. [2006-06-01 11:22:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
  312. [2006-06-01 11:22:00 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
  313. [2006-06-01 11:22:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
  314. [2006-06-01 11:22:00 | 000,442,368 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe
  315. [2006-06-01 11:22:00 | 000,425,984 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe
  316. [2006-06-01 11:22:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
  317. [2006-06-01 11:22:00 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
  318. [2004-08-04 00:56:48 | 000,001,788 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
  319. [2004-08-04 00:44:00 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll
  320. [2004-08-02 14:20:40 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
  321. [2004-07-17 11:36:38 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
  322. [2001-10-26 16:15:16 | 000,355,486 | ---- | C] () -- C:\WINDOWS\System32\perfh015.dat
  323. [2001-10-26 16:15:16 | 000,313,828 | ---- | C] () -- C:\WINDOWS\System32\perfi015.dat
  324. [2001-10-26 16:15:16 | 000,049,492 | ---- | C] () -- C:\WINDOWS\System32\perfc015.dat
  325. [2001-10-26 16:15:16 | 000,034,990 | ---- | C] () -- C:\WINDOWS\System32\perfd015.dat
  326. [2001-08-23 13:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
  327. [2001-08-23 13:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
  328. [2001-08-17 21:30:24 | 000,311,604 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
  329. [2001-08-17 21:30:24 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
  330. [2001-08-17 21:30:24 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
  331. [2001-08-17 21:30:22 | 000,039,992 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
  332. [2001-08-17 21:15:38 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
  333. [2001-07-21 22:36:48 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
  334. [2001-07-21 22:36:04 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
  335. [2001-07-21 22:24:16 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
  336. [1999-01-22 19:46:58 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\MSRTEDIT.DLL
  337.  
  338. < End of report >
  339.