x-kom hosting

nie działa opcja pokaz ukryte pliki i foldery

marcioh
utworzono
utworzono (edytowane)

[log]OTL logfile created on: 2010-03-17 12:08:45 - Run 1
OTL by OldTimer - Version 3.1.37.2 Folder = C:\Documents and Settings\User\Pulpit
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 73,00% Memory free
5,00 Gb Paging File | 4,00 Gb Available in Paging File | 91,00% Paging File free
Paging file location(s): C:\pagefile.sys 3069 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 39,06 Gb Total Space | 21,62 Gb Free Space | 55,34% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 195,31 Gb Total Space | 151,72 Gb Free Space | 77,68% Space Free | Partition Type: NTFS
Drive F: | 231,38 Gb Total Space | 89,91 Gb Free Space | 38,86% Space Free | Partition Type: NTFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: WINDOWSMX7F
Current User Name: User
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 60 Days
Output = Standard

[color=#E56717]========== Processes (All) ==========[/color]

PRC - [2010-03-17 12:02:47 | 000,556,032 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe
PRC - [2010-02-13 01:49:47 | 000,085,096 | ---- | M] (Autodesk) -- C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
PRC - [2010-02-13 00:28:41 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
PRC - [2010-02-11 19:53:42 | 002,756,488 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2010-02-11 19:53:39 | 000,040,384 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2010-02-05 19:36:00 | 000,527,344 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2010-01-20 13:05:04 | 012,067,432 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe
PRC - [2009-12-11 21:07:16 | 000,602,112 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe
PRC - [2009-12-08 11:29:24 | 018,789,920 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.EXE
PRC - [2009-11-25 19:19:11 | 000,814,344 | ---- | M] (ABBYY) -- C:\Program Files\Common Files\ABBYY\FineReader\10.00\Licensing\PE\NetworkLicenseServer.exe
PRC - [2009-07-20 12:30:50 | 000,813,584 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPoint\SetPoint.exe
PRC - [2009-07-10 12:42:32 | 000,055,824 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
PRC - [2009-04-22 17:38:50 | 000,065,536 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
PRC - [2009-04-22 17:37:16 | 000,065,536 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
PRC - [2008-06-27 16:36:58 | 001,424,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008-06-16 16:28:36 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe
PRC - [2008-06-16 14:28:36 | 000,549,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe
PRC - [2008-06-16 14:28:36 | 000,112,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe
PRC - [2008-06-16 14:28:36 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe
PRC - [2008-06-16 14:28:36 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe
PRC - [2008-06-16 14:28:36 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS]
PRC - [2008-06-16 14:28:36 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE]
PRC - [2008-06-16 14:28:36 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS]
PRC - [2008-06-16 14:28:36 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-06-16 14:28:36 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH]
PRC - [2008-06-16 14:28:36 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe
PRC - [2008-06-16 14:28:36 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe
PRC - [2006-12-23 18:05:20 | 000,143,360 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
PRC - [2006-12-23 18:04:42 | 000,905,216 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
PRC - [2006-12-23 17:54:04 | 000,262,144 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
PRC - [2006-12-14 17:49:10 | 000,061,440 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe
PRC - [2006-10-23 02:40:00 | 000,046,200 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\acrobat_sl.exe
PRC - [2006-10-23 00:24:00 | 000,620,152 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\Adobe\Acrobat 8.0\Acrobat\acrotray.exe
PRC - [2006-09-29 12:48:06 | 000,065,536 | ---- | M] () -- C:\Program Files\Autodesk\3ds Max 9\mentalray\satellite\raysat_3dsmax9_32server.exe
PRC - [2006-02-28 12:42:38 | 000,229,376 | ---- | M] (Apple Computer, Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe


[color=#E56717]========== Modules (All) ==========[/color]

MOD - [2010-03-17 12:02:47 | 000,556,032 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe
MOD - [2009-07-20 12:29:06 | 000,045,584 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPoint\lgscroll.dll
MOD - [2009-07-12 01:12:06 | 000,632,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\msvcr80.dll
MOD - [2008-07-11 07:01:36 | 025,277,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll
MOD - [2008-06-16 14:28:36 | 001,392,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll
MOD - [2008-06-16 14:28:36 | 001,287,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll
MOD - [2008-06-16 14:28:36 | 001,054,208 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
MOD - [2008-06-16 14:28:36 | 001,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll
MOD - [2008-06-16 14:28:36 | 000,732,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\userenv.dll
MOD - [2008-06-16 14:28:36 | 000,714,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll
MOD - [2008-06-16 14:28:36 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll
MOD - [2008-06-16 14:28:36 | 000,584,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll
MOD - [2008-06-16 14:28:36 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll
MOD - [2008-06-16 14:28:36 | 000,483,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll
MOD - [2008-06-16 14:28:36 | 000,344,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll
MOD - [2008-06-16 14:28:36 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll
MOD - [2008-06-16 14:28:36 | 000,285,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll
MOD - [2008-06-16 14:28:36 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll
MOD - [2008-06-16 14:28:36 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTFIME.IME
MOD - [2008-06-16 14:28:36 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wldap32.dll
MOD - [2008-06-16 14:28:36 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv
MOD - [2008-06-16 14:28:36 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntmarta.dll
MOD - [2008-06-16 14:28:36 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imm32.dll
MOD - [2008-06-16 14:28:36 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll
MOD - [2008-06-16 14:28:36 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll
MOD - [2008-06-16 14:28:36 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samlib.dll
MOD - [2008-06-16 14:28:36 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll
MOD - [2008-06-16 14:28:36 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll
MOD - [2008-06-16 14:28:36 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll
MOD - [2007-07-11 06:06:54 | 000,642,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll
MOD - [2006-05-03 22:53:54 | 000,174,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\framedyn.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - File not found [On_Demand | Stopped] -- -- (ALG)
SRV - [2010-02-13 01:49:47 | 000,085,096 | ---- | M] (Autodesk) [Auto | Running] -- C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe -- (Autodesk Licensing Service)
SRV - [2010-02-13 00:28:41 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Running] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010-02-11 19:53:39 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
SRV - [2010-02-11 19:53:39 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
SRV - [2010-02-11 19:53:39 | 000,040,384 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2009-11-25 19:19:11 | 000,814,344 | ---- | M] (ABBYY) [Auto | Running] -- C:\Program Files\Common Files\ABBYY\FineReader\10.00\Licensing\PE\NetworkLicenseServer.exe -- (ABBYY.Licensing.FineReader.Professional.10.0)
SRV - [2009-07-20 12:28:10 | 000,121,360 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV - [2006-09-29 12:48:06 | 000,065,536 | ---- | M] () [Auto | Running] -- C:\Program Files\Autodesk\3ds Max 9\mentalray\satellite\raysat_3dsmax9_32server.exe -- (mi-raysat_3dsmax9_32) mental ray 3.5 Satellite (32-bit)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - [2010-02-12 21:59:35 | 000,015,600 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\gdrv.sys -- (gdrv)
DRV - [2010-02-11 19:42:34 | 000,046,672 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2010-02-11 19:42:13 | 000,162,512 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP)
DRV - [2010-02-11 19:39:01 | 000,023,376 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2010-02-11 19:38:34 | 000,100,432 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2010-02-11 19:38:23 | 000,019,024 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010-02-11 19:38:07 | 000,028,880 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2009-12-11 22:02:42 | 004,525,056 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2009-12-08 11:03:00 | 006,017,568 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2009-11-18 00:17:00 | 001,395,800 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)
DRV - [2009-11-18 00:16:00 | 001,691,480 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)
DRV - [2009-06-17 17:56:24 | 000,079,248 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LMouKE.Sys -- (LMouKE)
DRV - [2009-06-17 17:55:34 | 000,010,384 | ---- | M] (Logitech, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\LBeepKE.sys -- (LBeepKE)
DRV - [2009-06-17 17:55:26 | 000,063,248 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\L8042mou.Sys -- (L8042mou)
DRV - [2009-06-17 17:55:18 | 000,020,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\L8042Kbd.sys -- (L8042Kbd)
DRV - [2008-06-16 14:28:36 | 000,105,856 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2008-06-16 14:28:36 | 000,062,208 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\si3112.sys -- (Si3112)
DRV - [2008-02-22 15:33:02 | 000,114,304 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdm.sys -- (sscdmdm)
DRV - [2008-02-22 15:33:02 | 000,014,976 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdfl.sys -- (sscdmdfl)
DRV - [2008-02-22 15:33:00 | 000,087,936 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdbus.sys -- (sscdbus) SAMSUNG USB Composite Device driver (WDM)
DRV - [2006-07-24 16:05:00 | 000,005,632 | ---- | M] () [File_System | System | Running] -- C:\WINDOWS\system32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2004-03-17 15:12:12 | 000,135,168 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Hdaudbus.sys -- (HDAudBus)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com


IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank

IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank

IE - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Yahoo! Search
IE - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
IE - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.orbitdownloader.com
IE - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "google.pl"
FF - prefs.js..extensions.enabledItems: {35379F86-8CCB-4724-AE33-4278DE266C70}:1.0.4

FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-03-17 11:17:32 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-03-17 11:17:31 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 3.0.1\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2010-02-13 13:28:13 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 3.0.1\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins

[2010-02-13 13:28:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Mozilla\Extensions
[2010-02-13 13:28:46 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\User\Dane aplikacji\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2010-02-22 23:19:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Mozilla\Firefox\Profiles\e2njnjr2.default\extensions
[2010-02-13 19:48:17 | 000,001,738 | ---- | M] () -- C:\Documents and Settings\User\Dane aplikacji\Mozilla\Firefox\Profiles\e2njnjr2.default\searchplugins\wyszukiwanie-filmw-wideo-w-youtube.xml
[2010-02-12 22:16:02 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010-03-17 11:17:26 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010-03-17 11:17:26 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2010-03-17 11:17:26 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2010-03-17 11:17:26 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010-03-17 11:17:26 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2010-03-17 11:17:26 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2008-06-16 14:28:36 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Octh Class) - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files\Orbitdownloader\orbitcth.dll (Orbitdownloader.com)
O2 - BHO: (Yahoo! Companion BHO) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_0_1.dll (Yahoo! Inc.)
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Grab Pro) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Program Files\Orbitdownloader\GrabPro.dll ()
O3 - HKLM\..\Toolbar: (&Yahoo! Companion) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_0_1.dll (Yahoo! Inc.)
O3 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\..\Toolbar\WebBrowser: (Grab Pro) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Program Files\Orbitdownloader\GrabPro.dll ()
O3 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\..\Toolbar\WebBrowser: (&Yahoo! Companion) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_0_1.dll (Yahoo! Inc.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (ALWIL Software)
O4 - HKLM..\Run: [Bonus.SSR.FR10] C:\Program Files\ABBYY FineReader 10\Bonus.ScreenshotReader.exe (ABBYY.)
O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech, Inc.)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001..\Run: [cdoosoft] C:\DOCUME~1\User\USTAWI~1\Temp\herss.exe File not found
O4 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001..\Run: [Gadu-Gadu 10] C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.)
O4 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001..\Run: [Komunikator] C:\Program Files\Tlen.pl\tlen.exe File not found
O4 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKU\.DEFAULT..\RunOnce: [nltide_2] File not found
O4 - HKU\S-1-5-18..\RunOnce: [nltide_2] File not found
O4 - HKU\S-1-5-19..\RunOnce: [nltide_2] File not found
O4 - HKU\S-1-5-20..\RunOnce: [nltide_2] File not found
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Acrobat Speed Launcher.lnk = C:\WINDOWS\Installer\{AC76BA86-1029-0000-7760-000000000003}\_SC_Acrobat.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Acrobat Synchronizer.lnk = C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktopCleanupWizard = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoInternetOpenWith = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableStatusMessages = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: VerboseStatus = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1
O7 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1
O7 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O8 - Extra context menu item: &Download by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: &Grab video by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: Do&wnload selected by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: Dołącz do istniejącego pliku PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Down&load all by Orbit - C:\Program Files\Orbitdownloader\orbitmxt.dll (Orbitdownloader.com)
O8 - Extra context menu item: E&ksport do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office10\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Funkcja Google Sidewiki - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll (Google Inc.)
O8 - Extra context menu item: Konwertuj do Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Konwertuj miejsce docelowe łącza do Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Konwertuj miejsce docelowe łącza do istniejącego pliku PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Konwertuj wybrane łącza do Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Konwertuj wybrane łącza do istniejącego pliku PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Konwertuj zaznaczenie do Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Konwertuj zaznaczenie do istniejącego pliku PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 198.6.1.218 194.204.159.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\LBTWlgn: DllName - c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll - c:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O24 - Desktop Components:0 (Bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010-02-12 21:23:10 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2010-02-12 21:22:44 | 000,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found


SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vga.sys - Driver
SafeBootMin: WdfLoadGroup -
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: Messenger - Service
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: WdfLoadGroup -
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

[color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color]

[2010-03-17 12:03:14 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\User\Recent
[2010-03-17 12:02:46 | 000,556,032 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe
[2010-03-07 13:07:21 | 000,000,000 | ---D | C] -- C:\Program Files\NAPI-PROJEKT
[2010-03-06 16:42:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Google
[2010-03-06 16:42:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\3dsmax
[2010-03-06 16:38:39 | 000,000,000 | --SD | C] -- C:\Documents and Settings\User\Moje dokumenty\Adlm
[2010-03-05 21:45:24 | 000,000,000 | ---D | C] -- C:\Program Files\MoorHunt
[2010-03-04 14:38:42 | 000,000,000 | ---D | C] -- C:\Program Files\Peer2Mail
[2010-03-02 20:45:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Pulpit\MailResender.2.15.011.Patch1.(legendteam.net)
[2010-02-23 11:41:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt
[2010-02-21 15:09:17 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2010-02-21 14:11:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\Prototype
[2010-02-21 14:09:24 | 000,107,888 | ---- | C] (Sony DADC Austria AG.) -- C:\WINDOWS\System32\CmdLineExt.dll
[2010-02-21 01:22:48 | 000,000,000 | -H-D | C] -- C:\WINDOWS\PIF
[2010-02-20 22:04:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\GrabPro
[2010-02-20 22:04:13 | 000,000,000 | ---D | C] -- C:\Program Files\Orbitdownloader
[2010-02-20 22:04:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Orbit
[2010-02-20 21:39:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\ipla
[2010-02-20 21:39:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla
[2010-02-19 23:20:53 | 000,000,000 | ---D | C] -- C:\Program Files\Compaq
[2010-02-19 23:20:49 | 000,000,000 | ---D | C] -- C:\CPQSYSTEM
[2010-02-19 18:52:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\Downloads
[2010-02-19 14:11:22 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2010-02-19 14:11:21 | 000,000,000 | ---D | C] -- C:\Program Files\Real Alternative
[2010-02-18 09:57:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\ABBYY
[2010-02-18 09:51:16 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ABBYY
[2010-02-18 09:49:11 | 000,000,000 | ---D | C] -- C:\Program Files\ABBYY FineReader 10
[2010-02-18 09:49:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\ABBYY
[2010-02-18 09:49:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ABBYY
[2010-02-18 09:45:38 | 000,000,000 | ---D | C] -- C:\temp
[2010-02-17 22:14:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\Version Cue
[2010-02-17 22:14:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\AdobeStockPhotos
[2010-02-17 21:16:34 | 000,000,000 | --SD | C] -- C:\Documents and Settings\User\Moje dokumenty\Wideo
[2010-02-17 21:16:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Samsung
[2010-02-17 21:16:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\My Art
[2010-02-17 21:15:11 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2010-02-17 21:15:08 | 000,114,304 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\sscdmdm.sys
[2010-02-17 21:15:08 | 000,087,936 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\sscdbus.sys
[2010-02-17 21:15:08 | 000,014,976 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\sscdmdfl.sys
[2010-02-17 21:15:08 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\sscdwhnt.sys
[2010-02-17 21:15:08 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\sscdwh.sys
[2010-02-17 21:15:08 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\sscdcmnt.sys
[2010-02-17 21:15:08 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\sscdcm.sys
[2010-02-17 21:14:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Samsung_USB_Drivers
[2010-02-17 21:14:19 | 000,000,000 | ---D | C] -- C:\Program Files\Samsung
[2010-02-14 19:18:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Logitech
[2010-02-14 19:18:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Leadertech
[2010-02-14 19:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\LogiShrd
[2010-02-14 19:18:16 | 000,010,384 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\System32\drivers\LBeepKE.sys
[2010-02-14 19:17:48 | 000,170,512 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\System32\kemutb.dll
[2010-02-14 19:17:48 | 000,145,936 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\System32\KemUtil.dll
[2010-02-14 19:17:48 | 000,117,264 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\System32\KemWnd.dll
[2010-02-14 19:17:48 | 000,084,496 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\System32\KemXML.dll
[2010-02-14 19:17:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Logitech
[2010-02-14 19:17:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Logishrd
[2010-02-14 19:17:24 | 000,000,000 | ---D | C] -- C:\Program Files\Logitech
[2010-02-13 20:59:04 | 000,000,000 | ---D | C] -- C:\Program Files\PDFCreator
[2010-02-13 19:40:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\Msagent
[2010-02-13 19:40:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\ShellNew
[2010-02-13 16:48:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang
[2010-02-13 16:45:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM
[2010-02-13 14:51:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Google
[2010-02-13 14:51:47 | 000,000,000 | ---D | C] -- C:\Program Files\IrfanView
[2010-02-13 14:34:46 | 000,358,944 | ---- | C] (Realtek Semiconductor Crop.) -- C:\WINDOWS\vncutil.exe
[2010-02-13 14:34:45 | 000,129,568 | ---- | C] (Realtek Semiconductor) -- C:\WINDOWS\RtkAudioService.exe
[2010-02-13 14:34:43 | 001,691,480 | ---- | C] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys
[2010-02-13 14:34:42 | 002,815,520 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE
[2010-02-13 13:49:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\WinRAR
[2010-02-13 13:28:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Thunderbird
[2010-02-13 13:28:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Thunderbird
[2010-02-13 13:28:04 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Thunderbird
[2010-02-13 12:47:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Identities
[2010-02-13 12:47:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Identities
[2010-02-13 12:15:59 | 000,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack
[2010-02-13 10:59:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\ATI
[2010-02-13 10:59:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\ATI
[2010-02-13 10:59:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ATI
[2010-02-13 02:09:50 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2010-02-13 02:08:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\BESTplayer
[2010-02-13 02:08:39 | 003,414,528 | ---- | C] (Karol Winnicki) -- C:\Documents and Settings\User\Pulpit\BESTplayer.exe
[2010-02-13 02:08:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\Updater5
[2010-02-13 02:05:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\FLEXnet
[2010-02-13 01:45:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Autodesk
[2010-02-13 01:45:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Autodesk
[2010-02-13 01:45:32 | 000,000,000 | ---D | C] -- C:\Program Files\AutoCAD 2008
[2010-02-13 01:45:17 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2010-02-13 01:44:54 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Autodesk Shared
[2010-02-13 01:44:54 | 000,000,000 | ---D | C] -- C:\Program Files\Autodesk
[2010-02-13 01:44:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Autodesk
[2010-02-13 01:21:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX
[2010-02-13 01:21:01 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Designer
[2010-02-13 01:20:56 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2010-02-13 01:19:51 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2010-02-13 01:17:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2010-02-13 01:17:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-us
[2010-02-13 01:17:30 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2010-02-13 01:16:05 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly
[2010-02-13 01:15:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET
[2010-02-13 01:00:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\LightScribe
[2010-02-13 00:58:28 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\LightScribe
[2010-02-13 00:58:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Ahead
[2010-02-13 00:56:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Nero
[2010-02-13 00:56:02 | 000,000,000 | ---D | C] -- C:\Program Files\Nero
[2010-02-13 00:56:02 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Ahead
[2010-02-13 00:50:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Ahead
[2010-02-13 00:39:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Adobe
[2010-02-13 00:33:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Adobe
[2010-02-13 00:32:40 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2010-02-13 00:29:02 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2010-02-13 00:28:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Macrovision Shared
[2010-02-13 00:27:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2010-02-13 00:09:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Adobe
[2010-02-13 00:09:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Macromedia
[2010-02-13 00:09:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\cache
[2010-02-13 00:07:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Gadu-Gadu 10
[2010-02-13 00:07:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2010-02-13 00:06:58 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu 10
[2010-02-12 23:54:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Tlen.pl
[2010-02-12 23:54:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Tlen.pl
[2010-02-12 22:36:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\GHISLER
[2010-02-12 22:30:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Google
[2010-02-12 22:27:03 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2010-02-12 22:25:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Temp
[2010-02-12 22:25:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Google
[2010-02-12 22:24:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google
[2010-02-12 22:24:52 | 000,162,512 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2010-02-12 22:24:52 | 000,019,024 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2010-02-12 22:24:52 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2010-02-12 22:24:51 | 000,023,376 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2010-02-12 22:24:50 | 000,046,672 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2010-02-12 22:24:48 | 000,100,432 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2010-02-12 22:24:48 | 000,094,800 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2010-02-12 22:24:48 | 000,028,880 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2010-02-12 22:24:40 | 000,153,184 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe
[2010-02-12 22:24:40 | 000,038,848 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\avastSS.scr
[2010-02-12 22:24:38 | 000,000,000 | ---D | C] -- C:\Program Files\Alwil Software
[2010-02-12 22:24:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software
[2010-02-12 22:21:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\Pobieranie
[2010-02-12 22:16:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Mozilla
[2010-02-12 22:16:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Mozilla
[2010-02-12 22:16:01 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2010-02-12 22:15:05 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Muzyka
[2010-02-12 22:14:51 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2010-02-12 22:14:51 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2010-02-12 22:14:47 | 000,000,000 | R--D | C] -- C:\Program Files
[2010-02-12 22:14:47 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2010-02-12 22:14:47 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2010-02-12 22:14:47 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files
[2010-02-12 22:14:28 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start
[2010-02-12 22:14:28 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty
[2010-02-12 22:14:28 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Szablony
[2010-02-12 22:14:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Ulubione
[2010-02-12 22:14:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit
[2010-02-12 22:14:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2010-02-12 22:14:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2010-02-12 22:14:12 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft
[2010-02-12 22:14:12 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji
[2010-02-12 22:13:49 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2010-02-12 22:13:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2010-02-12 22:12:58 | 000,000,000 | ---D | C] -- C:\Program Files\totalcmd
[2010-02-12 22:12:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\GHISLER
[2010-02-12 22:06:38 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files
[2010-02-12 22:06:38 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2010-02-12 22:06:38 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web
[2010-02-12 22:06:38 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\system
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\security
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\PCHealth
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Offline Web Pages
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\NLDRV
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Network Diagnostic
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\L2Schemas
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\java
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1045
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025
[2010-02-12 22:03:43 | 000,208,896 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\atipdlxx.dll
[2010-02-12 22:03:43 | 000,155,648 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\Oemdspif.dll
[2010-02-12 22:03:43 | 000,043,520 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\ati2edxx.dll
[2010-02-12 22:03:43 | 000,026,112 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\Ati2mdxx.exe
[2010-02-12 22:03:43 | 000,024,064 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\ativcoxx.dll
[2010-02-12 22:03:18 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
[2010-02-12 22:03:16 | 000,000,000 | ---D | C] -- C:\Program Files\ATI
[2010-02-12 22:02:15 | 000,000,000 | ---D | C] -- C:\ATI
[2010-02-12 21:56:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\OPTIONS
[2010-02-12 21:56:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\InstallShield
[2010-02-12 21:56:36 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2010-02-12 21:56:35 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2010-02-12 21:56:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2010-02-12 21:47:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2010-02-12 21:47:17 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2010-02-12 21:47:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE
[2010-02-12 21:47:15 | 000,000,000 | ---D | C] -- C:\Intel
[2010-02-12 21:47:10 | 000,000,000 | ---D | C] -- C:\Program Files\Yahoo!
[2010-02-12 21:25:42 | 000,000,000 | --SD | C] -- C:\Documents and Settings\User\Moje dokumenty\Muzyka
[2010-02-12 21:25:42 | 000,000,000 | --SD | C] -- C:\Documents and Settings\User\Moje dokumenty\Moje obrazy
[2010-02-12 21:25:18 | 000,000,000 | --SD | C] -- C:\Documents and Settings\User\Ulubione
[2010-02-12 21:25:18 | 000,000,000 | --SD | C] -- C:\Documents and Settings\User\Moje dokumenty
[2010-02-12 21:25:18 | 000,000,000 | --SD | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Microsoft
[2010-02-12 21:25:18 | 000,000,000 | --SD | C] -- C:\Documents and Settings\User\Dane aplikacji\Microsoft
[2010-02-12 21:25:18 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\User\SendTo
[2010-02-12 21:25:18 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\User\Dane aplikacji
[2010-02-12 21:25:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\User\Menu Start
[2010-02-12 21:25:18 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\User\Cookies
[2010-02-12 21:25:18 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\User\Ustawienia lokalne
[2010-02-12 21:25:18 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\User\Szablony
[2010-02-12 21:25:18 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\User\PrintHood
[2010-02-12 21:25:18 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\User\NetHood
[2010-02-12 21:25:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Pulpit
[2010-02-12 21:25:17 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC
[2010-02-12 21:25:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2010-02-12 21:25:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2010-02-12 21:25:02 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2010-02-12 21:25:01 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2010-02-12 21:24:59 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2010-02-12 21:23:05 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft
[2010-02-12 21:23:05 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft
[2010-02-12 21:22:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dllcache
[2010-02-12 21:22:34 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM
[2010-02-12 21:22:24 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Obrazy
[2010-02-12 21:22:20 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate
[2010-02-12 21:22:16 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online
[2010-02-12 21:21:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services
[2010-02-12 21:21:53 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks
[2010-02-12 21:21:52 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap
[2010-02-12 21:21:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed
[2010-02-12 21:21:40 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker
[2010-02-12 21:21:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore
[2010-02-12 21:21:33 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting
[2010-02-12 21:21:28 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express
[2010-02-12 21:21:17 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System
[2010-02-12 21:21:14 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer
[2010-02-12 21:20:42 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications
[2010-02-12 21:20:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration
[2010-02-12 21:20:16 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2010-02-12 21:20:15 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player
[2010-02-12 21:19:52 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone
[2010-02-12 21:19:39 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT
[2010-02-12 21:19:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc
[2010-02-12 21:19:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com
[2010-02-12 21:19:22 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Wideo
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 60 Days ==========[/color]

[2010-03-17 12:04:51 | 000,002,337 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Acrobat Speed Launcher.lnk
[2010-03-17 12:04:30 | 000,001,028 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010-03-17 12:04:26 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010-03-17 12:04:13 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-03-17 12:03:24 | 003,145,728 | -H-- | M] () -- C:\Documents and Settings\User\NTUSER.DAT
[2010-03-17 12:03:17 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\User\ntuser.ini
[2010-03-17 12:02:47 | 000,556,032 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe
[2010-03-17 12:01:05 | 000,000,210 | ---- | M] () -- C:\Documents and Settings\User\Moje dokumenty\FIX.reg
[2010-03-17 11:40:01 | 000,001,032 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010-03-16 17:25:15 | 000,054,272 | ---- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-03-16 10:25:17 | 000,026,624 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\form_promotor2010-11.doc
[2010-03-16 09:09:53 | 000,085,586 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\lista_promotorow2010-11.pdf
[2010-03-15 21:21:54 | 000,516,763 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Martus1.jpg
[2010-03-15 21:21:45 | 000,530,630 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Martus2.jpg
[2010-03-15 00:06:41 | 003,414,528 | ---- | M] (Karol Winnicki) -- C:\Documents and Settings\User\Pulpit\BESTplayer.exe
[2010-03-14 11:42:34 | 000,000,093 | ---- | M] () -- C:\Documents and Settings\User\default.pls
[2010-03-14 11:42:32 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010-03-14 01:23:18 | 000,000,151 | ---- | M] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2010-03-13 13:58:34 | 000,002,184 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-03-07 17:04:47 | 000,000,658 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\P2M.exe.lnk
[2010-03-07 16:59:57 | 000,000,993 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Mail Resender.exe.lnk
[2010-03-07 13:07:21 | 000,000,662 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\NapiProjekt.lnk
[2010-03-06 16:36:56 | 000,001,718 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Autodesk 3ds Max 9 32-bit.lnk
[2010-03-06 16:35:48 | 000,007,374 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\services
[2010-03-06 16:33:05 | 001,027,882 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-03-06 16:33:05 | 000,482,262 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2010-03-06 16:33:05 | 000,425,218 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-03-06 16:33:05 | 000,080,636 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2010-03-06 16:33:05 | 000,065,242 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-03-04 14:17:29 | 000,000,708 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Total Commander.lnk
[2010-02-28 20:00:00 | 000,803,567 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Zdjęcie002.jpg
[2010-02-28 19:57:51 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\All Users\Dane aplikacji\LauncherAccess.dt
[2010-02-28 19:51:17 | 000,155,795 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\AU8SEM0910.pdf
[2010-02-21 16:14:21 | 000,122,185 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\grafika.swf
[2010-02-21 14:09:24 | 000,107,888 | ---- | M] (Sony DADC Austria AG.) -- C:\WINDOWS\System32\CmdLineExt.dll
[2010-02-20 21:42:45 | 004,810,698 | -H-- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2010-02-19 09:03:02 | 000,046,480 | ---- | M] () -- C:\Documents and Settings\User\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2010-02-18 09:24:12 | 329,477,503 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\FR10PE_demo.exe
[2010-02-17 21:14:23 | 000,000,673 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Samsung PC Studio 3.lnk
[2010-02-16 22:27:15 | 000,077,314 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\19245_1336341922692_1055417614_1037196_7326493_n.jpg
[2010-02-14 19:17:50 | 000,001,687 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Logitech SetPoint.lnk
[2010-02-14 10:38:44 | 001,477,144 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-02-13 20:59:08 | 000,000,706 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\PDFCreator.lnk
[2010-02-13 19:44:20 | 000,046,416 | ---- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2010-02-13 19:41:38 | 000,000,427 | ---- | M] () -- C:\WINDOWS\ODBC.INI
[2010-02-13 19:41:30 | 000,000,603 | ---- | M] () -- C:\WINDOWS\win.ini
[2010-02-13 19:41:21 | 000,001,750 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Microsoft Office.lnk
[2010-02-13 17:02:49 | 000,000,856 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Adobe Photoshop CS3.lnk
[2010-02-13 16:48:49 | 000,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav
[2010-02-13 16:48:48 | 000,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav
[2010-02-13 14:51:47 | 000,000,685 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\IrfanView.lnk
[2010-02-13 13:36:29 | 000,000,441 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\fotografia.lnk
[2010-02-13 13:36:23 | 000,000,435 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\tekstury.lnk
[2010-02-13 13:36:08 | 000,000,419 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\zdjęcia.lnk
[2010-02-13 13:35:46 | 000,000,340 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\filmy.lnk
[2010-02-13 13:35:19 | 000,000,402 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\rok4.lnk
[2010-02-13 13:34:51 | 000,000,467 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\miasta.lnk
[2010-02-13 02:04:57 | 000,001,800 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Acrobat Synchronizer.lnk
[2010-02-13 02:04:57 | 000,001,736 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Acrobat 8 Professional.lnk
[2010-02-13 01:49:37 | 000,001,692 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\AutoCAD 2008 - Polski.lnk
[2010-02-13 00:07:18 | 000,000,674 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk
[2010-02-12 22:25:27 | 000,001,813 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Google Chrome.lnk
[2010-02-12 22:24:49 | 000,002,645 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010-02-12 22:16:23 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat
[2010-02-12 22:16:03 | 000,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk
[2010-02-12 22:14:55 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF
[2010-02-12 22:14:45 | 000,000,231 | ---- | M] () -- C:\WINDOWS\system.ini
[2010-02-12 22:03:49 | 000,000,000 | ---- | M] () -- C:\WINDOWS\ativpsrm.bin
[2010-02-12 21:24:02 | 000,004,512 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010-02-12 21:24:02 | 000,001,196 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2010-02-12 21:23:10 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010-02-12 21:23:10 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010-02-12 21:23:10 | 000,000,000 | ---- | M] () -- C:\WINDOWS\control.ini
[2010-02-12 21:23:10 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010-02-12 21:23:10 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010-02-12 21:23:05 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2010-02-12 21:23:05 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2010-02-12 21:23:04 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2010-02-12 21:22:56 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2010-02-12 21:22:26 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest
[2010-02-12 21:22:26 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2010-02-12 21:22:24 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2010-02-12 21:22:24 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest
[2010-02-12 21:22:24 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2010-02-12 21:22:24 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2010-02-12 21:22:24 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2010-02-12 21:22:24 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2010-02-12 21:20:52 | 000,021,856 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010-02-12 21:20:40 | 000,000,037 | ---- | M] () -- C:\WINDOWS\vbaddin.ini
[2010-02-12 21:20:40 | 000,000,036 | ---- | M] () -- C:\WINDOWS\vb.ini
[2010-02-12 21:18:11 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2010-02-11 19:53:57 | 000,038,848 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\avastSS.scr
[2010-02-11 19:53:36 | 000,153,184 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe
[2010-02-11 19:42:34 | 000,046,672 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2010-02-11 19:42:13 | 000,162,512 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2010-02-11 19:39:01 | 000,023,376 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2010-02-11 19:38:34 | 000,100,432 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2010-02-11 19:38:31 | 000,094,800 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2010-02-11 19:38:23 | 000,019,024 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2010-02-11 19:38:07 | 000,028,880 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2010-03-17 12:01:05 | 000,000,210 | ---- | C] () -- C:\Documents and Settings\User\Moje dokumenty\FIX.reg
[2010-03-16 09:10:55 | 000,026,624 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\form_promotor2010-11.doc
[2010-03-16 09:09:53 | 000,085,586 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\lista_promotorow2010-11.pdf
[2010-03-15 21:21:53 | 000,516,763 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\Martus1.jpg
[2010-03-15 21:21:45 | 000,530,630 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\Martus2.jpg
[2010-03-13 18:55:20 | 000,008,192 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\Simple XQZ Wallhack (Test version 9) by Laurynas.exe
[2010-03-07 17:04:47 | 000,000,658 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\P2M.exe.lnk
[2010-03-07 16:59:57 | 000,000,993 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\Mail Resender.exe.lnk
[2010-03-07 13:07:21 | 000,000,662 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\NapiProjekt.lnk
[2010-03-06 16:36:56 | 000,001,718 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Autodesk 3ds Max 9 32-bit.lnk
[2010-03-04 14:17:29 | 000,000,708 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\Total Commander.lnk
[2010-02-28 19:59:58 | 000,803,567 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\Zdjęcie002.jpg
[2010-02-28 19:51:17 | 000,155,795 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\AU8SEM0910.pdf
[2010-02-21 16:14:13 | 000,122,185 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\grafika.swf
[2010-02-21 14:37:56 | 002,463,976 | ---- | C] () -- C:\WINDOWS\System32\NPSWF32.dll
[2010-02-18 09:14:46 | 329,477,503 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\FR10PE_demo.exe
[2010-02-17 21:15:30 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\LauncherAccess.dt
[2010-02-17 21:14:48 | 000,000,766 | ---- | C] () -- C:\WINDOWS\System32\Uninstall.ico
[2010-02-17 21:14:41 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2010-02-17 21:14:23 | 000,000,673 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Samsung PC Studio 3.lnk
[2010-02-16 22:27:14 | 000,077,314 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\19245_1336341922692_1055417614_1037196_7326493_n.jpg
[2010-02-14 19:17:50 | 000,001,687 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Logitech SetPoint.lnk
[2010-02-13 20:59:08 | 000,000,706 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\PDFCreator.lnk
[2010-02-13 20:59:06 | 000,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfcmnnt.dll
[2010-02-13 19:41:38 | 000,000,427 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2010-02-13 19:41:21 | 000,001,750 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Microsoft Office.lnk
[2010-02-13 17:02:49 | 000,000,856 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\Adobe Photoshop CS3.lnk
[2010-02-13 16:48:48 | 000,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav
[2010-02-13 16:48:47 | 000,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav
[2010-02-13 14:51:47 | 000,000,685 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\IrfanView.lnk
[2010-02-13 13:50:45 | 000,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2010-02-13 13:36:29 | 000,000,441 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\fotografia.lnk
[2010-02-13 13:36:23 | 000,000,435 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\tekstury.lnk
[2010-02-13 13:36:08 | 000,000,419 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\zdjęcia.lnk
[2010-02-13 13:35:46 | 000,000,340 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\filmy.lnk
[2010-02-13 13:35:19 | 000,000,402 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\rok4.lnk
[2010-02-13 13:34:51 | 000,000,467 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\miasta.lnk
[2010-02-13 13:23:20 | 000,000,093 | ---- | C] () -- C:\Documents and Settings\User\default.pls
[2010-02-13 12:16:00 | 000,178,176 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010-02-13 12:15:16 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010-02-13 12:12:56 | 000,054,272 | ---- | C] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-02-13 02:04:57 | 000,002,337 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Acrobat Speed Launcher.lnk
[2010-02-13 02:04:57 | 000,001,800 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Acrobat Synchronizer.lnk
[2010-02-13 02:04:57 | 000,001,736 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Acrobat 8 Professional.lnk
[2010-02-13 01:49:37 | 000,001,692 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\AutoCAD 2008 - Polski.lnk
[2010-02-13 01:19:48 | 000,002,272 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2010-02-13 00:07:18 | 000,000,674 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk
[2010-02-12 22:25:27 | 000,001,813 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Google Chrome.lnk
[2010-02-12 22:25:05 | 000,001,032 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010-02-12 22:25:04 | 000,001,028 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010-02-12 22:16:23 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2010-02-12 22:16:03 | 000,001,602 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk
[2010-02-12 22:14:55 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF
[2010-02-12 22:14:54 | 000,004,512 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2010-02-12 22:14:45 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_857.nls
[2010-02-12 22:14:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28603.nls
[2010-02-12 22:14:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28599.nls
[2010-02-12 22:14:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10081.nls
[2010-02-12 22:14:44 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_869.nls
[2010-02-12 22:14:44 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_737.nls
[2010-02-12 22:14:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_875.nls
[2010-02-12 22:14:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28597.NLS
[2010-02-12 22:14:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28595.NLS
[2010-02-12 22:14:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10017.nls
[2010-02-12 22:14:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10007.nls
[2010-02-12 22:14:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10006.nls
[2010-02-12 22:14:43 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_866.nls
[2010-02-12 22:14:43 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_855.nls
[2010-02-12 22:14:43 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28594.NLS
[2010-02-12 22:14:41 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20127.nls
[2010-02-12 22:14:39 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10082.nls
[2010-02-12 22:14:39 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10029.nls
[2010-02-12 22:14:39 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10010.nls
[2010-02-12 22:14:37 | 000,001,734 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT
[2010-02-12 22:13:48 | 001,477,144 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-02-12 22:12:58 | 000,000,545 | ---- | C] () -- C:\WINDOWS\UC.PIF
[2010-02-12 22:12:58 | 000,000,545 | ---- | C] () -- C:\WINDOWS\RAR.PIF
[2010-02-12 22:12:58 | 000,000,545 | ---- | C] () -- C:\WINDOWS\PKZIP.PIF
[2010-02-12 22:12:58 | 000,000,545 | ---- | C] () -- C:\WINDOWS\PKUNZIP.PIF
[2010-02-12 22:12:58 | 000,000,545 | ---- | C] () -- C:\WINDOWS\NOCLOSE.PIF
[2010-02-12 22:12:58 | 000,000,545 | ---- | C] () -- C:\WINDOWS\LHA.PIF
[2010-02-12 22:12:58 | 000,000,545 | ---- | C] () -- C:\WINDOWS\ARJ.PIF
[2010-02-12 22:12:57 | 000,000,211 | -HS- | C] () -- C:\boot.ini
[2010-02-12 22:12:54 | 000,001,196 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf
[2010-02-12 22:03:49 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2010-02-12 22:03:43 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat
[2010-02-12 22:03:43 | 000,375,648 | ---- | C] () -- C:\WINDOWS\System32\ativvaxx.cap
[2010-02-12 22:03:43 | 000,294,912 | ---- | C] () -- C:\WINDOWS\System32\ATIODE.exe
[2010-02-12 22:03:43 | 000,197,982 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2010-02-12 22:03:43 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ATIODCLI.exe
[2010-02-12 22:03:43 | 000,019,462 | ---- | C] () -- C:\WINDOWS\atiogl.xml
[2010-02-12 22:03:43 | 000,000,003 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat
[2010-02-12 21:25:19 | 000,000,188 | -HS- | C] () -- C:\Documents and Settings\User\ntuser.ini
[2010-02-12 21:25:18 | 003,145,728 | -H-- | C] () -- C:\Documents and Settings\User\NTUSER.DAT
[2010-02-12 21:24:00 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2010-02-12 21:23:10 | 000,002,645 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT
[2010-02-12 21:23:10 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2010-02-12 21:23:10 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2010-02-12 21:23:10 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS
[2010-02-12 21:23:10 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT
[2010-02-12 21:23:05 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2010-02-12 21:23:05 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2010-02-12 21:23:04 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2010-02-12 21:22:26 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\WindowsLogon.manifest
[2010-02-12 21:22:26 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2010-02-12 21:22:24 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2010-02-12 21:22:24 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest
[2010-02-12 21:22:24 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2010-02-12 21:22:24 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2010-02-12 21:22:24 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2010-02-12 21:22:24 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2010-02-12 21:20:52 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010-02-12 21:19:48 | 000,093,702 | ---- | C] () -- C:\WINDOWS\System32\subrange.uce
[2010-02-12 21:19:47 | 000,060,458 | ---- | C] () -- C:\WINDOWS\System32\ideograf.uce
[2010-02-12 21:19:47 | 000,024,006 | ---- | C] () -- C:\WINDOWS\System32\gb2312.uce
[2010-02-12 21:19:47 | 000,022,984 | ---- | C] () -- C:\WINDOWS\System32\bopomofo.uce
[2010-02-12 21:19:47 | 000,016,740 | ---- | C] () -- C:\WINDOWS\System32\shiftjis.uce
[2010-02-12 21:19:47 | 000,012,876 | ---- | C] () -- C:\WINDOWS\System32\korean.uce
[2010-02-12 21:19:47 | 000,008,484 | ---- | C] () -- C:\WINDOWS\System32\kanji_2.uce
[2010-02-12 21:19:47 | 000,006,948 | ---- | C] () -- C:\WINDOWS\System32\kanji_1.uce
[2010-02-12 21:19:46 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h
[2010-02-12 21:19:46 | 000,001,225 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd
[2010-02-12 21:19:45 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h
[2010-02-12 21:19:41 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc
[2008-07-20 01:16:28 | 000,000,819 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini

[color=#E56717]========== LOP Check ==========[/color]

[2010-02-12 22:24:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software
[2010-03-06 16:35:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Autodesk
[2010-02-13 00:07:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2010-02-20 21:39:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla
[2010-02-13 01:00:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\LightScribe
[2010-02-12 23:54:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Tlen.pl
[2010-03-06 16:42:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Autodesk
[2010-02-13 02:08:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\BESTplayer
[2010-02-13 00:09:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Gadu-Gadu 10
[2010-02-21 14:56:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\GHISLER
[2010-02-20 22:04:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\GrabPro
[2010-02-22 10:18:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\ipla
[2010-02-14 19:18:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Leadertech
[2010-03-12 10:10:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Orbit
[2010-02-17 21:16:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Samsung
[2010-02-13 13:28:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Thunderbird
[2010-02-12 23:54:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Tlen.pl

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Custom Scans ==========[/color]


[color=#A23BEC]< %systemdrive%\*.* >[/color]
[2010-02-12 21:23:10 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010-02-12 21:18:11 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2008-06-16 14:28:36 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin
[2010-02-12 21:23:10 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010-02-13 16:44:44 | 000,000,010 | ---- | M] () -- C:\csb.log
[2010-02-12 21:23:10 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010-02-12 21:23:10 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2008-06-16 14:28:36 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2008-06-16 14:28:36 | 000,251,152 | RHS- | M] () -- C:\ntldr
[2010-03-17 12:04:05 | 3218,079,744 | -HS- | M] () -- C:\pagefile.sys
[2010-02-12 21:57:01 | 000,000,423 | ---- | M] () -- C:\RHDSetup.log


[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2008-04-13 22:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0006\DriverFiles\i386\atapi.sys
[2008-04-13 22:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0007\DriverFiles\i386\atapi.sys

[color=#A23BEC]< MD5 for: BEEP.SYS >[/color]
[2008-06-16 14:28:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys

[color=#A23BEC]< MD5 for: CDROM.SYS >[/color]
[2008-06-16 14:28:36 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys

[color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color]
[2008-06-16 14:28:36 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\eventlog.dll

[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]
[2008-06-16 14:28:36 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2008-06-16 14:28:36 | 000,549,888 | ---- | M] (Microsoft Corporation) MD5=335813EACD16E84F3047A3326F6E5473 -- C:\WINDOWS\system32\winlogon.exe
< End of report >
[/log]

Psycholandia
komentarz
komentarz

Wykonaj skan Combofixem: http://www.forumpc.pl/index.php?showtopic=153621 daj z niego loga i nowego loga z OTL po skanie Combofixem.

marcioh
komentarz
komentarz

log z combofixa:
[log]ComboFix 10-03-16.05 - User 2010-03-17 13:30:12.1.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1250.48.1045.18.2046.1275 [GMT 1:00]
Uruchomiony z: c:\documents and settings\User\Pulpit\ComboFix.exe
.

((((((((((((((((((((((((((((((((((((((( Usunięto )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\OPTIONS\CABS\_desktop.ini
c:\windows\system32\msconfig.exe

c:\windows\system32\midimap.dll . . . jest zainfekowany!!

.
((((((((((((((((((((((((( Pliki utworzone od 2010-02-17 do 2010-03-17 )))))))))))))))))))))))))))))))
.

2010-03-17 12:05 . 2010-03-17 12:05 -------- d-----w- c:\program files\CCleaner
2010-03-17 11:50 . 2010-03-17 11:50 -------- d-----w- C:\downloads
2010-03-07 12:07 . 2010-03-07 12:07 -------- d-----w- c:\program files\NAPI-PROJEKT
2010-03-05 20:45 . 2010-03-11 10:44 -------- d-----w- c:\program files\MoorHunt
2010-02-21 14:09 . 2010-02-21 14:09 -------- d-----w- c:\program files\QuickTime
2010-02-21 13:37 . 2007-02-20 15:04 190696 ----a-w- c:\windows\system32\NPSWF32_FlashUtil.exe
2010-02-21 13:37 . 2007-02-20 15:04 2463976 ----a-w- c:\windows\system32\NPSWF32.dll
2010-02-21 13:09 . 2010-02-21 13:09 107888 ----a-w- c:\windows\system32\CmdLineExt.dll
2010-02-21 13:07 . 2008-06-16 13:28 26624 ----a-w- c:\documents and settings\LocalService\Dane aplikacji\Microsoft\UPnP Device Host\upnphost\udhisapi.dll
2010-02-21 00:22 . 2010-02-21 00:22 -------- d--h--w- c:\windows\PIF
2010-02-20 21:04 . 2010-02-20 21:04 -------- d-----w- c:\documents and settings\User\Dane aplikacji\GrabPro
2010-02-20 21:04 . 2010-03-12 09:10 -------- d-----w- c:\documents and settings\User\Dane aplikacji\Orbit
2010-02-20 20:39 . 2010-02-22 09:18 -------- d-----w- c:\documents and settings\User\Dane aplikacji\ipla
2010-02-20 20:39 . 2010-02-20 20:39 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\ipla
2010-02-19 22:20 . 2010-02-19 22:20 -------- d-----w- c:\program files\Compaq
2010-02-19 22:20 . 2010-02-19 22:20 -------- d-----w- C:\CPQSYSTEM
2010-02-19 13:11 . 2009-10-09 18:00 94208 ----a-w- c:\documents and settings\User\Dane aplikacji\Gadu-Gadu 10\_userdata\nprpjplug.dll
2010-02-19 13:11 . 2009-10-09 18:00 140864 ----a-w- c:\documents and settings\User\Dane aplikacji\Gadu-Gadu 10\_userdata\nppl3260.dll
2010-02-19 13:11 . 2010-02-19 13:11 -------- d-----w- c:\program files\Real Alternative
2010-02-18 08:57 . 2010-02-18 08:57 -------- d-----w- c:\documents and settings\User\Dane aplikacji\ABBYY
2010-02-18 08:51 . 2010-02-18 08:51 -------- d-----w- c:\program files\Common Files\ABBYY
2010-02-18 08:49 . 2010-03-16 09:25 -------- d-----w- c:\program files\ABBYY FineReader 10
2010-02-18 08:49 . 2010-02-18 08:49 -------- d-----w- c:\documents and settings\User\Ustawienia lokalne\Dane aplikacji\ABBYY
2010-02-18 08:49 . 2010-02-18 08:49 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\ABBYY
2010-02-18 08:45 . 2010-03-17 10:19 -------- d-----w- C:\temp
2010-02-17 20:16 . 2010-02-17 20:16 -------- d-----w- c:\documents and settings\User\Dane aplikacji\Samsung
2010-02-17 20:15 . 2006-05-03 21:53 174592 ----a-w- c:\windows\system32\framedyn.dll
2010-02-17 20:15 . 2010-02-17 20:15 -------- d-----w- c:\program files\DIFX
2010-02-17 20:15 . 2008-02-22 14:33 14976 ----a-w- c:\windows\system32\drivers\sscdmdfl.sys
2010-02-17 20:15 . 2008-02-22 14:33 12160 ----a-w- c:\windows\system32\drivers\sscdwhnt.sys
2010-02-17 20:15 . 2008-02-22 14:33 12160 ----a-w- c:\windows\system32\drivers\sscdwh.sys
2010-02-17 20:15 . 2008-02-22 14:33 114304 ----a-w- c:\windows\system32\drivers\sscdmdm.sys
2010-02-17 20:15 . 2008-02-22 14:33 87936 ----a-w- c:\windows\system32\drivers\sscdbus.sys
2010-02-17 20:15 . 2008-02-22 14:33 12160 ----a-w- c:\windows\system32\drivers\sscdcmnt.sys
2010-02-17 20:15 . 2008-02-22 14:33 12160 ----a-w- c:\windows\system32\drivers\sscdcm.sys
2010-02-17 20:14 . 2010-02-17 20:15 -------- d-----w- c:\windows\system32\Samsung_USB_Drivers
2010-02-17 20:14 . 2006-07-24 15:05 5632 ----a-w- c:\windows\system32\drivers\StarOpen.sys
2010-02-17 20:14 . 2010-02-17 20:14 -------- d-----w- c:\program files\Samsung

.
(((((((((((((((((((((((((((((((((((((((( Sekcja Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-03-17 11:54 . 2010-02-12 23:39 46416 ----a-w- c:\documents and settings\User\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
2010-03-17 10:25 . 2010-02-13 12:28 -------- d-----w- c:\program files\Mozilla Thunderbird
2010-03-06 15:42 . 2010-02-13 00:45 -------- d-----w- c:\documents and settings\User\Dane aplikacji\Autodesk
2010-03-06 15:37 . 2010-02-13 00:44 -------- d-----w- c:\program files\Autodesk
2010-03-06 15:36 . 2010-02-13 00:44 -------- d-----w- c:\program files\Common Files\Autodesk Shared
2010-03-06 15:35 . 2010-02-13 00:45 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Autodesk
2010-03-06 15:33 . 2008-06-16 13:28 80636 ----a-w- c:\windows\system32\perfc015.dat
2010-03-06 15:33 . 2008-06-16 13:28 482262 ----a-w- c:\windows\system32\perfh015.dat
2010-03-04 13:17 . 2010-02-12 21:12 -------- d-----w- c:\program files\totalcmd
2010-02-21 15:06 . 2010-02-12 23:27 -------- d-----w- c:\program files\Common Files\Adobe
2010-02-21 13:56 . 2010-02-12 21:12 -------- d-----w- c:\documents and settings\User\Dane aplikacji\GHISLER
2010-02-17 20:14 . 2010-02-12 20:56 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-02-14 18:19 . 2010-02-14 18:18 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\LogiShrd
2010-02-14 18:18 . 2010-02-14 18:18 -------- d-----w- c:\documents and settings\User\Dane aplikacji\Logitech
2010-02-14 18:18 . 2010-02-14 18:18 -------- d-----w- c:\documents and settings\User\Dane aplikacji\Leadertech
2010-02-14 18:18 . 2010-02-14 18:17 -------- d-----w- c:\program files\Common Files\Logishrd
2010-02-14 18:17 . 2010-02-14 18:17 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Logitech
2010-02-14 18:17 . 2010-02-14 18:17 -------- d-----w- c:\program files\Logitech
2010-02-13 19:59 . 2010-02-13 19:59 -------- d-----w- c:\program files\PDFCreator
2010-02-13 16:18 . 2010-02-12 23:50 -------- d-----w- c:\documents and settings\User\Dane aplikacji\Ahead
2010-02-13 13:51 . 2010-02-12 21:24 -------- d-----w- c:\program files\Google
2010-02-13 13:51 . 2010-02-13 13:51 -------- d-----w- c:\program files\IrfanView
2010-02-13 13:34 . 2010-02-12 20:56 -------- d-----w- c:\program files\Realtek
2010-02-13 12:28 . 2010-02-13 12:28 -------- d-----w- c:\documents and settings\User\Dane aplikacji\Thunderbird
2010-02-13 11:16 . 2010-02-13 11:15 -------- d-----w- c:\program files\K-Lite Codec Pack
2010-02-13 09:59 . 2010-02-13 09:59 -------- d-----w- c:\documents and settings\User\Dane aplikacji\ATI
2010-02-13 09:59 . 2010-02-13 09:59 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\ATI
2010-02-13 01:08 . 2010-02-13 01:08 -------- d-----w- c:\documents and settings\User\Dane aplikacji\BESTplayer
2010-02-13 01:05 . 2010-02-13 01:05 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\FLEXnet
2010-02-13 00:49 . 2010-02-13 00:45 -------- d-----w- c:\program files\AutoCAD 2008
2010-02-13 00:45 . 2010-02-12 20:56 -------- d-----w- c:\program files\Common Files\InstallShield
2010-02-13 00:19 . 2010-02-13 00:19 -------- d-----w- c:\program files\MSBuild
2010-02-13 00:19 . 2010-02-13 00:19 2272 ----a-w- c:\documents and settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
2010-02-13 00:17 . 2010-02-13 00:17 -------- d-----w- c:\program files\Reference Assemblies
2010-02-13 00:00 . 2010-02-13 00:00 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\LightScribe
2010-02-12 23:58 . 2010-02-12 23:58 -------- d-----w- c:\program files\Common Files\LightScribe
2010-02-12 23:58 . 2010-02-12 23:56 -------- d-----w- c:\program files\Common Files\Ahead
2010-02-12 23:56 . 2010-02-12 23:56 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Nero
2010-02-12 23:56 . 2010-02-12 23:56 -------- d-----w- c:\program files\Nero
2010-02-12 23:32 . 2010-02-12 23:32 -------- d-----w- c:\program files\Bonjour
2010-02-12 23:28 . 2010-02-12 23:28 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2010-02-12 23:09 . 2010-02-12 23:07 -------- d-----w- c:\documents and settings\User\Dane aplikacji\Gadu-Gadu 10
2010-02-12 23:07 . 2010-02-12 23:07 348160 ----a-w- c:\windows\system32\Msvcr71.dll
2010-02-12 23:07 . 2010-02-12 23:07 1700352 ----a-w- c:\windows\system32\gdiplus.dll
2010-02-12 23:07 . 2010-02-12 23:07 1060864 ----a-w- c:\windows\system32\mfc71.dll
2010-02-12 23:07 . 2010-02-12 23:06 -------- d-----w- c:\program files\Gadu-Gadu 10
2010-02-12 23:07 . 2010-02-12 23:07 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Gadu-Gadu 10
2010-02-12 22:54 . 2010-02-12 22:54 -------- d-----w- c:\documents and settings\User\Dane aplikacji\Tlen.pl
2010-02-12 22:54 . 2010-02-12 22:54 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Tlen.pl
2010-02-12 21:24 . 2010-02-12 21:24 -------- d-----w- c:\program files\Alwil Software
2010-02-12 21:24 . 2010-02-12 21:24 -------- d-----w- c:\documents and settings\All Users\Dane aplikacji\Alwil Software
2010-02-12 21:16 . 2010-02-12 21:16 0 ----a-w- c:\windows\nsreg.dat
2010-02-12 21:06 . 2010-02-12 21:03 -------- d-----w- c:\program files\ATI
2010-02-12 21:04 . 2010-02-12 21:03 -------- d-----w- c:\program files\ATI Technologies
2010-02-12 21:03 . 2010-02-12 21:03 0 ----a-w- c:\windows\ativpsrm.bin
2010-02-12 21:03 . 2010-02-12 21:03 10134 ----a-r- c:\documents and settings\User\Dane aplikacji\Microsoft\Installer\{71CFE572-6C01-96C4-F90E-36C147C98123}\ARPPRODUCTICON.exe
2010-02-12 20:59 . 2010-02-12 20:46 15600 ----a-w- c:\windows\gdrv.sys
2010-02-12 20:56 . 2010-02-12 20:56 -------- d-----w- c:\documents and settings\User\Dane aplikacji\InstallShield
2010-02-12 20:47 . 2010-02-12 20:47 -------- d-----w- c:\program files\Intel
2010-02-12 20:47 . 2010-02-12 20:47 -------- d-----w- c:\program files\Yahoo!
2010-02-12 20:22 . 2010-02-12 20:22 -------- d-----w- c:\program files\Usługi online
2010-02-12 20:20 . 2010-02-12 20:20 21856 ----a-w- c:\windows\system32\emptyregdb.dat
2010-02-12 20:20 . 2010-02-12 20:20 -------- d-----w- c:\program files\Windows Media Connect 2
2010-02-11 18:53 . 2010-02-12 21:24 38848 ----a-w- c:\windows\system32\avastSS.scr
2010-02-11 18:53 . 2010-02-12 21:24 153184 ----a-w- c:\windows\system32\aswBoot.exe
2010-02-11 18:42 . 2010-02-12 21:24 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2010-02-11 18:42 . 2010-02-12 21:24 162512 ----a-w- c:\windows\system32\drivers\aswSP.sys
2010-02-11 18:39 . 2010-02-12 21:24 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2010-02-11 18:38 . 2010-02-12 21:24 100432 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2010-02-11 18:38 . 2010-02-12 21:24 94800 ----a-w- c:\windows\system32\drivers\aswmon.sys
2010-02-11 18:38 . 2010-02-12 21:24 19024 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-02-11 18:38 . 2010-02-12 21:24 28880 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2010-01-20 12:05 . 2010-01-20 12:05 42088 ----a-w- c:\documents and settings\User\Dane aplikacji\Gadu-Gadu 10\_userdata\ggbho.2.dll
2010-01-20 12:03 . 2010-01-20 12:03 11776 ----a-w- c:\documents and settings\User\Dane aplikacji\Gadu-Gadu 10\_userdata\npgg.2.dll
.

------- Sigcheck -------

[-] 2008-06-16 . 030DC4D48CC2B894FEE2F390D8E66AD5 . 361344 . . [5.1.2600.5512] . . c:\windows\system32\drivers\tcpip.sys

[-] 2008-06-16 . 335813EACD16E84F3047A3326F6E5473 . 549888 . . [5.1.2600.5512] . . c:\windows\system32\winlogon.exe

[-] 2008-06-16 . 37ED43F3DEC4400586554D61C3129478 . 112128 . . [5.4.3790.5512] . . c:\windows\system32\wuauclt.exe

[-] 2008-06-16 . 7F059A93D251284A8BC758327ECD3D69 . 724992 . . [5.82] . . c:\windows\system32\comctl32.dll

[-] 2008-07-07 . 04404B7F25984558AD3390BF84C4EB95 . 2153472 . . [5.1.2600.5512] . . c:\windows\system32\ntoskrnl.exe

[-] 2007-07-11 . CE594E18FE0D0AF804F1F3694921CE62 . 642560 . . [5.1.2600.3099] . . c:\windows\system32\user32.dll

[-] 2008-06-27 . 4EC7ED41D95D18B3CD1A2BD9DFEFB591 . 1424896 . . [6.00.2900.5512] . . c:\windows\explorer.exe


[-] 2008-06-16 . C8BDAD4065118558B3DC360FC96D81DB . 1571840 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll



[-] 2008-07-19 . 2BC05E243B86AA8E569EE3C5D8B3C424 . 2032128 . . [5.1.2600.5512] . . c:\windows\system32\ntkrnlpa.exe

c:\windows\System32\wscntfy.exe ... - brak elementu !!
c:\windows\System32\ctfmon.exe ... - brak elementu !!
c:\windows\System32\regsvc.dll ... - brak elementu !!
.
((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Gadu-Gadu 10"="c:\program files\Gadu-Gadu 10\gg.exe" [2010-01-20 12067432]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2006-12-23 143360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-12-11 98304]
"avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2010-02-11 2756488]
"RTHDCPL"="RTHDCPL.EXE" [2009-12-08 18789920]
"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2009-06-17 55824]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"nltide_2"="shell32" [X]
"nltide_3"="advpack.dll" [2008-06-16 124928]

c:\documents and settings\All Users\Menu Start\Programy\Autostart\
Adobe Acrobat Speed Launcher.lnk - c:\windows\Installer\{AC76BA86-1029-0000-7760-000000000003}\_SC_Acrobat.exe [2010-2-13 295606]
Adobe Acrobat Synchronizer.lnk - c:\program files\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe [2006-10-23 734872]
Logitech SetPoint.lnk - c:\program files\Logitech\SetPoint\SetPoint.exe [2010-2-14 813584]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"DisableStatusMessages"= 1 (0x1)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSMHelp"= 1 (0x1)
"NoSMMyPictures"= 1 (0x1)
"NoSMConfigurePrograms"= 1 (0x1)
"NoResolveTrack"= 1 (0x1)

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoSMHelp"= 1 (0x1)
"NoSMMyPictures"= 1 (0x1)
"NoSMConfigurePrograms"= 1 (0x1)
"NoResolveTrack"= 1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
2009-07-20 11:28 72208 ----a-w- c:\program files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
@=""

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Microsoft Office.lnk]
path=c:\documents and settings\All Users\Menu Start\Programy\Autostart\Microsoft Office.lnk
backup=c:\windows\pss\Microsoft Office.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0]
2006-10-22 23:24 620152 ----a-w- c:\program files\Adobe\Acrobat 8.0\Acrobat\acrotray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Bonus.SSR.FR10]
2009-11-30 17:58 940808 ----a-w- c:\program files\ABBYY FineReader 10\Bonus.ScreenshotReader.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
2006-01-12 14:40 155648 ----a-w- c:\program files\Common Files\Ahead\Lib\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
2010-02-13 13:51 39408 ----a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Gadu-Gadu 10\\gg.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"c:\\Program Files\\Autodesk\\3ds Max 9\\3dsmax.exe"=
"c:\\Program Files\\Autodesk\\Backburner\\monitor.exe"=
"c:\\Program Files\\Autodesk\\Backburner\\manager.exe"=
"c:\\Program Files\\Autodesk\\Backburner\\server.exe"=

R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2010-02-12 162512]
R2 ABBYY.Licensing.FineReader.Professional.10.0;ABBYY FineReader 10 PE Licensing Service;c:\program files\Common Files\ABBYY\FineReader\10.00\Licensing\PE\NetworkLicenseServer.exe [2009-11-25 814344]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2010-02-12 19024]
R2 LBeepKE;LBeepKE;c:\windows\system32\drivers\LBeepKE.sys [2010-02-14 10384]
S2 gupdate;Usługa Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-02-12 133104]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2010-02-13 1691480]
.
Zawartość folderu 'Zaplanowane zadania'

2010-03-17 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-02-12 21:24]

2010-03-17 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-02-12 21:24]
.
.
------- Skan uzupełniający -------
.
uStart Page = hxxp://search.orbitdownloader.com
uSearchMigratedDefaultURL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
mStart Page = hxxp://www.yahoo.com
uInternet Settings,ProxyOverride = *.local
IE: Dołącz do istniejącego pliku PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: E&ksport do programu Microsoft Excel - c:\progra~1\MICROS~1\Office10\EXCEL.EXE/3000
IE: Funkcja Google Sidewiki - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
IE: Konwertuj do Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Konwertuj miejsce docelowe łącza do Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Konwertuj miejsce docelowe łącza do istniejącego pliku PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Konwertuj wybrane łącza do Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Konwertuj wybrane łącza do istniejącego pliku PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Konwertuj zaznaczenie do Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Konwertuj zaznaczenie do istniejącego pliku PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
FF - ProfilePath - c:\documents and settings\User\Dane aplikacji\Mozilla\Firefox\Profiles\e2njnjr2.default\
FF - prefs.js: browser.startup.homepage - google.pl
FF - plugin: c:\documents and settings\User\Dane aplikacji\Gadu-Gadu 10\_userdata\npgg.2.dll
FF - plugin: c:\documents and settings\User\Dane aplikacji\Gadu-Gadu 10\_userdata\nppl3260.dll
FF - plugin: c:\documents and settings\User\Dane aplikacji\Gadu-Gadu 10\_userdata\nprpjplug.dll
FF - plugin: c:\program files\Google\Update\1.2.183.17\npGoogleOneClick8.dll

---- FIREFOX - SPOSÓB POSTĘPOWANIA ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.debug", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("html5.enable", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);
.
- - - - USUNIĘTO PUSTE WPISY - - - -

MSConfigStartUp-cdoosoft - c:\docume~1\User\USTAWI~1\Temp\herss.exe
MSConfigStartUp-Komunikator - c:\program files\Tlen.pl\tlen.exe



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-03-17 13:35
Windows 5.1.2600 Dodatek Service Pack 3 NTFS

skanowanie ukrytych procesów ...

skanowanie ukrytych wpisów autostartu ...

skanowanie ukrytych plików ...

skanowanie pomyślnie ukończone
ukryte pliki: 0

**************************************************************************
.
--------------------- Pliki DLL ładowane pod uruchomionymi procesami ---------------------

- - - - - - - > 'winlogon.exe'(716)
c:\windows\system32\sfc_os.dll
c:\windows\system32\Ati2evxx.dll
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll
c:\program files\common files\logishrd\bluetooth\LBTServ.dll
c:\windows\system32\cscui.dll
c:\windows\system32\COMRes.dll

- - - - - - - > 'lsass.exe'(776)
c:\windows\system32\scecli.dll
.
Czas ukończenia: 2010-03-17 13:37:04
ComboFix-quarantined-files.txt 2010-03-17 12:37

Przed: 27 657 641 984 bajtów wolnych
Po: 27 649 388 544 bajtów wolnych

WindowsXP-KB310994-SP2-Pro-BootDisk-PLK.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect

- - End Of File - - 9BDB0C859B5C5CE5E644475C5A3879FC
[/log]

nowy log z OTL:
[log]OTL logfile created on: 2010-03-17 13:42:56 - Run 1
OTL by OldTimer - Version 3.1.37.2 Folder = C:\Documents and Settings\User\Pulpit
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 65,00% Memory free
5,00 Gb Paging File | 4,00 Gb Available in Paging File | 90,00% Paging File free
Paging file location(s): C:\pagefile.sys 3069 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 39,06 Gb Total Space | 25,77 Gb Free Space | 65,98% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 195,31 Gb Total Space | 151,72 Gb Free Space | 77,68% Space Free | Partition Type: NTFS
Drive F: | 231,38 Gb Total Space | 89,91 Gb Free Space | 38,86% Space Free | Partition Type: NTFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: WINDOWSMX7F
Current User Name: User
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 60 Days
Output = Standard

[color=#E56717]========== Processes (All) ==========[/color]

PRC - [2010-03-17 13:42:12 | 000,556,032 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe
PRC - [2010-02-13 01:49:47 | 000,085,096 | ---- | M] (Autodesk) -- C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
PRC - [2010-02-11 19:53:42 | 002,756,488 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2010-02-11 19:53:39 | 000,040,384 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2010-02-05 19:36:00 | 000,527,344 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2010-01-20 13:05:04 | 012,067,432 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe
PRC - [2009-12-11 21:07:16 | 000,602,112 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe
PRC - [2009-12-08 11:29:24 | 018,789,920 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.EXE
PRC - [2009-11-25 19:19:11 | 000,814,344 | ---- | M] (ABBYY) -- C:\Program Files\Common Files\ABBYY\FineReader\10.00\Licensing\PE\NetworkLicenseServer.exe
PRC - [2009-07-20 12:30:50 | 000,813,584 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPoint\SetPoint.exe
PRC - [2009-07-10 12:42:32 | 000,055,824 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
PRC - [2009-04-22 17:38:50 | 000,065,536 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
PRC - [2009-04-22 17:37:16 | 000,065,536 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
PRC - [2008-06-27 16:36:58 | 001,424,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008-06-16 16:28:36 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe
PRC - [2008-06-16 14:28:36 | 000,549,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe
PRC - [2008-06-16 14:28:36 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe
PRC - [2008-06-16 14:28:36 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe
PRC - [2008-06-16 14:28:36 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS]
PRC - [2008-06-16 14:28:36 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE]
PRC - [2008-06-16 14:28:36 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS]
PRC - [2008-06-16 14:28:36 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-06-16 14:28:36 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH]
PRC - [2008-06-16 14:28:36 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe
PRC - [2008-06-16 14:28:36 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe
PRC - [2006-12-23 18:05:20 | 000,143,360 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
PRC - [2006-12-23 18:04:42 | 000,905,216 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
PRC - [2006-12-23 17:54:04 | 000,262,144 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
PRC - [2006-12-14 17:49:10 | 000,061,440 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe
PRC - [2006-02-28 12:42:38 | 000,229,376 | ---- | M] (Apple Computer, Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe


[color=#E56717]========== Modules (All) ==========[/color]

MOD - [2010-03-17 13:42:12 | 000,556,032 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe
MOD - [2009-07-20 12:29:06 | 000,045,584 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPoint\lgscroll.dll
MOD - [2009-07-12 01:12:06 | 000,632,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\msvcr80.dll
MOD - [2008-07-11 07:01:36 | 025,277,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll
MOD - [2008-06-16 14:28:36 | 001,392,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll
MOD - [2008-06-16 14:28:36 | 001,287,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll
MOD - [2008-06-16 14:28:36 | 001,054,208 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
MOD - [2008-06-16 14:28:36 | 001,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll
MOD - [2008-06-16 14:28:36 | 000,732,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\userenv.dll
MOD - [2008-06-16 14:28:36 | 000,714,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll
MOD - [2008-06-16 14:28:36 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll
MOD - [2008-06-16 14:28:36 | 000,584,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll
MOD - [2008-06-16 14:28:36 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll
MOD - [2008-06-16 14:28:36 | 000,483,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll
MOD - [2008-06-16 14:28:36 | 000,344,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll
MOD - [2008-06-16 14:28:36 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll
MOD - [2008-06-16 14:28:36 | 000,285,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll
MOD - [2008-06-16 14:28:36 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll
MOD - [2008-06-16 14:28:36 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTFIME.IME
MOD - [2008-06-16 14:28:36 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wldap32.dll
MOD - [2008-06-16 14:28:36 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv
MOD - [2008-06-16 14:28:36 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntmarta.dll
MOD - [2008-06-16 14:28:36 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imm32.dll
MOD - [2008-06-16 14:28:36 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll
MOD - [2008-06-16 14:28:36 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll
MOD - [2008-06-16 14:28:36 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samlib.dll
MOD - [2008-06-16 14:28:36 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll
MOD - [2008-06-16 14:28:36 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll
MOD - [2008-06-16 14:28:36 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll
MOD - [2007-07-11 06:06:54 | 000,642,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll
MOD - [2006-05-03 22:53:54 | 000,174,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\framedyn.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - File not found [On_Demand | Stopped] -- -- (ALG)
SRV - [2010-02-13 01:49:47 | 000,085,096 | ---- | M] (Autodesk) [Auto | Running] -- C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe -- (Autodesk Licensing Service)
SRV - [2010-02-13 00:28:41 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010-02-11 19:53:39 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
SRV - [2010-02-11 19:53:39 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
SRV - [2010-02-11 19:53:39 | 000,040,384 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2009-11-25 19:19:11 | 000,814,344 | ---- | M] (ABBYY) [Auto | Running] -- C:\Program Files\Common Files\ABBYY\FineReader\10.00\Licensing\PE\NetworkLicenseServer.exe -- (ABBYY.Licensing.FineReader.Professional.10.0)
SRV - [2009-07-20 12:28:10 | 000,121,360 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV - [2006-09-29 12:48:06 | 000,065,536 | ---- | M] () [Auto | Stopped] -- C:\Program Files\Autodesk\3ds Max 9\mentalray\satellite\raysat_3dsmax9_32server.exe -- (mi-raysat_3dsmax9_32) mental ray 3.5 Satellite (32-bit)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - [2010-02-12 21:59:35 | 000,015,600 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\gdrv.sys -- (gdrv)
DRV - [2010-02-11 19:42:34 | 000,046,672 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2010-02-11 19:42:13 | 000,162,512 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP)
DRV - [2010-02-11 19:39:01 | 000,023,376 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2010-02-11 19:38:34 | 000,100,432 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2010-02-11 19:38:23 | 000,019,024 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010-02-11 19:38:07 | 000,028,880 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2009-12-11 22:02:42 | 004,525,056 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2009-12-08 11:03:00 | 006,017,568 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2009-11-18 00:17:00 | 001,395,800 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)
DRV - [2009-11-18 00:16:00 | 001,691,480 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)
DRV - [2009-06-17 17:56:24 | 000,079,248 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LMouKE.Sys -- (LMouKE)
DRV - [2009-06-17 17:55:34 | 000,010,384 | ---- | M] (Logitech, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\LBeepKE.sys -- (LBeepKE)
DRV - [2009-06-17 17:55:26 | 000,063,248 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\L8042mou.Sys -- (L8042mou)
DRV - [2009-06-17 17:55:18 | 000,020,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\L8042Kbd.sys -- (L8042Kbd)
DRV - [2008-06-16 14:28:36 | 000,105,856 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2008-06-16 14:28:36 | 000,062,208 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\si3112.sys -- (Si3112)
DRV - [2008-02-22 15:33:02 | 000,114,304 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdm.sys -- (sscdmdm)
DRV - [2008-02-22 15:33:02 | 000,014,976 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdmdfl.sys -- (sscdmdfl)
DRV - [2008-02-22 15:33:00 | 000,087,936 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sscdbus.sys -- (sscdbus) SAMSUNG USB Composite Device driver (WDM)
DRV - [2006-07-24 16:05:00 | 000,005,632 | ---- | M] () [File_System | System | Running] -- C:\WINDOWS\system32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2004-03-17 15:12:12 | 000,135,168 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Hdaudbus.sys -- (HDAudBus)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank

IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank

IE - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Yahoo! Search
IE - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
IE - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.orbitdownloader.com
IE - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "google.pl"

FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-03-17 11:17:32 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-03-17 11:17:31 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 3.0.1\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2010-02-13 13:28:13 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Thunderbird 3.0.1\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins

[2010-02-13 13:28:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Mozilla\Extensions
[2010-02-13 13:28:46 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\User\Dane aplikacji\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2010-03-17 13:40:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Mozilla\Firefox\Profiles\e2njnjr2.default\extensions
[2010-02-13 19:48:17 | 000,001,738 | ---- | M] () -- C:\Documents and Settings\User\Dane aplikacji\Mozilla\Firefox\Profiles\e2njnjr2.default\searchplugins\wyszukiwanie-filmw-wideo-w-youtube.xml
[2010-02-12 22:16:02 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010-03-17 11:17:26 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010-03-17 11:17:26 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2010-03-17 11:17:26 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2010-03-17 11:17:26 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010-03-17 11:17:26 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2010-03-17 11:17:26 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2008-06-16 14:28:36 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Yahoo! Companion BHO) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_0_1.dll (Yahoo! Inc.)
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (&Yahoo! Companion) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_0_1.dll (Yahoo! Inc.)
O3 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\..\Toolbar\WebBrowser: (&Yahoo! Companion) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_0_1.dll (Yahoo! Inc.)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (ALWIL Software)
O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech, Inc.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001..\Run: [Gadu-Gadu 10] C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.)
O4 - HKU\.DEFAULT..\RunOnce: [nltide_2] File not found
O4 - HKU\S-1-5-18..\RunOnce: [nltide_2] File not found
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Acrobat Speed Launcher.lnk = C:\WINDOWS\Installer\{AC76BA86-1029-0000-7760-000000000003}\_SC_Acrobat.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Acrobat Synchronizer.lnk = C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktopCleanupWizard = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoInternetOpenWith = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableStatusMessages = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: VerboseStatus = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1
O7 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1
O7 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-1547161642-842925246-1801674531-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Dołącz do istniejącego pliku PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: E&ksport do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office10\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Funkcja Google Sidewiki - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll (Google Inc.)
O8 - Extra context menu item: Konwertuj do Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Konwertuj miejsce docelowe łącza do Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Konwertuj miejsce docelowe łącza do istniejącego pliku PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Konwertuj wybrane łącza do Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Konwertuj wybrane łącza do istniejącego pliku PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Konwertuj zaznaczenie do Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Konwertuj zaznaczenie do istniejącego pliku PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 198.6.1.218 194.204.159.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\LBTWlgn: DllName - c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll - c:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O24 - Desktop Components:0 (Bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010-02-12 21:23:10 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2010-02-12 21:22:44 | 000,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE - (Microsoft Corporation)
MsConfig - StartUpReg: [b]Acrobat Assistant 8.0[/b] - hkey= - key= - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
MsConfig - StartUpReg: [b]Bonus.SSR.FR10[/b] - hkey= - key= - C:\Program Files\ABBYY FineReader 10\Bonus.ScreenshotReader.exe (ABBYY.)
MsConfig - StartUpReg: [b]NeroFilterCheck[/b] - hkey= - key= - C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
MsConfig - StartUpReg: [b]swg[/b] - hkey= - key= - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
MsConfig - State: "system.ini" - 0
MsConfig - State: "win.ini" - 1
MsConfig - State: "bootini" - 0
MsConfig - State: "services" - 0
MsConfig - State: "startup" - 2

SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vga.sys - Driver
SafeBootMin: WdfLoadGroup -
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: WdfLoadGroup -
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

[color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color]

[2010-03-17 13:42:12 | 000,556,032 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe
[2010-03-17 13:39:31 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2010-03-17 13:29:42 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2010-03-17 13:28:54 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2010-03-17 13:28:53 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2010-03-17 13:28:53 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2010-03-17 13:28:53 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2010-03-17 13:28:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010-03-17 13:28:48 | 000,000,000 | ---D | C] -- C:\ComboFix
[2010-03-17 13:28:39 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010-03-17 13:18:26 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\User\Recent
[2010-03-17 13:05:08 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2010-03-17 12:50:46 | 000,000,000 | ---D | C] -- C:\downloads
[2010-03-17 12:41:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2010-03-07 13:07:21 | 000,000,000 | ---D | C] -- C:\Program Files\NAPI-PROJEKT
[2010-03-06 16:42:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Google
[2010-03-06 16:42:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\3dsmax
[2010-03-06 16:38:39 | 000,000,000 | --SD | C] -- C:\Documents and Settings\User\Moje dokumenty\Adlm
[2010-03-05 21:45:24 | 000,000,000 | ---D | C] -- C:\Program Files\MoorHunt
[2010-03-02 20:45:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Pulpit\MailResender.2.15.011.Patch1.(legendteam.net)
[2010-02-23 11:41:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt
[2010-02-21 15:09:17 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2010-02-21 14:11:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\Prototype
[2010-02-21 14:09:24 | 000,107,888 | ---- | C] (Sony DADC Austria AG.) -- C:\WINDOWS\System32\CmdLineExt.dll
[2010-02-21 01:22:48 | 000,000,000 | -H-D | C] -- C:\WINDOWS\PIF
[2010-02-20 22:04:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\GrabPro
[2010-02-20 22:04:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Orbit
[2010-02-20 21:39:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\ipla
[2010-02-20 21:39:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla
[2010-02-19 23:20:53 | 000,000,000 | ---D | C] -- C:\Program Files\Compaq
[2010-02-19 23:20:49 | 000,000,000 | ---D | C] -- C:\CPQSYSTEM
[2010-02-19 18:52:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\Downloads
[2010-02-19 14:11:22 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2010-02-19 14:11:21 | 000,000,000 | ---D | C] -- C:\Program Files\Real Alternative
[2010-02-18 09:57:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\ABBYY
[2010-02-18 09:51:16 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ABBYY
[2010-02-18 09:49:11 | 000,000,000 | ---D | C] -- C:\Program Files\ABBYY FineReader 10
[2010-02-18 09:49:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\ABBYY
[2010-02-18 09:49:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ABBYY
[2010-02-18 09:45:38 | 000,000,000 | ---D | C] -- C:\temp
[2010-02-17 22:14:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\Version Cue
[2010-02-17 22:14:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\AdobeStockPhotos
[2010-02-17 21:16:34 | 000,000,000 | --SD | C] -- C:\Documents and Settings\User\Moje dokumenty\Wideo
[2010-02-17 21:16:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Samsung
[2010-02-17 21:16:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\My Art
[2010-02-17 21:15:11 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2010-02-17 21:15:08 | 000,114,304 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\sscdmdm.sys
[2010-02-17 21:15:08 | 000,087,936 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\sscdbus.sys
[2010-02-17 21:15:08 | 000,014,976 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\sscdmdfl.sys
[2010-02-17 21:15:08 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\sscdwhnt.sys
[2010-02-17 21:15:08 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\sscdwh.sys
[2010-02-17 21:15:08 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\sscdcmnt.sys
[2010-02-17 21:15:08 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\WINDOWS\System32\drivers\sscdcm.sys
[2010-02-17 21:14:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Samsung_USB_Drivers
[2010-02-17 21:14:19 | 000,000,000 | ---D | C] -- C:\Program Files\Samsung
[2010-02-14 19:18:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Logitech
[2010-02-14 19:18:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Leadertech
[2010-02-14 19:18:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\LogiShrd
[2010-02-14 19:18:16 | 000,010,384 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\System32\drivers\LBeepKE.sys
[2010-02-14 19:17:48 | 000,170,512 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\System32\kemutb.dll
[2010-02-14 19:17:48 | 000,145,936 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\System32\KemUtil.dll
[2010-02-14 19:17:48 | 000,117,264 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\System32\KemWnd.dll
[2010-02-14 19:17:48 | 000,084,496 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\System32\KemXML.dll
[2010-02-14 19:17:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Logitech
[2010-02-14 19:17:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Logishrd
[2010-02-14 19:17:24 | 000,000,000 | ---D | C] -- C:\Program Files\Logitech
[2010-02-13 20:59:04 | 000,000,000 | ---D | C] -- C:\Program Files\PDFCreator
[2010-02-13 19:40:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\Msagent
[2010-02-13 19:40:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\ShellNew
[2010-02-13 16:48:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang
[2010-02-13 16:45:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM
[2010-02-13 14:51:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Google
[2010-02-13 14:51:47 | 000,000,000 | ---D | C] -- C:\Program Files\IrfanView
[2010-02-13 14:34:46 | 000,358,944 | ---- | C] (Realtek Semiconductor Crop.) -- C:\WINDOWS\vncutil.exe
[2010-02-13 14:34:45 | 000,129,568 | ---- | C] (Realtek Semiconductor) -- C:\WINDOWS\RtkAudioService.exe
[2010-02-13 14:34:43 | 001,691,480 | ---- | C] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys
[2010-02-13 14:34:42 | 002,815,520 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE
[2010-02-13 13:49:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\WinRAR
[2010-02-13 13:28:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Thunderbird
[2010-02-13 13:28:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Thunderbird
[2010-02-13 13:28:04 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Thunderbird
[2010-02-13 12:47:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Identities
[2010-02-13 12:47:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Identities
[2010-02-13 12:15:59 | 000,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack
[2010-02-13 10:59:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\ATI
[2010-02-13 10:59:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\ATI
[2010-02-13 10:59:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ATI
[2010-02-13 02:09:50 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2010-02-13 02:08:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\BESTplayer
[2010-02-13 02:08:39 | 003,414,528 | ---- | C] (Karol Winnicki) -- C:\Documents and Settings\User\Pulpit\BESTplayer.exe
[2010-02-13 02:08:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\Updater5
[2010-02-13 02:05:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\FLEXnet
[2010-02-13 01:45:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Autodesk
[2010-02-13 01:45:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Autodesk
[2010-02-13 01:45:32 | 000,000,000 | ---D | C] -- C:\Program Files\AutoCAD 2008
[2010-02-13 01:45:17 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2010-02-13 01:44:54 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Autodesk Shared
[2010-02-13 01:44:54 | 000,000,000 | ---D | C] -- C:\Program Files\Autodesk
[2010-02-13 01:44:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Autodesk
[2010-02-13 01:21:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX
[2010-02-13 01:21:01 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Designer
[2010-02-13 01:20:56 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2010-02-13 01:19:51 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2010-02-13 01:17:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2010-02-13 01:17:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-us
[2010-02-13 01:17:30 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2010-02-13 01:16:05 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly
[2010-02-13 01:15:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET
[2010-02-13 01:00:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\LightScribe
[2010-02-13 00:58:28 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\LightScribe
[2010-02-13 00:58:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Ahead
[2010-02-13 00:56:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Nero
[2010-02-13 00:56:02 | 000,000,000 | ---D | C] -- C:\Program Files\Nero
[2010-02-13 00:56:02 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Ahead
[2010-02-13 00:50:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Ahead
[2010-02-13 00:39:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Adobe
[2010-02-13 00:33:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Adobe
[2010-02-13 00:32:40 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2010-02-13 00:29:02 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2010-02-13 00:28:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Macrovision Shared
[2010-02-13 00:27:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2010-02-13 00:09:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Adobe
[2010-02-13 00:09:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Macromedia
[2010-02-13 00:09:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\cache
[2010-02-13 00:07:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Gadu-Gadu 10
[2010-02-13 00:07:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2010-02-13 00:06:58 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu 10
[2010-02-12 23:54:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Tlen.pl
[2010-02-12 23:54:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Tlen.pl
[2010-02-12 22:36:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\GHISLER
[2010-02-12 22:30:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Google
[2010-02-12 22:25:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Temp
[2010-02-12 22:25:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Google
[2010-02-12 22:24:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google
[2010-02-12 22:24:52 | 000,162,512 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2010-02-12 22:24:52 | 000,019,024 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2010-02-12 22:24:52 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2010-02-12 22:24:51 | 000,023,376 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2010-02-12 22:24:50 | 000,046,672 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2010-02-12 22:24:48 | 000,100,432 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2010-02-12 22:24:48 | 000,094,800 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2010-02-12 22:24:48 | 000,028,880 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2010-02-12 22:24:40 | 000,153,184 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe
[2010-02-12 22:24:40 | 000,038,848 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\avastSS.scr
[2010-02-12 22:24:38 | 000,000,000 | ---D | C] -- C:\Program Files\Alwil Software
[2010-02-12 22:24:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software
[2010-02-12 22:21:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\Pobieranie
[2010-02-12 22:16:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Mozilla
[2010-02-12 22:16:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Mozilla
[2010-02-12 22:16:01 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2010-02-12 22:15:05 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Muzyka
[2010-02-12 22:14:51 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2010-02-12 22:14:51 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2010-02-12 22:14:47 | 000,000,000 | R--D | C] -- C:\Program Files
[2010-02-12 22:14:47 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2010-02-12 22:14:47 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2010-02-12 22:14:47 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files
[2010-02-12 22:14:28 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start
[2010-02-12 22:14:28 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty
[2010-02-12 22:14:28 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Szablony
[2010-02-12 22:14:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Ulubione
[2010-02-12 22:14:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit
[2010-02-12 22:14:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2010-02-12 22:14:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2010-02-12 22:14:12 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft
[2010-02-12 22:14:12 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji
[2010-02-12 22:13:49 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2010-02-12 22:13:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2010-02-12 22:12:58 | 000,000,000 | ---D | C] -- C:\Program Files\totalcmd
[2010-02-12 22:12:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\GHISLER
[2010-02-12 22:06:38 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files
[2010-02-12 22:06:38 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2010-02-12 22:06:38 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web
[2010-02-12 22:06:38 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\system
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\security
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\PCHealth
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Offline Web Pages
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\NLDRV
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Network Diagnostic
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\L2Schemas
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\java
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1045
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2010-02-12 22:06:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025
[2010-02-12 22:03:43 | 000,208,896 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\atipdlxx.dll
[2010-02-12 22:03:43 | 000,155,648 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\Oemdspif.dll
[2010-02-12 22:03:43 | 000,043,520 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\ati2edxx.dll
[2010-02-12 22:03:43 | 000,026,112 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\Ati2mdxx.exe
[2010-02-12 22:03:43 | 000,024,064 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\ativcoxx.dll
[2010-02-12 22:03:18 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
[2010-02-12 22:03:16 | 000,000,000 | ---D | C] -- C:\Program Files\ATI
[2010-02-12 22:02:15 | 000,000,000 | ---D | C] -- C:\ATI
[2010-02-12 21:56:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\OPTIONS
[2010-02-12 21:56:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\InstallShield
[2010-02-12 21:56:36 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2010-02-12 21:56:35 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2010-02-12 21:56:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2010-02-12 21:47:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2010-02-12 21:47:17 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2010-02-12 21:47:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE
[2010-02-12 21:47:15 | 000,000,000 | ---D | C] -- C:\Intel
[2010-02-12 21:47:10 | 000,000,000 | ---D | C] -- C:\Program Files\Yahoo!
[2010-02-12 21:25:42 | 000,000,000 | --SD | C] -- C:\Documents and Settings\User\Moje dokumenty\Muzyka
[2010-02-12 21:25:42 | 000,000,000 | --SD | C] -- C:\Documents and Settings\User\Moje dokumenty\Moje obrazy
[2010-02-12 21:25:18 | 000,000,000 | --SD | C] -- C:\Documents and Settings\User\Ulubione
[2010-02-12 21:25:18 | 000,000,000 | --SD | C] -- C:\Documents and Settings\User\Moje dokumenty
[2010-02-12 21:25:18 | 000,000,000 | --SD | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Microsoft
[2010-02-12 21:25:18 | 000,000,000 | --SD | C] -- C:\Documents and Settings\User\Dane aplikacji\Microsoft
[2010-02-12 21:25:18 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\User\SendTo
[2010-02-12 21:25:18 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\User\Dane aplikacji
[2010-02-12 21:25:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\User\Menu Start
[2010-02-12 21:25:18 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\User\Cookies
[2010-02-12 21:25:18 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\User\Ustawienia lokalne
[2010-02-12 21:25:18 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\User\Szablony
[2010-02-12 21:25:18 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\User\PrintHood
[2010-02-12 21:25:18 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\User\NetHood
[2010-02-12 21:25:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Pulpit
[2010-02-12 21:25:17 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC
[2010-02-12 21:25:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2010-02-12 21:25:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2010-02-12 21:25:02 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2010-02-12 21:25:01 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2010-02-12 21:24:59 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2010-02-12 21:23:05 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft
[2010-02-12 21:23:05 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft
[2010-02-12 21:22:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dllcache
[2010-02-12 21:22:34 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM
[2010-02-12 21:22:24 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Obrazy
[2010-02-12 21:22:20 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate
[2010-02-12 21:22:16 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online
[2010-02-12 21:21:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services
[2010-02-12 21:21:53 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks
[2010-02-12 21:21:52 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap
[2010-02-12 21:21:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed
[2010-02-12 21:21:40 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker
[2010-02-12 21:21:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore
[2010-02-12 21:21:33 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting
[2010-02-12 21:21:28 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express
[2010-02-12 21:21:17 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System
[2010-02-12 21:21:14 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer
[2010-02-12 21:20:42 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications
[2010-02-12 21:20:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration
[2010-02-12 21:20:16 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2010-02-12 21:20:15 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player
[2010-02-12 21:19:52 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone
[2010-02-12 21:19:39 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT
[2010-02-12 21:19:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc
[2010-02-12 21:19:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com
[2010-02-12 21:19:22 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Wideo
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 60 Days ==========[/color]

[2010-03-17 13:42:12 | 000,556,032 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe
[2010-03-17 13:40:00 | 000,001,032 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010-03-17 13:37:05 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010-03-17 13:35:19 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010-03-17 13:29:45 | 000,000,281 | RHS- | M] () -- C:\boot.ini
[2010-03-17 13:19:37 | 003,893,315 | R--- | M] () -- C:\Documents and Settings\User\Pulpit\ComboFix.exe
[2010-03-17 13:12:44 | 002,359,296 | -H-- | M] () -- C:\Documents and Settings\User\NTUSER.DAT
[2010-03-17 13:05:09 | 000,001,548 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\CCleaner.lnk
[2010-03-17 12:54:50 | 000,046,416 | ---- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2010-03-17 12:54:16 | 000,002,337 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Acrobat Speed Launcher.lnk
[2010-03-17 12:53:54 | 000,001,028 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010-03-17 12:53:47 | 001,477,144 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-03-17 12:53:36 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-03-17 12:52:44 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\User\ntuser.ini
[2010-03-17 12:49:24 | 000,000,983 | ---- | M] () -- C:\WINDOWS\win.ini
[2010-03-17 12:49:24 | 000,000,211 | ---- | M] () -- C:\Boot.bak
[2010-03-17 12:01:05 | 000,000,210 | ---- | M] () -- C:\Documents and Settings\User\Moje dokumenty\FIX.reg
[2010-03-16 17:25:15 | 000,054,272 | ---- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-03-16 10:25:17 | 000,026,624 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\form_promotor2010-11.doc
[2010-03-16 09:09:53 | 000,085,586 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\lista_promotorow2010-11.pdf
[2010-03-15 00:06:41 | 003,414,528 | ---- | M] (Karol Winnicki) -- C:\Documents and Settings\User\Pulpit\BESTplayer.exe
[2010-03-14 11:42:34 | 000,000,093 | ---- | M] () -- C:\Documents and Settings\User\default.pls
[2010-03-14 11:42:32 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010-03-14 01:23:18 | 000,000,151 | ---- | M] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2010-03-13 13:58:34 | 000,002,184 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-03-07 16:59:57 | 000,000,993 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Mail Resender.exe.lnk
[2010-03-06 16:36:56 | 000,001,718 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Autodesk 3ds Max 9 32-bit.lnk
[2010-03-06 16:35:48 | 000,007,374 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\services
[2010-03-06 16:33:05 | 001,027,882 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-03-06 16:33:05 | 000,482,262 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2010-03-06 16:33:05 | 000,425,218 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-03-06 16:33:05 | 000,080,636 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2010-03-06 16:33:05 | 000,065,242 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-03-04 14:17:29 | 000,000,708 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Total Commander.lnk
[2010-02-28 19:57:51 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\All Users\Dane aplikacji\LauncherAccess.dt
[2010-02-28 19:51:17 | 000,155,795 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\AU8SEM0910.pdf
[2010-02-21 16:14:21 | 000,122,185 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\grafika.swf
[2010-02-21 14:09:24 | 000,107,888 | ---- | M] (Sony DADC Austria AG.) -- C:\WINDOWS\System32\CmdLineExt.dll
[2010-02-20 21:42:45 | 004,810,698 | -H-- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2010-02-19 09:03:02 | 000,046,480 | ---- | M] () -- C:\Documents and Settings\User\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2010-02-18 09:24:12 | 329,477,503 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\FR10PE_demo.exe
[2010-02-17 21:14:23 | 000,000,673 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Samsung PC Studio 3.lnk
[2010-02-14 19:17:50 | 000,001,687 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Logitech SetPoint.lnk
[2010-02-13 20:59:08 | 000,000,706 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\PDFCreator.lnk
[2010-02-13 19:41:38 | 000,000,427 | ---- | M] () -- C:\WINDOWS\ODBC.INI
[2010-02-13 17:02:49 | 000,000,856 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Adobe Photoshop CS3.lnk
[2010-02-13 16:48:49 | 000,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav
[2010-02-13 16:48:48 | 000,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav
[2010-02-13 14:51:47 | 000,000,685 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\IrfanView.lnk
[2010-02-13 13:36:29 | 000,000,441 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\fotografia.lnk
[2010-02-13 13:36:23 | 000,000,435 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\tekstury.lnk
[2010-02-13 13:36:08 | 000,000,419 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\zdjęcia.lnk
[2010-02-13 13:35:46 | 000,000,340 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\filmy.lnk
[2010-02-13 13:35:19 | 000,000,402 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\rok4.lnk
[2010-02-13 13:34:51 | 000,000,467 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\miasta.lnk
[2010-02-13 02:04:57 | 000,001,800 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Acrobat Synchronizer.lnk
[2010-02-13 02:04:57 | 000,001,736 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Acrobat 8 Professional.lnk
[2010-02-13 01:49:37 | 000,001,692 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\AutoCAD 2008 - Polski.lnk
[2010-02-13 00:07:18 | 000,000,674 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk
[2010-02-12 22:25:27 | 000,001,813 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Google Chrome.lnk
[2010-02-12 22:24:49 | 000,002,645 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010-02-12 22:16:23 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat
[2010-02-12 22:16:03 | 000,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk
[2010-02-12 22:14:55 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF
[2010-02-12 22:03:49 | 000,000,000 | ---- | M] () -- C:\WINDOWS\ativpsrm.bin
[2010-02-12 21:24:02 | 000,001,196 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2010-02-12 21:23:10 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010-02-12 21:23:10 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010-02-12 21:23:10 | 000,000,000 | ---- | M] () -- C:\WINDOWS\control.ini
[2010-02-12 21:23:10 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010-02-12 21:23:10 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010-02-12 21:23:05 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2010-02-12 21:23:05 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2010-02-12 21:23:04 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2010-02-12 21:22:56 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2010-02-12 21:22:26 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest
[2010-02-12 21:22:26 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2010-02-12 21:22:24 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2010-02-12 21:22:24 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest
[2010-02-12 21:22:24 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2010-02-12 21:22:24 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2010-02-12 21:22:24 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2010-02-12 21:22:24 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2010-02-12 21:20:52 | 000,021,856 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010-02-12 21:20:40 | 000,000,037 | ---- | M] () -- C:\WINDOWS\vbaddin.ini
[2010-02-12 21:20:40 | 000,000,036 | ---- | M] () -- C:\WINDOWS\vb.ini
[2010-02-11 19:53:57 | 000,038,848 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\avastSS.scr
[2010-02-11 19:53:36 | 000,153,184 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe
[2010-02-11 19:42:34 | 000,046,672 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2010-02-11 19:42:13 | 000,162,512 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2010-02-11 19:39:01 | 000,023,376 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2010-02-11 19:38:34 | 000,100,432 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2010-02-11 19:38:31 | 000,094,800 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2010-02-11 19:38:23 | 000,019,024 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2010-02-11 19:38:07 | 000,028,880 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2010-03-17 13:29:45 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2010-03-17 13:29:44 | 000,262,400 | ---- | C] () -- C:\cmldr
[2010-03-17 13:28:54 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2010-03-17 13:28:53 | 000,261,632 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2010-03-17 13:28:53 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2010-03-17 13:28:53 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2010-03-17 13:28:53 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2010-03-17 13:19:33 | 003,893,315 | R--- | C] () -- C:\Documents and Settings\User\Pulpit\ComboFix.exe
[2010-03-17 13:05:09 | 000,001,548 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\CCleaner.lnk
[2010-03-17 12:01:05 | 000,000,210 | ---- | C] () -- C:\Documents and Settings\User\Moje dokumenty\FIX.reg
[2010-03-16 09:10:55 | 000,026,624 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\form_promotor2010-11.doc
[2010-03-16 09:09:53 | 000,085,586 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\lista_promotorow2010-11.pdf
[2010-03-13 18:55:20 | 000,008,192 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\Simple XQZ Wallhack (Test version 9) by Laurynas.exe
[2010-03-07 16:59:57 | 000,000,993 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\Mail Resender.exe.lnk
[2010-03-06 16:36:56 | 000,001,718 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Autodesk 3ds Max 9 32-bit.lnk
[2010-03-04 14:17:29 | 000,000,708 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\Total Commander.lnk
[2010-02-28 19:51:17 | 000,155,795 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\AU8SEM0910.pdf
[2010-02-21 16:14:13 | 000,122,185 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\grafika.swf
[2010-02-21 14:37:56 | 002,463,976 | ---- | C] () -- C:\WINDOWS\System32\NPSWF32.dll
[2010-02-18 09:14:46 | 329,477,503 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\FR10PE_demo.exe
[2010-02-17 21:15:30 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\LauncherAccess.dt
[2010-02-17 21:14:48 | 000,000,766 | ---- | C] () -- C:\WINDOWS\System32\Uninstall.ico
[2010-02-17 21:14:41 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2010-02-17 21:14:23 | 000,000,673 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Samsung PC Studio 3.lnk
[2010-02-14 19:17:50 | 000,001,687 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Logitech SetPoint.lnk
[2010-02-13 20:59:08 | 000,000,706 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\PDFCreator.lnk
[2010-02-13 20:59:06 | 000,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfcmnnt.dll
[2010-02-13 19:41:38 | 000,000,427 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2010-02-13 17:02:49 | 000,000,856 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\Adobe Photoshop CS3.lnk
[2010-02-13 16:48:48 | 000,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav
[2010-02-13 16:48:47 | 000,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav
[2010-02-13 14:51:47 | 000,000,685 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\IrfanView.lnk
[2010-02-13 13:50:45 | 000,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2010-02-13 13:36:29 | 000,000,441 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\fotografia.lnk
[2010-02-13 13:36:23 | 000,000,435 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\tekstury.lnk
[2010-02-13 13:36:08 | 000,000,419 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\zdjęcia.lnk
[2010-02-13 13:35:46 | 000,000,340 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\filmy.lnk
[2010-02-13 13:35:19 | 000,000,402 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\rok4.lnk
[2010-02-13 13:34:51 | 000,000,467 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\miasta.lnk
[2010-02-13 13:23:20 | 000,000,093 | ---- | C] () -- C:\Documents and Settings\User\default.pls
[2010-02-13 12:16:00 | 000,178,176 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010-02-13 12:15:16 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010-02-13 12:12:56 | 000,054,272 | ---- | C] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-02-13 02:04:57 | 000,002,337 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Acrobat Speed Launcher.lnk
[2010-02-13 02:04:57 | 000,001,800 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Adobe Acrobat Synchronizer.lnk
[2010-02-13 02:04:57 | 000,001,736 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Acrobat 8 Professional.lnk
[2010-02-13 01:49:37 | 000,001,692 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\AutoCAD 2008 - Polski.lnk
[2010-02-13 01:19:48 | 000,002,272 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2010-02-13 00:07:18 | 000,000,674 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Gadu-Gadu 10.lnk
[2010-02-12 22:25:27 | 000,001,813 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Google Chrome.lnk
[2010-02-12 22:25:05 | 000,001,032 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010-02-12 22:25:04 | 000,001,028 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010-02-12 22:16:23 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2010-02-12 22:16:03 | 000,001,602 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk
[2010-02-12 22:14:55 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF
[2010-02-12 22:14:45 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_857.nls
[2010-02-12 22:14:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28603.nls
[2010-02-12 22:14:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28599.nls
[2010-02-12 22:14:45 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10081.nls
[2010-02-12 22:14:44 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_869.nls
[2010-02-12 22:14:44 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_737.nls
[2010-02-12 22:14:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_875.nls
[2010-02-12 22:14:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28597.NLS
[2010-02-12 22:14:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28595.NLS
[2010-02-12 22:14:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10017.nls
[2010-02-12 22:14:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10007.nls
[2010-02-12 22:14:44 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10006.nls
[2010-02-12 22:14:43 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_866.nls
[2010-02-12 22:14:43 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_855.nls
[2010-02-12 22:14:43 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28594.NLS
[2010-02-12 22:14:41 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20127.nls
[2010-02-12 22:14:39 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10082.nls
[2010-02-12 22:14:39 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10029.nls
[2010-02-12 22:14:39 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10010.nls
[2010-02-12 22:14:37 | 000,001,734 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT
[2010-02-12 22:13:48 | 001,477,144 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-02-12 22:12:58 | 000,000,545 | ---- | C] () -- C:\WINDOWS\UC.PIF
[2010-02-12 22:12:58 | 000,000,545 | ---- | C] () -- C:\WINDOWS\RAR.PIF
[2010-02-12 22:12:58 | 000,000,545 | ---- | C] () -- C:\WINDOWS\PKZIP.PIF
[2010-02-12 22:12:58 | 000,000,545 | ---- | C] () -- C:\WINDOWS\PKUNZIP.PIF
[2010-02-12 22:12:58 | 000,000,545 | ---- | C] () -- C:\WINDOWS\NOCLOSE.PIF
[2010-02-12 22:12:58 | 000,000,545 | ---- | C] () -- C:\WINDOWS\LHA.PIF
[2010-02-12 22:12:58 | 000,000,545 | ---- | C] () -- C:\WINDOWS\ARJ.PIF
[2010-02-12 22:12:57 | 000,000,281 | RHS- | C] () -- C:\boot.ini
[2010-02-12 22:12:54 | 000,001,196 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf
[2010-02-12 22:03:49 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2010-02-12 22:03:43 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat
[2010-02-12 22:03:43 | 000,375,648 | ---- | C] () -- C:\WINDOWS\System32\ativvaxx.cap
[2010-02-12 22:03:43 | 000,294,912 | ---- | C] () -- C:\WINDOWS\System32\ATIODE.exe
[2010-02-12 22:03:43 | 000,197,982 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2010-02-12 22:03:43 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ATIODCLI.exe
[2010-02-12 22:03:43 | 000,019,462 | ---- | C] () -- C:\WINDOWS\atiogl.xml
[2010-02-12 22:03:43 | 000,000,003 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat
[2010-02-12 21:25:19 | 000,000,188 | -HS- | C] () -- C:\Documents and Settings\User\ntuser.ini
[2010-02-12 21:25:18 | 002,359,296 | -H-- | C] () -- C:\Documents and Settings\User\NTUSER.DAT
[2010-02-12 21:24:00 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2010-02-12 21:23:10 | 000,002,645 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT
[2010-02-12 21:23:10 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2010-02-12 21:23:10 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2010-02-12 21:23:10 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS
[2010-02-12 21:23:10 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT
[2010-02-12 21:23:05 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2010-02-12 21:23:05 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2010-02-12 21:23:04 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2010-02-12 21:22:26 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\WindowsLogon.manifest
[2010-02-12 21:22:26 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2010-02-12 21:22:24 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2010-02-12 21:22:24 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest
[2010-02-12 21:22:24 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2010-02-12 21:22:24 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2010-02-12 21:22:24 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2010-02-12 21:22:24 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2010-02-12 21:20:52 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010-02-12 21:19:48 | 000,093,702 | ---- | C] () -- C:\WINDOWS\System32\subrange.uce
[2010-02-12 21:19:47 | 000,060,458 | ---- | C] () -- C:\WINDOWS\System32\ideograf.uce
[2010-02-12 21:19:47 | 000,024,006 | ---- | C] () -- C:\WINDOWS\System32\gb2312.uce
[2010-02-12 21:19:47 | 000,022,984 | ---- | C] () -- C:\WINDOWS\System32\bopomofo.uce
[2010-02-12 21:19:47 | 000,016,740 | ---- | C] () -- C:\WINDOWS\System32\shiftjis.uce
[2010-02-12 21:19:47 | 000,012,876 | ---- | C] () -- C:\WINDOWS\System32\korean.uce
[2010-02-12 21:19:47 | 000,008,484 | ---- | C] () -- C:\WINDOWS\System32\kanji_2.uce
[2010-02-12 21:19:47 | 000,006,948 | ---- | C] () -- C:\WINDOWS\System32\kanji_1.uce
[2010-02-12 21:19:46 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h
[2010-02-12 21:19:46 | 000,001,225 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd
[2010-02-12 21:19:45 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h
[2010-02-12 21:19:41 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc
[2008-07-20 01:16:28 | 000,000,819 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini

[color=#E56717]========== LOP Check ==========[/color]

[2010-02-12 22:24:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software
[2010-03-06 16:35:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Autodesk
[2010-02-13 00:07:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2010-02-20 21:39:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla
[2010-02-13 01:00:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\LightScribe
[2010-02-12 23:54:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Tlen.pl
[2010-03-06 16:42:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Autodesk
[2010-02-13 02:08:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\BESTplayer
[2010-02-13 00:09:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Gadu-Gadu 10
[2010-02-21 14:56:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\GHISLER
[2010-02-20 22:04:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\GrabPro
[2010-02-22 10:18:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\ipla
[2010-02-14 19:18:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Leadertech
[2010-03-12 10:10:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Orbit
[2010-02-17 21:16:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Samsung
[2010-02-13 13:28:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Thunderbird
[2010-02-12 23:54:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Tlen.pl

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Custom Scans ==========[/color]


[color=#A23BEC]< %systemdrive%\*.* >[/color]
[2010-02-12 21:23:10 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010-03-17 12:49:24 | 000,000,211 | ---- | M] () -- C:\Boot.bak
[2010-03-17 13:29:45 | 000,000,281 | RHS- | M] () -- C:\boot.ini
[2008-06-16 14:28:36 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin
[2004-08-03 23:00:14 | 000,262,400 | ---- | M] () -- C:\cmldr
[2010-03-17 13:37:05 | 000,024,810 | ---- | M] () -- C:\ComboFix.txt
[2010-02-12 21:23:10 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010-02-13 16:44:44 | 000,000,010 | ---- | M] () -- C:\csb.log
[2010-02-12 21:23:10 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010-02-12 21:23:10 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2008-06-16 14:28:36 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2008-06-16 14:28:36 | 000,251,152 | RHS- | M] () -- C:\ntldr
[2010-03-17 12:53:27 | 3218,079,744 | -HS- | M] () -- C:\pagefile.sys
[2010-02-12 21:57:01 | 000,000,423 | ---- | M] () -- C:\RHDSetup.log


[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2008-04-13 22:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ERDNT\cache\atapi.sys
[2008-04-13 22:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0006\DriverFiles\i386\atapi.sys
[2008-04-13 22:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0007\DriverFiles\i386\atapi.sys

[color=#A23BEC]< MD5 for: BEEP.SYS >[/color]
[2008-06-16 14:28:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\ERDNT\cache\beep.sys
[2008-06-16 14:28:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys

[color=#A23BEC]< MD5 for: CDROM.SYS >[/color]
[2008-06-16 14:28:36 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys

[color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color]
[2008-06-16 14:28:36 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\ERDNT\cache\eventlog.dll
[2008-06-16 14:28:36 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\eventlog.dll

[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]
[2008-06-16 14:28:36 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ERDNT\cache\ndis.sys
[2008-06-16 14:28:36 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2008-06-16 14:28:36 | 000,549,888 | ---- | M] (Microsoft Corporation) MD5=335813EACD16E84F3047A3326F6E5473 -- C:\WINDOWS\system32\winlogon.exe
< End of report >
[/log]

Psycholandia
komentarz
komentarz

Pobierz: http://www.dlldump.com/download-dll-files_new.php/dllfiles/M/midimap.dll/5.1.2600.2180/download.html i: http://www.dlldump.com/download-dll-files_new.php/dllfiles/R/regsvc.dll/5.1.2600.2180/download.html wrzuć na dysk [b]C[/b]

Wklej do Notatnika:
[code]FCopy::
C:\midimap.dll | c:\windows\system32\dllcache\midimap.dll
C:\midimap.dll | c:\windows\system32\midimap.dll
C:\regsvc.dll | c:\windows\System32\regsvc.dll[/code]
Przeciągnij i upuść plik [b]CFScript.txt[/b] na plik [b]ComboFix.exe[/b] jak na poniższym obrazku:
[URL=http://www.imagebanana.com/][IMG]http://www.imagebanana.com/img/7tqo8sxl/combofix_cfscript.gif[/IMG][/URL]

Te pliki:
[quote]c:\windows\System32\wscntfy.exe ... - brak elementu !!
c:\windows\System32\ctfmon.exe ... - brak elementu !![/quote]
wyciągając z katalogu [b]C:\windows\ServicePackFiles\i386[/b] i skopiuj w miejsca podane na ścieżce wyżej.

marcioh
komentarz
komentarz

a co jesli w C:\windows nie ma Service Packa?

Psycholandia
komentarz
komentarz

Z płyty z Windowsem skopiuj :)

  • 2 tygodnie później...
marcioh
komentarz
komentarz

dzieki wielkie za pomoc, juz wszystko dobrze dziala:)

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.