varoth utworzono 26 maja 2010 utworzono 26 maja 2010 (edytowane) Temat http://www.forumpc.pl/index.php?showtopic=162313 [log]OTL logfile created on: 2010-05-26 13:09:42 - Run 1 OTL by OldTimer - Version 3.2.5.0 Folder = C:\Documents and Settings\SysOp\Moje dokumenty\Pobieranie Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1 023,00 Mb Total Physical Memory | 486,00 Mb Available Physical Memory | 47,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 82,00% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS.1 | %ProgramFiles% = C:\Program Files Drive C: | 14,75 Gb Total Space | 3,14 Gb Free Space | 21,28% Space Free | Partition Type: NTFS D: Drive not present or media not loaded Drive E: | 41,14 Gb Total Space | 18,04 Gb Free Space | 43,86% Space Free | Partition Type: NTFS Drive F: | 17,72 Gb Total Space | 5,66 Gb Free Space | 31,96% Space Free | Partition Type: FAT32 Drive G: | 19,53 Gb Total Space | 2,74 Gb Free Space | 14,02% Space Free | Partition Type: NTFS H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: WINDT_09 Current User Name: SysOp Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: On Skip Microsoft Files: On File Age = 60 Days Output = Standard [color=#E56717]========== Processes (All) ==========[/color] PRC - [2010-05-26 13:08:11 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\SysOp\Moje dokumenty\Pobieranie\OTL.exe PRC - [2010-05-25 22:46:30 | 001,055,000 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe PRC - [2010-05-25 22:46:29 | 000,702,744 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe PRC - [2010-05-25 22:46:29 | 000,600,344 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgnsx.exe PRC - [2010-05-25 22:46:29 | 000,502,040 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgrsx.exe PRC - [2010-05-25 22:46:28 | 002,010,904 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgtray.exe PRC - [2010-05-25 22:46:25 | 000,285,392 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe PRC - [2010-05-05 22:10:50 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe PRC - [2010-01-16 05:18:19 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2009-07-12 14:24:30 | 000,549,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\winlogon.exe PRC - [2009-07-12 14:23:52 | 000,196,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\msconfig.exe PRC - [2009-07-12 14:02:10 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\services.exe PRC - [2009-03-17 09:40:58 | 001,739,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\explorer.exe PRC - [2008-04-14 22:51:44 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\spoolsv.exe PRC - [2008-04-14 22:51:44 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\smss.exe PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\svchost.exe [RPCSS] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\svchost.exe [NETWORKSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\svchost.exe [NETSVCS] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\svchost.exe [IMGSVC] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\svchost.exe [DCOMLAUNCH] PRC - [2008-04-14 22:51:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\lsass.exe PRC - [2008-04-14 22:51:12 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\csrss.exe PRC - [2007-12-05 04:53:58 | 000,495,616 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS.1\system32\ati2evxx.exe PRC - [2007-10-24 01:47:40 | 000,070,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe PRC - [2007-07-09 09:39:12 | 002,119,104 | ---- | M] (Gadu-Gadu S.A.) -- C:\Program Files\Gadu-Gadu\gg.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2010-05-26 13:08:11 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\SysOp\Moje dokumenty\Pobieranie\OTL.exe MOD - [2009-07-12 14:25:41 | 000,483,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\shlwapi.dll MOD - [2009-07-12 14:22:53 | 000,757,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\userenv.dll MOD - [2009-07-12 14:22:37 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\srclient.dll MOD - [2009-07-12 14:21:52 | 002,730,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\setupapi.dll MOD - [2009-07-12 14:21:35 | 001,312,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\ole32.dll MOD - [2009-07-12 14:19:36 | 001,420,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\comres.dll MOD - [2009-07-12 14:19:31 | 000,344,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\comdlg32.dll MOD - [2009-07-12 14:04:08 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\uxtheme.dll MOD - [2009-07-12 14:03:05 | 000,585,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\rpcrt4.dll MOD - [2009-07-12 14:02:40 | 001,020,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\kernel32.dll MOD - [2009-07-12 14:02:40 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\secur32.dll MOD - [2009-07-12 14:02:15 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\gdi32.dll MOD - [2009-07-12 14:01:59 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\advapi32.dll MOD - [2009-07-08 10:36:02 | 019,150,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\shell32.dll MOD - [2009-07-03 09:24:22 | 000,652,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\user32.dll MOD - [2009-02-09 14:00:17 | 000,723,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\ntdll.dll MOD - [2008-04-14 22:51:58 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\winspool.drv MOD - [2008-04-14 22:50:58 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\wldap32.dll MOD - [2008-04-14 22:50:58 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\version.dll MOD - [2008-04-14 22:50:46 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\oleaut32.dll MOD - [2008-04-14 22:50:46 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\olepro32.dll MOD - [2008-04-14 22:50:46 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\samlib.dll MOD - [2008-04-14 22:50:46 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\psapi.dll MOD - [2008-04-14 22:50:42 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\ntmarta.dll MOD - [2008-04-14 22:50:40 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\msvcrt.dll MOD - [2008-04-14 22:50:34 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\imm32.dll MOD - [2008-04-14 22:50:32 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\wbem\framedyn.dll MOD - [2008-04-14 22:50:12 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\clbcatq.dll MOD - [2008-04-14 22:46:34 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\msscript.ocx MOD - [2008-04-14 22:43:00 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\MSCTFIME.IME MOD - [2008-04-14 22:29:10 | 001,054,208 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS.1\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll MOD - [2006-12-21 14:30:44 | 000,102,400 | ---- | M] (Gadu-Gadu S.A.) -- C:\Program Files\Gadu-Gadu\ggwhook.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [On_Demand | Stopped] -- -- (ALG) SRV - [2010-05-25 22:46:25 | 000,285,392 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd) SRV - [2005-11-24 17:03:22 | 000,053,337 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe -- (MSCSPTISRV) SRV - [2005-11-24 16:57:44 | 000,053,337 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe -- (PACSPTISVR) SRV - [2005-11-24 16:47:30 | 000,069,718 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe -- (SPTISRV) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2010-05-25 22:46:48 | 000,360,584 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS.1\System32\Drivers\avgtdix.sys -- (AvgTdiX) DRV - [2010-05-25 22:46:40 | 000,333,192 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS.1\System32\Drivers\avgldx86.sys -- (AvgLdx86) DRV - [2010-05-25 22:46:39 | 000,028,424 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS.1\System32\Drivers\avgmfx86.sys -- (AvgMfx86) DRV - [2010-03-16 15:16:38 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS.1\System32\Drivers\sptd.sys -- (sptd) DRV - [2009-07-12 14:05:11 | 000,062,208 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS.1\system32\drivers\si3112.sys -- (Si3112) DRV - [2009-07-12 13:32:34 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS.1\system32\drivers\gameenum.sys -- (gameenum) DRV - [2009-07-12 11:32:58 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS.1\system32\drivers\RTL8139.sys -- (rtl8139) Sterownik NT karty Realtek RTL8139(A/B/C) DRV - [2007-12-05 07:26:40 | 002,782,208 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS.1\system32\drivers\ati2mtag.sys -- (ati2mtag) DRV - [2007-11-05 09:55:04 | 000,017,952 | ---- | M] () [Kernel | System | Running] -- C:\Program Files\Radeon Omega Drivers\v4.8.442\ATI Tray Tools\atitray.sys -- (atitray) DRV - [2006-09-24 15:28:46 | 000,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS.1\system32\speedfan.sys -- (speedfan) DRV - [2006-08-18 07:52:00 | 004,017,536 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS.1\system32\drivers\alcxwdm.sys -- (ALCXWDM) Service for Realtek AC97 Audio (WDM) DRV - [2005-12-06 17:11:18 | 000,035,328 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS.1\System32\drivers\sfsync03.sys -- (sfsync03) StarForce Protection Synchronization Driver (version 3.x) DRV - [2005-08-10 14:44:04 | 000,050,688 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS.1\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x) DRV - [2005-05-16 15:20:39 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS.1\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x) DRV - [1996-04-03 21:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS.1\system32\giveio.sys -- (giveio) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.wyborcza.pl/0,0.html?p=029 IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://forum.winmod.net IE - HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://forum.winmod.net IE - HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://forum.winmod.net IE - HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://forum.winmod.net IE - HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s IE - HKU\S-1-5-21-1844237615-117609710-1417001333-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.windowsxlive.net IE - HKU\S-1-5-21-1844237615-117609710-1417001333-1001\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s IE - HKU\S-1-5-21-1844237615-117609710-1417001333-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.startup.homepage: "plemiona.pl" FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.8.20100408.6 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {B042753D-F57E-4e8e-A01B-7379A6D4CEFB}:1.19 FF - HKLM\software\mozilla\Firefox\extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2010-05-25 22:46:24 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-05-07 22:08:16 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-05-07 22:08:16 | 000,000,000 | ---D | M] [2010-03-17 21:44:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\Mozilla\Extensions [2010-05-25 22:50:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\Mozilla\Firefox\Profiles\c6r55vr5.default\extensions [2010-05-16 11:53:09 | 000,000,000 | ---D | M] (BitComet Video Downloader) -- C:\Documents and Settings\SysOp\Dane aplikacji\Mozilla\Firefox\Profiles\c6r55vr5.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB} [2010-04-13 15:13:59 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Documents and Settings\SysOp\Dane aplikacji\Mozilla\Firefox\Profiles\c6r55vr5.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781} [2010-05-25 22:50:46 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010-05-05 22:11:08 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} [2010-02-21 12:22:32 | 000,712,704 | ---- | M] (BitComet) -- C:\Program Files\Mozilla Firefox\plugins\npBitCometAgent.dll [2010-05-05 22:10:50 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll [2010-01-16 03:08:36 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-01-16 03:08:36 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-01-16 03:08:36 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-01-16 03:08:36 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-01-16 03:08:36 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-01-16 03:08:36 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2010-04-22 19:16:11 | 000,000,779 | ---- | M]) - C:\WINDOWS.1\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: 127.0.0.1 http://nasza-klasa.pl O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - F:\Programy\BitComet\tools\BitCometBHO_1.4.1.27.dll (BitComet) O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.) O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.) O4 - HKLM..\Run: [MSConfig] C:\WINDOWS.1\System32\msconfig.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-1844237615-117609710-1417001333-1001..\Run: [Gadu-Gadu] C:\Program Files\Gadu-Gadu\gg.exe (Gadu-Gadu S.A.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoInternetOpenWith = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O7 - HKU\S-1-5-21-1844237615-117609710-1417001333-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1844237615-117609710-1417001333-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O7 - HKU\S-1-5-21-1844237615-117609710-1417001333-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1 O7 - HKU\S-1-5-21-1844237615-117609710-1417001333-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O8 - Extra context menu item: Pobierz wszystkie VIdeo za pomocą BitComet - F:\Programy\BitComet\BitComet.exe (www.BitComet.com) O8 - Extra context menu item: Pobierz wszystko za pomocą BitComet - F:\Programy\BitComet\BitComet.exe (www.BitComet.com) O8 - Extra context menu item: Pobierz za pomocą BitComet - F:\Programy\BitComet\BitComet.exe (www.BitComet.com) O9 - Extra Button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - F:\Programy\BitComet\tools\BitCometBHO_1.4.1.27.dll (BitComet) O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS.1\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\WINDOWS.1\System32\SYSdm.cpl (cr1t1cal) O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS.1\System32\ati2evxx.dll (ATI Technologies Inc.) O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS.1\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010-03-11 20:32:24 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2010-04-02 11:26:24 | 000,000,000 | ---- | M] () - F:\AUTOEXEC.BAT -- [ FAT32 ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: Ias - C:\WINDOWS.1\system32\ias [2010-03-15 18:15:44 | 000,000,000 | ---D | M] NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found MsConfig - StartUpFolder: C:^Documents and Settings^All Users.WINDOWS.1^Menu Start^Programy^Autostart^Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE - (Microsoft Corporation) MsConfig - StartUpFolder: C:^Documents and Settings^SysOp^Menu Start^Programy^Autostart^OpenOffice.org 3.2.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe - () MsConfig - StartUpFolder: C:^Documents and Settings^SysOp^Menu Start^Programy^Autostart^UniSpiker-2.6.lnk - G:\jamal\UNISPI~1.6\UNI_SP~1.EXE - File not found MsConfig - StartUpReg: [b]Adobe Reader Speed Launcher[/b] - hkey= - key= - F:\Programy\Reader\Reader_sl.exe (Adobe Systems Incorporated) MsConfig - StartUpReg: [b]AtiPTA[/b] - hkey= - key= - File not found MsConfig - StartUpReg: [b]BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}[/b] - hkey= - key= - C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG) MsConfig - StartUpReg: [b]DAEMON Tools Lite[/b] - hkey= - key= - C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) MsConfig - StartUpReg: [b]DANT[/b] - hkey= - key= - File not found MsConfig - StartUpReg: [b]DrvIcon[/b] - hkey= - key= - C:\Program Files\Vista Drive Icon\DrvIcon.exe File not found MsConfig - StartUpReg: [b]Expressivo[/b] - hkey= - key= - Reg Error: Value error. File not found MsConfig - StartUpReg: [b]Gadu-Gadu[/b] - hkey= - key= - C:\Program Files\Gadu-Gadu\gg.exe (Gadu-Gadu S.A.) MsConfig - StartUpReg: [b]NeroFilterCheck[/b] - hkey= - key= - C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG) MsConfig - StartUpReg: [b]SoundMan[/b] - hkey= - key= - C:\WINDOWS.1\soundman.exe (Realtek Semiconductor Corp.) MsConfig - StartUpReg: [b]SunJavaUpdateSched[/b] - hkey= - key= - C:\Program Files\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.) MsConfig - StartUpReg: [b]swg[/b] - hkey= - key= - Reg Error: Value error. File not found MsConfig - StartUpReg: [b]WinampAgent[/b] - hkey= - key= - F:\Programy\Winamp\winampa.exe (Nullsoft, Inc.) MsConfig - State: "system.ini" - 0 MsConfig - State: "win.ini" - 1 MsConfig - State: "bootini" - 2 MsConfig - State: "services" - 0 MsConfig - State: "startup" - 2 SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: SCSI Class - Driver Group SafeBootMin: sermouse.sys - Driver SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vga.sys - Driver SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: Messenger - Service SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: SCSI Class - Driver Group SafeBootNet: sermouse.sys - Driver SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vga.sys - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2010-05-26 12:18:49 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\SysOp\Recent [2010-05-26 09:51:05 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\VIRepair [2010-05-25 22:47:03 | 000,000,000 | -H-D | C] -- C:\$AVG [2010-05-25 22:46:50 | 000,012,464 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS.1\System32\avgrsstx.dll [2010-05-25 22:46:48 | 000,360,584 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS.1\System32\drivers\avgtdix.sys [2010-05-25 22:46:40 | 000,333,192 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS.1\System32\drivers\avgldx86.sys [2010-05-25 22:46:39 | 000,028,424 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS.1\System32\drivers\avgmfx86.sys [2010-05-25 22:46:37 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\drivers\Avg [2010-05-25 22:46:24 | 000,000,000 | ---D | C] -- C:\Program Files\AVG [2010-05-25 22:46:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\avg9 [2010-05-25 21:00:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\My Webs [2010-05-25 20:54:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\ViSplore [2010-05-25 20:54:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\ViGlance [2010-05-25 20:54:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\ViStart [2010-05-25 20:48:17 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\VITrans [2010-05-25 20:48:16 | 000,094,208 | ---- | C] (Sysinternals - www.sysinternals.com) -- C:\WINDOWS.1\System32\pskill.exe [2010-05-25 20:48:16 | 000,019,968 | ---- | C] (Dead Knight) -- C:\WINDOWS.1\System32\reico.exe [2010-05-25 20:48:16 | 000,000,000 | ---D | C] -- C:\VTPFiles [2010-05-25 20:47:48 | 000,020,480 | ---- | C] (Windows X) -- C:\WINDOWS.1\System32\scrnrdr.exe [2010-05-22 22:40:17 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2010-05-22 22:39:55 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\XPSViewer [2010-05-22 22:39:42 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2010-05-22 22:39:42 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\en-us [2010-05-21 11:31:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Pointstone [2010-05-21 11:30:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Pointstone [2010-05-19 21:10:30 | 000,000,000 | ---D | C] -- C:\Program Files\Generatorek3 [2010-05-17 12:18:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\EA Games [2010-05-16 11:20:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\KONAMI [2010-05-11 20:10:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\atitray [2010-05-08 21:53:01 | 000,098,304 | ---- | C] (Sony DADC Austria AG.) -- C:\WINDOWS.1\System32\CmdLineExt.dll [2010-05-08 20:05:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\gtk-2.0 [2010-05-08 19:06:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Ahead [2010-05-08 19:05:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Ahead [2010-05-08 19:05:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Ahead [2010-05-08 19:03:00 | 000,000,000 | ---D | C] -- C:\Program Files\Nero [2010-05-08 19:03:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Nero [2010-05-08 19:03:00 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Ahead [2010-05-07 22:56:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Google [2010-05-07 22:27:14 | 000,025,992 | ---- | C] (Sysinternals - www.sysinternals.com) -- C:\WINDOWS.1\System32\pgdfgsvc.exe [2010-05-05 22:18:00 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\Sun [2010-05-05 22:11:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Sun [2010-05-05 22:11:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2010-05-05 22:10:45 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2010-05-05 22:08:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Sun [2010-05-04 17:27:00 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\speech [2010-05-04 17:26:48 | 000,000,000 | ---D | C] -- C:\Program Files\ivo [2010-05-03 19:20:55 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek AC97 [2010-05-03 19:14:31 | 000,000,000 | R--D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\Expressivo Podcasts [2010-05-03 19:14:31 | 000,000,000 | R--D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\Expressivo Documents [2010-05-03 19:13:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\IVONA Player [2010-05-03 18:46:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\IVONA_INST [2010-05-02 22:24:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\.thumbnails [2010-05-01 16:51:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Google [2010-05-01 16:51:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Google [2010-05-01 16:51:02 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2010-04-29 15:00:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\.gimp-2.6 [2010-04-29 15:00:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\gegl-0.0 [2010-04-23 20:04:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Winamp [2010-04-22 14:14:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Identities [2010-04-22 14:14:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Identities [2010-04-19 20:38:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Adobe [2010-04-19 20:37:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Adobe [2010-04-19 20:36:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2010-04-11 18:58:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\OpenOffice.org [2010-04-11 18:43:00 | 000,000,000 | ---D | C] -- C:\Program Files\OpenOffice.org 3 [2010-04-10 18:29:49 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\appmgmt [2010-04-10 18:04:00 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio [2010-04-10 18:03:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Designer [2010-04-10 18:02:25 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\ShellNew [2010-04-10 17:59:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Microsoft Web Folders [2010-04-10 17:59:46 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2010-04-08 14:47:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\SonicStage [2010-04-08 14:42:13 | 000,000,000 | ---D | C] -- C:\Program Files\Sony Corporation [2010-04-08 14:40:58 | 000,770,048 | ---- | C] (Gracenote) -- C:\WINDOWS.1\System32\CDDBUISony.dll [2010-04-08 14:40:58 | 000,643,072 | ---- | C] (Gracenote, Inc.) -- C:\WINDOWS.1\System32\CDDBControlSony.dll [2010-04-08 14:40:58 | 000,585,728 | ---- | C] (Gracenote) -- C:\WINDOWS.1\System32\CddbMusicIDSony.dll [2010-04-08 14:40:58 | 000,073,728 | ---- | C] (Gracenote) -- C:\WINDOWS.1\System32\CddbLinkSony.dll [2010-04-08 14:39:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Sony Corporation [2010-04-08 14:38:39 | 000,000,000 | ---D | C] -- C:\Program Files\Sony [2010-04-08 14:37:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Sony Corporation [2010-04-08 14:37:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Sony Shared [2010-04-05 22:55:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\Pobieranie [2010-04-04 14:35:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Adobe [2010-04-02 09:30:19 | 000,000,000 | ---D | C] -- C:\temp [2010-04-01 20:58:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\Nowy folder [2010-04-01 20:53:33 | 000,000,000 | ---D | C] -- C:\Program Files\IrfanView [2010-04-01 16:05:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Gadu-Gadu [2010-04-01 15:49:41 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\pss [2010-04-01 15:49:27 | 000,000,000 | ---D | C] -- C:\Program Files\Soldier of Fortune II - Double Helix MP TEST [2010-04-01 15:48:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Gadu-Gadu [2010-04-01 15:48:09 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu [2010-04-01 14:41:25 | 000,000,000 | ---D | C] -- C:\Program Files\SpeedFan [2010-04-01 14:06:42 | 000,000,000 | ---D | C] -- C:\Program Files\Lavalys [2010-04-01 13:39:11 | 000,020,992 | ---- | C] (Realtek Semiconductor Corporation) -- C:\WINDOWS.1\System32\drivers\RTL8139.sys [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2010-05-26 13:05:05 | 000,001,001 | ---- | M] () -- C:\WINDOWS.1\win.ini [2010-05-26 13:05:05 | 000,000,349 | RHS- | M] () -- C:\boot.ini [2010-05-26 13:05:05 | 000,000,227 | ---- | M] () -- C:\WINDOWS.1\system.ini [2010-05-26 13:00:20 | 000,000,466 | -H-- | M] () -- C:\WINDOWS.1\tasks\User_Feed_Synchronization-{40CF33F7-F0DF-4BA2-BFDB-7923F9138C46}.job [2010-05-26 12:57:12 | 000,000,006 | -H-- | M] () -- C:\WINDOWS.1\tasks\SA.DAT [2010-05-26 12:56:58 | 000,002,048 | --S- | M] () -- C:\WINDOWS.1\bootstat.dat [2010-05-26 12:56:51 | 1073,270,784 | -HS- | M] () -- C:\hiberfil.sys [2010-05-26 10:26:31 | 000,000,069 | ---- | M] () -- C:\WINDOWS.1\NeroDigital.ini [2010-05-26 09:51:38 | 004,194,304 | ---- | M] () -- C:\Documents and Settings\SysOp\NTUSER.DAT [2010-05-26 09:51:38 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\SysOp\ntuser.ini [2010-05-25 22:57:28 | 060,360,981 | ---- | M] () -- C:\WINDOWS.1\System32\drivers\Avg\incavi.avm [2010-05-25 22:57:25 | 000,142,495 | ---- | M] () -- C:\WINDOWS.1\System32\drivers\Avg\microavi.avg [2010-05-25 22:46:50 | 000,012,464 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS.1\System32\avgrsstx.dll [2010-05-25 22:46:50 | 000,001,507 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\AVG Free 9.0.lnk [2010-05-25 22:46:48 | 000,360,584 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS.1\System32\drivers\avgtdix.sys [2010-05-25 22:46:40 | 000,333,192 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS.1\System32\drivers\avgldx86.sys [2010-05-25 22:46:39 | 000,113,461 | ---- | M] () -- C:\WINDOWS.1\System32\drivers\Avg\iavichjw.avm [2010-05-25 22:46:39 | 000,028,424 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS.1\System32\drivers\avgmfx86.sys [2010-05-25 22:46:37 | 006,061,540 | ---- | M] () -- C:\WINDOWS.1\System32\drivers\Avg\avi7.avg [2010-05-25 22:46:37 | 000,492,629 | ---- | M] () -- C:\WINDOWS.1\System32\drivers\Avg\miniavi.avg [2010-05-25 20:54:29 | 000,020,816 | ---- | M] () -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2010-05-25 20:53:53 | 000,139,648 | ---- | M] () -- C:\WINDOWS.1\System32\FNTCACHE.DAT [2010-05-25 20:48:34 | 000,085,182 | ---- | M] () -- C:\WINDOWS.1\Icon_1.ico [2010-05-25 16:16:56 | 000,000,802 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\Skrót do fairplay.exe.lnk [2010-05-23 21:33:23 | 000,235,430 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\ass.bmp [2010-05-23 21:29:33 | 000,029,788 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\aaa.jpg [2010-05-22 22:41:47 | 000,497,766 | ---- | M] () -- C:\WINDOWS.1\System32\perfh015.dat [2010-05-22 22:41:47 | 000,439,114 | ---- | M] () -- C:\WINDOWS.1\System32\perfh009.dat [2010-05-22 22:41:47 | 000,087,352 | ---- | M] () -- C:\WINDOWS.1\System32\perfc015.dat [2010-05-22 22:41:47 | 000,070,038 | ---- | M] () -- C:\WINDOWS.1\System32\perfc009.dat [2010-05-22 22:41:46 | 001,102,138 | ---- | M] () -- C:\WINDOWS.1\System32\PerfStringBackup.INI [2010-05-22 18:39:45 | 000,001,152 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\Skrót do mohpa.exe.lnk [2010-05-22 15:17:46 | 000,000,151 | ---- | M] () -- C:\WINDOWS.1\PhotoSnapViewer.INI [2010-05-22 15:06:27 | 001,959,354 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Obraz 112.bmp [2010-05-22 15:05:25 | 001,959,354 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Obraz 108.bmp [2010-05-22 15:04:58 | 001,959,354 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Obraz 107.bmp [2010-05-22 15:04:49 | 001,959,354 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Obraz 109.bmp [2010-05-22 14:58:57 | 000,884,154 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\spod.bmp [2010-05-22 14:52:33 | 000,004,076 | ---- | M] () -- C:\Documents and Settings\SysOp\.recently-used.xbel [2010-05-22 14:43:07 | 000,860,070 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\jjj.bmp [2010-05-22 14:42:31 | 000,000,602 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\IrfanView Thumbnails.lnk [2010-05-22 14:42:31 | 000,000,520 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\IrfanView.lnk [2010-05-22 11:12:34 | 000,025,088 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\CV.doc oryginał.doc [2010-05-21 17:20:44 | 000,012,800 | ---- | M] () -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-05-20 19:06:11 | 000,000,636 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\GIMP 2.lnk [2010-05-19 21:10:31 | 000,000,742 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Generatorek 3 dla Windows.lnk [2010-05-16 21:20:16 | 000,091,531 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\wwww.ods [2010-05-16 11:53:08 | 000,000,509 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\BitComet.lnk [2010-05-15 20:38:46 | 000,000,967 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\OpenOffice.org 3.2.lnk [2010-05-12 16:25:19 | 000,000,509 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\SpeedFan.lnk [2010-05-12 16:25:18 | 000,000,045 | ---- | M] () -- C:\WINDOWS.1\System32\initdebug.nfo [2010-05-09 15:37:31 | 000,020,480 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\plan ramowy.doc [2010-05-08 21:53:01 | 000,098,304 | ---- | M] (Sony DADC Austria AG.) -- C:\WINDOWS.1\System32\CmdLineExt.dll [2010-05-08 21:52:38 | 000,000,566 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\Pro Evolution Soccer 6.5.lnk [2010-05-08 19:06:10 | 000,002,385 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Nero StartSmart.lnk [2010-05-08 19:06:10 | 000,002,305 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Nero Home.lnk [2010-05-07 23:30:02 | 003,407,872 | -H-- | M] () -- C:\Documents and Settings\SysOp\NTUSER.DAT.bak_jv16pt [2010-05-07 23:23:47 | 000,000,082 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\Dokonaj zakupu jv16 PowerTools.url [2010-05-07 23:23:22 | 000,000,023 | -HS- | M] () -- C:\WINDOWS.1\System32\fcaafaeebda7.dat [2010-05-07 23:23:22 | 000,000,023 | ---- | M] () -- C:\WINDOWS.1\System32\cbed.xml [2010-05-07 22:27:14 | 000,025,992 | ---- | M] (Sysinternals - www.sysinternals.com) -- C:\WINDOWS.1\System32\pgdfgsvc.exe [2010-05-07 20:24:41 | 000,012,439 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\bmSUgEXK.htm.part [2010-05-06 16:17:46 | 000,025,088 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\CV.doc [2010-05-03 19:21:06 | 000,001,519 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\AvRack.lnk [2010-05-01 21:50:43 | 000,000,169 | ---- | M] () -- C:\WINDOWS.1\RtlRack.ini [2010-05-01 14:00:00 | 000,000,025 | ---- | M] () -- C:\WINDOWS.1\popcinfot.dat [2010-04-23 20:05:09 | 000,000,481 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Winamp.lnk [2010-04-19 22:24:08 | 000,047,616 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\matura.doc [2010-04-19 20:37:10 | 000,001,391 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Adobe Reader 9.lnk [2010-04-19 19:31:49 | 001,660,416 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\wakacje.ppt [2010-04-10 18:29:25 | 000,000,037 | ---- | M] () -- C:\WINDOWS.1\vbaddin.ini [2010-04-10 18:27:40 | 000,025,088 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Motyw cierpnienia w literaturze.doc [2010-04-10 18:05:23 | 000,000,433 | ---- | M] () -- C:\WINDOWS.1\ODBC.INI [2010-04-07 09:38:49 | 000,001,662 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\biobliografia2.rtf [2010-04-06 19:44:47 | 001,157,552 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\ustny_j_polski_popr.pdf [2010-04-05 18:57:18 | 000,001,602 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Mozilla Firefox.lnk [2010-04-05 16:39:05 | 000,002,254 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Dokument.rtf [2010-04-01 23:07:43 | 000,000,084 | ---- | M] () -- C:\WINDOWS.1\winamp.ini [2010-04-01 20:56:50 | 000,047,436 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2696.JPG [2010-04-01 20:56:44 | 000,048,485 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2699.JPG [2010-04-01 20:56:36 | 000,031,692 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2702.JPG [2010-04-01 20:56:28 | 000,051,806 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2703.JPG [2010-04-01 20:56:12 | 000,072,877 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2706.jpg [2010-04-01 15:49:31 | 000,000,879 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\sof.lnk [2010-04-01 15:48:14 | 000,000,653 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\Gadu-Gadu.lnk [2010-04-01 14:06:43 | 000,000,767 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\EVEREST Home Edition.lnk [2010-04-01 13:38:34 | 000,002,184 | ---- | M] () -- C:\WINDOWS.1\System32\wpa.dbl [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-05-25 22:46:50 | 000,001,507 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\AVG Free 9.0.lnk [2010-05-25 22:46:39 | 000,113,461 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\Avg\iavichjw.avm [2010-05-25 22:46:37 | 060,360,981 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\Avg\incavi.avm [2010-05-25 22:46:37 | 006,061,540 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\Avg\avi7.avg [2010-05-25 22:46:37 | 000,492,629 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\Avg\miniavi.avg [2010-05-25 22:46:37 | 000,142,495 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\Avg\microavi.avg [2010-05-25 20:52:17 | 000,146,412 | ---- | C] () -- C:\WINDOWS.1\System32\vilaunch.exe [2010-05-25 20:48:34 | 000,085,182 | ---- | C] () -- C:\WINDOWS.1\Icon_1.ico [2010-05-25 20:48:16 | 000,111,104 | ---- | C] () -- C:\WINDOWS.1\System32\Uharc.exe [2010-05-25 20:48:16 | 000,069,632 | ---- | C] () -- C:\WINDOWS.1\System32\moveex.exe [2010-05-25 20:48:16 | 000,008,636 | ---- | C] () -- C:\WINDOWS.1\System32\modifype.exe [2010-05-25 16:16:56 | 000,000,802 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\Skrót do fairplay.exe.lnk [2010-05-23 21:33:23 | 000,235,430 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\ass.bmp [2010-05-23 21:29:30 | 000,029,788 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\aaa.jpg [2010-05-22 18:39:47 | 000,001,152 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\Skrót do mohpa.exe.lnk [2010-05-22 15:00:37 | 001,959,354 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Obraz 112.bmp [2010-05-22 15:00:22 | 001,959,354 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Obraz 109.bmp [2010-05-22 14:59:28 | 001,959,354 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Obraz 107.bmp [2010-05-22 14:59:16 | 001,959,354 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Obraz 108.bmp [2010-05-22 14:58:57 | 000,884,154 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\spod.bmp [2010-05-22 14:52:33 | 000,004,076 | ---- | C] () -- C:\Documents and Settings\SysOp\.recently-used.xbel [2010-05-22 14:48:14 | 000,000,151 | ---- | C] () -- C:\WINDOWS.1\PhotoSnapViewer.INI [2010-05-22 14:43:07 | 000,860,070 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\jjj.bmp [2010-05-22 14:42:31 | 000,000,602 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\IrfanView Thumbnails.lnk [2010-05-22 14:42:31 | 000,000,520 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\IrfanView.lnk [2010-05-22 11:12:33 | 000,025,088 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\CV.doc oryginał.doc [2010-05-20 19:06:11 | 000,000,636 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\GIMP 2.lnk [2010-05-20 11:00:19 | 000,122,880 | ---- | C] () -- C:\WINDOWS.1\UnGins.exe [2010-05-19 21:10:31 | 000,000,742 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Generatorek 3 dla Windows.lnk [2010-05-17 12:59:27 | 000,000,069 | ---- | C] () -- C:\WINDOWS.1\NeroDigital.ini [2010-05-16 11:53:08 | 000,000,509 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\BitComet.lnk [2010-05-15 21:46:14 | 000,091,531 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\wwww.ods [2010-05-15 20:38:46 | 000,000,967 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\OpenOffice.org 3.2.lnk [2010-05-12 16:25:19 | 000,000,509 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\SpeedFan.lnk [2010-05-09 15:37:31 | 000,020,480 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\plan ramowy.doc [2010-05-08 19:06:10 | 000,002,385 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Nero StartSmart.lnk [2010-05-08 19:06:10 | 000,002,305 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Nero Home.lnk [2010-05-07 23:29:37 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\SysOp\NTUSER.DAT.tmp.LOG [2010-05-07 23:23:47 | 000,000,082 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\Dokonaj zakupu jv16 PowerTools.url [2010-05-07 23:23:22 | 000,000,023 | -HS- | C] () -- C:\WINDOWS.1\System32\fcaafaeebda7.dat [2010-05-07 23:23:22 | 000,000,023 | ---- | C] () -- C:\WINDOWS.1\System32\cbed.xml [2010-05-07 20:24:40 | 000,012,439 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\bmSUgEXK.htm.part [2010-05-05 20:02:05 | 000,025,088 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\CV.doc [2010-05-03 19:21:27 | 000,049,152 | ---- | C] () -- C:\WINDOWS.1\System32\ChCfg.exe [2010-05-03 19:21:06 | 000,001,519 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\AvRack.lnk [2010-05-03 19:21:06 | 000,000,164 | ---- | C] () -- C:\WINDOWS.1\avrack.ini [2010-05-03 19:20:54 | 000,141,016 | ---- | C] () -- C:\WINDOWS.1\System32\alsndmgr.wav [2010-05-03 19:20:50 | 000,143,360 | ---- | C] () -- C:\WINDOWS.1\System32\RtlCPAPI.dll [2010-05-01 21:50:43 | 000,000,169 | ---- | C] () -- C:\WINDOWS.1\RtlRack.ini [2010-04-23 20:05:09 | 000,000,481 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Winamp.lnk [2010-04-19 22:24:06 | 000,047,616 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\matura.doc [2010-04-19 20:37:10 | 000,001,391 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Adobe Reader 9.lnk [2010-04-19 19:31:49 | 001,660,416 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\wakacje.ppt [2010-04-10 18:27:40 | 000,025,088 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Motyw cierpnienia w literaturze.doc [2010-04-10 18:05:23 | 000,000,433 | ---- | C] () -- C:\WINDOWS.1\ODBC.INI [2010-04-10 08:59:56 | 000,000,566 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\Pro Evolution Soccer 6.5.lnk [2010-04-07 09:38:49 | 000,001,662 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\biobliografia2.rtf [2010-04-06 19:44:38 | 001,157,552 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\ustny_j_polski_popr.pdf [2010-04-05 16:39:05 | 000,002,254 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Dokument.rtf [2010-04-01 23:07:43 | 000,000,084 | ---- | C] () -- C:\WINDOWS.1\winamp.ini [2010-04-01 20:56:50 | 000,047,436 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2696.JPG [2010-04-01 20:56:44 | 000,048,485 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2699.JPG [2010-04-01 20:56:36 | 000,031,692 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2702.JPG [2010-04-01 20:56:28 | 000,051,806 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2703.JPG [2010-04-01 20:56:12 | 000,072,877 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2706.jpg [2010-04-01 15:49:31 | 000,000,879 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\sof.lnk [2010-04-01 15:48:14 | 000,000,653 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\Gadu-Gadu.lnk [2010-04-01 14:41:23 | 000,000,045 | ---- | C] () -- C:\WINDOWS.1\System32\initdebug.nfo [2010-04-01 14:06:43 | 000,000,767 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\EVEREST Home Edition.lnk [2010-03-16 15:16:37 | 000,691,696 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\sptd.sys [2010-03-15 23:22:43 | 000,168,448 | ---- | C] () -- C:\WINDOWS.1\System32\unrar.dll [2010-03-15 23:22:38 | 000,795,648 | ---- | C] () -- C:\WINDOWS.1\System32\xvidcore.dll [2010-03-15 23:22:38 | 000,130,048 | ---- | C] () -- C:\WINDOWS.1\System32\xvidvfw.dll [2010-03-15 23:22:37 | 003,596,288 | ---- | C] () -- C:\WINDOWS.1\System32\qt-dx331.dll [2010-03-15 23:22:35 | 000,057,344 | ---- | C] () -- C:\WINDOWS.1\System32\ff_vfw.dll [2010-03-15 23:22:35 | 000,000,547 | ---- | C] () -- C:\WINDOWS.1\System32\ff_vfw.dll.manifest [2010-03-11 21:44:49 | 000,000,011 | ---- | C] () -- C:\WINDOWS.1\System32\atiicdxx.ini [1999-01-22 17:46:58 | 000,065,536 | ---- | C] () -- C:\WINDOWS.1\System32\MSRTEDIT.DLL [1996-04-03 21:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS.1\System32\giveio.sys [color=#E56717]========== LOP Check ==========[/color] [2010-03-11 21:04:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite [2010-03-15 12:51:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PopCap Games [2010-03-13 17:26:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Test Drive Unlimited [2010-03-16 16:22:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\ashampoo [2010-05-25 22:46:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\avg9 [2010-03-16 15:16:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\DAEMON Tools Lite [2010-03-16 15:55:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\PopCap Games [2010-03-15 20:15:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Test Drive Unlimited [2010-03-13 15:24:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\dom\Dane aplikacji\DAEMON Tools Lite [2010-03-16 16:22:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\Ashampoo [2010-03-16 15:21:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\DAEMON Tools Lite [2010-04-01 16:05:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\Gadu-Gadu [2010-05-08 20:06:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\gtk-2.0 [2010-05-03 19:13:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\IVONA Player [2010-04-11 18:58:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\OpenOffice.org [2010-05-21 11:31:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\Pointstone [2010-05-25 20:54:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\ViGlance [2010-05-25 20:54:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\ViSplore [2010-05-25 20:54:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\ViStart [2010-05-26 13:00:20 | 000,000,466 | -H-- | M] () -- C:\WINDOWS.1\Tasks\User_Feed_Synchronization-{40CF33F7-F0DF-4BA2-BFDB-7923F9138C46}.job [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2010-03-11 20:32:24 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-05-26 13:05:05 | 000,000,349 | RHS- | M] () -- C:\boot.ini [2001-07-22 02:13:54 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin [2010-03-11 20:32:24 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-05-26 12:56:51 | 1073,270,784 | -HS- | M] () -- C:\hiberfil.sys [2010-03-11 20:32:24 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-03-11 20:32:24 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2010-03-13 21:08:40 | 000,000,007 | ---- | M] () -- C:\NOTACER.ID [2008-04-13 22:13:04 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2008-04-14 00:02:00 | 000,251,152 | RHS- | M] () -- C:\ntldr [2010-05-26 12:56:50 | 1610,612,736 | -HS- | M] () -- C:\pagefile.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS.1\system32\drivers\atapi.sys [color=#A23BEC]< MD5 for: BEEP.SYS >[/color] [2001-08-18 01:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS.0\system32\drivers\beep.sys [2001-08-18 01:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS.1\system32\drivers\beep.sys [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2009-07-12 13:29:34 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=4B0A100EAF5C49EF3CCA8C641431EACC -- C:\WINDOWS.1\system32\drivers\cdrom.sys [color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color] [2008-04-14 22:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS.1\system32\eventlog.dll [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2008-04-14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS.1\system32\drivers\ndis.sys [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2009-07-12 14:24:30 | 000,549,888 | ---- | M] (Microsoft Corporation) MD5=335813EACD16E84F3047A3326F6E5473 -- C:\WINDOWS.1\system32\winlogon.exe < End of report >[/log]
Tomek01 komentarz 26 maja 2010 komentarz 26 maja 2010 Tak więc jak widać masz AVG. Pobierz [b][url=http://www.instalki.pl/programy/download/antyspyware/get.php?file=avenger]Avenger[/url][/b] W polu input script here wklej taki tekst (bez frazy kod): [code]Files to delete: C:\WINDOWS.1\System32\scrnrdr.exe [/code] Klikasz execute, komputer uruchamia się ponownie. Załącz raport z Avenge'a oraz logi OTL i RSIT.
varoth komentarz 26 maja 2010 Autor komentarz 26 maja 2010 (edytowane) [log]////////////////////////////////////////// Avenger Pre-Processor log ////////////////////////////////////////// Platform: Windows XP (build 2600, Dodatek Service Pack 3) Wed May 26 22:27:03 2010 22:27:03: Error: Invalid script. A valid script must begin with a command directive. Aborting execution! ////////////////////////////////////////// Logfile of The Avenger Version 2.0, (c) by Swandog46 http://swandog46.geekstogo.com Platform: Windows XP ******************* Script file opened successfully. Script file read successfully. Backups directory opened successfully at C:\Avenger ******************* Beginning to process script file: Rootkit scan active. No rootkits found! File "C:\WINDOWS.1\System32\scrnrdr.exe" deleted successfully. Completed script processing. ******************* Finished! Terminate. [/log] [log]OTL logfile created on: 2010-05-26 22:34:17 - Run 2 OTL by OldTimer - Version 3.2.5.0 Folder = C:\Documents and Settings\SysOp\Moje dokumenty\Pobieranie Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1 023,00 Mb Total Physical Memory | 502,00 Mb Available Physical Memory | 49,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 82,00% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS.1 | %ProgramFiles% = C:\Program Files Drive C: | 14,75 Gb Total Space | 3,16 Gb Free Space | 21,41% Space Free | Partition Type: NTFS D: Drive not present or media not loaded Drive E: | 41,14 Gb Total Space | 18,04 Gb Free Space | 43,86% Space Free | Partition Type: NTFS Drive F: | 17,72 Gb Total Space | 5,66 Gb Free Space | 31,96% Space Free | Partition Type: FAT32 Drive G: | 19,53 Gb Total Space | 1,99 Gb Free Space | 10,20% Space Free | Partition Type: NTFS H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: WINDT_09 Current User Name: SysOp Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 90 Days Output = Standard [color=#E56717]========== Processes (All) ==========[/color] PRC - [2010-05-26 13:08:11 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\SysOp\Moje dokumenty\Pobieranie\OTL.exe PRC - [2010-05-25 22:46:30 | 001,055,000 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe PRC - [2010-05-25 22:46:29 | 000,702,744 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe PRC - [2010-05-25 22:46:29 | 000,600,344 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgnsx.exe PRC - [2010-05-25 22:46:29 | 000,502,040 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgrsx.exe PRC - [2010-05-25 22:46:28 | 002,010,904 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgtray.exe PRC - [2010-05-25 22:46:25 | 000,285,392 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe PRC - [2010-05-05 22:10:50 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe PRC - [2010-01-16 05:18:19 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2009-07-12 14:24:35 | 000,112,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\wuauclt.exe PRC - [2009-07-12 14:24:30 | 000,549,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\winlogon.exe PRC - [2009-07-12 14:23:58 | 000,070,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\notepad.exe PRC - [2009-07-12 14:02:10 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\services.exe PRC - [2009-03-17 09:40:58 | 001,739,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\explorer.exe PRC - [2008-04-14 22:51:44 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\spoolsv.exe PRC - [2008-04-14 22:51:44 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\smss.exe PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\svchost.exe [RPCSS] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\svchost.exe [NETWORKSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\svchost.exe [NETSVCS] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\svchost.exe [IMGSVC] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\svchost.exe [DCOMLAUNCH] PRC - [2008-04-14 22:51:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\lsass.exe PRC - [2008-04-14 22:51:12 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\csrss.exe PRC - [2007-12-05 04:53:58 | 000,495,616 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS.1\system32\ati2evxx.exe PRC - [2007-10-24 01:47:40 | 000,070,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe PRC - [2007-07-09 09:39:12 | 002,119,104 | ---- | M] (Gadu-Gadu S.A.) -- C:\Program Files\Gadu-Gadu\gg.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2010-05-26 13:08:11 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\SysOp\Moje dokumenty\Pobieranie\OTL.exe MOD - [2009-07-12 14:25:41 | 000,483,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\shlwapi.dll MOD - [2009-07-12 14:22:53 | 000,757,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\userenv.dll MOD - [2009-07-12 14:22:37 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\srclient.dll MOD - [2009-07-12 14:21:52 | 002,730,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\setupapi.dll MOD - [2009-07-12 14:21:35 | 001,312,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\ole32.dll MOD - [2009-07-12 14:19:36 | 001,420,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\comres.dll MOD - [2009-07-12 14:19:31 | 000,344,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\comdlg32.dll MOD - [2009-07-12 14:04:08 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\uxtheme.dll MOD - [2009-07-12 14:03:05 | 000,585,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\rpcrt4.dll MOD - [2009-07-12 14:02:40 | 001,020,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\kernel32.dll MOD - [2009-07-12 14:02:40 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\secur32.dll MOD - [2009-07-12 14:02:15 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\gdi32.dll MOD - [2009-07-12 14:01:59 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\advapi32.dll MOD - [2009-07-08 10:36:02 | 019,150,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\shell32.dll MOD - [2009-07-03 09:24:22 | 000,652,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\user32.dll MOD - [2009-02-09 14:00:17 | 000,723,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\ntdll.dll MOD - [2008-04-14 22:51:58 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\winspool.drv MOD - [2008-04-14 22:50:58 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\version.dll MOD - [2008-04-14 22:50:46 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\oleaut32.dll MOD - [2008-04-14 22:50:46 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\olepro32.dll MOD - [2008-04-14 22:50:46 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\psapi.dll MOD - [2008-04-14 22:50:40 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\msvcrt.dll MOD - [2008-04-14 22:50:34 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\imm32.dll MOD - [2008-04-14 22:50:32 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\wbem\framedyn.dll MOD - [2008-04-14 22:50:12 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\clbcatq.dll MOD - [2008-04-14 22:46:34 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\msscript.ocx MOD - [2008-04-14 22:43:00 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\MSCTFIME.IME MOD - [2008-04-14 22:29:10 | 001,054,208 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS.1\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll MOD - [2006-12-21 14:30:44 | 000,102,400 | ---- | M] (Gadu-Gadu S.A.) -- C:\Program Files\Gadu-Gadu\ggwhook.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [On_Demand | Stopped] -- -- (ALG) SRV - [2010-05-25 22:46:25 | 000,285,392 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd) SRV - [2005-11-24 17:03:22 | 000,053,337 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe -- (MSCSPTISRV) SRV - [2005-11-24 16:57:44 | 000,053,337 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe -- (PACSPTISVR) SRV - [2005-11-24 16:47:30 | 000,069,718 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe -- (SPTISRV) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2010-05-25 22:46:48 | 000,360,584 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS.1\System32\Drivers\avgtdix.sys -- (AvgTdiX) DRV - [2010-05-25 22:46:40 | 000,333,192 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS.1\System32\Drivers\avgldx86.sys -- (AvgLdx86) DRV - [2010-05-25 22:46:39 | 000,028,424 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS.1\System32\Drivers\avgmfx86.sys -- (AvgMfx86) DRV - [2010-03-16 15:16:38 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS.1\System32\Drivers\sptd.sys -- (sptd) DRV - [2009-07-12 14:05:11 | 000,062,208 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Stopped] -- C:\WINDOWS.1\system32\drivers\si3112.sys -- (Si3112) DRV - [2009-07-12 13:32:34 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS.1\system32\drivers\gameenum.sys -- (gameenum) DRV - [2009-07-12 11:32:58 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS.1\system32\drivers\RTL8139.sys -- (rtl8139) Sterownik NT karty Realtek RTL8139(A/B/C) DRV - [2007-12-05 07:26:40 | 002,782,208 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS.1\system32\drivers\ati2mtag.sys -- (ati2mtag) DRV - [2007-11-05 09:55:04 | 000,017,952 | ---- | M] () [Kernel | System | Running] -- C:\Program Files\Radeon Omega Drivers\v4.8.442\ATI Tray Tools\atitray.sys -- (atitray) DRV - [2006-09-24 15:28:46 | 000,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS.1\system32\speedfan.sys -- (speedfan) DRV - [2006-08-18 07:52:00 | 004,017,536 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS.1\system32\drivers\alcxwdm.sys -- (ALCXWDM) Service for Realtek AC97 Audio (WDM) DRV - [2005-12-06 17:11:18 | 000,035,328 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS.1\System32\drivers\sfsync03.sys -- (sfsync03) StarForce Protection Synchronization Driver (version 3.x) DRV - [2005-08-10 14:44:04 | 000,050,688 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS.1\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x) DRV - [2005-05-16 15:20:39 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS.1\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x) DRV - [1996-04-03 21:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS.1\system32\giveio.sys -- (giveio) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.wyborcza.pl/0,0.html?p=029 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.windowsxlive.net IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.startup.homepage: "plemiona.pl" FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.8.20100408.6 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {B042753D-F57E-4e8e-A01B-7379A6D4CEFB}:1.19 FF - HKLM\software\mozilla\Firefox\extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2010-05-25 22:46:24 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-05-07 22:08:16 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-05-07 22:08:16 | 000,000,000 | ---D | M] [2010-03-17 21:44:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\Mozilla\Extensions [2010-05-25 22:50:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\Mozilla\Firefox\Profiles\c6r55vr5.default\extensions [2010-05-16 11:53:09 | 000,000,000 | ---D | M] (BitComet Video Downloader) -- C:\Documents and Settings\SysOp\Dane aplikacji\Mozilla\Firefox\Profiles\c6r55vr5.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB} [2010-04-13 15:13:59 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Documents and Settings\SysOp\Dane aplikacji\Mozilla\Firefox\Profiles\c6r55vr5.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781} [2010-05-25 22:50:46 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010-05-05 22:11:08 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} [2010-02-21 12:22:32 | 000,712,704 | ---- | M] (BitComet) -- C:\Program Files\Mozilla Firefox\plugins\npBitCometAgent.dll [2010-05-05 22:10:50 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll [2010-01-16 03:08:36 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-01-16 03:08:36 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-01-16 03:08:36 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-01-16 03:08:36 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-01-16 03:08:36 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-01-16 03:08:36 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2010-04-22 19:16:11 | 000,000,779 | ---- | M]) - C:\WINDOWS.1\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: 127.0.0.1 http://nasza-klasa.pl O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - F:\Programy\BitComet\tools\BitCometBHO_1.4.1.27.dll (BitComet) O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.) O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.) O4 - HKCU..\Run: [Gadu-Gadu] C:\Program Files\Gadu-Gadu\gg.exe (Gadu-Gadu S.A.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoInternetOpenWith = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O8 - Extra context menu item: Pobierz wszystkie VIdeo za pomocą BitComet - F:\Programy\BitComet\BitComet.exe (www.BitComet.com) O8 - Extra context menu item: Pobierz wszystko za pomocą BitComet - F:\Programy\BitComet\BitComet.exe (www.BitComet.com) O8 - Extra context menu item: Pobierz za pomocą BitComet - F:\Programy\BitComet\BitComet.exe (www.BitComet.com) O9 - Extra Button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - F:\Programy\BitComet\tools\BitCometBHO_1.4.1.27.dll (BitComet) O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS.1\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\WINDOWS.1\System32\SYSdm.cpl (cr1t1cal) O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS.1\System32\ati2evxx.dll (ATI Technologies Inc.) O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS.1\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010-03-11 20:32:24 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2010-04-02 11:26:24 | 000,000,000 | ---- | M] () - F:\AUTOEXEC.BAT -- [ FAT32 ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: Ias - C:\WINDOWS.1\system32\ias [2010-03-15 18:15:44 | 000,000,000 | ---D | M] NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found MsConfig - StartUpFolder: C:^Documents and Settings^All Users.WINDOWS.1^Menu Start^Programy^Autostart^Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE - (Microsoft Corporation) MsConfig - StartUpFolder: C:^Documents and Settings^SysOp^Menu Start^Programy^Autostart^OpenOffice.org 3.2.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe - () MsConfig - StartUpFolder: C:^Documents and Settings^SysOp^Menu Start^Programy^Autostart^UniSpiker-2.6.lnk - G:\jamal\UNISPI~1.6\UNI_SP~1.EXE - File not found MsConfig - StartUpReg: [b]Adobe Reader Speed Launcher[/b] - hkey= - key= - F:\Programy\Reader\Reader_sl.exe (Adobe Systems Incorporated) MsConfig - StartUpReg: [b]AtiPTA[/b] - hkey= - key= - File not found MsConfig - StartUpReg: [b]BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}[/b] - hkey= - key= - C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG) MsConfig - StartUpReg: [b]DAEMON Tools Lite[/b] - hkey= - key= - C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) MsConfig - StartUpReg: [b]DANT[/b] - hkey= - key= - File not found MsConfig - StartUpReg: [b]DrvIcon[/b] - hkey= - key= - C:\Program Files\Vista Drive Icon\DrvIcon.exe File not found MsConfig - StartUpReg: [b]Expressivo[/b] - hkey= - key= - Reg Error: Value error. File not found MsConfig - StartUpReg: [b]Gadu-Gadu[/b] - hkey= - key= - C:\Program Files\Gadu-Gadu\gg.exe (Gadu-Gadu S.A.) MsConfig - StartUpReg: [b]NeroFilterCheck[/b] - hkey= - key= - C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG) MsConfig - StartUpReg: [b]SoundMan[/b] - hkey= - key= - C:\WINDOWS.1\soundman.exe (Realtek Semiconductor Corp.) MsConfig - StartUpReg: [b]SunJavaUpdateSched[/b] - hkey= - key= - C:\Program Files\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.) MsConfig - StartUpReg: [b]swg[/b] - hkey= - key= - Reg Error: Value error. File not found MsConfig - StartUpReg: [b]WinampAgent[/b] - hkey= - key= - F:\Programy\Winamp\winampa.exe (Nullsoft, Inc.) MsConfig - State: "system.ini" - 0 MsConfig - State: "win.ini" - 1 MsConfig - State: "bootini" - 2 MsConfig - State: "services" - 0 MsConfig - State: "startup" - 2 SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: SCSI Class - Driver Group SafeBootMin: sermouse.sys - Driver SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vga.sys - Driver SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: Messenger - Service SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: SCSI Class - Driver Group SafeBootNet: sermouse.sys - Driver SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vga.sys - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices [color=#E56717]========== Files/Folders - Created Within 90 Days ==========[/color] [2010-05-26 22:28:16 | 000,000,000 | ---D | C] -- C:\Avenger [2010-05-26 22:27:28 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\SysOp\Recent [2010-05-26 09:51:05 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\VIRepair [2010-05-25 22:47:03 | 000,000,000 | -H-D | C] -- C:\$AVG [2010-05-25 22:46:50 | 000,012,464 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS.1\System32\avgrsstx.dll [2010-05-25 22:46:48 | 000,360,584 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS.1\System32\drivers\avgtdix.sys [2010-05-25 22:46:40 | 000,333,192 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS.1\System32\drivers\avgldx86.sys [2010-05-25 22:46:39 | 000,028,424 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS.1\System32\drivers\avgmfx86.sys [2010-05-25 22:46:37 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\drivers\Avg [2010-05-25 22:46:24 | 000,000,000 | ---D | C] -- C:\Program Files\AVG [2010-05-25 22:46:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\avg9 [2010-05-25 21:00:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\My Webs [2010-05-25 20:54:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\ViSplore [2010-05-25 20:54:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\ViGlance [2010-05-25 20:54:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\ViStart [2010-05-25 20:48:17 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\VITrans [2010-05-25 20:48:16 | 000,094,208 | ---- | C] (Sysinternals - www.sysinternals.com) -- C:\WINDOWS.1\System32\pskill.exe [2010-05-25 20:48:16 | 000,019,968 | ---- | C] (Dead Knight) -- C:\WINDOWS.1\System32\reico.exe [2010-05-25 20:48:16 | 000,000,000 | ---D | C] -- C:\VTPFiles [2010-05-22 22:40:17 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2010-05-22 22:39:55 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\XPSViewer [2010-05-22 22:39:42 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2010-05-22 22:39:42 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\en-us [2010-05-22 22:38:38 | 000,014,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\spmsg2.dll [2010-05-22 22:38:24 | 000,022,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\spupdsvc.exe [2010-05-21 11:31:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Pointstone [2010-05-21 11:30:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Pointstone [2010-05-19 21:10:30 | 000,000,000 | ---D | C] -- C:\Program Files\Generatorek3 [2010-05-17 19:21:28 | 009,740,288 | ---- | C] (Electronic Arts Inc.) -- C:\Documents and Settings\SysOp\Pulpit\mohpa.exe [2010-05-17 12:18:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\EA Games [2010-05-16 11:20:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\KONAMI [2010-05-11 20:10:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\atitray [2010-05-08 21:53:01 | 000,098,304 | ---- | C] (Sony DADC Austria AG.) -- C:\WINDOWS.1\System32\CmdLineExt.dll [2010-05-08 20:05:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\gtk-2.0 [2010-05-08 19:06:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Ahead [2010-05-08 19:05:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Ahead [2010-05-08 19:05:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Ahead [2010-05-08 19:03:00 | 000,000,000 | ---D | C] -- C:\Program Files\Nero [2010-05-08 19:03:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Nero [2010-05-08 19:03:00 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Ahead [2010-05-07 22:56:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Google [2010-05-07 22:27:14 | 000,025,992 | ---- | C] (Sysinternals - www.sysinternals.com) -- C:\WINDOWS.1\System32\pgdfgsvc.exe [2010-05-05 22:18:00 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\Sun [2010-05-05 22:11:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Sun [2010-05-05 22:11:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2010-05-05 22:11:05 | 000,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS.1\System32\deployJava1.dll [2010-05-05 22:11:05 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS.1\System32\javacpl.cpl [2010-05-05 22:11:04 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS.1\System32\javaws.exe [2010-05-05 22:11:04 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS.1\System32\javaw.exe [2010-05-05 22:11:04 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS.1\System32\java.exe [2010-05-05 22:10:45 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2010-05-05 22:08:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Sun [2010-05-04 17:27:00 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\speech [2010-05-04 17:26:48 | 000,000,000 | ---D | C] -- C:\Program Files\ivo [2010-05-03 19:21:18 | 004,017,536 | R--- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS.1\System32\drivers\alcxwdm.sys [2010-05-03 19:20:55 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek AC97 [2010-05-03 19:20:54 | 010,528,768 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS.1\System32\RTLCPL.exe [2010-05-03 19:20:51 | 018,804,736 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS.1\System32\alsndmgr.cpl [2010-05-03 19:20:51 | 000,577,536 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS.1\soundman.exe [2010-05-03 19:20:48 | 000,315,392 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS.1\alcupd.exe [2010-05-03 19:20:48 | 000,217,088 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS.1\Alcrmv.exe [2010-05-03 19:14:31 | 000,000,000 | R--D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\Expressivo Podcasts [2010-05-03 19:14:31 | 000,000,000 | R--D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\Expressivo Documents [2010-05-03 19:13:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\IVONA Player [2010-05-03 18:46:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\IVONA_INST [2010-05-02 22:24:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\.thumbnails [2010-05-01 16:51:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Google [2010-05-01 16:51:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Google [2010-05-01 16:51:02 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2010-04-29 15:00:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\.gimp-2.6 [2010-04-29 15:00:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\gegl-0.0 [2010-04-23 20:04:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Winamp [2010-04-23 19:56:03 | 000,129,520 | ---- | C] (Sonic Solutions) -- C:\WINDOWS.1\System32\pxafs.dll [2010-04-23 19:56:03 | 000,009,200 | ---- | C] (Sonic Solutions) -- C:\WINDOWS.1\System32\drivers\cdralw2k.sys [2010-04-23 19:56:03 | 000,009,072 | ---- | C] (Sonic Solutions) -- C:\WINDOWS.1\System32\drivers\cdr4_xp.sys [2010-04-22 14:14:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Identities [2010-04-22 14:14:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Identities [2010-04-19 20:38:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Adobe [2010-04-19 20:37:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Adobe [2010-04-19 20:36:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2010-04-17 19:45:53 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\ptpusb.dll [2010-04-17 19:45:43 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\ptpusd.dll [2010-04-11 18:58:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\OpenOffice.org [2010-04-11 18:43:00 | 000,000,000 | ---D | C] -- C:\Program Files\OpenOffice.org 3 [2010-04-10 18:29:49 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\appmgmt [2010-04-10 18:04:00 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio [2010-04-10 18:03:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Designer [2010-04-10 18:02:25 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\ShellNew [2010-04-10 17:59:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Microsoft Web Folders [2010-04-10 17:59:46 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2010-04-08 14:47:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\SonicStage [2010-04-08 14:42:41 | 000,027,255 | ---- | C] (Sony Corporation) -- C:\WINDOWS.1\System32\drivers\NWWMUSB.sys [2010-04-08 14:42:13 | 000,011,510 | ---- | C] (Sony Corporation) -- C:\WINDOWS.1\System32\drivers\VMCUSB.sys [2010-04-08 14:42:13 | 000,000,000 | ---D | C] -- C:\Program Files\Sony Corporation [2010-04-08 14:41:41 | 000,090,112 | ---- | C] (Sony Corporation) -- C:\WINDOWS.1\snymsico.dll [2010-04-08 14:41:41 | 000,038,951 | ---- | C] (Sony Corporation) -- C:\WINDOWS.1\System32\drivers\NETMDUSB.sys [2010-04-08 14:41:41 | 000,036,679 | ---- | C] (Sony Corporation) -- C:\WINDOWS.1\System32\drivers\NETMD052.sys [2010-04-08 14:41:41 | 000,036,232 | ---- | C] (Sony Corporation) -- C:\WINDOWS.1\System32\drivers\NETMD033.sys [2010-04-08 14:41:41 | 000,035,319 | ---- | C] (Sony Corporation) -- C:\WINDOWS.1\System32\drivers\NETMD031.sys [2010-04-08 14:40:58 | 000,770,048 | ---- | C] (Gracenote) -- C:\WINDOWS.1\System32\CDDBUISony.dll [2010-04-08 14:40:58 | 000,643,072 | ---- | C] (Gracenote, Inc.) -- C:\WINDOWS.1\System32\CDDBControlSony.dll [2010-04-08 14:40:58 | 000,585,728 | ---- | C] (Gracenote) -- C:\WINDOWS.1\System32\CddbMusicIDSony.dll [2010-04-08 14:40:58 | 000,073,728 | ---- | C] (Gracenote) -- C:\WINDOWS.1\System32\CddbLinkSony.dll [2010-04-08 14:40:57 | 001,858,032 | ---- | C] (Sonic Solutions) -- C:\WINDOWS.1\System32\pxsfs.dll [2010-04-08 14:40:57 | 000,670,192 | ---- | C] (Sonic Solutions) -- C:\WINDOWS.1\System32\px.dll [2010-04-08 14:40:57 | 000,551,408 | ---- | C] (Sonic Solutions) -- C:\WINDOWS.1\System32\pxdrv.dll [2010-04-08 14:40:57 | 000,436,720 | ---- | C] (Sonic Solutions) -- C:\WINDOWS.1\System32\pxwave.dll [2010-04-08 14:40:57 | 000,219,632 | ---- | C] (Sonic Solutions) -- C:\WINDOWS.1\System32\pxmas.dll [2010-04-08 14:40:57 | 000,151,552 | ---- | C] (Sonic Solutions) -- C:\WINDOWS.1\System32\pxwma.dll [2010-04-08 14:40:57 | 000,109,568 | ---- | C] (Sonic Solutions) -- C:\WINDOWS.1\System32\pxinsi64.exe [2010-04-08 14:40:57 | 000,108,544 | ---- | C] (Sonic Solutions) -- C:\WINDOWS.1\System32\pxcpyi64.exe [2010-04-08 14:40:57 | 000,096,752 | ---- | C] (Sonic Solutions) -- C:\WINDOWS.1\System32\vxblock.dll [2010-04-08 14:40:57 | 000,072,176 | ---- | C] (Sonic Solutions) -- C:\WINDOWS.1\System32\pxhpinst.exe [2010-04-08 14:40:57 | 000,066,544 | ---- | C] (Sonic Solutions) -- C:\WINDOWS.1\System32\pxcpya64.exe [2010-04-08 14:40:57 | 000,066,032 | ---- | C] (Sonic Solutions) -- C:\WINDOWS.1\System32\pxinsa64.exe [2010-04-08 14:39:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Sony Corporation [2010-04-08 14:38:39 | 000,000,000 | ---D | C] -- C:\Program Files\Sony [2010-04-08 14:37:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Sony Corporation [2010-04-08 14:37:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Sony Shared [2010-04-05 22:55:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\Pobieranie [2010-04-04 14:35:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Adobe [2010-04-02 09:30:19 | 000,000,000 | ---D | C] -- C:\temp [2010-04-01 20:58:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\Nowy folder [2010-04-01 20:53:33 | 000,000,000 | ---D | C] -- C:\Program Files\IrfanView [2010-04-01 16:05:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Gadu-Gadu [2010-04-01 15:49:41 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\pss [2010-04-01 15:49:27 | 000,000,000 | ---D | C] -- C:\Program Files\Soldier of Fortune II - Double Helix MP TEST [2010-04-01 15:48:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Gadu-Gadu [2010-04-01 15:48:09 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu [2010-04-01 14:41:25 | 000,000,000 | ---D | C] -- C:\Program Files\SpeedFan [2010-04-01 14:06:42 | 000,000,000 | ---D | C] -- C:\Program Files\Lavalys [2010-04-01 13:39:11 | 000,020,992 | ---- | C] (Realtek Semiconductor Corporation) -- C:\WINDOWS.1\System32\drivers\RTL8139.sys [2010-03-20 15:46:45 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\drivers\portcls.sys [2010-03-20 15:46:42 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\drivers\drmk.sys [2010-03-20 15:46:33 | 000,765,952 | ---- | C] (Sensaura Ltd) -- C:\WINDOWS.1\System\crlds3d.dll [2010-03-20 15:46:33 | 000,065,536 | ---- | C] (Sensaura Ltd) -- C:\WINDOWS.1\System32\Audio3D.dll [2010-03-20 15:46:33 | 000,065,536 | ---- | C] (Sensaura Ltd) -- C:\WINDOWS.1\System32\a3d.dll [2010-03-20 15:45:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\Drakensang [2010-03-17 21:44:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Mozilla [2010-03-17 21:44:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Mozilla [2010-03-17 21:43:46 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2010-03-17 21:30:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Macromedia [2010-03-17 20:57:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dokumenty\Moje wideo [2010-03-17 20:30:21 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\SysOp\IECompatCache [2010-03-16 16:36:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\AquaMark3 [2010-03-16 16:36:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\AquaMark3 [2010-03-16 16:35:31 | 000,000,000 | ---D | C] -- C:\Program Files\AquaMark3 [2010-03-16 16:22:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Ashampoo [2010-03-16 16:22:19 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\SysOp\PrivacIE [2010-03-16 16:22:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\ashampoo [2010-03-16 16:22:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\ashampoo [2010-03-16 16:21:33 | 000,000,000 | ---D | C] -- C:\Program Files\Ashampoo [2010-03-16 16:20:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\GameSpy [2010-03-16 16:20:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\ApplicationHistory [2010-03-16 15:55:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\PopCap Games [2010-03-16 15:36:11 | 000,000,000 | R-SD | C] -- C:\WINDOWS.1\assembly [2010-03-16 15:36:10 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\Microsoft.NET [2010-03-16 15:36:08 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\URTTemp [2010-03-16 15:34:53 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\LogFiles [2010-03-16 15:16:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\DAEMON Tools Lite [2010-03-16 15:16:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\DAEMON Tools Lite [2010-03-16 14:39:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\WinRAR [2010-03-16 14:30:35 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\XAudio2_6.dll [2010-03-16 14:30:35 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\XAPOFX1_4.dll [2010-03-16 14:30:34 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\XAudio2_5.dll [2010-03-16 14:30:34 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\xactengine3_6.dll [2010-03-16 14:30:34 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\X3DAudio1_7.dll [2010-03-16 14:30:33 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\D3DCompiler_42.dll [2010-03-16 14:30:33 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\xactengine3_5.dll [2010-03-16 14:30:32 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\d3dcsx_42.dll [2010-03-16 14:30:32 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\d3dx10_42.dll [2010-03-16 14:30:32 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\d3dx11_42.dll [2010-03-16 14:30:31 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\D3DX9_42.dll [2010-03-16 14:30:29 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\XAudio2_4.dll [2010-03-16 14:30:29 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\XAPOFX1_3.dll [2010-03-16 14:30:27 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\XAudio2_3.dll [2010-03-16 14:30:27 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\XAPOFX1_2.dll [2010-03-16 14:30:26 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\XAudio2_2.dll [2010-03-16 14:30:26 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\XAPOFX1_1.dll [2010-03-16 14:30:24 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\XAudio2_1.dll [2010-03-16 14:30:24 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\XAPOFX1_0.dll [2010-03-16 14:30:21 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\XAudio2_0.dll [2010-03-16 14:29:55 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\DirectX [2010-03-16 14:29:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\Logs [2010-03-15 23:23:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Media Player Classic [2010-03-15 23:22:45 | 000,185,920 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS.1\System32\rmoc3260.dll [2010-03-15 23:22:45 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS.1\System32\pndx5016.dll [2010-03-15 23:22:45 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS.1\System32\pndx5032.dll [2010-03-15 23:22:44 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS.1\System32\pncrt.dll [2010-03-15 23:22:41 | 000,839,680 | ---- | C] (http://www.mp3dev.org/) -- C:\WINDOWS.1\System32\lameACM.acm [2010-03-15 23:22:41 | 000,118,784 | ---- | C] (fccHandler) -- C:\WINDOWS.1\System32\ac3acm.acm [2010-03-15 23:22:39 | 000,217,088 | ---- | C] (www.helixcommunity.org) -- C:\WINDOWS.1\System32\yv12vfw.dll [2010-03-15 23:22:37 | 000,684,032 | ---- | C] (DivX, Inc.) -- C:\WINDOWS.1\System32\divx.dll [2010-03-15 23:22:37 | 000,086,016 | ---- | C] (DivX, Inc.) -- C:\WINDOWS.1\System32\dpl100.dll [2010-03-15 23:22:33 | 000,499,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\msvcp71.dll [2010-03-15 23:22:33 | 000,348,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\msvcr71.dll [2010-03-15 23:22:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Real [2010-03-15 23:22:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Real [2010-03-15 23:22:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Real [2010-03-15 19:10:03 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\ipsink.ax [2010-03-15 19:09:20 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\vidcap.ax [2010-03-15 19:09:19 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\vfwwdm32.dll [2010-03-15 19:09:18 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\kswdmcap.ax [2010-03-15 19:09:18 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\kstvtune.ax [2010-03-15 19:09:18 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\ksxbar.ax [2010-03-15 19:09:18 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\ksuser.dll [2010-03-15 19:09:16 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\ksproxy.ax [2010-03-15 19:09:15 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\dshowext.ax [2010-03-15 19:08:35 | 002,940,992 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS.1\System32\ati3duag.dll [2010-03-15 19:08:35 | 002,782,208 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS.1\System32\drivers\ati2mtag.sys [2010-03-15 19:08:35 | 001,640,192 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS.1\System32\ativvaxx.dll [2010-03-15 19:08:35 | 000,870,784 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS.1\System32\ati3d1ag.dll [2010-03-15 19:08:35 | 000,499,712 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS.1\System32\ati2cqag.dll [2010-03-15 19:08:35 | 000,269,312 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS.1\System32\ati2dvag.dll [2010-03-15 19:08:03 | 000,010,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\drivers\gameenum.sys [2010-03-15 19:07:13 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\usbui.dll [2010-03-15 19:05:53 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dokumenty\Moja muzyka [2010-03-15 19:05:24 | 000,000,000 | -HSD | C] -- C:\WINDOWS.1\Installer [2010-03-15 19:05:17 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\kbdur.dll [2010-03-15 19:05:17 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\kbdru1.dll [2010-03-15 19:05:17 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\kbdru.dll [2010-03-15 19:05:17 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\kbdkyr.dll [2010-03-15 19:05:12 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\kbdsl1.dll [2010-03-15 19:05:12 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\kbdsl.dll [2010-03-15 19:05:12 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\kbdcr.dll [2010-03-15 19:05:11 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS.1\System32\dgrpsetu.dll [2010-03-15 19:05:11 | 000,137,728 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS.1\System32\EqnClass.Dll [2010-03-15 19:05:11 | 000,085,532 | ---- | C] (Digi International) -- C:\WINDOWS.1\System32\dgsetup.dll [2010-03-15 19:05:11 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\irclass.dll [2010-03-15 19:05:11 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS.1\System32\spxcoins.dll [2010-03-15 19:05:10 | 000,127,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System\MSVIDEO.DLL [2010-03-15 19:05:10 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System\OLECLI.DLL [2010-03-15 19:05:10 | 000,073,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System\MCIAVI.DRV [2010-03-15 19:05:10 | 000,033,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System\COMMDLG.DLL [2010-03-15 19:05:10 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System\MCIWAVE.DRV [2010-03-15 19:05:10 | 000,025,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System\MCISEQ.DRV [2010-03-15 19:05:10 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System\OLESVR.DLL [2010-03-15 19:05:10 | 000,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System\TAPI.DLL [2010-03-15 19:05:10 | 000,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System\WFWNET.DRV [2010-03-15 19:05:10 | 000,009,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System\LZEXPAND.DLL [2010-03-15 19:05:10 | 000,009,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System\VER.DLL [2010-03-15 19:05:10 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System\SHELL.DLL [2010-03-15 19:05:10 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System\TIMER.DRV [2010-03-15 19:05:10 | 000,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System\SYSTEM.DRV [2010-03-15 19:05:10 | 000,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System\VGA.DRV [2010-03-15 19:05:10 | 000,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System\MOUSE.DRV [2010-03-15 19:05:10 | 000,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System\KEYBOARD.DRV [2010-03-15 19:05:10 | 000,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System\SOUND.DRV [2010-03-15 19:05:10 | 000,001,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System\MMTASK.TSK [2010-03-15 19:05:09 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System\WINSPOOL.DRV [2010-03-15 19:05:09 | 000,109,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System\AVIFILE.DLL [2010-03-15 19:05:09 | 000,070,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System\AVICAP.DLL [2010-03-15 19:05:09 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\batt.dll [2010-03-15 19:05:09 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\TASKMAN.EXE [2010-03-15 19:05:08 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\storprop.dll [2010-03-15 19:05:08 | 000,069,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System\MMSYSTEM.DLL [2010-03-15 19:04:52 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Menu Start [2010-03-15 19:04:52 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dokumenty [2010-03-15 19:04:52 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Szablony [2010-03-15 19:04:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Ulubione [2010-03-15 19:04:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit [2010-03-15 19:04:37 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\CatRoot2 [2010-03-15 19:04:37 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\CatRoot [2010-03-15 19:04:31 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Microsoft [2010-03-15 19:04:31 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji [2010-03-15 18:55:50 | 000,000,000 | --SD | C] -- C:\WINDOWS.1\Offline Web Pages [2010-03-15 18:55:50 | 000,000,000 | --SD | C] -- C:\WINDOWS.1\Downloaded Program Files [2010-03-15 18:55:50 | 000,000,000 | R-SD | C] -- C:\WINDOWS.1\Fonts [2010-03-15 18:55:50 | 000,000,000 | R--D | C] -- C:\WINDOWS.1\Web [2010-03-15 18:55:50 | 000,000,000 | -H-D | C] -- C:\WINDOWS.1\inf [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\WinSxS [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\wins [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1 [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\WBEM [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\wbem [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\usmt [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\drivers\UMDF [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\twain_32 [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\Temp [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\system32 [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\system [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\spool [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\ShellExt [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\Setup [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\security [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\Resources [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\repair [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\ras [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\Provisioning [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\PreInstall [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\pl-pl [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\pl [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\PeerNet [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\PCHealth [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\npp [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\NLDRV [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\Network Diagnostic [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\mui [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\mui [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\msapps [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\msagent [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\Media [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\L2Schemas [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\java [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\inetsrv [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\IME [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\ime [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\icsxml [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\ias [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\Help [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\export [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\drivers\etc [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\ehome [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\drivers [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\Driver Cache [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\drivers\disdn [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\dhcp [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\Debug [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\Cursors [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\Connection Wizard [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\config [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\Config [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\AppPatch [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\addins [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\3com_dmi [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\3076 [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\2052 [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\1054 [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\1045 [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\1042 [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\1041 [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\1037 [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\1033 [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\1031 [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\1028 [2010-03-15 18:55:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\1025 [2010-03-15 18:47:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Test Drive Unlimited [2010-03-15 18:34:36 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\ReinstallBackups [2010-03-15 18:31:28 | 000,000,000 | ---D | C] -- C:\WINDOWS.0 [2010-03-15 18:28:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\Test Drive Unlimited [2010-03-15 18:28:02 | 000,000,000 | R--D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\Moje wideo [2010-03-15 18:28:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\My Games [2010-03-15 18:19:33 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\SysOp\IETldCache [2010-03-15 18:19:32 | 000,000,000 | R--D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\Moje obrazy [2010-03-15 18:19:32 | 000,000,000 | R--D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\Moja muzyka [2010-03-15 18:19:10 | 000,000,000 | --SD | C] -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-03-15 18:19:10 | 000,000,000 | --SD | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Microsoft [2010-03-15 18:19:10 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\SysOp\SendTo [2010-03-15 18:19:10 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji [2010-03-15 18:19:10 | 000,000,000 | R--D | C] -- C:\Documents and Settings\SysOp\Ulubione [2010-03-15 18:19:10 | 000,000,000 | R--D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty [2010-03-15 18:19:10 | 000,000,000 | R--D | C] -- C:\Documents and Settings\SysOp\Menu Start [2010-03-15 18:19:10 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\SysOp\Cookies [2010-03-15 18:19:10 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\SysOp\Ustawienia lokalne [2010-03-15 18:19:10 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\SysOp\Szablony [2010-03-15 18:19:10 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\SysOp\PrintHood [2010-03-15 18:19:10 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\SysOp\NetHood [2010-03-15 18:19:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Pulpit [2010-03-15 18:19:09 | 000,000,000 | -HSD | C] -- C:\WINDOWS.1\CSC [2010-03-15 18:19:02 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\SoftwareDistribution [2010-03-15 18:18:50 | 000,000,000 | --SD | C] -- C:\WINDOWS.1\System32\Microsoft [2010-03-15 18:18:50 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\Prefetch [2010-03-15 18:17:08 | 000,000,000 | ---D | C] -- C:\Program Files\WinDT-TransBar [2010-03-15 18:16:04 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\mapi32.dll [2010-03-15 18:16:03 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\dllcache [2010-03-15 18:15:28 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users.WINDOWS.1\DRM [2010-03-15 18:15:06 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dokumenty\Moje obrazy [2010-03-15 18:14:33 | 000,140,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\acctres.dll [2010-03-15 18:14:31 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\icfgnt5.dll [2010-03-15 18:14:31 | 000,000,000 | --SD | C] -- C:\WINDOWS.1\Tasks [2010-03-15 18:14:25 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\Macromed [2010-03-15 18:14:22 | 000,202,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\wuauclt1.exe [2010-03-15 18:14:22 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\wuaueng1.dll [2010-03-15 18:14:22 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\wucltui.dll [2010-03-15 18:14:22 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\wups.dll [2010-03-15 18:14:21 | 000,394,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\wuapi.dll [2010-03-15 18:14:21 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\qmgrprxy.dll [2010-03-15 18:14:21 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\bitsprx2.dll [2010-03-15 18:14:21 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\bitsprx4.dll [2010-03-15 18:14:21 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\bitsprx3.dll [2010-03-15 18:14:20 | 000,287,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\srrstr.dll [2010-03-15 18:14:20 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\fltMc.exe [2010-03-15 18:14:20 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\Restore [2010-03-15 18:14:19 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\msoeacct.dll [2010-03-15 18:14:19 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\msoert2.dll [2010-03-15 18:14:18 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\inetres.dll [2010-03-15 18:14:15 | 000,421,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\inetcfg.dll [2010-03-15 18:14:15 | 000,159,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\isign32.dll [2010-03-15 18:14:15 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\icwdial.dll [2010-03-15 18:14:15 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\icwphbk.dll [2010-03-15 18:14:15 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\mstinit.exe [2010-03-15 18:13:09 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\Registration [2010-03-15 18:12:42 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2 [2010-03-15 18:12:41 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\sndvol32.exe [2010-03-15 18:12:41 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\write.exe [2010-03-15 18:12:40 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\getuname.dll [2010-03-15 18:12:40 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\charmap.exe [2010-03-15 18:12:39 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\calc.exe [2010-03-15 18:12:39 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\regini.exe [2010-03-15 18:12:39 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\qwinsta.exe [2010-03-15 18:12:39 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\msg.exe [2010-03-15 18:12:39 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\tsshutdn.exe [2010-03-15 18:12:39 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\qappsrv.exe [2010-03-15 18:12:39 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\tskill.exe [2010-03-15 18:12:39 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\rwinsta.exe [2010-03-15 18:12:39 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\logoff.exe [2010-03-15 18:12:39 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\tsdiscon.exe [2010-03-15 18:12:39 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\tscon.exe [2010-03-15 18:12:39 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\shadow.exe [2010-03-15 18:12:39 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\reset.exe [2010-03-15 18:12:39 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\rdpcfgex.dll [2010-03-15 18:12:38 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\cdmodem.dll [2010-03-15 18:12:33 | 000,387,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\mspaint.exe [2010-03-15 18:12:33 | 000,268,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\mplay32.exe [2010-03-15 18:12:33 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\accwiz.exe [2010-03-15 18:12:33 | 000,103,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\clipbrd.exe [2010-03-15 18:12:33 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\access.cpl [2010-03-15 18:12:32 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\rhttpaa.dll [2010-03-15 18:12:32 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\aaclient.dll [2010-03-15 18:12:32 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\tscfgwmi.dll [2010-03-15 18:12:32 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\tsgqec.dll [2010-03-15 18:12:31 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\rdchost.dll [2010-03-15 18:12:31 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\rdshost.exe [2010-03-15 18:12:31 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\rdsaddin.exe [2010-03-15 18:12:30 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\msdtcprx.dll [2010-03-15 18:12:30 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\msdtcuiu.dll [2010-03-15 18:12:30 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\mtxoci.dll [2010-03-15 18:12:30 | 000,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\rdpwsx.dll [2010-03-15 18:12:30 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\rdpclip.exe [2010-03-15 18:12:30 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\cfgbkend.dll [2010-03-15 18:12:30 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\qprocess.exe [2010-03-15 18:12:30 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\rdpsnd.dll [2010-03-15 18:12:30 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\icaapi.dll [2010-03-15 18:12:30 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\MsDtc [2010-03-15 18:12:29 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\msdtctm.dll [2010-03-15 18:12:29 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\msdtclog.dll [2010-03-15 18:12:29 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\xolehlp.dll [2010-03-15 18:12:29 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\dcomcnfg.exe [2010-03-15 18:12:28 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\clbcatex.dll [2010-03-15 18:12:28 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\comrepl.dll [2010-03-15 18:12:28 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\catsrvps.dll [2010-03-15 18:12:28 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\colbact.dll [2010-03-15 18:12:28 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\stclient.dll [2010-03-15 18:12:28 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\mtxlegih.dll [2010-03-15 18:12:28 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\mtxdm.dll [2010-03-15 18:12:28 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\comaddin.dll [2010-03-15 18:12:28 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\mtxex.dll [2010-03-15 18:12:28 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\Com [2010-03-15 18:12:27 | 001,267,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\comsvcs.dll [2010-03-15 18:12:27 | 000,625,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\catsrvut.dll [2010-03-15 18:12:27 | 000,539,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\comuid.dll [2010-03-15 18:12:27 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\catsrv.dll [2010-03-15 18:12:27 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\comsnap.dll [2010-03-15 18:12:22 | 000,306,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\cmprops.dll [2010-03-15 18:12:22 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\servdeps.dll [2010-03-15 18:12:22 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\licwmi.dll [2010-03-15 18:12:22 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\mmfutil.dll [2010-03-15 15:38:40 | 000,000,000 | ---D | C] -- C:\Program Files\PowerQuest [2010-03-14 19:45:43 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SNP2UVC [2010-03-13 21:09:34 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek Sound Manager [2010-03-13 21:09:32 | 000,000,000 | ---D | C] -- C:\Program Files\AvRack [2010-03-12 16:20:26 | 000,000,000 | ---D | C] -- C:\Program Files\Counter-Strike 1.6 [2010-03-11 22:50:46 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DirectX [2010-03-11 22:31:03 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2010-03-11 22:30:02 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2010-03-11 22:05:29 | 000,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack [2010-03-11 21:44:58 | 000,006,144 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS.1\System32\atiicdxx.sys [2010-03-11 21:44:57 | 000,122,880 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\Oemdspif.dll [2010-03-11 21:44:56 | 002,060,288 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atipuixx.dll [2010-03-11 21:44:56 | 000,274,432 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atipdsxx.dll [2010-03-11 21:44:56 | 000,180,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS.1\System32\atiok3x2.dll [2010-03-11 21:44:56 | 000,147,456 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atipdlxx.dll [2010-03-11 21:44:56 | 000,114,688 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atippaxx.dll [2010-03-11 21:44:56 | 000,024,064 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\ativcoxx.dll [2010-03-11 21:44:56 | 000,017,408 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS.1\System32\atitvo32.dll [2010-03-11 21:44:54 | 005,435,392 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS.1\System32\atioglxx.dll [2010-03-11 21:44:53 | 009,535,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS.1\System32\atioglx2.dll [2010-03-11 21:44:53 | 000,385,024 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS.1\System32\atikvmag.dll [2010-03-11 21:44:53 | 000,380,928 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS.1\System32\atiicdxx.dll [2010-03-11 21:44:53 | 000,368,640 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\WINDOWS.1\System32\ATIDEMGX.dll [2010-03-11 21:44:53 | 000,348,160 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS.1\System32\aticds10.dll [2010-03-11 21:44:53 | 000,307,200 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS.1\System32\atiiiexx.dll [2010-03-11 21:44:53 | 000,122,880 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS.1\System32\ati2evxx.dll [2010-03-11 21:44:53 | 000,053,248 | ---- | C] ( ATI Technologies Inc.) -- C:\WINDOWS.1\System32\ATIDDC.DLL [2010-03-11 21:44:53 | 000,049,152 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS.1\System32\drivers\ati2erec.dll [2010-03-11 21:44:53 | 000,043,520 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\ati2edxx.dll [2010-03-11 21:44:52 | 001,830,912 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atiadaxx.exe [2010-03-11 21:44:52 | 000,344,064 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atiptaxx.exe [2010-03-11 21:44:52 | 000,139,264 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atiprbxx.exe [2010-03-11 21:44:52 | 000,061,440 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atiphexx.exe [2010-03-11 21:44:52 | 000,026,112 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\Ati2mdxx.exe [2010-03-11 21:44:50 | 000,163,840 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atrpuixx.ell [2010-03-11 21:44:50 | 000,159,744 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atrpuixx.ita [2010-03-11 21:44:50 | 000,159,744 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atrpuixx.fra [2010-03-11 21:44:50 | 000,159,744 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atrpuixx.esp [2010-03-11 21:44:50 | 000,159,744 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atrpuixx.deu [2010-03-11 21:44:50 | 000,155,648 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atrpuixx.rus [2010-03-11 21:44:50 | 000,155,648 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atrpuixx.ptb [2010-03-11 21:44:50 | 000,155,648 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atrpuixx.plk [2010-03-11 21:44:50 | 000,155,648 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atrpuixx.nld [2010-03-11 21:44:50 | 000,155,648 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atrpuixx.hun [2010-03-11 21:44:50 | 000,151,552 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atrpuixx.trk [2010-03-11 21:44:50 | 000,151,552 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atrpuixx.tha [2010-03-11 21:44:50 | 000,151,552 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atrpuixx.sve [2010-03-11 21:44:50 | 000,151,552 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atrpuixx.nor [2010-03-11 21:44:50 | 000,151,552 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atrpuixx.fin [2010-03-11 21:44:50 | 000,151,552 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atrpuixx.dan [2010-03-11 21:44:50 | 000,151,552 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atrpuixx.csy [2010-03-11 21:44:50 | 000,147,456 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atrpuixx.enu [2010-03-11 21:44:50 | 000,147,456 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atrpuixx.ara [2010-03-11 21:44:50 | 000,143,360 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atrpuixx.heb [2010-03-11 21:44:50 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\DIRECTX.CPL [2010-03-11 21:44:50 | 000,118,784 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atrpuixx.jpn [2010-03-11 21:44:50 | 000,114,688 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atrpuixx.kor [2010-03-11 21:44:50 | 000,106,496 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atrpuixx.cht [2010-03-11 21:44:50 | 000,106,496 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS.1\System32\atrpuixx.chs [2010-03-11 21:44:50 | 000,073,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS.1\System32\atricdxx.enu [2010-03-11 21:44:50 | 000,073,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS.1\System32\atricdxx.dft [2010-03-11 21:31:30 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies [2010-03-11 21:30:52 | 000,000,000 | ---D | C] -- C:\ATI [2010-03-11 21:22:37 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC [2010-03-11 21:22:33 | 000,000,000 | R--D | C] -- C:\Program Files [2010-03-11 21:22:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines [2010-03-11 21:22:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared [2010-03-11 21:22:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files [2010-03-11 21:21:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings [2010-03-11 21:17:33 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2010-03-11 21:13:16 | 000,000,000 | ---D | C] -- C:\WINDOWS [2010-03-11 21:04:32 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite [2010-03-11 20:48:22 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2010-03-11 20:47:49 | 000,000,000 | ---D | C] -- C:\Program Files\Radeon Omega Drivers [2010-03-11 20:46:12 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2010-03-11 20:39:00 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information [2010-03-11 20:36:09 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [2010-03-11 20:36:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-03-11 20:36:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-03-11 20:36:01 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [2010-03-11 20:32:50 | 000,000,000 | ---D | C] -- C:\Program Files\xerox [2010-03-11 20:32:50 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage [2010-03-11 20:30:49 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate [2010-03-11 20:30:45 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online [2010-03-11 20:29:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services [2010-03-11 20:29:51 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap [2010-03-11 20:29:37 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker [2010-03-11 20:29:24 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting [2010-03-11 20:29:20 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express [2010-03-11 20:29:13 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System [2010-03-11 20:29:12 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer [2010-03-11 20:28:31 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications [2010-03-11 20:28:15 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player [2010-03-11 20:28:09 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger [2010-03-11 20:28:04 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone [2010-03-11 20:27:37 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT [color=#E56717]========== Files - Modified Within 90 Days ==========[/color] [2010-05-26 22:29:03 | 000,000,006 | -H-- | M] () -- C:\WINDOWS.1\tasks\SA.DAT [2010-05-26 22:28:48 | 000,002,048 | --S- | M] () -- C:\WINDOWS.1\bootstat.dat [2010-05-26 22:28:42 | 1073,270,784 | -HS- | M] () -- C:\hiberfil.sys [2010-05-26 22:27:31 | 004,194,304 | ---- | M] () -- C:\Documents and Settings\SysOp\NTUSER.DAT [2010-05-26 22:27:31 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\SysOp\ntuser.ini [2010-05-26 22:27:28 | 004,846,794 | -H-- | M] () -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010-05-26 22:25:36 | 000,000,466 | -H-- | M] () -- C:\WINDOWS.1\tasks\User_Feed_Synchronization-{40CF33F7-F0DF-4BA2-BFDB-7923F9138C46}.job [2010-05-26 20:47:04 | 000,000,069 | ---- | M] () -- C:\WINDOWS.1\NeroDigital.ini [2010-05-26 20:46:50 | 000,011,776 | ---- | M] () -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-05-26 20:43:25 | 000,000,349 | RHS- | M] () -- C:\boot.ini [2010-05-26 18:53:50 | 060,395,639 | ---- | M] () -- C:\WINDOWS.1\System32\drivers\Avg\incavi.avm [2010-05-26 17:54:46 | 000,082,645 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\asdf.jpg [2010-05-26 17:53:58 | 000,082,677 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\Obraz 102.jpg [2010-05-26 17:49:06 | 001,102,554 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\222.bmp [2010-05-26 13:05:05 | 000,001,001 | ---- | M] () -- C:\WINDOWS.1\win.ini [2010-05-26 13:05:05 | 000,000,227 | ---- | M] () -- C:\WINDOWS.1\system.ini [2010-05-25 22:57:25 | 000,142,495 | ---- | M] () -- C:\WINDOWS.1\System32\drivers\Avg\microavi.avg [2010-05-25 22:46:50 | 000,012,464 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS.1\System32\avgrsstx.dll [2010-05-25 22:46:50 | 000,001,507 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\AVG Free 9.0.lnk [2010-05-25 22:46:48 | 000,360,584 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS.1\System32\drivers\avgtdix.sys [2010-05-25 22:46:40 | 000,333,192 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS.1\System32\drivers\avgldx86.sys [2010-05-25 22:46:39 | 000,113,461 | ---- | M] () -- C:\WINDOWS.1\System32\drivers\Avg\iavichjw.avm [2010-05-25 22:46:39 | 000,028,424 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS.1\System32\drivers\avgmfx86.sys [2010-05-25 22:46:37 | 006,061,540 | ---- | M] () -- C:\WINDOWS.1\System32\drivers\Avg\avi7.avg [2010-05-25 22:46:37 | 000,492,629 | ---- | M] () -- C:\WINDOWS.1\System32\drivers\Avg\miniavi.avg [2010-05-25 20:54:29 | 000,020,816 | ---- | M] () -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2010-05-25 20:53:53 | 000,139,648 | ---- | M] () -- C:\WINDOWS.1\System32\FNTCACHE.DAT [2010-05-25 20:48:34 | 000,085,182 | ---- | M] () -- C:\WINDOWS.1\Icon_1.ico [2010-05-25 16:16:56 | 000,000,802 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\Skrót do fairplay.exe.lnk [2010-05-23 21:33:23 | 000,235,430 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\ass.bmp [2010-05-23 21:29:33 | 000,029,788 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\aaa.jpg [2010-05-22 22:41:47 | 000,497,766 | ---- | M] () -- C:\WINDOWS.1\System32\perfh015.dat [2010-05-22 22:41:47 | 000,439,114 | ---- | M] () -- C:\WINDOWS.1\System32\perfh009.dat [2010-05-22 22:41:47 | 000,087,352 | ---- | M] () -- C:\WINDOWS.1\System32\perfc015.dat [2010-05-22 22:41:47 | 000,070,038 | ---- | M] () -- C:\WINDOWS.1\System32\perfc009.dat [2010-05-22 22:41:46 | 001,102,138 | ---- | M] () -- C:\WINDOWS.1\System32\PerfStringBackup.INI [2010-05-22 18:39:45 | 000,001,152 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\Skrót do mohpa.exe.lnk [2010-05-22 15:17:46 | 000,000,151 | ---- | M] () -- C:\WINDOWS.1\PhotoSnapViewer.INI [2010-05-22 15:06:27 | 001,959,354 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Obraz 112.bmp [2010-05-22 15:05:25 | 001,959,354 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Obraz 108.bmp [2010-05-22 15:04:58 | 001,959,354 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Obraz 107.bmp [2010-05-22 15:04:49 | 001,959,354 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Obraz 109.bmp [2010-05-22 14:58:57 | 000,884,154 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\spod.bmp [2010-05-22 14:52:33 | 000,004,076 | ---- | M] () -- C:\Documents and Settings\SysOp\.recently-used.xbel [2010-05-22 14:43:07 | 000,860,070 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\jjj.bmp [2010-05-22 14:42:31 | 000,000,602 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\IrfanView Thumbnails.lnk [2010-05-22 14:42:31 | 000,000,520 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\IrfanView.lnk [2010-05-22 11:12:34 | 000,025,088 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\CV.doc oryginał.doc [2010-05-20 19:06:11 | 000,000,636 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\GIMP 2.lnk [2010-05-19 21:10:31 | 000,000,742 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Generatorek 3 dla Windows.lnk [2010-05-16 21:20:16 | 000,091,531 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\wwww.ods [2010-05-16 11:53:08 | 000,000,509 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\BitComet.lnk [2010-05-15 20:38:46 | 000,000,967 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\OpenOffice.org 3.2.lnk [2010-05-12 16:25:19 | 000,000,509 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\SpeedFan.lnk [2010-05-12 16:25:18 | 000,000,045 | ---- | M] () -- C:\WINDOWS.1\System32\initdebug.nfo [2010-05-09 15:37:31 | 000,020,480 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\plan ramowy.doc [2010-05-08 21:53:01 | 000,098,304 | ---- | M] (Sony DADC Austria AG.) -- C:\WINDOWS.1\System32\CmdLineExt.dll [2010-05-08 21:52:38 | 000,000,566 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\Pro Evolution Soccer 6.5.lnk [2010-05-08 19:06:10 | 000,002,385 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Nero StartSmart.lnk [2010-05-08 19:06:10 | 000,002,305 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Nero Home.lnk [2010-05-07 23:30:02 | 003,407,872 | -H-- | M] () -- C:\Documents and Settings\SysOp\NTUSER.DAT.bak_jv16pt [2010-05-07 23:23:47 | 000,000,082 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\Dokonaj zakupu jv16 PowerTools.url [2010-05-07 23:23:22 | 000,000,023 | -HS- | M] () -- C:\WINDOWS.1\System32\fcaafaeebda7.dat [2010-05-07 23:23:22 | 000,000,023 | ---- | M] () -- C:\WINDOWS.1\System32\cbed.xml [2010-05-07 22:27:14 | 000,025,992 | ---- | M] (Sysinternals - www.sysinternals.com) -- C:\WINDOWS.1\System32\pgdfgsvc.exe [2010-05-07 20:24:41 | 000,012,439 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\bmSUgEXK.htm.part [2010-05-06 16:17:46 | 000,025,088 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\CV.doc [2010-05-05 22:10:50 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS.1\System32\deployJava1.dll [2010-05-05 22:10:50 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS.1\System32\javaws.exe [2010-05-05 22:10:50 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS.1\System32\javaw.exe [2010-05-05 22:10:50 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS.1\System32\java.exe [2010-05-05 22:10:50 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS.1\System32\javacpl.cpl [2010-05-03 19:21:06 | 000,001,519 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\AvRack.lnk [2010-05-01 21:50:43 | 000,000,169 | ---- | M] () -- C:\WINDOWS.1\RtlRack.ini [2010-05-01 14:00:00 | 000,000,025 | ---- | M] () -- C:\WINDOWS.1\popcinfot.dat [2010-04-23 20:05:09 | 000,000,481 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Winamp.lnk [2010-04-22 19:16:11 | 000,000,779 | ---- | M] () -- C:\WINDOWS.1\System32\drivers\etc\hosts [2010-04-19 22:24:08 | 000,047,616 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\matura.doc [2010-04-19 20:37:10 | 000,001,391 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Adobe Reader 9.lnk [2010-04-19 19:31:49 | 001,660,416 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\wakacje.ppt [2010-04-10 18:29:25 | 000,000,037 | ---- | M] () -- C:\WINDOWS.1\vbaddin.ini [2010-04-10 18:27:40 | 000,025,088 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Motyw cierpnienia w literaturze.doc [2010-04-10 18:05:23 | 000,000,433 | ---- | M] () -- C:\WINDOWS.1\ODBC.INI [2010-04-07 09:38:49 | 000,001,662 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\biobliografia2.rtf [2010-04-06 19:44:47 | 001,157,552 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\ustny_j_polski_popr.pdf [2010-04-05 18:57:18 | 000,001,602 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Mozilla Firefox.lnk [2010-04-05 16:39:05 | 000,002,254 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Dokument.rtf [2010-04-01 23:07:43 | 000,000,084 | ---- | M] () -- C:\WINDOWS.1\winamp.ini [2010-04-01 20:56:50 | 000,047,436 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2696.JPG [2010-04-01 20:56:44 | 000,048,485 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2699.JPG [2010-04-01 20:56:36 | 000,031,692 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2702.JPG [2010-04-01 20:56:28 | 000,051,806 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2703.JPG [2010-04-01 20:56:12 | 000,072,877 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2706.jpg [2010-04-01 15:49:31 | 000,000,879 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\sof.lnk [2010-04-01 15:48:14 | 000,000,653 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\Gadu-Gadu.lnk [2010-04-01 14:06:43 | 000,000,767 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\EVEREST Home Edition.lnk [2010-04-01 13:38:34 | 000,002,184 | ---- | M] () -- C:\WINDOWS.1\System32\wpa.dbl [2010-03-17 21:44:22 | 000,000,000 | ---- | M] () -- C:\WINDOWS.1\nsreg.dat [2010-03-16 16:35:52 | 000,000,677 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\AquaMark3.lnk [2010-03-16 16:22:01 | 000,000,836 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Ashampoo Burning Studio 9.lnk [2010-03-16 16:20:11 | 000,000,130 | ---- | M] () -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\fusioncache.dat [2010-03-16 15:35:16 | 000,022,328 | ---- | M] () -- C:\Documents and Settings\SysOp\Dane aplikacji\PnkBstrK.sys [2010-03-16 15:16:38 | 000,691,696 | ---- | M] () -- C:\WINDOWS.1\System32\drivers\sptd.sys [2010-03-16 15:16:38 | 000,001,613 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\DAEMON Tools Lite.lnk [2010-03-15 19:05:29 | 000,004,452 | ---- | M] () -- C:\WINDOWS.1\System32\pid.PNF [2010-03-15 18:40:46 | 000,001,987 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\ATI Tray Tools.lnk [2010-03-15 18:40:42 | 000,001,510 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\ATI 3D Control Panel.lnk [2010-03-15 18:17:21 | 000,001,179 | ---- | M] () -- C:\WINDOWS.1\System32\$winnt$.inf [2010-03-15 18:16:38 | 000,002,596 | ---- | M] () -- C:\WINDOWS.1\System32\CONFIG.NT [2010-03-15 18:16:38 | 000,000,000 | ---- | M] () -- C:\WINDOWS.1\control.ini [2010-03-15 18:16:30 | 000,023,392 | ---- | M] () -- C:\WINDOWS.1\System32\nscompat.tlb [2010-03-15 18:16:30 | 000,016,832 | ---- | M] () -- C:\WINDOWS.1\System32\amcompat.tlb [2010-03-15 18:16:28 | 000,316,640 | ---- | M] () -- C:\WINDOWS.1\WMSysPr9.prx [2010-03-15 18:16:05 | 000,004,381 | ---- | M] () -- C:\WINDOWS.1\ODBCINST.INI [2010-03-15 18:15:12 | 000,000,488 | RH-- | M] () -- C:\WINDOWS.1\System32\WindowsLogon.manifest [2010-03-15 18:15:12 | 000,000,488 | RH-- | M] () -- C:\WINDOWS.1\System32\logonui.exe.manifest [2010-03-15 18:15:06 | 000,000,749 | RH-- | M] () -- C:\WINDOWS.1\System32\wuaucpl.cpl.manifest [2010-03-15 18:15:06 | 000,000,749 | RH-- | M] () -- C:\WINDOWS.1\WindowsShell.Manifest [2010-03-15 18:15:06 | 000,000,749 | RH-- | M] () -- C:\WINDOWS.1\System32\sapi.cpl.manifest [2010-03-15 18:15:06 | 000,000,749 | RH-- | M] () -- C:\WINDOWS.1\System32\nwc.cpl.manifest [2010-03-15 18:15:06 | 000,000,749 | RH-- | M] () -- C:\WINDOWS.1\System32\ncpa.cpl.manifest [2010-03-15 18:15:06 | 000,000,749 | RH-- | M] () -- C:\WINDOWS.1\System32\cdplayer.exe.manifest [2010-03-15 18:13:28 | 000,021,856 | ---- | M] () -- C:\WINDOWS.1\System32\emptyregdb.dat [2010-03-15 18:13:15 | 000,000,036 | ---- | M] () -- C:\WINDOWS.1\vb.ini [2010-03-13 21:08:40 | 000,000,007 | ---- | M] () -- C:\NOTACER.ID [2010-03-11 20:32:24 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2010-03-11 20:32:24 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-03-11 20:32:24 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-03-11 20:32:24 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-05-26 17:54:46 | 000,082,645 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\asdf.jpg [2010-05-26 17:49:06 | 001,102,554 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\222.bmp [2010-05-25 22:46:50 | 000,001,507 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\AVG Free 9.0.lnk [2010-05-25 22:46:39 | 000,113,461 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\Avg\iavichjw.avm [2010-05-25 22:46:37 | 060,395,639 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\Avg\incavi.avm [2010-05-25 22:46:37 | 006,061,540 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\Avg\avi7.avg [2010-05-25 22:46:37 | 000,492,629 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\Avg\miniavi.avg [2010-05-25 22:46:37 | 000,142,495 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\Avg\microavi.avg [2010-05-25 20:52:17 | 000,146,412 | ---- | C] () -- C:\WINDOWS.1\System32\vilaunch.exe [2010-05-25 20:48:34 | 000,085,182 | ---- | C] () -- C:\WINDOWS.1\Icon_1.ico [2010-05-25 20:48:16 | 000,111,104 | ---- | C] () -- C:\WINDOWS.1\System32\Uharc.exe [2010-05-25 20:48:16 | 000,069,632 | ---- | C] () -- C:\WINDOWS.1\System32\moveex.exe [2010-05-25 20:48:16 | 000,008,636 | ---- | C] () -- C:\WINDOWS.1\System32\modifype.exe [2010-05-25 16:16:56 | 000,000,802 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\Skrót do fairplay.exe.lnk [2010-05-23 21:33:23 | 000,235,430 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\ass.bmp [2010-05-23 21:29:30 | 000,029,788 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\aaa.jpg [2010-05-22 18:39:47 | 000,001,152 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\Skrót do mohpa.exe.lnk [2010-05-22 15:00:37 | 001,959,354 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Obraz 112.bmp [2010-05-22 15:00:22 | 001,959,354 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Obraz 109.bmp [2010-05-22 14:59:28 | 001,959,354 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Obraz 107.bmp [2010-05-22 14:59:16 | 001,959,354 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Obraz 108.bmp [2010-05-22 14:58:57 | 000,884,154 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\spod.bmp [2010-05-22 14:52:33 | 000,004,076 | ---- | C] () -- C:\Documents and Settings\SysOp\.recently-used.xbel [2010-05-22 14:48:14 | 000,000,151 | ---- | C] () -- C:\WINDOWS.1\PhotoSnapViewer.INI [2010-05-22 14:43:07 | 000,860,070 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\jjj.bmp [2010-05-22 14:42:31 | 000,000,602 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\IrfanView Thumbnails.lnk [2010-05-22 14:42:31 | 000,000,520 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\IrfanView.lnk [2010-05-22 13:15:31 | 000,082,677 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\Obraz 102.jpg [2010-05-22 11:12:33 | 000,025,088 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\CV.doc oryginał.doc [2010-05-20 19:06:11 | 000,000,636 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\GIMP 2.lnk [2010-05-20 11:00:19 | 000,122,880 | ---- | C] () -- C:\WINDOWS.1\UnGins.exe [2010-05-19 21:10:31 | 000,000,742 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Generatorek 3 dla Windows.lnk [2010-05-17 12:59:27 | 000,000,069 | ---- | C] () -- C:\WINDOWS.1\NeroDigital.ini [2010-05-16 11:53:08 | 000,000,509 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\BitComet.lnk [2010-05-15 21:46:14 | 000,091,531 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\wwww.ods [2010-05-15 20:38:46 | 000,000,967 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\OpenOffice.org 3.2.lnk [2010-05-12 16:25:19 | 000,000,509 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\SpeedFan.lnk [2010-05-09 15:37:31 | 000,020,480 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\plan ramowy.doc [2010-05-08 19:06:10 | 000,002,385 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Nero StartSmart.lnk [2010-05-08 19:06:10 | 000,002,305 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Nero Home.lnk [2010-05-07 23:29:37 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\SysOp\NTUSER.DAT.tmp.LOG [2010-05-07 23:23:47 | 000,000,082 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\Dokonaj zakupu jv16 PowerTools.url [2010-05-07 23:23:22 | 000,000,023 | -HS- | C] () -- C:\WINDOWS.1\System32\fcaafaeebda7.dat [2010-05-07 23:23:22 | 000,000,023 | ---- | C] () -- C:\WINDOWS.1\System32\cbed.xml [2010-05-07 20:24:40 | 000,012,439 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\bmSUgEXK.htm.part [2010-05-05 20:02:05 | 000,025,088 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\CV.doc [2010-05-03 19:21:27 | 000,049,152 | ---- | C] () -- C:\WINDOWS.1\System32\ChCfg.exe [2010-05-03 19:21:06 | 000,001,519 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\AvRack.lnk [2010-05-03 19:21:06 | 000,000,164 | ---- | C] () -- C:\WINDOWS.1\avrack.ini [2010-05-03 19:20:54 | 000,141,016 | ---- | C] () -- C:\WINDOWS.1\System32\alsndmgr.wav [2010-05-03 19:20:50 | 000,143,360 | ---- | C] () -- C:\WINDOWS.1\System32\RtlCPAPI.dll [2010-05-01 21:50:43 | 000,000,169 | ---- | C] () -- C:\WINDOWS.1\RtlRack.ini [2010-04-23 20:05:09 | 000,000,481 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Winamp.lnk [2010-04-19 22:24:06 | 000,047,616 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\matura.doc [2010-04-19 20:37:10 | 000,001,391 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Adobe Reader 9.lnk [2010-04-19 19:31:49 | 001,660,416 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\wakacje.ppt [2010-04-10 18:27:40 | 000,025,088 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Motyw cierpnienia w literaturze.doc [2010-04-10 18:05:23 | 000,000,433 | ---- | C] () -- C:\WINDOWS.1\ODBC.INI [2010-04-10 08:59:56 | 000,000,566 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\Pro Evolution Soccer 6.5.lnk [2010-04-07 09:38:49 | 000,001,662 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\biobliografia2.rtf [2010-04-06 19:44:38 | 001,157,552 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\ustny_j_polski_popr.pdf [2010-04-05 16:39:05 | 000,002,254 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Dokument.rtf [2010-04-01 23:07:43 | 000,000,084 | ---- | C] () -- C:\WINDOWS.1\winamp.ini [2010-04-01 20:56:50 | 000,047,436 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2696.JPG [2010-04-01 20:56:44 | 000,048,485 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2699.JPG [2010-04-01 20:56:36 | 000,031,692 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2702.JPG [2010-04-01 20:56:28 | 000,051,806 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2703.JPG [2010-04-01 20:56:12 | 000,072,877 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2706.jpg [2010-04-01 15:49:31 | 000,000,879 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\sof.lnk [2010-04-01 15:48:14 | 000,000,653 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\Gadu-Gadu.lnk [2010-04-01 14:41:23 | 000,000,045 | ---- | C] () -- C:\WINDOWS.1\System32\initdebug.nfo [2010-04-01 14:06:43 | 000,000,767 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\EVEREST Home Edition.lnk [2010-03-20 15:46:27 | 000,001,048 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\alcxinit.dat [2010-03-17 21:44:22 | 000,000,000 | ---- | C] () -- C:\WINDOWS.1\nsreg.dat [2010-03-17 21:43:48 | 000,001,602 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Mozilla Firefox.lnk [2010-03-17 20:25:26 | 000,000,466 | -H-- | C] () -- C:\WINDOWS.1\tasks\User_Feed_Synchronization-{40CF33F7-F0DF-4BA2-BFDB-7923F9138C46}.job [2010-03-16 16:35:52 | 000,000,677 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\AquaMark3.lnk [2010-03-16 16:22:01 | 000,000,836 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Ashampoo Burning Studio 9.lnk [2010-03-16 16:20:11 | 000,000,130 | ---- | C] () -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\fusioncache.dat [2010-03-16 15:56:03 | 000,000,025 | ---- | C] () -- C:\WINDOWS.1\popcinfot.dat [2010-03-16 15:35:16 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\SysOp\Dane aplikacji\PnkBstrK.sys [2010-03-16 15:16:38 | 000,001,613 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\DAEMON Tools Lite.lnk [2010-03-16 15:16:37 | 000,691,696 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\sptd.sys [2010-03-15 23:22:43 | 000,168,448 | ---- | C] () -- C:\WINDOWS.1\System32\unrar.dll [2010-03-15 23:22:41 | 000,000,414 | ---- | C] () -- C:\WINDOWS.1\System32\lame_acm.xml [2010-03-15 23:22:38 | 000,795,648 | ---- | C] () -- C:\WINDOWS.1\System32\xvidcore.dll [2010-03-15 23:22:38 | 000,130,048 | ---- | C] () -- C:\WINDOWS.1\System32\xvidvfw.dll [2010-03-15 23:22:37 | 003,596,288 | ---- | C] () -- C:\WINDOWS.1\System32\qt-dx331.dll [2010-03-15 23:22:35 | 000,057,344 | ---- | C] () -- C:\WINDOWS.1\System32\ff_vfw.dll [2010-03-15 23:22:35 | 000,000,547 | ---- | C] () -- C:\WINDOWS.1\System32\ff_vfw.dll.manifest [2010-03-15 23:21:57 | 000,011,776 | ---- | C] () -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-03-15 19:05:29 | 000,004,452 | ---- | C] () -- C:\WINDOWS.1\System32\pid.PNF [2010-03-15 19:05:18 | 000,066,594 | ---- | C] () -- C:\WINDOWS.1\System32\c_857.nls [2010-03-15 19:05:18 | 000,066,082 | ---- | C] () -- C:\WINDOWS.1\System32\c_28603.nls [2010-03-15 19:05:18 | 000,066,082 | ---- | C] () -- C:\WINDOWS.1\System32\c_28599.nls [2010-03-15 19:05:18 | 000,066,082 | ---- | C] () -- C:\WINDOWS.1\System32\c_10081.nls [2010-03-15 19:05:17 | 000,066,594 | ---- | C] () -- C:\WINDOWS.1\System32\c_869.nls [2010-03-15 19:05:17 | 000,066,594 | ---- | C] () -- C:\WINDOWS.1\System32\c_866.nls [2010-03-15 19:05:17 | 000,066,594 | ---- | C] () -- C:\WINDOWS.1\System32\c_855.nls [2010-03-15 19:05:17 | 000,066,594 | ---- | C] () -- C:\WINDOWS.1\System32\c_737.nls [2010-03-15 19:05:17 | 000,066,082 | ---- | C] () -- C:\WINDOWS.1\System32\c_875.nls [2010-03-15 19:05:17 | 000,066,082 | ---- | C] () -- C:\WINDOWS.1\System32\C_28597.NLS [2010-03-15 19:05:17 | 000,066,082 | ---- | C] () -- C:\WINDOWS.1\System32\C_28595.NLS [2010-03-15 19:05:17 | 000,066,082 | ---- | C] () -- C:\WINDOWS.1\System32\C_28594.NLS [2010-03-15 19:05:17 | 000,066,082 | ---- | C] () -- C:\WINDOWS.1\System32\c_10017.nls [2010-03-15 19:05:17 | 000,066,082 | ---- | C] () -- C:\WINDOWS.1\System32\c_10007.nls [2010-03-15 19:05:17 | 000,066,082 | ---- | C] () -- C:\WINDOWS.1\System32\c_10006.nls [2010-03-15 19:05:14 | 000,066,082 | ---- | C] () -- C:\WINDOWS.1\System32\c_20127.nls [2010-03-15 19:05:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS.1\System32\c_10082.nls [2010-03-15 19:05:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS.1\System32\c_10029.nls [2010-03-15 19:05:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS.1\System32\c_10010.nls [2010-03-15 19:05:09 | 000,001,734 | ---- | C] () -- C:\WINDOWS.1\System32\AUTOEXEC.NT [2010-03-15 19:04:06 | 000,139,648 | ---- | C] () -- C:\WINDOWS.1\System32\FNTCACHE.DAT [2010-03-15 19:03:22 | 000,001,179 | ---- | C] () -- C:\WINDOWS.1\System32\$winnt$.inf [2010-03-15 18:42:38 | 000,148,498 | ---- | C] () -- C:\WINDOWS.1\System32\atmplkxx.hlp [2010-03-15 18:42:38 | 000,044,430 | ---- | C] () -- C:\WINDOWS.1\System32\attplkxx.hlp [2010-03-15 18:42:38 | 000,026,138 | ---- | C] () -- C:\WINDOWS.1\System32\atfplkxx.hlp [2010-03-15 18:36:59 | 000,001,987 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\ATI Tray Tools.lnk [2010-03-15 18:36:53 | 000,001,510 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\ATI 3D Control Panel.lnk [2010-03-15 18:36:40 | 000,593,920 | ---- | C] () -- C:\WINDOWS.1\System32\ati2sgag.exe [2010-03-15 18:19:11 | 000,000,188 | -HS- | C] () -- C:\Documents and Settings\SysOp\ntuser.ini [2010-03-15 18:19:10 | 004,194,304 | ---- | C] () -- C:\Documents and Settings\SysOp\NTUSER.DAT [2010-03-15 18:19:10 | 003,407,872 | -H-- | C] () -- C:\Documents and Settings\SysOp\NTUSER.DAT.bak_jv16pt [2010-03-15 18:19:10 | 000,001,024 | -H-- | C] () -- C:\Documents and Settings\SysOp\NTUSER.DAT.LOG [2010-03-15 18:17:15 | 000,002,048 | --S- | C] () -- C:\WINDOWS.1\bootstat.dat [2010-03-15 18:16:38 | 000,002,596 | ---- | C] () -- C:\WINDOWS.1\System32\CONFIG.NT [2010-03-15 18:16:30 | 000,023,392 | ---- | C] () -- C:\WINDOWS.1\System32\nscompat.tlb [2010-03-15 18:16:30 | 000,016,832 | ---- | C] () -- C:\WINDOWS.1\System32\amcompat.tlb [2010-03-15 18:16:28 | 000,316,640 | ---- | C] () -- C:\WINDOWS.1\WMSysPr9.prx [2010-03-15 18:15:12 | 000,000,488 | RH-- | C] () -- C:\WINDOWS.1\System32\WindowsLogon.manifest [2010-03-15 18:15:12 | 000,000,488 | RH-- | C] () -- C:\WINDOWS.1\System32\logonui.exe.manifest [2010-03-15 18:15:06 | 000,000,749 | RH-- | C] () -- C:\WINDOWS.1\System32\wuaucpl.cpl.manifest [2010-03-15 18:15:06 | 000,000,749 | RH-- | C] () -- C:\WINDOWS.1\WindowsShell.Manifest [2010-03-15 18:15:06 | 000,000,749 | RH-- | C] () -- C:\WINDOWS.1\System32\sapi.cpl.manifest [2010-03-15 18:15:06 | 000,000,749 | RH-- | C] () -- C:\WINDOWS.1\System32\nwc.cpl.manifest [2010-03-15 18:15:06 | 000,000,749 | RH-- | C] () -- C:\WINDOWS.1\System32\ncpa.cpl.manifest [2010-03-15 18:15:06 | 000,000,749 | RH-- | C] () -- C:\WINDOWS.1\System32\cdplayer.exe.manifest [2010-03-15 18:13:29 | 000,021,856 | ---- | C] () -- C:\WINDOWS.1\System32\emptyregdb.dat [2010-03-15 18:12:40 | 000,093,702 | ---- | C] () -- C:\WINDOWS.1\System32\subrange.uce [2010-03-15 18:12:40 | 000,060,458 | ---- | C] () -- C:\WINDOWS.1\System32\ideograf.uce [2010-03-15 18:12:40 | 000,024,006 | ---- | C] () -- C:\WINDOWS.1\System32\gb2312.uce [2010-03-15 18:12:40 | 000,022,984 | ---- | C] () -- C:\WINDOWS.1\System32\bopomofo.uce [2010-03-15 18:12:40 | 000,016,740 | ---- | C] () -- C:\WINDOWS.1\System32\shiftjis.uce [2010-03-15 18:12:40 | 000,012,876 | ---- | C] () -- C:\WINDOWS.1\System32\korean.uce [2010-03-15 18:12:40 | 000,008,484 | ---- | C] () -- C:\WINDOWS.1\System32\kanji_2.uce [2010-03-15 18:12:40 | 000,006,948 | ---- | C] () -- C:\WINDOWS.1\System32\kanji_1.uce [2010-03-15 18:12:39 | 000,003,286 | ---- | C] () -- C:\WINDOWS.1\System32\tslabels.h [2010-03-15 18:12:39 | 000,001,225 | ---- | C] () -- C:\WINDOWS.1\System32\usrlogon.cmd [2010-03-15 18:12:38 | 000,000,768 | ---- | C] () -- C:\WINDOWS.1\System32\msdtcprf.h [2010-03-15 18:12:34 | 000,063,488 | ---- | C] () -- C:\WINDOWS.1\System32\wmimgmt.msc [2010-03-11 22:28:58 | 1073,270,784 | -HS- | C] () -- C:\hiberfil.sys [2010-03-11 21:44:52 | 000,036,864 | ---- | C] () -- C:\WINDOWS.1\System32\atiiprxx.exe [2010-03-11 21:44:50 | 003,107,788 | ---- | C] () -- C:\WINDOWS.1\System32\ativvaxx.dat [2010-03-11 21:44:50 | 003,107,788 | ---- | C] () -- C:\WINDOWS.1\System32\ativva5x.dat [2010-03-11 21:44:50 | 001,311,202 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\ativcaxx.cpa [2010-03-11 21:44:50 | 000,887,724 | ---- | C] () -- C:\WINDOWS.1\System32\ativva6x.dat [2010-03-11 21:44:50 | 000,473,475 | ---- | C] () -- C:\WINDOWS.1\System32\atmkorxx.hlx [2010-03-11 21:44:50 | 000,399,936 | ---- | C] () -- C:\WINDOWS.1\System32\atmjpnxx.hlx [2010-03-11 21:44:50 | 000,370,049 | ---- | C] () -- C:\WINDOWS.1\System32\atmthaxx.hlx [2010-03-11 21:44:50 | 000,356,937 | ---- | C] () -- C:\WINDOWS.1\System32\atmtrkxx.hlx [2010-03-11 21:44:50 | 000,353,829 | ---- | C] () -- C:\WINDOWS.1\System32\atmrusxx.hlx [2010-03-11 21:44:50 | 000,189,356 | ---- | C] () -- C:\WINDOWS.1\System32\atmchsxx.hlx [2010-03-11 21:44:50 | 000,158,080 | ---- | C] () -- C:\WINDOWS.1\System32\atiicdxx.dat [2010-03-11 21:44:50 | 000,155,364 | ---- | C] () -- C:\WINDOWS.1\System32\atmaraxx.hlx [2010-03-11 21:44:50 | 000,148,616 | ---- | C] () -- C:\WINDOWS.1\System32\atmhunxx.hlx [2010-03-11 21:44:50 | 000,148,498 | ---- | C] () -- C:\WINDOWS.1\System32\atmplkxx.hlx [2010-03-11 21:44:50 | 000,148,083 | ---- | C] () -- C:\WINDOWS.1\System32\atmellxx.hlx [2010-03-11 21:44:50 | 000,147,444 | ---- | C] () -- C:\WINDOWS.1\System32\atmdeuxx.hlx [2010-03-11 21:44:50 | 000,145,641 | ---- | C] () -- C:\WINDOWS.1\System32\atmcsyxx.hlx [2010-03-11 21:44:50 | 000,145,421 | ---- | C] () -- C:\WINDOWS.1\System32\atmchtxx.hlx [2010-03-11 21:44:50 | 000,145,090 | ---- | C] () -- C:\WINDOWS.1\System32\atmfraxx.hlx [2010-03-11 21:44:50 | 000,144,323 | ---- | C] () -- C:\WINDOWS.1\System32\atmhebxx.hlx [2010-03-11 21:44:50 | 000,144,213 | ---- | C] () -- C:\WINDOWS.1\System32\atmfinxx.hlx [2010-03-11 21:44:50 | 000,142,359 | ---- | C] () -- C:\WINDOWS.1\System32\atmdanxx.hlx [2010-03-11 21:44:50 | 000,141,754 | ---- | C] () -- C:\WINDOWS.1\System32\attkorxx.hlx [2010-03-11 21:44:50 | 000,141,746 | ---- | C] () -- C:\WINDOWS.1\System32\atmsvexx.hlx [2010-03-11 21:44:50 | 000,140,646 | ---- | C] () -- C:\WINDOWS.1\System32\atmitaxx.hlx [2010-03-11 21:44:50 | 000,140,307 | ---- | C] () -- C:\WINDOWS.1\System32\atmptbxx.hlx [2010-03-11 21:44:50 | 000,140,040 | ---- | C] () -- C:\WINDOWS.1\System32\atmespxx.hlx [2010-03-11 21:44:50 | 000,139,835 | ---- | C] () -- C:\WINDOWS.1\System32\atmnldxx.hlx [2010-03-11 21:44:50 | 000,139,810 | ---- | C] () -- C:\WINDOWS.1\System32\atmnorxx.hlx [2010-03-11 21:44:50 | 000,136,272 | ---- | C] () -- C:\WINDOWS.1\System32\atmenuxx.hlx [2010-03-11 21:44:50 | 000,124,376 | ---- | C] () -- C:\WINDOWS.1\System32\attjpnxx.hlx [2010-03-11 21:44:50 | 000,120,302 | ---- | C] () -- C:\WINDOWS.1\System32\atttrkxx.hlx [2010-03-11 21:44:50 | 000,066,161 | ---- | C] () -- C:\WINDOWS.1\System32\atfkorxx.hlx [2010-03-11 21:44:50 | 000,049,807 | ---- | C] () -- C:\WINDOWS.1\System32\atfjpnxx.hlx [2010-03-11 21:44:50 | 000,048,174 | ---- | C] () -- C:\WINDOWS.1\System32\atftrkxx.hlx [2010-03-11 21:44:50 | 000,047,360 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\ativvpxx.vp [2010-03-11 21:44:50 | 000,045,991 | ---- | C] () -- C:\WINDOWS.1\System32\attchsxx.hlx [2010-03-11 21:44:50 | 000,045,762 | ---- | C] () -- C:\WINDOWS.1\System32\attellxx.hlx [2010-03-11 21:44:50 | 000,045,716 | ---- | C] () -- C:\WINDOWS.1\System32\atthunxx.hlx [2010-03-11 21:44:50 | 000,045,632 | ---- | C] () -- C:\WINDOWS.1\System32\atthebxx.hlx [2010-03-11 21:44:50 | 000,045,580 | ---- | C] () -- C:\WINDOWS.1\System32\attrusxx.hlx [2010-03-11 21:44:50 | 000,045,411 | ---- | C] () -- C:\WINDOWS.1\System32\attfraxx.hlx [2010-03-11 21:44:50 | 000,045,352 | ---- | C] () -- C:\WINDOWS.1\System32\attptbxx.hlx [2010-03-11 21:44:50 | 000,044,980 | ---- | C] () -- C:\WINDOWS.1\System32\attespxx.hlx [2010-03-11 21:44:50 | 000,044,814 | ---- | C] () -- C:\WINDOWS.1\System32\attdeuxx.hlx [2010-03-11 21:44:50 | 000,044,687 | ---- | C] () -- C:\WINDOWS.1\System32\attdanxx.hlx [2010-03-11 21:44:50 | 000,044,635 | ---- | C] () -- C:\WINDOWS.1\System32\attchtxx.hlx [2010-03-11 21:44:50 | 000,044,514 | ---- | C] () -- C:\WINDOWS.1\System32\attcsyxx.hlx [2010-03-11 21:44:50 | 000,044,430 | ---- | C] () -- C:\WINDOWS.1\System32\attplkxx.hlx [2010-03-11 21:44:50 | 000,044,109 | ---- | C] () -- C:\WINDOWS.1\System32\attitaxx.hlx [2010-03-11 21:44:50 | 000,043,526 | ---- | C] () -- C:\WINDOWS.1\System32\attnldxx.hlx [2010-03-11 21:44:50 | 000,043,310 | ---- | C] () -- C:\WINDOWS.1\System32\attfinxx.hlx [2010-03-11 21:44:50 | 000,043,288 | ---- | C] () -- C:\WINDOWS.1\System32\attnorxx.hlx [2010-03-11 21:44:50 | 000,043,070 | ---- | C] () -- C:\WINDOWS.1\System32\attaraxx.hlx [2010-03-11 21:44:50 | 000,041,943 | ---- | C] () -- C:\WINDOWS.1\System32\attthaxx.hlx [2010-03-11 21:44:50 | 000,041,265 | ---- | C] () -- C:\WINDOWS.1\System32\attsvexx.hlx [2010-03-11 21:44:50 | 000,040,651 | ---- | C] () -- C:\WINDOWS.1\System32\attenuxx.hlx [2010-03-11 21:44:50 | 000,027,697 | ---- | C] () -- C:\WINDOWS.1\System32\atfhebxx.hlx [2010-03-11 21:44:50 | 000,026,864 | ---- | C] () -- C:\WINDOWS.1\System32\atfchsxx.hlx [2010-03-11 21:44:50 | 000,026,138 | ---- | C] () -- C:\WINDOWS.1\System32\atfplkxx.hlx [2010-03-11 21:44:50 | 000,025,327 | ---- | C] () -- C:\WINDOWS.1\System32\atfrusxx.hlx [2010-03-11 21:44:50 | 000,025,224 | ---- | C] () -- C:\WINDOWS.1\System32\atfellxx.hlx [2010-03-11 21:44:50 | 000,024,892 | ---- | C] () -- C:\WINDOWS.1\System32\atfhunxx.hlx [2010-03-11 21:44:50 | 000,024,873 | ---- | C] () -- C:\WINDOWS.1\System32\atfthaxx.hlx [2010-03-11 21:44:50 | 000,024,712 | ---- | C] () -- C:\WINDOWS.1\System32\atfptbxx.hlx [2010-03-11 21:44:50 | 000,024,652 | ---- | C] () -- C:\WINDOWS.1\System32\atfaraxx.hlx [2010-03-11 21:44:50 | 000,024,640 | ---- | C] () -- C:\WINDOWS.1\System32\atffraxx.hlx [2010-03-11 21:44:50 | 000,024,589 | ---- | C] () -- C:\WINDOWS.1\System32\atfchtxx.hlx [2010-03-11 21:44:50 | 000,024,569 | ---- | C] () -- C:\WINDOWS.1\System32\atfcsyxx.hlx [2010-03-11 21:44:50 | 000,024,557 | ---- | C] () -- C:\WINDOWS.1\System32\atfdeuxx.hlx [2010-03-11 21:44:50 | 000,024,506 | ---- | C] () -- C:\WINDOWS.1\System32\atfitaxx.hlx [2010-03-11 21:44:50 | 000,024,382 | ---- | C] () -- C:\WINDOWS.1\System32\atfespxx.hlx [2010-03-11 21:44:50 | 000,024,260 | ---- | C] () -- C:\WINDOWS.1\System32\atffinxx.hlx [2010-03-11 21:44:50 | 000,024,229 | ---- | C] () -- C:\WINDOWS.1\System32\atfnorxx.hlx [2010-03-11 21:44:50 | 000,024,186 | ---- | C] () -- C:\WINDOWS.1\System32\atfnldxx.hlx [2010-03-11 21:44:50 | 000,024,065 | ---- | C] () -- C:\WINDOWS.1\System32\atfdanxx.hlx [2010-03-11 21:44:50 | 000,023,980 | ---- | C] () -- C:\WINDOWS.1\System32\atfsvexx.hlx [2010-03-11 21:44:50 | 000,023,224 | ---- | C] () -- C:\WINDOWS.1\System32\atfenuxx.hlx [2010-03-11 21:44:50 | 000,007,849 | ---- | C] () -- C:\WINDOWS.1\System32\atiicdxx.vxd [2010-03-11 21:44:50 | 000,002,917 | ---- | C] () -- C:\WINDOWS.1\System32\atmfraxx.cnt [2010-03-11 21:44:50 | 000,002,887 | ---- | C] () -- C:\WINDOWS.1\System32\atmespxx.cnt [2010-03-11 21:44:50 | 000,002,884 | ---- | C] () -- C:\WINDOWS.1\System32\atmitaxx.cnt [2010-03-11 21:44:50 | 000,002,849 | ---- | C] () -- C:\WINDOWS.1\System32\atmdeuxx.cnt [2010-03-11 21:44:50 | 000,002,822 | ---- | C] () -- C:\WINDOWS.1\System32\atmfinxx.cnt [2010-03-11 21:44:50 | 000,002,776 | ---- | C] () -- C:\WINDOWS.1\System32\atmptbxx.cnt [2010-03-11 21:44:50 | 000,002,767 | ---- | C] () -- C:\WINDOWS.1\System32\atmnldxx.cnt [2010-03-11 21:44:50 | 000,002,763 | ---- | C] () -- C:\WINDOWS.1\System32\atmplkxx.cnt [2010-03-11 21:44:50 | 000,002,759 | ---- | C] () -- C:\WINDOWS.1\System32\atmellxx.cnt [2010-03-11 21:44:50 | 000,002,729 | ---- | C] () -- C:\WINDOWS.1\System32\atmhunxx.cnt [2010-03-11 21:44:50 | 000,002,704 | ---- | C] () -- C:\WINDOWS.1\System32\atmdanxx.cnt [2010-03-11 21:44:50 | 000,002,653 | ---- | C] () -- C:\WINDOWS.1\System32\atmtrkxx.cnt [2010-03-11 21:44:50 | 000,002,633 | ---- | C] () -- C:\WINDOWS.1\System32\atmkorxx.cnt [2010-03-11 21:44:50 | 000,002,615 | ---- | C] () -- C:\WINDOWS.1\System32\atmcsyxx.cnt [2010-03-11 21:44:50 | 000,002,610 | ---- | C] () -- C:\WINDOWS.1\System32\atmenuxx.cnt [2010-03-11 21:44:50 | 000,002,577 | ---- | C] () -- C:\WINDOWS.1\System32\atmsvexx.cnt [2010-03-11 21:44:50 | 000,002,560 | ---- | C] () -- C:\WINDOWS.1\System32\atmrusxx.cnt [2010-03-11 21:44:50 | 000,002,545 | ---- | C] () -- C:\WINDOWS.1\System32\atmnorxx.cnt [2010-03-11 21:44:50 | 000,002,453 | ---- | C] () -- C:\WINDOWS.1\System32\atmjpnxx.cnt [2010-03-11 21:44:50 | 000,002,430 | ---- | C] () -- C:\WINDOWS.1\System32\atmthaxx.cnt [2010-03-11 21:44:50 | 000,002,411 | ---- | C] () -- C:\WINDOWS.1\System32\atmhebxx.cnt [2010-03-11 21:44:50 | 000,002,220 | ---- | C] () -- C:\WINDOWS.1\System32\atmaraxx.cnt [2010-03-11 21:44:50 | 000,002,096 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\ativdkxx.vp [2010-03-11 21:44:50 | 000,002,096 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\ativckxx.vp [2010-03-11 21:44:50 | 000,002,070 | ---- | C] () -- C:\WINDOWS.1\System32\atmchtxx.cnt [2010-03-11 21:44:50 | 000,002,047 | ---- | C] () -- C:\WINDOWS.1\System32\atmchsxx.cnt [2010-03-11 21:44:50 | 000,000,929 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\ativcaxx.vp [2010-03-11 21:44:49 | 000,370,070 | ---- | C] () -- C:\WINDOWS.1\System32\omega_drivers.ico [2010-03-11 21:44:49 | 000,043,008 | ---- | C] () -- C:\WINDOWS.1\System32\atiicdxx.msi [2010-03-11 21:44:49 | 000,034,920 | ---- | C] () -- C:\WINDOWS.1\System32\omega_drivers.bmp [2010-03-11 21:44:49 | 000,020,254 | ---- | C] () -- C:\WINDOWS.1\System32\ATI_CUBE.ICO [2010-03-11 21:44:49 | 000,011,717 | ---- | C] () -- C:\WINDOWS.1\atiogl.xml [2010-03-11 21:44:49 | 000,007,167 | ---- | C] () -- C:\WINDOWS.1\System32\atifglpf.xml [2010-03-11 21:44:49 | 000,000,011 | ---- | C] () -- C:\WINDOWS.1\System32\atiicdxx.ini [2010-03-11 21:20:18 | 000,000,349 | RHS- | C] () -- C:\boot.ini [2010-03-11 20:45:54 | 000,000,007 | ---- | C] () -- C:\NOTACER.ID [2010-03-11 20:32:24 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS [2010-03-11 20:32:24 | 000,000,000 | RHS- | C] () -- C:\IO.SYS [2010-03-11 20:32:24 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS [2010-03-11 20:32:24 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT [1999-01-22 17:46:58 | 000,065,536 | ---- | C] () -- C:\WINDOWS.1\System32\MSRTEDIT.DLL [1996-04-03 21:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS.1\System32\giveio.sys [color=#E56717]========== LOP Check ==========[/color] [2010-03-16 16:22:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\ashampoo [2010-05-25 22:46:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\avg9 [2010-03-16 15:16:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\DAEMON Tools Lite [2010-03-16 15:55:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\PopCap Games [2010-03-15 20:15:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Test Drive Unlimited [2010-03-16 16:22:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\Ashampoo [2010-03-16 15:21:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\DAEMON Tools Lite [2010-04-01 16:05:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\Gadu-Gadu [2010-05-08 20:06:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\gtk-2.0 [2010-05-03 19:13:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\IVONA Player [2010-04-11 18:58:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\OpenOffice.org [2010-05-21 11:31:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\Pointstone [2010-05-25 20:54:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\ViGlance [2010-05-25 20:54:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\ViSplore [2010-05-25 20:54:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\ViStart [2010-05-26 22:25:36 | 000,000,466 | -H-- | M] () -- C:\WINDOWS.1\Tasks\User_Feed_Synchronization-{40CF33F7-F0DF-4BA2-BFDB-7923F9138C46}.job [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2010-03-11 20:32:24 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-05-26 22:28:16 | 000,001,746 | ---- | M] () -- C:\avenger.txt [2010-05-26 20:43:25 | 000,000,349 | RHS- | M] () -- C:\boot.ini [2001-07-22 02:13:54 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin [2010-03-11 20:32:24 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-05-26 22:28:42 | 1073,270,784 | -HS- | M] () -- C:\hiberfil.sys [2010-03-11 20:32:24 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-03-11 20:32:24 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2010-03-13 21:08:40 | 000,000,007 | ---- | M] () -- C:\NOTACER.ID [2008-04-13 22:13:04 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2008-04-14 00:02:00 | 000,251,152 | RHS- | M] () -- C:\ntldr [2010-05-26 22:28:41 | 1610,612,736 | -HS- | M] () -- C:\pagefile.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS.1\system32\drivers\atapi.sys [color=#A23BEC]< MD5 for: BEEP.SYS >[/color] [2001-08-18 01:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS.0\system32\drivers\beep.sys [2001-08-18 01:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS.1\system32\drivers\beep.sys [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2009-07-12 13:29:34 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=4B0A100EAF5C49EF3CCA8C641431EACC -- C:\WINDOWS.1\system32\drivers\cdrom.sys [color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color] [2008-04-14 22:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS.1\system32\eventlog.dll [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2008-04-14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS.1\system32\drivers\ndis.sys [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2009-07-12 14:24:30 | 000,549,888 | ---- | M] (Microsoft Corporation) MD5=335813EACD16E84F3047A3326F6E5473 -- C:\WINDOWS.1\system32\winlogon.exe < End of report > [/log]
varoth komentarz 27 maja 2010 Autor komentarz 27 maja 2010 (edytowane) RSIT Przy uruchamianiu komputera ciągle włącza się sprawdzanie dysku G dlaczego ? [log]Logfile of random's system information tool 1.07 (written by random/random) Run by SysOp at 2010-05-27 17:32:38 Microsoft Windows XP Professional Dodatek Service Pack 3 System drive C: has 3 GB (19%) free of 15 GB Total RAM: 1023 MB (45% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 17:32:50, on 2010-05-27 Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS.1\System32\smss.exe C:\WINDOWS.1\system32\winlogon.exe C:\WINDOWS.1\system32\services.exe C:\WINDOWS.1\system32\lsass.exe C:\WINDOWS.1\system32\Ati2evxx.exe C:\WINDOWS.1\system32\svchost.exe C:\WINDOWS.1\System32\svchost.exe C:\WINDOWS.1\system32\Ati2evxx.exe C:\Program Files\AVG\AVG9\avgchsvx.exe C:\Program Files\AVG\AVG9\avgrsx.exe C:\Program Files\AVG\AVG9\avgcsrvx.exe C:\WINDOWS.1\Explorer.EXE C:\WINDOWS.1\system32\spoolsv.exe C:\PROGRA~1\AVG\AVG9\avgtray.exe C:\Program Files\Gadu-Gadu\gg.exe C:\Program Files\AVG\AVG9\avgwdsvc.exe C:\WINDOWS.1\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS.1\system32\svchost.exe C:\Program Files\AVG\AVG9\avgnsx.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Documents and Settings\SysOp\Moje dokumenty\Pobieranie\OTL.exe C:\Documents and Settings\SysOp\Moje dokumenty\Pobieranie\RSIT.exe C:\Program Files\trend micro\SysOp.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.windowsxlive.net R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.wyborcza.pl/0,0.html?p=029 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe O4 - HKCU\..\Run: [Gadu-Gadu] "C:\Program Files\Gadu-Gadu\gg.exe" /tray O4 - HKUS\S-1-5-19\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'USŁUGA LOKALNA') O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'USŁUGA SIECIOWA') O4 - HKUS\S-1-5-18\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user') O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS.1\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS.1\Network Diagnostic\xpnetdiag.exe O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll O20 - Winlogon Notify: avgrsstarter - avgrsstx.dll (file missing) O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS.1\system32\browseui.dll O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS.1\system32\browseui.dll O23 - Service: Usługa bramy warstwy aplikacji (ALG) - Unknown owner - C:\WINDOWS.1\System32\alg.exe (file missing) O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS.1\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS.1\system32\ati2sgag.exe O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe -- End of file - 5095 bytes ======Scheduled tasks folder====== C:\WINDOWS.1\tasks\User_Feed_Synchronization-{40CF33F7-F0DF-4BA2-BFDB-7923F9138C46}.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}] AVG Safe Search - C:\Program Files\AVG\AVG9\avgssie.dll [2010-05-27 1615200] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-05-05 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-05-05 79648] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "AVG9_TRAY"=C:\PROGRA~1\AVG\AVG9\avgtray.exe [2010-05-27 2064736] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Gadu-Gadu"=C:\Program Files\Gadu-Gadu\gg.exe [2007-07-09 2119104] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] F:\Programy\Reader\Reader_sl.exe [2009-02-27 35696] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AtiPTA] C:\WINDOWS.1\system32\atiptaxx.exe [2006-02-22 344064] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-05-16 153136] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe [2009-10-30 369200] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DANT] [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DrvIcon] C:\Program Files\Vista Drive Icon\DrvIcon.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Expressivo] [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Gadu-Gadu] C:\Program Files\Gadu-Gadu\gg.exe [2007-07-09 2119104] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-01 153136] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan] C:\WINDOWS.1\SOUNDMAN.EXE [2006-08-02 577536] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-02-18 248040] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg] [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent] F:\Programy\Winamp\winampa.exe [2010-01-14 37888] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users.WINDOWS.1^Menu Start^Programy^Autostart^Microsoft Office.lnk] C:\PROGRA~1\MICROS~2\Office\OSA9.EXE [1999-02-17 65588] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^SysOp^Menu Start^Programy^Autostart^OpenOffice.org 3.2.lnk] C:\PROGRA~1\OPENOF~1.ORG\program\QUICKS~1.EXE [2009-12-15 384000] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^SysOp^Menu Start^Programy^Autostart^UniSpiker-2.6.lnk] G:\jamal\UNISPI~1.6\UNI_SP~1.EXE [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent] C:\WINDOWS.1\system32\Ati2evxx.dll [2007-12-05 122880] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter] C:\WINDOWS.1\system32\avgrsstx.dll [2010-05-27 12464] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS.1\system32\wpdshserviceobj.dll [2009-07-12 133632] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 "NoSMHelp"=1 "ForceClassicControlPanel"=1 "NoSMMyPictures"=1 "NoSMConfigurePrograms"=1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"= [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "D:\tdu\TestDriveUnlimited.exe"="D:\tdu\TestDriveUnlimited.exe:*:Enabled:Test Drive Unlimited" "C:\WINDOWS.1\system32\PnkBstrA.exe"="C:\WINDOWS.1\system32\PnkBstrA.exe:*:Enabled:PnkBstrA" "C:\WINDOWS.1\system32\PnkBstrB.exe"="C:\WINDOWS.1\system32\PnkBstrB.exe:*:Enabled:PnkBstrB" "C:\Program Files\Counter-Strike 1.6\hl.exe"="C:\Program Files\Counter-Strike 1.6\hl.exe:*:Enabled:Half-Life Launcher" "C:\Program Files\Gadu-Gadu\gg.exe"="C:\Program Files\Gadu-Gadu\gg.exe:*:Enabled:Gadu-Gadu - program główny" "F:\Program Files\Gadu-Gadu\gg.exe"="F:\Program Files\Gadu-Gadu\gg.exe:*:Enabled:Gadu-Gadu - program główny" "F:\Programy\BitComet\BitComet.exe"="F:\Programy\BitComet\BitComet.exe:*:Enabled:BitComet.exe" "F:\Gry\PES6\Pro Evolution Soccer 6.5\PES6.EXE"="F:\Gry\PES6\Pro Evolution Soccer 6.5\PES6.EXE:*:Enabled:pes6.exe" "C:\Program Files\Soldier of Fortune II - Double Helix MP TEST\SoF2MP-Test.exe"="C:\Program Files\Soldier of Fortune II - Double Helix MP TEST\SoF2MP-Test.exe:*:Enabled:SoF2MP-Test" "F:\tdu\TestDriveUnlimited.exe"="F:\tdu\TestDriveUnlimited.exe:*:Enabled:Test Drive Unlimited" "F:\Gry\Pro Evolution Soccer 6.5\Alternative Files\Online Files\Direct IP GoalServer PES 6.5\GoalServer6.exe"="F:\Gry\Pro Evolution Soccer 6.5\Alternative Files\Online Files\Direct IP GoalServer PES 6.5\GoalServer6.exe:*:Enabled:GoalServer6 Alpha" "G:\pobiernie bicomet\Medal of Honor Pacific Assault Direct-Play {Dotcom1}\mod\Medal of Honor Pacific Assault(tm)\mohpa.exe"="G:\pobiernie bicomet\Medal of Honor Pacific Assault Direct-Play {Dotcom1}\mod\Medal of Honor Pacific Assault(tm)\mohpa.exe:*:Enabled:Medal of Honor Pacific Assault(tm)" "G:\pobiernie bicomet\Medal of Honor Allied Assault [PL] [1 CD]\MOHAA.EXE"="G:\pobiernie bicomet\Medal of Honor Allied Assault [PL] [1 CD]\MOHAA.EXE:*:Enabled:Medal of Honor Allied Assault" "C:\Program Files\Soldier of Fortune II - Double Helix MP TEST\sof2mp.exe"="C:\Program Files\Soldier of Fortune II - Double Helix MP TEST\sof2mp.exe:*:Enabled:sof2mp" "C:\Program Files\AVG\AVG9\avgupd.exe"="C:\Program Files\AVG\AVG9\avgupd.exe:*:Enabled:avgupd.exe" "C:\Program Files\AVG\AVG9\avgnsx.exe"="C:\Program Files\AVG\AVG9\avgnsx.exe:*:Enabled:avgnsx.exe" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" ======List of files/folders created in the last 2 months====== 2010-05-27 17:32:39 ----D---- C:\Program Files\trend micro 2010-05-27 17:32:38 ----D---- C:\rsit 2010-05-27 10:03:47 ----A---- C:\WINDOWS.1\system32\avgrsstx.dll 2010-05-26 22:28:16 ----D---- C:\Avenger 2010-05-26 22:27:03 ----A---- C:\avenger.txt 2010-05-26 09:51:05 ----D---- C:\WINDOWS.1\system32\VIRepair 2010-05-25 22:47:03 ----HD---- C:\$AVG 2010-05-25 22:46:24 ----D---- C:\Program Files\AVG 2010-05-25 22:46:23 ----D---- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\avg9 2010-05-25 20:54:30 ----D---- C:\Documents and Settings\SysOp\Dane aplikacji\ViSplore 2010-05-25 20:54:29 ----D---- C:\Documents and Settings\SysOp\Dane aplikacji\ViGlance 2010-05-25 20:54:28 ----D---- C:\Documents and Settings\SysOp\Dane aplikacji\ViStart 2010-05-25 20:52:17 ----A---- C:\WINDOWS.1\system32\vilaunch.exe 2010-05-25 20:48:17 ----D---- C:\WINDOWS.1\system32\VITrans 2010-05-25 20:48:16 ----D---- C:\VTPFiles 2010-05-25 20:48:16 ----A---- C:\WINDOWS.1\system32\Uharc.exe 2010-05-25 20:48:16 ----A---- C:\WINDOWS.1\system32\reico.exe 2010-05-25 20:48:16 ----A---- C:\WINDOWS.1\system32\pskill.exe 2010-05-25 20:48:16 ----A---- C:\WINDOWS.1\system32\moveex.exe 2010-05-25 20:48:16 ----A---- C:\WINDOWS.1\system32\modifype.exe 2010-05-22 22:44:31 ----HDC---- C:\WINDOWS.1\$NtUninstallXPSEPSCLP$ 2010-05-22 22:40:17 ----D---- C:\Program Files\MSBuild 2010-05-22 22:39:55 ----D---- C:\WINDOWS.1\system32\XPSViewer 2010-05-22 22:39:42 ----D---- C:\WINDOWS.1\system32\en-us 2010-05-22 22:39:42 ----D---- C:\Program Files\Reference Assemblies 2010-05-22 22:38:38 ----N---- C:\WINDOWS.1\system32\spmsg2.dll 2010-05-22 22:38:24 ----A---- C:\WINDOWS.1\system32\spupdsvc.exe 2010-05-22 14:48:14 ----A---- C:\WINDOWS.1\PhotoSnapViewer.INI 2010-05-21 11:31:50 ----D---- C:\Documents and Settings\SysOp\Dane aplikacji\Pointstone 2010-05-21 11:30:48 ----D---- C:\Program Files\Common Files\Pointstone 2010-05-20 11:00:19 ----A---- C:\WINDOWS.1\UnGins.exe 2010-05-19 21:10:30 ----D---- C:\Program Files\Generatorek3 2010-05-17 12:59:27 ----A---- C:\WINDOWS.1\NeroDigital.ini 2010-05-11 20:10:21 ----D---- C:\Documents and Settings\SysOp\Dane aplikacji\atitray 2010-05-08 21:53:01 ----A---- C:\WINDOWS.1\system32\CmdLineExt.dll 2010-05-08 20:05:18 ----D---- C:\Documents and Settings\SysOp\Dane aplikacji\gtk-2.0 2010-05-08 19:05:46 ----D---- C:\Documents and Settings\SysOp\Dane aplikacji\Ahead 2010-05-08 19:05:30 ----D---- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Ahead 2010-05-08 19:03:00 ----D---- C:\Program Files\Nero 2010-05-08 19:03:00 ----D---- C:\Program Files\Common Files\Ahead 2010-05-08 19:03:00 ----D---- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Nero 2010-05-07 22:56:05 ----D---- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Google 2010-05-07 22:27:14 ----A---- C:\WINDOWS.1\system32\pgdfgsvc.exe 2010-05-05 22:18:00 ----D---- C:\WINDOWS.1\Sun 2010-05-05 22:11:31 ----D---- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Sun 2010-05-05 22:11:30 ----D---- C:\Program Files\Common Files\Java 2010-05-05 22:11:05 ----A---- C:\WINDOWS.1\system32\deployJava1.dll 2010-05-05 22:11:04 ----A---- C:\WINDOWS.1\system32\javaws.exe 2010-05-05 22:11:04 ----A---- C:\WINDOWS.1\system32\javaw.exe 2010-05-05 22:11:04 ----A---- C:\WINDOWS.1\system32\java.exe 2010-05-05 22:10:45 ----D---- C:\Program Files\Java 2010-05-05 22:08:28 ----D---- C:\Documents and Settings\SysOp\Dane aplikacji\Sun 2010-05-04 17:27:00 ----D---- C:\WINDOWS.1\speech 2010-05-04 17:26:48 ----D---- C:\Program Files\ivo 2010-05-03 19:21:27 ----A---- C:\WINDOWS.1\system32\ChCfg.exe 2010-05-03 19:21:06 ----A---- C:\WINDOWS.1\avrack.ini 2010-05-03 19:20:55 ----D---- C:\Program Files\Realtek AC97 2010-05-03 19:20:54 ----A---- C:\WINDOWS.1\system32\RTLCPL.exe 2010-05-03 19:20:51 ----A---- C:\WINDOWS.1\soundman.exe 2010-05-03 19:20:50 ----A---- C:\WINDOWS.1\system32\RtlCPAPI.dll 2010-05-03 19:20:48 ----A---- C:\WINDOWS.1\alcupd.exe 2010-05-03 19:20:48 ----A---- C:\WINDOWS.1\Alcrmv.exe 2010-05-03 19:13:42 ----D---- C:\Documents and Settings\SysOp\Dane aplikacji\IVONA Player 2010-05-01 21:50:43 ----A---- C:\WINDOWS.1\RtlRack.ini 2010-05-01 16:51:38 ----D---- C:\Documents and Settings\SysOp\Dane aplikacji\Google 2010-05-01 16:51:02 ----D---- C:\Program Files\Google 2010-04-23 20:04:58 ----D---- C:\Documents and Settings\SysOp\Dane aplikacji\Winamp 2010-04-23 19:56:03 ----N---- C:\WINDOWS.1\system32\pxafs.dll 2010-04-22 14:14:50 ----D---- C:\Documents and Settings\SysOp\Dane aplikacji\Identities 2010-04-19 20:37:04 ----D---- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Adobe 2010-04-19 20:36:56 ----D---- C:\Program Files\Common Files\Adobe 2010-04-17 19:45:53 ----A---- C:\WINDOWS.1\system32\ptpusb.dll 2010-04-17 19:45:43 ----A---- C:\WINDOWS.1\system32\ptpusd.dll 2010-04-11 18:58:40 ----D---- C:\Documents and Settings\SysOp\Dane aplikacji\OpenOffice.org 2010-04-11 18:43:00 ----D---- C:\Program Files\OpenOffice.org 3 2010-04-10 18:29:49 ----D---- C:\WINDOWS.1\system32\appmgmt 2010-04-10 18:05:23 ----A---- C:\WINDOWS.1\ODBC.INI 2010-04-10 18:04:00 ----D---- C:\Program Files\Microsoft Visual Studio 2010-04-10 18:03:56 ----D---- C:\Program Files\Common Files\Designer 2010-04-10 18:02:25 ----D---- C:\WINDOWS.1\ShellNew 2010-04-10 17:59:53 ----D---- C:\Documents and Settings\SysOp\Dane aplikacji\Microsoft Web Folders 2010-04-10 17:59:46 ----D---- C:\Program Files\Microsoft Office 2010-04-08 14:42:13 ----D---- C:\Program Files\Sony Corporation 2010-04-08 14:41:41 ----N---- C:\WINDOWS.1\snymsico.dll 2010-04-08 14:40:58 ----A---- C:\WINDOWS.1\system32\CDDBUISony.dll 2010-04-08 14:40:58 ----A---- C:\WINDOWS.1\system32\CddbMusicIDSony.dll 2010-04-08 14:40:58 ----A---- C:\WINDOWS.1\system32\CddbLinkSony.dll 2010-04-08 14:40:58 ----A---- C:\WINDOWS.1\system32\CDDBControlSony.dll 2010-04-08 14:40:57 ----N---- C:\WINDOWS.1\system32\vxblock.dll 2010-04-08 14:40:57 ----N---- C:\WINDOWS.1\system32\pxwma.dll 2010-04-08 14:40:57 ----N---- C:\WINDOWS.1\system32\pxwave.dll 2010-04-08 14:40:57 ----N---- C:\WINDOWS.1\system32\pxsfs.dll 2010-04-08 14:40:57 ----N---- C:\WINDOWS.1\system32\pxmas.dll 2010-04-08 14:40:57 ----N---- C:\WINDOWS.1\system32\pxinsi64.exe 2010-04-08 14:40:57 ----N---- C:\WINDOWS.1\system32\pxinsa64.exe 2010-04-08 14:40:57 ----N---- C:\WINDOWS.1\system32\pxhpinst.exe 2010-04-08 14:40:57 ----N---- C:\WINDOWS.1\system32\pxdrv.dll 2010-04-08 14:40:57 ----N---- C:\WINDOWS.1\system32\pxcpyi64.exe 2010-04-08 14:40:57 ----N---- C:\WINDOWS.1\system32\pxcpya64.exe 2010-04-08 14:40:57 ----N---- C:\WINDOWS.1\system32\px.dll 2010-04-08 14:39:49 ----D---- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Sony Corporation 2010-04-08 14:38:39 ----D---- C:\Program Files\Sony 2010-04-08 14:37:31 ----D---- C:\Documents and Settings\SysOp\Dane aplikacji\Sony Corporation 2010-04-08 14:37:29 ----D---- C:\Program Files\Common Files\Sony Shared 2010-04-04 14:35:00 ----D---- C:\Documents and Settings\SysOp\Dane aplikacji\Adobe 2010-04-02 09:30:19 ----D---- C:\temp 2010-04-01 23:07:43 ----A---- C:\WINDOWS.1\winamp.ini 2010-04-01 20:53:33 ----D---- C:\Program Files\IrfanView 2010-04-01 16:05:49 ----D---- C:\Documents and Settings\SysOp\Dane aplikacji\Gadu-Gadu 2010-04-01 15:49:41 ----D---- C:\WINDOWS.1\pss 2010-04-01 15:49:27 ----D---- C:\Program Files\Soldier of Fortune II - Double Helix MP TEST 2010-04-01 15:48:09 ----D---- C:\Program Files\Gadu-Gadu 2010-04-01 14:41:25 ----D---- C:\Program Files\SpeedFan 2010-04-01 14:06:42 ----D---- C:\Program Files\Lavalys ======List of files/folders modified in the last 2 months====== 2010-05-27 17:32:39 ----RD---- C:\Program Files 2010-05-27 17:14:09 ----D---- C:\WINDOWS.1\Temp 2010-05-27 15:48:15 ----A---- C:\WINDOWS.1\SchedLgU.Txt 2010-05-27 11:22:46 ----D---- C:\Program Files\Mozilla Firefox 2010-05-27 10:12:21 ----D---- C:\WINDOWS.1\system32 2010-05-27 10:03:57 ----D---- C:\WINDOWS.1\system32\drivers 2010-05-26 22:28:16 ----D---- C:\WINDOWS.1 2010-05-26 21:25:20 ----D---- C:\WINDOWS.1\Microsoft.NET 2010-05-26 20:43:25 ----RASH---- C:\boot.ini 2010-05-26 13:50:12 ----SHD---- C:\WINDOWS.1\CSC 2010-05-26 13:05:05 ----A---- C:\WINDOWS.1\win.ini 2010-05-26 13:05:05 ----A---- C:\WINDOWS.1\system.ini 2010-05-26 11:33:32 ----RSD---- C:\WINDOWS.1\assembly 2010-05-26 09:52:57 ----D---- C:\WINDOWS.1\system32\Restore 2010-05-26 09:52:57 ----D---- C:\Program Files\Windows Media Player 2010-05-26 09:52:56 ----D---- C:\Program Files\Outlook Express 2010-05-26 09:52:56 ----D---- C:\Program Files\Internet Explorer 2010-05-26 09:50:30 ----D---- C:\WINDOWS.1\Cursors 2010-05-26 09:50:29 ----D---- C:\WINDOWS.1\Media 2010-05-25 22:46:19 ----SHD---- C:\WINDOWS.1\Installer 2010-05-25 22:45:34 ----SD---- C:\Documents and Settings\SysOp\Dane aplikacji\Microsoft 2010-05-25 20:52:17 ----RSD---- C:\WINDOWS.1\Fonts 2010-05-22 22:44:31 ----HD---- C:\WINDOWS.1\inf 2010-05-22 22:44:06 ----D---- C:\WINDOWS.1\system32\pl-pl 2010-05-22 22:43:42 ----D---- C:\WINDOWS.1\system32\mui 2010-05-22 22:41:46 ----A---- C:\WINDOWS.1\system32\PerfStringBackup.INI 2010-05-22 22:38:59 ----D---- C:\WINDOWS.1\system32\spool 2010-05-22 22:38:44 ----D---- C:\WINDOWS.1\system32\dllcache 2010-05-22 22:38:22 ----D---- C:\WINDOWS.1\system32\CatRoot2 2010-05-22 22:37:39 ----D---- C:\WINDOWS.1\WinSxS 2010-05-22 22:36:44 ----D---- C:\WINDOWS.1\PCHealth 2010-05-21 11:41:25 ----D---- C:\WINDOWS.1\system32\config 2010-05-21 11:41:25 ----D---- C:\WINDOWS.1\security 2010-05-21 11:38:40 ----HD---- C:\Program Files\InstallShield Installation Information 2010-05-21 11:30:48 ----D---- C:\Program Files\Common Files 2010-05-10 16:51:18 ----D---- C:\WINDOWS.1\Prefetch 2010-05-07 22:56:05 ----SD---- C:\WINDOWS.1\Tasks 2010-05-03 19:21:10 ----D---- C:\WINDOWS.1\system32\CatRoot 2010-05-03 19:21:06 ----D---- C:\Program Files\AvRack 2010-04-11 18:57:36 ----D---- C:\WINDOWS.1\Debug 2010-04-11 18:45:53 ----D---- C:\Program Files\Counter-Strike 1.6 2010-04-10 18:29:25 ----A---- C:\WINDOWS.1\vbaddin.ini 2010-04-10 18:05:15 ----D---- C:\WINDOWS.1\Help 2010-04-10 18:03:45 ----D---- C:\Program Files\Common Files\Microsoft Shared 2010-04-10 18:03:20 ----D---- C:\Program Files\Common Files\System 2010-04-10 17:59:29 ----D---- C:\WINDOWS.1\msapps 2010-04-10 17:59:29 ----D---- C:\Program Files\microsoft frontpage 2010-04-10 17:53:33 ----D---- C:\WINDOWS.1\system 2010-04-08 14:17:52 ----D---- C:\WINDOWS.1\SoftwareDistribution 2010-04-03 15:43:25 ----D---- C:\WINDOWS.1\system32\DirectX 2010-04-03 15:21:39 ----D---- C:\Program Files\Common Files\InstallShield 2010-04-01 23:33:27 ----D---- C:\WINDOWS ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 AmdK7;Sterownik procesora AMD K7; C:\WINDOWS.1\system32\DRIVERS\amdk7.sys [2009-07-12 41856] R1 atitray;atitray; \??\C:\Program Files\Radeon Omega Drivers\v4.8.442\ATI Tray Tools\atitray.sys [] R1 AvgLdx86;AVG Free AVI Loader Driver x86; C:\WINDOWS.1\System32\Drivers\avgldx86.sys [2010-05-27 216200] R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86; C:\WINDOWS.1\System32\Drivers\avgmfx86.sys [2010-05-27 29512] R1 AvgTdiX;AVG Free Network Redirector; C:\WINDOWS.1\System32\Drivers\avgtdix.sys [2010-05-27 242896] R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS.1\system32\drivers\ALCXWDM.SYS [2006-08-18 4017536] R3 ati2mtag;ati2mtag; C:\WINDOWS.1\system32\DRIVERS\ati2mtag.sys [2007-12-05 2782208] R3 FETNDIS;Sterownik NT karty VIA PCI 10/100Mb Fast Ethernet; C:\WINDOWS.1\system32\DRIVERS\fetnd5.sys [2009-07-12 27165] R3 rtl8139;Sterownik NT karty Realtek RTL8139(A/B/C)-based PCI Fast Ethernet; C:\WINDOWS.1\system32\DRIVERS\RTL8139.SYS [2009-07-12 20992] R3 usbehci;Sterownik Miniport rozszerzonego kontrolera hosta USB 2.0 Microsoft; C:\WINDOWS.1\system32\DRIVERS\usbehci.sys [2008-04-14 30208] R3 usbhub;Koncentrator z obsługą USB2; C:\WINDOWS.1\system32\DRIVERS\usbhub.sys [2008-04-14 59520] R3 usbuhci;Sterownik Miniport uniwersalnego kontrolera hosta USB Microsoft; C:\WINDOWS.1\system32\DRIVERS\usbuhci.sys [2008-04-14 20608] S3 a3lsf5an;a3lsf5an; C:\WINDOWS.1\system32\drivers\a3lsf5an.sys [] S3 ALCXSENS;Service for WDM 3D Audio Driver; C:\WINDOWS.1\system32\drivers\ALCXSENS.SYS [] S3 CCDECODE;Dekoder napisów; C:\WINDOWS.1\system32\DRIVERS\CCDECODE.sys [2009-07-12 17024] S3 ENTECH;ENTECH; \??\C:\WINDOWS.1\system32\DRIVERS\ENTECH.SYS [] S3 NABTSFEC;Koder-dekoder NABTS/FEC VBI; C:\WINDOWS.1\system32\DRIVERS\NABTSFEC.sys [2009-07-12 85248] S3 NdisIP;Połączenie TV/wideo firmy Microsoft; C:\WINDOWS.1\system32\DRIVERS\NdisIP.sys [2009-07-12 10880] S3 npkcrypt;npkcrypt; \??\E:\Lineage II\system\npkcrypt.sys [] S3 SLIP;BDA Slip De-Framer; C:\WINDOWS.1\system32\DRIVERS\SLIP.sys [2008-04-14 11136] S3 streamip;BDA IPSink; C:\WINDOWS.1\system32\DRIVERS\StreamIP.sys [2008-04-14 15232] S3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS.1\system32\DRIVERS\usbccgp.sys [2008-04-14 32128] S3 usbscan;Sterownik skanera USB; C:\WINDOWS.1\system32\DRIVERS\usbscan.sys [2009-07-12 15104] S3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS.1\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] S3 usbvideo;Urządzenie wideo USB (WDM); C:\WINDOWS.1\System32\Drivers\usbvideo.sys [2009-07-12 121984] S3 WSTCODEC;Kodery-dekodery teletekstu w standardzie światowym; C:\WINDOWS.1\system32\DRIVERS\WSTCODEC.SYS [2009-07-12 19200] S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS.1\system32\DRIVERS\WudfPf.sys [2009-07-12 77568] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS.1\system32\DRIVERS\wudfrd.sys [2009-07-12 82944] S4 exFat;exFat; C:\WINDOWS.1\system32\drivers\exFat.sys [2009-07-12 133632] S4 IntelIde;IntelIde; C:\WINDOWS.1\system32\drivers\IntelIde.sys [] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS.1\system32\Ati2evxx.exe [2007-12-05 495616] R2 avg9wd;AVG Free WatchDog; C:\Program Files\AVG\AVG9\avgwdsvc.exe [2010-05-27 308064] R2 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS.1\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-05-05 153376] S2 ATI Smart;ATI Smart; C:\WINDOWS.1\system32\ati2sgag.exe [2007-09-28 593920] S3 aspnet_state;ASP.NET State Service; C:\WINDOWS.1\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS.1\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2007-10-09 36864] S3 idsvc;Windows CardSpace; C:\WINDOWS.1\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2007-10-11 864256] S3 MSCSPTISRV;MSCSPTISRV; C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe [2005-11-24 53337] S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-04-13 792112] S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-05-16 271920] S3 PACSPTISVR;PACSPTISVR; C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [2005-11-24 53337] S3 SPTISRV;Sony SPTI Service; C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe [2005-11-24 69718] S3 WMPNetworkSvc;Usługa udostępniania w sieci programu Windows Media Player; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-12-01 918016] S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS.1\system32\svchost.exe [2008-04-14 14336] S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS.1\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2007-10-11 122880] -----------------EOF-----------------[/log] [log]info.txt logfile of random's system information tool 1.06 2010-05-27 17:32:53 ======Uninstall list====== -->C:\Program Files\Nero\Nero 7\\nero\uninstall\UNNERO.exe /UNINSTALL -->C:\WINDOWS.1\UNNeroBackItUp.exe /UNINSTALL -->C:\WINDOWS.1\UNNeroMediaHome.exe /UNINSTALL -->C:\WINDOWS.1\UNNeroShowTime.exe /UNINSTALL -->C:\WINDOWS.1\UNNeroVision.exe /UNINSTALL -->C:\WINDOWS.1\UNRecode.exe /UNINSTALL -->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{88E5FCB8-5F25-11D5-B16F-0800460222F0}\setup.exe" -l0x9 UNINSTALL -->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D76298C2-E532-4A11-BCFF-76F3F19DA84D}\setup.exe" UNINSTALL Adobe Flash Player 10 ActiveX-->C:\WINDOWS.1\system32\Macromed\Flash\uninstall_activeX.exe Adobe Flash Player 10 Plugin-->C:\WINDOWS.1\system32\Macromed\Flash\uninstall_plugin.exe Adobe Reader 9.1 - Polish-->MsiExec.exe /I{AC76BA86-7AD7-1045-7B44-A91000000001} AquaMark3-->C:\PROGRA~1\AQUAMA~1\UNWISE.EXE C:\PROGRA~1\AQUAMA~1\INSTALL.LOG Archiwizator WinRAR-->C:\Program Files\WinRAR\uninstall.exe Ashampoo Burning Studio 9.20-->"C:\Program Files\Ashampoo\Ashampoo Burning Studio 9\unins000.exe" ATI Display Driver (Omega 3.8.442)-->rundll32 C:\WINDOWS.1\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean AVG Free 9.0-->C:\Program Files\AVG\AVG9\setup.exe /UNINSTALL EasyCleaner-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F5346614-B7C4-4E94-826A-E2363155233D}\setup.exe" -l0x9 EVEREST Home Edition v2.20-->"C:\Program Files\Lavalys\EVEREST Home Edition\unins000.exe" Gadu-Gadu 7.7-->C:\Program Files\Gadu-Gadu\Setup.exe Generatorek 3 dla Windows-->"C:\Program Files\Generatorek3\Uninstal.exe" GIMP 2.6.8-->"G:\GIMP-2.0\setup\unins000.exe" HFSLIP Total Slipstream (v1.7.8, build 80614)-->CMD /C ECHO>ER.REG REGEDIT4&ECHO>>ER.REG [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\HFSLIPTotalSlipstream]®EDIT /S ER.REG&DEL/Q/F ER.REG IrfanView (remove only)-->F:\Programy\IrfanView\iv_uninstall.exe Java(TM) 6 Update 20-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216020FF} K-Lite Mega Codec Pack 4.5.3-->"C:\Program Files\K-Lite Codec Pack\unins000.exe" Medal of Honor-->C:\WINDOWS.1\UnGins.exe "G:\pobiernie bicomet\Medal of Honor Allied Assault [PL] [1 CD]\install.log" Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 2.0 Service Pack 1 Language Pack - PLK-->MsiExec.exe /I{036FD544-AED6-3F33-856D-A2292D0CF471} Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28} Microsoft .NET Framework 3.0 Service Pack 1 Language Pack - PLK-->MsiExec.exe /I{7C77393F-8237-3825-A88A-AFAF3C69C072} Microsoft .NET Framework 3.0 Service Pack 1-->MsiExec.exe /I{2BA00471-0328-3743-93BD-FA813353A783} Microsoft .NET Framework 3.5 Language Pack - plk-->MsiExec.exe /I{F31E509D-3597-324E-83CF-0C160B2320F0} Microsoft .NET Framework 3.5-->C:\WINDOWS.1\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5\setup.exe Microsoft .NET Framework 3.5-->MsiExec.exe /I{2FC099BD-AC9B-33EB-809C-D332E1B27C40} Microsoft Office 2000 Premium-->MsiExec.exe /I{00000415-78E1-11D2-B60F-006097C998E7} Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d} Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c} Mozilla Firefox (3.6)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe Nero 7 Ultra Edition-->MsiExec.exe /X{D98C0C51-F9BB-4EE4-B791-22BF6EE31045} neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B} OpenMG Limited Patch 4.4-06-13-19-01-->C:\Program Files\Common Files\Sony Shared\OpenMG\HotFixes\HotFix4.4-06-13-19-01\HotFixSetup\setup.exe /u OpenMG Secure Module 4.4.00-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{CFB17307-B244-4EAD-AE8E-CDAF440477C2} UNINSTALL OpenOffice.org 3.2-->MsiExec.exe /I{D5A6D02F-3CBB-4FBF-8F65-C3A6D721E8A4} Pakiet językowy programu Microsoft .NET Framework 3.5 — PLK-->C:\WINDOWS.1\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - plk\setup.exe Radeon Omega Drivers v4.8.442 Setup Files and Tools-->"C:\WINDOWS\Radeon Omega Drivers v4.8.442 Uninstall.exe" "/U:C:\Program Files\Radeon Omega Drivers\v4.8.442\Omega Uninstall.xml" Realtek AC'97 Audio-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FB08F381-6533-4108-B7DD-039E11FBC27E}\setup.exe" -l0x15 -removeonly Soldier of Fortune II - Double Helix MP TEST-->C:\PROGRA~1\SOLDIE~1\Uninstall\Unwise.exe /u C:\PROGRA~1\SOLDIE~1\Uninstall\Install.log Sp5-->MsiExec.exe /I{560F47F7-EB23-44B1-AAFC-667F1CD8FE5C} Sp5Intl-->MsiExec.exe /I{FD4B33E1-24AE-4535-AA7B-162B30FB57CD} Sp5TTInt-->MsiExec.exe /I{E415C943-37E5-473F-8BAE-043C56734124} SpCommon-->MsiExec.exe /I{6C3959C6-943E-44B3-BAAD-570B04B134E5} SpeedFan (remove only)-->"F:\Programy\SpeedFan\uninstall.exe" SpPhones-->MsiExec.exe /I{4DFF1415-4C29-44A8-BFD4-2BCE249C4991} Winamp-->"F:\Programy\Winamp\UninstWA.exe" XML Paper Specification Shared Components Language Pack 1.0-->"C:\WINDOWS.1\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe" ======Hosts File====== 127.0.0.1 http://nasza-klasa.pl ======System event log====== Computer Name: WINDT_09 Event Code: 26 Message: Podręczne okno aplikacji: : Machine Check: Record Number: 13283 Source Name: Application Popup Time Written: 20100520173320.000000+120 Event Type: informacje User: Computer Name: WINDT_09 Event Code: 26 Message: Podręczne okno aplikacji: : Machine Check: Regs Record Number: 13282 Source Name: Application Popup Time Written: 20100520173320.000000+120 Event Type: informacje User: Computer Name: WINDT_09 Event Code: 26 Message: Podręczne okno aplikacji: : Machine Check: Record Number: 13281 Source Name: Application Popup Time Written: 20100520173320.000000+120 Event Type: informacje User: Computer Name: WINDT_09 Event Code: 6005 Message: Uruchomiono usługę Dziennik zdarzeń. Record Number: 13280 Source Name: EventLog Time Written: 20100520173303.000000+120 Event Type: informacje User: Computer Name: WINDT_09 Event Code: 6009 Message: Microsoft (R) Windows (R) 5.01. 2600 Dodatek Service Pack 3 Uniprocessor Free. Record Number: 13279 Source Name: EventLog Time Written: 20100520173303.000000+120 Event Type: informacje User: =====Application event log===== Computer Name: WINDT_09 Event Code: 1000 Message: Liczniki wydajności dla usługi MSDTC (MSDTC) zostały pomyślnie załadowane. Dane rekordu zawierają nowe wartości indeksu przypisane do tej usługi. Record Number: 5 Source Name: LoadPerf Time Written: 20100315171303.000000+060 Event Type: informacje User: Computer Name: WINDT_09 Event Code: 1000 Message: Liczniki wydajności dla usługi TermService (Usługi terminalowe) zostały pomyślnie załadowane. Dane rekordu zawierają nowe wartości indeksu przypisane do tej usługi. Record Number: 4 Source Name: LoadPerf Time Written: 20100315171258.000000+060 Event Type: informacje User: Computer Name: WINDT_09 Event Code: 1000 Message: Liczniki wydajności dla usługi RemoteAccess (Routing i dostęp zdalny) zostały pomyślnie załadowane. Dane rekordu zawierają nowe wartości indeksu przypisane do tej usługi. Record Number: 3 Source Name: LoadPerf Time Written: 20100315171149.000000+060 Event Type: informacje User: Computer Name: WINDT_09 Event Code: 1000 Message: Liczniki wydajności dla usługi PSched (PSched) zostały pomyślnie załadowane. Dane rekordu zawierają nowe wartości indeksu przypisane do tej usługi. Record Number: 2 Source Name: LoadPerf Time Written: 20100315171120.000000+060 Event Type: informacje User: Computer Name: WINDT_09 Event Code: 1000 Message: Liczniki wydajności dla usługi RSVP (QoS RSVP) zostały pomyślnie załadowane. Dane rekordu zawierają nowe wartości indeksu przypisane do tej usługi. Record Number: 1 Source Name: LoadPerf Time Written: 20100315171055.000000+060 Event Type: informacje User: ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem "windir"=%SystemRoot% "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_LEVEL"=6 "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 8 Stepping 1, AuthenticAMD "PROCESSOR_REVISION"=0801 "NUMBER_OF_PROCESSORS"=1 "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP -----------------EOF----------------- [/log]OTL [log]OTL Extras logfile created on: 2010-05-27 17:31:28 - Run 3 OTL by OldTimer - Version 3.2.5.0 Folder = C:\Documents and Settings\SysOp\Moje dokumenty\Pobieranie Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1 023,00 Mb Total Physical Memory | 501,00 Mb Available Physical Memory | 49,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 83,00% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS.1 | %ProgramFiles% = C:\Program Files Drive C: | 14,75 Gb Total Space | 2,81 Gb Free Space | 19,07% Space Free | Partition Type: NTFS D: Drive not present or media not loaded Drive E: | 41,14 Gb Total Space | 18,04 Gb Free Space | 43,86% Space Free | Partition Type: NTFS Drive F: | 17,72 Gb Total Space | 5,67 Gb Free Space | 31,99% Space Free | Partition Type: FAT32 Drive G: | 19,53 Gb Total Space | 1,99 Gb Free Space | 10,20% Space Free | Partition Type: NTFS H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: WINDT_09 Current User Name: SysOp Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 60 Days Output = Standard [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>] .html [@ = htmlfile] -- Reg Error: Key error. File not found [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office\msohtmed.exe" %1 (Microsoft Corporation) htmlfile [print] -- "C:\Program Files\Microsoft Office\Office\msohtmed.exe" /p %1 (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [cmd] -- cmd.exe /k cd "%L" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [Winamp.Bookmark] -- "F:\Programy\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.) Directory [Winamp.Enqueue] -- "F:\Programy\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.) Directory [Winamp.Play] -- "F:\Programy\Winamp\winamp.exe" "%1" (Nullsoft, Inc.) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List] "139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004 "445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005 "137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001 "138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DoNotAllowExceptions" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008 "139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004 "445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005 "137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001 "138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002 "22021:TCP" = 22021:TCP:*:Enabled:BitComet 22021 TCP "22021:UDP" = 22021:UDP:*:Enabled:BitComet 22021 UDP "22808:TCP" = 22808:TCP:*:Enabled:BitComet 22808 TCP "22808:UDP" = 22808:UDP:*:Enabled:BitComet 22808 UDP [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "D:\tdu\TestDriveUnlimited.exe" = D:\tdu\TestDriveUnlimited.exe:*:Enabled:Test Drive Unlimited -- File not found "C:\WINDOWS.1\system32\PnkBstrA.exe" = C:\WINDOWS.1\system32\PnkBstrA.exe:*:Enabled:PnkBstrA -- File not found "C:\WINDOWS.1\system32\PnkBstrB.exe" = C:\WINDOWS.1\system32\PnkBstrB.exe:*:Enabled:PnkBstrB -- File not found "C:\Program Files\Counter-Strike 1.6\hl.exe" = C:\Program Files\Counter-Strike 1.6\hl.exe:*:Enabled:Half-Life Launcher -- File not found "C:\Program Files\Gadu-Gadu\gg.exe" = C:\Program Files\Gadu-Gadu\gg.exe:*:Enabled:Gadu-Gadu - program główny -- (Gadu-Gadu S.A.) "F:\Program Files\Gadu-Gadu\gg.exe" = F:\Program Files\Gadu-Gadu\gg.exe:*:Enabled:Gadu-Gadu - program główny -- File not found "F:\Programy\BitComet\BitComet.exe" = F:\Programy\BitComet\BitComet.exe:*:Enabled:BitComet.exe -- File not found "F:\Gry\PES6\Pro Evolution Soccer 6.5\PES6.EXE" = F:\Gry\PES6\Pro Evolution Soccer 6.5\PES6.EXE:*:Enabled:pes6.exe -- File not found "C:\Program Files\Soldier of Fortune II - Double Helix MP TEST\SoF2MP-Test.exe" = C:\Program Files\Soldier of Fortune II - Double Helix MP TEST\SoF2MP-Test.exe:*:Enabled:SoF2MP-Test -- () "F:\tdu\TestDriveUnlimited.exe" = F:\tdu\TestDriveUnlimited.exe:*:Enabled:Test Drive Unlimited -- File not found "F:\Gry\Pro Evolution Soccer 6.5\Alternative Files\Online Files\Direct IP GoalServer PES 6.5\GoalServer6.exe" = F:\Gry\Pro Evolution Soccer 6.5\Alternative Files\Online Files\Direct IP GoalServer PES 6.5\GoalServer6.exe:*:Enabled:GoalServer6 Alpha -- () "G:\pobiernie bicomet\Medal of Honor Pacific Assault Direct-Play {Dotcom1}\mod\Medal of Honor Pacific Assault(tm)\mohpa.exe" = G:\pobiernie bicomet\Medal of Honor Pacific Assault Direct-Play {Dotcom1}\mod\Medal of Honor Pacific Assault(tm)\mohpa.exe:*:Enabled:Medal of Honor Pacific Assault(tm) -- (Electronic Arts Inc.) "G:\pobiernie bicomet\Medal of Honor Allied Assault [PL] [1 CD]\MOHAA.EXE" = G:\pobiernie bicomet\Medal of Honor Allied Assault [PL] [1 CD]\MOHAA.EXE:*:Enabled:Medal of Honor Allied Assault -- (Electronic Arts Inc.) "C:\Program Files\Soldier of Fortune II - Double Helix MP TEST\sof2mp.exe" = C:\Program Files\Soldier of Fortune II - Double Helix MP TEST\sof2mp.exe:*:Enabled:sof2mp -- () "C:\Program Files\AVG\AVG9\avgupd.exe" = C:\Program Files\AVG\AVG9\avgupd.exe:*:Enabled:avgupd.exe -- (AVG Technologies CZ, s.r.o.) "C:\Program Files\AVG\AVG9\avgnsx.exe" = C:\Program Files\AVG\AVG9\avgnsx.exe:*:Enabled:avgnsx.exe -- (AVG Technologies CZ, s.r.o.) [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{00000415-78E1-11D2-B60F-006097C998E7}" = Microsoft Office 2000 Premium "{036FD544-AED6-3F33-856D-A2292D0CF471}" = Microsoft .NET Framework 2.0 Service Pack 1 Language Pack - PLK "{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java(TM) 6 Update 20 "{2BA00471-0328-3743-93BD-FA813353A783}" = Microsoft .NET Framework 3.0 Service Pack 1 "{2FC099BD-AC9B-33EB-809C-D332E1B27C40}" = Microsoft .NET Framework 3.5 "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4DFF1415-4C29-44A8-BFD4-2BCE249C4991}" = SpPhones "{560F47F7-EB23-44B1-AAFC-667F1CD8FE5C}" = Sp5 "{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml "{6C3959C6-943E-44B3-BAAD-570B04B134E5}" = SpCommon "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{7C77393F-8237-3825-A88A-AFAF3C69C072}" = Microsoft .NET Framework 3.0 Service Pack 1 Language Pack - PLK "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{AC76BA86-7AD7-1045-7B44-A91000000001}" = Adobe Reader 9.1 - Polish "{B508B3F1-A24A-32C0-B310-85786919EF28}" = Microsoft .NET Framework 2.0 Service Pack 1 "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 "{CFB17307-B244-4EAD-AE8E-CDAF440477C2}" = OpenMG Secure Module 4.4.00 "{D5A6D02F-3CBB-4FBF-8F65-C3A6D721E8A4}" = OpenOffice.org 3.2 "{D98C0C51-F9BB-4EE4-B791-22BF6EE31045}" = Nero 7 Ultra Edition "{E415C943-37E5-473F-8BAE-043C56734124}" = Sp5TTInt "{F31E509D-3597-324E-83CF-0C160B2320F0}" = Microsoft .NET Framework 3.5 Language Pack - plk "{F5346614-B7C4-4E94-826A-E2363155233D}" = EasyCleaner "{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio "{FD4B33E1-24AE-4535-AA7B-162B30FB57CD}" = Sp5Intl "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "AquaMark3" = AquaMark3 "Ashampoo Burning Studio 9_is1" = Ashampoo Burning Studio 9.20 "ATI Display Driver" = ATI Display Driver (Omega 3.8.442) "AVG9Uninstall" = AVG Free 9.0 "EVEREST Home Edition_is1" = EVEREST Home Edition v2.20 "Gadu-Gadu" = Gadu-Gadu 7.7 "Generatorek 3 dla Windows" = Generatorek 3 dla Windows "HFSLIPTotalSlipstream" = HFSLIP Total Slipstream (v1.7.8, build 80614) "InstallShield_{CFB17307-B244-4EAD-AE8E-CDAF440477C2}" = OpenMG Secure Module 4.4.00 "IrfanView" = IrfanView (remove only) "KLiteCodecPack_is1" = K-Lite Mega Codec Pack 4.5.3 "Medal of Honor" = Medal of Honor "Microsoft .NET Framework 3.5" = Microsoft .NET Framework 3.5 "Microsoft .NET Framework 3.5 Language Pack - plk" = Pakiet językowy programu Microsoft .NET Framework 3.5 — PLK "Mozilla Firefox (3.6)" = Mozilla Firefox (3.6) "OpenMG HotFix4.4-05-12-06-01" = OpenMG Limited Patch 4.4-06-13-19-01 "Radeon Omega Drivers for Windows XP/2kv4.8.442" = Radeon Omega Drivers v4.8.442 Setup Files and Tools "Soldier of Fortune II - Double Helix MP TEST" = Soldier of Fortune II - Double Helix MP TEST "SpeedFan" = SpeedFan (remove only) "Winamp" = Winamp "WinGimp-2.0_is1" = GIMP 2.6.8 "WinRAR archiver" = Archiwizator WinRAR "XpsEPSC" = XML Paper Specification Shared Components Pack 1.0 "XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0 [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ System Events ] Error - 2010-05-27 09:08:27 | Computer Name = WINDT_09 | Source = ati2mtag | ID = 45062 Description = CRT invalid display type Error - 2010-05-27 09:14:08 | Computer Name = WINDT_09 | Source = ati2mtag | ID = 45062 Description = CRT invalid display type Error - 2010-05-27 09:14:13 | Computer Name = WINDT_09 | Source = ati2mtag | ID = 45062 Description = CRT invalid display type Error - 2010-05-27 09:19:12 | Computer Name = WINDT_09 | Source = ati2mtag | ID = 45062 Description = CRT invalid display type Error - 2010-05-27 09:19:15 | Computer Name = WINDT_09 | Source = ati2mtag | ID = 45062 Description = CRT invalid display type Error - 2010-05-27 09:22:29 | Computer Name = WINDT_09 | Source = ati2mtag | ID = 45062 Description = CRT invalid display type Error - 2010-05-27 11:13:33 | Computer Name = WINDT_09 | Source = Ntfs | ID = 262199 Description = Struktura systemu plików na dysku jest uszkodzona i nie do użytku. Uruchom narzędzie chkdsk na woluminie G:. Error - 2010-05-27 11:13:33 | Computer Name = WINDT_09 | Source = Ntfs | ID = 262199 Description = Struktura systemu plików na dysku jest uszkodzona i nie do użytku. Uruchom narzędzie chkdsk na woluminie G:. Error - 2010-05-27 11:13:33 | Computer Name = WINDT_09 | Source = ati2mtag | ID = 45062 Description = CRT invalid display type Error - 2010-05-27 11:14:18 | Computer Name = WINDT_09 | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi Usługa bramy warstwy aplikacji z powodu następującego błędu: %%2 < End of report >[/log] [log]OTL logfile created on: 2010-05-27 17:31:28 - Run 3 OTL by OldTimer - Version 3.2.5.0 Folder = C:\Documents and Settings\SysOp\Moje dokumenty\Pobieranie Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1 023,00 Mb Total Physical Memory | 501,00 Mb Available Physical Memory | 49,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 83,00% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS.1 | %ProgramFiles% = C:\Program Files Drive C: | 14,75 Gb Total Space | 2,81 Gb Free Space | 19,07% Space Free | Partition Type: NTFS D: Drive not present or media not loaded Drive E: | 41,14 Gb Total Space | 18,04 Gb Free Space | 43,86% Space Free | Partition Type: NTFS Drive F: | 17,72 Gb Total Space | 5,67 Gb Free Space | 31,99% Space Free | Partition Type: FAT32 Drive G: | 19,53 Gb Total Space | 1,99 Gb Free Space | 10,20% Space Free | Partition Type: NTFS H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: WINDT_09 Current User Name: SysOp Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 60 Days Output = Standard [color=#E56717]========== Processes (All) ==========[/color] PRC - [2010-05-27 10:03:49 | 002,064,736 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgtray.exe PRC - [2010-05-27 10:03:47 | 000,620,896 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgnsx.exe PRC - [2010-05-27 10:03:47 | 000,508,184 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgrsx.exe PRC - [2010-05-27 10:03:43 | 000,308,064 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe PRC - [2010-05-27 10:02:52 | 001,101,152 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe PRC - [2010-05-27 10:02:52 | 000,710,424 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe PRC - [2010-05-26 13:08:11 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\SysOp\Moje dokumenty\Pobieranie\OTL.exe PRC - [2010-05-05 22:10:50 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe PRC - [2010-01-16 05:18:19 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2009-07-12 14:24:30 | 000,549,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\winlogon.exe PRC - [2009-07-12 14:02:10 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\services.exe PRC - [2009-03-17 09:40:58 | 001,739,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\explorer.exe PRC - [2008-04-14 22:51:44 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\spoolsv.exe PRC - [2008-04-14 22:51:44 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\smss.exe PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\svchost.exe [RPCSS] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\svchost.exe [NETWORKSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\svchost.exe [NETSVCS] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\svchost.exe [IMGSVC] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\svchost.exe [DCOMLAUNCH] PRC - [2008-04-14 22:51:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\lsass.exe PRC - [2008-04-14 22:51:12 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\csrss.exe PRC - [2007-12-05 04:53:58 | 000,495,616 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS.1\system32\ati2evxx.exe PRC - [2007-10-24 01:47:40 | 000,070,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe PRC - [2007-07-09 09:39:12 | 002,119,104 | ---- | M] (Gadu-Gadu S.A.) -- C:\Program Files\Gadu-Gadu\gg.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2010-05-26 13:08:11 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\SysOp\Moje dokumenty\Pobieranie\OTL.exe MOD - [2009-07-12 14:25:41 | 000,483,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\shlwapi.dll MOD - [2009-07-12 14:22:53 | 000,757,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\userenv.dll MOD - [2009-07-12 14:22:37 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\srclient.dll MOD - [2009-07-12 14:21:52 | 002,730,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\setupapi.dll MOD - [2009-07-12 14:21:35 | 001,312,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\ole32.dll MOD - [2009-07-12 14:19:36 | 001,420,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\comres.dll MOD - [2009-07-12 14:19:31 | 000,344,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\comdlg32.dll MOD - [2009-07-12 14:04:08 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\uxtheme.dll MOD - [2009-07-12 14:03:05 | 000,585,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\rpcrt4.dll MOD - [2009-07-12 14:02:40 | 001,020,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\kernel32.dll MOD - [2009-07-12 14:02:40 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\secur32.dll MOD - [2009-07-12 14:02:15 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\gdi32.dll MOD - [2009-07-12 14:01:59 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\advapi32.dll MOD - [2009-07-08 10:36:02 | 019,150,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\shell32.dll MOD - [2009-07-03 09:24:22 | 000,652,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\user32.dll MOD - [2009-02-09 14:00:17 | 000,723,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\ntdll.dll MOD - [2008-04-14 22:51:58 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\winspool.drv MOD - [2008-04-14 22:50:58 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\version.dll MOD - [2008-04-14 22:50:46 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\oleaut32.dll MOD - [2008-04-14 22:50:46 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\olepro32.dll MOD - [2008-04-14 22:50:46 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\psapi.dll MOD - [2008-04-14 22:50:40 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\msvcrt.dll MOD - [2008-04-14 22:50:34 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\imm32.dll MOD - [2008-04-14 22:50:32 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\wbem\framedyn.dll MOD - [2008-04-14 22:50:12 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\clbcatq.dll MOD - [2008-04-14 22:46:34 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\msscript.ocx MOD - [2008-04-14 22:43:00 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\MSCTFIME.IME MOD - [2008-04-14 22:29:10 | 001,054,208 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS.1\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll MOD - [2006-12-21 14:30:44 | 000,102,400 | ---- | M] (Gadu-Gadu S.A.) -- C:\Program Files\Gadu-Gadu\ggwhook.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [On_Demand | Stopped] -- -- (ALG) SRV - [2010-05-27 10:03:43 | 000,308,064 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd) SRV - [2005-11-24 17:03:22 | 000,053,337 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe -- (MSCSPTISRV) SRV - [2005-11-24 16:57:44 | 000,053,337 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe -- (PACSPTISVR) SRV - [2005-11-24 16:47:30 | 000,069,718 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe -- (SPTISRV) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2010-05-27 10:03:48 | 000,242,896 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS.1\System32\Drivers\avgtdix.sys -- (AvgTdiX) DRV - [2010-05-27 10:03:47 | 000,029,512 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS.1\System32\Drivers\avgmfx86.sys -- (AvgMfx86) DRV - [2010-05-27 10:02:53 | 000,216,200 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS.1\System32\Drivers\avgldx86.sys -- (AvgLdx86) DRV - [2010-03-16 15:16:38 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS.1\System32\Drivers\sptd.sys -- (sptd) DRV - [2009-07-12 14:05:11 | 000,062,208 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS.1\system32\drivers\si3112.sys -- (Si3112) DRV - [2009-07-12 13:32:34 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS.1\system32\drivers\gameenum.sys -- (gameenum) DRV - [2009-07-12 11:32:58 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS.1\system32\drivers\RTL8139.sys -- (rtl8139) Sterownik NT karty Realtek RTL8139(A/B/C) DRV - [2007-12-05 07:26:40 | 002,782,208 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS.1\system32\drivers\ati2mtag.sys -- (ati2mtag) DRV - [2007-11-05 09:55:04 | 000,017,952 | ---- | M] () [Kernel | System | Running] -- C:\Program Files\Radeon Omega Drivers\v4.8.442\ATI Tray Tools\atitray.sys -- (atitray) DRV - [2006-09-24 15:28:46 | 000,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS.1\system32\speedfan.sys -- (speedfan) DRV - [2006-08-18 07:52:00 | 004,017,536 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS.1\system32\drivers\alcxwdm.sys -- (ALCXWDM) Service for Realtek AC97 Audio (WDM) DRV - [2005-12-06 17:11:18 | 000,035,328 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS.1\System32\drivers\sfsync03.sys -- (sfsync03) StarForce Protection Synchronization Driver (version 3.x) DRV - [2005-08-10 14:44:04 | 000,050,688 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS.1\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x) DRV - [2005-05-16 15:20:39 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS.1\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x) DRV - [1996-04-03 21:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS.1\system32\giveio.sys -- (giveio) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.wyborcza.pl/0,0.html?p=029 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.windowsxlive.net IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.startup.homepage: "plemiona.pl" FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.8.20100408.6 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:9.0.0.812 FF - HKLM\software\mozilla\Firefox\extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2010-05-27 10:12:20 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-05-07 22:08:16 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-05-07 22:08:16 | 000,000,000 | ---D | M] [2010-03-17 21:44:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\Mozilla\Extensions [2010-05-27 14:17:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\Mozilla\Firefox\Profiles\c6r55vr5.default\extensions [2010-05-27 14:17:02 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\SysOp\Dane aplikacji\Mozilla\Firefox\Profiles\c6r55vr5.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}-trash [2010-04-13 15:13:59 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Documents and Settings\SysOp\Dane aplikacji\Mozilla\Firefox\Profiles\c6r55vr5.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781} [2010-05-26 22:39:50 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010-05-05 22:11:08 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} [2010-02-21 12:22:32 | 000,712,704 | ---- | M] (BitComet) -- C:\Program Files\Mozilla Firefox\plugins\npBitCometAgent.dll [2010-05-05 22:10:50 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll [2010-01-16 03:08:36 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-01-16 03:08:36 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-01-16 03:08:36 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-01-16 03:08:36 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-01-16 03:08:36 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-01-16 03:08:36 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2010-04-22 19:16:11 | 000,000,779 | ---- | M]) - C:\WINDOWS.1\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: 127.0.0.1 http://nasza-klasa.pl O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.) O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.) O4 - HKCU..\Run: [Gadu-Gadu] C:\Program Files\Gadu-Gadu\gg.exe (Gadu-Gadu S.A.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoInternetOpenWith = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS.1\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\WINDOWS.1\System32\SYSdm.cpl (cr1t1cal) O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS.1\System32\ati2evxx.dll (ATI Technologies Inc.) O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS.1\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010-03-11 20:32:24 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2010-04-02 11:26:24 | 000,000,000 | ---- | M] () - F:\AUTOEXEC.BAT -- [ FAT32 ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: Ias - C:\WINDOWS.1\system32\ias [2010-03-15 18:15:44 | 000,000,000 | ---D | M] NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found MsConfig - StartUpFolder: C:^Documents and Settings^All Users.WINDOWS.1^Menu Start^Programy^Autostart^Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE - (Microsoft Corporation) MsConfig - StartUpFolder: C:^Documents and Settings^SysOp^Menu Start^Programy^Autostart^OpenOffice.org 3.2.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe - () MsConfig - StartUpFolder: C:^Documents and Settings^SysOp^Menu Start^Programy^Autostart^UniSpiker-2.6.lnk - G:\jamal\UNISPI~1.6\UNI_SP~1.EXE - File not found MsConfig - StartUpReg: [b]Adobe Reader Speed Launcher[/b] - hkey= - key= - F:\Programy\Reader\Reader_sl.exe (Adobe Systems Incorporated) MsConfig - StartUpReg: [b]AtiPTA[/b] - hkey= - key= - File not found MsConfig - StartUpReg: [b]BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}[/b] - hkey= - key= - C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG) MsConfig - StartUpReg: [b]DAEMON Tools Lite[/b] - hkey= - key= - C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) MsConfig - StartUpReg: [b]DANT[/b] - hkey= - key= - File not found MsConfig - StartUpReg: [b]DrvIcon[/b] - hkey= - key= - C:\Program Files\Vista Drive Icon\DrvIcon.exe File not found MsConfig - StartUpReg: [b]Expressivo[/b] - hkey= - key= - Reg Error: Value error. File not found MsConfig - StartUpReg: [b]Gadu-Gadu[/b] - hkey= - key= - C:\Program Files\Gadu-Gadu\gg.exe (Gadu-Gadu S.A.) MsConfig - StartUpReg: [b]NeroFilterCheck[/b] - hkey= - key= - C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG) MsConfig - StartUpReg: [b]SoundMan[/b] - hkey= - key= - C:\WINDOWS.1\soundman.exe (Realtek Semiconductor Corp.) MsConfig - StartUpReg: [b]SunJavaUpdateSched[/b] - hkey= - key= - C:\Program Files\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.) MsConfig - StartUpReg: [b]swg[/b] - hkey= - key= - Reg Error: Value error. File not found MsConfig - StartUpReg: [b]WinampAgent[/b] - hkey= - key= - F:\Programy\Winamp\winampa.exe (Nullsoft, Inc.) MsConfig - State: "system.ini" - 0 MsConfig - State: "win.ini" - 1 MsConfig - State: "bootini" - 2 MsConfig - State: "services" - 0 MsConfig - State: "startup" - 2 SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: SCSI Class - Driver Group SafeBootMin: sermouse.sys - Driver SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vga.sys - Driver SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: Messenger - Service SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: SCSI Class - Driver Group SafeBootNet: sermouse.sys - Driver SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vga.sys - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2010-05-27 17:32:39 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro [2010-05-27 15:48:10 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\SysOp\Recent [2010-05-27 10:03:47 | 000,012,464 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS.1\System32\avgrsstx.dll [2010-05-26 22:28:16 | 000,000,000 | ---D | C] -- C:\Avenger [2010-05-26 09:51:05 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\VIRepair [2010-05-25 22:47:03 | 000,000,000 | -H-D | C] -- C:\$AVG [2010-05-25 22:46:48 | 000,242,896 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS.1\System32\drivers\avgtdix.sys [2010-05-25 22:46:40 | 000,216,200 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS.1\System32\drivers\avgldx86.sys [2010-05-25 22:46:39 | 000,029,512 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS.1\System32\drivers\avgmfx86.sys [2010-05-25 22:46:37 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\drivers\Avg [2010-05-25 22:46:24 | 000,000,000 | ---D | C] -- C:\Program Files\AVG [2010-05-25 22:46:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\avg9 [2010-05-25 21:00:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\My Webs [2010-05-25 20:54:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\ViSplore [2010-05-25 20:54:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\ViGlance [2010-05-25 20:54:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\ViStart [2010-05-25 20:48:17 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\VITrans [2010-05-25 20:48:16 | 000,094,208 | ---- | C] (Sysinternals - www.sysinternals.com) -- C:\WINDOWS.1\System32\pskill.exe [2010-05-25 20:48:16 | 000,019,968 | ---- | C] (Dead Knight) -- C:\WINDOWS.1\System32\reico.exe [2010-05-25 20:48:16 | 000,000,000 | ---D | C] -- C:\VTPFiles [2010-05-22 22:40:17 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2010-05-22 22:39:55 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\XPSViewer [2010-05-22 22:39:42 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2010-05-22 22:39:42 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\en-us [2010-05-22 22:38:38 | 000,014,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\spmsg2.dll [2010-05-22 22:38:24 | 000,022,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\spupdsvc.exe [2010-05-21 11:31:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Pointstone [2010-05-21 11:30:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Pointstone [2010-05-19 21:10:30 | 000,000,000 | ---D | C] -- C:\Program Files\Generatorek3 [2010-05-17 19:21:28 | 009,740,288 | ---- | C] (Electronic Arts Inc.) -- C:\Documents and Settings\SysOp\Pulpit\mohpa.exe [2010-05-17 12:18:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\EA Games [2010-05-16 11:20:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\KONAMI [2010-05-11 20:10:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\atitray [2010-05-08 21:53:01 | 000,098,304 | ---- | C] (Sony DADC Austria AG.) -- C:\WINDOWS.1\System32\CmdLineExt.dll [2010-05-08 20:05:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\gtk-2.0 [2010-05-08 19:06:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Ahead [2010-05-08 19:05:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Ahead [2010-05-08 19:05:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Ahead [2010-05-08 19:03:00 | 000,000,000 | ---D | C] -- C:\Program Files\Nero [2010-05-08 19:03:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Nero [2010-05-08 19:03:00 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Ahead [2010-05-07 22:56:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Google [2010-05-07 22:27:14 | 000,025,992 | ---- | C] (Sysinternals - www.sysinternals.com) -- C:\WINDOWS.1\System32\pgdfgsvc.exe [2010-05-05 22:18:00 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\Sun [2010-05-05 22:11:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Sun [2010-05-05 22:11:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2010-05-05 22:11:05 | 000,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS.1\System32\deployJava1.dll [2010-05-05 22:11:05 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS.1\System32\javacpl.cpl [2010-05-05 22:11:04 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS.1\System32\javaws.exe [2010-05-05 22:11:04 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS.1\System32\javaw.exe [2010-05-05 22:11:04 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS.1\System32\java.exe [2010-05-05 22:10:45 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2010-05-05 22:08:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Sun [2010-05-04 17:27:00 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\speech [2010-05-04 17:26:48 | 000,000,000 | ---D | C] -- C:\Program Files\ivo [2010-05-03 19:21:18 | 004,017,536 | R--- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS.1\System32\drivers\alcxwdm.sys [2010-05-03 19:20:55 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek AC97 [2010-05-03 19:20:54 | 010,528,768 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS.1\System32\RTLCPL.exe [2010-05-03 19:20:51 | 018,804,736 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS.1\System32\alsndmgr.cpl [2010-05-03 19:20:51 | 000,577,536 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS.1\soundman.exe [2010-05-03 19:20:48 | 000,315,392 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS.1\alcupd.exe [2010-05-03 19:20:48 | 000,217,088 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS.1\Alcrmv.exe [2010-05-03 19:14:31 | 000,000,000 | R--D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\Expressivo Podcasts [2010-05-03 19:14:31 | 000,000,000 | R--D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\Expressivo Documents [2010-05-03 19:13:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\IVONA Player [2010-05-03 18:46:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\IVONA_INST [2010-05-02 22:24:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\.thumbnails [2010-05-01 16:51:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Google [2010-05-01 16:51:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Google [2010-05-01 16:51:02 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2010-04-29 15:00:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\.gimp-2.6 [2010-04-29 15:00:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\gegl-0.0 [2010-04-23 20:04:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Winamp [2010-04-23 19:56:03 | 000,129,520 | ---- | C] (Sonic Solutions) -- C:\WINDOWS.1\System32\pxafs.dll [2010-04-23 19:56:03 | 000,009,200 | ---- | C] (Sonic Solutions) -- C:\WINDOWS.1\System32\drivers\cdralw2k.sys [2010-04-23 19:56:03 | 000,009,072 | ---- | C] (Sonic Solutions) -- C:\WINDOWS.1\System32\drivers\cdr4_xp.sys [2010-04-22 14:14:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Identities [2010-04-22 14:14:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Identities [2010-04-19 20:38:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Adobe [2010-04-19 20:37:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Adobe [2010-04-19 20:36:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2010-04-17 19:45:53 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\ptpusb.dll [2010-04-17 19:45:43 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS.1\System32\ptpusd.dll [2010-04-11 18:58:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\OpenOffice.org [2010-04-11 18:43:00 | 000,000,000 | ---D | C] -- C:\Program Files\OpenOffice.org 3 [2010-04-10 18:29:49 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\appmgmt [2010-04-10 18:04:00 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio [2010-04-10 18:03:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Designer [2010-04-10 18:02:25 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\ShellNew [2010-04-10 17:59:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Microsoft Web Folders [2010-04-10 17:59:46 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2010-04-08 14:47:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\SonicStage [2010-04-08 14:42:41 | 000,027,255 | ---- | C] (Sony Corporation) -- C:\WINDOWS.1\System32\drivers\NWWMUSB.sys [2010-04-08 14:42:13 | 000,011,510 | ---- | C] (Sony Corporation) -- C:\WINDOWS.1\System32\drivers\VMCUSB.sys [2010-04-08 14:42:13 | 000,000,000 | ---D | C] -- C:\Program Files\Sony Corporation [2010-04-08 14:41:41 | 000,090,112 | ---- | C] (Sony Corporation) -- C:\WINDOWS.1\snymsico.dll [2010-04-08 14:41:41 | 000,038,951 | ---- | C] (Sony Corporation) -- C:\WINDOWS.1\System32\drivers\NETMDUSB.sys [2010-04-08 14:41:41 | 000,036,679 | ---- | C] (Sony Corporation) -- C:\WINDOWS.1\System32\drivers\NETMD052.sys [2010-04-08 14:41:41 | 000,036,232 | ---- | C] (Sony Corporation) -- C:\WINDOWS.1\System32\drivers\NETMD033.sys [2010-04-08 14:41:41 | 000,035,319 | ---- | C] (Sony Corporation) -- C:\WINDOWS.1\System32\drivers\NETMD031.sys [2010-04-08 14:40:58 | 000,770,048 | ---- | C] (Gracenote) -- C:\WINDOWS.1\System32\CDDBUISony.dll [2010-04-08 14:40:58 | 000,643,072 | ---- | C] (Gracenote, Inc.) -- C:\WINDOWS.1\System32\CDDBControlSony.dll [2010-04-08 14:40:58 | 000,585,728 | ---- | C] (Gracenote) -- C:\WINDOWS.1\System32\CddbMusicIDSony.dll [2010-04-08 14:40:58 | 000,073,728 | ---- | C] (Gracenote) -- C:\WINDOWS.1\System32\CddbLinkSony.dll [2010-04-08 14:40:57 | 001,858,032 | ---- | C] (Sonic Solutions) -- C:\WINDOWS.1\System32\pxsfs.dll [2010-04-08 14:40:57 | 000,670,192 | ---- | C] (Sonic Solutions) -- C:\WINDOWS.1\System32\px.dll [2010-04-08 14:40:57 | 000,551,408 | ---- | C] (Sonic Solutions) -- C:\WINDOWS.1\System32\pxdrv.dll [2010-04-08 14:40:57 | 000,436,720 | ---- | C] (Sonic Solutions) -- C:\WINDOWS.1\System32\pxwave.dll [2010-04-08 14:40:57 | 000,219,632 | ---- | C] (Sonic Solutions) -- C:\WINDOWS.1\System32\pxmas.dll [2010-04-08 14:40:57 | 000,151,552 | ---- | C] (Sonic Solutions) -- C:\WINDOWS.1\System32\pxwma.dll [2010-04-08 14:40:57 | 000,109,568 | ---- | C] (Sonic Solutions) -- C:\WINDOWS.1\System32\pxinsi64.exe [2010-04-08 14:40:57 | 000,108,544 | ---- | C] (Sonic Solutions) -- C:\WINDOWS.1\System32\pxcpyi64.exe [2010-04-08 14:40:57 | 000,096,752 | ---- | C] (Sonic Solutions) -- C:\WINDOWS.1\System32\vxblock.dll [2010-04-08 14:40:57 | 000,072,176 | ---- | C] (Sonic Solutions) -- C:\WINDOWS.1\System32\pxhpinst.exe [2010-04-08 14:40:57 | 000,066,544 | ---- | C] (Sonic Solutions) -- C:\WINDOWS.1\System32\pxcpya64.exe [2010-04-08 14:40:57 | 000,066,032 | ---- | C] (Sonic Solutions) -- C:\WINDOWS.1\System32\pxinsa64.exe [2010-04-08 14:39:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Sony Corporation [2010-04-08 14:38:39 | 000,000,000 | ---D | C] -- C:\Program Files\Sony [2010-04-08 14:37:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Sony Corporation [2010-04-08 14:37:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Sony Shared [2010-04-05 22:55:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\Pobieranie [2010-04-04 14:35:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Adobe [2010-04-02 09:30:19 | 000,000,000 | ---D | C] -- C:\temp [2010-04-01 20:58:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\Nowy folder [2010-04-01 20:53:33 | 000,000,000 | ---D | C] -- C:\Program Files\IrfanView [2010-04-01 16:05:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Gadu-Gadu [2010-04-01 15:49:41 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\pss [2010-04-01 15:49:27 | 000,000,000 | ---D | C] -- C:\Program Files\Soldier of Fortune II - Double Helix MP TEST [2010-04-01 15:48:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Gadu-Gadu [2010-04-01 15:48:09 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu [2010-04-01 14:41:25 | 000,000,000 | ---D | C] -- C:\Program Files\SpeedFan [2010-04-01 14:06:42 | 000,000,000 | ---D | C] -- C:\Program Files\Lavalys [2010-04-01 13:39:11 | 000,020,992 | ---- | C] (Realtek Semiconductor Corporation) -- C:\WINDOWS.1\System32\drivers\RTL8139.sys [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2010-05-27 17:13:28 | 000,000,006 | -H-- | M] () -- C:\WINDOWS.1\tasks\SA.DAT [2010-05-27 17:13:16 | 000,002,048 | --S- | M] () -- C:\WINDOWS.1\bootstat.dat [2010-05-27 17:13:08 | 1073,270,784 | -HS- | M] () -- C:\hiberfil.sys [2010-05-27 15:48:11 | 004,194,304 | ---- | M] () -- C:\Documents and Settings\SysOp\NTUSER.DAT [2010-05-27 15:48:11 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\SysOp\ntuser.ini [2010-05-27 12:55:08 | 000,000,466 | -H-- | M] () -- C:\WINDOWS.1\tasks\User_Feed_Synchronization-{40CF33F7-F0DF-4BA2-BFDB-7923F9138C46}.job [2010-05-27 10:07:03 | 004,846,892 | -H-- | M] () -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010-05-27 10:03:48 | 000,242,896 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS.1\System32\drivers\avgtdix.sys [2010-05-27 10:03:47 | 000,029,512 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS.1\System32\drivers\avgmfx86.sys [2010-05-27 10:03:47 | 000,012,464 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS.1\System32\avgrsstx.dll [2010-05-27 10:03:39 | 060,422,530 | ---- | M] () -- C:\WINDOWS.1\System32\drivers\Avg\incavi.avm [2010-05-27 10:02:53 | 000,216,200 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS.1\System32\drivers\avgldx86.sys [2010-05-26 20:47:04 | 000,000,069 | ---- | M] () -- C:\WINDOWS.1\NeroDigital.ini [2010-05-26 20:46:50 | 000,011,776 | ---- | M] () -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-05-26 20:43:25 | 000,000,349 | RHS- | M] () -- C:\boot.ini [2010-05-26 17:54:46 | 000,082,645 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\asdf.jpg [2010-05-26 17:53:58 | 000,082,677 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\Obraz 102.jpg [2010-05-26 17:49:06 | 001,102,554 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\222.bmp [2010-05-26 13:05:05 | 000,001,001 | ---- | M] () -- C:\WINDOWS.1\win.ini [2010-05-26 13:05:05 | 000,000,227 | ---- | M] () -- C:\WINDOWS.1\system.ini [2010-05-25 22:57:25 | 000,142,495 | ---- | M] () -- C:\WINDOWS.1\System32\drivers\Avg\microavi.avg [2010-05-25 22:46:50 | 000,001,507 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\AVG Free 9.0.lnk [2010-05-25 22:46:39 | 000,113,461 | ---- | M] () -- C:\WINDOWS.1\System32\drivers\Avg\iavichjw.avm [2010-05-25 22:46:37 | 006,061,540 | ---- | M] () -- C:\WINDOWS.1\System32\drivers\Avg\avi7.avg [2010-05-25 22:46:37 | 000,492,629 | ---- | M] () -- C:\WINDOWS.1\System32\drivers\Avg\miniavi.avg [2010-05-25 20:54:29 | 000,020,816 | ---- | M] () -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2010-05-25 20:53:53 | 000,139,648 | ---- | M] () -- C:\WINDOWS.1\System32\FNTCACHE.DAT [2010-05-25 20:48:34 | 000,085,182 | ---- | M] () -- C:\WINDOWS.1\Icon_1.ico [2010-05-25 16:16:56 | 000,000,802 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\Skrót do fairplay.exe.lnk [2010-05-23 21:33:23 | 000,235,430 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\ass.bmp [2010-05-23 21:29:33 | 000,029,788 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\aaa.jpg [2010-05-22 22:41:47 | 000,497,766 | ---- | M] () -- C:\WINDOWS.1\System32\perfh015.dat [2010-05-22 22:41:47 | 000,439,114 | ---- | M] () -- C:\WINDOWS.1\System32\perfh009.dat [2010-05-22 22:41:47 | 000,087,352 | ---- | M] () -- C:\WINDOWS.1\System32\perfc015.dat [2010-05-22 22:41:47 | 000,070,038 | ---- | M] () -- C:\WINDOWS.1\System32\perfc009.dat [2010-05-22 22:41:46 | 001,102,138 | ---- | M] () -- C:\WINDOWS.1\System32\PerfStringBackup.INI [2010-05-22 18:39:45 | 000,001,152 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\Skrót do mohpa.exe.lnk [2010-05-22 15:17:46 | 000,000,151 | ---- | M] () -- C:\WINDOWS.1\PhotoSnapViewer.INI [2010-05-22 15:06:27 | 001,959,354 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Obraz 112.bmp [2010-05-22 15:05:25 | 001,959,354 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Obraz 108.bmp [2010-05-22 15:04:58 | 001,959,354 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Obraz 107.bmp [2010-05-22 15:04:49 | 001,959,354 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Obraz 109.bmp [2010-05-22 14:58:57 | 000,884,154 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\spod.bmp [2010-05-22 14:52:33 | 000,004,076 | ---- | M] () -- C:\Documents and Settings\SysOp\.recently-used.xbel [2010-05-22 14:43:07 | 000,860,070 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\jjj.bmp [2010-05-22 14:42:31 | 000,000,602 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\IrfanView Thumbnails.lnk [2010-05-22 14:42:31 | 000,000,520 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\IrfanView.lnk [2010-05-22 11:12:34 | 000,025,088 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\CV.doc oryginał.doc [2010-05-20 19:06:11 | 000,000,636 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\GIMP 2.lnk [2010-05-19 21:10:31 | 000,000,742 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Generatorek 3 dla Windows.lnk [2010-05-16 21:20:16 | 000,091,531 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\wwww.ods [2010-05-15 20:38:46 | 000,000,967 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\OpenOffice.org 3.2.lnk [2010-05-12 16:25:19 | 000,000,509 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\SpeedFan.lnk [2010-05-12 16:25:18 | 000,000,045 | ---- | M] () -- C:\WINDOWS.1\System32\initdebug.nfo [2010-05-09 15:37:31 | 000,020,480 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\plan ramowy.doc [2010-05-08 21:53:01 | 000,098,304 | ---- | M] (Sony DADC Austria AG.) -- C:\WINDOWS.1\System32\CmdLineExt.dll [2010-05-08 21:52:38 | 000,000,566 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\Pro Evolution Soccer 6.5.lnk [2010-05-08 19:06:10 | 000,002,385 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Nero StartSmart.lnk [2010-05-08 19:06:10 | 000,002,305 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Nero Home.lnk [2010-05-07 23:30:02 | 003,407,872 | -H-- | M] () -- C:\Documents and Settings\SysOp\NTUSER.DAT.bak_jv16pt [2010-05-07 23:23:47 | 000,000,082 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\Dokonaj zakupu jv16 PowerTools.url [2010-05-07 23:23:22 | 000,000,023 | -HS- | M] () -- C:\WINDOWS.1\System32\fcaafaeebda7.dat [2010-05-07 23:23:22 | 000,000,023 | ---- | M] () -- C:\WINDOWS.1\System32\cbed.xml [2010-05-07 22:27:14 | 000,025,992 | ---- | M] (Sysinternals - www.sysinternals.com) -- C:\WINDOWS.1\System32\pgdfgsvc.exe [2010-05-07 20:24:41 | 000,012,439 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\bmSUgEXK.htm.part [2010-05-06 16:17:46 | 000,025,088 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\CV.doc [2010-05-05 22:10:50 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS.1\System32\deployJava1.dll [2010-05-05 22:10:50 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS.1\System32\javaws.exe [2010-05-05 22:10:50 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS.1\System32\javaw.exe [2010-05-05 22:10:50 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS.1\System32\java.exe [2010-05-05 22:10:50 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS.1\System32\javacpl.cpl [2010-05-03 19:21:06 | 000,001,519 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\AvRack.lnk [2010-05-01 21:50:43 | 000,000,169 | ---- | M] () -- C:\WINDOWS.1\RtlRack.ini [2010-05-01 14:00:00 | 000,000,025 | ---- | M] () -- C:\WINDOWS.1\popcinfot.dat [2010-04-23 20:05:09 | 000,000,481 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Winamp.lnk [2010-04-19 22:24:08 | 000,047,616 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\matura.doc [2010-04-19 20:37:10 | 000,001,391 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Adobe Reader 9.lnk [2010-04-19 19:31:49 | 001,660,416 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\wakacje.ppt [2010-04-10 18:29:25 | 000,000,037 | ---- | M] () -- C:\WINDOWS.1\vbaddin.ini [2010-04-10 18:27:40 | 000,025,088 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Motyw cierpnienia w literaturze.doc [2010-04-10 18:05:23 | 000,000,433 | ---- | M] () -- C:\WINDOWS.1\ODBC.INI [2010-04-07 09:38:49 | 000,001,662 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\biobliografia2.rtf [2010-04-06 19:44:47 | 001,157,552 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\ustny_j_polski_popr.pdf [2010-04-05 18:57:18 | 000,001,602 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Mozilla Firefox.lnk [2010-04-05 16:39:05 | 000,002,254 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Dokument.rtf [2010-04-01 23:07:43 | 000,000,084 | ---- | M] () -- C:\WINDOWS.1\winamp.ini [2010-04-01 20:56:50 | 000,047,436 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2696.JPG [2010-04-01 20:56:44 | 000,048,485 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2699.JPG [2010-04-01 20:56:36 | 000,031,692 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2702.JPG [2010-04-01 20:56:28 | 000,051,806 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2703.JPG [2010-04-01 20:56:12 | 000,072,877 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2706.jpg [2010-04-01 15:49:31 | 000,000,879 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\sof.lnk [2010-04-01 15:48:14 | 000,000,653 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\Gadu-Gadu.lnk [2010-04-01 14:06:43 | 000,000,767 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\EVEREST Home Edition.lnk [2010-04-01 13:38:34 | 000,002,184 | ---- | M] () -- C:\WINDOWS.1\System32\wpa.dbl [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-05-26 17:54:46 | 000,082,645 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\asdf.jpg [2010-05-26 17:49:06 | 001,102,554 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\222.bmp [2010-05-25 22:46:50 | 000,001,507 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\AVG Free 9.0.lnk [2010-05-25 22:46:39 | 000,113,461 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\Avg\iavichjw.avm [2010-05-25 22:46:37 | 060,422,530 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\Avg\incavi.avm [2010-05-25 22:46:37 | 006,061,540 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\Avg\avi7.avg [2010-05-25 22:46:37 | 000,492,629 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\Avg\miniavi.avg [2010-05-25 22:46:37 | 000,142,495 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\Avg\microavi.avg [2010-05-25 20:52:17 | 000,146,412 | ---- | C] () -- C:\WINDOWS.1\System32\vilaunch.exe [2010-05-25 20:48:34 | 000,085,182 | ---- | C] () -- C:\WINDOWS.1\Icon_1.ico [2010-05-25 20:48:16 | 000,111,104 | ---- | C] () -- C:\WINDOWS.1\System32\Uharc.exe [2010-05-25 20:48:16 | 000,069,632 | ---- | C] () -- C:\WINDOWS.1\System32\moveex.exe [2010-05-25 20:48:16 | 000,008,636 | ---- | C] () -- C:\WINDOWS.1\System32\modifype.exe [2010-05-25 16:16:56 | 000,000,802 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\Skrót do fairplay.exe.lnk [2010-05-23 21:33:23 | 000,235,430 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\ass.bmp [2010-05-23 21:29:30 | 000,029,788 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\aaa.jpg [2010-05-22 18:39:47 | 000,001,152 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\Skrót do mohpa.exe.lnk [2010-05-22 15:00:37 | 001,959,354 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Obraz 112.bmp [2010-05-22 15:00:22 | 001,959,354 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Obraz 109.bmp [2010-05-22 14:59:28 | 001,959,354 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Obraz 107.bmp [2010-05-22 14:59:16 | 001,959,354 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Obraz 108.bmp [2010-05-22 14:58:57 | 000,884,154 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\spod.bmp [2010-05-22 14:52:33 | 000,004,076 | ---- | C] () -- C:\Documents and Settings\SysOp\.recently-used.xbel [2010-05-22 14:48:14 | 000,000,151 | ---- | C] () -- C:\WINDOWS.1\PhotoSnapViewer.INI [2010-05-22 14:43:07 | 000,860,070 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\jjj.bmp [2010-05-22 14:42:31 | 000,000,602 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\IrfanView Thumbnails.lnk [2010-05-22 14:42:31 | 000,000,520 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\IrfanView.lnk [2010-05-22 13:15:31 | 000,082,677 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\Obraz 102.jpg [2010-05-22 11:12:33 | 000,025,088 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\CV.doc oryginał.doc [2010-05-20 19:06:11 | 000,000,636 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\GIMP 2.lnk [2010-05-20 11:00:19 | 000,122,880 | ---- | C] () -- C:\WINDOWS.1\UnGins.exe [2010-05-19 21:10:31 | 000,000,742 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Generatorek 3 dla Windows.lnk [2010-05-17 12:59:27 | 000,000,069 | ---- | C] () -- C:\WINDOWS.1\NeroDigital.ini [2010-05-15 21:46:14 | 000,091,531 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\wwww.ods [2010-05-15 20:38:46 | 000,000,967 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\OpenOffice.org 3.2.lnk [2010-05-12 16:25:19 | 000,000,509 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\SpeedFan.lnk [2010-05-09 15:37:31 | 000,020,480 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\plan ramowy.doc [2010-05-08 19:06:10 | 000,002,385 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Nero StartSmart.lnk [2010-05-08 19:06:10 | 000,002,305 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Nero Home.lnk [2010-05-07 23:29:37 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\SysOp\NTUSER.DAT.tmp.LOG [2010-05-07 23:23:47 | 000,000,082 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\Dokonaj zakupu jv16 PowerTools.url [2010-05-07 23:23:22 | 000,000,023 | -HS- | C] () -- C:\WINDOWS.1\System32\fcaafaeebda7.dat [2010-05-07 23:23:22 | 000,000,023 | ---- | C] () -- C:\WINDOWS.1\System32\cbed.xml [2010-05-07 20:24:40 | 000,012,439 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\bmSUgEXK.htm.part [2010-05-05 20:02:05 | 000,025,088 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\CV.doc [2010-05-03 19:21:27 | 000,049,152 | ---- | C] () -- C:\WINDOWS.1\System32\ChCfg.exe [2010-05-03 19:21:06 | 000,001,519 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\AvRack.lnk [2010-05-03 19:21:06 | 000,000,164 | ---- | C] () -- C:\WINDOWS.1\avrack.ini [2010-05-03 19:20:54 | 000,141,016 | ---- | C] () -- C:\WINDOWS.1\System32\alsndmgr.wav [2010-05-03 19:20:50 | 000,143,360 | ---- | C] () -- C:\WINDOWS.1\System32\RtlCPAPI.dll [2010-05-01 21:50:43 | 000,000,169 | ---- | C] () -- C:\WINDOWS.1\RtlRack.ini [2010-04-23 20:05:09 | 000,000,481 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Winamp.lnk [2010-04-19 22:24:06 | 000,047,616 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\matura.doc [2010-04-19 20:37:10 | 000,001,391 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Adobe Reader 9.lnk [2010-04-19 19:31:49 | 001,660,416 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\wakacje.ppt [2010-04-10 18:27:40 | 000,025,088 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Motyw cierpnienia w literaturze.doc [2010-04-10 18:05:23 | 000,000,433 | ---- | C] () -- C:\WINDOWS.1\ODBC.INI [2010-04-10 08:59:56 | 000,000,566 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\Pro Evolution Soccer 6.5.lnk [2010-04-07 09:38:49 | 000,001,662 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\biobliografia2.rtf [2010-04-06 19:44:38 | 001,157,552 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\ustny_j_polski_popr.pdf [2010-04-05 16:39:05 | 000,002,254 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Dokument.rtf [2010-04-01 23:07:43 | 000,000,084 | ---- | C] () -- C:\WINDOWS.1\winamp.ini [2010-04-01 20:56:50 | 000,047,436 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2696.JPG [2010-04-01 20:56:44 | 000,048,485 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2699.JPG [2010-04-01 20:56:36 | 000,031,692 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2702.JPG [2010-04-01 20:56:28 | 000,051,806 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2703.JPG [2010-04-01 20:56:12 | 000,072,877 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2706.jpg [2010-04-01 15:49:31 | 000,000,879 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\sof.lnk [2010-04-01 15:48:14 | 000,000,653 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\Gadu-Gadu.lnk [2010-04-01 14:41:23 | 000,000,045 | ---- | C] () -- C:\WINDOWS.1\System32\initdebug.nfo [2010-04-01 14:06:43 | 000,000,767 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\EVEREST Home Edition.lnk [2010-03-16 15:16:37 | 000,691,696 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\sptd.sys [2010-03-15 23:22:43 | 000,168,448 | ---- | C] () -- C:\WINDOWS.1\System32\unrar.dll [2010-03-15 23:22:38 | 000,795,648 | ---- | C] () -- C:\WINDOWS.1\System32\xvidcore.dll [2010-03-15 23:22:38 | 000,130,048 | ---- | C] () -- C:\WINDOWS.1\System32\xvidvfw.dll [2010-03-15 23:22:37 | 003,596,288 | ---- | C] () -- C:\WINDOWS.1\System32\qt-dx331.dll [2010-03-15 23:22:35 | 000,057,344 | ---- | C] () -- C:\WINDOWS.1\System32\ff_vfw.dll [2010-03-15 23:22:35 | 000,000,547 | ---- | C] () -- C:\WINDOWS.1\System32\ff_vfw.dll.manifest [2010-03-11 21:44:49 | 000,000,011 | ---- | C] () -- C:\WINDOWS.1\System32\atiicdxx.ini [1999-01-22 17:46:58 | 000,065,536 | ---- | C] () -- C:\WINDOWS.1\System32\MSRTEDIT.DLL [1996-04-03 21:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS.1\System32\giveio.sys [color=#E56717]========== LOP Check ==========[/color] [2010-03-16 16:22:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\ashampoo [2010-05-25 22:46:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\avg9 [2010-03-16 15:16:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\DAEMON Tools Lite [2010-03-16 15:55:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\PopCap Games [2010-03-15 20:15:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Test Drive Unlimited [2010-03-16 16:22:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\Ashampoo [2010-03-16 15:21:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\DAEMON Tools Lite [2010-04-01 16:05:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\Gadu-Gadu [2010-05-08 20:06:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\gtk-2.0 [2010-05-03 19:13:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\IVONA Player [2010-04-11 18:58:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\OpenOffice.org [2010-05-21 11:31:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\Pointstone [2010-05-25 20:54:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\ViGlance [2010-05-25 20:54:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\ViSplore [2010-05-25 20:54:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\ViStart [2010-05-27 12:55:08 | 000,000,466 | -H-- | M] () -- C:\WINDOWS.1\Tasks\User_Feed_Synchronization-{40CF33F7-F0DF-4BA2-BFDB-7923F9138C46}.job [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2010-03-11 20:32:24 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-05-26 22:28:16 | 000,001,746 | ---- | M] () -- C:\avenger.txt [2010-05-26 20:43:25 | 000,000,349 | RHS- | M] () -- C:\boot.ini [2001-07-22 02:13:54 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin [2010-03-11 20:32:24 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-05-27 17:13:08 | 1073,270,784 | -HS- | M] () -- C:\hiberfil.sys [2010-03-11 20:32:24 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-03-11 20:32:24 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2010-03-13 21:08:40 | 000,000,007 | ---- | M] () -- C:\NOTACER.ID [2008-04-13 22:13:04 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2008-04-14 00:02:00 | 000,251,152 | RHS- | M] () -- C:\ntldr [2010-05-27 17:13:07 | 1610,612,736 | -HS- | M] () -- C:\pagefile.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS.1\system32\drivers\atapi.sys [color=#A23BEC]< MD5 for: BEEP.SYS >[/color] [2001-08-18 01:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS.0\system32\drivers\beep.sys [2001-08-18 01:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS.1\system32\drivers\beep.sys [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2009-07-12 13:29:34 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=4B0A100EAF5C49EF3CCA8C641431EACC -- C:\WINDOWS.1\system32\drivers\cdrom.sys [color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color] [2008-04-14 22:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS.1\system32\eventlog.dll [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2008-04-14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS.1\system32\drivers\ndis.sys [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2009-07-12 14:24:30 | 000,549,888 | ---- | M] (Microsoft Corporation) MD5=335813EACD16E84F3047A3326F6E5473 -- C:\WINDOWS.1\system32\winlogon.exe < End of report >[/log]
Tomek01 komentarz 27 maja 2010 komentarz 27 maja 2010 Co do ciagłego sprawdzania dysku:[code]W Menu Start->Uruchom, należy wpisać cmd W nowym oknie wydajemy kolejno polecenia: fsutil dirty query D: chkdsk D: /f Gdzie D to litera dysku, który ciągle jest sprawdzany. Podczas wydawania drugiego polecenia, możemy otrzymać zapytanie o to, czy wolumin ma być sprawdzany przy następnym uruchomieniu. Należy się na to zgodzić naciskając klawisz T . Na inne komunikaty należy odpowiedzieć Nie (N). Po ponownym uruchomieniu komputera dysk zostanie ponownie sprawdzony, lecz tym razem powinien to być już ostatni raz.[/code] Zrób pełny skan DrWebCureIt oraz Mbam. Jak coś wykryją wyniki podaj na forum.
varoth komentarz 27 maja 2010 Autor komentarz 27 maja 2010 Skanuje ponad godzinę i postęp max +/- 10%.Jak na razie żaden program nic nie znalazł przy pełnym skanowaniu Da się to jakoś przyspieszyć ?
varoth komentarz 27 maja 2010 Autor komentarz 27 maja 2010 Jeśli skanuje naraz 2 programami nie wydłuża to czasu skanowania ?
Tomek01 komentarz 27 maja 2010 komentarz 27 maja 2010 Oczywiście że tak. Co za pomysł ! Wpierw jednym później drugim. Zawiesisz sobie system i tyle z tego będzie
varoth komentarz 28 maja 2010 Autor komentarz 28 maja 2010 [log]Malwarebytes' Anti-Malware 1.44 Wersja bazy definicji: 3510 Windows 5.1.2600 Dodatek Service Pack 3 Internet Explorer 8.0.6001.18702 2010-05-28 10:41:17 mbam-log-2010-05-28 (10-41-14).txt Typ skanowania: Pełne skanowanie (C:\|E:\|F:\|G:\|) Przeskanowane obiekty: 248313 Upłynęło: 1 hour(s), 15 minute(s), 50 second(s) Zainfekowane procesy w pamięci: 0 Zainfekowane moduły pamięci: 0 Zainfekowane klucze rejestru: 0 Zainfekowane wartości rejestru: 1 Zainfekowane pliki rejestru: 1 Zainfekowane foldery: 0 Zainfekowane pliki: 1 Zainfekowane procesy w pamięci: (Nie wykryto groźnych plików) Zainfekowane moduły pamięci: (Nie wykryto groźnych plików) Zainfekowane klucze rejestru: (Nie wykryto groźnych plików) Zainfekowane wartości rejestru: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\forceclassiccontrolpanel (Hijack.ControlPanelStyle) -> No action taken. Zainfekowane pliki rejestru: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoSMHelp (Hijack.Help) -> Bad: (1) Good: (0) -> No action taken. Zainfekowane foldery: (Nie wykryto groźnych plików) Zainfekowane pliki: E:\System Volume Information\_restore{F2C43030-8231-4E62-AF83-D6DF7B500FDB}\RP10\A0005852.exe (Malware.Packer) -> No action taken. [/log]Komunikaty AVG.Pierwszy raz spotykam się z czymś takim tyle komunikatów ciągu 20 min [URL=http://fotoo.pl/][IMG]http://fotoo.pl/zdjecia/files/2010-05/76a8911a.jpg[/IMG][/URL] [URL=http://fotoo.pl/][IMG]http://fotoo.pl/zdjecia/files/2010-05/05cc2302.jpg[/IMG][/URL] [URL=http://fotoo.pl/][IMG]http://fotoo.pl/zdjecia/files/2010-05/540a7053.jpg[/IMG][/URL] [URL=http://fotoo.pl/][IMG]http://fotoo.pl/zdjecia/files/2010-05/e3d7fa90.jpg[/IMG][/URL] [URL=http://fotoo.pl/][IMG]http://fotoo.pl/zdjecia/files/2010-05/2219a5d1.jpg[/IMG][/URL]Nie ma możliwości zeskanowania DrWebCureIt 2,5 h i stoi w miejscu max 10%[URL=http://fotoo.pl/][IMG]http://fotoo.pl/zdjecia/files/2010-05/3dd39a41.jpg[/IMG][/URL]
Tomek01 komentarz 28 maja 2010 komentarz 28 maja 2010 Nic groźnego. Wyłącz a następnie włącz przywracanie systemu na wszystkich partycjach. Jedynie co to te dwa wpisy które wykrył Mbam w rejestrze możesz wywalić. To wszystko. W OTL użyj opcji Clean Up.
varoth komentarz 28 maja 2010 Autor komentarz 28 maja 2010 Start- Mój komputer- Właściwości - Przywracanie systemu - Włącz przywracanie na wszystkich dyskach - OK.Tak zrobiłem systerm zawiesił się na około 2 sek i to wszystko tak miało być ? W OTL użyłem opcji clean UP, ale nadal bez skutku...
Tomek01 komentarz 28 maja 2010 komentarz 28 maja 2010 A czy wykonałeś optymalizację jaką zalecono Ci w wątku, z którego przywędrowałeś ? Nie widzę żeby przyczyna leżała w infekcji. Załącz jeszcze log Silent Runners oraz Reglooks.
varoth komentarz 30 maja 2010 Autor komentarz 30 maja 2010 (edytowane) Tak,wykonałem OTL [log]OTL Extras logfile created on: 2010-05-28 21:20:08 - Run 1 OTL by OldTimer - Version 3.2.5.0 Folder = C:\Documents and Settings\SysOp\Moje dokumenty\Pobieranie Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1 023,00 Mb Total Physical Memory | 500,00 Mb Available Physical Memory | 49,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 83,00% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS.1 | %ProgramFiles% = C:\Program Files Drive C: | 14,75 Gb Total Space | 4,00 Gb Free Space | 27,13% Space Free | Partition Type: NTFS D: Drive not present or media not loaded Drive E: | 41,14 Gb Total Space | 39,70 Gb Free Space | 96,50% Space Free | Partition Type: NTFS Drive F: | 17,72 Gb Total Space | 5,87 Gb Free Space | 33,16% Space Free | Partition Type: FAT32 Drive G: | 19,53 Gb Total Space | 2,01 Gb Free Space | 10,31% Space Free | Partition Type: NTFS H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: WINDT_09 Current User Name: SysOp Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: On Skip Microsoft Files: On File Age = 60 Days Output = Standard [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>] .html [@ = htmlfile] -- Reg Error: Key error. File not found [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office\msohtmed.exe" %1 (Microsoft Corporation) htmlfile [print] -- "C:\Program Files\Microsoft Office\Office\msohtmed.exe" /p %1 (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [cmd] -- cmd.exe /k cd "%L" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [Winamp.Bookmark] -- "F:\Programy\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.) Directory [Winamp.Enqueue] -- "F:\Programy\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.) Directory [Winamp.Play] -- "F:\Programy\Winamp\winamp.exe" "%1" (Nullsoft, Inc.) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List] "139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004 "445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005 "137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001 "138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DoNotAllowExceptions" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008 "139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004 "445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005 "137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001 "138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002 "22021:TCP" = 22021:TCP:*:Enabled:BitComet 22021 TCP "22021:UDP" = 22021:UDP:*:Enabled:BitComet 22021 UDP "22808:TCP" = 22808:TCP:*:Enabled:BitComet 22808 TCP "22808:UDP" = 22808:UDP:*:Enabled:BitComet 22808 UDP [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "D:\tdu\TestDriveUnlimited.exe" = D:\tdu\TestDriveUnlimited.exe:*:Enabled:Test Drive Unlimited -- File not found "C:\WINDOWS.1\system32\PnkBstrA.exe" = C:\WINDOWS.1\system32\PnkBstrA.exe:*:Enabled:PnkBstrA -- File not found "C:\WINDOWS.1\system32\PnkBstrB.exe" = C:\WINDOWS.1\system32\PnkBstrB.exe:*:Enabled:PnkBstrB -- File not found "C:\Program Files\Counter-Strike 1.6\hl.exe" = C:\Program Files\Counter-Strike 1.6\hl.exe:*:Enabled:Half-Life Launcher -- File not found "C:\Program Files\Gadu-Gadu\gg.exe" = C:\Program Files\Gadu-Gadu\gg.exe:*:Enabled:Gadu-Gadu - program główny -- (Gadu-Gadu S.A.) "F:\Program Files\Gadu-Gadu\gg.exe" = F:\Program Files\Gadu-Gadu\gg.exe:*:Enabled:Gadu-Gadu - program główny -- File not found "F:\Programy\BitComet\BitComet.exe" = F:\Programy\BitComet\BitComet.exe:*:Enabled:BitComet.exe -- File not found "F:\Gry\PES6\Pro Evolution Soccer 6.5\PES6.EXE" = F:\Gry\PES6\Pro Evolution Soccer 6.5\PES6.EXE:*:Enabled:pes6.exe -- File not found "C:\Program Files\Soldier of Fortune II - Double Helix MP TEST\SoF2MP-Test.exe" = C:\Program Files\Soldier of Fortune II - Double Helix MP TEST\SoF2MP-Test.exe:*:Enabled:SoF2MP-Test -- () "F:\tdu\TestDriveUnlimited.exe" = F:\tdu\TestDriveUnlimited.exe:*:Enabled:Test Drive Unlimited -- File not found "F:\Gry\Pro Evolution Soccer 6.5\Alternative Files\Online Files\Direct IP GoalServer PES 6.5\GoalServer6.exe" = F:\Gry\Pro Evolution Soccer 6.5\Alternative Files\Online Files\Direct IP GoalServer PES 6.5\GoalServer6.exe:*:Enabled:GoalServer6 Alpha -- () "G:\pobiernie bicomet\Medal of Honor Pacific Assault Direct-Play {Dotcom1}\mod\Medal of Honor Pacific Assault(tm)\mohpa.exe" = G:\pobiernie bicomet\Medal of Honor Pacific Assault Direct-Play {Dotcom1}\mod\Medal of Honor Pacific Assault(tm)\mohpa.exe:*:Enabled:Medal of Honor Pacific Assault(tm) -- (Electronic Arts Inc.) "G:\pobiernie bicomet\Medal of Honor Allied Assault [PL] [1 CD]\MOHAA.EXE" = G:\pobiernie bicomet\Medal of Honor Allied Assault [PL] [1 CD]\MOHAA.EXE:*:Enabled:Medal of Honor Allied Assault -- (Electronic Arts Inc.) "C:\Program Files\Soldier of Fortune II - Double Helix MP TEST\sof2mp.exe" = C:\Program Files\Soldier of Fortune II - Double Helix MP TEST\sof2mp.exe:*:Enabled:sof2mp -- () "C:\Program Files\AVG\AVG9\avgupd.exe" = C:\Program Files\AVG\AVG9\avgupd.exe:*:Enabled:avgupd.exe -- (AVG Technologies CZ, s.r.o.) "C:\Program Files\AVG\AVG9\avgnsx.exe" = C:\Program Files\AVG\AVG9\avgnsx.exe:*:Enabled:avgnsx.exe -- (AVG Technologies CZ, s.r.o.) [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{00000415-78E1-11D2-B60F-006097C998E7}" = Microsoft Office 2000 Premium "{036FD544-AED6-3F33-856D-A2292D0CF471}" = Microsoft .NET Framework 2.0 Service Pack 1 Language Pack - PLK "{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java(TM) 6 Update 20 "{2BA00471-0328-3743-93BD-FA813353A783}" = Microsoft .NET Framework 3.0 Service Pack 1 "{2FC099BD-AC9B-33EB-809C-D332E1B27C40}" = Microsoft .NET Framework 3.5 "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4DFF1415-4C29-44A8-BFD4-2BCE249C4991}" = SpPhones "{560F47F7-EB23-44B1-AAFC-667F1CD8FE5C}" = Sp5 "{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml "{6C3959C6-943E-44B3-BAAD-570B04B134E5}" = SpCommon "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{7C77393F-8237-3825-A88A-AFAF3C69C072}" = Microsoft .NET Framework 3.0 Service Pack 1 Language Pack - PLK "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{AC76BA86-7AD7-1045-7B44-A91000000001}" = Adobe Reader 9.1 - Polish "{B508B3F1-A24A-32C0-B310-85786919EF28}" = Microsoft .NET Framework 2.0 Service Pack 1 "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 "{CFB17307-B244-4EAD-AE8E-CDAF440477C2}" = OpenMG Secure Module 4.4.00 "{D5A6D02F-3CBB-4FBF-8F65-C3A6D721E8A4}" = OpenOffice.org 3.2 "{D98C0C51-F9BB-4EE4-B791-22BF6EE31045}" = Nero 7 Ultra Edition "{E415C943-37E5-473F-8BAE-043C56734124}" = Sp5TTInt "{F31E509D-3597-324E-83CF-0C160B2320F0}" = Microsoft .NET Framework 3.5 Language Pack - plk "{F5346614-B7C4-4E94-826A-E2363155233D}" = EasyCleaner "{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio "{FD4B33E1-24AE-4535-AA7B-162B30FB57CD}" = Sp5Intl "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "AquaMark3" = AquaMark3 "Ashampoo Burning Studio 9_is1" = Ashampoo Burning Studio 9.20 "ATI Display Driver" = ATI Display Driver (Omega 3.8.442) "AVG9Uninstall" = AVG Free 9.0 "EVEREST Home Edition_is1" = EVEREST Home Edition v2.20 "Gadu-Gadu" = Gadu-Gadu 7.7 "Generatorek 3 dla Windows" = Generatorek 3 dla Windows "HFSLIPTotalSlipstream" = HFSLIP Total Slipstream (v1.7.8, build 80614) "InstallShield_{CFB17307-B244-4EAD-AE8E-CDAF440477C2}" = OpenMG Secure Module 4.4.00 "IrfanView" = IrfanView (remove only) "KLiteCodecPack_is1" = K-Lite Mega Codec Pack 4.5.3 "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware "Medal of Honor" = Medal of Honor "Microsoft .NET Framework 3.5" = Microsoft .NET Framework 3.5 "Microsoft .NET Framework 3.5 Language Pack - plk" = Pakiet językowy programu Microsoft .NET Framework 3.5 — PLK "Mozilla Firefox (3.6)" = Mozilla Firefox (3.6) "OpenMG HotFix4.4-05-12-06-01" = OpenMG Limited Patch 4.4-06-13-19-01 "Radeon Omega Drivers for Windows XP/2kv4.8.442" = Radeon Omega Drivers v4.8.442 Setup Files and Tools "RivaTuner" = RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition "Soldier of Fortune II - Double Helix MP TEST" = Soldier of Fortune II - Double Helix MP TEST "SpeedFan" = SpeedFan (remove only) "Winamp" = Winamp "WinGimp-2.0_is1" = GIMP 2.6.8 "WinRAR archiver" = Archiwizator WinRAR "XpsEPSC" = XML Paper Specification Shared Components Pack 1.0 "XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0 [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ System Events ] Error - 2010-05-28 13:56:53 | Computer Name = WINDT_09 | Source = ati2mtag | ID = 45062 Description = CRT invalid display type Error - 2010-05-28 13:57:52 | Computer Name = WINDT_09 | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi Usługa bramy warstwy aplikacji z powodu następującego błędu: %%2 Error - 2010-05-28 14:06:17 | Computer Name = WINDT_09 | Source = ati2mtag | ID = 45062 Description = CRT invalid display type Error - 2010-05-28 14:07:11 | Computer Name = WINDT_09 | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi Usługa bramy warstwy aplikacji z powodu następującego błędu: %%2 Error - 2010-05-28 14:11:18 | Computer Name = WINDT_09 | Source = ati2mtag | ID = 45062 Description = CRT invalid display type Error - 2010-05-28 14:12:13 | Computer Name = WINDT_09 | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi Usługa bramy warstwy aplikacji z powodu następującego błędu: %%2 Error - 2010-05-28 14:19:20 | Computer Name = WINDT_09 | Source = ati2mtag | ID = 45062 Description = CRT invalid display type Error - 2010-05-28 14:19:44 | Computer Name = WINDT_09 | Source = ati2mtag | ID = 45062 Description = CRT invalid display type Error - 2010-05-28 15:08:31 | Computer Name = WINDT_09 | Source = ati2mtag | ID = 45062 Description = CRT invalid display type Error - 2010-05-28 15:09:36 | Computer Name = WINDT_09 | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi Usługa bramy warstwy aplikacji z powodu następującego błędu: %%2 < End of report > [/log] [log]OTL logfile created on: 2010-05-28 21:20:08 - Run 1 OTL by OldTimer - Version 3.2.5.0 Folder = C:\Documents and Settings\SysOp\Moje dokumenty\Pobieranie Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1 023,00 Mb Total Physical Memory | 500,00 Mb Available Physical Memory | 49,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 83,00% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS.1 | %ProgramFiles% = C:\Program Files Drive C: | 14,75 Gb Total Space | 4,00 Gb Free Space | 27,13% Space Free | Partition Type: NTFS D: Drive not present or media not loaded Drive E: | 41,14 Gb Total Space | 39,70 Gb Free Space | 96,50% Space Free | Partition Type: NTFS Drive F: | 17,72 Gb Total Space | 5,87 Gb Free Space | 33,16% Space Free | Partition Type: FAT32 Drive G: | 19,53 Gb Total Space | 2,01 Gb Free Space | 10,31% Space Free | Partition Type: NTFS H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: WINDT_09 Current User Name: SysOp Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: On Skip Microsoft Files: On File Age = 60 Days Output = Standard [color=#E56717]========== Processes (All) ==========[/color] PRC - [2010-05-28 21:19:12 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\SysOp\Moje dokumenty\Pobieranie\OTL.exe PRC - [2010-05-27 10:03:49 | 002,064,736 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgtray.exe PRC - [2010-05-27 10:03:47 | 000,620,896 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgnsx.exe PRC - [2010-05-27 10:03:47 | 000,508,184 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgrsx.exe PRC - [2010-05-27 10:03:43 | 000,308,064 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe PRC - [2010-05-27 10:02:52 | 001,101,152 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe PRC - [2010-05-27 10:02:52 | 000,710,424 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe PRC - [2010-05-05 22:10:50 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe PRC - [2010-01-16 05:18:19 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2009-07-12 14:24:30 | 000,549,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\winlogon.exe PRC - [2009-07-12 14:02:10 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\services.exe PRC - [2009-03-17 09:40:58 | 001,739,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\explorer.exe PRC - [2008-04-14 22:51:44 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\spoolsv.exe PRC - [2008-04-14 22:51:44 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\smss.exe PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\svchost.exe [RPCSS] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\svchost.exe [NETWORKSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\svchost.exe [NETSVCS] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\svchost.exe [IMGSVC] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\svchost.exe [DCOMLAUNCH] PRC - [2008-04-14 22:51:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\lsass.exe PRC - [2008-04-14 22:51:12 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\csrss.exe PRC - [2007-12-05 04:53:58 | 000,495,616 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS.1\system32\ati2evxx.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2010-05-28 21:19:12 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\SysOp\Moje dokumenty\Pobieranie\OTL.exe MOD - [2009-07-12 14:25:41 | 000,483,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\shlwapi.dll MOD - [2009-07-12 14:22:53 | 000,757,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\userenv.dll MOD - [2009-07-12 14:22:37 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\srclient.dll MOD - [2009-07-12 14:21:52 | 002,730,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\setupapi.dll MOD - [2009-07-12 14:21:35 | 001,312,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\ole32.dll MOD - [2009-07-12 14:19:36 | 001,420,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\comres.dll MOD - [2009-07-12 14:19:31 | 000,344,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\comdlg32.dll MOD - [2009-07-12 14:04:08 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\uxtheme.dll MOD - [2009-07-12 14:03:05 | 000,585,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\rpcrt4.dll MOD - [2009-07-12 14:02:40 | 001,020,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\kernel32.dll MOD - [2009-07-12 14:02:40 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\secur32.dll MOD - [2009-07-12 14:02:15 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\gdi32.dll MOD - [2009-07-12 14:01:59 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\advapi32.dll MOD - [2009-07-08 10:36:02 | 019,150,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\shell32.dll MOD - [2009-07-03 09:24:22 | 000,652,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\user32.dll MOD - [2009-02-09 14:00:17 | 000,723,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\ntdll.dll MOD - [2008-04-14 22:51:58 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\winspool.drv MOD - [2008-04-14 22:50:58 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\wldap32.dll MOD - [2008-04-14 22:50:58 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\version.dll MOD - [2008-04-14 22:50:46 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\oleaut32.dll MOD - [2008-04-14 22:50:46 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\olepro32.dll MOD - [2008-04-14 22:50:46 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\samlib.dll MOD - [2008-04-14 22:50:46 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\psapi.dll MOD - [2008-04-14 22:50:42 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\ntmarta.dll MOD - [2008-04-14 22:50:40 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\msvcrt.dll MOD - [2008-04-14 22:50:34 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\imm32.dll MOD - [2008-04-14 22:50:32 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\wbem\framedyn.dll MOD - [2008-04-14 22:50:12 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\clbcatq.dll MOD - [2008-04-14 22:46:34 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\msscript.ocx MOD - [2008-04-14 22:43:00 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS.1\system32\MSCTFIME.IME MOD - [2008-04-14 22:29:10 | 001,054,208 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS.1\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [On_Demand | Stopped] -- -- (ALG) SRV - [2010-05-27 10:03:43 | 000,308,064 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd) SRV - [2005-11-24 17:03:22 | 000,053,337 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe -- (MSCSPTISRV) SRV - [2005-11-24 16:57:44 | 000,053,337 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe -- (PACSPTISVR) SRV - [2005-11-24 16:47:30 | 000,069,718 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe -- (SPTISRV) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2010-05-27 10:03:48 | 000,242,896 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS.1\System32\Drivers\avgtdix.sys -- (AvgTdiX) DRV - [2010-05-27 10:03:47 | 000,029,512 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS.1\System32\Drivers\avgmfx86.sys -- (AvgMfx86) DRV - [2010-05-27 10:02:53 | 000,216,200 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS.1\System32\Drivers\avgldx86.sys -- (AvgLdx86) DRV - [2010-03-16 15:16:38 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS.1\System32\Drivers\sptd.sys -- (sptd) DRV - [2009-08-22 20:25:00 | 000,009,088 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner32.sys -- (RivaTuner32) DRV - [2009-07-12 14:05:11 | 000,062,208 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS.1\system32\drivers\si3112.sys -- (Si3112) DRV - [2009-07-12 13:32:34 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS.1\system32\drivers\gameenum.sys -- (gameenum) DRV - [2009-07-12 11:32:58 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS.1\system32\drivers\RTL8139.sys -- (rtl8139) Sterownik NT karty Realtek RTL8139(A/B/C) DRV - [2007-12-05 07:26:40 | 002,782,208 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS.1\system32\drivers\ati2mtag.sys -- (ati2mtag) DRV - [2007-11-05 09:55:04 | 000,017,952 | ---- | M] () [Kernel | System | Running] -- C:\Program Files\Radeon Omega Drivers\v4.8.442\ATI Tray Tools\atitray.sys -- (atitray) DRV - [2006-09-24 15:28:46 | 000,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS.1\system32\speedfan.sys -- (speedfan) DRV - [2006-08-18 07:52:00 | 004,017,536 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS.1\system32\drivers\alcxwdm.sys -- (ALCXWDM) Service for Realtek AC97 Audio (WDM) DRV - [2005-12-06 17:11:18 | 000,035,328 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS.1\System32\drivers\sfsync03.sys -- (sfsync03) StarForce Protection Synchronization Driver (version 3.x) DRV - [2005-08-10 14:44:04 | 000,050,688 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS.1\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x) DRV - [2005-05-16 15:20:39 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS.1\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x) DRV - [1996-04-03 21:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS.1\system32\giveio.sys -- (giveio) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.wyborcza.pl/0,0.html?p=029 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.windowsxlive.net IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\g, = http://www.google.com/search?q=%s IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.startup.homepage: "plemiona.pl" FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.8.20100408.6 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:9.0.0.812 FF - HKLM\software\mozilla\Firefox\extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2010-05-27 10:12:20 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-05-07 22:08:16 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-05-07 22:08:16 | 000,000,000 | ---D | M] [2010-03-17 21:44:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\Mozilla\Extensions [2010-05-27 14:17:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\Mozilla\Firefox\Profiles\c6r55vr5.default\extensions [2010-05-27 14:17:02 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\SysOp\Dane aplikacji\Mozilla\Firefox\Profiles\c6r55vr5.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}-trash [2010-04-13 15:13:59 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Documents and Settings\SysOp\Dane aplikacji\Mozilla\Firefox\Profiles\c6r55vr5.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781} [2010-05-26 22:39:50 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010-05-05 22:11:08 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} [2010-02-21 12:22:32 | 000,712,704 | ---- | M] (BitComet) -- C:\Program Files\Mozilla Firefox\plugins\npBitCometAgent.dll [2010-05-05 22:10:50 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll [2010-01-16 03:08:36 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-01-16 03:08:36 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-01-16 03:08:36 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-01-16 03:08:36 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-01-16 03:08:36 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-01-16 03:08:36 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2010-05-27 22:57:58 | 000,000,789 | ---- | M]) - C:\WINDOWS.1\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.) O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.) O4 - HKCU..\Run: [Gadu-Gadu] C:\Program Files\Gadu-Gadu\gg.exe (Gadu-Gadu S.A.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoInternetOpenWith = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1 O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS.1\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\WINDOWS.1\System32\SYSdm.cpl (cr1t1cal) O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS.1\System32\ati2evxx.dll (ATI Technologies Inc.) O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS.1\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010-03-11 20:32:24 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2010-04-02 11:26:24 | 000,000,000 | ---- | M] () - F:\AUTOEXEC.BAT -- [ FAT32 ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: Ias - C:\WINDOWS.1\system32\ias [2010-03-15 18:15:44 | 000,000,000 | ---D | M] NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found MsConfig - StartUpFolder: C:^Documents and Settings^All Users.WINDOWS.1^Menu Start^Programy^Autostart^Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE - (Microsoft Corporation) MsConfig - StartUpFolder: C:^Documents and Settings^SysOp^Menu Start^Programy^Autostart^OpenOffice.org 3.2.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe - () MsConfig - StartUpFolder: C:^Documents and Settings^SysOp^Menu Start^Programy^Autostart^UniSpiker-2.6.lnk - G:\jamal\UNISPI~1.6\UNI_SP~1.EXE - File not found MsConfig - StartUpReg: [b]Adobe Reader Speed Launcher[/b] - hkey= - key= - F:\Programy\Reader\Reader_sl.exe (Adobe Systems Incorporated) MsConfig - StartUpReg: [b]AtiPTA[/b] - hkey= - key= - File not found MsConfig - StartUpReg: [b]BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}[/b] - hkey= - key= - C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG) MsConfig - StartUpReg: [b]DAEMON Tools Lite[/b] - hkey= - key= - C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) MsConfig - StartUpReg: [b]DANT[/b] - hkey= - key= - File not found MsConfig - StartUpReg: [b]DrvIcon[/b] - hkey= - key= - C:\Program Files\Vista Drive Icon\DrvIcon.exe File not found MsConfig - StartUpReg: [b]Expressivo[/b] - hkey= - key= - Reg Error: Value error. File not found MsConfig - StartUpReg: [b]Gadu-Gadu[/b] - hkey= - key= - C:\Program Files\Gadu-Gadu\gg.exe (Gadu-Gadu S.A.) MsConfig - StartUpReg: [b]NeroFilterCheck[/b] - hkey= - key= - C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG) MsConfig - StartUpReg: [b]SoundMan[/b] - hkey= - key= - C:\WINDOWS.1\soundman.exe (Realtek Semiconductor Corp.) MsConfig - StartUpReg: [b]SunJavaUpdateSched[/b] - hkey= - key= - C:\Program Files\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.) MsConfig - StartUpReg: [b]swg[/b] - hkey= - key= - Reg Error: Value error. File not found MsConfig - StartUpReg: [b]WinampAgent[/b] - hkey= - key= - F:\Programy\Winamp\winampa.exe (Nullsoft, Inc.) MsConfig - State: "system.ini" - 0 MsConfig - State: "win.ini" - 1 MsConfig - State: "bootini" - 2 MsConfig - State: "services" - 0 MsConfig - State: "startup" - 2 SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: SCSI Class - Driver Group SafeBootMin: sermouse.sys - Driver SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vga.sys - Driver SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: Messenger - Service SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: SCSI Class - Driver Group SafeBootNet: sermouse.sys - Driver SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vga.sys - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2010-05-28 20:34:47 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\SysOp\Recent [2010-05-28 09:58:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Pulpit\wirusy [2010-05-27 21:41:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Malwarebytes [2010-05-27 21:40:55 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS.1\System32\drivers\mbamswissarmy.sys [2010-05-27 21:40:53 | 000,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS.1\System32\drivers\mbam.sys [2010-05-27 21:40:53 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2010-05-27 21:40:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Malwarebytes [2010-05-27 21:34:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\DoctorWeb [2010-05-27 19:55:28 | 000,000,000 | ---D | C] -- C:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition [2010-05-27 17:32:39 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro [2010-05-27 10:03:47 | 000,012,464 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS.1\System32\avgrsstx.dll [2010-05-26 09:51:05 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\VIRepair [2010-05-25 22:47:03 | 000,000,000 | -H-D | C] -- C:\$AVG [2010-05-25 22:46:48 | 000,242,896 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS.1\System32\drivers\avgtdix.sys [2010-05-25 22:46:40 | 000,216,200 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS.1\System32\drivers\avgldx86.sys [2010-05-25 22:46:39 | 000,029,512 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS.1\System32\drivers\avgmfx86.sys [2010-05-25 22:46:37 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\drivers\Avg [2010-05-25 22:46:24 | 000,000,000 | ---D | C] -- C:\Program Files\AVG [2010-05-25 22:46:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\avg9 [2010-05-25 21:00:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\My Webs [2010-05-25 20:54:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\ViSplore [2010-05-25 20:54:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\ViGlance [2010-05-25 20:54:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\ViStart [2010-05-25 20:48:17 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\VITrans [2010-05-25 20:48:16 | 000,019,968 | ---- | C] (Dead Knight) -- C:\WINDOWS.1\System32\reico.exe [2010-05-25 20:48:16 | 000,000,000 | ---D | C] -- C:\VTPFiles [2010-05-22 22:40:17 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2010-05-22 22:39:55 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\XPSViewer [2010-05-22 22:39:42 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2010-05-22 22:39:42 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\en-us [2010-05-21 11:31:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Pointstone [2010-05-21 11:30:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Pointstone [2010-05-19 21:10:30 | 000,000,000 | ---D | C] -- C:\Program Files\Generatorek3 [2010-05-17 12:18:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\EA Games [2010-05-16 11:20:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\KONAMI [2010-05-11 20:10:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\atitray [2010-05-08 21:53:01 | 000,098,304 | ---- | C] (Sony DADC Austria AG.) -- C:\WINDOWS.1\System32\CmdLineExt.dll [2010-05-08 20:05:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\gtk-2.0 [2010-05-08 19:06:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Ahead [2010-05-08 19:05:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Ahead [2010-05-08 19:05:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Ahead [2010-05-08 19:03:00 | 000,000,000 | ---D | C] -- C:\Program Files\Nero [2010-05-08 19:03:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Nero [2010-05-08 19:03:00 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Ahead [2010-05-07 22:56:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Google [2010-05-07 22:27:14 | 000,025,992 | ---- | C] (Sysinternals - www.sysinternals.com) -- C:\WINDOWS.1\System32\pgdfgsvc.exe [2010-05-05 22:18:00 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\Sun [2010-05-05 22:11:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Sun [2010-05-05 22:11:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2010-05-05 22:10:45 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2010-05-05 22:08:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Sun [2010-05-04 17:27:00 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\speech [2010-05-04 17:26:48 | 000,000,000 | ---D | C] -- C:\Program Files\ivo [2010-05-03 19:20:55 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek AC97 [2010-05-03 19:14:31 | 000,000,000 | R--D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\Expressivo Podcasts [2010-05-03 19:14:31 | 000,000,000 | R--D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\Expressivo Documents [2010-05-03 19:13:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\IVONA Player [2010-05-03 18:46:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\IVONA_INST [2010-05-02 22:24:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\.thumbnails [2010-05-01 16:51:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Google [2010-05-01 16:51:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Google [2010-05-01 16:51:02 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2010-04-29 15:00:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\.gimp-2.6 [2010-04-29 15:00:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\gegl-0.0 [2010-04-23 20:04:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Winamp [2010-04-22 14:14:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Identities [2010-04-22 14:14:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Identities [2010-04-19 20:38:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Adobe [2010-04-19 20:37:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Adobe [2010-04-19 20:36:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2010-04-11 18:58:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\OpenOffice.org [2010-04-11 18:43:00 | 000,000,000 | ---D | C] -- C:\Program Files\OpenOffice.org 3 [2010-04-10 18:29:49 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\System32\appmgmt [2010-04-10 18:04:00 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio [2010-04-10 18:03:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Designer [2010-04-10 18:02:25 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\ShellNew [2010-04-10 17:59:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Microsoft Web Folders [2010-04-10 17:59:46 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2010-04-08 14:47:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\SonicStage [2010-04-08 14:42:13 | 000,000,000 | ---D | C] -- C:\Program Files\Sony Corporation [2010-04-08 14:40:58 | 000,770,048 | ---- | C] (Gracenote) -- C:\WINDOWS.1\System32\CDDBUISony.dll [2010-04-08 14:40:58 | 000,643,072 | ---- | C] (Gracenote, Inc.) -- C:\WINDOWS.1\System32\CDDBControlSony.dll [2010-04-08 14:40:58 | 000,585,728 | ---- | C] (Gracenote) -- C:\WINDOWS.1\System32\CddbMusicIDSony.dll [2010-04-08 14:40:58 | 000,073,728 | ---- | C] (Gracenote) -- C:\WINDOWS.1\System32\CddbLinkSony.dll [2010-04-08 14:39:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Sony Corporation [2010-04-08 14:38:39 | 000,000,000 | ---D | C] -- C:\Program Files\Sony [2010-04-08 14:37:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Sony Corporation [2010-04-08 14:37:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Sony Shared [2010-04-05 22:55:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\Pobieranie [2010-04-04 14:35:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Adobe [2010-04-02 09:30:19 | 000,000,000 | ---D | C] -- C:\temp [2010-04-01 20:58:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Moje dokumenty\Nowy folder [2010-04-01 20:53:33 | 000,000,000 | ---D | C] -- C:\Program Files\IrfanView [2010-04-01 16:05:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Dane aplikacji\Gadu-Gadu [2010-04-01 15:49:41 | 000,000,000 | ---D | C] -- C:\WINDOWS.1\pss [2010-04-01 15:49:27 | 000,000,000 | ---D | C] -- C:\Program Files\Soldier of Fortune II - Double Helix MP TEST [2010-04-01 15:48:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SysOp\Gadu-Gadu [2010-04-01 15:48:09 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu [2010-04-01 14:41:25 | 000,000,000 | ---D | C] -- C:\Program Files\SpeedFan [2010-04-01 14:06:42 | 000,000,000 | ---D | C] -- C:\Program Files\Lavalys [2010-04-01 13:39:11 | 000,020,992 | ---- | C] (Realtek Semiconductor Corporation) -- C:\WINDOWS.1\System32\drivers\RTL8139.sys [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2010-05-28 21:08:25 | 000,000,006 | -H-- | M] () -- C:\WINDOWS.1\tasks\SA.DAT [2010-05-28 21:08:12 | 000,002,048 | --S- | M] () -- C:\WINDOWS.1\bootstat.dat [2010-05-28 21:08:06 | 1073,270,784 | -HS- | M] () -- C:\hiberfil.sys [2010-05-28 20:34:48 | 004,456,448 | ---- | M] () -- C:\Documents and Settings\SysOp\NTUSER.DAT [2010-05-28 20:34:48 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\SysOp\ntuser.ini [2010-05-28 20:10:46 | 000,139,648 | ---- | M] () -- C:\WINDOWS.1\System32\FNTCACHE.DAT [2010-05-28 19:09:05 | 000,000,466 | -H-- | M] () -- C:\WINDOWS.1\tasks\User_Feed_Synchronization-{40CF33F7-F0DF-4BA2-BFDB-7923F9138C46}.job [2010-05-28 18:36:25 | 060,464,081 | ---- | M] () -- C:\WINDOWS.1\System32\drivers\Avg\incavi.avm [2010-05-27 22:57:58 | 000,000,789 | ---- | M] () -- C:\WINDOWS.1\System32\drivers\etc\hosts [2010-05-27 21:40:59 | 000,000,696 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Malwarebytes' Anti-Malware.lnk [2010-05-27 19:45:32 | 000,053,231 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\karta.JPG [2010-05-27 10:07:03 | 004,846,892 | -H-- | M] () -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010-05-27 10:03:48 | 000,242,896 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS.1\System32\drivers\avgtdix.sys [2010-05-27 10:03:47 | 000,029,512 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS.1\System32\drivers\avgmfx86.sys [2010-05-27 10:03:47 | 000,012,464 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS.1\System32\avgrsstx.dll [2010-05-27 10:02:53 | 000,216,200 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS.1\System32\drivers\avgldx86.sys [2010-05-26 20:47:04 | 000,000,069 | ---- | M] () -- C:\WINDOWS.1\NeroDigital.ini [2010-05-26 20:46:50 | 000,011,776 | ---- | M] () -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-05-26 20:43:25 | 000,000,349 | RHS- | M] () -- C:\boot.ini [2010-05-26 17:54:46 | 000,082,645 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\asdf.jpg [2010-05-26 17:53:58 | 000,082,677 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\Obraz 102.jpg [2010-05-26 17:49:06 | 001,102,554 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\222.bmp [2010-05-26 13:05:05 | 000,001,001 | ---- | M] () -- C:\WINDOWS.1\win.ini [2010-05-26 13:05:05 | 000,000,227 | ---- | M] () -- C:\WINDOWS.1\system.ini [2010-05-25 22:57:25 | 000,142,495 | ---- | M] () -- C:\WINDOWS.1\System32\drivers\Avg\microavi.avg [2010-05-25 22:46:50 | 000,001,507 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\AVG Free 9.0.lnk [2010-05-25 22:46:39 | 000,113,461 | ---- | M] () -- C:\WINDOWS.1\System32\drivers\Avg\iavichjw.avm [2010-05-25 22:46:37 | 006,061,540 | ---- | M] () -- C:\WINDOWS.1\System32\drivers\Avg\avi7.avg [2010-05-25 22:46:37 | 000,492,629 | ---- | M] () -- C:\WINDOWS.1\System32\drivers\Avg\miniavi.avg [2010-05-25 20:54:29 | 000,020,816 | ---- | M] () -- C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2010-05-25 20:48:34 | 000,085,182 | ---- | M] () -- C:\WINDOWS.1\Icon_1.ico [2010-05-25 16:16:56 | 000,000,802 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\Skrót do fairplay.exe.lnk [2010-05-23 21:33:23 | 000,235,430 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\ass.bmp [2010-05-23 21:29:33 | 000,029,788 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\aaa.jpg [2010-05-22 22:41:47 | 000,497,766 | ---- | M] () -- C:\WINDOWS.1\System32\perfh015.dat [2010-05-22 22:41:47 | 000,439,114 | ---- | M] () -- C:\WINDOWS.1\System32\perfh009.dat [2010-05-22 22:41:47 | 000,087,352 | ---- | M] () -- C:\WINDOWS.1\System32\perfc015.dat [2010-05-22 22:41:47 | 000,070,038 | ---- | M] () -- C:\WINDOWS.1\System32\perfc009.dat [2010-05-22 22:41:46 | 001,102,138 | ---- | M] () -- C:\WINDOWS.1\System32\PerfStringBackup.INI [2010-05-22 18:39:45 | 000,001,152 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\Skrót do mohpa.exe.lnk [2010-05-22 15:17:46 | 000,000,151 | ---- | M] () -- C:\WINDOWS.1\PhotoSnapViewer.INI [2010-05-22 15:06:27 | 001,959,354 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Obraz 112.bmp [2010-05-22 15:05:25 | 001,959,354 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Obraz 108.bmp [2010-05-22 15:04:58 | 001,959,354 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Obraz 107.bmp [2010-05-22 15:04:49 | 001,959,354 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Obraz 109.bmp [2010-05-22 14:58:57 | 000,884,154 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\spod.bmp [2010-05-22 14:52:33 | 000,004,076 | ---- | M] () -- C:\Documents and Settings\SysOp\.recently-used.xbel [2010-05-22 14:43:07 | 000,860,070 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\jjj.bmp [2010-05-22 14:42:31 | 000,000,602 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\IrfanView Thumbnails.lnk [2010-05-22 14:42:31 | 000,000,520 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\IrfanView.lnk [2010-05-22 11:12:34 | 000,025,088 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\CV.doc oryginał.doc [2010-05-20 19:06:11 | 000,000,636 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\GIMP 2.lnk [2010-05-19 21:10:31 | 000,000,742 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Generatorek 3 dla Windows.lnk [2010-05-16 21:20:16 | 000,091,531 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\wwww.ods [2010-05-15 20:38:46 | 000,000,967 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\OpenOffice.org 3.2.lnk [2010-05-12 16:25:19 | 000,000,509 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\SpeedFan.lnk [2010-05-12 16:25:18 | 000,000,045 | ---- | M] () -- C:\WINDOWS.1\System32\initdebug.nfo [2010-05-09 15:37:31 | 000,020,480 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\plan ramowy.doc [2010-05-08 21:53:01 | 000,098,304 | ---- | M] (Sony DADC Austria AG.) -- C:\WINDOWS.1\System32\CmdLineExt.dll [2010-05-08 21:52:38 | 000,000,566 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\Pro Evolution Soccer 6.5.lnk [2010-05-08 19:06:10 | 000,002,385 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Nero StartSmart.lnk [2010-05-08 19:06:10 | 000,002,305 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Nero Home.lnk [2010-05-07 23:30:02 | 003,407,872 | -H-- | M] () -- C:\Documents and Settings\SysOp\NTUSER.DAT.bak_jv16pt [2010-05-07 23:23:47 | 000,000,082 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\Dokonaj zakupu jv16 PowerTools.url [2010-05-07 23:23:22 | 000,000,023 | -HS- | M] () -- C:\WINDOWS.1\System32\fcaafaeebda7.dat [2010-05-07 23:23:22 | 000,000,023 | ---- | M] () -- C:\WINDOWS.1\System32\cbed.xml [2010-05-07 22:27:14 | 000,025,992 | ---- | M] (Sysinternals - www.sysinternals.com) -- C:\WINDOWS.1\System32\pgdfgsvc.exe [2010-05-07 20:24:41 | 000,012,439 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\bmSUgEXK.htm.part [2010-05-06 16:17:46 | 000,025,088 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\CV.doc [2010-05-03 19:21:06 | 000,001,519 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\AvRack.lnk [2010-05-01 21:50:43 | 000,000,169 | ---- | M] () -- C:\WINDOWS.1\RtlRack.ini [2010-05-01 14:00:00 | 000,000,025 | ---- | M] () -- C:\WINDOWS.1\popcinfot.dat [2010-04-23 20:05:09 | 000,000,481 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Winamp.lnk [2010-04-19 22:24:08 | 000,047,616 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\matura.doc [2010-04-19 20:37:10 | 000,001,391 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Adobe Reader 9.lnk [2010-04-19 19:31:49 | 001,660,416 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\wakacje.ppt [2010-04-10 18:29:25 | 000,000,037 | ---- | M] () -- C:\WINDOWS.1\vbaddin.ini [2010-04-10 18:27:40 | 000,025,088 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Motyw cierpnienia w literaturze.doc [2010-04-10 18:05:23 | 000,000,433 | ---- | M] () -- C:\WINDOWS.1\ODBC.INI [2010-04-07 09:38:49 | 000,001,662 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\biobliografia2.rtf [2010-04-06 19:44:47 | 001,157,552 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\ustny_j_polski_popr.pdf [2010-04-05 18:57:18 | 000,001,602 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Mozilla Firefox.lnk [2010-04-05 16:39:05 | 000,002,254 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Dokument.rtf [2010-04-01 23:07:43 | 000,000,084 | ---- | M] () -- C:\WINDOWS.1\winamp.ini [2010-04-01 20:56:50 | 000,047,436 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2696.JPG [2010-04-01 20:56:44 | 000,048,485 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2699.JPG [2010-04-01 20:56:36 | 000,031,692 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2702.JPG [2010-04-01 20:56:28 | 000,051,806 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2703.JPG [2010-04-01 20:56:12 | 000,072,877 | ---- | M] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2706.jpg [2010-04-01 15:49:31 | 000,000,879 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\sof.lnk [2010-04-01 15:48:14 | 000,000,653 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\Gadu-Gadu.lnk [2010-04-01 14:06:43 | 000,000,767 | ---- | M] () -- C:\Documents and Settings\SysOp\Pulpit\EVEREST Home Edition.lnk [2010-04-01 13:38:34 | 000,002,184 | ---- | M] () -- C:\WINDOWS.1\System32\wpa.dbl [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-05-27 21:40:59 | 000,000,696 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Malwarebytes' Anti-Malware.lnk [2010-05-27 19:45:32 | 000,053,231 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\karta.JPG [2010-05-26 17:54:46 | 000,082,645 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\asdf.jpg [2010-05-26 17:49:06 | 001,102,554 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\222.bmp [2010-05-25 22:46:50 | 000,001,507 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\AVG Free 9.0.lnk [2010-05-25 22:46:39 | 000,113,461 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\Avg\iavichjw.avm [2010-05-25 22:46:37 | 060,464,081 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\Avg\incavi.avm [2010-05-25 22:46:37 | 006,061,540 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\Avg\avi7.avg [2010-05-25 22:46:37 | 000,492,629 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\Avg\miniavi.avg [2010-05-25 22:46:37 | 000,142,495 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\Avg\microavi.avg [2010-05-25 20:52:17 | 000,146,412 | ---- | C] () -- C:\WINDOWS.1\System32\vilaunch.exe [2010-05-25 20:48:34 | 000,085,182 | ---- | C] () -- C:\WINDOWS.1\Icon_1.ico [2010-05-25 20:48:16 | 000,111,104 | ---- | C] () -- C:\WINDOWS.1\System32\Uharc.exe [2010-05-25 20:48:16 | 000,008,636 | ---- | C] () -- C:\WINDOWS.1\System32\modifype.exe [2010-05-25 16:16:56 | 000,000,802 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\Skrót do fairplay.exe.lnk [2010-05-23 21:33:23 | 000,235,430 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\ass.bmp [2010-05-23 21:29:30 | 000,029,788 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\aaa.jpg [2010-05-22 18:39:47 | 000,001,152 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\Skrót do mohpa.exe.lnk [2010-05-22 15:00:37 | 001,959,354 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Obraz 112.bmp [2010-05-22 15:00:22 | 001,959,354 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Obraz 109.bmp [2010-05-22 14:59:28 | 001,959,354 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Obraz 107.bmp [2010-05-22 14:59:16 | 001,959,354 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Obraz 108.bmp [2010-05-22 14:58:57 | 000,884,154 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\spod.bmp [2010-05-22 14:52:33 | 000,004,076 | ---- | C] () -- C:\Documents and Settings\SysOp\.recently-used.xbel [2010-05-22 14:48:14 | 000,000,151 | ---- | C] () -- C:\WINDOWS.1\PhotoSnapViewer.INI [2010-05-22 14:43:07 | 000,860,070 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\jjj.bmp [2010-05-22 14:42:31 | 000,000,602 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\IrfanView Thumbnails.lnk [2010-05-22 14:42:31 | 000,000,520 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\IrfanView.lnk [2010-05-22 13:15:31 | 000,082,677 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\Obraz 102.jpg [2010-05-22 11:12:33 | 000,025,088 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\CV.doc oryginał.doc [2010-05-20 19:06:11 | 000,000,636 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\GIMP 2.lnk [2010-05-20 11:00:19 | 000,122,880 | ---- | C] () -- C:\WINDOWS.1\UnGins.exe [2010-05-19 21:10:31 | 000,000,742 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Generatorek 3 dla Windows.lnk [2010-05-17 12:59:27 | 000,000,069 | ---- | C] () -- C:\WINDOWS.1\NeroDigital.ini [2010-05-15 21:46:14 | 000,091,531 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\wwww.ods [2010-05-15 20:38:46 | 000,000,967 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\OpenOffice.org 3.2.lnk [2010-05-12 16:25:19 | 000,000,509 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\SpeedFan.lnk [2010-05-09 15:37:31 | 000,020,480 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\plan ramowy.doc [2010-05-08 19:06:10 | 000,002,385 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Nero StartSmart.lnk [2010-05-08 19:06:10 | 000,002,305 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Nero Home.lnk [2010-05-07 23:29:37 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\SysOp\NTUSER.DAT.tmp.LOG [2010-05-07 23:23:47 | 000,000,082 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\Dokonaj zakupu jv16 PowerTools.url [2010-05-07 23:23:22 | 000,000,023 | -HS- | C] () -- C:\WINDOWS.1\System32\fcaafaeebda7.dat [2010-05-07 23:23:22 | 000,000,023 | ---- | C] () -- C:\WINDOWS.1\System32\cbed.xml [2010-05-07 20:24:40 | 000,012,439 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\bmSUgEXK.htm.part [2010-05-05 20:02:05 | 000,025,088 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\CV.doc [2010-05-03 19:21:27 | 000,049,152 | ---- | C] () -- C:\WINDOWS.1\System32\ChCfg.exe [2010-05-03 19:21:06 | 000,001,519 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\AvRack.lnk [2010-05-03 19:21:06 | 000,000,164 | ---- | C] () -- C:\WINDOWS.1\avrack.ini [2010-05-03 19:20:54 | 000,141,016 | ---- | C] () -- C:\WINDOWS.1\System32\alsndmgr.wav [2010-05-03 19:20:50 | 000,143,360 | ---- | C] () -- C:\WINDOWS.1\System32\RtlCPAPI.dll [2010-05-01 21:50:43 | 000,000,169 | ---- | C] () -- C:\WINDOWS.1\RtlRack.ini [2010-04-23 20:05:09 | 000,000,481 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Winamp.lnk [2010-04-19 22:24:06 | 000,047,616 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\matura.doc [2010-04-19 20:37:10 | 000,001,391 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Adobe Reader 9.lnk [2010-04-19 19:31:49 | 001,660,416 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\wakacje.ppt [2010-04-10 18:27:40 | 000,025,088 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Motyw cierpnienia w literaturze.doc [2010-04-10 18:05:23 | 000,000,433 | ---- | C] () -- C:\WINDOWS.1\ODBC.INI [2010-04-10 08:59:56 | 000,000,566 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\Pro Evolution Soccer 6.5.lnk [2010-04-07 09:38:49 | 000,001,662 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\biobliografia2.rtf [2010-04-06 19:44:38 | 001,157,552 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\ustny_j_polski_popr.pdf [2010-04-05 16:39:05 | 000,002,254 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\Dokument.rtf [2010-04-01 23:07:43 | 000,000,084 | ---- | C] () -- C:\WINDOWS.1\winamp.ini [2010-04-01 20:56:50 | 000,047,436 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2696.JPG [2010-04-01 20:56:44 | 000,048,485 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2699.JPG [2010-04-01 20:56:36 | 000,031,692 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2702.JPG [2010-04-01 20:56:28 | 000,051,806 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2703.JPG [2010-04-01 20:56:12 | 000,072,877 | ---- | C] () -- C:\Documents and Settings\SysOp\Moje dokumenty\IMG_2706.jpg [2010-04-01 15:49:31 | 000,000,879 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\sof.lnk [2010-04-01 15:48:14 | 000,000,653 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\Gadu-Gadu.lnk [2010-04-01 14:41:23 | 000,000,045 | ---- | C] () -- C:\WINDOWS.1\System32\initdebug.nfo [2010-04-01 14:06:43 | 000,000,767 | ---- | C] () -- C:\Documents and Settings\SysOp\Pulpit\EVEREST Home Edition.lnk [2010-03-16 15:16:37 | 000,691,696 | ---- | C] () -- C:\WINDOWS.1\System32\drivers\sptd.sys [2010-03-15 23:22:43 | 000,168,448 | ---- | C] () -- C:\WINDOWS.1\System32\unrar.dll [2010-03-15 23:22:38 | 000,795,648 | ---- | C] () -- C:\WINDOWS.1\System32\xvidcore.dll [2010-03-15 23:22:38 | 000,130,048 | ---- | C] () -- C:\WINDOWS.1\System32\xvidvfw.dll [2010-03-15 23:22:37 | 003,596,288 | ---- | C] () -- C:\WINDOWS.1\System32\qt-dx331.dll [2010-03-15 23:22:35 | 000,057,344 | ---- | C] () -- C:\WINDOWS.1\System32\ff_vfw.dll [2010-03-15 23:22:35 | 000,000,547 | ---- | C] () -- C:\WINDOWS.1\System32\ff_vfw.dll.manifest [2010-03-11 21:44:49 | 000,000,011 | ---- | C] () -- C:\WINDOWS.1\System32\atiicdxx.ini [1999-01-22 17:46:58 | 000,065,536 | ---- | C] () -- C:\WINDOWS.1\System32\MSRTEDIT.DLL [1996-04-03 21:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS.1\System32\giveio.sys [color=#E56717]========== LOP Check ==========[/color] [2010-03-16 16:22:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\ashampoo [2010-05-25 22:46:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\avg9 [2010-03-16 15:16:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\DAEMON Tools Lite [2010-03-16 15:55:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\PopCap Games [2010-03-15 20:15:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Test Drive Unlimited [2010-03-16 16:22:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\Ashampoo [2010-03-16 15:21:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\DAEMON Tools Lite [2010-04-01 16:05:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\Gadu-Gadu [2010-05-08 20:06:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\gtk-2.0 [2010-05-03 19:13:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\IVONA Player [2010-04-11 18:58:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\OpenOffice.org [2010-05-21 11:31:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\Pointstone [2010-05-25 20:54:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\ViGlance [2010-05-25 20:54:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\ViSplore [2010-05-25 20:54:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\SysOp\Dane aplikacji\ViStart [2010-05-28 19:09:05 | 000,000,466 | -H-- | M] () -- C:\WINDOWS.1\Tasks\User_Feed_Synchronization-{40CF33F7-F0DF-4BA2-BFDB-7923F9138C46}.job [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2010-03-11 20:32:24 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-05-26 20:43:25 | 000,000,349 | RHS- | M] () -- C:\boot.ini [2001-07-22 02:13:54 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin [2010-03-11 20:32:24 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-05-28 21:08:06 | 1073,270,784 | -HS- | M] () -- C:\hiberfil.sys [2010-03-11 20:32:24 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-03-11 20:32:24 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2010-03-13 21:08:40 | 000,000,007 | ---- | M] () -- C:\NOTACER.ID [2008-04-13 22:13:04 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2008-04-14 00:02:00 | 000,251,152 | RHS- | M] () -- C:\ntldr [2010-05-28 21:08:05 | 1610,612,736 | -HS- | M] () -- C:\pagefile.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS.1\system32\drivers\atapi.sys [color=#A23BEC]< MD5 for: BEEP.SYS >[/color] [2001-08-18 01:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS.0\system32\drivers\beep.sys [2001-08-18 01:47:36 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS.1\system32\drivers\beep.sys [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2009-07-12 13:29:34 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=4B0A100EAF5C49EF3CCA8C641431EACC -- C:\WINDOWS.1\system32\drivers\cdrom.sys [color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color] [2008-04-14 22:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS.1\system32\eventlog.dll [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2008-04-14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS.1\system32\drivers\ndis.sys [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2009-07-12 14:24:30 | 000,549,888 | ---- | M] (Microsoft Corporation) MD5=335813EACD16E84F3047A3326F6E5473 -- C:\WINDOWS.1\system32\winlogon.exe < End of report > [/log] Zaraz kolejne logi [log]REGLOOKS logfile - version 0.985 Scan started: 2010-05-28 21:28:25,54 --- INFORMATION --- Manufacturer: GBT___ - Model: AWRDACPI Operating System: Microsoft Windows XP Professional -- 5.1.2600 -- Dodatek Service Pack 3 -- Processor: AMD Athlon(tm) XP 2000+ Number of Processors: 1 Work Station Bootmode: Normal boot Total RAM: 1023 MB (free 428 MB - 41%) Computername: WINDT_09 Domain: MSHOME User: SysOp (Administrator account) Bootdevice: \Device\HarddiskVolume1 Systemdrive: C: Windowsdirectory: C:\WINDOWS.1 Systemdirectory: C:\WINDOWS.1\system32 Internet Explorer Version: 8.0.6001.18702 --- SIGCHECK --- C:\WINDOWS.1\explorer.exe -- sigcheck FAILED [C:\WINDOWS.1\explorer.exe] 36F8D0529ACD765F9A9672A154930997 -- [1739776] -- [2009-03-17 09:40] C:\WINDOWS.1\system32\appmgmts.dll -- [172032] -- [2008-04-14 22:50] -- sigcheck OK C:\WINDOWS.1\system32\browser.dll -- [77824] -- [2008-04-14 22:50] -- sigcheck OK C:\WINDOWS.1\system32\comres.dll -- sigcheck FAILED [C:\WINDOWS.1\system32\comres.dll] 4678172D19476FA7D539682FCA42C942 -- [1420800] -- [2009-07-12 14:19] C:\WINDOWS.1\system32\comctl32.dll -- sigcheck FAILED [C:\WINDOWS.1\system32\comctl32.dll] E6C1811BA05F4E4BD4DA437778630489 -- [724992] -- [2009-07-12 14:19] C:\WINDOWS.1\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.0.0_x-ww_1382d70a\comctl32.dll -- [921088] -- [2001-08-18 10:37] -- sigcheck OK C:\WINDOWS.1\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll -- [1054208] -- [2008-04-14 22:29] -- sigcheck OK C:\WINDOWS.1\system32\cryptsvc.dll -- [62464] -- [2008-04-14 22:50] -- sigcheck OK C:\WINDOWS.1\system32\ctfmon.exe NOT found C:\WINDOWS.1\system32\es.dll -- [253952] -- [2009-07-12 14:00] -- sigcheck OK C:\WINDOWS.1\system32\eventlog.dll -- [56320] -- [2008-04-14 22:50] -- sigcheck OK C:\WINDOWS.1\system32\ias.dll NOT found C:\WINDOWS.1\system32\imm32.dll -- [110080] -- [2008-04-14 22:50] -- sigcheck OK C:\WINDOWS.1\system32\kernel32.dll -- [1020416] -- [2009-07-12 14:02] -- sigcheck OK C:\WINDOWS.1\system32\linkinfo.dll -- [19968] -- [2008-04-14 22:50] -- sigcheck OK C:\WINDOWS.1\system32\lpk.dll -- [22016] -- [2008-04-14 22:50] -- sigcheck OK C:\WINDOWS.1\system32\lsass.exe -- [13312] -- [2008-04-14 22:51] -- sigcheck OK C:\WINDOWS.1\system32\mfc40u.dll -- [927504] -- [2008-04-14 22:50] -- sigcheck OK C:\WINDOWS.1\system32\msgsvc.dll NOT found C:\WINDOWS.1\system32\mshtml.dll -- sigcheck FAILED [C:\WINDOWS.1\system32\mshtml.dll] BE84B4FE25D1965661172432A6426CDC -- [6160896] -- [2009-07-12 14:25] C:\WINDOWS.1\system32\mspmsnsv.dll -- [27136] -- [2009-07-12 13:58] -- sigcheck OK C:\WINDOWS.1\system32\mswsock.dll -- [246784] -- [2009-07-12 14:01] -- sigcheck OK C:\WINDOWS.1\system32\netlogon.dll -- [407040] -- [2008-04-14 22:50] -- sigcheck OK C:\WINDOWS.1\system32\netman.dll -- [198144] -- [2008-04-14 22:50] -- sigcheck OK C:\WINDOWS.1\system32\ntkrnlpa.exe -- sigcheck FAILED [C:\WINDOWS.1\system32\ntkrnlpa.exe] D7A09FA4882D09DE80D55562356CD516 -- [2069632] -- [2009-03-21 21:46] C:\WINDOWS.1\system32\ntmssvc.dll -- [435712] -- [2008-04-14 22:50] -- sigcheck OK C:\WINDOWS.1\system32\ntoskrnl.exe -- sigcheck FAILED [C:\WINDOWS.1\system32\ntoskrnl.exe] 445022F815948EBCB4D658AE88A99DDD -- [2192768] -- [2009-03-21 21:47] C:\WINDOWS.1\system32\pchsvc.dll NOT found C:\WINDOWS.1\system32\powrprof.dll -- [17408] -- [2008-04-14 22:50] -- sigcheck OK C:\WINDOWS.1\system32\qmgr.dll -- [409088] -- [2008-04-14 22:50] -- sigcheck OK C:\WINDOWS.1\system32\rasauto.dll -- [88576] -- [2008-04-14 22:50] -- sigcheck OK C:\WINDOWS.1\system32\regsvc.dll NOT found C:\WINDOWS.1\system32\rpcss.dll -- [401408] -- [2009-07-12 14:02] -- sigcheck OK C:\WINDOWS.1\system32\scecli.dll -- [186368] -- [2008-04-14 22:50] -- sigcheck OK C:\WINDOWS.1\system32\schedsvc.dll -- [193536] -- [2008-04-14 22:50] -- sigcheck OK C:\WINDOWS.1\system32\services.exe -- [111104] -- [2009-07-12 14:02] -- sigcheck OK C:\WINDOWS.1\system32\sfc.dll -- [5120] -- [2008-04-14 22:50] -- sigcheck OK C:\WINDOWS.1\system32\sfcfiles.dll -- [1571840] -- [2008-04-14 22:50] -- sigcheck OK C:\WINDOWS.1\system32\spoolsv.exe -- [57856] -- [2008-04-14 22:51] -- sigcheck OK C:\WINDOWS.1\system32\srsvc.dll -- [171520] -- [2008-04-14 22:50] -- sigcheck OK C:\WINDOWS.1\system32\ssdpsrv.dll -- [71680] -- [2008-04-14 22:50] -- sigcheck OK C:\WINDOWS.1\system32\svchost.exe -- [14336] -- [2008-04-14 22:51] -- sigcheck OK C:\WINDOWS.1\system32\tapisrv.dll -- [249856] -- [2008-04-14 22:50] -- sigcheck OK C:\WINDOWS.1\system32\termsrv.dll -- [296448] -- [2008-04-14 22:50] -- sigcheck OK C:\WINDOWS.1\system32\upnphost.dll -- [186880] -- [2008-04-14 22:50] -- sigcheck OK C:\WINDOWS.1\system32\user32.dll -- sigcheck FAILED [C:\WINDOWS.1\system32\user32.dll] 991C8CDC4C34B65FFC780F49936358FB -- [652288] -- [2009-07-03 09:24] C:\WINDOWS.1\system32\userinit.exe -- [26624] -- [2008-04-14 22:51] -- sigcheck OK C:\WINDOWS.1\system32\wininet.dll -- sigcheck FAILED [C:\WINDOWS.1\system32\wininet.dll] B62213934FDC8B5DC9E6360218043E59 -- [1016832] -- [2009-07-12 14:25] C:\WINDOWS.1\system32\winlogon.exe -- sigcheck FAILED [C:\WINDOWS.1\system32\winlogon.exe] 335813EACD16E84F3047A3326F6E5473 -- [549888] -- [2009-07-12 14:24] C:\WINDOWS.1\system32\ws2_32.dll -- [82432] -- [2008-04-14 22:51] -- sigcheck OK C:\WINDOWS.1\system32\wscntfy.exe NOT found C:\WINDOWS.1\system32\wuauclt.exe -- sigcheck FAILED [C:\WINDOWS.1\system32\wuauclt.exe] 37ED43F3DEC4400586554D61C3129478 -- [112128] -- [2009-07-12 14:24] C:\WINDOWS.1\system32\xmlprov.dll -- [129024] -- [2008-04-14 22:51] -- sigcheck OK C:\WINDOWS.1\system32\drivers\acpiec.sys -- [12032] -- [2001-10-26 20:46] -- sigcheck OK C:\WINDOWS.1\system32\drivers\aec.sys -- [142592] -- [2009-07-12 12:32] -- sigcheck OK C:\WINDOWS.1\system32\drivers\asyncmac.sys -- [14336] -- [2008-04-14 00:27] -- sigcheck OK C:\WINDOWS.1\system32\drivers\atapi.sys -- [96512] -- [2008-04-14 00:10] -- sigcheck OK C:\WINDOWS.1\system32\drivers\beep.sys -- [4224] -- [2001-08-18 01:47] -- sigcheck OK C:\WINDOWS.1\system32\drivers\classpnp.sys -- [49536] -- [2008-04-14 00:46] -- sigcheck OK C:\WINDOWS.1\system32\drivers\disk.sys -- [36352] -- [2008-04-14 00:10] -- sigcheck OK C:\WINDOWS.1\system32\drivers\iaStor.sys NOT found C:\WINDOWS.1\system32\drivers\ip6fw.sys -- [36608] -- [2008-04-14 00:23] -- sigcheck OK C:\WINDOWS.1\system32\drivers\kbdclass.sys -- [24960] -- [2008-04-14 21:50] -- sigcheck OK C:\WINDOWS.1\system32\drivers\ndis.sys -- [182656] -- [2008-04-14 00:50] -- sigcheck OK C:\WINDOWS.1\system32\drivers\ntfs.sys -- [574976] -- [2008-04-14 00:45] -- sigcheck OK C:\WINDOWS.1\system32\drivers\tcpip.sys -- sigcheck FAILED [C:\WINDOWS.1\system32\drivers\tcpip.sys] DF70435F3D17C40D5CB15E6DC918342E -- [361600] -- [2009-07-12 14:04] --- SSODL regkeys --- [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] "WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}" -- File: C:\WINDOWS.1\system32\webcheck.dll -- [395264] -- [2009-07-12 14:25] "WPDShServiceObj"="{AAA288BA-9A4C-45B0-95D7-94D524869DB5}" -- File: C:\WINDOWS.1\system32\wpdshserviceobj.dll -- [133632] -- [2009-07-12 13:58] "PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}" -- File: %SystemRoot%\system32\SHELL32.dll -- [?] "CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}" -- File: %SystemRoot%\system32\SHELL32.dll -- [?] "SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}" -- File: C:\WINDOWS.1\system32\stobject.dll -- [133120] -- [2009-07-12 14:22] --- STS regkeys --- [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler] "{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Moduł wstępnego ładowania interfejsu Browseui" -- File: %SystemRoot%\system32\browseui.dll -- [?] "{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Demon buforu kategorii składników" -- File: %SystemRoot%\system32\browseui.dll -- [?] --- USERINIT regkey --- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] "Userinit"="C:\\WINDOWS.1\\system32\\userinit.exe," File: C:\WINDOWS.1\system32\userinit.exe -- [26624] -- [2008-04-14 22:51] --- SHELL regkey --- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] "Shell"="Explorer.exe" File: C:\WINDOWS.1\Explorer.exe -- [1739776] -- [2009-03-17 09:40] --- SYSTEM regkey --- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] "System"="" --- APPINIT_DLLS regkey --- [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="" --- NOTIFY regkey --- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent] -- File: C:\WINDOWS.1\system32\Ati2evxx.dll -- [122880] -- [2007-12-05 04:55] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter] -- File: C:\WINDOWS.1\system32\avgrsstx.dll -- [12464] -- [2010-05-27 10:03] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain] -- File: C:\WINDOWS.1\system32\crypt32.dll -- [602624] -- [2008-04-14 22:50] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet] -- File: C:\WINDOWS.1\system32\cryptnet.dll -- [64512] -- [2008-04-14 22:50] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll] -- File: C:\WINDOWS.1\system32\cscdll.dll -- [336896] -- [2009-07-12 14:19] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dimsntfy] -- File: %SystemRoot%\System32\dimsntfy.dll -- [?] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp] -- File: C:\WINDOWS.1\system32\wlnotify.dll -- [93184] -- [2008-04-14 22:50] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule] -- File: C:\WINDOWS.1\system32\wlnotify.dll -- [93184] -- [2008-04-14 22:50] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy] -- File: C:\WINDOWS.1\system32\sclgntfy.dll -- [22016] -- [2008-04-14 22:50] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn] -- File: C:\WINDOWS.1\system32\WlNotify.dll -- [93184] -- [2008-04-14 22:50] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv] -- File: C:\WINDOWS.1\system32\wlnotify.dll -- [93184] -- [2008-04-14 22:50] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon] -- File: C:\WINDOWS.1\system32\wlnotify.dll -- [93184] -- [2008-04-14 22:50] --- RUN / LOAD regkeys --- [HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows] "load"="" --- SHELLEXECUTEHOOKS regkey --- [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks] --- HKLM AUTORUN regkeys --- [HKEY_LOCAL_MACHINE\Software\Microsoft\Command Processor] "AutoRun"="" --- HKCU AUTORUN regkeys --- [HKEY_CURRENT_USER\Software\Microsoft\Command Processor] no AutoRun regkey found --- HKLM\RUN regkey --- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AVG9_TRAY" -- File C:\PROGRA~1\AVG\AVG9\avgtray.exe -- [2064736] -- [2010-05-27 10:03] --- HKLM\RUNONCE regkey --- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] no runonce values found --- HKLM\RUNONCEEX regkey --- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx] no runonceex values found --- HKLM\RUNSERVICES regkey --- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices] key not found --- HKLM\RUNSERVICESONCE regkey --- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServicesOnce] key not found --- HKCU\RUN regkey --- [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Gadu-Gadu" -- File: "C:\Program Files\Gadu-Gadu\gg.exe" /tray -- [?] --- HKCU\RUNONCE regkey --- [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] no runonce values found --- HKCU\RUNONCEEX regkey --- [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx] key not found --- HKCU\RUNSERVICES regkey --- [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices] key not found --- HKCU\RUNSERVICESONCE regkey --- [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServicesOnce] key not found --- HKU\.DEFAULT\Run regkeys - Default user --- [HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] no run values found --- HKU\S-1-5-18\Run regkeys - user SYSTEM --- [HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] no run values found --- HKU\S-1-5-19\Run regkeys - User Lokale service --- [HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] no run values found --- HKU\S-1-5-20\Run regkeys - User Lokale service --- [HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] no run values found --- HKLM\Explorer\Run regkeys --- [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] key not found --- HKCU\Explorer\Run regkeys --- [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] key not found --- Image File Execution regkeys --- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options] no debuggers found --- BROWSER HELPER OBJECTS regkeys --- [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] -- File: C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll -- [75128] -- [2009-02-27 12:07] [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}] -- File: C:\Program Files\AVG\AVG9\avgssie.dll -- [1615200] -- [2010-05-27 10:03] [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] -- File: C:\Program Files\Java\jre6\bin\jp2ssv.dll -- [41760] -- [2010-05-05 22:10] [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] -- File: C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll -- [79648] -- [2010-05-05 22:10] --- TOOLBAR regkeys --- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] no toolbars found --- HKLM\URLSEARCHHOOKS regkeys --- [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\URLSearchHooks] key not found --- HKCU\URLSEARCHHOOKS regkeys --- [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks] {CFBFAE00-17A6-11D0-99CB-00C04FD64497} -- File: C:\WINDOWS.1\system32\ieframe.dll -- [11372544] -- [2009-07-12 14:25] --- SRCEENSAVER regkey --- [HKEY_CURRENT_USER\Control Panel\Desktop] "SCRNSAVE.EXE" -- File -- C:\WINDOWS.1\System32\logon.scr -- [X] --- ALTERNATESHELL regkey --- [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot] File: C:\WINDOWS.1\system32\cmd.exe -- [397824] -- [2009-07-12 14:23] --- SECURITYPROVIDERS regkey --- [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll" File: C:\WINDOWS.1\system32\msapsspc.dll -- [86016] -- [2008-04-14 22:50] File: C:\WINDOWS.1\system32\schannel.dll -- [144896] -- [2009-07-12 14:02] File: C:\WINDOWS.1\system32\digest.dll -- [93184] -- [2009-07-12 14:19] File: C:\WINDOWS.1\system32\msnsspc.dll -- [290816] -- [2008-04-14 22:50] --- Active Setup\Installed Components regkey --- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}] -- File: C:\WINDOWS.1\system32\ieudinit.exe -- [36864] -- [2009-07-12 13:57] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}] -- File: C:\WINDOWS.1\system32\ie4uinit.exe -UserIconConfig -- [?] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}] -- File: RunDLL32 IEDKCS32.DLL,BrandIEActiveSetup SIGNUP -- [?] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}] -- File: %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE -- [?] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{99820200-ECBD-11cf-8B85-00AA005B4340}] -- File: regsvr32.exe /s /n /i:U shell32.dll -- [?] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{036FD544-AED6-3F33-856D-A2292D0CF471}] -- filepath not found [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] -- File: %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll -- [?] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}] -- File: rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS.1\INF\wmp.inf,PerUserStub -- [?] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}] -- File: regsvr32.exe /s /n /i:U shell32.dll -- [?] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}] -- File: C:\WINDOWS.1\system32\ie4uinit.exe -BaseSettings -- [?] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -- File: C:\WINDOWS.1\system32\Rundll32.exe C:\WINDOWS.1\system32\mscories.dll,Install -- [?] --- Services regkey --- [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\aacsas] -- filepath not found [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\adp94xx] -- filepath not found [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\arcm_x86] -- filepath not found [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Atierecord] -- filepath not found [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\atitray] -- File: \??\C:\Program Files\Radeon Omega Drivers\v4.8.442\ATI Tray Tools\atitray.sys -- [?] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\AVG] -- filepath not found [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\avg9wd] -- File: "C:\Program Files\AVG\AVG9\avgwdsvc.exe" -- [308064] -- [2010-05-27 10:03] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\AvgLdx86] -- File: \SystemRoot\System32\Drivers\avgldx86.sys -- [?] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\cpqarry2] -- filepath not found [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\cpqcissm] -- filepath not found [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ENTECH] -- File: \??\C:\WINDOWS.1\system32\DRIVERS\ENTECH.SYS -- [?] --- SAFEBOOT MINIMAL SERVICES --- HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal no unknown services found --- SAFEBOOT Network SERVICES --- HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network DnsCache --- BOOTEXECUTE regkey --- [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager] "BootExecute"= autocheck autochk *\0\0 --- PENDINGFILERENAMEOPERATIONS regkey --- [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager] PendingFileRenameOperations key not found --- WOW-CMDLINE regkeys --- [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\WOW] "cmdline" = %SystemRoot%\system32\ntvdm.exe "cmdline" = %SystemRoot%\system32\ntvdm.exe -a %SystemRoot%\system32\krnl386 --- NETSVCS regkey --- [HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\Svchost] -- NETSVCS 0WmdmPmSN --- DNS SERVER regkeys --- no "NameServer" values found --- File associations --- .BAT files: ("%1" %*) .COM files: ("%1" %*) .EXE files: ("%1" %*) .HLP files: (%SystemRoot%\System32\winhlp32.exe %1) .INF files: (%SystemRoot%\System32\NOTEPAD.EXE %1) .INI files: (%SystemRoot%\System32\NOTEPAD.EXE %1) .JS files: (%SystemRoot%\System32\WScript.exe "%1" %*) .PIF files: ("%1" %*) .REG files: (regedit.exe "%1") .SCR files: ("%1" /S) .TXT files: (%SystemRoot%\system32\NOTEPAD.EXE %1) .VBS files: (%SystemRoot%\System32\WScript.exe "%1" %*) --- STARTUP FOLDERS --- C:\Documents and Settings\SysOp\Menu Start\Programy\Autostart\desktop.ini -- [84] -- [2010-03-15 18:16] C:\Documents and Settings\All Users.WINDOWS.1\Menu Start\Programy\Autostart\desktop.ini -- [84] -- [2010-03-15 18:16] C:\WINDOWS.1\system32\config\systemprofile\Menu Start\Programy\Autostart\desktop.ini -- [84] -- [2010-03-15 18:16] C:\WINDOWS.1\system32\config\systemprofile\Menu Start\Programy\Autostart\desktop.ini -- [84] -- [2010-03-15 18:16] --- TASK SCHEDULER JOBS --- C:\WINDOWS.1\tasks\User_Feed_Synchronization-{40CF33F7-F0DF-4BA2-BFDB-7923F9138C46}.job -- [466] -- [2010-05-28 19:09] Scan completed: 2010-05-28 21:30:42,84 FINISHED [/log] [log]"Silent Runners.vbs", revision 61, http://www.silentrunners.org/ Operating System: Windows XP SP3 Output limited to non-default values, except where indicated by "{++}" Startup items buried in registry: --------------------------------- HKCU\Software\Microsoft\Windows\CurrentVersion\Run\ {++} "Gadu-Gadu" = ""C:\Program Files\Gadu-Gadu\gg.exe" /tray" ["Gadu-Gadu S.A."] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ {++} "AVG9_TRAY" = "C:\PROGRA~1\AVG\AVG9\avgtray.exe" ["AVG Technologies CZ, s.r.o."] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ {18DF081C-E8AD-4283-A596-FA578C2EBDC3}\(Default) = "AcroIEHelperStub" -> {HKLM...CLSID} = "Adobe PDF Link Helper" \InProcServer32\(Default) = "C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll" ["Adobe Systems Incorporated"] {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}\(Default) = "WormRadar.com IESiteBlocker.NavFilter" -> {HKLM...CLSID} = "AVG Safe Search" \InProcServer32\(Default) = "C:\Program Files\AVG\AVG9\avgssie.dll" ["AVG Technologies CZ, s.r.o."] {DBC80044-A445-435b-BC74-9C25C1C588A9}\(Default) = (no title provided) -> {HKLM...CLSID} = "Java(tm) Plug-In 2 SSV Helper" \InProcServer32\(Default) = "C:\Program Files\Java\jre6\bin\jp2ssv.dll" ["Sun Microsystems, Inc."] {E7E6F031-17CE-4C07-BC86-EABFE594F69C}\(Default) = "JQSIEStartDetectorImpl" -> {HKLM...CLSID} = "JQSIEStartDetectorImpl Class" \InProcServer32\(Default) = "C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll" ["Sun Microsystems, Inc."] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\ "{EFA24E62-B078-11d0-89E4-00C04FC9E26E}" = "History Band" -> {HKLM...CLSID} = "History Band" \InProcServer32\(Default) = "C:\WINDOWS.1\system32\shdocvw.dll" [MS] [/log]Co dalej robić ? Tylko format pozostał ?Nikt nie pomoże ?
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.