himus11 Napisano Luty 2, 2010 Zgłoś Share Napisano Luty 2, 2010 Witam niedawno zakupiłem gre Comand & Conquer Wojny o Tyberium.Na pudełku z grą były podane wymagania które spełniam z nadwyżką mimo to gra chodzi w ok 13 Fps.Niestety we wszystkich grach mam podobną liczbę Fps np w Guild Wars,Team Fortes 2,Bitwa o Śrudziemie 2.Kompa już przeskanowałem Avastem , CCleaner , Malwarebytes' Anti-Malware i Combo Fixem.Prosił bym o pomoc co może być nie tak z moim kompem.Pozdrawiam Mój PC: Zasilacz:Newton 360W Pole Wartość Komputer System operacyjny Microsoft Windows XP Professional Dodatek service pack systemu operacyjnego Dodatek Service Pack 3 DirectX 4.09.00.0904 (DirectX 9.0c) Nazwa komputera HIMUS Nazwa użytkownika Administrator Płyta główna Typ procesora Intel Celeron D 336, 2800 MHz (21 x 133) Nazwa płyty głównej FUJITSU SIEMENS D1931 Mikroukład płyty głównej Intel Grantsdale-G i915G Pamięć fizyczna 1280 MB (DDR SDRAM) Typ BIOS'u Phoenix (05/03/05) Port komunikacyjny Port komunikacyjny (COM1) Port komunikacyjny Port drukarki ECP (LPT1) Ekran Karta wideo ATI Radeon HD 4600 Series (1024 MB) Karta wideo ATI Radeon HD 4600 Series (1024 MB) Monitor Monitor Plug and Play [NoDB] (T9907983026) Multimedia Karta dźwiękowa Creative Audigy LS Audio Processor Karta dźwiękowa Intel 82801FB ICH6 - AC'97 Audio Controller [b-1] Magazyn Kontroler IDE Kontrolery Intel? 82801FB Ultra ATA Storage Controllers - 2651 Kontroler IDE Kontrolery Intel? 82801FB/FBM Ultra ATA Storage Controllers - 266F Napęd dyskietek Stacja dyskietek Dysk fizyczny WDC WD5000AADS-00S9B0 (465 GB, IDE) Dysk fizyczny Sony USB HS-SD Card USB Device Dysk fizyczny Sony USB HS-MS Card USB Device Dysk fizyczny Sony USB HS-SM Card USB Device Dysk fizyczny Sony USB HS-CF Card USB Device Napęd dysków optycznych LITE-ON DVDRW LH-18A1P Status dysków SMART OK Partycje H: (NTFS) 476929 MB (275760 MB wolne) Urządzenia wejściowe Klawiatura Standardowa klawiatura 101/102 klawisze lub Microsoft Natural Keyboard PS/2 Mysz Mysz zgodna z HID Sieć Karta sieciowa Bluetooth Device (Personal Area Network) Karta sieciowa Broadcom NetXtreme Gigabit Ethernet (192.168.1.103) Urządzenia zewnętrzne Kontroler USB1 Intel 82801FB ICH6 - USB Universal Host Controller [b-1] Kontroler USB1 Intel 82801FB ICH6 - USB Universal Host Controller [b-1] Kontroler USB1 Intel 82801FB ICH6 - USB Universal Host Controller [b-1] Kontroler USB1 Intel 82801FB ICH6 - USB Universal Host Controller [b-1] Kontroler USB2 Intel 82801FB ICH6 - Enhanced USB2 Controller [b-1] Urządzenie USB Generic Bluetooth Radio Urządzenie USB Masowe urządzenie magazynujące USB Urządzenie USB Urządzenie USB interfejsu HID Temperatury: Sensor Wartość Min Max HIMUS SMSC EMC6D10X Voltages +1.5V 0.00 V 0.00 V 0.00 V CPU VCORE 1.38 V 1.34 V 1.38 V ATX +3.3V 3.28 V 3.28 V 3.28 V ATX +5V 5.05 V 5.05 V 5.05 V ATX +12V 12.05 V 11.98 V 12.05 V Temperatures Diode 1 47 °C (116 °F) 47 °C (116 °F) 49 °C (120 °F) Internal 27 °C (80 °F) 27 °C (80 °F) 27 °C (80 °F) Diode 2 34 °C (93 °F) 34 °C (93 °F) 35 °C (94 °F) Fans FANIN3 1322 RPM 1322 RPM 1326 RPM Radeon HD 4650 Temperatures GPU Core 39 °C (102 °F) 39 °C (102 °F) 41 °C (105 °F) WDC WD5000AADS-00S9B0 Temperatures HDD 30 °C (85 °F) 30 °C (85 °F) 30 °C (85 °F) Link do komentarza Udostępnij na innych stronach More sharing options...
kraven2000 Napisano Luty 2, 2010 Zgłoś Share Napisano Luty 2, 2010 hmmm...nie jest to monstrum. Wydaje mi się, że gry chodzą adekwatnie do Twojego sprzętu. Sorry, ale celeron (czyli okrojona wersja pentiuma) nie jest na dzisiaj dobrym sprzętem. Dziwi dobranie do tego radeona 4600, który jest przez całość zestawu jednak duszony. Co gorsza, komputer jest Siemensa...miałem z nimi do czynienia i nie jestem zachwycony. Do pracy biurowej się nadają, nic więcej. Link do komentarza Udostępnij na innych stronach More sharing options...
himus11 Napisano Luty 2, 2010 Autor Zgłoś Share Napisano Luty 2, 2010 hmmm...nie jest to monstrum. Wydaje mi się, że gry chodzą adekwatnie do Twojego sprzętu. Sorry, ale celeron (czyli okrojona wersja pentiuma) nie jest na dzisiaj dobrym sprzętem. Dziwi dobranie do tego radeona 4600, który jest przez całość zestawu jednak duszony. Co gorsza, komputer jest Siemensa...miałem z nimi do czynienia i nie jestem zachwycony. Do pracy biurowej się nadają, nic więcej. Karte graficzną i dzwiękową oraz dysk kupiłem niedawno z myślą żeby pasowała już do nowego kompa na który zbieram.Czyli jedynym rozwiązaniem jest zmiana mobo,pamięci ram i procka?Czy jeśli kupił bym taki zestaw http://www.allegro.pl/item893816010_e3200_...420w_i_box.html i przełożył części z mojego kompa to te gry które wymieniłem chodziły by w ok 40 fps? Link do komentarza Udostępnij na innych stronach More sharing options...
RoniWorlds Napisano Luty 2, 2010 Zgłoś Share Napisano Luty 2, 2010 Moim zdaniem byś wymienił siekierkę na kijek zero opłacalności. jednym słowem wyrzucenie pieniędzy w błoto Link do komentarza Udostępnij na innych stronach More sharing options...
kraven2000 Napisano Luty 2, 2010 Zgłoś Share Napisano Luty 2, 2010 nie kupuj gotowych zestawów. Zbierz kasę, ile się da. Odezwij się na forum i złoży się coś dobrego Link do komentarza Udostępnij na innych stronach More sharing options...
xandi Napisano Luty 2, 2010 Zgłoś Share Napisano Luty 2, 2010 Zasilacz:Newton 360W To chyba za dobry zasilacz nie jest Od razu go wymień chyba, że fajerwerki lubisz ^^ Link do komentarza Udostępnij na innych stronach More sharing options...
Piotrov Napisano Luty 2, 2010 Zgłoś Share Napisano Luty 2, 2010 W tym kompie z allegro za wiele by ci się nie zmieniło. Nie licząc karty to zasilacz no-name, pamięci też. A dysk to tam w ogóle jest? xD Już nie licząc tego to jest nieopłacalny i całkowicie BE, lepiej zbierać na nową, droższą oraz bardziej opłacalną maszynę(1200 zł to minimum do grania). Mimo wszystko gry powinny ci chodzić lepiej i to znacznie lepiej(tak do 40 FPS, a nawet więcej w spokoju). Heh... TF2 i GW to na Athlonie64 3000+, radku X600 i 1 GB RAMU chodziły mi parokrotnie lepiej. Link do komentarza Udostępnij na innych stronach More sharing options...
allman Napisano Luty 2, 2010 Zgłoś Share Napisano Luty 2, 2010 A ile programów pracuje w tle? Link do komentarza Udostępnij na innych stronach More sharing options...
Gość mikusdevil Napisano Luty 2, 2010 Zgłoś Share Napisano Luty 2, 2010 Zamień tego Celerona na Pentium 4 a fps ci się poprawi i to dość mocno Link do komentarza Udostępnij na innych stronach More sharing options...
himus11 Napisano Luty 2, 2010 Autor Zgłoś Share Napisano Luty 2, 2010 [CIACH] Procesów jest ok 36.Czy napewno będzie duża różnica jak zmienie proca?Niechce zbyt dużo kasy wydać na kompa. Link do komentarza Udostępnij na innych stronach More sharing options...
Gość luq92 Napisano Luty 2, 2010 Zgłoś Share Napisano Luty 2, 2010 Najpierw zmień zasilacz bo będzie duże bum. Nawet ta mała ilość fps może być spowodowana przez słabiutki "zasilacz". Link do komentarza Udostępnij na innych stronach More sharing options...
Gość mikusdevil Napisano Luty 2, 2010 Zgłoś Share Napisano Luty 2, 2010 Zamień tego Celerona na Pentium 4 a fps ci się poprawi i to dość mocno Procesów jest ok 36.Czy napewno będzie duża różnica jak zmienie proca?Niechce zbyt dużo kasy wydać na kompa. No gwarancji 100 procentowej dać ci nie mogę ale z własnego doświadczenia wiem że odczułem duży skok wydajności w grach po zmianie procesora, kiedyś na celeronie nawet stare gierki mi się dławiły od czasu do czasu. Tylko na super nowości się nie nastawiaj tam to już 2 rdzenie minimum. Link do komentarza Udostępnij na innych stronach More sharing options...
Gość luq92 Napisano Luty 2, 2010 Zgłoś Share Napisano Luty 2, 2010 Najpierw trzeba wziąźć się za zasilacz, bo strach do kompa coś nowego wkładać. Link do komentarza Udostępnij na innych stronach More sharing options...
himus11 Napisano Luty 2, 2010 Autor Zgłoś Share Napisano Luty 2, 2010 A czy format kompa mógłby pomóc? Link do komentarza Udostępnij na innych stronach More sharing options...
Gość luq92 Napisano Luty 2, 2010 Zgłoś Share Napisano Luty 2, 2010 Jeśli system jest totalnie zasyfiony to tak. Ale dobrze radzę z tym zasilaczem. Link do komentarza Udostępnij na innych stronach More sharing options...
Sevard Napisano Luty 2, 2010 Zgłoś Share Napisano Luty 2, 2010 Skoro użyłeś Malwarebytes' i Combofixa (nie będę się wypowiadał co myślę o tym, żeby traktować ten program jako skaner), to daj logi z nich. Może coś z systemem. O takich zasilaczach nigdy w życiu nie słyszałem, więc pewnie jakiś no name, moim zdaniem do wymiany. Link do komentarza Udostępnij na innych stronach More sharing options...
himus11 Napisano Luty 2, 2010 Autor Zgłoś Share Napisano Luty 2, 2010 Z zasilaczem będzie narazie mały problem bo nie jest to normalny zasilacz tylko jakiś dziwaczny chyba tylko właśnie do kompów siememnsa więc bym musiał od razu wymienić całą obudowe kompa . Malwarebytes' Anti-Malware 1.44 Wersja bazy definicji: 3672 Windows 5.1.2600 Dodatek Service Pack 3 Internet Explorer 6.0.2900.5512 2010-02-02 23:41:46 mbam-log-2010-02-02 (23-41-46).txt Typ skanowania: Szybkie skanowanie Przeskanowane obiekty: 105796 Upłynęło: 7 minute(s), 52 second(s) Zainfekowane procesy w pamięci: 0 Zainfekowane moduły pamięci: 0 Zainfekowane klucze rejestru: 0 Zainfekowane wartości rejestru: 0 Zainfekowane pliki rejestru: 0 Zainfekowane foldery: 0 Zainfekowane pliki: 0 Zainfekowane procesy w pamięci: (Nie wykryto groźnych plików) Zainfekowane moduły pamięci: (Nie wykryto groźnych plików) Zainfekowane klucze rejestru: (Nie wykryto groźnych plików) Zainfekowane wartości rejestru: (Nie wykryto groźnych plików) Zainfekowane pliki rejestru: (Nie wykryto groźnych plików) Zainfekowane foldery: (Nie wykryto groźnych plików) Zainfekowane pliki: (Nie wykryto groźnych plików) Link do komentarza Udostępnij na innych stronach More sharing options...
Gość luq92 Napisano Luty 3, 2010 Zgłoś Share Napisano Luty 3, 2010 Niby system czysty. Możesz jeszcze dać log z RIST lub OTL. Jaki dokładnie ten zasilacz jest? Daj jakąś fotę. Link do komentarza Udostępnij na innych stronach More sharing options...
himus11 Napisano Luty 3, 2010 Autor Zgłoś Share Napisano Luty 3, 2010 Niby system czysty. Możesz jeszcze dać log z RIST lub OTL. Jaki dokładnie ten zasilacz jest? Daj jakąś fotę. Zasilacz jest taki http://www.allegro.pl/item900268267_zasila...w_120m_moc.html wiatrak z zasilacza chłodzi procka.RIST lub OTL to są nazwy programów? Link do komentarza Udostępnij na innych stronach More sharing options...
Gość luq92 Napisano Luty 3, 2010 Zgłoś Share Napisano Luty 3, 2010 Tak, to nazwy programów. Link do komentarza Udostępnij na innych stronach More sharing options...
himus11 Napisano Luty 3, 2010 Autor Zgłoś Share Napisano Luty 3, 2010 Log z OTL OTL logfile created on: 2010-02-03 15:18:31 - Run 1 OTL by OldTimer - Version 3.1.27.1 Folder = H:\Documents and Settings\Administrator\Pulpit Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.5512) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 52,00% Memory free 3,00 Gb Paging File | 2,00 Gb Available in Paging File | 75,00% Paging File free Paging file location(s): H:\pagefile.sys 1920 3840 [binary data] %SystemDrive% = H: | %SystemRoot% = H:\WINDOWS | %ProgramFiles% = H:\Program Files C: Drive not present or media not loaded D: Drive not present or media not loaded E: Drive not present or media not loaded F: Drive not present or media not loaded Drive G: | 7,67 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF Drive H: | 465,75 Gb Total Space | 256,27 Gb Free Space | 55,02% Space Free | Partition Type: NTFS I: Drive not present or media not loaded Computer Name: HIMUS Current User Name: Administrator Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Standard ========== Processes (SafeList) ========== PRC - [2010-02-03 15:18:10 | 000,548,864 | ---- | M] (OldTimer Tools) -- H:\Documents and Settings\Administrator\Pulpit\OTL.exe PRC - [2009-12-31 02:51:52 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- H:\Program Files\Java\jre6\bin\jqs.exe PRC - [2009-12-31 02:51:49 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- H:\Program Files\Java\jre6\bin\javaw.exe PRC - [2009-12-11 21:07:16 | 000,602,112 | ---- | M] (ATI Technologies Inc.) -- H:\WINDOWS\system32\ati2evxx.exe PRC - [2009-11-25 00:51:40 | 000,081,000 | ---- | M] (ALWIL Software) -- H:\Program Files\Alwil Software\Avast4\ashDisp.exe PRC - [2009-11-25 00:51:35 | 000,138,680 | ---- | M] (ALWIL Software) -- H:\Program Files\Alwil Software\Avast4\ashServ.exe PRC - [2009-11-25 00:51:21 | 000,254,040 | ---- | M] (ALWIL Software) -- H:\Program Files\Alwil Software\Avast4\ashMaiSv.exe PRC - [2009-11-25 00:48:48 | 000,352,920 | ---- | M] (ALWIL Software) -- H:\Program Files\Alwil Software\Avast4\ashWebSv.exe PRC - [2009-11-25 00:47:39 | 000,159,280 | ---- | M] (ALWIL Software) -- H:\Program Files\Alwil Software\Avast4\ashSimpl.exe PRC - [2009-11-25 00:43:56 | 000,018,752 | ---- | M] (ALWIL Software) -- H:\Program Files\Alwil Software\Avast4\aswUpdSv.exe PRC - [2009-11-20 19:01:18 | 000,832,296 | ---- | M] (Opera Software) -- H:\Program Files\Opera\opera.exe PRC - [2009-11-11 15:48:11 | 003,171,760 | ---- | M] (Tonec Inc.) -- H:\Program Files\Internet Download Manager\IDMan.exe PRC - [2009-10-15 10:51:51 | 000,263,600 | ---- | M] (Tonec Inc.) -- H:\Program Files\Internet Download Manager\IEMonitor.exe PRC - [2009-04-22 17:38:50 | 000,065,536 | ---- | M] (Advanced Micro Devices Inc.) -- H:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe PRC - [2009-04-22 17:37:16 | 000,065,536 | ---- | M] (ATI Technologies Inc.) -- H:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe PRC - [2008-04-14 22:51:52 | 000,013,824 | ---- | M] (Microsoft Corporation) -- H:\WINDOWS\system32\wscntfy.exe PRC - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- H:\WINDOWS\explorer.exe PRC - [2005-10-31 10:51:52 | 000,057,344 | ---- | M] (Creative Technology Ltd) -- H:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe PRC - [1999-12-12 18:01:00 | 000,044,032 | ---- | M] (Creative Technology Ltd) -- H:\WINDOWS\system32\CTSVCCDA.EXE ========== Modules (SafeList) ========== MOD - [2010-02-03 15:18:10 | 000,548,864 | ---- | M] (OldTimer Tools) -- H:\Documents and Settings\Administrator\Pulpit\OTL.exe MOD - [2009-11-25 00:50:32 | 000,139,264 | ---- | M] (ALWIL Software) -- H:\Program Files\Alwil Software\Avast4\AhJsctNs.dll MOD - [2009-03-26 16:35:39 | 000,034,224 | ---- | M] (Tonec Inc.) -- H:\Program Files\Internet Download Manager\idmmkb.dll ========== Win32 Services (SafeList) ========== SRV - [2009-12-31 02:51:52 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) [Auto | Running] -- H:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService) SRV - [2009-12-11 21:07:16 | 000,602,112 | ---- | M] (ATI Technologies Inc.) [Auto | Running] -- H:\WINDOWS\system32\ati2evxx.exe -- (Ati HotKey Poller) SRV - [2009-11-25 00:51:35 | 000,138,680 | ---- | M] (ALWIL Software) [Auto | Running] -- H:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus) SRV - [2009-11-25 00:51:21 | 000,254,040 | ---- | M] (ALWIL Software) [On_Demand | Running] -- H:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner) SRV - [2009-11-25 00:48:48 | 000,352,920 | ---- | M] (ALWIL Software) [On_Demand | Running] -- H:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner) SRV - [2009-11-25 00:43:56 | 000,018,752 | ---- | M] (ALWIL Software) [Auto | Running] -- H:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv) SRV - [2009-02-03 21:05:00 | 000,593,920 | ---- | M] () [Auto | Stopped] -- H:\WINDOWS\system32\ati2sgag.exe -- (ATI Smart) SRV - [2005-04-04 00:41:10 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- H:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT) SRV - [2003-07-28 13:28:22 | 000,089,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- H:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose) SRV - [1999-12-12 18:01:00 | 000,044,032 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- H:\WINDOWS\system32\CTSVCCDA.EXE -- (Creative Service for CDROM Access) ========== Driver Services (SafeList) ========== DRV - [2009-12-29 00:03:26 | 000,717,296 | ---- | M] (Duplex Secure Ltd.) [Kernel | Disabled | Stopped] -- H:\WINDOWS\system32\drivers\sptd.sys -- (sptd) DRV - [2009-12-11 22:02:42 | 004,525,056 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- H:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag) DRV - [2009-11-25 00:50:59 | 000,094,160 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- H:\WINDOWS\system32\drivers\aswmon2.sys -- (aswMon2) DRV - [2009-11-25 00:50:12 | 000,114,768 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- H:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP) DRV - [2009-11-25 00:50:00 | 000,020,560 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- H:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk) DRV - [2009-11-25 00:49:07 | 000,048,560 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- H:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi) DRV - [2009-11-25 00:48:57 | 000,023,120 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] -- H:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr) DRV - [2009-11-25 00:47:54 | 000,027,408 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- H:\WINDOWS\system32\drivers\aavmker4.sys -- (Aavmker4) DRV - [2008-04-13 22:09:18 | 000,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | On_Demand | Stopped] -- H:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv) DRV - [2008-04-13 22:06:06 | 000,144,384 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- H:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus) DRV - [2006-11-30 15:13:56 | 000,061,536 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- H:\WINDOWS\system32\drivers\se45bus.sys -- (se45bus) Sony Ericsson Device 069 driver (WDM) DRV - [2006-09-24 14:28:46 | 000,005,248 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | Boot | Running] -- H:\WINDOWS\system32\speedfan.sys -- (speedfan) DRV - [2005-07-07 09:14:30 | 001,389,056 | R--- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- H:\WINDOWS\system32\drivers\P17.sys -- (P17) DRV - [2005-01-10 11:15:30 | 000,106,496 | R--- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- H:\WINDOWS\system32\drivers\ctoss2k.sys -- (ossrv) DRV - [2005-01-10 11:15:24 | 000,138,752 | R--- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- H:\WINDOWS\system32\drivers\ctsfm2k.sys -- (ctsfm2k) DRV - [2004-07-15 00:00:00 | 000,190,336 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- H:\WINDOWS\system32\drivers\b57xp32.sys -- (b57w2k) DRV - [2001-08-17 20:49:56 | 000,017,792 | ---- | M] (Parallel Technologies, Inc.) [Kernel | On_Demand | Running] -- H:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink) DRV - [1996-04-03 20:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- H:\WINDOWS\system32\giveio.sys -- (giveio) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 O1 HOSTS File: ([2001-10-26 14:45:16 | 000,000,742 | ---- | M]) - H:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (IDMIEHlprObj Class) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - H:\Program Files\Internet Download Manager\IDMIECC.dll (Tonec Inc.) O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - H:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (IeCatch2 Class) - {A5366673-E8CA-11D3-9CD9-0090271D075B} - H:\Program Files\FlashGet\Jccatch.dll (Amaze Soft) O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - H:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - H:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.) O3 - HKLM\..\Toolbar: (FlashGet Bar) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - H:\Program Files\FlashGet\fgiebar.dll (Amaze Soft) O4 - HKLM..\Run: [avast!] H:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software) O4 - HKLM..\Run: [bluetoothAuthenticationAgent] H:\WINDOWS\System32\bthprops.cpl (Microsoft Corporation) O4 - HKLM..\Run: [CTSysVol] H:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe (Creative Technology Ltd) O4 - HKLM..\Run: [P17Helper] H:\WINDOWS\System32\P17.dll () O4 - HKLM..\Run: [startCCC] H:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKLM..\Run: [updReg] H:\WINDOWS\Updreg.EXE (Creative Technology Ltd.) O4 - HKCU..\Run: [bySoft FreeRAM] H:\Program Files\BySoft FreeRAM\FreeRAM.exe (BySoft) O4 - HKCU..\Run: [iDMan] H:\Program Files\Internet Download Manager\IDMan.exe (Tonec Inc.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O8 - Extra context menu item: Download All by FlashGet - H:\Program Files\FlashGet\jc_all.htm () O8 - Extra context menu item: Download using FlashGet - H:\Program Files\FlashGet\jc_link.htm () O8 - Extra context menu item: Ściągnij przez IDM - H:\Program Files\Internet Download Manager\IEExt.htm () O8 - Extra context menu item: Ściągnij wszystkie linki przez IDM - H:\Program Files\Internet Download Manager\IEGetAll.htm () O8 - Extra context menu item: Ściągnij zawartość wideo FLV przez IDM - H:\Program Files\Internet Download Manager\IEGetVL.htm () O9 - Extra Button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - H:\Program Files\FlashGet\flashget.exe (Amaze Soft) O9 - Extra 'Tools' menuitem : &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - H:\Program Files\FlashGet\flashget.exe (Amaze Soft) O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - H:\WINDOWS\System32\idmmbc.dll (Tonec Inc.) O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - H:\WINDOWS\System32\idmmbc.dll (Tonec Inc.) O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - H:\WINDOWS\System32\idmmbc.dll (Tonec Inc.) O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - H:\WINDOWS\System32\idmmbc.dll (Tonec Inc.) O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - H:\WINDOWS\System32\idmmbc.dll (Tonec Inc.) O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - H:\WINDOWS\System32\idmmbc.dll (Tonec Inc.) O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone. O15 - HKCU\..Trusted Domains: kuaiche.com ([software] http in Zaufane witryny) O15 - HKCU\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone. O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_15) O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_15) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_15) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwa...ash/swflash.cab (Shockwave Flash Object) O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwareup...15111/CTPID.cab (Creative Software AutoUpdate Support Package) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.100 O20 - HKLM Winlogon: Shell - (Explorer.exe) - H:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - H:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: H:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: H:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2007-03-07 04:33:36 | 000,000,000 | R--D | M] - G:\Autorun -- [ UDF ] O32 - AutoRun File - [2007-02-25 05:23:24 | 000,000,047 | R--- | M] () - G:\Autorun.inf -- [ UDF ] O32 - AutoRun File - [2007-03-02 10:31:43 | 000,162,880 | R--- | M] () - G:\autorun.exe -- [ UDF ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - comfile [open] -- "%1" %* O35 - exefile [open] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2010-02-03 15:18:03 | 000,548,864 | ---- | C] (OldTimer Tools) -- H:\Documents and Settings\Administrator\Pulpit\OTL.exe [2010-02-02 23:47:05 | 000,000,000 | --SD | C] -- H:\ComboFix [2010-02-02 21:04:54 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Help [2010-02-02 21:04:54 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Administrator\Dane aplikacji\Help [2010-02-02 21:01:57 | 000,000,000 | ---D | C] -- H:\Program Files\Driver Cleaner [2010-02-02 20:26:26 | 000,000,000 | -HSD | C] -- H:\RECYCLER [2010-02-02 10:40:02 | 000,000,000 | ---D | C] -- H:\Program Files\Lavalys [2010-02-02 10:38:48 | 004,179,293 | ---- | C] (Lavalys, Inc. ) -- H:\Documents and Settings\Administrator\Pulpit\everesthome220(dobreprogramy.pl).exe [2010-02-02 10:19:41 | 000,000,000 | ---D | C] -- H:\Program Files\SIW [2010-02-02 10:18:33 | 004,696,422 | ---- | C] (Topala Software Solutions ) -- H:\Documents and Settings\Administrator\Pulpit\siw-setup.exe [2010-02-02 09:34:14 | 000,000,000 | ---D | C] -- H:\Documents and Settings\All Users\Dane aplikacji\ATI [2010-02-01 18:33:09 | 000,118,784 | ---- | C] (Advanced Micro Devices, Inc.) -- H:\WINDOWS\System32\atibtmon.exe [2010-02-01 18:33:09 | 000,064,512 | ---- | C] (Advanced Micro Devices, Inc. ) -- H:\WINDOWS\System32\atimpc32.dll [2010-02-01 18:32:15 | 000,000,000 | ---D | C] -- H:\Program Files\ATI [2010-02-01 18:30:53 | 000,000,000 | ---D | C] -- H:\ATI [2010-02-01 18:17:14 | 046,656,888 | ---- | C] (Advanced Micro Devices, Inc.) -- H:\Documents and Settings\Administrator\Pulpit\10-1_xp32_dd_ccc_wdm_enu.exe [2010-02-01 16:36:26 | 000,000,000 | RHSD | C] -- H:\cmdcons [2010-02-01 16:33:51 | 000,031,232 | ---- | C] (NirSoft) -- H:\WINDOWS\NIRCMD.exe [2010-02-01 16:33:50 | 000,212,480 | ---- | C] (SteelWerX) -- H:\WINDOWS\SWXCACLS.exe [2010-02-01 16:33:50 | 000,161,792 | ---- | C] (SteelWerX) -- H:\WINDOWS\SWREG.exe [2010-02-01 16:33:50 | 000,136,704 | ---- | C] (SteelWerX) -- H:\WINDOWS\SWSC.exe [2010-02-01 16:33:28 | 000,000,000 | ---D | C] -- H:\WINDOWS\ERDNT [2010-02-01 16:33:11 | 000,000,000 | ---D | M] -- H:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-02-01 16:32:46 | 000,000,000 | ---D | C] -- H:\WINDOWS\Prefetch [2010-02-01 16:29:14 | 000,000,000 | ---D | C] -- H:\Qoobox [2010-02-01 16:05:37 | 000,089,600 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\dllcache\msxml6r.dll [2010-02-01 16:05:36 | 001,372,672 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\dllcache\msxml6.dll [2010-02-01 16:05:36 | 000,089,600 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\msxml6r.dll [2010-02-01 16:05:14 | 000,086,016 | ---- | C] (Sipro Lab Telecom Inc.) -- H:\WINDOWS\System32\dllcache\sl_anet.acm [2010-02-01 16:05:11 | 000,294,912 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\dllcache\msaud32.acm [2010-02-01 16:05:08 | 000,290,816 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- H:\WINDOWS\System32\dllcache\l3codeca.acm [2010-02-01 16:04:48 | 000,103,424 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\dllcache\dpcdll.dll [2010-02-01 16:04:31 | 000,046,592 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\drivers\irbus.sys [2010-02-01 16:04:30 | 000,009,728 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\comsdupd.exe [2010-02-01 16:04:29 | 000,010,752 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\smtpapi.dll [2010-02-01 16:04:29 | 000,009,728 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\rwnh.dll [2010-02-01 16:04:22 | 000,870,784 | ---- | C] (ATI Technologies Inc. ) -- H:\WINDOWS\System32\ati3d1ag.dll [2010-02-01 16:04:22 | 000,377,984 | ---- | C] (ATI Technologies Inc.) -- H:\WINDOWS\System32\ati2dvaa.dll [2010-02-01 16:04:22 | 000,136,192 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\aaclient.dll [2010-02-01 16:04:22 | 000,023,040 | ---- | C] (ATI Technologies Inc.) -- H:\WINDOWS\System32\ativmvxx.ax [2010-02-01 16:04:22 | 000,009,728 | ---- | C] (ATI Technologies Inc.) -- H:\WINDOWS\System32\ativdaxx.ax [2010-02-01 16:04:21 | 000,233,472 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\azroles.dll [2010-02-01 16:04:21 | 000,032,768 | ---- | C] (ATI Technologies Inc.) -- H:\WINDOWS\System32\ativtmxx.dll [2010-02-01 16:04:21 | 000,007,168 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\bitsprx4.dll [2010-02-01 16:04:18 | 000,059,904 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\dot3cfg.dll [2010-02-01 16:04:18 | 000,056,832 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\dot3msm.dll [2010-02-01 16:04:18 | 000,048,640 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\dhcpqec.dll [2010-02-01 16:04:18 | 000,039,936 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\dot3gpclnt.dll [2010-02-01 16:04:18 | 000,039,936 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\dimsroam.dll [2010-02-01 16:04:18 | 000,026,112 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\dot3api.dll [2010-02-01 16:04:18 | 000,009,216 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\dot3dlg.dll [2010-02-01 16:04:17 | 000,651,264 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\dot3ui.dll [2010-02-01 16:04:17 | 000,184,832 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\eapp3hst.dll [2010-02-01 16:04:17 | 000,126,976 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\eappcfg.dll [2010-02-01 16:04:17 | 000,031,232 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\eapolqec.dll [2010-02-01 16:04:16 | 000,181,248 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\eapphost.dll [2010-02-01 16:04:16 | 000,094,720 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\eappgnui.dll [2010-02-01 16:04:16 | 000,059,392 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\eapqec.dll [2010-02-01 16:04:16 | 000,040,960 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\eappprxy.dll [2010-02-01 16:04:14 | 000,032,285 | ---- | C] (Conexant Systems, Inc.) -- H:\WINDOWS\System32\hsfcisp2.dll [2010-02-01 16:04:12 | 000,380,928 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\irprops.cpl [2010-02-01 16:04:11 | 000,006,144 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\kbdiultn.dll [2010-02-01 16:04:11 | 000,006,144 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\kbdbhc.dll [2010-02-01 16:04:09 | 000,006,144 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\kbdpash.dll [2010-02-01 16:04:09 | 000,006,144 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\kbdnepr.dll [2010-02-01 16:04:08 | 000,086,016 | ---- | C] (Conexant) -- H:\WINDOWS\System32\mdmxsdk.dll [2010-02-01 16:04:08 | 000,037,376 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\l2gpstore.dll [2010-02-01 16:04:07 | 000,397,312 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\mmcex.dll [2010-02-01 16:04:07 | 000,184,320 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\microsoft.managementconsole.dll [2010-02-01 16:04:07 | 000,106,496 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\mmcfxcommon.dll [2010-02-01 16:04:07 | 000,033,792 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\mmcperf.exe [2010-02-01 16:04:06 | 001,737,856 | ---- | C] (Matrox Graphics Inc.) -- H:\WINDOWS\System32\mtxparhd.dll [2010-02-01 16:04:06 | 000,196,608 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\napmontr.dll [2010-02-01 16:04:06 | 000,176,640 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\napstat.exe [2010-02-01 16:04:06 | 000,155,136 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\mssha.dll [2010-02-01 16:04:06 | 000,080,896 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\msshavmsg.dll [2010-02-01 16:04:06 | 000,030,720 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\napipsec.dll [2010-02-01 16:04:05 | 004,274,816 | ---- | C] (NVIDIA Corporation) -- H:\WINDOWS\System32\nv4_disp.dll [2010-02-01 16:04:05 | 004,274,816 | ---- | C] (NVIDIA Corporation) -- H:\WINDOWS\System32\dllcache\nv4_disp.dll [2010-02-01 16:04:05 | 000,144,896 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\onex.dll [2010-02-01 16:04:03 | 000,412,160 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\photometadatahandler.dll [2010-02-01 16:04:03 | 000,290,304 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\rhttpaa.dll [2010-02-01 16:04:03 | 000,150,528 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\qagent.dll [2010-02-01 16:04:03 | 000,076,800 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\qutil.dll [2010-02-01 16:04:03 | 000,062,464 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\qcliprov.dll [2010-02-01 16:04:03 | 000,061,952 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\rasqec.dll [2010-02-01 16:04:02 | 000,397,056 | ---- | C] (S3 Graphics, Inc.) -- H:\WINDOWS\System32\s3gnb.dll [2010-02-01 16:04:02 | 000,286,792 | ---- | C] (Smart Link) -- H:\WINDOWS\System32\slextspk.dll [2010-02-01 16:04:02 | 000,188,508 | ---- | C] (Smart Link) -- H:\WINDOWS\System32\slgen.dll [2010-02-01 16:04:02 | 000,073,832 | ---- | C] (Smart Link) -- H:\WINDOWS\System32\slcoinst.dll [2010-02-01 16:04:02 | 000,032,866 | ---- | C] (Smart Link) -- H:\WINDOWS\System32\slrundll.exe [2010-02-01 16:04:02 | 000,032,768 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\setupn.exe [2010-02-01 16:04:01 | 000,073,796 | ---- | C] (Smart Link) -- H:\WINDOWS\System32\slserv.exe [2010-02-01 16:03:57 | 000,712,704 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\windowscodecs.dll [2010-02-01 16:03:57 | 000,346,112 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\windowscodecsext.dll [2010-02-01 16:03:57 | 000,053,248 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\tsgqec.dll [2010-02-01 16:03:57 | 000,028,672 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\vidcap.ax [2010-02-01 16:03:57 | 000,028,672 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\verclsid.exe [2010-02-01 16:03:56 | 000,276,992 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\wmphoto.dll [2010-02-01 16:03:56 | 000,069,120 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\wlanapi.dll [2010-02-01 16:03:55 | 000,032,866 | ---- | C] (Smart Link) -- H:\WINDOWS\slrundll.exe [2010-02-01 16:03:55 | 000,000,000 | ---D | C] -- H:\WINDOWS\System32\pl-pl [2010-02-01 16:03:54 | 000,000,000 | ---D | C] -- H:\WINDOWS\l2schemas [2010-02-01 16:03:53 | 000,000,000 | ---D | C] -- H:\WINDOWS\System32\pl [2010-02-01 16:03:53 | 000,000,000 | ---D | C] -- H:\WINDOWS\System32\bits [2010-02-01 16:00:28 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Administrator\Dane aplikacji\Malwarebytes [2010-02-01 16:00:16 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- H:\WINDOWS\System32\drivers\mbamswissarmy.sys [2010-02-01 16:00:14 | 000,000,000 | ---D | C] -- H:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes [2010-02-01 16:00:13 | 000,019,160 | ---- | C] (Malwarebytes Corporation) -- H:\WINDOWS\System32\drivers\mbam.sys [2010-02-01 16:00:13 | 000,000,000 | ---D | C] -- H:\Program Files\Malwarebytes' Anti-Malware [2010-02-01 15:59:40 | 000,294,912 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\dllcache\dlimport.exe [2010-02-01 15:56:44 | 005,115,824 | ---- | C] (Malwarebytes Corporation ) -- H:\Documents and Settings\Administrator\Pulpit\mbam-setup.exe [2010-02-01 15:56:18 | 000,043,008 | ---- | C] (Advanced Micro Devices, Inc.) -- H:\WINDOWS\System32\drivers\amdagp.sys [2010-02-01 15:56:18 | 000,004,255 | ---- | C] (Intel® Corporation) -- H:\WINDOWS\System32\drivers\adv01nt5.dll [2010-02-01 15:56:18 | 000,003,967 | ---- | C] (Intel® Corporation) -- H:\WINDOWS\System32\drivers\adv02nt5.dll [2010-02-01 15:56:18 | 000,003,775 | ---- | C] (Intel® Corporation) -- H:\WINDOWS\System32\drivers\adv11nt5.dll [2010-02-01 15:56:18 | 000,003,711 | ---- | C] (Intel® Corporation) -- H:\WINDOWS\System32\drivers\adv09nt5.dll [2010-02-01 15:56:18 | 000,003,647 | ---- | C] (Intel® Corporation) -- H:\WINDOWS\System32\drivers\adv07nt5.dll [2010-02-01 15:56:18 | 000,003,615 | ---- | C] (Intel® Corporation) -- H:\WINDOWS\System32\drivers\adv05nt5.dll [2010-02-01 15:56:18 | 000,003,135 | ---- | C] (Intel® Corporation) -- H:\WINDOWS\System32\drivers\adv08nt5.dll [2010-02-01 15:56:18 | 000,000,000 | ---D | C] -- H:\WINDOWS\network diagnostic [2010-02-01 15:56:17 | 000,327,040 | ---- | C] (ATI Technologies Inc.) -- H:\WINDOWS\System32\drivers\ati2mtaa.sys [2010-02-01 15:56:17 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- H:\WINDOWS\System32\drivers\atinrvxx.sys [2010-02-01 15:56:17 | 000,063,663 | ---- | C] (ATI Technologies Inc.) -- H:\WINDOWS\System32\drivers\ati1rvxx.sys [2010-02-01 15:56:17 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- H:\WINDOWS\System32\drivers\atinbtxx.sys [2010-02-01 15:56:17 | 000,056,623 | ---- | C] (ATI Technologies Inc.) -- H:\WINDOWS\System32\drivers\ati1btxx.sys [2010-02-01 15:56:17 | 000,052,224 | ---- | C] (ATI Technologies Inc.) -- H:\WINDOWS\System32\drivers\atinraxx.sys [2010-02-01 15:56:17 | 000,036,463 | ---- | C] (ATI Technologies Inc.) -- H:\WINDOWS\System32\drivers\ati1tuxx.sys [2010-02-01 15:56:17 | 000,034,735 | ---- | C] (ATI Technologies Inc.) -- H:\WINDOWS\System32\drivers\ati1xsxx.sys [2010-02-01 15:56:17 | 000,030,671 | ---- | C] (ATI Technologies Inc.) -- H:\WINDOWS\System32\drivers\ati1raxx.sys [2010-02-01 15:56:17 | 000,029,455 | ---- | C] (ATI Technologies Inc.) -- H:\WINDOWS\System32\drivers\ati1xbxx.sys [2010-02-01 15:56:17 | 000,026,367 | ---- | C] (ATI Technologies Inc.) -- H:\WINDOWS\System32\drivers\ati1snxx.sys [2010-02-01 15:56:17 | 000,021,343 | ---- | C] (ATI Technologies Inc.) -- H:\WINDOWS\System32\drivers\ati1ttxx.sys [2010-02-01 15:56:17 | 000,014,336 | ---- | C] (ATI Technologies Inc.) -- H:\WINDOWS\System32\drivers\atinpdxx.sys [2010-02-01 15:56:17 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- H:\WINDOWS\System32\drivers\atinmdxx.sys [2010-02-01 15:56:17 | 000,012,047 | ---- | C] (ATI Technologies Inc.) -- H:\WINDOWS\System32\drivers\ati1pdxx.sys [2010-02-01 15:56:17 | 000,011,615 | ---- | C] (ATI Technologies Inc.) -- H:\WINDOWS\System32\drivers\ati1mdxx.sys [2010-02-01 15:56:16 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- H:\WINDOWS\System32\drivers\atintuxx.sys [2010-02-01 15:56:16 | 000,063,488 | ---- | C] (ATI Technologies Inc.) -- H:\WINDOWS\System32\drivers\atinxsxx.sys [2010-02-01 15:56:16 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- H:\WINDOWS\System32\drivers\atinxbxx.sys [2010-02-01 15:56:16 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- H:\WINDOWS\System32\drivers\atinsnxx.sys [2010-02-01 15:56:16 | 000,025,471 | ---- | C] (Intel® Corporation) -- H:\WINDOWS\System32\drivers\atv04nt5.dll [2010-02-01 15:56:16 | 000,021,183 | ---- | C] (Intel® Corporation) -- H:\WINDOWS\System32\drivers\atv01nt5.dll [2010-02-01 15:56:16 | 000,017,279 | ---- | C] (Intel® Corporation) -- H:\WINDOWS\System32\drivers\atv10nt5.dll [2010-02-01 15:56:16 | 000,014,143 | ---- | C] (Intel® Corporation) -- H:\WINDOWS\System32\drivers\atv06nt5.dll [2010-02-01 15:56:16 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- H:\WINDOWS\System32\drivers\atinttxx.sys [2010-02-01 15:56:16 | 000,011,359 | ---- | C] (Intel® Corporation) -- H:\WINDOWS\System32\drivers\atv02nt5.dll [2010-02-01 15:56:15 | 000,144,384 | ---- | C] (Windows ® Server 2003 DDK provider) -- H:\WINDOWS\System32\drivers\hdaudbus.sys [2010-02-01 15:56:15 | 000,036,480 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\drivers\bthprint.sys [2010-02-01 15:56:15 | 000,015,423 | ---- | C] (Intel® Corporation) -- H:\WINDOWS\System32\drivers\ch7xxnt5.dll [2010-02-01 15:56:12 | 001,041,536 | ---- | C] (Conexant Systems, Inc.) -- H:\WINDOWS\System32\drivers\hsfdpsp2.sys [2010-02-01 15:56:12 | 000,685,056 | ---- | C] (Conexant Systems, Inc.) -- H:\WINDOWS\System32\drivers\hsfcxts2.sys [2010-02-01 15:56:12 | 000,220,032 | ---- | C] (Conexant Systems, Inc.) -- H:\WINDOWS\System32\drivers\hsfbs2s2.sys [2010-02-01 15:56:12 | 000,011,868 | ---- | C] (Conexant) -- H:\WINDOWS\System32\drivers\mdmxsdk.sys [2010-02-01 15:56:11 | 001,309,184 | ---- | C] (Smart Link) -- H:\WINDOWS\System32\drivers\mtlstrm.sys [2010-02-01 15:56:11 | 000,452,736 | ---- | C] (Matrox Graphics Inc.) -- H:\WINDOWS\System32\drivers\mtxparhm.sys [2010-02-01 15:56:11 | 000,126,686 | ---- | C] (Smart Link) -- H:\WINDOWS\System32\drivers\mtlmnt5.sys [2010-02-01 15:56:10 | 001,897,408 | ---- | C] (NVIDIA Corporation) -- H:\WINDOWS\System32\drivers\nv4_mini.sys [2010-02-01 15:56:10 | 001,897,408 | ---- | C] (NVIDIA Corporation) -- H:\WINDOWS\System32\dllcache\nv4_mini.sys [2010-02-01 15:56:10 | 000,180,360 | ---- | C] (Smart Link) -- H:\WINDOWS\System32\drivers\ntmtlfax.sys [2010-02-01 15:56:10 | 000,013,776 | ---- | C] (Smart Link) -- H:\WINDOWS\System32\drivers\recagent.sys [2010-02-01 15:56:10 | 000,012,672 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\drivers\mutohpen.sys [2010-02-01 15:56:09 | 000,404,990 | ---- | C] (Smart Link) -- H:\WINDOWS\System32\drivers\slntamr.sys [2010-02-01 15:56:09 | 000,166,912 | ---- | C] (S3 Graphics, Inc.) -- H:\WINDOWS\System32\drivers\s3gnbm.sys [2010-02-01 15:56:09 | 000,129,535 | ---- | C] (Smart Link) -- H:\WINDOWS\System32\drivers\slnt7554.sys [2010-02-01 15:56:09 | 000,095,424 | ---- | C] (Smart Link) -- H:\WINDOWS\System32\drivers\slnthal.sys [2010-02-01 15:56:09 | 000,040,960 | ---- | C] (Silicon Integrated Systems Corporation) -- H:\WINDOWS\System32\drivers\sisagp.sys [2010-02-01 15:56:09 | 000,030,592 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\drivers\rndismpx.sys [2010-02-01 15:56:09 | 000,013,240 | ---- | C] (Smart Link) -- H:\WINDOWS\System32\drivers\slwdmsup.sys [2010-02-01 15:56:09 | 000,005,888 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\drivers\smbali.sys [2010-02-01 15:56:09 | 000,003,901 | ---- | C] (Intel® Corporation) -- H:\WINDOWS\System32\drivers\siint5.dll [2010-02-01 15:56:08 | 000,025,471 | ---- | C] (Intel® Corporation) -- H:\WINDOWS\System32\drivers\watv10nt.sys [2010-02-01 15:56:08 | 000,022,271 | ---- | C] (Intel® Corporation) -- H:\WINDOWS\System32\drivers\watv06nt.sys [2010-02-01 15:56:08 | 000,012,800 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\drivers\usb8023x.sys [2010-02-01 15:56:08 | 000,011,935 | ---- | C] (Intel® Corporation) -- H:\WINDOWS\System32\drivers\wadv11nt.sys [2010-02-01 15:56:08 | 000,011,871 | ---- | C] (Intel® Corporation) -- H:\WINDOWS\System32\drivers\wadv09nt.sys [2010-02-01 15:56:08 | 000,011,807 | ---- | C] (Intel® Corporation) -- H:\WINDOWS\System32\drivers\wadv07nt.sys [2010-02-01 15:56:08 | 000,011,325 | ---- | C] (Intel® Corporation) -- H:\WINDOWS\System32\drivers\vchnt5.dll [2010-02-01 15:56:08 | 000,011,295 | ---- | C] (Intel® Corporation) -- H:\WINDOWS\System32\drivers\wadv08nt.sys [2010-02-01 15:53:03 | 000,000,000 | ---D | C] -- H:\WINDOWS\System32\ReinstallBackups [2010-02-01 15:45:44 | 000,000,000 | -H-D | C] -- H:\WINDOWS\$NtServicePackUninstall$ [2010-02-01 15:37:26 | 000,000,000 | ---D | C] -- H:\6d0a10f9332b71a60c0901ff2429 [2010-02-01 02:03:59 | 322,713,128 | ---- | C] (Microsoft Corporation) -- H:\Documents and Settings\Administrator\Pulpit\WindowsXP-KB936929-SP3-x86-PLK.exe [2010-02-01 00:01:50 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Administrator\Moje dokumenty\Command & Conquer 3 Wojny o tyberium [2010-01-31 23:50:17 | 000,000,000 | ---D | C] -- H:\Program Files\BySoft FreeRAM [2010-01-31 22:44:02 | 000,000,000 | ---D | C] -- H:\Program Files\Runes of Magic [2010-01-31 12:58:31 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Administrator\Dane aplikacji\Command & Conquer 3 Wojny o tyberium [2010-01-31 12:57:51 | 000,000,000 | RH-D | C] -- H:\Documents and Settings\Administrator\Dane aplikacji\SecuROM [2010-01-31 12:48:09 | 000,000,000 | ---D | C] -- H:\Program Files\RegCleaner [2010-01-31 12:40:35 | 000,000,000 | ---D | C] -- H:\WINDOWS\pss [2010-01-30 23:13:21 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Administrator\Dane aplikacji\Moje pliki gry Władca Pierścieni, Król Nazguli [2010-01-30 22:43:55 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Administrator\Dane aplikacji\Moje pliki Bitwy o Śródziemie? II [2010-01-30 22:42:54 | 000,000,000 | RH-D | C] -- H:\Documents and Settings\Administrator\Recent [2010-01-30 22:37:10 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Administrator\Pulpit\Runes_of_Magic_2.1.0.1871 [2010-01-30 22:37:10 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Administrator\Dane aplikacji\FOG Downloader [2010-01-30 12:51:31 | 000,000,000 | ---D | C] -- H:\Program Files\King's Bounty DEMO [2010-01-30 12:48:28 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Administrator\Pulpit\King's Bounty DEMO setup [2010-01-30 02:11:40 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\The Witcher [2010-01-29 16:37:23 | 000,000,000 | ---D | C] -- H:\Program Files\The Witcher Demo [2010-01-28 21:35:59 | 000,000,000 | ---D | C] -- H:\Documents and Settings\All Users\Dane aplikacji\Last.fm [2010-01-28 21:34:24 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Last.fm [2010-01-28 21:34:17 | 000,000,000 | ---D | C] -- H:\Program Files\Last.fm [2010-01-28 21:05:23 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Administrator\Dane aplikacji\Command & Conquer 3 Tiberium Wars Demo [2010-01-28 20:59:24 | 000,000,000 | ---D | C] -- H:\Program Files\Electronic Arts [2010-01-25 00:49:07 | 000,000,000 | ---D | C] -- H:\WinUAE1610 [2010-01-25 00:21:13 | 000,000,000 | ---D | C] -- H:\Program Files\WinUAE [2010-01-22 23:47:05 | 000,000,000 | ---D | C] -- H:\Program Files\America's Army Server Manager [2010-01-22 23:42:31 | 000,000,000 | ---D | C] -- H:\Program Files\America's Army [2010-01-19 17:07:56 | 000,000,000 | ---D | C] -- H:\Program Files\Grupa IMAGE [2010-01-18 13:00:37 | 000,023,120 | ---- | C] (ALWIL Software) -- H:\WINDOWS\System32\drivers\aswRdr.sys [2010-01-18 13:00:36 | 000,048,560 | ---- | C] (ALWIL Software) -- H:\WINDOWS\System32\drivers\aswTdi.sys [2010-01-18 13:00:35 | 000,027,408 | ---- | C] (ALWIL Software) -- H:\WINDOWS\System32\drivers\aavmker4.sys [2010-01-18 13:00:34 | 000,097,480 | ---- | C] (ALWIL Software) -- H:\WINDOWS\System32\AvastSS.scr [2010-01-18 13:00:33 | 000,114,768 | ---- | C] (ALWIL Software) -- H:\WINDOWS\System32\drivers\aswSP.sys [2010-01-18 13:00:33 | 000,094,160 | ---- | C] (ALWIL Software) -- H:\WINDOWS\System32\drivers\aswmon2.sys [2010-01-18 13:00:33 | 000,093,424 | ---- | C] (ALWIL Software) -- H:\WINDOWS\System32\drivers\aswmon.sys [2010-01-18 13:00:33 | 000,020,560 | ---- | C] (ALWIL Software) -- H:\WINDOWS\System32\drivers\aswFsBlk.sys [2010-01-18 13:00:06 | 001,280,480 | ---- | C] (ALWIL Software) -- H:\WINDOWS\System32\aswBoot.exe [2010-01-18 13:00:06 | 001,060,864 | ---- | C] (Microsoft Corporation) -- H:\WINDOWS\System32\MFC71.dll [2010-01-18 13:00:04 | 000,000,000 | ---D | C] -- H:\Program Files\Alwil Software [2010-01-18 12:23:33 | 000,000,000 | ---D | C] -- H:\Program Files\Common Files\Symantec Shared [2010-01-18 11:59:37 | 000,000,000 | R--D | C] -- H:\Documents and Settings\Administrator\Moje dokumenty\Poradniki [2010-01-15 20:24:01 | 000,061,536 | R--- | C] (MCCI) -- H:\WINDOWS\System32\drivers\se45bus.sys [2010-01-15 20:24:01 | 000,005,872 | R--- | C] (MCCI) -- H:\WINDOWS\System32\drivers\se45whnt.sys [2010-01-15 20:24:01 | 000,005,872 | R--- | C] (MCCI) -- H:\WINDOWS\System32\drivers\se45wh.sys [2010-01-12 17:12:12 | 000,000,000 | R--D | C] -- H:\Documents and Settings\Administrator\Moje dokumenty\Gry Xbox 360 [2010-01-10 21:33:24 | 000,000,000 | ---D | C] -- H:\Program Files\JDownloader [2010-01-09 00:07:37 | 000,000,000 | ---D | C] -- H:\Program Files\CCleaner [2010-01-08 23:58:41 | 000,000,000 | ---D | C] -- H:\Program Files\GSC Game World [2010-01-08 23:16:28 | 000,000,000 | R--D | C] -- H:\Documents and Settings\Administrator\Moje dokumenty\Pobrane Pliki [2010-01-08 22:44:02 | 000,000,000 | R--D | C] -- H:\Documents and Settings\Administrator\Moje dokumenty\Programy Xbox 360 [2010-01-08 21:46:48 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\WDSetup [2010-01-08 21:45:20 | 000,000,000 | R--D | C] -- H:\Documents and Settings\Administrator\Moje dokumenty\Programy PS2 [2010-01-08 21:44:35 | 000,000,000 | R--D | C] -- H:\Documents and Settings\Administrator\Moje dokumenty\Programy PSP [2010-01-08 21:43:45 | 000,000,000 | ---D | C] -- H:\Program Files\DIFX [2010-01-08 21:43:41 | 000,000,000 | ---D | C] -- H:\WINDOWS\System32\DRVSTORE [2010-01-08 21:42:21 | 000,000,000 | ---D | C] -- H:\Memento Patcher (PS2) [2010-01-08 21:39:21 | 000,000,000 | ---D | C] -- H:\Remote Joy [2010-01-08 21:38:23 | 000,000,000 | R--D | C] -- H:\Documents and Settings\Administrator\Pulpit\Programy Filmy i Muza [2010-01-08 21:33:40 | 000,000,000 | R--D | C] -- H:\Documents and Settings\Administrator\Pulpit\Programy Konsole [2010-01-08 01:40:40 | 000,000,000 | R--D | C] -- H:\Documents and Settings\Administrator\Moje dokumenty\Downloads [2010-01-08 01:40:39 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Administrator\Dane aplikacji\IDM [2010-01-08 01:40:29 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Administrator\Dane aplikacji\DMCache [2010-01-08 01:38:02 | 000,000,000 | ---D | C] -- H:\Program Files\Internet Download Manager [2010-01-07 17:30:51 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Deployment [2010-01-06 23:29:37 | 000,000,000 | R--D | C] -- H:\Documents and Settings\Administrator\Moje dokumenty\Romy NES [2010-01-06 23:18:33 | 000,000,000 | R--D | C] -- H:\Documents and Settings\Administrator\Moje dokumenty\Mangi [2010-01-06 18:37:43 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Administrator\Dane aplikacji\AdobeUM [2010-01-05 22:15:47 | 000,000,000 | ---D | C] -- H:\Program Files\FlashGet [2010-01-05 19:30:49 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Administrator\Dane aplikacji\MetaProducts [2010-01-05 19:21:39 | 000,000,000 | ---D | C] -- H:\Downloads [2010-01-05 19:19:46 | 000,000,000 | ---D | C] -- H:\Documents and Settings\Administrator\Dane aplikacji\FlashGet [2009-12-30 21:31:57 | 000,000,000 | --SD | M] -- H:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [2009-12-28 22:23:25 | 000,000,000 | ---D | M] -- H:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft [2009-12-28 22:19:42 | 000,000,000 | --SD | M] -- H:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [2002-04-11 02:41:06 | 000,065,536 | R--- | C] ( ) -- H:\WINDOWS\System32\A3d.dll [6 H:\WINDOWS\*.tmp files -> H:\WINDOWS\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2010-02-03 15:18:10 | 000,548,864 | ---- | M] (OldTimer Tools) -- H:\Documents and Settings\Administrator\Pulpit\OTL.exe [2010-02-03 14:49:36 | 005,075,300 | ---- | M] () -- H:\Documents and Settings\Administrator\Pulpit\Risk_1.0.9.8_en.zip [2010-02-02 23:59:16 | 002,883,584 | -H-- | M] () -- H:\Documents and Settings\Administrator\NTUSER.DAT [2010-02-02 23:49:16 | 001,012,668 | ---- | M] () -- H:\WINDOWS\System32\PerfStringBackup.INI [2010-02-02 23:49:16 | 000,457,678 | ---- | M] () -- H:\WINDOWS\System32\perfh015.dat [2010-02-02 23:49:16 | 000,401,064 | ---- | M] () -- H:\WINDOWS\System32\perfh009.dat [2010-02-02 23:49:16 | 000,079,188 | ---- | M] () -- H:\WINDOWS\System32\perfc015.dat [2010-02-02 23:49:16 | 000,062,344 | ---- | M] () -- H:\WINDOWS\System32\perfc009.dat [2010-02-02 23:45:02 | 000,000,006 | -H-- | M] () -- H:\WINDOWS\tasks\SA.DAT [2010-02-02 23:44:52 | 000,002,048 | --S- | M] () -- H:\WINDOWS\bootstat.dat [2010-02-02 23:43:40 | 000,000,188 | -HS- | M] () -- H:\Documents and Settings\Administrator\ntuser.ini [2010-02-02 23:43:34 | 002,649,374 | -H-- | M] () -- H:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010-02-02 21:02:04 | 000,001,611 | ---- | M] () -- H:\Documents and Settings\Administrator\Pulpit\Driver Cleaner 3.lnk [2010-02-02 21:01:36 | 001,502,423 | ---- | M] () -- H:\Documents and Settings\Administrator\Pulpit\DC3Setup_33(dobreprogramy.pl).zip [2010-02-02 20:43:58 | 000,002,262 | ---- | M] () -- H:\WINDOWS\System32\wpa.dbl [2010-02-02 17:31:10 | 000,001,685 | ---- | M] () -- H:\Documents and Settings\Administrator\Pulpit\Runes of Magic.lnk [2010-02-02 10:40:04 | 000,000,776 | ---- | M] () -- H:\Documents and Settings\Administrator\Pulpit\EVEREST Home Edition.lnk [2010-02-02 10:39:53 | 004,179,293 | ---- | M] (Lavalys, Inc. ) -- H:\Documents and Settings\Administrator\Pulpit\everesthome220(dobreprogramy.pl).exe [2010-02-02 10:19:33 | 004,696,422 | ---- | M] (Topala Software Solutions ) -- H:\Documents and Settings\Administrator\Pulpit\siw-setup.exe [2010-02-02 09:34:25 | 000,019,808 | ---- | M] () -- H:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2010-02-01 18:30:53 | 000,001,190 | ---- | M] () -- H:\Documents and Settings\Administrator\Pulpit\'Folding@Home'.lnk [2010-02-01 18:23:37 | 046,656,888 | ---- | M] (Advanced Micro Devices, Inc.) -- H:\Documents and Settings\Administrator\Pulpit\10-1_xp32_dd_ccc_wdm_enu.exe [2010-02-01 16:58:11 | 000,000,227 | ---- | M] () -- H:\WINDOWS\system.ini [2010-02-01 16:36:34 | 000,000,281 | RHS- | M] () -- H:\boot.ini [2010-02-01 16:34:13 | 000,316,640 | ---- | M] () -- H:\WINDOWS\WMSysPr9.prx [2010-02-01 16:32:05 | 000,118,152 | ---- | M] () -- H:\WINDOWS\System32\FNTCACHE.DAT [2010-02-01 15:57:37 | 005,115,824 | ---- | M] (Malwarebytes Corporation ) -- H:\Documents and Settings\Administrator\Pulpit\mbam-setup.exe [2010-02-01 15:55:44 | 000,251,152 | RHS- | M] () -- H:\ntldr [2010-02-01 02:48:56 | 322,713,128 | ---- | M] (Microsoft Corporation) -- H:\Documents and Settings\Administrator\Pulpit\WindowsXP-KB936929-SP3-x86-PLK.exe [2010-01-31 23:50:18 | 000,000,726 | ---- | M] () -- H:\Documents and Settings\Administrator\Pulpit\BySoft FreeRAM.lnk [2010-01-31 23:50:13 | 000,504,808 | ---- | M] () -- H:\Documents and Settings\Administrator\Pulpit\BySoftFreeRAM32.exe [2010-01-31 14:03:42 | 000,000,069 | ---- | M] () -- H:\WINDOWS\NeroDigital.ini [2010-01-31 14:03:39 | 000,028,160 | ---- | M] () -- H:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-01-31 12:41:45 | 000,000,573 | ---- | M] () -- H:\WINDOWS\win.ini [2010-01-30 13:10:48 | 000,001,599 | ---- | M] () -- H:\Documents and Settings\All Users\Pulpit\King's Bounty DEMO.lnk [2010-01-28 20:34:08 | 000,000,000 | ---- | M] () -- H:\Documents and Settings\Administrator\AK47.rar [2010-01-26 18:26:00 | 000,026,796 | ---- | M] () -- H:\Documents and Settings\Administrator\Pulpit\obcy.jpg [2010-01-18 13:00:33 | 000,002,645 | ---- | M] () -- H:\WINDOWS\System32\CONFIG.NT [2010-01-18 12:01:07 | 000,054,156 | -H-- | M] () -- H:\WINDOWS\QTFont.qfn [2010-01-18 12:01:07 | 000,001,409 | ---- | M] () -- H:\WINDOWS\QTFont.for [2010-01-18 12:00:36 | 000,001,593 | ---- | M] () -- H:\Documents and Settings\Administrator\Moje dokumenty\JDownloader Pobrane pliki.lnk [2010-01-07 16:07:14 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- H:\WINDOWS\System32\drivers\mbamswissarmy.sys [2010-01-07 16:07:04 | 000,019,160 | ---- | M] (Malwarebytes Corporation) -- H:\WINDOWS\System32\drivers\mbam.sys [2010-01-05 19:22:04 | 000,000,305 | ---- | M] () -- H:\WINDOWS\System32\secushr.dat [2010-01-05 19:21:30 | 000,000,025 | ---- | M] () -- H:\WINDOWS\libem.INI [6 H:\WINDOWS\*.tmp files -> H:\WINDOWS\*.tmp -> ] ========== Files Created - No Company Name ========== [2010-02-03 14:48:51 | 005,075,300 | ---- | C] () -- H:\Documents and Settings\Administrator\Pulpit\Risk_1.0.9.8_en.zip [2010-02-02 21:02:04 | 000,001,611 | ---- | C] () -- H:\Documents and Settings\Administrator\Pulpit\Driver Cleaner 3.lnk [2010-02-02 21:00:51 | 001,502,423 | ---- | C] () -- H:\Documents and Settings\Administrator\Pulpit\DC3Setup_33(dobreprogramy.pl).zip [2010-02-02 10:40:04 | 000,000,776 | ---- | C] () -- H:\Documents and Settings\Administrator\Pulpit\EVEREST Home Edition.lnk [2010-02-01 18:30:53 | 000,001,190 | ---- | C] () -- H:\Documents and Settings\Administrator\Pulpit\'Folding@Home'.lnk [2010-02-01 16:36:34 | 000,000,210 | ---- | C] () -- H:\Boot.bak [2010-02-01 16:36:31 | 000,262,400 | ---- | C] () -- H:\cmldr [2010-02-01 16:33:51 | 000,077,312 | ---- | C] () -- H:\WINDOWS\MBR.exe [2010-02-01 16:33:50 | 000,261,632 | ---- | C] () -- H:\WINDOWS\PEV.exe [2010-02-01 16:33:50 | 000,098,816 | ---- | C] () -- H:\WINDOWS\sed.exe [2010-02-01 16:33:50 | 000,080,412 | ---- | C] () -- H:\WINDOWS\grep.exe [2010-02-01 16:33:50 | 000,068,096 | ---- | C] () -- H:\WINDOWS\zip.exe [2010-02-01 16:05:31 | 000,010,457 | ---- | C] () -- H:\WINDOWS\System32\dllcache\wmptour.hta [2010-02-01 16:05:31 | 000,001,771 | ---- | C] () -- H:\WINDOWS\System32\dllcache\wmptour.css [2010-02-01 16:05:30 | 000,693,932 | ---- | C] () -- H:\WINDOWS\System32\dllcache\wmplayer.chm [2010-02-01 16:05:30 | 000,071,460 | ---- | C] () -- H:\WINDOWS\System32\dllcache\wmplayer.adm [2010-02-01 16:05:30 | 000,027,965 | ---- | C] () -- H:\WINDOWS\System32\dllcache\wmplay.chm [2010-02-01 16:05:30 | 000,001,714 | ---- | C] () -- H:\WINDOWS\System32\dllcache\wmpocm.inf [2010-02-01 16:05:30 | 000,000,420 | ---- | C] () -- H:\WINDOWS\System32\dllcache\wmploc.js [2010-02-01 16:05:29 | 000,172,196 | ---- | C] () -- H:\WINDOWS\System32\dllcache\wmpaud9.wav [2010-02-01 16:05:29 | 000,172,196 | ---- | C] () -- H:\WINDOWS\System32\dllcache\wmpaud8.wav [2010-02-01 16:05:28 | 000,343,204 | ---- | C] () -- H:\WINDOWS\System32\dllcache\wmpaud7.wav [2010-02-01 16:05:28 | 000,343,204 | ---- | C] () -- H:\WINDOWS\System32\dllcache\wmpaud6.wav [2010-02-01 16:05:27 | 000,086,196 | ---- | C] () -- H:\WINDOWS\System32\dllcache\wmpaud5.wav [2010-02-01 16:05:27 | 000,086,180 | ---- | C] () -- H:\WINDOWS\System32\dllcache\wmpaud4.wav [2010-02-01 16:05:26 | 000,172,196 | ---- | C] () -- H:\WINDOWS\System32\dllcache\wmpaud3.wav [2010-02-01 16:05:26 | 000,086,180 | ---- | C] () -- H:\WINDOWS\System32\dllcache\wmpaud2.wav [2010-02-01 16:05:25 | 000,354,468 | ---- | C] () -- H:\WINDOWS\System32\dllcache\wmpaud1.wav [2010-02-01 16:05:24 | 000,058,350 | ---- | C] () -- H:\WINDOWS\System32\dllcache\wmp.inf [2010-02-01 16:05:22 | 000,013,540 | ---- | C] () -- H:\WINDOWS\System32\dllcache\wmfsdk.inf [2010-02-01 16:05:21 | 000,034,548 | ---- | C] () -- H:\WINDOWS\System32\dllcache\wmdm.inf [2010-02-01 16:05:20 | 000,008,677 | ---- | C] () -- H:\WINDOWS\System32\dllcache\wm7.gif [2010-02-01 16:05:20 | 000,007,892 | ---- | C] () -- H:\WINDOWS\System32\dllcache\wm9.gif [2010-02-01 16:05:20 | 000,004,193 | ---- | C] () -- H:\WINDOWS\System32\dllcache\wm8.gif [2010-02-01 16:05:19 | 000,007,369 | ---- | C] () -- H:\WINDOWS\System32\dllcache\wm4.gif [2010-02-01 16:05:19 | 000,006,060 | ---- | C] () -- H:\WINDOWS\System32\dllcache\wm6.gif [2010-02-01 16:05:19 | 000,002,477 | ---- | C] () -- H:\WINDOWS\System32\dllcache\wm5.gif [2010-02-01 16:05:18 | 000,007,636 | ---- | C] () -- H:\WINDOWS\System32\dllcache\wm2.gif [2010-02-01 16:05:18 | 000,006,241 | ---- | C] () -- H:\WINDOWS\System32\dllcache\wm3.gif [2010-02-01 16:05:17 | 000,300,969 | ---- | C] () -- H:\WINDOWS\System32\dllcache\viz.wmv [2010-02-01 16:05:17 | 000,017,489 | ---- | C] () -- H:\WINDOWS\System32\dllcache\videobg.gif [2010-02-01 16:05:17 | 000,005,789 | ---- | C] () -- H:\WINDOWS\System32\dllcache\wm1.gif [2010-02-01 16:05:17 | 000,005,290 | ---- | C] () -- H:\WINDOWS\System32\dllcache\vidsamp.gif [2010-02-01 16:05:16 | 000,002,469 | ---- | C] () -- H:\WINDOWS\System32\dllcache\tplay.gif [2010-02-01 16:05:16 | 000,002,450 | ---- | C] () -- H:\WINDOWS\System32\dllcache\tpause.gif [2010-02-01 16:05:16 | 000,002,375 | ---- | C] () -- H:\WINDOWS\System32\dllcache\tplayh.gif [2010-02-01 16:05:16 | 000,002,371 | ---- | C] () -- H:\WINDOWS\System32\dllcache\tpauseh.gif [2010-02-01 16:05:15 | 000,023,829 | ---- | C] () -- H:\WINDOWS\System32\dllcache\tourbg.gif [2010-02-01 16:05:15 | 000,003,187 | ---- | C] () -- H:\WINDOWS\System32\dllcache\tour.js [2010-02-01 16:05:15 | 000,001,398 | ---- | C] () -- H:\WINDOWS\System32\dllcache\taon.gif [2010-02-01 16:05:15 | 000,001,380 | ---- | C] () -- H:\WINDOWS\System32\dllcache\taonh.gif [2010-02-01 16:05:15 | 000,001,380 | ---- | C] () -- H:\WINDOWS\System32\dllcache\taoff.gif [2010-02-01 16:05:15 | 000,001,367 | ---- | C] () -- H:\WINDOWS\System32\dllcache\taoffh.gif [2010-02-01 16:05:14 | 000,572,557 | ---- | C] () -- H:\WINDOWS\System32\dllcache\rtuner.wmv [2010-02-01 16:05:14 | 000,066,160 | ---- | C] () -- H:\WINDOWS\System32\dllcache\revert.wmz [2010-02-01 16:05:14 | 000,001,818 | ---- | C] () -- H:\WINDOWS\System32\dllcache\skins.inf [2010-02-01 16:05:14 | 000,001,148 | ---- | C] () -- H:\WINDOWS\System32\dllcache\snd.htm [2010-02-01 16:05:13 | 000,089,253 | ---- | C] () -- H:\WINDOWS\System32\dllcache\plyr_err.chm [2010-02-01 16:05:13 | 000,001,482 | ---- | C] () -- H:\WINDOWS\System32\dllcache\plylst6.wpl [2010-02-01 16:05:13 | 000,001,479 | ---- | C] () -- H:\WINDOWS\System32\dllcache\plylst5.wpl [2010-02-01 16:05:13 | 000,001,474 | ---- | C] () -- H:\WINDOWS\System32\dllcache\plylst3.wpl [2010-02-01 16:05:13 | 000,001,471 | ---- | C] () -- H:\WINDOWS\System32\dllcache\plylst12.wpl [2010-02-01 16:05:13 | 000,001,463 | ---- | C] () -- H:\WINDOWS\System32\dllcache\plylst4.wpl [2010-02-01 16:05:13 | 000,001,046 | ---- | C] () -- H:\WINDOWS\System32\dllcache\plylst7.wpl [2010-02-01 16:05:13 | 000,001,046 | ---- | C] () -- H:\WINDOWS\System32\dllcache\plylst2.wpl [2010-02-01 16:05:13 | 000,001,041 | ---- | C] () -- H:\WINDOWS\System32\dllcache\plylst8.wpl [2010-02-01 16:05:13 | 000,000,825 | ---- | C] () -- H:\WINDOWS\System32\dllcache\plylst11.wpl [2010-02-01 16:05:13 | 000,000,822 | ---- | C] () -- H:\WINDOWS\System32\dllcache\plylst10.wpl [2010-02-01 16:05:13 | 000,000,808 | ---- | C] () -- H:\WINDOWS\System32\dllcache\plylst13.wpl [2010-02-01 16:05:13 | 000,000,792 | ---- | C] () -- H:\WINDOWS\System32\dllcache\plylst14.wpl [2010-02-01 16:05:13 | 000,000,786 | ---- | C] () -- H:\WINDOWS\System32\dllcache\plylst9.wpl [2010-02-01 16:05:13 | 000,000,738 | ---- | C] () -- H:\WINDOWS\System32\dllcache\plylst15.wpl [2010-02-01 16:05:12 | 000,375,519 | ---- | C] () -- H:\WINDOWS\System32\dllcache\nuskin.wmv [2010-02-01 16:05:12 | 000,022,060 | ---- | C] () -- H:\WINDOWS\System32\dllcache\npds.zip [2010-02-01 16:05:12 | 000,001,262 | ---- | C] () -- H:\WINDOWS\System32\dllcache\plylst1.wpl [2010-02-01 16:05:12 | 000,000,403 | ---- | C] () -- H:\WINDOWS\System32\dllcache\npdrmv2.zip [2010-02-01 16:05:10 | 000,097,117 | ---- | C] () -- H:\WINDOWS\System32\dllcache\mplayer2.hlp [2010-02-01 16:05:10 | 000,036,644 | ---- | C] () -- H:\WINDOWS\System32\dllcache\mplayer2.inf [2010-02-01 16:05:10 | 000,002,778 | ---- | C] () -- H:\WINDOWS\System32\dllcache\mplogoh.gif [2010-02-01 16:05:10 | 000,002,545 | ---- | C] () -- H:\WINDOWS\System32\dllcache\mplogo.gif [2010-02-01 16:05:09 | 000,001,885 | ---- | C] () -- H:\WINDOWS\System32\dllcache\mplayer2.cnt [2010-02-01 16:05:08 | 000,457,607 | ---- | C] () -- H:\WINDOWS\System32\dllcache\mdlib.wmv [2010-02-01 16:05:07 | 000,381,425 | ---- | C] () -- H:\WINDOWS\System32\dllcache\copycd.wmv [2010-02-01 16:05:07 | 000,005,971 | ---- | C] () -- H:\WINDOWS\System32\dllcache\events.js [2010-02-01 16:05:06 | 000,184,137 | ---- | C] () -- H:\WINDOWS\System32\dllcache\compact.wmz [2010-02-01 16:05:06 | 000,009,585 | ---- | C] () -- H:\WINDOWS\System32\dllcache\controls.css [2010-02-01 16:05:06 | 000,008,298 | ---- | C] () -- H:\WINDOWS\System32\dllcache\contents.htm [2010-02-01 16:05:06 | 000,006,878 | ---- | C] () -- H:\WINDOWS\System32\dllcache\controls.js [2010-02-01 16:05:05 | 000,000,773 | ---- | C] () -- H:\WINDOWS\System32\dllcache\cnth.gif [2010-02-01 16:05:05 | 000,000,773 | ---- | C] () -- H:\WINDOWS\System32\dllcache\cnt.gif [2010-02-01 16:05:05 | 000,000,772 | ---- | C] () -- H:\WINDOWS\System32\dllcache\cntd.gif [2010-02-01 16:05:04 | 000,000,999 | ---- | C] () -- H:\WINDOWS\System32\dllcache\bktrh.gif [2010-02-01 16:05:04 | 000,000,760 | ---- | C] () -- H:\WINDOWS\System32\dllcache\cloapph.gif [2010-02-01 16:05:04 | 000,000,717 | ---- | C] () -- H:\WINDOWS\System32\dllcache\cloapp.gif [2010-02-01 15:56:16 | 000,064,352 | ---- | C] () -- H:\WINDOWS\System32\drivers\ativmc20.cod [2010-02-01 15:56:15 | 000,129,045 | ---- | C] () -- H:\WINDOWS\System32\drivers\cxthsfs2.cty [2010-02-01 15:56:10 | 000,067,866 | ---- | C] () -- H:\WINDOWS\System32\drivers\netwlan5.img [2010-01-31 23:50:18 | 000,000,726 | ---- | C] () -- H:\Documents and Settings\Administrator\Pulpit\BySoft FreeRAM.lnk [2010-01-31 23:49:39 | 000,504,808 | ---- | C] () -- H:\Documents and Settings\Administrator\Pulpit\BySoftFreeRAM32.exe [2010-01-31 23:28:26 | 000,001,685 | ---- | C] () -- H:\Documents and Settings\Administrator\Pulpit\Runes of Magic.lnk [2010-01-30 13:10:48 | 000,001,599 | ---- | C] () -- H:\Documents and Settings\All Users\Pulpit\King's Bounty DEMO.lnk [2010-01-28 20:34:08 | 000,000,000 | ---- | C] () -- H:\Documents and Settings\Administrator\AK47.rar [2010-01-26 18:26:00 | 000,026,796 | ---- | C] () -- H:\Documents and Settings\Administrator\Pulpit\obcy.jpg [2010-01-18 13:00:06 | 000,380,928 | ---- | C] () -- H:\WINDOWS\System32\actskin4.ocx [2010-01-18 12:01:07 | 000,054,156 | -H-- | C] () -- H:\WINDOWS\QTFont.qfn [2010-01-18 12:01:07 | 000,001,409 | ---- | C] () -- H:\WINDOWS\QTFont.for [2010-01-18 11:47:27 | 000,001,593 | ---- | C] () -- H:\Documents and Settings\Administrator\Moje dokumenty\JDownloader Pobrane pliki.lnk [2010-01-05 19:22:04 | 000,000,305 | ---- | C] () -- H:\WINDOWS\System32\secushr.dat [2010-01-05 19:21:30 | 000,000,025 | ---- | C] () -- H:\WINDOWS\libem.INI [2010-01-02 21:55:01 | 000,000,069 | ---- | C] () -- H:\WINDOWS\NeroDigital.ini [2009-12-31 11:48:55 | 000,028,160 | ---- | C] () -- H:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2009-12-31 00:18:29 | 000,000,109 | ---- | C] () -- H:\WINDOWS\disney.ini [2009-12-30 21:30:38 | 000,000,010 | ---- | C] () -- H:\WINDOWS\WININIT.INI [2009-12-29 00:06:36 | 000,000,385 | ---- | C] () -- H:\WINDOWS\ODBC.INI [2009-12-28 23:39:40 | 000,000,138 | ---- | C] () -- H:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\fusioncache.dat [2009-12-28 23:32:07 | 000,005,627 | R--- | C] () -- H:\WINDOWS\System32\Ludap17.ini [2009-12-28 23:32:07 | 000,000,039 | R--- | C] () -- H:\WINDOWS\System32\ctzapxx.ini [2008-06-26 21:09:38 | 000,042,320 | ---- | C] () -- H:\WINDOWS\System32\xfcodec.dll [2005-05-03 12:38:42 | 000,064,512 | R--- | C] () -- H:\WINDOWS\System32\P17.dll [2003-10-02 11:48:18 | 000,053,248 | R--- | C] () -- H:\WINDOWS\System32\P17CPI.dll [2003-01-07 16:05:08 | 000,002,695 | ---- | C] () -- H:\WINDOWS\System32\OUTLPERF.INI [1996-04-03 20:33:26 | 000,005,248 | ---- | C] () -- H:\WINDOWS\System32\giveio.sys < End of report > Link do komentarza Udostępnij na innych stronach More sharing options...
Sevard Napisano Luty 3, 2010 Zgłoś Share Napisano Luty 3, 2010 @luq92 RSIT nie RIST. @up Daj wygenerowany wcześniej log z combofixa. Skoro i tak użyłeś tego programu, to niech przynajmniej się na coś przyda. Link do komentarza Udostępnij na innych stronach More sharing options...
himus11 Napisano Luty 3, 2010 Autor Zgłoś Share Napisano Luty 3, 2010 [CIACH Nie widze takiej opcji w Combofixie żeby podać stare logi Link do komentarza Udostępnij na innych stronach More sharing options...
Sevard Napisano Luty 3, 2010 Zgłoś Share Napisano Luty 3, 2010 Nie ma to jak używać programów, których się nie zna, a które mogą zniszczyć system, jeśli użyje się ich w nieodpowiedni sposób. Plik z logiem jest zapisany bezpośrednio na dysku, na którym masz system. Link do komentarza Udostępnij na innych stronach More sharing options...
himus11 Napisano Luty 3, 2010 Autor Zgłoś Share Napisano Luty 3, 2010 ComboFix 10-02-03.04 - Administrator 2010-02-03 22:13:00.2.1 - x86 Microsoft Windows XP Professional 5.1.2600.3.1250.48.1045.18.1278.885 [GMT 1:00] Uruchomiony z: h:\documents and settings\Administrator\Pulpit\ComboFix.exe AV: avast! antivirus 4.8.1368 [VPS 100203-0] *On-access scanning enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D} . ((((((((((((((((((((((((( Pliki utworzone od 2010-01-03 do 2010-02-03 ))))))))))))))))))))))))))))))) . 2010-02-02 20:04 . 2010-02-02 20:04 -------- d-----w- h:\documents and settings\Administrator\Ustawienia lokalne\Dane aplikacji\Help 2010-02-02 20:01 . 2010-02-03 21:08 -------- d-----w- h:\program files\Driver Cleaner 2010-02-02 09:40 . 2010-02-02 09:40 -------- d-----w- h:\program files\Lavalys 2010-02-02 09:19 . 2010-02-02 09:19 -------- d-----w- h:\program files\SIW 2010-02-02 08:34 . 2010-02-02 08:34 -------- d-----w- h:\documents and settings\All Users\Dane aplikacji\ATI 2010-02-01 17:33 . 2009-12-11 19:50 64512 ----a-w- h:\windows\system32\atimpc32.dll 2010-02-01 17:33 . 2009-05-11 22:35 118784 ----a-w- h:\windows\system32\atibtmon.exe 2010-02-01 17:32 . 2010-02-01 17:32 10134 ----a-r- h:\documents and settings\Administrator\Dane aplikacji\Microsoft\Installer\{F69B48D3-1C5B-1C79-70B8-8B00E9625276}\ARPPRODUCTICON.exe 2010-02-01 17:32 . 2010-02-02 17:07 -------- d-----w- h:\program files\ATI 2010-02-01 17:30 . 2010-02-01 17:30 -------- d-----w- H:\ATI 2010-02-01 15:05 . 2008-04-14 20:52 89600 -c----w- h:\windows\system32\dllcache\msxml6r.dll 2010-02-01 15:05 . 2009-07-31 09:05 1372672 -c----w- h:\windows\system32\dllcache\msxml6.dll 2010-02-01 15:05 . 2009-07-31 09:05 1372672 ------w- h:\windows\system32\msxml6.dll 2010-02-01 15:05 . 2008-04-14 20:52 89600 ------w- h:\windows\system32\msxml6r.dll 2010-02-01 15:05 . 2007-06-26 10:30 22060 -c----w- h:\windows\system32\dllcache\npds.zip 2010-02-01 15:05 . 2007-06-26 10:26 403 -c----w- h:\windows\system32\dllcache\npdrmv2.zip 2010-02-01 15:03 . 2008-04-14 21:51 28672 ------w- h:\windows\system32\verclsid.exe 2010-02-01 15:03 . 2008-04-14 21:50 712704 ------w- h:\windows\system32\windowscodecs.dll 2010-02-01 15:03 . 2008-04-14 21:50 53248 ------w- h:\windows\system32\tsgqec.dll 2010-02-01 15:03 . 2008-04-14 21:50 50688 ------w- h:\windows\system32\tspkg.dll 2010-02-01 15:03 . 2008-04-14 21:50 346112 ------w- h:\windows\system32\windowscodecsext.dll 2010-02-01 15:03 . 2008-04-14 21:51 276992 ------w- h:\windows\system32\wmphoto.dll 2010-02-01 15:03 . 2008-04-14 21:50 69120 ------w- h:\windows\system32\wlanapi.dll 2010-02-01 15:03 . 2010-02-01 15:03 -------- d-----w- h:\windows\system32\pl-pl 2010-02-01 15:03 . 2008-04-14 21:51 32866 ------w- h:\windows\slrundll.exe 2010-02-01 15:03 . 2010-02-01 15:03 -------- d-----w- h:\windows\l2schemas 2010-02-01 15:03 . 2010-02-01 15:03 -------- d-----w- h:\windows\system32\pl 2010-02-01 15:03 . 2010-02-01 15:03 -------- d-----w- h:\windows\system32\bits 2010-02-01 15:00 . 2010-02-01 15:00 -------- d-----w- h:\documents and settings\Administrator\Dane aplikacji\Malwarebytes 2010-02-01 15:00 . 2010-01-07 15:07 38224 ----a-w- h:\windows\system32\drivers\mbamswissarmy.sys 2010-02-01 15:00 . 2010-02-01 15:00 -------- d-----w- h:\documents and settings\All Users\Dane aplikacji\Malwarebytes 2010-02-01 15:00 . 2010-02-01 15:00 -------- d-----w- h:\program files\Malwarebytes' Anti-Malware 2010-02-01 15:00 . 2010-01-07 15:07 19160 ----a-w- h:\windows\system32\drivers\mbam.sys 2010-02-01 14:59 . 2008-04-14 21:51 294912 -c----w- h:\windows\system32\dllcache\dlimport.exe 2010-02-01 14:37 . 2010-02-01 14:38 -------- d-----w- H:\6d0a10f9332b71a60c0901ff2429 2010-01-31 22:50 . 2010-01-31 22:50 -------- d-----w- h:\program files\BySoft FreeRAM 2010-01-31 21:44 . 2010-02-03 19:35 -------- d-----w- h:\program files\Runes of Magic 2010-01-31 11:58 . 2010-01-31 23:01 -------- d-----w- h:\documents and settings\Administrator\Dane aplikacji\Command & Conquer 3 Wojny o tyberium 2010-01-31 11:57 . 2010-01-31 11:57 -------- d--h--r- h:\documents and settings\Administrator\Dane aplikacji\SecuROM 2010-01-31 11:48 . 2010-01-31 11:57 -------- d-----w- h:\program files\RegCleaner 2010-01-30 22:13 . 2010-01-30 22:34 -------- d-----w- h:\documents and settings\Administrator\Dane aplikacji\Moje pliki gry Władca Pierścieni, Król Nazguli 2010-01-30 21:43 . 2010-01-30 22:03 -------- d-----w- h:\documents and settings\Administrator\Dane aplikacji\Moje pliki Bitwy o Śródziemie? II 2010-01-30 21:37 . 2010-01-31 20:25 -------- d-----w- h:\documents and settings\Administrator\Dane aplikacji\FOG Downloader 2010-01-30 11:51 . 2010-01-30 11:51 -------- d-----w- h:\program files\King's Bounty DEMO 2010-01-30 01:11 . 2010-01-30 01:18 -------- d-----w- h:\documents and settings\Administrator\Ustawienia lokalne\Dane aplikacji\The Witcher 2010-01-29 15:37 . 2010-01-29 15:51 -------- d-----w- h:\program files\The Witcher Demo 2010-01-28 20:36 . 2010-01-28 20:36 90 ----a-w- h:\documents and settings\All Users\Dane aplikacji\Last.fm\Client\uninst2.bat 2010-01-28 20:35 . 2010-01-28 20:35 -------- d-----w- h:\documents and settings\All Users\Dane aplikacji\Last.fm 2010-01-28 20:35 . 2010-01-28 20:35 683801 ----a-w- h:\documents and settings\All Users\Dane aplikacji\Last.fm\Client\UninstWMP\unins000.exe 2010-01-28 20:34 . 2010-01-28 20:36 -------- d-----w- h:\documents and settings\Administrator\Ustawienia lokalne\Dane aplikacji\Last.fm 2010-01-28 20:34 . 2010-01-28 20:34 -------- d-----w- h:\program files\Last.fm 2010-01-28 20:05 . 2010-01-28 20:07 -------- d-----w- h:\documents and settings\Administrator\Dane aplikacji\Command & Conquer 3 Tiberium Wars Demo 2010-01-28 19:59 . 2010-01-31 11:31 -------- d-----w- h:\program files\Electronic Arts 2010-01-24 23:49 . 2010-01-24 23:51 -------- d-----w- H:\WinUAE1610 2010-01-24 23:21 . 2010-01-24 23:48 -------- d-----w- h:\program files\WinUAE 2010-01-22 22:47 . 2010-01-22 22:47 -------- d-----w- h:\program files\America's Army Server Manager 2010-01-22 22:42 . 2010-01-22 22:47 -------- d-----w- h:\program files\America's Army 2010-01-19 16:07 . 2010-01-19 16:07 -------- d-----w- h:\program files\Grupa IMAGE 2010-01-18 12:00 . 2009-11-24 23:48 23120 ----a-w- h:\windows\system32\drivers\aswRdr.sys 2010-01-18 12:00 . 2009-11-24 23:49 48560 ----a-w- h:\windows\system32\drivers\aswTdi.sys 2010-01-18 12:00 . 2009-11-24 23:47 27408 ----a-w- h:\windows\system32\drivers\aavmker4.sys 2010-01-18 12:00 . 2009-11-24 23:47 97480 ----a-w- h:\windows\system32\AvastSS.scr 2010-01-18 12:00 . 2009-11-24 23:51 93424 ----a-w- h:\windows\system32\drivers\aswmon.sys 2010-01-18 12:00 . 2009-11-24 23:50 94160 ----a-w- h:\windows\system32\drivers\aswmon2.sys 2010-01-18 12:00 . 2009-11-24 23:50 114768 ----a-w- h:\windows\system32\drivers\aswSP.sys 2010-01-18 12:00 . 2009-11-24 23:50 20560 ----a-w- h:\windows\system32\drivers\aswFsBlk.sys 2010-01-18 12:00 . 2009-11-24 23:54 1280480 ----a-w- h:\windows\system32\aswBoot.exe 2010-01-18 12:00 . 2003-03-18 20:20 1060864 ----a-w- h:\windows\system32\MFC71.dll 2010-01-18 12:00 . 2010-01-18 12:00 -------- d-----w- h:\program files\Alwil Software 2010-01-18 11:23 . 2010-01-18 17:54 -------- d-----w- h:\program files\Common Files\Symantec Shared 2010-01-15 19:24 . 2008-04-13 23:15 32128 ----a-w- h:\windows\system32\drivers\usbccgp.sys 2010-01-15 19:24 . 2006-11-30 14:14 5872 ----a-r- h:\windows\system32\drivers\se45whnt.sys 2010-01-15 19:24 . 2006-11-30 14:14 5872 ----a-r- h:\windows\system32\drivers\se45wh.sys 2010-01-15 19:24 . 2006-11-30 14:13 61536 ----a-r- h:\windows\system32\drivers\se45bus.sys 2010-01-10 20:33 . 2010-01-20 10:02 -------- d-----w- h:\program files\JDownloader 2010-01-08 23:07 . 2010-01-08 23:07 -------- d-----w- h:\program files\CCleaner 2010-01-08 22:58 . 2010-01-08 22:58 -------- d-----w- h:\program files\GSC Game World 2010-01-08 20:46 . 2010-01-08 20:46 -------- d-----w- h:\documents and settings\Administrator\Ustawienia lokalne\Dane aplikacji\WDSetup 2010-01-08 20:43 . 2010-01-08 20:43 -------- d-----w- h:\program files\DIFX 2010-01-08 20:43 . 2010-02-01 17:33 -------- dc----w- h:\windows\system32\DRVSTORE 2010-01-08 20:42 . 2010-01-08 20:42 -------- d-----w- H:\Memento Patcher (PS2) 2010-01-08 20:39 . 2010-01-08 20:39 -------- d-----w- H:\Remote Joy 2010-01-08 00:44 . 2010-01-08 00:44 198064 ----a-w- h:\documents and settings\Administrator\Dane aplikacji\IDM\idmmzcc3\components\idmmzcc.dll 2010-01-08 00:40 . 2010-01-30 14:05 -------- d-----w- h:\documents and settings\Administrator\Dane aplikacji\IDM 2010-01-08 00:40 . 2010-02-03 21:10 -------- d-----w- h:\documents and settings\Administrator\Dane aplikacji\DMCache 2010-01-08 00:38 . 2010-01-08 00:44 -------- d-----w- h:\program files\Internet Download Manager 2010-01-07 16:30 . 2010-01-10 20:48 -------- d-----w- h:\documents and settings\Administrator\Ustawienia lokalne\Dane aplikacji\Deployment 2010-01-06 17:37 . 2010-01-06 17:37 -------- d-----w- h:\documents and settings\Administrator\Dane aplikacji\AdobeUM 2010-01-05 21:15 . 2010-01-31 22:56 -------- d-----w- h:\program files\FlashGet 2010-01-05 18:30 . 2010-01-05 18:30 -------- d-----w- h:\documents and settings\Administrator\Dane aplikacji\MetaProducts 2010-01-05 18:22 . 2010-01-05 18:22 305 ----a-w- h:\windows\system32\secushr.dat 2010-01-05 18:21 . 2010-01-06 21:54 -------- d-----w- H:\Downloads 2010-01-05 18:19 . 2010-01-05 18:19 -------- d-----w- h:\documents and settings\Administrator\Dane aplikacji\FlashGet . (((((((((((((((((((((((((((((((((((((((( Sekcja Find3M )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2010-02-02 22:49 . 2001-10-26 14:15 79188 ----a-w- h:\windows\system32\perfc015.dat 2010-02-02 22:49 . 2001-10-26 14:15 457678 ----a-w- h:\windows\system32\perfh015.dat 2010-02-02 22:06 . 2009-12-31 12:12 -------- d-----w- h:\program files\Steam 2010-02-02 19:34 . 2009-12-29 20:13 -------- d-----w- h:\program files\Warcraft III 2010-02-02 19:26 . 2010-01-03 01:24 -------- d-----w- h:\program files\StarCraft 2010-02-02 17:08 . 2009-12-28 23:05 -------- d-----w- h:\program files\SpeedFan 2010-02-02 08:34 . 2009-12-28 22:39 19808 ----a-w- h:\documents and settings\Administrator\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT 2010-02-01 17:36 . 2009-12-30 21:13 -------- d-----w- h:\program files\ATI Technologies 2010-02-01 15:11 . 2009-12-28 21:18 86327 ----a-w- h:\windows\pchealth\helpctr\OfflineCache\index.dat 2010-01-30 11:51 . 2009-12-28 22:21 -------- d--h--w- h:\program files\InstallShield Installation Information 2010-01-21 09:42 . 2009-12-28 22:48 -------- d-----w- h:\program files\Nowe Gadu-Gadu 2010-01-18 11:42 . 2009-12-31 02:50 -------- d-----w- h:\documents and settings\All Users\Dane aplikacji\Symantec 2010-01-18 11:16 . 2009-12-29 13:21 -------- d-----w- h:\documents and settings\All Users\Dane aplikacji\Norton 2010-01-15 16:22 . 2009-12-28 22:57 -------- d-----w- h:\documents and settings\Administrator\Dane aplikacji\Nowe Gadu-Gadu 2010-01-08 20:59 . 2009-12-28 23:03 -------- d-----w- h:\program files\Garena 2010-01-07 12:25 . 2009-12-28 23:11 -------- d-----w- h:\documents and settings\Administrator\Dane aplikacji\ImgBurn 2010-01-05 21:15 . 2010-01-05 21:15 27136 ----a-w- h:\windows\~GLH0000.TMP 2010-01-03 09:30 . 2010-01-03 09:30 -------- d-----w- h:\program files\EA GAMES 2010-01-03 09:30 . 2010-01-03 09:30 -------- d-----w- h:\documents and settings\Administrator\Dane aplikacji\InstallShield Installation Information 2010-01-03 09:29 . 2010-01-03 09:41 380928 ----a-w- h:\documents and settings\Administrator\Dane aplikacji\InstallShield Installation Information\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\_setup.dll 2010-01-03 09:26 . 2010-01-03 09:26 -------- d-----w- h:\program files\GameSpy Arcade 2010-01-03 08:54 . 2010-01-03 08:54 -------- d-----w- h:\documents and settings\Administrator\Dane aplikacji\Dark Sector 2010-01-03 02:17 . 2010-01-03 02:17 -------- d-----w- h:\program files\Common Files\Wise Installation Wizard 2010-01-03 01:30 . 2009-12-29 20:13 -------- d-----w- h:\program files\Common Files\Blizzard Entertainment 2010-01-03 01:06 . 2010-01-03 01:06 409600 ----a-w- h:\windows\system32\wrap_oal.dll 2010-01-03 01:06 . 2010-01-03 01:06 -------- d-----w- h:\program files\OpenAL 2010-01-03 01:06 . 2003-03-28 03:24 114688 ----a-w- h:\windows\system32\OpenAL32.dll 2010-01-03 01:06 . 2010-01-03 01:05 -------- d-----w- h:\program files\Puzzle Quest 2010-01-03 00:17 . 2010-01-03 00:17 -------- d-----w- h:\program files\Ubisoft 2010-01-02 23:28 . 2010-01-02 23:28 -------- d-----w- h:\program files\Codemasters 2010-01-02 22:45 . 2010-01-02 22:45 -------- d-----w- h:\program files\Microsoft Games 2010-01-02 20:07 . 2010-01-02 20:07 -------- d-----w- h:\program files\Empire Interactive 2010-01-02 18:21 . 2010-01-02 18:21 -------- d-----w- h:\program files\THQ 2010-01-02 12:40 . 2010-01-02 12:15 -------- d-----w- h:\program files\Unreal Antologia 2010-01-02 12:06 . 2010-01-02 11:35 -------- d-----w- h:\program files\Diablo II 2010-01-02 11:30 . 2010-01-02 11:30 -------- d-----w- h:\program files\alaplaya 2010-01-01 22:06 . 2009-12-31 13:43 -------- d-----w- h:\program files\Ahead 2009-12-31 13:45 . 2009-12-31 13:45 -------- d-----w- h:\program files\Common Files\Nero 2009-12-31 13:44 . 2009-12-31 13:44 -------- d-----w- h:\documents and settings\All Users\Dane aplikacji\Ahead 2009-12-31 13:43 . 2009-12-31 13:43 -------- d-----w- h:\program files\Common Files\Ahead 2009-12-31 11:19 . 2009-12-31 10:45 -------- d-----w- h:\program files\Gas Powered Games 2009-12-31 10:43 . 2009-12-31 10:43 -------- d-----w- h:\documents and settings\Administrator\Dane aplikacji\InstallShield 2009-12-31 01:51 . 2009-12-31 01:52 411368 ----a-w- h:\windows\system32\deploytk.dll 2009-12-31 01:51 . 2009-12-31 01:51 -------- d-----w- h:\program files\Java 2009-12-31 01:50 . 2009-12-31 01:50 152576 ----a-w- h:\documents and settings\Administrator\Dane aplikacji\Sun\Java\jre1.6.0_15\lzma.dll 2009-12-31 00:16 . 2009-12-31 00:16 107888 ----a-w- h:\windows\system32\CmdLineExt.dll 2009-12-30 23:01 . 2009-12-30 21:41 -------- d-----w- h:\program files\Guild Wars 2009-12-30 21:25 . 2009-12-30 21:25 0 ----a-w- h:\windows\ativpsrm.bin 2009-12-30 21:23 . 2009-12-30 21:19 -------- d-----w- h:\program files\Common Files\ATI Technologies 2009-12-30 21:20 . 2009-12-30 21:20 9158 ----a-r- h:\documents and settings\Administrator\Dane aplikacji\Microsoft\Installer\{89DE67AD-08B8-4699-A55D-CA5C0AF82BF3}\ARPPRODUCTICON.exe 2009-12-29 13:30 . 2009-12-29 13:30 -------- d-----w- h:\documents and settings\Administrator\Dane aplikacji\CyberLink 2009-12-29 13:26 . 2009-12-29 13:26 -------- d-----w- h:\documents and settings\All Users\Dane aplikacji\CyberLink 2009-12-29 13:26 . 2009-12-29 13:26 -------- d-----w- h:\program files\CyberLink 2009-12-29 13:20 . 2009-12-29 13:20 -------- d-----w- h:\documents and settings\All Users\Dane aplikacji\NortonInstaller 2009-12-28 23:08 . 2009-12-28 23:07 -------- d-----w- h:\program files\Real Alternative 2009-12-28 23:07 . 2009-12-28 23:07 -------- d-----w- h:\documents and settings\Administrator\Dane aplikacji\teamspeak2 2009-12-28 23:07 . 2009-12-28 23:06 -------- d-----w- h:\program files\Teamspeak2_RC2 2009-12-28 23:06 . 2009-12-28 23:06 -------- d-----w- h:\program files\Total Video Converter 2009-12-28 23:05 . 2009-12-28 23:05 -------- d-----w- h:\program files\Switch Off 2009-12-28 23:05 . 2009-12-28 23:05 -------- d-----w- h:\program files\Microsoft ActiveSync 2009-12-28 23:05 . 2009-12-28 23:05 -------- d-----w- h:\documents and settings\All Users\Dane aplikacji\Skype 2009-12-28 23:05 . 2009-12-28 23:05 -------- d-----w- h:\program files\Microsoft.NET 2009-12-28 23:05 . 2009-12-28 23:05 -------- d-----w- h:\documents and settings\Administrator\Dane aplikacji\Xfire 2009-12-28 23:05 . 2009-12-28 23:05 -------- d-----w- h:\program files\Xfire 2009-12-28 23:04 . 2009-12-28 23:04 -------- d-----w- h:\program files\ImgBurn 2009-12-28 23:03 . 2009-12-28 23:03 -------- d-----w- h:\program files\Dziobas Rar Player 2009-12-28 23:03 . 2009-12-28 23:03 717296 ----a-w- h:\windows\system32\drivers\sptd.sys 2009-12-28 23:03 . 2009-12-28 23:03 -------- d-----w- h:\documents and settings\Administrator\Dane aplikacji\DAEMON Tools Lite 2009-12-28 23:03 . 2009-12-28 23:03 -------- d-----w- h:\program files\BitComet 2009-12-28 22:55 . 2009-12-28 22:55 -------- d-----w- h:\program files\Common Files\Adobe 2009-12-28 22:50 . 2009-12-28 22:50 -------- d-----w- h:\program files\Opera 2009-12-28 22:39 . 2009-12-28 22:39 -------- d-----w- h:\documents and settings\Administrator\Dane aplikacji\ATI 2009-12-28 22:39 . 2009-12-28 22:39 138 ----a-w- h:\documents and settings\Administrator\Ustawienia lokalne\Dane aplikacji\fusioncache.dat 2009-12-28 22:39 . 2009-12-28 22:39 -------- d-----w- h:\documents and settings\Administrator\Dane aplikacji\Creative 2009-12-28 22:39 . 2009-12-28 22:39 -------- d-----w- h:\documents and settings\All Users\Dane aplikacji\Creative 2009-12-28 22:35 . 2009-12-28 22:30 -------- d-----w- h:\program files\Creative 2009-12-28 22:33 . 2009-12-28 22:33 -------- d-----w- h:\program files\Common Files\Creative 2009-12-28 22:33 . 2009-12-28 22:33 -------- d--h--w- h:\program files\Creative Installation Information 2009-12-28 22:29 . 2009-12-28 22:21 -------- d-----w- h:\program files\Common Files\InstallShield 2009-12-28 21:20 . 2009-12-28 21:20 -------- d-----w- h:\program files\microsoft frontpage 2009-12-28 21:18 . 2009-12-28 21:18 -------- d-----w- h:\program files\Usługi online 2009-12-28 21:16 . 2009-12-28 21:16 21856 ----a-w- h:\windows\system32\emptyregdb.dat 2009-12-11 21:02 . 2005-08-04 03:10 4525056 ----a-w- h:\windows\system32\drivers\ati2mtag.sys 2009-12-11 20:45 . 2009-02-04 02:43 45056 ----a-w- h:\windows\system32\aticalrt.dll 2009-12-11 20:44 . 2009-02-04 02:42 45056 ----a-w- h:\windows\system32\aticalcl.dll 2009-12-11 20:43 . 2009-02-04 02:40 3620864 ----a-w- h:\windows\system32\aticaldd.dll 2009-12-11 20:41 . 2009-02-04 03:44 311296 ----a-w- h:\windows\system32\atiiiexx.dll 2009-12-11 20:26 . 2009-02-04 04:56 446464 ----a-w- h:\windows\system32\ATIDEMGX.dll 2009-12-11 20:25 . 2009-12-30 20:40 300544 ----a-w- h:\windows\system32\ati2dvag.dll 2009-12-11 20:25 . 2009-02-04 05:57 13434880 ----a-w- h:\windows\system32\atioglxx.dll 2009-12-11 20:23 . 2009-12-30 20:40 3521408 ----a-w- h:\windows\system32\ati3duag.dll 2009-12-11 20:09 . 2009-02-04 04:44 208896 ----a-w- h:\windows\system32\atipdlxx.dll 2009-12-11 20:09 . 2009-02-04 04:44 155648 ----a-w- h:\windows\system32\Oemdspif.dll 2009-12-11 20:09 . 2009-02-04 04:43 26112 ----a-w- h:\windows\system32\Ati2mdxx.exe 2009-12-11 20:08 . 2009-02-04 04:43 43520 ----a-w- h:\windows\system32\ati2edxx.dll 2009-12-11 20:08 . 2009-02-04 04:43 155648 ----a-w- h:\windows\system32\ati2evxx.dll 2009-12-11 20:07 . 2009-12-30 20:40 2154752 ----a-w- h:\windows\system32\ativvaxx.dll 2009-12-11 20:07 . 2009-02-04 04:13 887724 ----a-w- h:\windows\system32\ativva6x.dat 2009-12-11 20:07 . 2009-02-04 04:13 3 ----a-w- h:\windows\system32\ativva5x.dat 2009-12-11 20:07 . 2009-02-04 04:41 602112 ----a-w- h:\windows\system32\ati2evxx.exe . ((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IDMan"="h:\program files\Internet Download Manager\IDMan.exe" [2009-11-11 3171760] "BySoft FreeRAM"="h:\program files\BySoft FreeRAM\FreeRAM.exe" [2004-12-17 318976] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592] "CTSysVol"="h:\program files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe" [2005-10-31 57344] "P17Helper"="P17.dll" [2005-05-03 64512] "UpdReg"="h:\windows\UpdReg.EXE" [2000-05-11 90112] "avast!"="h:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-11-24 81000] "StartCCC"="h:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-12-11 98304] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="h:\windows\system32\CTFMON.EXE" [2008-04-14 15360] [HKLM\~\startupfolder\H:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Adobe Reader Speed Launch.lnk] path=h:\documents and settings\All Users\Menu Start\Programy\Autostart\Adobe Reader Speed Launch.lnk backup=h:\windows\pss\Adobe Reader Speed Launch.lnkCommon Startup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IDMan] 2009-11-11 14:48 3171760 ----a-w- h:\program files\Internet Download Manager\IDMan.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] 2001-07-09 10:50 155648 ----a-w- h:\windows\system32\NeroCheck.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Nowe Gadu-Gadu] 2009-10-28 12:44 11539048 ----a-w- h:\program files\Nowe Gadu-Gadu\gg.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam] 2009-12-31 12:14 1217808 ----a-w- h:\program files\Steam\Steam.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "wuauserv"=2 (0x2) [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "h:\\Program Files\\Opera\\opera.exe"= "h:\\Program Files\\Nowe Gadu-Gadu\\gg.exe"= "h:\\Program Files\\Steam\\Steam.exe"= "h:\\Program Files\\EA GAMES\\Battlefield 2\\BF2.exe"= "h:\\Program Files\\Steam\\steamapps\\common\\red orchestra\\System\\RedOrchestra.exe"= "h:\\Program Files\\Steam\\steamapps\\common\\trackmania nations forever\\TmForever.exe"= "h:\\Program Files\\Steam\\steamapps\\common\\trackmania nations forever\\TmForeverLauncher.exe"= "h:\\Program Files\\Electronic Arts\\Bitwa o Śródziemie II\\game.dat"= "h:\\Program Files\\Electronic Arts\\Król Nazguli\\game.dat"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= R1 aswSP;avast! Self Protection;h:\windows\system32\drivers\aswSP.sys [2010-01-18 114768] R2 aswFsBlk;aswFsBlk;h:\windows\system32\drivers\aswFsBlk.sys [2010-01-18 20560] S0 sptd;sptd;h:\windows\system32\drivers\sptd.sys [2009-12-29 717296] S3 GarenaPEngine;GarenaPEngine;\??\h:\docume~1\ADMINI~1\USTAWI~1\Temp\JUL252.tmp --> h:\docume~1\ADMINI~1\USTAWI~1\Temp\JUL252.tmp [?] . . ------- Skan uzupełniający ------- . IE: Download All by FlashGet - h:\program files\FlashGet\jc_all.htm IE: Download using FlashGet - h:\program files\FlashGet\jc_link.htm IE: E&xport to Microsoft Excel - h:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 IE: Ściągnij przez IDM - h:\program files\Internet Download Manager\IEExt.htm IE: Ściągnij wszystkie linki przez IDM - h:\program files\Internet Download Manager\IEGetAll.htm IE: Ściągnij zawartość wideo FLV przez IDM - h:\program files\Internet Download Manager\IEGetVL.htm LSP: h:\windows\system32\idmmbc.dll Trusted Zone: kuaiche.com\software . ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2010-02-03 22:18 Windows 5.1.2600 Dodatek Service Pack 3 NTFS skanowanie ukrytych procesów ... skanowanie ukrytych wpisów autostartu ... skanowanie ukrytych plików ... skanowanie pomyślnie ukończone ukryte pliki: 0 ************************************************************************** [HKEY_LOCAL_MACHINE\System\ControlSet001\Services\GarenaPEngine] "ImagePath"="\??\h:\docume~1\ADMINI~1\USTAWI~1\Temp\JUL252.tmp" . --------------------- ZABLOKOWANE KLUCZE REJESTRU --------------------- [HKEY_USERS\S-1-5-21-725345543-573735546-2147112213-500\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*] "??"=hex:fa,02,f1,93,99,8a,19,c7,87,2f,3f,7c,db,23,07,b9,91,c7,c5,fe,6c,23,e9, 5f,7b,9e,d0,55,b7,9f,6a,70,d3,17,d8,15,63,0e,3b,fc,0d,bd,bb,6c,c8,21,b9,13,\ "??"=hex:5d,2e,bc,00,9b,07,bc,9c,34,34,87,88,c9,ab,ca,0d [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{5ED60779-4DE2-4E07-B862-974CA4FF2E9C}] @Denied: (Full) (Everyone) "scansk"=hex(0):f9,d3,7c,59,0f,87,79,c1,57,2e,9a,07,4a,e8,57,0a,b6,ea,a5,e8,98, 81,38,8a,b1,55,cd,57,e8,35,cb,c2,8c,7a,b7,4a,c4,b8,93,be,00,00,00,00,00,00,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{a9f03d16-3572-415c-bfb8-11dfbedde5a7}] @Denied: (Full) (Everyone) "Model"=dword:00000021 "Therad"=dword:0000001b . --------------------- Pliki DLL ładowane pod uruchomionymi procesami --------------------- - - - - - - - > 'winlogon.exe'(668) h:\windows\system32\Ati2evxx.dll - - - - - - - > 'lsass.exe'(780) h:\windows\system32\idmmbc.dll . Czas ukończenia: 2010-02-03 22:20:41 ComboFix-quarantined-files.txt 2010-02-03 21:20 Przed: 275 215 110 144 bajtów wolnych Po: 275 187 941 376 bajtów wolnych - - End Of File - - 57EFF488B1477DD4DE2C0FD087D9A505 Link do komentarza Udostępnij na innych stronach More sharing options...