Logo
Strona głównaPomocSzukajZaloguj sięRejestracja
Witamy, Gość. Zaloguj się lub zarejestruj.
Bezpieczeństwo w Sieci ! > PC Zone > Software i Hardware > Wątek: Dysk cały czas pracuje
Wrzesień 06, 2010, 01:43:14 pm
Aktualności: Prosimy nie używać COMBOFIX samemu bezpodstawnie !!!  Zapraszamy na Portal Bezpieczni w Sieci !

Strony: [1]   Do dołu
Dysk cały czas pracuje  (Przeczytany 1649 razy)
Opcje tematu img
Offline  lenkprzemek@poczta.onet.p
Marzec 19, 2009, 09:48:48 pm
Newbie
*

Wiadomości: 11
Witam, ostatnio zauważyłem, że dysk twardy cały czas pracuje, nawet jak nie używam komputera,
Mam laptopa Asus, niedługi czas, nie instalowałem na nim zbyt wiele, ktoś ma jakies propozycje? Może jestem tylko przewrażliwiony i cały czas tak pracował, a dopiero teraz zauważyłem, ale skoro użycie procesora może spaść do 0, to użycie dysku chyba też powinno,
Ewentualnie proszę o sugestie co zrobić, żebyście mieli podgląd (logi itp.)


-------------------------
   
Offline  Wiewia
Marzec 19, 2009, 10:27:21 pm

Grupa: Global Moderator
Hero Member
**********

Wiadomości: 2.080

NieCh BęDzie
Najpierw zobaczymy pod względem syfu.

Pobierz Malwarebytes' Anti-Malware=> http://cybertrash.pl/Tata/MBAM/Malwarebytes_%20Anti-Malware.html

Zainstaluj i po instalacji zrób aktualizacje i wybierz pełne skanowanie. Co znajdzie zaznaczasz do usuwania i pokazujesz log z skanowania


Pobierz OTViewIt => http://cybertrash.pl/images/tata/OTViewIt/OTViewIt.html i wy generuj z niego log i wklej go na forum


ATF Cleaner => http://www.atribune.org/ccount/click.php?id=1 Zaznacz w poszczególnych zakładkach Select All i potem wybierz Empty Selected . Jedynie w zakładce innych przeglądarek jak Opera lub Firefox zostaw opcje o zapisanych hasłach aby ci nie skasował (Saved Passwords)

CCleaner => http://cybertrash.pl/images/tata/CCleaner/CCleaner.html Zainstaluj narzędzie ( przed nstalacją odhacz toolbar) z opcji cleaner czyścisz dysk (przed czyszczeniem wejdz w opcje=>zaawansowane i odhacz pierwszą pozycje dotyczącą aby usuwał tylko pliki starsze niż 48 godzin)


-------------------------

-------------------------
Cyrk jest śmieszny , NIE DLA ZWIERZĄT             
   
Offline  lenkprzemek@poczta.onet.p
Marzec 19, 2009, 10:48:42 pm
Newbie
*

Wiadomości: 11
LOL, ten pierwszy znalazl mi 180 bledow, to normalne? A usunac moge tlko 20, reszta za oplatą


-------------------------
   
Offline  Wiewia
Marzec 19, 2009, 10:55:21 pm

Grupa: Global Moderator
Hero Member
**********

Wiadomości: 2.080

NieCh BęDzie
Malwarebytes' Anti-Malware jest skanowanie i usuwanie za darmo nie opłata , płatny jest tylko rezydent ochrona w czasie rzeczywistym

Chyba że coś się zmieniło pokaż log z niego


-------------------------

-------------------------
Cyrk jest śmieszny , NIE DLA ZWIERZĄT             
   
Offline  lenkprzemek@poczta.onet.p
Marzec 19, 2009, 11:24:34 pm
Newbie
*

Wiadomości: 11
Przyznaję, że nie umiem z tego wyciagnać loga


-------------------------
   
Offline  tata1959
Marzec 19, 2009, 11:34:22 pm

Grupa: Administrator
Hero Member
**********

Wiadomości: 966

Kochajmy zwierzaki..one też odchodzą...za szybko..
Witaj

hmmm...jak to nie umiesz..odpalasz program i masz u góry zakładki, między innymi zakładkę "Logi" , klikasz na nią i masz logi, klikasz podwójnie na wybrany log a on otworzy się w notatniku, kopiujesz całość i wklejasz do posta...

Pozdrawiam Uśmiech


-------------------------
   
Offline  lenkprzemek@poczta.onet.p
Marzec 22, 2009, 12:32:42 pm
Newbie
*

Wiadomości: 11
Ok, zrobiłem testy dwoma programami ATF Cleaner i CCleaner, wklejam log z OTViewIt:

OTViewIt Extras logfile created on: 2009-03-22 11:25:39 - Run 4
OTViewIt by OldTimer - Version 1.0.21.0     Folder = C:\Users\Przemek\Downloads
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
2,00 Gb Total Physical Memory | 1,98 Gb Available Physical Memory | 99,10% Memory free
4,00 Gb Paging File | 4,00 Gb Available in Paging File | 100,00% Paging File free
Paging file location(s): ?:\pagefile.sys;
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 149,04 Gb Total Space | 111,04 Gb Free Space | 74,50% Space Free | Partition Type: NTFS
Drive D: | 139,28 Gb Total Space | 136,39 Gb Free Space | 97,92% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
Drive F: | 11,75 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
 
Computer Name: PRZEMEK-PC
Current User Name: Przemek
Logged in as Administrator.
 
Current Boot Mode: Normal
Scan Mode: Current user
Whitelist: On
File Age = 60 Days

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval"=1
"UacDisableNotify"=0
"InternetSettingsDisableNotify"=0
"AutoUpdateDisableNotify"=0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring"=1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring"=1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride"=0
"AntiSpywareOverride"=0
"FirewallOverride"=0
"VistaSp1"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\S-1-5-21-660601788-4094327435-112255179-1000]
"EnableNotifications"=0
"EnableNotificationsRef"=1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile
"EnableFirewall"=1
"DisableNotifications"=0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\Logging]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

========== (O10) Winsock2 Catalogs ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\]
NameSpace_Catalog5\Catalog_Entries\000000000001 [@%SystemRoot%\system32\nlasvc.dll,-1000] -- C:\Windows\System32\nlaapi.dll (Microsoft Corporation)
NameSpace_Catalog5\Catalog_Entries\000000000002 [@%SystemRoot%\system32\napinsp.dll,-1000] -- C:\Windows\System32\NapiNSP.dll (Microsoft Corporation)
NameSpace_Catalog5\Catalog_Entries\000000000003 [@%SystemRoot%\system32\pnrpnsp.dll,-1000] -- C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
NameSpace_Catalog5\Catalog_Entries\000000000004 [@%SystemRoot%\system32\pnrpnsp.dll,-1001] -- C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
NameSpace_Catalog5\Catalog_Entries\000000000007 [Bluetooth Namespace] -- C:\Windows\System32\wshbth.dll (Microsoft Corporation)

========== HKEY_LOCAL_MACHINE Protocol Defaults ==========


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults - Default Protocols
ldap -- 4 = Restricted sites (Not a Default Protocol)
news -- 4 = Restricted sites (Not a Default Protocol)
nntp -- 4 = Restricted sites (Not a Default Protocol)
oecmd -- 4 = Restricted sites (Not a Default Protocol)
snews -- 4 = Restricted sites (Not a Default Protocol)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{03D1988F-469F-4843-8E6E-E5FE9D17889D}"=WIDCOMM Bluetooth Software
"{0969AF05-4FF6-4C00-9406-43599238DE0D}"=ASUS Splendid Video Enhancement Technology
"{0E7DBD52-B097-4F2B-A7C7-F105B0D20FDB}"=LightScribe System Software  1.14.17.1
"{13F3917B56CD4C25848BDC69916971BB}"=DivX Converter
"{18D10072035C4515918F7E37EAFAACFC}"=AutoUpdate
"{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}"=ASUS LifeFrame3
"{23B14BE4-5277-40B2-B602-3FCD456C27BC}"=Protector Suite QL 5.8
"{26A24AE4-039D-4CA4-87B4-2F83216011FF}"=Java(TM) 6 Update 11
"{2862A3C1-0CD9-4D8B-A28C-8C337D4DD5EB}"=Express Gate
"{3B05F2FB-745B-4012-ADF2-439F36B2E70B}"=ATKOSD2
"{3FC7CBBC4C1E11DCA1A752EA55D89593}"=DivX Version Checker
"{40BF1E83-20EB-11D8-97C5-0009C5020658}"=CyberLink Power2Go
"{59F6A514-9813-47A3-948C-8A155460CC2A}"=RICOH R5C83x/84x Flash Media Controller Driver Ver.3.55.01
"{6324A1EF-CEF4-43E3-8BCD-9EF3F67317FD}"=NB Probe
"{64452561-169F-4A36-A2FF-B5E118EC65F5}"=ASUS SmartLogon
"{6B77A7F6-DD63-4F13-A6FF-83137A5AC354}"=ASUS CopyProtect
"{7299052b-02a4-4627-81f2-1818da5d550d}"=Microsoft Visual C++ 2005 Redistributable
"{767CC44C-9BBC-438D-BAD3-FD4595DD148B}"=VC80CRTRedist - 8.0.50727.762
"{7B63B2922B174135AFC0E1377DD81EC2}"=DivX Codec
"{7C05592D-424B-46CB-B505-E0013E8E75C9}"=ATK Hotkey
"{83F73CB1-7705-49D1-9852-84D839CA2A45}"=Wireless Console 2
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}"=Realtek 8169 8168 8101E 8102E Ethernet Driver
"{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}"=ASUS Power4Gear Hybrid
"{9D48531D-2135-49FC-BC29-ACCDA5396A76}"=ASUS MultiFrame
"{A96E97134CA649888820BCDE5E300BBD}"=H.264 Decoder
"{AAC389499AEF40428987B3D30CFC76C9}"=MKV Splitter
"{AC76BA86-7AD7-1045-7B44-A81200000003}"=Adobe Reader 8 - Polish
"{AEF9DC35ADDF4825B049ACBFD1C6EB37}"=AAC Decoder
"{B13A7C41581B411290FBC0395694E2A9}"=DivX Converter
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}"=CyberLink LabelPrint
"{D1E5870E-E3E5-4475-98A6-ADD614524ADF}"=ATK Media
"{D3D54F3E-C5C3-443D-978F-87A72E5616E8}"=ATK Generic Function Service
"{DE10AB76-4756-4913-BE25-55D1C1051F9A}"=WinFlash
"{E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}"=ASUS Live Update
"{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}"=ASUS Virtual Camera
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}"=Realtek High Definition Audio Driver
"{FC3D290D-79BE-44B7-ABF9-FDD110925930}"=P4P
"AC3Filter"=AC3Filter (remove only)
"Adobe Flash Player Plugin"=Adobe Flash Player 10 Plugin
"ASUS_Notebook_N50"=ASUS_Notebook_N50 Screen Saver
"avast!"=avast! Antivirus
"CCleaner"=CCleaner (remove only)
"DivX Plus DirectShow Filters"=DivX Plus DirectShow Filters
"Gadu-Gadu"=Gadu-Gadu 7.7
"InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}"=CyberLink Power2Go
"Mozilla Firefox (3.0.7)"=Mozilla Firefox (3.0.7)
"NVIDIA Drivers"=NVIDIA Drivers
"Picasa2"=Picasa 2
"PLAY ONLINE"=PLAY ONLINE
"SynTPDeinstKey"=Synaptics Pointing Device Driver
"USB 2.0 2.0M UVC WebCam"=USB 2.0 2.0M UVC WebCam
"Winamp"=Winamp
"WinRAR archiver"=Archiwizator WinRAR
"XLViewer97"=Microsoft Excel Viewer 97

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 2009-03-11 10:32:32 | Computer Name = Przemek-PC | Source = RasClient | ID = 20227
Description =

Error - 2009-03-11 10:33:10 | Computer Name = Przemek-PC | Source = RasClient | ID = 20227
Description =

Error - 2009-03-11 10:33:27 | Computer Name = Przemek-PC | Source = RasClient | ID = 20227
Description =

Error - 2009-03-11 12:59:25 | Computer Name = Przemek-PC | Source = WinMgmt | ID = 10
Description =

Error - 2009-03-12 07:06:12 | Computer Name = Przemek-PC | Source = WinMgmt | ID = 10
Description =

Error - 2009-03-12 13:18:54 | Computer Name = Przemek-PC | Source = WinMgmt | ID = 10
Description =

Error - 2009-03-13 07:00:38 | Computer Name = Przemek-PC | Source = WinMgmt | ID = 10
Description =

Error - 2009-03-13 13:08:46 | Computer Name = Przemek-PC | Source = WinMgmt | ID = 10
Description =

Error - 2009-03-14 07:28:46 | Computer Name = Przemek-PC | Source = WinMgmt | ID = 10
Description =

Error - 2009-03-14 10:53:32 | Computer Name = Przemek-PC | Source = WinMgmt | ID = 10
Description =

[ System Events ]
Error - 2009-02-26 07:08:18 | Computer Name = Przemek-PC | Source = HTTP | ID = 15016
Description =

Error - 2009-02-26 07:08:34 | Computer Name = Przemek-PC | Source = Microsoft-Windows-LanguagePackSetup | ID = 1001
Description =

Error - 2009-02-26 12:45:15 | Computer Name = Przemek-PC | Source = HTTP | ID = 15016
Description =

Error - 2009-02-26 12:45:31 | Computer Name = Przemek-PC | Source = Microsoft-Windows-LanguagePackSetup | ID = 1001
Description =

Error - 2009-02-27 05:33:01 | Computer Name = Przemek-PC | Source = HTTP | ID = 15016
Description =

Error - 2009-02-27 05:33:17 | Computer Name = Przemek-PC | Source = Microsoft-Windows-LanguagePackSetup | ID = 1001
Description =

Error - 2009-02-27 06:33:04 | Computer Name = Przemek-PC | Source = HTTP | ID = 15016
Description =

Error - 2009-02-27 06:33:17 | Computer Name = Przemek-PC | Source = Microsoft-Windows-LanguagePackSetup | ID = 1001
Description =

Error - 2009-02-27 07:27:53 | Computer Name = Przemek-PC | Source = HTTP | ID = 15016
Description =

Error - 2009-02-27 07:28:06 | Computer Name = Przemek-PC | Source = Microsoft-Windows-LanguagePackSetup | ID = 1001
Description =


< End of report >

Z programem Malwarebytes' Anti-Malware nie mogę sobie poradzić, tzn wyciągnąć z niego jakiegoś loga



-------------------------
   
Offline  Wiewia
Marzec 22, 2009, 01:03:11 pm

Grupa: Global Moderator
Hero Member
**********

Wiadomości: 2.080

NieCh BęDzie
OTViewIt dał dwa logi wklej ten drugi również



Nie rozumiem jak można sobie nie poradzić , wchodzisz w zakładke Logi jak napisał @tata zaznaczasz i wybierasz otwórz i wklejasz log na forum


-------------------------

-------------------------
Cyrk jest śmieszny , NIE DLA ZWIERZĄT             
   
Offline  lenkprzemek@poczta.onet.p
Marzec 22, 2009, 01:09:08 pm
Newbie
*

Wiadomości: 11
Ok, to drugi log

OTViewIt logfile created on: 2009-03-22 11:30:09 - Run 5
OTViewIt by OldTimer - Version 1.0.21.0     Folder = C:\Users\Przemek\Downloads
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
2,00 Gb Total Physical Memory | 1,97 Gb Available Physical Memory | 98,57% Memory free
4,00 Gb Paging File | 4,00 Gb Available in Paging File | 100,00% Paging File free
Paging file location(s): ?:\pagefile.sys;
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 149,04 Gb Total Space | 111,04 Gb Free Space | 74,50% Space Free | Partition Type: NTFS
Drive D: | 139,28 Gb Total Space | 136,39 Gb Free Space | 97,92% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
Drive F: | 11,75 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
 
Computer Name: PRZEMEK-PC
Current User Name: Przemek
Logged in as Administrator.
 
Current Boot Mode: Normal
Scan Mode: Current user
Whitelist: On
File Age = 30 Days
 
========== Processes ==========
 
[2008-01-21 03:23:42 | 00,096,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wininit.exe
[2008-01-21 03:23:44 | 00,229,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lsm.exe
[2008-07-25 09:30:59 | 00,196,608 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvvsvc.exe
[2008-01-21 03:25:00 | 02,623,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SLsvc.exe
[2007-10-03 06:53:00 | 00,094,208 | ---- | M] () -- C:\Program Files\ASUS\ATK Hotkey\AsLdrSrv.exe
[2008-11-26 18:12:08 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
[2007-08-08 09:08:40 | 00,094,208 | ---- | M] () -- C:\Program Files\ATKGFNEX\GFNEXSrv.exe
[2008-11-26 18:18:46 | 00,155,160 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe
[2006-11-02 10:45:37 | 00,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rundll32.exe
[2008-07-31 23:00:58 | 00,050,952 | ---- | M] (UPEK Inc.) -- C:\Program Files\Protector Suite QL\upeksvr.exe
[2008-01-21 03:24:44 | 00,169,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskeng.exe
[2008-07-30 02:34:34 | 00,522,792 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
[2008-06-09 19:21:58 | 00,073,728 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe
[2007-08-03 21:24:54 | 00,125,496 | ---- | M] () -- C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
[2008-05-27 06:18:43 | 00,439,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchIndexer.exe
[2008-11-26 18:18:32 | 00,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
[2008-11-26 18:16:23 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
[2008-01-21 03:24:44 | 00,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwm.exe
[2008-01-21 03:24:44 | 00,169,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskeng.exe
[2007-11-30 20:20:44 | 00,051,768 | ---- | M] () -- C:\Program Files\ASUS\ASUS Live Update\ALU.exe
[2008-01-21 03:24:44 | 00,169,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskeng.exe
[2008-06-18 07:10:24 | 00,297,528 | ---- | M] (ASUS) -- C:\Program Files\ASUS\SmartLogon\sensorsrv.exe
[2008-01-21 03:23:32 | 01,008,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe
[2008-07-19 04:52:16 | 00,104,936 | ---- | M] (CyberLink) -- C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe
[2008-01-12 07:40:10 | 00,098,304 | ---- | M] () -- C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe
[2008-07-15 20:29:00 | 07,651,328 | ---- | M] (ASUS) -- C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe
[2006-11-02 10:45:37 | 00,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rundll32.exe
[2008-07-24 11:16:01 | 06,265,376 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
[2007-12-06 11:12:43 | 01,029,416 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
[2008-06-25 04:01:08 | 00,159,744 | ---- | M] (ASUS) -- C:\Program Files\ASUS\ATK Media\DMedia.exe
[2008-11-05 01:05:51 | 03,054,136 | ---- | M] (ASUS) -- C:\Windows\AsScrPro.exe
[2008-01-25 18:32:38 | 00,778,240 | ---- | M] () -- C:\Program Files\P4P\P4P.exe
[2008-11-26 18:18:51 | 00,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe
[2008-08-04 00:02:20 | 00,036,352 | ---- | M] () -- C:\Program Files\Winamp\winampa.exe
[2009-01-15 09:55:50 | 00,136,600 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe
[2008-06-09 19:16:32 | 02,363,392 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
[2008-01-21 03:25:11 | 00,125,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehtray.exe
[2008-03-20 11:04:46 | 02,127,296 | ---- | M] (Gadu-Gadu S.A.) -- C:\Program Files\Gadu-Gadu\gg.exe
[2008-07-30 02:34:34 | 00,752,168 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
[2007-11-05 04:48:06 | 00,106,496 | ---- | M] () -- C:\Program Files\ASUS\ATK Hotkey\MsgTranAgt.exe
[2008-07-15 20:22:46 | 00,217,088 | ---- | M] (ASUS) -- C:\Program Files\ASUS\ATK Hotkey\HControl.exe
[2007-07-06 01:53:44 | 01,040,384 | ---- | M] () -- C:\Program Files\Wireless Console 2\wcourier.exe
[2008-06-19 21:18:12 | 00,154,168 | ---- | M] (ASUS) -- C:\Program Files\ASUS\ASUS CopyProtect\ASPG.exe
[2008-08-27 04:15:14 | 00,200,704 | ---- | M] (ATK) -- C:\Program Files\P4G\BatteryLife.exe
[2008-06-04 02:29:08 | 00,851,968 | ---- | M] (ATK) -- C:\Program Files\ASUS\Splendid\ACMON.exe
[2008-01-21 03:25:11 | 00,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehmsas.exe
[2005-07-07 00:43:42 | 00,155,648 | ---- | M] (ASUSTeK) -- C:\Windows\System32\ACEngSvr.exe
[2008-06-24 05:16:24 | 02,482,176 | ---- | M] (ASUS) -- C:\Program Files\ASUS\ATK Hotkey\ATKOSD.exe
[2007-08-15 20:20:16 | 00,106,496 | ---- | M] () -- C:\Program Files\ASUS\ATK Hotkey\KBFiltr.exe
[2008-01-23 19:51:28 | 00,151,552 | ---- | M] () -- C:\Program Files\ASUS\ATK Hotkey\WDC.exe
[2008-07-31 22:42:26 | 00,278,792 | ---- | M] (UPEK Inc.) -- C:\Program Files\Protector Suite QL\psqltray.exe
[2009-02-24 14:41:31 | 00,114,688 | ---- | M] () -- C:\Program Files\PLAY ONLINE\PLAY ONLINE.exe
[2007-12-06 11:12:57 | 00,095,528 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
[2009-03-06 12:15:31 | 00,307,704 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
[2009-03-22 11:23:28 | 00,422,912 | ---- | M] (OldTimer Tools) -- C:\Users\Przemek\Downloads\OTViewIt.exe
 
========== (O23) Win32 Services ==========
 
[2007-10-03 06:53:00 | 00,094,208 | ---- | M] () -- C:\Program Files\ASUS\ATK Hotkey\AsLdrSrv.exe -- (ASLDRService [Auto | Running])
[2008-11-26 18:12:08 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv [Auto | Running])
[2007-08-08 09:08:40 | 00,094,208 | ---- | M] () -- C:\Program Files\ATKGFNEX\GFNEXSrv.exe -- (ATKGFNEXSrv [Auto | Running])
[2008-11-26 18:18:46 | 00,155,160 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus [Auto | Running])
[2008-11-26 18:18:32 | 00,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner [On_Demand | Running])
[2008-11-26 18:16:23 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner [On_Demand | Running])
[2008-07-30 02:34:34 | 00,522,792 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe -- (btwdins [Auto | Running])
File not found --  -- (CertPropSvc [Unknown | Stopped])
[2008-01-21 03:24:55 | 00,070,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])
File not found --  -- (DcomLaunch [Unknown | Running])
[2008-01-21 03:23:41 | 02,091,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dfsr.exe -- (DFSR [On_Demand | Stopped])
[2008-01-21 03:24:35 | 00,134,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dps.dll -- (DPS [Unknown | Running])
[2008-01-21 03:25:09 | 00,292,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehrecvr.exe -- (ehRecvr [On_Demand | Stopped])
[2006-11-02 13:35:29 | 00,131,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehsched.exe -- (ehSched [On_Demand | Stopped])
[2008-01-21 03:25:20 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped])
[2008-01-21 03:24:55 | 00,574,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gpsvc.dll -- (gpsvc [Unknown | Running])
[2008-11-04 23:51:49 | 00,156,656 | ---- | M] (Google) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc [On_Demand | Stopped])
[2008-06-09 19:21:58 | 00,073,728 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe -- (LightScribeService [Auto | Running])
[2006-11-02 14:04:14 | 00,000,000 | ---D | M] -- C:\Windows\System32\Msdtc -- (MSDTC [Unknown | Stopped])
[2008-01-21 03:25:21 | 00,122,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped])
[2008-07-25 09:30:59 | 00,196,608 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvvsvc.exe -- (nvsvc [Auto | Running])
[2008-01-21 03:24:20 | 00,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SCardSvr.dll -- (SCardSvr [Unknown | Stopped])
File not found --  -- (Schedule [Unknown | Running])
File not found --  -- (SCPolicySvc [Unknown | Stopped])
[2008-01-21 03:25:00 | 02,623,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SLsvc.exe -- (slsvc [Auto | Running])
[2006-11-02 10:45:46 | 00,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\snmptrap.exe -- (SNMPTRAP [On_Demand | Stopped])
[2007-08-03 21:24:54 | 00,125,496 | ---- | M] () -- C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe -- (spmgr [Auto | Running])
[2008-01-21 03:24:08 | 00,035,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UI0Detect.exe -- (UI0Detect [On_Demand | Stopped])
[2008-01-21 03:25:00 | 00,382,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vds.exe -- (vds [On_Demand | Stopped])
File not found --  -- (WdiServiceHost [Unknown | Stopped])
File not found --  -- (WdiSystemHost [Unknown | Running])
[2008-01-21 03:25:33 | 00,896,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc [On_Demand | Stopped])
[2008-05-27 06:18:43 | 00,439,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchIndexer.exe -- (WSearch [Auto | Running])
 
========== Driver Services ==========
 
[2008-01-21 03:23:21 | 00,422,968 | ---- | M] (Adaptec, Inc.) -- C:\Windows\System32\drivers\adp94xx.sys -- (adp94xx [Disabled | Stopped])
[2008-01-21 03:23:25 | 00,300,600 | ---- | M] (Adaptec, Inc.) -- C:\Windows\System32\drivers\adpahci.sys -- (adpahci [Disabled | Stopped])
[2008-01-21 03:23:26 | 00,101,432 | ---- | M] (Adaptec, Inc.) -- C:\Windows\System32\drivers\adpu160m.sys -- (adpu160m [Disabled | Stopped])
[2008-01-21 03:23:27 | 00,149,560 | ---- | M] (Adaptec, Inc.) -- C:\Windows\System32\drivers\adpu320.sys -- (adpu320 [Disabled | Stopped])
[2006-11-02 10:50:11 | 00,071,272 | ---- | M] (Adaptec, Inc.) -- C:\Windows\System32\drivers\djsvs.sys -- (aic78xx [Disabled | Stopped])
[2008-01-21 03:23:00 | 00,017,464 | ---- | M] (Acer Laboratories Inc.) -- C:\Windows\System32\drivers\aliide.sys -- (aliide [Disabled | Stopped])
[2008-01-21 03:23:01 | 00,057,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\AMDAGP.SYS -- (amdagp [On_Demand | Stopped])
[2008-01-21 03:23:00 | 00,017,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\amdide.sys -- (amdide [Disabled | Stopped])
[2008-01-21 03:23:00 | 00,041,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\amdk7.sys -- (AmdK7 [Disabled | Stopped])
[2008-01-21 03:23:00 | 00,044,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\amdk8.sys -- (AmdK8 [Disabled | Stopped])
[2008-01-21 03:23:23 | 00,079,416 | ---- | M] (Adaptec, Inc.) -- C:\Windows\System32\drivers\arc.sys -- (arc [Disabled | Stopped])
[2008-01-21 03:23:24 | 00,079,928 | ---- | M] (Adaptec, Inc.) -- C:\Windows\System32\drivers\arcsas.sys -- (arcsas [Disabled | Stopped])
[2007-07-24 20:09:04 | 00,013,880 | ---- | M] () -- C:\Program Files\ATKGFNEX\ASMMAP.sys -- (ASMMAP [Auto | Running])
[2008-11-26 18:17:25 | 00,020,560 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk [Auto | Running])
[2008-11-26 18:17:15 | 00,051,792 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt [Auto | Running])
[2008-11-26 18:16:29 | 00,023,152 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr [System | Running])
[2008-11-26 18:17:36 | 00,111,184 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP [System | Running])
[2008-11-26 18:16:38 | 00,050,864 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi [System | Running])
[2008-01-21 03:23:01 | 00,045,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\blbdrive.sys -- (blbdrive [Disabled | Stopped])
[2008-01-21 03:23:53 | 00,069,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\bowser.sys -- (bowser [On_Demand | Running])
[2006-11-02 09:24:45 | 00,013,568 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\System32\drivers\BrFiltLo.sys -- (BrFiltLo [On_Demand | Stopped])
[2006-11-02 09:24:46 | 00,005,248 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\System32\drivers\BrFiltUp.sys -- (BrFiltUp [On_Demand | Stopped])
[2006-11-02 09:25:24 | 00,071,808 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\drivers\BrSerId.sys -- (Brserid [Disabled | Stopped])
[2006-11-02 09:24:44 | 00,062,336 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\drivers\BrSerWdm.sys -- (BrSerWdm [Disabled | Stopped])
[2006-11-02 09:24:44 | 00,012,160 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\drivers\BrUsbMdm.sys -- (BrUsbMdm [Disabled | Stopped])
[2006-11-02 09:24:47 | 00,011,904 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\drivers\BrUsbSer.sys -- (BrUsbSer [On_Demand | Stopped])
[2008-04-17 03:33:26 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\bthenum.sys -- (BthEnum [On_Demand | Stopped])
[2008-01-21 03:23:22 | 00,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\bthmodem.sys -- (BTHMODEM [On_Demand | Stopped])
[2008-01-21 03:23:20 | 00,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\bthpan.sys -- (BthPan [On_Demand | Stopped])
[2008-04-17 03:33:24 | 00,507,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\bthport.sys -- (BTHPORT [On_Demand | Stopped])
[2008-04-17 03:33:25 | 00,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\BTHUSB.SYS -- (BTHUSB [On_Demand | Stopped])
[2008-07-09 10:16:21 | 00,081,960 | ---- | M] (Broadcom Corporation.) -- C:\Windows\System32\drivers\btwaudio.sys -- (btwaudio [On_Demand | Stopped])
[2008-05-13 14:02:23 | 00,100,392 | ---- | M] (Broadcom Corporation.) -- C:\Windows\System32\drivers\btwavdt.sys -- (btwavdt [On_Demand | Stopped])
[2008-01-29 03:46:57 | 00,029,736 | ---- | M] (Broadcom Corporation.) -- C:\Windows\System32\drivers\btwl2cap.sys -- (btwl2cap [On_Demand | Stopped])
[2008-05-13 14:02:25 | 00,017,320 | ---- | M] (Broadcom Corporation.) -- C:\Windows\System32\drivers\btwrchid.sys -- (btwrchid [On_Demand | Stopped])
[2008-01-21 03:23:26 | 00,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\circlass.sys -- (circlass [Disabled | Stopped])
[2008-01-21 03:23:54 | 00,247,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\clfs.sys -- (CLFS [Unknown | Running])
[2008-01-21 03:23:00 | 00,019,000 | ---- | M] (CMD Technology, Inc.) -- C:\Windows\System32\drivers\cmdide.sys -- (cmdide [Disabled | Stopped])
[2008-01-21 03:23:22 | 00,024,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\crcdisk.sys -- (crcdisk [Boot | Running])
[2008-01-21 03:23:00 | 00,040,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\crusoe.sys -- (Crusoe [Disabled | Stopped])
[2008-01-21 03:24:55 | 00,075,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\dfsc.sys -- (DfsC [System | Running])
[2008-08-02 02:01:23 | 00,625,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxgkrnl.sys -- (DXGKrnl [On_Demand | Running])
[2008-01-21 03:23:24 | 00,118,784 | ---- | M] (Intel Corporation) -- C:\Windows\System32\drivers\E1G60I32.sys -- (E1G60 [On_Demand | Stopped])
[2008-01-21 03:23:39 | 00,143,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\ecache.sys -- (Ecache [Boot | Running])
[2008-01-21 03:23:22 | 00,342,584 | ---- | M] (Emulex) -- C:\Windows\System32\drivers\elxstor.sys -- (elxstor [Disabled | Stopped])
[2008-01-21 03:23:00 | 00,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\errdev.sys -- (ErrDev [Disabled | Stopped])
[2008-01-21 03:25:02 | 00,136,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\exfat.sys -- (exfat [On_Demand | Stopped])
[2008-01-21 03:24:04 | 00,058,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\fileinfo.sys -- (FileInfo [Boot | Running])
[2008-01-21 03:24:21 | 00,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\filetrace.sys -- (Filetrace [On_Demand | Stopped])
[2008-01-21 03:23:22 | 00,061,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\GAGP30KX.SYS -- (gagp30kx [On_Demand | Stopped])
[2007-08-03 05:26:21 | 00,020,936 | ---- | M] () -- C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys -- (ghaio [Auto | Running])
[2006-11-02 08:36:49 | 00,235,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\HdAudio.sys -- (HdAudAddService [On_Demand | Stopped])
[2008-01-21 03:23:22 | 00,053,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\hdaudbus.sys -- (HDAudBus [On_Demand | Running])
[2006-11-02 09:55:22 | 00,029,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidbth.sys -- (HidBth [Disabled | Stopped])
[2006-11-02 09:55:01 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidir.sys -- (HidIr [Disabled | Stopped])
[2008-01-21 03:23:26 | 00,040,504 | ---- | M] (Hewlett-Packard Company) -- C:\Windows\System32\drivers\HpCISSs.sys -- (HpCISSs [Disabled | Stopped])
[2008-03-17 11:05:30 | 00,101,632 | R--- | M] (Huawei Technologies Co., Ltd.) -- C:\Windows\System32\drivers\ewusbmdm.sys -- (hwdatacard [On_Demand | Running])
[2008-05-07 10:40:01 | 00,317,976 | ---- | M] (Intel Corporation) -- C:\Windows\System32\drivers\iaStor.sys -- (iaStor [Boot | Running])
[2008-01-21 03:23:23 | 00,235,064 | ---- | M] (Intel Corporation) -- C:\Windows\System32\drivers\iaStorV.sys -- (iaStorV [Disabled | Stopped])
[2006-11-02 10:50:17 | 00,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) -- C:\Windows\System32\drivers\iirsp.sys -- (iirsp [Disabled | Stopped])
[2008-07-24 11:03:45 | 02,158,432 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService [On_Demand | Running])
[2008-01-21 03:23:22 | 00,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\IPMIDrv.sys -- (IPMIDRV [Disabled | Stopped])
[2008-01-21 03:23:01 | 00,181,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\msiscsi.sys -- (iScsiPrt [On_Demand | Running])
[2006-11-02 10:50:07 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) -- C:\Windows\System32\drivers\iteatapi.sys -- (iteatapi [Disabled | Stopped])
[2006-11-02 10:50:09 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) -- C:\Windows\System32\drivers\iteraid.sys -- (iteraid [Disabled | Stopped])
[2008-01-21 03:23:23 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\kbdhid.sys -- (kbdhid [Disabled | Stopped])
[2008-06-03 07:41:51 | 00,015,928 | ---- | M] ( ) -- C:\Windows\System32\drivers\kbfiltr.sys -- (kbfiltr [On_Demand | Running])
[2008-01-21 03:24:37 | 00,047,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\lltdio.sys -- (lltdio [Auto | Running])
[2008-01-21 03:23:23 | 00,096,312 | ---- | M] (LSI Logic) -- C:\Windows\System32\drivers\lsi_fc.sys -- (LSI_FC [Disabled | Stopped])
[2008-01-21 03:23:25 | 00,089,656 | ---- | M] (LSI Logic) -- C:\Windows\System32\drivers\lsi_sas.sys -- (LSI_SAS [Disabled | Stopped])
[2008-01-21 03:23:23 | 00,096,312 | ---- | M] (LSI Logic) -- C:\Windows\System32\drivers\lsi_scsi.sys -- (LSI_SCSI [Disabled | Stopped])
[2008-01-21 03:24:37 | 00,084,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\luafv.sys -- (luafv [Auto | Running])
[2008-05-29 19:21:02 | 00,015,416 | ---- | M] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\System32\drivers\lullaby.sys -- (lullaby [Boot | Running])
[2008-01-21 03:23:27 | 00,031,288 | ---- | M] (LSI Corporation) -- C:\Windows\System32\drivers\megasas.sys -- (megasas [Disabled | Stopped])
[2008-01-21 03:23:27 | 00,386,616 | ---- | M] (LSI Corporation, Inc.) -- C:\Windows\System32\drivers\MegaSR.sys -- (MegaSR [Disabled | Stopped])
[2008-01-21 03:23:22 | 00,041,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\monitor.sys -- (monitor [On_Demand | Running])
[2008-01-21 03:23:20 | 00,105,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\mpio.sys -- (mpio [Disabled | Stopped])
[2008-01-21 03:24:47 | 00,064,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\mpsdrv.sys -- (mpsdrv [On_Demand | Running])
[2006-11-02 10:49:59 | 00,033,384 | ---- | M] (LSI Logic Corporation) -- C:\Windows\System32\drivers\Mraid35x.sys -- (Mraid35x [Disabled | Stopped])
[2008-05-08 20:21:56 | 00,211,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\mrxsmb10.sys -- (mrxsmb10 [On_Demand | Running])
[2008-01-21 03:24:28 | 00,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\mrxsmb20.sys -- (mrxsmb20 [On_Demand | Running])
[2008-01-21 03:23:00 | 00,028,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\msahci.sys -- (msahci [Boot | Running])
[2008-01-21 03:23:21 | 00,094,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\msdsm.sys -- (msdsm [Disabled | Stopped])
[2008-01-21 03:23:01 | 00,016,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\msisadrv.sys -- (msisadrv [Boot | Running])
[2008-01-21 03:24:26 | 00,163,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\msrpc.sys -- (MsRPC [On_Demand | Stopped])
[2006-12-14 08:11:57 | 00,007,680 | ---- | M] (ATK0100) -- C:\Windows\System32\drivers\ATKACPI.sys -- (MTsensor [On_Demand | Running])
[2008-05-20 03:07:31 | 00,148,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\nwifi.sys -- (NativeWifiP [On_Demand | Running])
[2008-06-25 23:30:49 | 03,662,848 | ---- | M] (Intel Corporation) -- C:\Windows\System32\drivers\NETw5v32.sys -- (NETw5v32 [On_Demand | Running])
[2006-11-02 10:50:19 | 00,045,160 | ---- | M] (IBM Corporation) -- C:\Windows\System32\drivers\nfrd960.sys -- (nfrd960 [Disabled | Stopped])
[2008-01-21 03:24:47 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\nsiproxy.sys -- (nsiproxy [System | Running])
[2006-11-02 08:36:50 | 00,020,608 | ---- | M] (N-trig Innovative Technologies) -- C:\Windows\System32\drivers\ntrigdigi.sys -- (ntrigdigi [Disabled | Stopped])
[2008-06-25 06:05:05 | 00,044,064 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvhda32v.sys -- (NVHDA [On_Demand | Running])
[2008-07-25 09:30:59 | 07,547,552 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm [On_Demand | Running])
[2008-01-21 03:23:21 | 00,102,968 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvraid.sys -- (nvraid [Disabled | Stopped])
[2008-01-21 03:23:21 | 00,045,112 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvstor.sys -- (nvstor [Disabled | Stopped])
[2008-01-21 03:23:01 | 00,109,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\NV_AGP.SYS -- (nv_agp [On_Demand | Stopped])
[2006-11-02 10:04:35 | 00,878,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\PEAuth.sys -- (PEAUTH [Auto | Running])
[2008-04-05 02:21:42 | 00,072,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\pacer.sys -- (PSched [System | Running])
[2008-02-23 03:38:33 | 00,043,872 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\drivers\pxhelp20.sys -- (PxHelp20 [Boot | Running])
[2008-01-21 03:23:24 | 01,122,360 | ---- | M] (QLogic Corporation) -- C:\Windows\System32\drivers\ql2300.sys -- (ql2300 [Disabled | Stopped])
[2006-11-02 10:50:35 | 00,106,088 | ---- | M] (QLogic Corporation) -- C:\Windows\System32\drivers\ql40xx.sys -- (ql40xx [Disabled | Stopped])
[2008-01-21 03:23:31 | 00,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\qwavedrv.sys -- (QWAVEdrv [On_Demand | Stopped])
[2008-01-21 03:25:05 | 00,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\rassstp.sys -- (RasSstp [On_Demand | Running])
[2008-01-21 03:24:50 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\RDPENCDD.sys -- (RDPENCDD [System | Running])
[2008-04-17 03:33:30 | 00,149,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\rfcomm.sys -- (RFCOMM [On_Demand | Stopped])
[2008-02-16 02:42:42 | 00,046,592 | ---- | M] (REDC) -- C:\Windows\System32\drivers\rimmptsk.sys -- (rimmptsk [Auto | Running])
[2007-07-30 19:42:58 | 00,043,008 | ---- | M] (REDC) -- C:\Windows\System32\drivers\rimsptsk.sys -- (rimsptsk [Auto | Running])
[2007-07-30 20:54:02 | 00,038,400 | ---- | M] (REDC) -- C:\Windows\System32\drivers\rixdptsk.sys -- (rismxdp [Auto | Running])
[2008-01-21 03:24:37 | 00,060,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\rspndr.sys -- (rspndr [Auto | Running])
[2008-08-06 09:26:07 | 00,124,928 | ---- | M] (Realtek Corporation                                            ) -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169 [On_Demand | Running])
[2006-11-02 10:50:16 | 00,076,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\sbp2port.sys -- (sbp2port [Disabled | Stopped])
[2008-01-21 03:23:21 | 00,088,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\sdbus.sys -- (sdbus [On_Demand | Running])
[2006-11-02 07:37:21 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\Windows\System32\drivers\secdrv.sys -- (secdrv [Auto | Running])
[2008-01-21 03:23:20 | 00,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\sermouse.sys -- (sermouse [Disabled | Stopped])
[2008-01-21 03:23:23 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\sffdisk.sys -- (sffdisk [Disabled | Stopped])
[2008-01-21 03:23:23 | 00,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\sffp_mmc.sys -- (sffp_mmc [On_Demand | Stopped])
[2008-01-21 03:23:23 | 00,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\sffp_sd.sys -- (sffp_sd [On_Demand | Stopped])
[2008-01-21 03:23:01 | 00,055,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\SISAGP.SYS -- (sisagp [On_Demand | Stopped])
[2008-01-21 03:23:26 | 00,041,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\sisraid2.sys -- (SiSRaid2 [Disabled | Stopped])
[2008-01-21 03:23:26 | 00,074,808 | ---- | M] (Silicon Integrated Systems) -- C:\Windows\System32\drivers\sisraid4.sys -- (SiSRaid4 [Disabled | Stopped])
[2008-01-21 03:25:00 | 00,066,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\smb.sys -- (Smb [System | Running])
[2006-11-02 08:41:49 | 01,010,560 | ---- | M] (Motorola Inc.) -- C:\Windows\System32\drivers\smserial.sys -- (smserial [On_Demand | Stopped])
[2008-04-01 08:13:58 | 01,807,744 | ---- | M] () -- C:\Windows\System32\drivers\snp2uvc.sys -- (SNP2UVC [On_Demand | Running])
[2008-01-21 03:24:11 | 00,021,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\spldr.sys -- (spldr [Boot | Running])
[2008-01-21 03:24:59 | 00,144,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\srv2.sys -- (srv2 [On_Demand | Running])
[2008-01-21 03:23:45 | 00,098,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\srvnet.sys -- (srvnet [On_Demand | Running])
[2006-11-02 10:50:05 | 00,035,944 | ---- | M] (LSI Logic) -- C:\Windows\System32\drivers\symc8xx.sys -- (Symc8xx [Disabled | Stopped])
[2006-11-02 10:49:56 | 00,031,848 | ---- | M] (LSI Logic) -- C:\Windows\System32\drivers\sym_hi.sys -- (Sym_hi [Disabled | Stopped])
[2006-11-02 10:50:03 | 00,034,920 | ---- | M] (LSI Logic) -- C:\Windows\System32\drivers\sym_u3.sys -- (Sym_u3 [Disabled | Stopped])
[2007-12-06 11:12:47 | 00,196,400 | ---- | M] (Synaptics, Inc.) -- C:\Windows\System32\drivers\SynTP.sys -- (SynTP [On_Demand | Running])
[2008-01-21 03:23:43 | 00,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\tcpipreg.sys -- (tcpipreg [Auto | Running])
[2008-08-04 19:30:24 | 00,050,576 | ---- | M] (UPEK Inc.) -- C:\Windows\System32\drivers\tcusb.sys -- (TcUsb [On_Demand | Running])
[2008-01-21 03:24:53 | 00,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\tdx.sys -- (tdx [System | Running])
[2008-01-21 03:24:59 | 00,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\tssecsrv.sys -- (tssecsrv [On_Demand | Stopped])
[2008-01-21 03:24:25 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\TUNMP.SYS -- (tunmp [On_Demand | Running])
[2008-01-21 03:24:25 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\tunnel.sys -- (tunnel [On_Demand | Running])
[2008-01-21 03:23:22 | 00,059,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\UAGP35.SYS -- (uagp35 [On_Demand | Stopped])
[2008-01-21 03:23:01 | 00,060,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\ULIAGPKX.SYS -- (uliagpkx [On_Demand | Stopped])
[2008-01-21 03:23:20 | 00,238,648 | ---- | M] (ULi Electronics Inc.) -- C:\Windows\System32\drivers\uliahci.sys -- (uliahci [Disabled | Stopped])
[2006-11-02 10:50:35 | 00,098,408 | ---- | M] (Promise Technology, Inc.) -- C:\Windows\System32\drivers\ulsata.sys -- (UlSata [Disabled | Stopped])
[2008-01-21 03:23:23 | 00,115,816 | ---- | M] (Promise Technology, Inc.) -- C:\Windows\System32\drivers\ulsata2.sys -- (ulsata2 [Disabled | Stopped])
[2008-01-21 03:23:22 | 00,034,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\umbus.sys -- (umbus [On_Demand | Running])
[2006-11-02 09:55:09 | 00,068,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbcir.sys -- (usbcir [Disabled | Stopped])
[2008-01-21 03:23:26 | 00,134,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbvideo.sys -- (usbvideo [On_Demand | Stopped])
[2008-01-21 03:23:02 | 00,026,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\vgapnp.sys -- (vga [On_Demand | Stopped])
[2008-01-21 03:23:00 | 00,041,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\viac7.sys -- (ViaC7 [Disabled | Stopped])
[2008-01-21 03:23:00 | 00,020,024 | ---- | M] (VIA Technologies, Inc.) -- C:\Windows\System32\drivers\viaide.sys -- (viaide [Disabled | Stopped])
[2008-01-21 03:23:01 | 00,052,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\volmgr.sys -- (volmgr [Boot | Running])
[2008-01-21 03:24:27 | 00,294,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\volmgrx.sys -- (volmgrx [Boot | Running])
[2008-01-21 03:23:23 | 00,130,616 | ---- | M] (VIA Technologies Inc.,Ltd) -- C:\Windows\System32\drivers\vsmraid.sys -- (vsmraid [Disabled | Stopped])
[2006-11-02 09:52:52 | 00,020,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\wacompen.sys -- (WacomPen [Disabled | Stopped])
[2008-01-21 03:23:24 | 00,022,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\wd.sys -- (Wd [Disabled | Stopped])
[2008-01-21 03:23:51 | 00,503,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\Wdf01000.sys -- (Wdf01000 [Boot | Running])
[2008-01-21 03:23:00 | 00,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\wmiacpi.sys -- (WmiAcpi [Disabled | Stopped])
[2008-01-21 03:24:47 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\ws2ifsl.sys -- (ws2ifsl [Disabled | Stopped])
[2006-11-02 08:30:56 | 00,194,048 | ---- | M] (Marvell) -- C:\Windows\System32\drivers\yk60x86.sys -- (yukonwlh [On_Demand | Stopped])
 
========== (R ) Internet Explorer ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main]
"Default_Page_URL"=http://www.google.com/ig/redirectdomain?brand=ASUS&bmod=ASUS
"Default_Search_URL"=http://go.microsoft.com/fwlink/?LinkId=54896
"Default_Secondary_Page_URL"=
"Extensions Off Page"=about:NoAdd-ons
"Local Page"=%SystemRoot%\system32\blank.htm
"Search Page"=http://go.microsoft.com/fwlink/?LinkId=54896
"Security Risk Page"=about:SecurityRisk
"Start Page"=http://www.google.com/ig/redirectdomain?brand=ASUS&bmod=ASUS
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main]
"Default_Page_URL"=http://www.google.com/ig/redirectdomain?brand=ASUS&bmod=ASUS
"Local Page"=C:\Windows\system32\blank.htm
"Search Page"=http://go.microsoft.com/fwlink/?LinkId=54896
"Start Page"=http://www.onet.pl/
"StartPageCache"=
 
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{CFBFAE00-17A6-11D0-99CB-00C04FD64497}" (HKLM) -- C:\Windows\System32\ieframe.dll (Microsoft Corporation)
 
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings]
"ProxyEnable" = 0
 
========== (O1) Hosts File ==========
 
HOSTS File = (761 bytes) - C:\Windows\System32\drivers\etc\Hosts
First 25 entries...
127.0.0.1       localhost
::1             localhost
 
========== (O2) BHO's ==========
 
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (HKLM) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (HKLM) -- C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
{DBC80044-A445-435b-BC74-9C25C1C588A9} (HKLM) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
 
========== (O4) Run Keys ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" (Adobe Systems Incorporated)
"ASUS Screen Saver Protector"=C:\Windows\AsScrPro.exe (ASUS)
"ATKMEDIA"=C:\Program Files\ASUS\ATK Media\DMedia.exe (ASUS)
"ATKOSD2"=C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe (ASUS)
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe (ALWIL Software)
"CLMLServer"="C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe" (CyberLink)
"HControlUser"=C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe ()
"NvCplDaemon"=RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup (NVIDIA Corporation)
"NvMediaCenter"=RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit (NVIDIA Corporation)
"P2Go_Menu"="C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0" (CyberLink Corp.)
"PowerForPhone"="C:\Program Files\P4P\P4P.exe" ()
"PSQLLauncher"="C:\Program Files\Protector Suite QL\launcher.exe" /startup (UPEK Inc.)
"RtHDVCpl"=RtHDVCpl.exe (Realtek Semiconductor)
"SunJavaUpdateSched"="C:\Program Files\Java\jre6\bin\jusched.exe" (Sun Microsystems, Inc.)
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics, Inc.)
"WinampAgent"="C:\Program Files\Winamp\winampa.exe" ()
"Windows Defender"=%ProgramFiles%\Windows Defender\MSASCui.exe -hide (Microsoft Corporation)
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe (Microsoft Corporation)
"Gadu-Gadu"="C:\Program Files\Gadu-Gadu\gg.exe" /tray (Gadu-Gadu S.A.)
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden (Hewlett-Packard Company)
 
========== (O6 & O7) Current Version Policies ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System]
"ConsentPromptBehaviorAdmin"=2
"ConsentPromptBehaviorUser"=1
"EnableInstallerDetection"=1
"EnableLUA"=1
"EnableSecureUIAPaths"=1
"EnableVirtualization"=1
"PromptOnSecureDesktop"=1
"ValidateAdminCodeSignatures"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"scforceoption"=0
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"FilterAdministratorToken"=0
"EnableUIADesktopToggle"=0
"DisableCAD"=1
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats]
"CF_TEXT"=1
"CF_BITMAP"=2
"CF_OEMTEXT"=7
"CF_DIB"=8
"CF_PALETTE"=9
"CF_UNICODETEXT"=13
"CF_DIBV5"=17
 
========== (O12) Internet Explorer Plugins ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\]
PluginsPage: "" = http://activex.microsoft.com/controls/find.asp?ext=%s&mime=%s
PluginsPageFriendlyName: "" =  Microsoft ActiveX Gallery
 
========== (O13) Default Prefixes ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix]
""=http://
 
========== (O16) DPF ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\]
{8AD9C840-044E-11D1-B3E9-00805F499D93}: http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab -- Java Plug-in 1.6.0_11
{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}: http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab -- Java Plug-in 1.6.0_11
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}: http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab -- Java Plug-in 1.6.0_11
 
========== (O17) DNS Name Servers ==========
 
{0D768312-BAA0-4380-B09D-FEF4485C6C53} (Servers:  | Description: Realtek RTL8168C(P)/8111C(P) Family PCI-E Gigabit Ethernet NIC (NDIS 6.0))
{51CE8629-C8F5-4D5E-BB50-EC67AF89EE2D} (Servers:  | Description: )
{5A2055DB-4E71-4D77-ADDA-32F357488251} (Servers:  | Description: Realtek RTL8168C(P)/8111C(P) Family PCI-E Gigabit Ethernet NIC (NDIS 6.0))
{98FB026C-237D-4C45-80B3-858DB4890428} (Servers:  | Description: Intel(R) WiFi Link 5100 AGN)
 
========== (O20) HKLM Winlogon Settings ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"GinaDLL"=vrlogon.dll
>[2008-07-31 23:01:38 | 00,779,016 | ---- | M] (UPEK Inc.) -- C:\Windows\System32\vrlogon.dll
 
 
========== (O20) Winlogon Notify Settings ==========
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\]
psfus: "DllName" = C:\Windows\system32\psqlpwd.dll -- C:\Windows\System32\psqlpwd.dll (UPEK Inc.)
 
========== HKLM *SecurityProviders* ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders]
"SecurityProviders"=credssp.dll
>[2008-01-21 03:24:37 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\credssp.dll
 
========== LSA *Security Packages* ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"Security Packages"=kerberos,msv1_0,schannel,wdigest,tspkg,
>[2008-01-21 03:24:37 | 00,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TSpkg.dll
 
========== Safeboot Options ==========
 
"AlternateShell"=cmd.exe
 
========== CDRom AutoRun Settings ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom]
"AutoRun" = 1
 
========== Autorun Files on Drives ==========
 
autoexec.bat [REM Dummy file for NTVDM | ]
[2006-09-18 22:43:36 | 00,000,024 | ---- | M] () -- C:\autoexec.bat -- [ NTFS ]
 
AutoRun.exe [MZ | ]
[2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.) -- F:\AutoRun.exe -- [ CDFS ]
 
AUTORUN.INF [[AutoRun] | open=AutoRun.exe | icon=PLAY ONLINE.ico | ]
[2008-07-04 12:03:32 | 00,000,051 | R--- | M] () -- F:\AUTORUN.INF -- [ CDFS ]
 
========== MountPoints2 ==========
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0a7ec936-026f-11de-96fe-0023547dd3aa}\Shell]
""=AutoRun
 
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0a7ec936-026f-11de-96fe-0023547dd3aa}\Shell\AutoRun\command]
""=F:\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0a7ec96a-026f-11de-96fe-0023547dd3aa}\Shell]
""=AutoRun
 
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0a7ec96a-026f-11de-96fe-0023547dd3aa}\Shell\AutoRun\command]
""=F:\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0a7ec96c-026f-11de-96fe-0023547dd3aa}\Shell]
""=AutoRun
 
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0a7ec96c-026f-11de-96fe-0023547dd3aa}\Shell\AutoRun\command]
""=F:\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0a7ec96d-026f-11de-96fe-0023547dd3aa}\Shell]
""=AutoRun
 
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0a7ec96d-026f-11de-96fe-0023547dd3aa}\Shell\AutoRun\command]
""=F:\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3442753a-0271-11de-9561-0023547dd3aa}\Shell]
""=AutoRun
 
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3442753a-0271-11de-9561-0023547dd3aa}\Shell\AutoRun\command]
""=F:\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3442756f-0271-11de-9561-0023547dd3aa}\Shell]
""=AutoRun
 
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3442756f-0271-11de-9561-0023547dd3aa}\Shell\AutoRun\command]
""=F:\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{34427570-0271-11de-9561-0023547dd3aa}\Shell]
""=AutoRun
 
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{34427570-0271-11de-9561-0023547dd3aa}\Shell\AutoRun\command]
""=F:\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{34427571-0271-11de-9561-0023547dd3aa}\Shell]
""=AutoRun
 
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{34427571-0271-11de-9561-0023547dd3aa}\Shell\AutoRun\command]
""=F:\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{56e84c3b-e267-11dd-a17a-0023547dd3aa}\Shell]
""=AutoRun
 
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{56e84c3b-e267-11dd-a17a-0023547dd3aa}\Shell\AutoRun\command]
""=F:\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{56e84c3d-e267-11dd-a17a-0023547dd3aa}\Shell]
""=AutoRun
 
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{56e84c3d-e267-11dd-a17a-0023547dd3aa}\Shell\AutoRun\command]
""=G:\AutoRun.exe -- File not found
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{79af743b-026a-11de-9767-0023547dd3aa}\Shell]
""=AutoRun
 
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{79af743b-026a-11de-9767-0023547dd3aa}\Shell\AutoRun\command]
""=F:\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{79af746f-026a-11de-9767-0023547dd3aa}\Shell]
""=AutoRun
 
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{79af746f-026a-11de-9767-0023547dd3aa}\Shell\AutoRun\command]
""=F:\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{79af7470-026a-11de-9767-0023547dd3aa}\Shell]
""=AutoRun
 
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{79af7470-026a-11de-9767-0023547dd3aa}\Shell\AutoRun\command]
""=F:\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{79af7471-026a-11de-9767-0023547dd3aa}\Shell]
""=AutoRun
 
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{79af7471-026a-11de-9767-0023547dd3aa}\Shell\AutoRun\command]
""=F:\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7c0fcf4a-0266-11de-9707-0023547dd3aa}\Shell]
""=AutoRun
 
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7c0fcf4a-0266-11de-9707-0023547dd3aa}\Shell\AutoRun\command]
""=F:\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7c0fcf6f-0266-11de-9707-0023547dd3aa}\Shell]
""=AutoRun
 
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7c0fcf6f-0266-11de-9707-0023547dd3aa}\Shell\AutoRun\command]
""=F:\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a9b719a7-0291-11de-a82c-0023547dd3aa}\Shell]
""=AutoRun
 
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a9b719a7-0291-11de-a82c-0023547dd3aa}\Shell\AutoRun\command]
""=F:\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b1f17f89-e186-11dd-bfa9-002243c3b400}\Shell]
""=AutoRun
 
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b1f17f89-e186-11dd-bfa9-002243c3b400}\Shell\AutoRun\command]
""=F:\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b1f17fae-e186-11dd-bfa9-002243c3b400}\Shell]
""=AutoRun
 
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b1f17fae-e186-11dd-bfa9-002243c3b400}\Shell\AutoRun\command]
""=F:\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{cea46c63-e22b-11dd-8c16-806e6f6e6963}\Shell]
""=AutoRun
 
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{cea46c63-e22b-11dd-8c16-806e6f6e6963}\Shell\AutoRun\command]
""=F:\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{cea46c7d-e22b-11dd-8c16-002243c3b400}\Shell]
""=AutoRun
 
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{cea46c7d-e22b-11dd-8c16-002243c3b400}\Shell\AutoRun\command]
""=F:\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{cea46c8d-e22b-11dd-8c16-002243c3b400}\Shell]
""=AutoRun
 
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{cea46c8d-e22b-11dd-8c16-002243c3b400}\Shell\AutoRun\command]
""=F:\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d19224b6-026d-11de-a577-0023547dd3aa}\Shell]
""=AutoRun
 
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d19224b6-026d-11de-a577-0023547dd3aa}\Shell\AutoRun\command]
""=F:\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f130ac17-0277-11de-ac18-0023547dd3aa}\Shell]
""=AutoRun
 
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f130ac17-0277-11de-ac18-0023547dd3aa}\Shell\AutoRun\command]
""=F:\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f130ac4c-0277-11de-ac18-0023547dd3aa}\Shell]
""=AutoRun
 
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f130ac4c-0277-11de-ac18-0023547dd3aa}\Shell\AutoRun\command]
""=F:\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f130ac51-0277-11de-ac18-0023547dd3aa}\Shell]
""=AutoRun
 
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f130ac51-0277-11de-ac18-0023547dd3aa}\Shell\AutoRun\command]
""=F:\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2009-03-22 11:15:51 | 00,001,637 | ---- | C] () -- C:\Users\Przemek\Desktop\CCleaner.lnk
[2009-03-22 11:15:50 | 00,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2009-03-19 22:27:50 | 00,000,000 | ---D | C] -- C:\Users\Przemek\AppData\Local\Seven Zip
[2009-03-05 23:40:50 | 00,021,504 | ---- | C] () -- C:\Users\Przemek\Desktop\Surgeries.xls
[2009-03-05 13:52:12 | 00,000,000 | ---D | C] -- C:\Program Files\XLView
[2009-03-05 13:51:55 | 00,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2009-03-05 13:51:55 | 00,000,000 | RHS- | C] () -- C:\IO.SYS
[2009-03-05 13:48:27 | 00,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2009-02-24 20:54:29 | 00,000,000 | ---D | C] -- C:\Program Files\Veetle
[2009-02-24 14:43:12 | 00,000,807 | ---- | C] () -- C:\Users\Public\Desktop\PLAY ONLINE.lnk
[2009-02-24 14:43:03 | 00,872,192 | ---- | C] (DiBcom SA) -- C:\Windows\System32\drivers\mod7700.sys
[2009-02-24 14:43:03 | 00,103,680 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\Windows\System32\drivers\ewusbfake.sys
[2009-02-24 14:43:03 | 00,101,632 | R--- | C] (Huawei Technologies Co., Ltd.) -- C:\Windows\System32\drivers\ewusbmdm.sys
[2009-02-24 14:43:03 | 00,100,864 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\Windows\System32\drivers\ewusbnet.sys
[2009-02-24 14:43:03 | 00,023,424 | R--- | C] (Huawei Tech. Co., Ltd.) -- C:\Windows\System32\drivers\ewdcsc.sys
[2009-02-24 14:41:24 | 00,000,000 | ---D | C] -- C:\Program Files\PLAY ONLINE
 
========== Files - Modified Within 30 Days ==========
 
[2009-03-22 11:15:51 | 00,001,637 | ---- | M] () -- C:\Users\Przemek\Desktop\CCleaner.lnk
[2009-03-22 11:14:27 | 01,468,980 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2009-03-22 11:14:27 | 00,662,056 | ---- | M] () -- C:\Windows\System32\perfh015.dat
[2009-03-22 11:14:27 | 00,587,178 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2009-03-22 11:14:27 | 00,126,908 | ---- | M] () -- C:\Windows\System32\perfc015.dat
[2009-03-22 11:14:27 | 00,101,250 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2009-03-22 11:09:16 | 00,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
[2009-03-22 11:07:28 | 00,028,029 | ---- | M] () -- C:\ProgramData\nvModes.001
[2009-03-22 11:06:53 | 00,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2009-03-22 11:06:53 | 00,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2009-03-22 11:06:53 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2009-03-22 11:06:48 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2009-03-22 11:06:42 | 32,202,95680 | -HS- | M] () -- C:\hiberfil.sys
[2009-03-22 11:05:42 | 00,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2009-03-22 04:11:01 | 02,683,712 | -H-- | M] () -- C:\Users\Przemek\AppData\Local\IconCache.db
[2009-03-22 01:16:19 | 00,000,422 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{93845E7C-89A9-4B91-A2F0-FE19DF452465}.job
[2009-03-17 13:53:37 | 00,045,056 | ---- | M] () -- C:\Windows\System32\acovcnt.exe
[2009-03-08 20:30:15 | 00,028,029 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2009-03-05 13:51:55 | 00,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2009-03-05 13:51:55 | 00,000,000 | RHS- | M] () -- C:\IO.SYS
[2009-03-05 13:35:49 | 00,021,504 | ---- | M] () -- C:\Users\Przemek\Desktop\Surgeries.xls
[2009-02-24 14:43:12 | 00,000,807 | ---- | M] () -- C:\Users\Public\Desktop\PLAY ONLINE.lnk
< End of report >

Zaraz jeszcze raz zobaczę ten drugi program


-------------------------
   
Offline  Wiewia
Marzec 22, 2009, 01:19:59 pm

Grupa: Global Moderator
Hero Member
**********

Wiadomości: 2.080

NieCh BęDzie
No tak Vista i jej procesy  Mrugnięcie

Mam pytanie co masz na dysku F:\ Co?

Jest mase wpisów od niego z jednego urządzenia być może telefon

Cytuj
F:\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co

Zobacz ten temat

http://www.xp.net.pl/art/vista_opt.html

I zastosuj rady tam podane

I pokaż ten log w końcu z Malwarebytes' Anti-Malware co on tam na znajdywał


-------------------------

-------------------------
Cyrk jest śmieszny , NIE DLA ZWIERZĄT             
   
Offline  lenkprzemek@poczta.onet.p
Marzec 22, 2009, 02:44:36 pm
Newbie
*

Wiadomości: 11
Dysk F to pewnie modem Play Huawei cos tam

Daje logi z Malwarebytes

Malwarebytes' Anti-Malware 1.34
Wersja bazy definicji: 1883
Windows 6.0.6001 Service Pack 1

2009-03-22 13:43:19
mbam-log-2009-03-22 (13-43-19).txt

Typ skanowania: Pełne skanowanie (C:\|D:\|)
Przeskanowane obiekty: 126357
Upłynęło: 1 hour(s), 13 minute(s), 9 second(s)

Zainfekowane procesy w pamięci: 0
Zainfekowane moduły pamięci: 0
Zainfekowane klucze rejestru: 0
Zainfekowane wartości rejestru: 0
Zainfekowane pliki rejestru: 0
Zainfekowane foldery: 0
Zainfekowane pliki: 0

Zainfekowane procesy w pamięci:
(Nie wykryto groźnych plików)

Zainfekowane moduły pamięci:
(Nie wykryto groźnych plików)

Zainfekowane klucze rejestru:
(Nie wykryto groźnych plików)

Zainfekowane wartości rejestru:
(Nie wykryto groźnych plików)

Zainfekowane pliki rejestru:
(Nie wykryto groźnych plików)

Zainfekowane foldery:
(Nie wykryto groźnych plików)

Zainfekowane pliki:
(Nie wykryto groźnych plików)


-------------------------
   
Offline  Wiewia
Marzec 22, 2009, 03:42:11 pm

Grupa: Global Moderator
Hero Member
**********

Wiadomości: 2.080

NieCh BęDzie
To nic nie widac zrób optymalizacje z tego linku

Ile czasu system ma Co?  bo chyba defragmentacji nie ma co jeszcze robić


-------------------------

-------------------------
Cyrk jest śmieszny , NIE DLA ZWIERZĄT             
   
Offline  lenkprzemek@poczta.onet.p
Marzec 22, 2009, 03:46:19 pm
Newbie
*

Wiadomości: 11
Jak pisałem, używam go od miesiąca, nie instaluje nic szczególnego ani podejrzanego, tylko podstawowe i legalne rzeczy, na dysku nie mam prawie nic

Ale ten pyrczący dysk męczy siebie imnie, ale może tak ma być, nie pamietam jak pracował od początku

Zrobie jeszcze to z podanego linka


-------------------------
   
Strony: [1]   Do góry
Bezpieczeństwo w Sieci ! > PC Zone > Software i Hardware > Wątek: Dysk cały czas pracuje
 « poprzedni następny »


Skocz do:  

Theme © PopularFX | Based on PFX Ideas! | Scripts from iScript4u Wrzesień 06, 2010, 01:43:14 pm
Działa na MySQL Powered by SMF 1.1.11 | SMF © 2006-2009, Simple Machines LLC Działa na PHP Prawidłowy XHTML 1.0! Prawidłowy CSS!
Strona wygenerowana w 0.353 sekund z 17 zapytaniami.